1 |
|
2 |
|
3 | async function getManagementToken(auth: RT.Auth0): Promise<string> {
|
4 | const response = await fetch(`https://${auth.domain}/oauth/token`, {
|
5 | method: "POST",
|
6 | headers: { "Content-Type": "application/json" },
|
7 | body: JSON.stringify({
|
8 | grant_type: "client_credentials",
|
9 | client_id: auth.client_id,
|
10 | client_secret: auth.client_secret,
|
11 | audience: `https://${auth.domain}/api/v2/`,
|
12 | }),
|
13 | })
|
14 | if (!response.ok) {
|
15 | throw new Error(`${response.status} ${await response.text()}`)
|
16 | }
|
17 | const { access_token } = (await response.json()) as { access_token: string }
|
18 | return access_token
|
19 | }
|
20 |
|
21 | * Assign Permissions to Role
|
22 | * Add permissions to a role. Each permission needs a resource_server_identifier (API audience) and a permission_name.
|
23 | */
|
24 | export async function main(
|
25 | auth: RT.Auth0,
|
26 | role_id: string,
|
27 | permissions: { resource_server_identifier: string; permission_name: string }[]
|
28 | ) {
|
29 | const token = await getManagementToken(auth)
|
30 | const url = new URL(
|
31 | `https://${auth.domain}/api/v2/roles/${role_id}/permissions`
|
32 | )
|
33 |
|
34 | const response = await fetch(url, {
|
35 | method: "POST",
|
36 | headers: {
|
37 | Authorization: `Bearer ${token}`,
|
38 | "Content-Type": "application/json",
|
39 | Accept: "application/json",
|
40 | },
|
41 | body: JSON.stringify({ permissions }),
|
42 | })
|
43 |
|
44 | if (!response.ok) {
|
45 | throw new Error(`${response.status} ${await response.text()}`)
|
46 | }
|
47 |
|
48 | if (response.status === 204) return { success: true }
|
49 | return await response.json()
|
50 | }
|
51 |
|
;}%20.st6{fill:url(%23SVGID_00000021089067129159788970000008246765442136188072_);}%20.st7{fill:url(%23SVGID_00000117639240116366130650000015074833605515028638_);}%20.st8{opacity:0.4;fill:url(%23SVGID_00000101781798616409025840000016567063639337360777_);}%20.st9{opacity:0.4;fill:url(%23SVGID_00000052086836598721292040000002033117744178971046_);}%20.st10{opacity:0.4;fill:url(%23SVGID_00000159460939004760751800000002448009281983951536_);}%20.st11{opacity:0.4;fill:url(%23SVGID_00000013177830667419993080000017721442101626521532_);}%20.st12{opacity:0.4;fill:url(%23SVGID_00000152235521444854938490000006526001119318383285_);}%20.st13{opacity:0.4;fill:url(%23SVGID_00000119823135212293698520000012774889010992664993_);}%20%3c/style%3e%3cg%3e%3cpolygon%20class='st2'%20points='134.78,14.22%20114.31,48.21%20101.33,69.75%20158.22,69.75%20177.97,36.95%20191.67,14.22%20'/%3e%3cpolygon%20class='st3'%20points='227.55,69.75%20186.61,69.75%20101.33,69.75%20129.78,119.02%20158.16,119.02%20228.61,119.02%20256,119.02%20'/%3e%3cpolygon%20class='st3'%20points='136.93,132.47%20116.46,167.93%2073.82,241.78%20130.71,241.78%20144.9,217.2%20180.13,156.18%20193.82,132.46%20'/%3e%3cpolygon%20class='st3'%20points='121.7,131.95%20101.23,96.49%2058.59,22.63%2030.15,71.91%2044.34,96.49%2079.57,157.5%2093.26,181.22%20'/%3e%3cpolygon%20class='st2'%20points='64.81,131.95%2025.15,131.21%200,130.74%2028.44,180.01%2066.73,180.72%2093.26,181.21%20'/%3e%3cpolygon%20class='st2'%20points='165.38,181.74%20184.58,216.46%20196.75,238.47%20225.19,189.2%20206.66,155.69%20193.83,132.46%20'/%3e%3c/g%3e%3c/svg%3e)
Windmill Hub