feat(opsserver,web): replace the Angular UI and REST management layer with a TypedRequest-based ops server and bundled web frontend

2026-03-20 16:43:44 +00:00
parent 0fc74ff995
commit d4f758ce0f
159 changed files with 12465 additions and 14861 deletions
--- a/ts/services/permission.service.ts
+++ b/ts/services/permission.service.ts
@@ -4,18 +4,18 @@

 import type {
  TOrganizationRole,
-  TTeamRole,
-  TRepositoryRole,
  TRegistryProtocol,
+  TRepositoryRole,
+  TTeamRole,
 } from '../interfaces/auth.interfaces.ts';
 import {
-  User,
  Organization,
  OrganizationMember,
-  Team,
-  TeamMember,
  Repository,
  RepositoryPermission,
+  Team,
+  TeamMember,
+  User,
 } from '../models/index.ts';

 export type TAction = 'read' | 'write' | 'delete' | 'admin';
@@ -71,7 +71,10 @@ export class PermissionService {
    if (!context.organizationId) return result;

    // Get organization membership
-    const orgMember = await OrganizationMember.findMembership(context.organizationId, context.userId);
+    const orgMember = await OrganizationMember.findMembership(
+      context.organizationId,
+      context.userId,
+    );
    if (orgMember) {
      result.organizationRole = orgMember.role;

@@ -137,7 +140,10 @@ export class PermissionService {
    }

    // Get direct repository permission (highest priority)
-    const repoPerm = await RepositoryPermission.findPermission(context.repositoryId, context.userId);
+    const repoPerm = await RepositoryPermission.findPermission(
+      context.repositoryId,
+      context.userId,
+    );
    if (repoPerm) {
      result.repositoryRole = repoPerm.role;
      this.applyRole(result, repoPerm.role);
@@ -151,7 +157,7 @@ export class PermissionService {
   */
  public async checkPermission(
    context: IPermissionContext,
-    action: TAction
+    action: TAction,
  ): Promise<boolean> {
    const permissions = await this.resolvePermissions(context);

@@ -176,11 +182,11 @@ export class PermissionService {
    userId: string,
    organizationId: string,
    repositoryId: string,
-    action: 'read' | 'write' | 'delete'
+    action: 'read' | 'write' | 'delete',
  ): Promise<boolean> {
    return await this.checkPermission(
      { userId, organizationId, repositoryId },
-      action
+      action,
    );
  }

@@ -202,7 +208,7 @@ export class PermissionService {
  public async canManageRepository(
    userId: string,
    organizationId: string,
-    repositoryId: string
+    repositoryId: string,
  ): Promise<boolean> {
    const permissions = await this.resolvePermissions({
      userId,
@@ -217,7 +223,7 @@ export class PermissionService {
   */
  public async getAccessibleRepositories(
    userId: string,
-    organizationId: string
+    organizationId: string,
  ): Promise<Repository[]> {
    const user = await User.findById(userId);
    if (!user || !user.isActive) return [];