@nocobase/plugin-users 0.5.0-alpha.38 → 0.7.0-alpha.2

package/esm/middlewares/parseToken.d.ts

@@ -0,0 +1,6 @@
+import { Context, Next } from '@nocobase/actions';
+import UsersPlugin from '../server';
+export declare function parseToken(options?: {
+    plugin: UsersPlugin;
+}): (ctx: Context, next: Next) => Promise<any>;
+export declare function setCurrentRole(ctx: any): void;

package/esm/middlewares/parseToken.js

@@ -0,0 +1,64 @@
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+export function parseToken(options) {
+    return function parseToken(ctx, next) {
+        return __awaiter(this, void 0, void 0, function* () {
+            const user = yield findUserByToken(ctx, options.plugin);
+            if (user) {
+                ctx.state.currentUser = user;
+                setCurrentRole(ctx);
+            }
+            return next();
+        });
+    };
+}
+export function setCurrentRole(ctx) {
+    var _a;
+    let currentRole = ctx.get('X-Role');
+    if (currentRole === 'anonymous') {
+        ctx.state.currentRole = currentRole;
+        return;
+    }
+    const userRoles = ctx.state.currentUser.roles;
+    if (userRoles.length == 1) {
+        currentRole = userRoles[0].name;
+    }
+    else if (userRoles.length > 1) {
+        const role = userRoles.find((role) => role.name === currentRole);
+        if (!role) {
+            const defaultRole = userRoles.find((role) => { var _a; return (_a = role === null || role === void 0 ? void 0 : role.rolesUsers) === null || _a === void 0 ? void 0 : _a.default; });
+            currentRole = (_a = (defaultRole || userRoles[0])) === null || _a === void 0 ? void 0 : _a.name;
+        }
+    }
+    if (currentRole) {
+        ctx.state.currentRole = currentRole;
+    }
+}
+function findUserByToken(ctx, plugin) {
+    return __awaiter(this, void 0, void 0, function* () {
+        const token = ctx.getBearerToken();
+        if (!token) {
+            return null;
+        }
+        try {
+            const { userId } = yield plugin.jwtService.decode(token);
+            return yield ctx.db.getRepository('users').findOne({
+                filter: {
+                    id: userId,
+                },
+                appends: ['roles'],
+            });
+        }
+        catch (error) {
+            console.warn(error);
+        }
+    });
+}
+//# sourceMappingURL=parseToken.js.map

