Constructor
new ACL()
- Source:
- See:
Creates a new ACL.
If no argument is given, the ACL has no permissions for anyone.
If the argument is a AV.User, the ACL will have read and write
permission for only that user.
If the argument is any other JSON object, that object will be interpretted
as a serialized ACL created with toJSON().
Methods
getPublicReadAccess() → {Boolean}
Get whether the public is allowed to read this object.
Returns:
- Type
- Boolean
getPublicWriteAccess() → {Boolean}
Get whether the public is allowed to write this object.
Returns:
- Type
- Boolean
getReadAccess(userId) → {Boolean}
Get whether the given user id is *explicitly* allowed to read this object.
Even if this returns false, the user may still be able to access it if
getPublicReadAccess returns true or a role that the user belongs to has
write access.
Parameters:
| Name | Type | Description |
|---|---|---|
userId |
An instance of AV.User or its objectId, or a AV.Role. |
Returns:
- Type
- Boolean
getRoleReadAccess(role) → {Boolean}
Get whether users belonging to the given role are allowed
to read this object. Even if this returns false, the role may
still be able to write it if a parent role has read access.
Parameters:
| Name | Type | Description |
|---|---|---|
role |
The name of the role, or a AV.Role object. |
Throws:
-
If role is neither a AV.Role nor a String.
- Type
- String
Returns:
true if the role has read access. false otherwise.
- Type
- Boolean
getRoleWriteAccess(role) → {Boolean}
Get whether users belonging to the given role are allowed
to write this object. Even if this returns false, the role may
still be able to write it if a parent role has write access.
Parameters:
| Name | Type | Description |
|---|---|---|
role |
The name of the role, or a AV.Role object. |
Throws:
-
If role is neither a AV.Role nor a String.
- Type
- String
Returns:
true if the role has write access. false otherwise.
- Type
- Boolean
getWriteAccess(userId) → {Boolean}
Get whether the given user id is *explicitly* allowed to write this object.
Even if this returns false, the user may still be able to write it if
getPublicWriteAccess returns true or a role that the user belongs to has
write access.
Parameters:
| Name | Type | Description |
|---|---|---|
userId |
An instance of AV.User or its objectId, or a AV.Role. |
Returns:
- Type
- Boolean
setPublicReadAccess(allowed)
Set whether the public is allowed to read this object.
Parameters:
| Name | Type | Description |
|---|---|---|
allowed |
Boolean |
setPublicWriteAccess(allowed)
Set whether the public is allowed to write this object.
Parameters:
| Name | Type | Description |
|---|---|---|
allowed |
Boolean |
setReadAccess(userId, allowed)
Set whether the given user is allowed to read this object.
Parameters:
| Name | Type | Description |
|---|---|---|
userId |
An instance of AV.User or its objectId. | |
allowed |
Boolean | Whether that user should have read access. |
setRoleReadAccess(role, allowed)
Set whether users belonging to the given role are allowed
to read this object.
Parameters:
| Name | Type | Description |
|---|---|---|
role |
The name of the role, or a AV.Role object. | |
allowed |
Boolean | Whether the given role can read this object. |
Throws:
-
If role is neither a AV.Role nor a String.
- Type
- String
setRoleWriteAccess(role, allowed)
Set whether users belonging to the given role are allowed
to write this object.
Parameters:
| Name | Type | Description |
|---|---|---|
role |
The name of the role, or a AV.Role object. | |
allowed |
Boolean | Whether the given role can write this object. |
Throws:
-
If role is neither a AV.Role nor a String.
- Type
- String
setWriteAccess(userId, allowed)
Set whether the given user id is allowed to write this object.
Parameters:
| Name | Type | Description |
|---|---|---|
userId |
An instance of AV.User or its objectId, or a AV.Role.. | |
allowed |
Boolean | Whether that user should have write access. |
toJSON() → {Object}
Returns a JSON-encoded version of the ACL.
Returns:
- Type
- Object