From c7eab9a029053210edb6d97840af37efc2d1d3f5 Mon Sep 17 00:00:00 2001
From: Ricardo Olsen <olsen.ricardo@gmail.com>
Date: Tue, 3 Sep 2024 16:09:27 -0300
Subject: [PATCH] Limit access to authorized data on Events, Alarms, Tabular
 viewers.

---
 src/server_realtime_auth/index.js | 14 ++++++++++++++
 1 file changed, 14 insertions(+)

diff --git a/src/server_realtime_auth/index.js b/src/server_realtime_auth/index.js
index 6cec22d7..93bf5cc4 100644
--- a/src/server_realtime_auth/index.js
+++ b/src/server_realtime_auth/index.js
@@ -1900,6 +1900,13 @@ let pool = null
 
                 let Results = []
                 results.map((node) => {
+                  // check for group1 list in user rights (from token)
+                  if (AUTHENTICATION && userRights.group1List.length > 0) {
+                    if (!userRights.group1List.includes(node.group1)) {
+                      // Access to data denied!
+                      return node
+                    }
+                  }
                   let NodeId = {
                     IdType: opcIdTypeString,
                     Id: node.tag,
@@ -2122,6 +2129,13 @@ let pool = null
 
           let Results = []
           await results.map((node) => {
+            // check for group1 list in user rights (from token)
+            if (AUTHENTICATION && userRights.group1List.length > 0) {
+              if (!userRights.group1List.includes(node.group1)) {
+                // Access to data denied!
+                return node
+              }
+            }
             let Value = {
               Value: {
                 Type: opc.DataType.String,