package/esm/middlewares/parseToken.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"parseToken.js","sourceRoot":"","sources":["../../src/middlewares/parseToken.ts"],"names":[],"mappings":";;;;;;;;;AAGA,MAAM,UAAU,UAAU,CAAC,OAAiC;IAC1D,OAAO,SAAe,UAAU,CAAC,GAAY,EAAE,IAAU;;YACvD,MAAM,IAAI,GAAG,MAAM,eAAe,CAAC,GAAG,EAAE,OAAO,CAAC,MAAM,CAAC,CAAC;YACxD,IAAI,IAAI,EAAE;gBACR,GAAG,CAAC,KAAK,CAAC,WAAW,GAAG,IAAI,CAAC;gBAC7B,cAAc,CAAC,GAAG,CAAC,CAAC;aACrB;YACD,OAAO,IAAI,EAAE,CAAC;QAChB,CAAC;KAAA,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,cAAc,CAAC,GAAG;;IAChC,IAAI,WAAW,GAAG,GAAG,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;IAEpC,IAAI,WAAW,KAAK,WAAW,EAAE;QAC/B,GAAG,CAAC,KAAK,CAAC,WAAW,GAAG,WAAW,CAAC;QACpC,OAAO;KACR;IAED,MAAM,SAAS,GAAG,GAAG,CAAC,KAAK,CAAC,WAAW,CAAC,KAAK,CAAC;IAE9C,IAAI,SAAS,CAAC,MAAM,IAAI,CAAC,EAAE;QACzB,WAAW,GAAG,SAAS,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;KACjC;SAAM,IAAI,SAAS,CAAC,MAAM,GAAG,CAAC,EAAE;QAC/B,MAAM,IAAI,GAAG,SAAS,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,IAAI,KAAK,WAAW,CAAC,CAAC;QACjE,IAAI,CAAC,IAAI,EAAE;YACT,MAAM,WAAW,GAAG,SAAS,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,EAAE,WAAC,OAAA,MAAA,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,UAAU,0CAAE,OAAO,CAAA,EAAA,CAAC,CAAC;YACxE,WAAW,GAAG,MAAA,CAAC,WAAW,IAAI,SAAS,CAAC,CAAC,CAAC,CAAC,0CAAE,IAAI,CAAC;SACnD;KACF;IAED,IAAI,WAAW,EAAE;QACf,GAAG,CAAC,KAAK,CAAC,WAAW,GAAG,WAAW,CAAC;KACrC;AACH,CAAC;AAED,SAAe,eAAe,CAAC,GAAY,EAAE,MAAmB;;QAC9D,MAAM,KAAK,GAAG,GAAG,CAAC,cAAc,EAAE,CAAC;QACnC,IAAI,CAAC,KAAK,EAAE;YACV,OAAO,IAAI,CAAC;SACb;QACD,IAAI;YACF,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,MAAM,CAAC,UAAU,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;YAEzD,OAAO,MAAM,GAAG,CAAC,EAAE,CAAC,aAAa,CAAC,OAAO,CAAC,CAAC,OAAO,CAAC;gBACjD,MAAM,EAAE;oBACN,EAAE,EAAE,MAAM;iBACX;gBACD,OAAO,EAAE,CAAC,OAAO,CAAC;aACnB,CAAC,CAAC;SACJ;QAAC,OAAO,KAAK,EAAE;YACd,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;SACrB;IACH,CAAC;CAAA","sourcesContent":["import { Context, Next } from '@nocobase/actions';\nimport UsersPlugin from '../server';\n\nexport function parseToken(options?: { plugin: UsersPlugin }) {\n  return async function parseToken(ctx: Context, next: Next) {\n    const user = await findUserByToken(ctx, options.plugin);\n    if (user) {\n      ctx.state.currentUser = user;\n      setCurrentRole(ctx);\n    }\n    return next();\n  };\n}\n\nexport function setCurrentRole(ctx) {\n  let currentRole = ctx.get('X-Role');\n\n  if (currentRole === 'anonymous') {\n    ctx.state.currentRole = currentRole;\n    return;\n  }\n\n  const userRoles = ctx.state.currentUser.roles;\n\n  if (userRoles.length == 1) {\n    currentRole = userRoles[0].name;\n  } else if (userRoles.length > 1) {\n    const role = userRoles.find((role) => role.name === currentRole);\n    if (!role) {\n      const defaultRole = userRoles.find((role) => role?.rolesUsers?.default);\n      currentRole = (defaultRole || userRoles[0])?.name;\n    }\n  }\n\n  if (currentRole) {\n    ctx.state.currentRole = currentRole;\n  }\n}\n\nasync function findUserByToken(ctx: Context, plugin: UsersPlugin) {\n  const token = ctx.getBearerToken();\n  if (!token) {\n    return null;\n  }\n  try {\n    const { userId } = await plugin.jwtService.decode(token);\n\n    return await ctx.db.getRepository('users').findOne({\n      filter: {\n        id: userId,\n      },\n      appends: ['roles'],\n    });\n  } catch (error) {\n    console.warn(error);\n  }\n}\n"]}

package/esm/models/UserModel.d.ts

@@ -0,0 +1,4 @@
+import { Model, TransactionAble } from '@nocobase/database';
+export declare class UserModel extends Model {
+    setDefaultRole(roleName: string, options?: TransactionAble): Promise<boolean>;
+}

