@constructive-io/graphql-server 4.18.0 → 4.18.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/esm/middleware/graphile.js +51 -1
- package/middleware/graphile.js +51 -1
- package/package.json +3 -3
|
@@ -18,31 +18,81 @@ const SAFE_ERROR_CODES = new Set([
|
|
|
18
18
|
'PERSISTED_QUERY_NOT_SUPPORTED',
|
|
19
19
|
// Auth
|
|
20
20
|
'UNAUTHENTICATED',
|
|
21
|
+
'NOT_AUTHENTICATED',
|
|
22
|
+
'USER_NOT_AUTHENTICATED',
|
|
21
23
|
'FORBIDDEN',
|
|
22
24
|
'BAD_USER_INPUT',
|
|
23
25
|
'INCORRECT_PASSWORD',
|
|
24
26
|
'PASSWORD_INSECURE',
|
|
27
|
+
'ACCOUNT_LOCKED',
|
|
25
28
|
'ACCOUNT_LOCKED_EXCEED_ATTEMPTS',
|
|
26
29
|
'ACCOUNT_DISABLED',
|
|
27
30
|
'ACCOUNT_EXISTS',
|
|
31
|
+
'ACCOUNT_NOT_FOUND',
|
|
32
|
+
'USER_NOT_FOUND',
|
|
33
|
+
'INVALID_USER',
|
|
34
|
+
'INVALID_TOKEN',
|
|
35
|
+
'INVALID_CODE',
|
|
36
|
+
'NO_PRIMARY_EMAIL',
|
|
37
|
+
'NO_CREDENTIALS',
|
|
28
38
|
'PASSWORD_LEN',
|
|
29
39
|
'INVITE_NOT_FOUND',
|
|
30
40
|
'INVITE_LIMIT',
|
|
31
41
|
'INVITE_EMAIL_NOT_FOUND',
|
|
32
42
|
'INVALID_CREDENTIALS',
|
|
43
|
+
// Auth method toggles (app-level allow_* settings)
|
|
44
|
+
'SIGN_UP_DISABLED',
|
|
45
|
+
'PASSWORD_SIGN_IN_DISABLED',
|
|
46
|
+
'PASSWORD_SIGN_UP_DISABLED',
|
|
47
|
+
'SSO_SIGN_IN_DISABLED',
|
|
48
|
+
'SSO_SIGN_UP_DISABLED',
|
|
49
|
+
'SSO_ACCOUNT_NOT_FOUND',
|
|
50
|
+
'CONNECTED_ACCOUNT_NOT_FOUND',
|
|
51
|
+
'MAGIC_LINK_SIGN_IN_DISABLED',
|
|
52
|
+
'MAGIC_LINK_SIGN_UP_DISABLED',
|
|
53
|
+
'EMAIL_OTP_SIGN_IN_DISABLED',
|
|
54
|
+
'SMS_SIGN_IN_DISABLED',
|
|
55
|
+
'SMS_SIGN_UP_DISABLED',
|
|
33
56
|
// CSRF
|
|
34
57
|
'CSRF_TOKEN_REQUIRED',
|
|
35
58
|
'INVALID_CSRF_TOKEN',
|
|
36
59
|
// Rate limiting / throttling
|
|
37
60
|
'TOO_MANY_REQUESTS',
|
|
38
61
|
'PASSWORD_RESET_LOCKED_EXCEED_ATTEMPTS',
|
|
39
|
-
// TOTP
|
|
62
|
+
// TOTP / MFA / step-up
|
|
40
63
|
'TOTP_NOT_ENABLED',
|
|
64
|
+
'TOTP_ALREADY_ENABLED',
|
|
65
|
+
'TOTP_SETUP_NOT_INITIATED',
|
|
66
|
+
'MFA_REQUIRED',
|
|
67
|
+
'MFA_CHALLENGE_EXPIRED',
|
|
68
|
+
'INVALID_MFA_CHALLENGE',
|
|
69
|
+
'STEP_UP_REQUIRED',
|
|
70
|
+
'STEP_UP_REQUIRED_PASSWORD',
|
|
71
|
+
'STEP_UP_REQUIRED_PASSWORD_OR_MFA',
|
|
72
|
+
// Sessions / API keys
|
|
73
|
+
'SESSION_NOT_FOUND',
|
|
74
|
+
'API_KEY_NOT_FOUND',
|
|
75
|
+
