Skip to content

Commit

Permalink
Split publish and create hooks
Browse files Browse the repository at this point in the history
  • Loading branch information
@Powersource
Powersource committed Nov 28, 2023
1 parent c923c3d commit 4a4ee8e
Show file tree
Hide file tree
Showing 2 changed files with 37 additions and 9 deletions.
44 changes: 36 additions & 8 deletions index.js
View file
Original file line number Diff line number Diff line change
Expand Up @@ -10,36 +10,64 @@ module.exports = {
init (ssb, config) {
const allowedTypes = getAllowedTypes(ssb, config)

const publishHook = ({ db2 }) => (publish, args) => {
const publishHook = (publish, args) => {
const [input, cb] = args

if (db2 ? input.allowPublic === true : get(input, ['options', 'allowPublic']) === true) {
if (get(input, ['options', 'allowPublic']) === true) {
// allowPublic and has recps, disallowed
if (hasRecps(input.content)) {
return cb(new Error('recps-guard: should not have recps && allowPublic, check your code'))
}

// allowPublic and no recps, allowed
return publish(db2 ? input : input.content, cb)
return publish(input.content, cb)
} else {
// without allowPublic, content isn't nested with db1 publish
const content = db2 ? input.content : input
const content = input

// no allowPublic and has recps/can publish without recps, allowed
if (
(db2 ? (input.encryptionFormat !== undefined) : false) ||
isString(content) ||
hasRecps(content) ||
allowedTypes.has(content.type)
) return publish(db2 ? input : content, cb)
) return publish(content, cb)

// no allowPublic and no recps, disallowed
return cb(new Error(`recps-guard: public messages of type "${content.type}" not allowed`))
}
}

const createHook = (create, args) => {
const [input, cb] = args

if (input.allowPublic === true) {
// allowPublic and has recps, disallowed
if (hasRecps(input.content)) {
return cb(new Error('recps-guard: should not have recps && allowPublic, check your code'))
}

// allowPublic and no recps, allowed
return create(input, cb)
} else {
// without allowPublic, content isn't nested with db1 publish
const content = input.content

// no allowPublic and has recps/can publish without recps, allowed
if (
(input.encryptionFormat !== undefined) ||
isString(content) ||
hasRecps(content) ||
allowedTypes.has(content.type)
) return create(input, cb)

// no allowPublic and no recps, disallowed
return cb(new Error(`recps-guard: public messages of type "${content.type}" not allowed`))
}

}

if (ssb.publish) {
ssb.publish.hook(publishHook({ db2: false }))
ssb.publish.hook(publishHook)

ssb.publish.hook = () => {
throw new Error('ssb-recps-guard must be the last to hook ssb.publish')
Expand All @@ -50,7 +78,7 @@ module.exports = {
}

if (ssb.db && ssb.db.create) {
ssb.db.create.hook(publishHook({ db2: true }))
ssb.db.create.hook(createHook)

ssb.db.create.hook = () => {
throw new Error('ssb-recps-guard must be the last to hook ssb.db.create')
Expand Down
2 changes: 1 addition & 1 deletion package.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -29,7 +29,7 @@
"ssb-config": "^3.4.6",
"ssb-db2": "^8.1.0",
"ssb-private1": "^1.0.1",
"ssb-tribes": "github:ssbc/ssb-tribes#pass-along-publish-opts",
"ssb-tribes": "github:ssbc/ssb-tribes",
"tap-spec": "^5.0.0",
"tape": "^5.7.2"
},
Expand Down

0 comments on commit 4a4ee8e

Please sign in to comment.