bot/apps/builder/services/api/dbRules.ts

import { CollaborationType, Plan, Prisma, User, WorkspaceRole } from 'db'
import prisma from 'libs/prisma'
import { NextApiResponse } from 'next'
import { env, forbidden, isNotEmpty } from 'utils'

const parseWhereFilter = (
  typebotIds: string[] | string,
  user: User,
  type: 'read' | 'write'
): Prisma.TypebotWhereInput => ({
  OR: [
    {
      id: typeof typebotIds === 'string' ? typebotIds : { in: typebotIds },
      collaborators: {
        some: {
          userId: user.id,
          type: type === 'write' ? CollaborationType.WRITE : undefined,
        },
      },
    },
    {
      id: typeof typebotIds === 'string' ? typebotIds : { in: typebotIds },
      workspace:
        (type === 'read' && user.email === process.env.ADMIN_EMAIL) ||
        isNotEmpty(env('E2E_TEST'))
          ? undefined
          : {
              members: {
                some: { userId: user.id, role: { not: WorkspaceRole.GUEST } },
              },
            },
    },
  ],
})

export const canReadTypebot = (typebotId: string, user: User) =>
  parseWhereFilter(typebotId, user, 'read')

export const canWriteTypebot = (typebotId: string, user: User) =>
  parseWhereFilter(typebotId, user, 'write')

export const canReadTypebots = (typebotIds: string[], user: User) =>
  parseWhereFilter(typebotIds, user, 'read')

export const canWriteTypebots = (typebotIds: string[], user: User) =>
  parseWhereFilter(typebotIds, user, 'write')

export const canEditGuests = (user: User, typebotId: string) => ({
  id: typebotId,
  workspace: {
    members: {
      some: { userId: user.id, role: { not: WorkspaceRole.GUEST } },
    },
  },
})

export const canPublishFileInput = async ({
  userId,
  workspaceId,
  res,
}: {
  userId: string
  workspaceId: string
  res: NextApiResponse
}) => {
  const workspace = await prisma.workspace.findFirst({
    where: { id: workspaceId, members: { some: { userId } } },
    select: { plan: true },
  })
  if (!workspace) {
    forbidden(res, 'workspace not found')
    return false
  }
  if (workspace?.plan === Plan.FREE) {
    forbidden(res, 'You need to upgrade your plan to use this feature')
    return false
  }
  return true
}
feat(editor): 🔒️ Add verification on backend for file input deployment 2022-06-13 08:21:48 +02:00			`import { CollaborationType, Plan, Prisma, User, WorkspaceRole } from 'db'`
			`import prisma from 'libs/prisma'`
			`import { NextApiResponse } from 'next'`
fix(docker): 🐛 Runtime public environment 2022-06-22 07:36:11 +02:00			`import { env, forbidden, isNotEmpty } from 'utils'`
fix(team): 🛂 Improve collab permissions 2022-03-29 11:20:15 +02:00
			`const parseWhereFilter = (`
feat(webhook): ⚡️ Show linked typebots results in webhook sample 2022-04-21 09:18:35 -07:00			`typebotIds: string[] \| string,`
fix(team): 🛂 Improve collab permissions 2022-03-29 11:20:15 +02:00			`user: User,`
			`type: 'read' \| 'write'`
			`): Prisma.TypebotWhereInput => ({`
			`OR: [`
			`{`
feat(webhook): ⚡️ Show linked typebots results in webhook sample 2022-04-21 09:18:35 -07:00			`id: typeof typebotIds === 'string' ? typebotIds : { in: typebotIds },`
fix(team): 🛂 Improve collab permissions 2022-03-29 11:20:15 +02:00			`collaborators: {`
			`some: {`
			`userId: user.id,`
			`type: type === 'write' ? CollaborationType.WRITE : undefined,`
			`},`
			`},`
			`},`
feat(editor): ✨ Team workspaces 2022-05-13 15:22:44 -07:00			`{`
			`id: typeof typebotIds === 'string' ? typebotIds : { in: typebotIds },`
			`workspace:`
			`(type === 'read' && user.email === process.env.ADMIN_EMAIL) \|\|`
fix(docker): 🐛 Runtime public environment 2022-06-22 07:36:11 +02:00			`isNotEmpty(env('E2E_TEST'))`
feat(editor): ✨ Team workspaces 2022-05-13 15:22:44 -07:00			`? undefined`
			`: {`
			`members: {`
			`some: { userId: user.id, role: { not: WorkspaceRole.GUEST } },`
			`},`
			`},`
			`},`
fix(team): 🛂 Improve collab permissions 2022-03-29 11:20:15 +02:00			`],`
			`})`

			`export const canReadTypebot = (typebotId: string, user: User) =>`
			`parseWhereFilter(typebotId, user, 'read')`

			`export const canWriteTypebot = (typebotId: string, user: User) =>`
			`parseWhereFilter(typebotId, user, 'write')`
feat(webhook): ⚡️ Show linked typebots results in webhook sample 2022-04-21 09:18:35 -07:00
			`export const canReadTypebots = (typebotIds: string[], user: User) =>`
			`parseWhereFilter(typebotIds, user, 'read')`

			`export const canWriteTypebots = (typebotIds: string[], user: User) =>`
			`parseWhereFilter(typebotIds, user, 'write')`
feat(editor): ✨ Team workspaces 2022-05-13 15:22:44 -07:00
			`export const canEditGuests = (user: User, typebotId: string) => ({`
			`id: typebotId,`
			`workspace: {`
			`members: {`
			`some: { userId: user.id, role: { not: WorkspaceRole.GUEST } },`
			`},`
			`},`
			`})`
feat(editor): 🔒️ Add verification on backend for file input deployment 2022-06-13 08:21:48 +02:00
			`export const canPublishFileInput = async ({`
			`userId,`
			`workspaceId,`
			`res,`
			`}: {`
			`userId: string`
			`workspaceId: string`
			`res: NextApiResponse`
			`}) => {`
			`const workspace = await prisma.workspace.findFirst({`
			`where: { id: workspaceId, members: { some: { userId } } },`
			`select: { plan: true },`
			`})`
			`if (!workspace) {`
			`forbidden(res, 'workspace not found')`
			`return false`
			`}`
			`if (workspace?.plan === Plan.FREE) {`
			`forbidden(res, 'You need to upgrade your plan to use this feature')`
			`return false`
			`}`
			`return true`
			`}`