Simplifying the hasPermission interface by always handling the array of permissions in the abstraction, not the interface.

Author: gpickin

.gitignore

@@ -11,4 +11,6 @@ test-harness/logs/**
 test-harness/modules/**
 
 # log files
-logs/**
+logs/**
+
+modules/**

models/jwt/JwtService.cfc

@@ -759,10 +759,7 @@ component accessors="true" singleton {
 				results.allow = (
 					tokenHasScopes( arguments.permissions, payload.scope )
 					||
-					variables.cbSecurity
-						.getAuthService()
-						.getUser()
-						.hasPermission( arguments.permissions )
+					variables.cbSecurity.has( arguments.permissions )
 				);
 				results.type = "authorization";
 			} else {

models/validators/CBAuthValidator.cfc

@@ -57,7 +57,7 @@ component singleton {
 		if ( variables.cbSecurity.getAuthService().isLoggedIn() ) {
 			// Do we have any permissions?
 			if ( listLen( arguments.permissions ) ) {
-				results.allow = variables.cbSecurity.getAuthService().getUser().hasPermission( arguments.permissions );
+				results.allow = variables.cbSecurity.has( arguments.permissions );
 				results.type  = "authorization";
 			} else {
 				// We are satisfied!