I follow Connect roles https://github.com/ForbesLindesay/connect-roles for authorization in my node js application every thing passes except this This is what is described in the link above
user.can(action) and user.is(action) Inside the views of an express application you may use user.can and user.is
which are equivalent to req.user.can and req.user.is
eg <% if (user.can('impersonate')) { %> <button id="impersonate">Impersonate</button> <% } %>
I tried to use it, but I am very confused, because in my opinion (my html page), how can I test a specific role. I need to call a service to check on the server. Because I cannot use directly, as in my app.js file, since this
var user = require('connect-roles'); user.use('access private page', function (req) { if (req.user.role ==== 'moderator') { return true; }}); app.get('/private', user.can('access private page'), function (req, res) { res.render('private'); });
source share