npm - @nocobase/plugin-acl - Versions diffs - 0.11.1-alpha.5 → 0.12.0-alpha.1 - Mend

@nocobase/plugin-acl 0.11.1-alpha.5 → 0.12.0-alpha.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (96) hide show

package/client.d.ts +2 -3
package/client.js +1 -1
package/dist/client/index.js +11 -0
package/{lib/server → dist}/index.d.ts +1 -0
package/dist/index.js +18 -0
package/{src/server/actions/available-actions.ts → dist/server/actions/available-actions.js} +7 -5
package/{src/server/actions/role-check.ts → dist/server/actions/role-check.js} +17 -22
package/dist/server/actions/role-collections.js +53 -0
package/dist/server/actions/user-setDefaultRole.js +43 -0
package/dist/server/collections/roles-users.js +10 -0
package/dist/server/collections/roles.js +103 -0
package/dist/server/collections/rolesResources.js +35 -0
package/dist/server/collections/rolesResourcesActions.js +33 -0
package/dist/server/collections/rolesResourcesScopes.js +27 -0
package/dist/server/collections/users.js +35 -0
package/dist/server/index.js +11 -0
package/dist/server/middlewares/setCurrentRole.js +31 -0
package/dist/server/migrations/20221214072638-set-role-snippets.js +25 -0
package/dist/server/model/RoleModel.js +23 -0
package/dist/server/model/RoleResourceActionModel.js +64 -0
package/dist/server/model/RoleResourceModel.js +55 -0
package/dist/server/server.js +709 -0
package/package.json +12 -21
package/server.d.ts +3 -3
package/server.js +1 -1
package/lib/client/index.js +0 -22
package/lib/index.js +0 -13
package/lib/server/actions/available-actions.js +0 -34
package/lib/server/actions/role-check.js +0 -77
package/lib/server/actions/role-collections.js +0 -98
package/lib/server/actions/user-setDefaultRole.js +0 -52
package/lib/server/collections/roles-users.js +0 -16
package/lib/server/collections/roles.js +0 -92
package/lib/server/collections/rolesResources.js +0 -31
package/lib/server/collections/rolesResourcesActions.js +0 -31
package/lib/server/collections/rolesResourcesScopes.js +0 -25
package/lib/server/collections/users.js +0 -41
package/lib/server/index.js +0 -13
package/lib/server/middlewares/setCurrentRole.js +0 -45
package/lib/server/migrations/20221214072638-set-role-snippets.js +0 -43
package/lib/server/model/RoleModel.js +0 -35
package/lib/server/model/RoleResourceActionModel.js +0 -91
package/lib/server/model/RoleResourceModel.js +0 -106
package/lib/server/server.js +0 -947
package/src/client/index.ts +0 -8
package/src/index.ts +0 -1
package/src/server/__tests__/acl.test.ts +0 -835
package/src/server/__tests__/actions.test.ts +0 -141
package/src/server/__tests__/association-field.test.ts +0 -413
package/src/server/__tests__/configuration.test.ts +0 -70
package/src/server/__tests__/list-action.test.ts +0 -446
package/src/server/__tests__/middleware.test.ts +0 -210
package/src/server/__tests__/own.test.ts +0 -124
package/src/server/__tests__/prepare.ts +0 -20
package/src/server/__tests__/role-check.test.ts +0 -46
package/src/server/__tests__/role-resource.test.ts +0 -177
package/src/server/__tests__/role-user.test.ts +0 -127
package/src/server/__tests__/role.test.ts +0 -118
package/src/server/__tests__/scope.test.ts +0 -55
package/src/server/__tests__/setCurrentRole.test.ts +0 -86
package/src/server/__tests__/snippets.test.ts +0 -35
package/src/server/__tests__/users.test.ts +0 -136
package/src/server/__tests__/write-role-to-acl.test.ts +0 -41
package/src/server/actions/role-collections.ts +0 -95
package/src/server/actions/user-setDefaultRole.ts +0 -47
package/src/server/collections/roles-users.ts +0 -8
package/src/server/collections/roles.ts +0 -101
package/src/server/collections/rolesResources.ts +0 -33
package/src/server/collections/rolesResourcesActions.ts +0 -31
package/src/server/collections/rolesResourcesScopes.ts +0 -25
package/src/server/collections/users.ts +0 -31
package/src/server/index.ts +0 -1
package/src/server/middlewares/setCurrentRole.ts +0 -35
package/src/server/migrations/20221214072638-set-role-snippets.ts +0 -23
package/src/server/model/RoleModel.ts +0 -23
package/src/server/model/RoleResourceActionModel.ts +0 -95
package/src/server/model/RoleResourceModel.ts +0 -74
package/src/server/server.ts +0 -854
/package/{lib → dist}/client/index.d.ts +0 -0
/package/{lib → dist}/server/actions/available-actions.d.ts +0 -0
/package/{lib → dist}/server/actions/role-check.d.ts +0 -0
/package/{lib → dist}/server/actions/role-collections.d.ts +0 -0
/package/{lib → dist}/server/actions/user-setDefaultRole.d.ts +0 -0
/package/{lib → dist}/server/collections/roles-users.d.ts +0 -0
/package/{lib → dist}/server/collections/roles.d.ts +0 -0
/package/{lib → dist}/server/collections/rolesResources.d.ts +0 -0
/package/{lib → dist}/server/collections/rolesResourcesActions.d.ts +0 -0
/package/{lib → dist}/server/collections/rolesResourcesScopes.d.ts +0 -0
/package/{lib → dist}/server/collections/users.d.ts +0 -0
/package/{lib → dist/server}/index.d.ts +0 -0
/package/{lib → dist}/server/middlewares/setCurrentRole.d.ts +0 -0
/package/{lib → dist}/server/migrations/20221214072638-set-role-snippets.d.ts +0 -0
/package/{lib → dist}/server/model/RoleModel.d.ts +0 -0
/package/{lib → dist}/server/model/RoleResourceActionModel.d.ts +0 -0
/package/{lib → dist}/server/model/RoleResourceModel.d.ts +0 -0
/package/{lib → dist}/server/server.d.ts +0 -0

