Berechtigungen werden nun beim Verbinden überprüft, Bannen wird nun im Piloten-fenster gelogt

2025-06-23 23:30:12 -07:00
parent dabcad2525
commit 2e5340d8be
14 changed files with 224 additions and 39 deletions
--- a/apps/dispatch-server/socket-events/connect-dispatch.ts
+++ b/apps/dispatch-server/socket-events/connect-dispatch.ts
@@ -10,7 +10,14 @@ export const handleConnectDispatch =
 			const user: User = socket.data.user; // User ID aus dem JWT-Token

 			if (!user) return Error("User not found");
-			console.log("Disponent connected:", user.publicId);
+
+			if (!user.permissions.includes("DISPO")) {
+				socket.emit("connect-message", {
+					message: "Fehlende Berechtigung",
+				});
+				socket.disconnect();
+				return;
+			}

 			if (!user.permissions?.includes("DISPO")) {
 				socket.emit("error", "You do not have permission to connect to the dispatch server.");