Private Readonly identifierProtected Readonly loggerPrivate Readonly readerPrivate addMerges the container permission set into the resource permission set based on the parent container rules for create/delete permissions.
Optional resourceSet: Partial<Record<AccessMode, boolean>>Optional containerSet: Partial<Record<AccessMode, boolean>>Checks if the input can be handled by this class. If it cannot handle the input, rejects with an error explaining why.
Input that could potentially be handled.
A promise resolving if the input can be handled, rejecting with an Error if not.
Private findFinds the identifiers for which we need parent permissions. Values are the parent identifier and the permissions they need.
Private getDetermines which permissions are required on the parent container.
Handles the given input. This may only be called if canHandle did not reject. When unconditionally calling both in sequence, consider handleSafe instead.
Input that needs to be handled.
A promise resolving when handling is finished.
Helper function that first runs canHandle followed by handle. Throws the error of canHandle if the data cannot be handled, or returns the result of handle otherwise.
Input data that will be handled if it can be handled.
A promise resolving if the input can be handled, rejecting with an Error if not.
Private interpretDetermines the create and delete permissions for the given resource permissions based on those of its parent container.
Determines
deleteandcreatepermissions for those resources that need it by making sure the parent container has the required permissions.Create requires
appendpermissions on the parent container. Delete requireswritepermissions on both the parent container and the resource itself.