mikermcneil · December 14, 2015 19:59
diff --git a/cascading-policies.js b/cascading-policies.js
 /**
 * Policy defines middleware that is run before each controller/action.
 * Any policy dropped into the /policies directory is made globally available through sails.policies
 * Below, use the string name of the policy (for instance authenticated.js would be "authenticated")
 */
 module.exports.policies = {

  // Default policy (apply to everything)
  // equivalent to ['authenticated']
  '*': 'authenticated'
  
  // To access any actions in the MessageController, you must pass all policies on '*', as well as 'canMessage'
  // equivalent to ['authenticated', 'canMessage']
  'message': 'canMessage',
  
  
  'hotdog': {
    // To access the 'index' action in the HotdogController, 
    // you must pass all policies on '*', as well as 'hotdogQuotaNotExceeded'
    // equivalent to ['authenticated', 'hotdogQuotaNotExceeded']
    'index': 'hotdogQuotaNotExceeded'
  },

  // On the UserController, apply all policies on '*' as well as:
 	'user': {
    
    // For **ALL** actions in the UserController, you must pass 'authenticated' and 'canAccessUsers' policies (in order)
    // equivalent to ['authenticated', 'canAccessUsers']
   '*': 'canAccessUsers',
   
    // To access the 'create' action, you must pass all of the * and user/* policies,
    // THEN pass the 'canCreateUsers' and 'userQuotaNotExceeded' policies (in order)
    // equivalent to ['authenticated', 'canAccessUsers', 'canCreateUsers', 'userQuotaNotExceeded']
   'create': ['canCreateUsers', 'userQuotaNotExceeded'],
   
    // To access the 'destroy' action, you must pass all of the * and user/* policies,
    // THEN pass the 'canDestroyUsers' policy
    // equivalent to ['authenticated', 'canAccessUsers', 'canDestroysers']
    'destroy': 'canDestroyUsers'
 	}
  
 };
	/**
	* Policy defines middleware that is run before each controller/action.
	* Any policy dropped into the /policies directory is made globally available through sails.policies
	* Below, use the string name of the policy (for instance authenticated.js would be "authenticated")
	*/
	module.exports.policies = {

	// Default policy (apply to everything)
	// equivalent to ['authenticated']
	'*': 'authenticated'

	// To access any actions in the MessageController, you must pass all policies on '*', as well as 'canMessage'
	// equivalent to ['authenticated', 'canMessage']
	'message': 'canMessage',


	'hotdog': {
	// To access the 'index' action in the HotdogController,
	// you must pass all policies on '*', as well as 'hotdogQuotaNotExceeded'
	// equivalent to ['authenticated', 'hotdogQuotaNotExceeded']
	'index': 'hotdogQuotaNotExceeded'
	},

	// On the UserController, apply all policies on '*' as well as:
	'user': {

	// For ALL actions in the UserController, you must pass 'authenticated' and 'canAccessUsers' policies (in order)
	// equivalent to ['authenticated', 'canAccessUsers']
	'*': 'canAccessUsers',

	// To access the 'create' action, you must pass all of the * and user/* policies,
	// THEN pass the 'canCreateUsers' and 'userQuotaNotExceeded' policies (in order)
	// equivalent to ['authenticated', 'canAccessUsers', 'canCreateUsers', 'userQuotaNotExceeded']
	'create': ['canCreateUsers', 'userQuotaNotExceeded'],

	// To access the 'destroy' action, you must pass all of the * and user/* policies,
	// THEN pass the 'canDestroyUsers' policy
	// equivalent to ['authenticated', 'canAccessUsers', 'canDestroysers']
	'destroy': 'canDestroyUsers'
	}

	};
No results found