Private Readonly identifierProtected Readonly loggerPrivate Readonly readerPrivate addMerges the container permission set into the resource permission set based on the parent container rules for create/delete permissions.
Optional resourceSet: Partial<Record<CredentialGroup, Partial<Record<AccessMode, boolean>>>>Optional containerSet: Partial<Record<CredentialGroup, Partial<Record<AccessMode, boolean>>>>Checks if the input can be handled by this class. If it cannot handle the input, rejects with an error explaining why.
A promise resolving if the input can be handled, rejecting with an Error if not.
Input that could potentially be handled.
Private findFinds the identifiers for which we need parent permissions. Values are the parent identifier and the permissions they need.
Private getDetermines which permissions are required on the parent container.
Handles the given input. This may only be called if canHandle did not reject. When unconditionally calling both in sequence, consider handleSafe instead.
A promise resolving when handling is finished.
Input that needs to be handled.
Helper function that first runs canHandle followed by handle. Throws the error of canHandle if the data cannot be handled, or returns the result of handle otherwise.
A promise resolving if the input can be handled, rejecting with an Error if not.
Input data that will be handled if it can be handled.
Private interpretDetermines the create and delete permissions for the given resource permissions based on those of its parent container.
Determines
deleteandcreatepermissions for those resources that need it by making sure the parent container has the required permissions.Create requires
appendpermissions on the parent container. Delete requireswritepermissions on both the parent container and the resource itself.