Is it possible to pass in a list of permissions and see which one the user has and which not?

Plugins related🤔Question

Hey, I am going to jump to the middle of it.
I am experimenting with better auth with a backend framework (Fastify), and I created a piece of controller code.
Right now my problem is, I have to do 2 separate API calls. Is it possible to use 1 call, pass in a list of permissions and then individually check if a permission failed?

AFAIK using

body: {
  userId: req.user.id,
        permissions: {
          userProfile: ["read", "read:all"],
  },
}

body: {
  userId: req.user.id,
        permissions: {
          userProfile: ["read", "read:all"],
  },
}

still just returns a SINGLE boolean prop success, but I want to see which one fails

  async read(req: AuthenticatedRequest, res: FastifyReply, id: string) {
    const hasReadPermissions = await this.app.auth.api.userHasPermission({
      body: {
        userId: req.user.id,
        permission: {
          userProfile: ["read"],
        },
      },
    });

    if (!hasReadPermissions.success) {
      throw this.app.httpErrors.forbidden();
    }

    if (req.user.id !== id) {
      const hasReadAllPermissions = await this.app.auth.api.userHasPermission({
        body: {
          userId: req.user.id,
          permission: {
            userProfile: ["read:all", "asd"],
          },
        },
      });

      if (!hasReadAllPermissions.success) {
        throw this.app.httpErrors.forbidden();
      }
    }

    const profile = await this.app.db.query.userProfile.findFirst({
      where: eq(userProfile.id, id),
    });

    if (!profile) {
      throw this.app.httpErrors.notFound();
    }

    return profile;
  }

  async read(req: AuthenticatedRequest, res: FastifyReply, id: string) {
    const hasReadPermissions = await this.app.auth.api.userHasPermission({
      body: {
        userId: req.user.id,
        permission: {
          userProfile: ["read"],
        },
      },
    });

    if (!hasReadPermissions.success) {
      throw this.app.httpErrors.forbidden();
    }

    if (req.user.id !== id) {
      const hasReadAllPermissions = await this.app.auth.api.userHasPermission({
        body: {
          userId: req.user.id,
          permission: {
            userProfile: ["read:all", "asd"],
          },
        },
      });

      if (!hasReadAllPermissions.success) {
        throw this.app.httpErrors.forbidden();
      }
    }

    const profile = await this.app.db.query.userProfile.findFirst({
      where: eq(userProfile.id, id),
    });

    if (!profile) {
      throw this.app.httpErrors.notFound();
    }

    return profile;
  }

Is it possible to pass in a list of permissions and see which one the user has and which not?

Plugins related🤔Question

body: {
  userId: req.user.id,
        permissions: {
          userProfile: ["read", "read:all"],
  },
}

body: {
  userId: req.user.id,
        permissions: {
          userProfile: ["read", "read:all"],
  },
}

still just returns a SINGLE boolean prop success, but I want to see which one fails

  async read(req: AuthenticatedRequest, res: FastifyReply, id: string) {
    const hasReadPermissions = await this.app.auth.api.userHasPermission({
      body: {
        userId: req.user.id,
        permission: {
          userProfile: ["read"],
        },
      },
    });

    if (!hasReadPermissions.success) {
      throw this.app.httpErrors.forbidden();
    }

    if (req.user.id !== id) {
      const hasReadAllPermissions = await this.app.auth.api.userHasPermission({
        body: {
          userId: req.user.id,
          permission: {
            userProfile: ["read:all", "asd"],
          },
        },
      });

      if (!hasReadAllPermissions.success) {
        throw this.app.httpErrors.forbidden();
      }
    }

    const profile = await this.app.db.query.userProfile.findFirst({
      where: eq(userProfile.id, id),
    });

    if (!profile) {
      throw this.app.httpErrors.notFound();
    }

    return profile;
  }

  async read(req: AuthenticatedRequest, res: FastifyReply, id: string) {
    const hasReadPermissions = await this.app.auth.api.userHasPermission({
      body: {
        userId: req.user.id,
        permission: {
          userProfile: ["read"],
        },
      },
    });

    if (!hasReadPermissions.success) {
      throw this.app.httpErrors.forbidden();
    }

    if (req.user.id !== id) {
      const hasReadAllPermissions = await this.app.auth.api.userHasPermission({
        body: {
          userId: req.user.id,
          permission: {
            userProfile: ["read:all", "asd"],
          },
        },
      });

      if (!hasReadAllPermissions.success) {
        throw this.app.httpErrors.forbidden();
      }
    }

    const profile = await this.app.db.query.userProfile.findFirst({
      where: eq(userProfile.id, id),
    });

    if (!profile) {
      throw this.app.httpErrors.notFound();
    }

    return profile;
  }

Is it possible to pass in a list of permissions and see which one the user has and which not?

Similar Threads

Is it possible to pass in a list of permissions and see which one the user has and which not?

Similar Threads

Similar Threads

Similar Threads