package/src/server/__tests__/setCurrentRole.test.ts DELETED Viewed

@@ -1,86 +0,0 @@
-import Database from '@nocobase/database';
-import UsersPlugin from '@nocobase/plugin-users';
-import { MockServer } from '@nocobase/test';
-import { setCurrentRole } from '../middlewares/setCurrentRole';
-import { prepareApp } from './prepare';
-describe('role', () => {
-  let api: MockServer;
-  let db: Database;
-  let usersPlugin: UsersPlugin;
-  let ctx;
-  beforeEach(async () => {
-    api = await prepareApp();
-    db = api.db;
-    usersPlugin = api.getPlugin('users');
-    ctx = {
-      db,
-      state: {
-        currentRole: '',
-      },
-    };
-  });
-  afterEach(async () => {
-    await api.destroy();
-  });
-  it('should set role with X-Role when exists', async () => {
-    ctx.state.currentUser = await db.getRepository('users').findOne({
-      appends: ['roles'],
-    });
-    ctx.get = function (name) {
-      if (name === 'X-Role') {
-        return 'admin';
-      }
-    };
-    await setCurrentRole(ctx, () => {});
-    expect(ctx.state.currentRole).toBe('admin');
-  });
-  it('should set role with default', async () => {
-    ctx.state.currentUser = await db.getRepository('users').findOne({
-      appends: ['roles'],
-    });
-    ctx.get = function (name) {
-      if (name === 'X-Role') {
-        return '';
-      }
-    };
-    await setCurrentRole(ctx, () => {});
-    expect(ctx.state.currentRole).toBe('root');
-  });
-  it('should throw 401', async () => {
-    ctx.state.currentUser = await db.getRepository('users').findOne({
-      appends: ['roles'],
-    });
-    ctx.get = function (name) {
-      if (name === 'X-Role') {
-        return 'abc';
-      }
-    };
-    const throwFn = jest.fn();
-    ctx.throw = throwFn;
-    await setCurrentRole(ctx, () => {});
-    expect(throwFn).lastCalledWith(401, 'User role not found');
-    expect(ctx.state.currentRole).not.toBeDefined();
-  });
-  it('should set role with anonymous', async () => {
-    ctx.state.currentUser = await db.getRepository('users').findOne({
-      appends: ['roles'],
-    });
-    ctx.get = function (name) {
-      if (name === 'X-Role') {
-        return 'anonymous';
-      }
-    };
-    await setCurrentRole(ctx, () => {});
-    expect(ctx.state.currentRole).toBe('anonymous');
-  });
-});

