npm - @nocobase/plugin-acl - Versions diffs - 2.1.0-alpha.2 → 2.1.0-alpha.20 - Mend

@nocobase/plugin-acl 2.1.0-alpha.2 → 2.1.0-alpha.20

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (37) hide show

package/LICENSE +201 -661
package/README.md +79 -10
package/client-v2.d.ts +2 -0
package/client-v2.js +1 -0
package/dist/client/949.7ad4ad3b554e5452.js +10 -0
package/dist/client/971.50ecf7b6ac572080.js +10 -0
package/dist/client/index.js +1 -1
package/dist/client-v2/139.929bc11d582ef7d4.js +10 -0
package/dist/client-v2/193.3245b23f17b4c9f8.js +10 -0
package/dist/client-v2/366.069b6cf12cfb9a67.js +10 -0
package/dist/client-v2/627.ce101823deb86dd6.js +10 -0
package/dist/client-v2/index.d.ts +9 -0
package/dist/client-v2/index.js +10 -0
package/dist/client-v2/plugin.d.ts +5 -0
package/dist/client-v2/routes/AppInfoDemoRoute.d.ts +10 -0
package/dist/client-v2/routes/DemoHomepageRoute.d.ts +10 -0
package/dist/client-v2/routes/FlowSettingsComponentLoaderDemoRoute.d.ts +2 -0
package/dist/client-v2/settings/DemoFlowSettingsLazyField.d.ts +10 -0
package/dist/externalVersion.js +11 -9
package/dist/server/index.d.ts +1 -0
package/dist/server/index.js +2 -0
package/dist/server/middlewares/check-association-operate.js +14 -5
package/dist/server/middlewares/check-change-with-association.d.ts +21 -0
package/dist/server/middlewares/check-change-with-association.js +327 -246
package/dist/server/middlewares/check-query-permission.d.ts +10 -0
package/dist/server/middlewares/check-query-permission.js +64 -0
package/dist/server/middlewares/with-acl-meta.js +7 -2
package/dist/server/migrations/20251119225252-update-member-default-permission.js +1 -1
package/dist/server/query/apply-query-permission.d.ts +27 -0
package/dist/server/query/apply-query-permission.js +242 -0
package/dist/server/server.d.ts +6 -1
package/dist/server/server.js +8 -1
package/dist/swagger/index.d.ts +962 -143
package/dist/swagger/index.js +854 -183
package/package.json +5 -3
package/dist/client/0655d5ded9f45bb1.js +0 -10
package/dist/client/50204a14518b3a0d.js +0 -10

package/dist/server/index.d.ts CHANGED Viewed

@@ -8,6 +8,7 @@
  */
 export * from './middlewares/setCurrentRole';
 export * from './middlewares/with-acl-meta';
+export * from './query/apply-query-permission';
 export { RoleResourceActionModel } from './model/RoleResourceActionModel';
 export { RoleResourceModel } from './model/RoleResourceModel';
 export * from './constants';

package/dist/server/index.js CHANGED Viewed

@@ -44,6 +44,7 @@ __export(server_exports, {
 module.exports = __toCommonJS(server_exports);
 __reExport(server_exports, require("./middlewares/setCurrentRole"), module.exports);
 __reExport(server_exports, require("./middlewares/with-acl-meta"), module.exports);
+__reExport(server_exports, require("./query/apply-query-permission"), module.exports);
 var import_RoleResourceActionModel = require("./model/RoleResourceActionModel");
 var import_RoleResourceModel = require("./model/RoleResourceModel");
 __reExport(server_exports, require("./constants"), module.exports);
@@ -55,6 +56,7 @@ var import_server = __toESM(require("./server"));
   RoleResourceModel,
   ...require("./middlewares/setCurrentRole"),
   ...require("./middlewares/with-acl-meta"),
+  ...require("./query/apply-query-permission"),
   ...require("./constants"),
   ...require("./enum")
 });

package/dist/server/middlewares/check-association-operate.js CHANGED Viewed

@@ -31,7 +31,7 @@ __export(check_association_operate_exports, {
 module.exports = __toCommonJS(check_association_operate_exports);
 var import_acl = require("@nocobase/acl");
 async function checkAssociationOperate(ctx, next) {
-  var _a;
+  var _a, _b, _c, _d, _e, _f, _g, _h, _i, _j;
   const { actionName, resourceName, sourceId } = ctx.action;
   if (!(resourceName.includes(".") && ["add", "set", "remove", "toggle"].includes(actionName))) {
     return next();
@@ -59,12 +59,21 @@ async function checkAssociationOperate(ctx, next) {
   }
   if (params.filter) {
     try {
-      const filteredParams = ctx.acl.filterParams(ctx, resource, params);
-      const parsedParams = await ctx.acl.parseJsonTemplate(filteredParams, ctx);
-      const repo = ctx.db.getRepository(resource);
+      const timezone = ((_c = (_b = ctx.request) == null ? void 0 : _b.get) == null ? void 0 : _c.call(_b, "x-timezone")) ?? ((_e = (_d = ctx.request) == null ? void 0 : _d.header) == null ? void 0 : _e["x-timezone"]) ?? ((_g = (_f = ctx.req) == null ? void 0 : _f.headers) == null ? void 0 : _g["x-timezone"]);
+      const collection = (_i = (_h = ctx.database) == null ? void 0 : _h.getCollection) == null ? void 0 : _i.call(_h, resource);
+      (0, import_acl.checkFilterParams)(collection, params.filter);
+      const parsedFilter = await (0, import_acl.parseJsonTemplate)(params.filter, {
+        state: ctx.state,
+        timezone,
+        userProvider: (0, import_acl.createUserProvider)({
+          db: ctx.db,
+          currentUser: (_j = ctx.state) == null ? void 0 : _j.currentUser
+        })
+      });
+      const repo = ctx.database.getRepository(resource);
       const record = await repo.findOne({
         filterByTk: sourceId,
-        filter: parsedParams.filter
+        filter: parsedFilter ?? params.filter
       });
       if (!record) {
         ctx.throw(403, "No permissions");

package/dist/server/middlewares/check-change-with-association.d.ts CHANGED Viewed

@@ -6,5 +6,26 @@
  * This project is dual-licensed under AGPL-3.0 and NocoBase Commercial License.
  * For more information, please refer to: https://www.nocobase.com/agreement.
  */
+import { ACL, UserProvider } from '@nocobase/acl';
 import { Context, Next } from '@nocobase/actions';
+import { Collection } from '@nocobase/database';
+export type SanitizeAssociationValuesOptions = {
+    acl?: ACL;
+    resourceName: string;
+    actionName: string;
+    values: any;
+    updateAssociationValues?: string[];
+    protectedKeys?: string[];
+    aclParams?: any;
+    roles?: string[];
+    currentRole?: string;
+    currentUser?: any;
+    collection?: Collection;
+    db?: any;
+    database?: any;
+    state?: Record<string, any>;
+    timezone?: string;
+    userProvider?: UserProvider;
+};
+export declare function sanitizeAssociationValues(options: SanitizeAssociationValuesOptions): Promise<any>;
 export declare const checkChangesWithAssociation: (ctx: Context, next: Next) => Promise<any>;