gcg/static-cms
0
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Check user permissions and metadata every CMS load.

Browse Source 
Before, if the CMS was loading user OAuth credentials from
`localStorage`, then user write access would not be checked again.
However, the `config.yml` repo could be changed, which would cause the
user to be still logged in even if they did not have write permissions.
Also, if the user had updated their metadata (avatar, etc.), the CMS
would not update that either.
This commit is contained in:
Caleb
2017-08-27 20:12:54 -06:00
parent 4634918001
commit 53e5dfee7c
3 changed files with 9 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
src/backends/backend.js
View File

@ -78,7 +78,10 @@ class Backend {
if (this.user) { return this.user; }
const stored = this.authStore && this.authStore.retrieve();
if (stored) {
return Promise.resolve(this.implementation.setUser(stored)).then(() => stored);
return Promise.resolve(this.implementation.setUser(stored)).then((user) => {
this.authStore.store(user);
return user;
});
}
return Promise.resolve(null);
}