package/src/server/__tests__/snippets.test.ts DELETED Viewed

@@ -1,35 +0,0 @@
-import { MockServer } from '@nocobase/test';
-import { prepareApp } from './prepare';
-describe('snippet', () => {
-  let app: MockServer;
-  beforeEach(async () => {
-    app = await prepareApp();
-  });
-  afterEach(async () => {
-    await app.destroy();
-  });
-  it('should not allow to create collections when global allow create', async () => {
-    await app.db.getRepository('roles').create({
-      values: {
-        name: 'testRole',
-        strategy: { actions: ['view', 'update:own', 'destroy:own', 'create'] },
-        snippets: ['!ui.*', '!pm', '!pm.*'],
-      },
-    });
-    const user = await app.db.getRepository('users').create({
-      values: {
-        roles: ['testRole'],
-      },
-    });
-    const userPlugin: any = app.getPlugin('users');
-    const userAgent: any = app.agent().login(user);
-    const createCollectionResponse = await userAgent.resource('collections').create({});
-    expect(createCollectionResponse.statusCode).toEqual(403);
-  });
-});

package/src/server/__tests__/users.test.ts DELETED Viewed

@@ -1,136 +0,0 @@
-import Database from '@nocobase/database';
-import { MockServer } from '@nocobase/test';
-import { prepareApp } from './prepare';
-describe('actions', () => {
-  let app: MockServer;
-  let db: Database;
-  let adminUser;
-  let agent;
-  let adminAgent;
-  let pluginUser;
-  beforeEach(async () => {
-    process.env.INIT_ROOT_EMAIL = 'test@nocobase.com';
-    process.env.INIT_ROOT_PASSWORD = '123456';
-    process.env.INIT_ROOT_NICKNAME = 'Test';
-    app = await prepareApp();
-    db = app.db;
-    pluginUser = app.getPlugin('users');
-    adminUser = await db.getRepository('users').findOne({
-      filter: {
-        email: process.env.INIT_ROOT_EMAIL,
-      },
-      appends: ['roles'],
-    });
-    agent = app.agent();
-    adminAgent = app.agent().login(adminUser);
-  });
-  afterEach(async () => {
-    await db.close();
-  });
-  it('update profile with roles', async () => {
-    const res2 = await adminAgent.resource('users').updateProfile({
-      filterByTk: adminUser.id,
-      values: {
-        nickname: 'a',
-        roles: adminUser.roles,
-      },
-    });
-    expect(res2.status).toBe(200);
-  });
-  it('can destroy users role', async () => {
-    const role2 = await db.getRepository('roles').create({
-      values: {
-        name: 'test',
-      },
-    });
-    const users2 = await db.getRepository('users').create({
-      values: {
-        email: 'test2@nocobase.com',
-        name: 'test2',
-        password: '123456',
-        roles: [
-          {
-            name: 'test',
-          },
-        ],
-      },
-    });
-    let response = await agent.post('/auth:signIn').send({
-      email: 'test2@nocobase.com',
-      password: '123456',
-    });
-    expect(response.statusCode).toEqual(200);
-    const token = response.body.data.token;
-    const loggedAgent = app.agent().auth(token, { type: 'bearer' });
-    const rolesCheckResponse = (await loggedAgent.set('Accept', 'application/json').get('/roles:check')) as any;
-    expect(rolesCheckResponse.statusCode).toEqual(200);
-    await db.getRepository('roles').destroy({
-      filterByTk: 'test',
-    });
-    response = await agent.post('/auth:signIn').send({
-      email: 'test2@nocobase.com',
-      password: '123456',
-    });
-    expect(response.statusCode).toEqual(200);
-    const rolesCheckResponse2 = (await loggedAgent.set('Accept', 'application/json').get('/roles:check')) as any;
-    expect(rolesCheckResponse2.status).toEqual(401);
-    expect(rolesCheckResponse2.body.errors[0].message).toEqual('User role not found');
-  });
-  it('should destroy through table record when destroy role', async () => {
-    await db.getRepository('roles').create({
-      values: {
-        name: 'test',
-      },
-    });
-    const users2 = await db.getRepository('users').create({
-      values: {
-        email: 'test2@nocobase.com',
-        name: 'test2',
-        password: '123456',
-        roles: [
-          {
-            name: 'test',
-          },
-        ],
-      },
-    });
-    expect(await users2.countRoles()).toEqual(1);
-    await db.getRepository('roles').destroy({
-      filterByTk: 'test',
-    });
-    expect(await users2.countRoles()).toEqual(0);
-    await db.getRepository('roles').create({
-      values: {
-        name: 'test',
-      },
-    });
-    expect(await users2.countRoles()).toEqual(0);
-  });
-});