package/esm/models/UserModel.js

@@ -0,0 +1,53 @@
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+import { Model } from '@nocobase/database';
+export class UserModel extends Model {
+    setDefaultRole(roleName, options = {}) {
+        return __awaiter(this, void 0, void 0, function* () {
+            if (roleName == 'anonymous') {
+                return false;
+            }
+            const db = this.constructor.database;
+            const repository = db.getRepository('rolesUsers');
+            if (!repository) {
+                return false;
+            }
+            const transaction = options.transaction || (yield db.sequelize.transaction());
+            try {
+                yield repository.update({
+                    filter: {
+                        userId: this.get('id'),
+                    },
+                    values: {
+                        default: false,
+                    },
+                    transaction,
+                });
+                yield repository.update({
+                    filter: {
+                        userId: this.get('id'),
+                        roleName,
+                    },
+                    values: {
+                        default: true,
+                    },
+                    transaction,
+                });
+                yield transaction.commit();
+            }
+            catch (error) {
+                yield transaction.rollback();
+                throw error;
+            }
+            return true;
+        });
+    }
+}
+//# sourceMappingURL=UserModel.js.map

package/esm/models/UserModel.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"UserModel.js","sourceRoot":"","sources":["../../src/models/UserModel.ts"],"names":[],"mappings":";;;;;;;;;AAAA,OAAiB,EAAE,KAAK,EAAmB,MAAM,oBAAoB,CAAC;AAEtE,MAAM,OAAO,SAAU,SAAQ,KAAK;IAC5B,cAAc,CAAC,QAAgB,EAAE,UAA2B,EAAE;;YAClE,IAAI,QAAQ,IAAI,WAAW,EAAE;gBAC3B,OAAO,KAAK,CAAC;aACd;YAED,MAAM,EAAE,GAAI,IAAI,CAAC,WAAmB,CAAC,QAAoB,CAAC;YAC1D,MAAM,UAAU,GAAG,EAAE,CAAC,aAAa,CAAC,YAAY,CAAC,CAAC;YAClD,IAAI,CAAC,UAAU,EAAE;gBACf,OAAO,KAAK,CAAC;aACd;YACD,MAAM,WAAW,GAAG,OAAO,CAAC,WAAW,IAAI,CAAC,MAAM,EAAE,CAAC,SAAS,CAAC,WAAW,EAAE,CAAC,CAAC;YAE9E,IAAI;gBACF,MAAM,UAAU,CAAC,MAAM,CAAC;oBACtB,MAAM,EAAE;wBACN,MAAM,EAAE,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC;qBACvB;oBACD,MAAM,EAAE;wBACN,OAAO,EAAE,KAAK;qBACf;oBACD,WAAW;iBACZ,CAAC,CAAC;gBACH,MAAM,UAAU,CAAC,MAAM,CAAC;oBACtB,MAAM,EAAE;wBACN,MAAM,EAAE,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC;wBACtB,QAAQ;qBACT;oBACD,MAAM,EAAE;wBACN,OAAO,EAAE,IAAI;qBACd;oBACD,WAAW;iBACZ,CAAC,CAAC;gBACH,MAAM,WAAW,CAAC,MAAM,EAAE,CAAC;aAC5B;YAAC,OAAO,KAAK,EAAE;gBACd,MAAM,WAAW,CAAC,QAAQ,EAAE,CAAC;gBAC7B,MAAM,KAAK,CAAC;aACb;YAED,OAAO,IAAI,CAAC;QACd,CAAC;KAAA;CACF","sourcesContent":["import Database, { Model, TransactionAble } from '@nocobase/database';\n\nexport class UserModel extends Model {\n  async setDefaultRole(roleName: string, options: TransactionAble = {}) {\n    if (roleName == 'anonymous') {\n      return false;\n    }\n\n    const db = (this.constructor as any).database as Database;\n    const repository = db.getRepository('rolesUsers');\n    if (!repository) {\n      return false;\n    }\n    const transaction = options.transaction || (await db.sequelize.transaction());\n\n    try {\n      await repository.update({\n        filter: {\n          userId: this.get('id'),\n        },\n        values: {\n          default: false,\n        },\n        transaction,\n      });\n      await repository.update({\n        filter: {\n          userId: this.get('id'),\n          roleName,\n        },\n        values: {\n          default: true,\n        },\n        transaction,\n      });\n      await transaction.commit();\n    } catch (error) {\n      await transaction.rollback();\n      throw error;\n    }\n\n    return true;\n  }\n}\n"]}