'CANNOT_DISCONNECT_LAST_AUTH_METHOD',
|
|
76
|
+
'CANNOT_REVOKE_CURRENT_SESSION',
|
|
41
77
|
// Account / resource operations
|
|
78
|
+
'NOT_FOUND',
|
|
42
79
|
'NULL_VALUES_DISALLOWED',
|
|
43
80
|
'OBJECT_NOT_FOUND',
|
|
81
|
+
'OBJECT_NO_UPDATE',
|
|
44
82
|
'LIMIT_REACHED',
|
|
45
83
|
'REQUIRES_ONE_OWNER',
|
|
84
|
+
'DELETE_FIRST',
|
|
85
|
+
'REF_NOT_FOUND',
|
|
86
|
+
'CROSS_DATABASE_REF',
|
|
87
|
+
'GROUPS_REQ_ENTITIES',
|
|
88
|
+
'ALREADY_SCHEDULED',
|
|
89
|
+
'SINGLETON_TABLE',
|
|
90
|
+
// Entity/field immutability
|
|
91
|
+
'IMMUTABLE_FIELD',
|
|
92
|
+
'IMMUTABLE_PROPS',
|
|
93
|
+
'IMMUTABLE_PEOPLESTAMPS',
|
|
94
|
+
'IMMUTABLE_TIMESTAMPS',
|
|
95
|
+
'CONST_TYPE_FIELDS_IMMUTABLE',
|
|
46
96
|
// PublicKeySignature
|
|
47
97
|
'FEATURE_DISABLED',
|
|
48
98
|
'INVALID_PUBLIC_KEY',
|
package/middleware/graphile.js
CHANGED
|
@@ -27,31 +27,81 @@ const SAFE_ERROR_CODES = new Set([
|
|
|
27
27
|
'PERSISTED_QUERY_NOT_SUPPORTED',
|
|
28
28
|
// Auth
|
|
29
29
|
'UNAUTHENTICATED',
|
|
30
|
+
'NOT_AUTHENTICATED',
|
|
31
|
+
'USER_NOT_AUTHENTICATED',
|
|
30
32
|
'FORBIDDEN',
|
|
31
33
|
'BAD_USER_INPUT',
|
|
32
34
|
'INCORRECT_PASSWORD',
|
|
33
35
|
'PASSWORD_INSECURE',
|
|
36
|
+
'ACCOUNT_LOCKED',
|
|
34
37
|
'ACCOUNT_LOCKED_EXCEED_ATTEMPTS',
|
|
35
38
|
'ACCOUNT_DISABLED',
|
|
36
39
|
'ACCOUNT_EXISTS',
|
|
40
|
+
'ACCOUNT_NOT_FOUND',
|
|
41
|
+
'USER_NOT_FOUND',
|
|
42
|
+
'INVALID_USER',
|
|
43
|
+
'INVALID_TOKEN',
|
|
44
|
+
'INVALID_CODE',
|
|
45
|
+
'NO_PRIMARY_EMAIL',
|
|
46
|
+
'NO_CREDENTIALS',
|
|
37
47
|
'PASSWORD_LEN',
|
|
38
48
|
'INVITE_NOT_FOUND',
|
|
39
49
|
'INVITE_LIMIT',
|
|
40
50
|
'INVITE_EMAIL_NOT_FOUND',
|
|
41
51
|
'INVALID_CREDENTIALS',
|
|
52
|
+
// Auth method toggles (app-level allow_* settings)
|
|
53
|
+
'SIGN_UP_DISABLED',
|
|
54
|
+
'PASSWORD_SIGN_IN_DISABLED',
|
|
55
|
+
'PASSWORD_SIGN_UP_DISABLED',
|
|
56
|
+
'SSO_SIGN_IN_DISABLED',
|
|
57
|
+
'SSO_SIGN_UP_DISABLED',
|
|
58
|
+
'SSO_ACCOUNT_NOT_FOUND',
|
|
59
|
+
'CONNECTED_ACCOUNT_NOT_FOUND',
|
|
60
|
+
'MAGIC_LINK_SIGN_IN_DISABLED',
|
|
61
|
+
'MAGIC_LINK_SIGN_UP_DISABLED',
|
|
62
|
+
'EMAIL_OTP_SIGN_IN_DISABLED',
|
|
63
|
+
'SMS_SIGN_IN_DISABLED',
|
|
64
|
+
'SMS_SIGN_UP_DISABLED',
|
|
42
65
|
// CSRF
|
|
43
66
|
'CSRF_TOKEN_REQUIRED',
|
|
44
67
|
'INVALID_CSRF_TOKEN',