package/src/server/__tests__/write-role-to-acl.test.ts DELETED Viewed

@@ -1,41 +0,0 @@
-import { MockServer } from '@nocobase/test';
-import { Database } from '@nocobase/database';
-import { prepareApp } from './prepare';
-describe('write role to acl', () => {
-  let app: MockServer;
-  let db: Database;
-  beforeEach(async () => {
-    app = await prepareApp();
-    db = app.db;
-  });
-  afterEach(async () => {
-    await app.destroy();
-  });
-  it('should write role to acl if role instance exists in db', async () => {
-    const role = await db.getRepository('roles').create({
-      values: {
-        name: 'test',
-      },
-    });
-    // remove role from acl
-    app.acl.removeRole('test');
-    const user = await db.getRepository('users').create({
-      values: {
-        roles: ['test'],
-      },
-    });
-    const agent = app.agent().login(user);
-    // @ts-ignore
-    const response = await agent.resource('roles').check();
-    expect(response.statusCode).toEqual(200);
-  });
-});

package/src/server/actions/role-collections.ts DELETED Viewed

@@ -1,95 +0,0 @@
-import { Database } from '@nocobase/database';
-type UsingConfigType = 'strategy' | 'resourceAction';
-function totalPage(total, pageSize): number {
-  return Math.ceil(total / pageSize);
-}
-const roleCollectionsResource = {
-  name: 'roles.collections',
-  actions: {
-    async list(ctx, next) {
-      const role = ctx.action.params.associatedIndex;
-      const { page = 1, pageSize = 20 } = ctx.action.params;
-      const db: Database = ctx.db;
-      const collectionRepository = db.getRepository('collections');
-      const fieldRepository = db.getRepository('fields');
-      // all collections
-      const [collections, count] = await collectionRepository.findAndCount({
-        filter: ctx.action.params.filter,
-        sort: 'sort',
-      });
-      // role collections
-      const roleResources = await db.getRepository('rolesResources').find({
-        filter: {
-          roleName: role,
-        },
-      });
-      // role collections
-      const roleResourcesNames = roleResources.map((roleResource) => roleResource.get('name'));
-      const roleResourceActionResourceNames = roleResources
-        .filter((roleResources) => roleResources.get('usingActionsConfig'))
-        .map((roleResources) => roleResources.get('name'));
-      const items = collections.map((collection, i) => {
-        const exists = roleResourcesNames.includes(collection.get('name'));
-        const usingConfig: UsingConfigType = roleResourceActionResourceNames.includes(collection.get('name'))
-          ? 'resourceAction'
-          : 'strategy';
-        const c = db.getCollection(collection.get('name'));
-        // const children = [...c.fields.values()]
-        //   .filter(
-        //     (f) => f.options.interface && ['hasOne', 'hasMany', 'belongsTo', 'belongsToMany'].includes(f.options.type),
-        //   )
-        //   .map((f, j) => {
-        //     const name = `${collection.get('name')}.${f.options.name}`;
-        //     const usingConfig: UsingConfigType = roleResourceActionResourceNames.includes(name)
-        //       ? 'resourceAction'
-        //       : 'strategy';
-        //     const exists = roleResourcesNames.includes(name);
-        //     return {
-        //       type: 'association',
-        //       __index: `${i}.children.${j}`,
-        //       name,
-        //       collectionName: f.options.target,
-        //       title: f.options?.uiSchema?.title,
-        //       roleName: role,
-        //       usingConfig,
-        //       exists,
-        //     };
-        //   });
-        return {
-          type: 'collection',
-          name: collection.get('name') as string,
-          collectionName: collection.get('name'),
-          title: collection.get('title') as string,
-          roleName: role,
-          usingConfig,
-          exists,
-          // children: children.length > 0 ? children : null,
-        };
-      });
-      ctx.body = {
-        count,
-        rows: items,
-        page: Number(page),
-        pageSize: Number(pageSize),
-        totalPage: totalPage(count, pageSize),
-      };
-      await next();
-    },
-  },
-};
-export { roleCollectionsResource };

