mirror of
https://github.com/documenso/documenso.git
synced 2025-11-13 00:03:33 +10:00
7f09ba72f4
This PR is handles the changes required to support envelopes. The new envelope editor/signing page will be hidden during release. The core changes here is to migrate the documents and templates model to a centralized envelopes model. Even though Documents and Templates are removed, from the user perspective they will still exist as we remap envelopes to documents and templates.
49 lines
1.2 KiB
TypeScript
49 lines
1.2 KiB
TypeScript
import type { Envelope, Field, Recipient } from '@prisma/client';
|
|
import { FieldType } from '@prisma/client';
|
|
|
|
import { AppError, AppErrorCode } from '../../errors/app-error';
|
|
import type { TRecipientActionAuth } from '../../types/document-auth';
|
|
import { isRecipientAuthorized } from './is-recipient-authorized';
|
|
|
|
export type ValidateFieldAuthOptions = {
|
|
documentAuthOptions: Envelope['authOptions'];
|
|
recipient: Pick<Recipient, 'authOptions' | 'email' | 'envelopeId'>;
|
|
field: Field;
|
|
userId?: number;
|
|
authOptions?: TRecipientActionAuth;
|
|
};
|
|
|
|
/**
|
|
* Throws an error if the reauth for a field is invalid.
|
|
*
|
|
* Returns the derived recipient action authentication if valid.
|
|
*/
|
|
export const validateFieldAuth = async ({
|
|
documentAuthOptions,
|
|
recipient,
|
|
field,
|
|
userId,
|
|
authOptions,
|
|
}: ValidateFieldAuthOptions) => {
|
|
// Override all non-signature fields to not require any auth.
|
|
if (field.type !== FieldType.SIGNATURE) {
|
|
return undefined;
|
|
}
|
|
|
|
const isValid = await isRecipientAuthorized({
|
|
type: 'ACTION',
|
|
documentAuthOptions,
|
|
recipient,
|
|
userId,
|
|
authOptions,
|
|
});
|
|
|
|
if (!isValid) {
|
|
throw new AppError(AppErrorCode.UNAUTHORIZED, {
|
|
message: 'Invalid authentication values',
|
|
});
|
|
}
|
|
|
|
return authOptions?.type;
|
|
};
|