add method on auth. req. to require permissions

Author: zefir-git

src/Server.ts

@@ -95,7 +95,7 @@ class Server<A> extends EventEmitter<Server.Events> {
                 return;
 
             this.emit("error", e as any);
-            this.errors._get(ServerErrorRegistry.ErrorCodes.INTERNAL, null)._send(res, this);
+            await this.errors._get(ServerErrorRegistry.ErrorCodes.INTERNAL, null)._send(res);
             return;
         }
 

src/ServerErrorRegistry.ts

@@ -24,6 +24,9 @@ class ServerErrorRegistry<A> {
 
             [ServerErrorRegistry.ErrorCodes.PRECONDITION_FAILED]:
                 new TextResponse("Precondition failed.", 412),
+
+            [ServerErrorRegistry.ErrorCodes.NO_PERMISSION]:
+                new TextResponse("You do not have permission to perform this action.", 403),
         };
     }
 
@@ -53,6 +56,7 @@ namespace ServerErrorRegistry {
         NO_ROUTE,
         INTERNAL,
         PRECONDITION_FAILED,
+        NO_PERMISSION,
     }
 }
 

src/auth/AuthenticatedRequest.ts

@@ -1,7 +1,9 @@
+import {Request} from "../Request.js";
+import {Response, ThrowableResponse} from "../response/index.js";
+import {ServerErrorRegistry} from "../ServerErrorRegistry.js";
 import {Authorisation} from "./Authorisation.js";
 import {Permissible} from "./Permissible.js";
 import {Permission} from "./Permission.js";
-import {Request} from "../Request.js";
 
 /**
  * A request with available {@link Authorisation}.
@@ -32,4 +34,36 @@ export class AuthenticatedRequest<A> extends Request<A> implements Permissible {
     public has(permission: Permission): boolean {
         return this.authorisation.has(permission);
     }
+
+    /**
+     * Require the request to have all the specified permissions.
+     * @param permissions The required permission.
+     * @param [response] Throw this response if the request does not have the permission. Defaults to 403 from
+     *     {@link ServerErrorRegistry}.
+     * @throws {@link ThrowableResponse} If the request does not have the permission.
+     */
+    public require(permissions: Iterable<Permission>, response?: Response<A>): void;
+
+    /**
+     * Require the request to have the specified permission.
+     * @param permission The required permission.
+     * @param [response] Throw this response if the request does not have the permission. Defaults to 403 from
+     *     {@link ServerErrorRegistry}.
+     * @throws {@link ThrowableResponse} If the request does not have the permission.
+     */
+    public require(permission: Permission, response?: Response<A>): void;
+    public require(required: Permission | Iterable<Permission>, response?: Response<A>): void {
+        if (required instanceof Permission) {
+            if (!this.has(required))
+                throw new ThrowableResponse(
+                    response ?? this.server.errors._get(ServerErrorRegistry.ErrorCodes.NO_PERMISSION, this)
+                );
+        }
+        else for (const permission of required) {
+            if (!this.has(permission))
+                throw new ThrowableResponse(
+                    response ?? this.server.errors._get(ServerErrorRegistry.ErrorCodes.NO_PERMISSION, this)
+                );
+        }
+    }
 }

src/response/ThrowableResponse.ts

@@ -3,7 +3,7 @@ import {Response} from "./Response.js";
 /**
  * An (error) response that is thrown. Will be caught by the server and sent to the client.
  */
-export class ThrowableResponse<T extends Response> extends Error {
+export class ThrowableResponse<T extends Response<any>> extends Error {
     public override name = ThrowableResponse.name;
 
     /**