package/src/server/actions/user-setDefaultRole.ts DELETED Viewed

@@ -1,47 +0,0 @@
-import { Context, Next } from '@nocobase/actions';
-export async function setDefaultRole(ctx: Context, next: Next) {
-  const {
-    values: { roleName },
-  } = ctx.action.params;
-  const {
-    db,
-    state: { currentUser },
-    action: {
-      params: { values },
-    },
-  } = ctx;
-  if (values.roleName == 'anonymous') {
-    return next();
-  }
-  const repository = db.getRepository('rolesUsers');
-  await db.sequelize.transaction(async (transaction) => {
-    await repository.update({
-      filter: {
-        userId: currentUser.get('id'),
-      },
-      values: {
-        default: false,
-      },
-      transaction,
-    });
-    await repository.update({
-      filter: {
-        userId: currentUser.get('id'),
-        roleName,
-      },
-      values: {
-        default: true,
-      },
-      transaction,
-    });
-  });
-  ctx.body = 'ok';
-  await next();
-}

package/src/server/collections/roles-users.ts DELETED Viewed

@@ -1,8 +0,0 @@
-import { CollectionOptions } from '@nocobase/database';
-export default {
-  name: 'rolesUsers',
-  duplicator: 'optional',
-  namespace: 'acl.acl',
-  fields: [{ type: 'boolean', name: 'default' }],
-} as CollectionOptions;

package/src/server/collections/roles.ts DELETED Viewed

@@ -1,101 +0,0 @@
-import { CollectionOptions } from '@nocobase/database';
-export default {
-  namespace: 'acl.acl',
-  duplicator: {
-    dumpable: 'required',
-    with: 'uiSchemas',
-  },
-  name: 'roles',
-  title: '{{t("Roles")}}',
-  autoGenId: false,
-  model: 'RoleModel',
-  filterTargetKey: 'name',
-  // targetKey: 'name',
-  sortable: true,
-  fields: [
-    {
-      type: 'uid',
-      name: 'name',
-      prefix: 'r_',
-      primaryKey: true,
-      interface: 'input',
-      uiSchema: {
-        type: 'string',
-        title: '{{t("Role UID")}}',
-        'x-component': 'Input',
-      },
-    },
-    {
-      type: 'string',
-      name: 'title',
-      unique: true,
-      interface: 'input',
-      uiSchema: {
-        type: 'string',
-        title: '{{t("Role name")}}',
-        'x-component': 'Input',
-      },
-      translation: true,
-    },
-    {
-      type: 'boolean',
-      name: 'default',
-    },
-    {
-      type: 'string',
-      name: 'description',
-    },
-    {
-      type: 'json',
-      name: 'strategy',
-    },
-    {
-      type: 'boolean',
-      name: 'default',
-      defaultValue: false,
-    },
-    {
-      type: 'boolean',
-      name: 'hidden',
-      defaultValue: false,
-    },
-    {
-      type: 'boolean',
-      name: 'allowConfigure',
-    },
-    {
-      type: 'boolean',
-      name: 'allowNewMenu',
-    },
-    {
-      type: 'belongsToMany',
-      name: 'menuUiSchemas',
-      target: 'uiSchemas',
-      targetKey: 'x-uid',
-    },
-    {
-      type: 'hasMany',
-      name: 'resources',
-      target: 'rolesResources',
-      sourceKey: 'name',
-      targetKey: 'name',
-    },
-    {
-      type: 'set',
-      name: 'snippets',
-      defaultValue: ['!ui.*', '!pm', '!pm.*'],
-    },
-    {
-      type: 'belongsToMany',
-      name: 'users',
-      target: 'users',
-      foreignKey: 'roleName',
-      otherKey: 'userId',
-      onDelete: 'CASCADE',
-      sourceKey: 'name',
-      targetKey: 'id',
-      through: 'rolesUsers',
-    },
-  ],
-} as CollectionOptions;