|
|
45
68
|
// Rate limiting / throttling
|
|
46
69
|
'TOO_MANY_REQUESTS',
|
|
47
70
|
'PASSWORD_RESET_LOCKED_EXCEED_ATTEMPTS',
|
|
48
|
-
// TOTP
|
|
71
|
+
// TOTP / MFA / step-up
|
|
49
72
|
'TOTP_NOT_ENABLED',
|
|
73
|
+
'TOTP_ALREADY_ENABLED',
|
|
74
|
+
'TOTP_SETUP_NOT_INITIATED',
|
|
75
|
+
'MFA_REQUIRED',
|
|
76
|
+
'MFA_CHALLENGE_EXPIRED',
|
|
77
|
+
'INVALID_MFA_CHALLENGE',
|
|
78
|
+
'STEP_UP_REQUIRED',
|
|
79
|
+
'STEP_UP_REQUIRED_PASSWORD',
|
|
80
|
+
'STEP_UP_REQUIRED_PASSWORD_OR_MFA',
|
|
81
|
+
// Sessions / API keys
|
|
82
|
+
'SESSION_NOT_FOUND',
|
|
83
|
+
'API_KEY_NOT_FOUND',
|
|
84
|
+
'CANNOT_DISCONNECT_LAST_AUTH_METHOD',
|
|
85
|
+
'CANNOT_REVOKE_CURRENT_SESSION',
|
|
50
86
|
// Account / resource operations
|
|
87
|
+
'NOT_FOUND',
|
|
51
88
|
'NULL_VALUES_DISALLOWED',
|
|
52
89
|
'OBJECT_NOT_FOUND',
|
|
90
|
+
'OBJECT_NO_UPDATE',
|
|
53
91
|
'LIMIT_REACHED',
|
|
54
92
|
'REQUIRES_ONE_OWNER',
|
|
93
|
+
'DELETE_FIRST',
|
|
94
|
+
'REF_NOT_FOUND',
|
|
95
|
+
'CROSS_DATABASE_REF',
|
|
96
|
+
'GROUPS_REQ_ENTITIES',
|
|
97
|
+
'ALREADY_SCHEDULED',
|
|
98
|
+
'SINGLETON_TABLE',
|
|
99
|
+
// Entity/field immutability
|
|
100
|
+
'IMMUTABLE_FIELD',
|
|
101
|
+
'IMMUTABLE_PROPS',
|
|
102
|
+
'IMMUTABLE_PEOPLESTAMPS',
|
|
103
|
+
'IMMUTABLE_TIMESTAMPS',
|
|
104
|
+
'CONST_TYPE_FIELDS_IMMUTABLE',
|
|
55
105
|
// PublicKeySignature
|
|
56
106
|
'FEATURE_DISABLED',
|
|
57
107
|
'INVALID_PUBLIC_KEY',
|
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@constructive-io/graphql-server",
|
|
3
|
-
"version": "4.18.
|
|
3
|
+
"version": "4.18.2",
|
|
4
4
|
"author": "Constructive <developers@constructive.io>",
|
|
5
5
|
"description": "Constructive GraphQL Server",
|
|
6
6
|
"main": "index.js",
|
|
@@ -63,7 +63,7 @@
|
|
|
63
63
|
"graphile-build-pg": "5.0.0",
|
|
64
64
|
"graphile-cache": "^3.5.0",
|
|
65
65
|
"graphile-config": "1.0.0",
|
|
66
|
-
"graphile-settings": "^4.21.
|
|
66
|
+
"graphile-settings": "^4.21.1",
|
|
67
67
|
"graphile-utils": "5.0.0",
|
|
68
68
|
"graphql": "16.13.0",
|
|
69
69
|
"graphql-upload": "^13.0.0",
|
|
@@ -90,5 +90,5 @@
|
|
|
90
90
|
"nodemon": "^3.1.14",
|
|
91
91
|
"ts-node": "^10.9.2"
|
|
92
92
|
},
|
|
93
|
-
"gitHead": "
|
|
93
|
+
"gitHead": "01775e13ef44c0e3b6c04a28b8b85f33f86af48b"
|
|
94
94
|
}
|