package/src/server/collections/rolesResources.ts DELETED Viewed

@@ -1,33 +0,0 @@
-import { CollectionOptions } from '@nocobase/database';
-export default {
-  namespace: 'acl.acl',
-  duplicator: 'required',
-  name: 'rolesResources',
-  model: 'RoleResourceModel',
-  indexes: [
-    {
-      unique: true,
-      fields: ['roleName', 'name'],
-    },
-  ],
-  fields: [
-    {
-      type: 'belongsTo',
-      name: 'role',
-    },
-    {
-      type: 'string',
-      name: 'name',
-    },
-    {
-      type: 'boolean',
-      name: 'usingActionsConfig',
-    },
-    {
-      type: 'hasMany',
-      name: 'actions',
-      target: 'rolesResourcesActions',
-    },
-  ],
-} as CollectionOptions;

package/src/server/collections/rolesResourcesActions.ts DELETED Viewed

@@ -1,31 +0,0 @@
-import { CollectionOptions } from '@nocobase/database';
-export default {
-  namespace: 'acl.acl',
-  duplicator: 'required',
-  name: 'rolesResourcesActions',
-  model: 'RoleResourceActionModel',
-  fields: [
-    {
-      type: 'belongsTo',
-      name: 'resource',
-      foreignKey: 'rolesResourceId',
-      target: 'rolesResources',
-    },
-    {
-      type: 'string',
-      name: 'name',
-    },
-    {
-      type: 'array',
-      name: 'fields',
-      defaultValue: [],
-    },
-    {
-      type: 'belongsTo',
-      name: 'scope',
-      target: 'rolesResourcesScopes',
-      onDelete: 'RESTRICT',
-    },
-  ],
-} as CollectionOptions;

package/src/server/collections/rolesResourcesScopes.ts DELETED Viewed

@@ -1,25 +0,0 @@
-import { CollectionOptions } from '@nocobase/database';
-export default {
-  namespace: 'acl.acl',
-  duplicator: 'required',
-  name: 'rolesResourcesScopes',
-  fields: [
-    {
-      type: 'uid',
-      name: 'key',
-    },
-    {
-      type: 'string',
-      name: 'name',
-    },
-    {
-      type: 'string',
-      name: 'resourceName',
-    },
-    {
-      type: 'json',
-      name: 'scope',
-    },
-  ],
-} as CollectionOptions;

package/src/server/collections/users.ts DELETED Viewed

@@ -1,31 +0,0 @@
-import { extend } from '@nocobase/database';
-export default extend({
-  name: 'users',
-  fields: [
-    {
-      interface: 'm2m',
-      type: 'belongsToMany',
-      name: 'roles',
-      target: 'roles',
-      foreignKey: 'userId',
-      otherKey: 'roleName',
-      onDelete: 'CASCADE',
-      sourceKey: 'id',
-      targetKey: 'name',
-      through: 'rolesUsers',
-      uiSchema: {
-        type: 'array',
-        title: '{{t("Roles")}}',
-        'x-component': 'AssociationField',
-        'x-component-props': {
-          multiple: true,
-          fieldNames: {
-            label: 'title',
-            value: 'name',
-          },
-        },
-      },
-    },
-  ],
-});

package/src/server/index.ts DELETED Viewed

	@@ -1 +0,0 @@
1	- export { default } from './server';