package/esm/server.d.ts

@@ -0,0 +1,23 @@
+import { Plugin } from '@nocobase/server';
+import { JwtOptions, JwtService } from './jwt-service';
+export interface UserPluginConfig {
+    jwt: JwtOptions;
+    installing?: {
+        adminNickname: string;
+        adminEmail: string;
+        adminPassword: string;
+    };
+}
+export default class UsersPlugin extends Plugin<UserPluginConfig> {
+    jwtService: JwtService;
+    constructor(app: any, options: any);
+    beforeLoad(): Promise<void>;
+    load(): Promise<void>;
+    getRootUserInfo(): {
+        adminNickname: string;
+        adminEmail: string;
+        adminPassword: string;
+    };
+    install(): Promise<void>;
+    getName(): string;
+}

package/esm/server.js

@@ -0,0 +1,133 @@
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+import { Op } from '@nocobase/database';
+import { Plugin } from '@nocobase/server';
+import { resolve } from 'path';
+import * as actions from './actions/users';
+import { JwtService } from './jwt-service';
+import * as middlewares from './middlewares';
+import { UserModel } from './models/UserModel';
+export default class UsersPlugin extends Plugin {
+    constructor(app, options) {
+        super(app, options);
+        this.jwtService = new JwtService(options === null || options === void 0 ? void 0 : options.jwt);
+    }
+    beforeLoad() {
+        return __awaiter(this, void 0, void 0, function* () {
+            this.db.registerOperators({
+                $isCurrentUser(_, ctx) {
+                    var _a, _b, _c, _d;
+                    return {
+                        [Op.eq]: ((_d = (_c = (_b = (_a = ctx === null || ctx === void 0 ? void 0 : ctx.app) === null || _a === void 0 ? void 0 : _a.ctx) === null || _b === void 0 ? void 0 : _b.state) === null || _c === void 0 ? void 0 : _c.currentUser) === null || _d === void 0 ? void 0 : _d.id) || -1,
+                    };
+                },
+            });
+            this.db.registerModels({ UserModel });
+            this.db.on('users.afterCreateWithAssociations', (model, options) => __awaiter(this, void 0, void 0, function* () {
+                const { transaction } = options;
+                const repository = this.app.db.getRepository('roles');
+                if (!repository) {
+                    return;
+                }
+                const defaultRole = yield repository.findOne({
+                    filter: {
+                        default: true,
+                    },
+                    transaction,
+                });
+                if (defaultRole && (yield model.countRoles({ transaction })) == 0) {
+                    yield model.addRoles(defaultRole, { transaction });
+                }
+            }));
+            this.db.on('afterDefineCollection', (collection) => {
+                let { createdBy, updatedBy } = collection.options;
+                if (createdBy === true) {
+                    collection.setField('createdById', {
+                        type: 'context',
+                        dataType: 'integer',
+                        dataIndex: 'state.currentUser.id',
+                        createOnly: true,
+                        visible: true,
+                        onDelete: 'SET NULL',
+                        onUpdate: 'CASCADE',
+                    });
+                    collection.setField('createdBy', {
+                        type: 'belongsTo',
+                        target: 'users',
+                        foreignKey: 'createdById',
+                        targetKey: 'id',
+                    });
+                }
+                if (updatedBy === true) {
+                    collection.setField('updatedById', {
+                        type: 'context',
+                        dataType: 'integer',
+                        dataIndex: 'state.currentUser.id',
+                        visible: true,
+                        onDelete: 'SET NULL',
+                        onUpdate: 'CASCADE',
+                    });
+                    collection.setField('updatedBy', {
+                        type: 'belongsTo',
+                        target: 'users',
+                        foreignKey: 'updatedById',
+                        targetKey: 'id',
+                    });
+                }
+            });
+            for (const [key, action] of Object.entries(actions)) {
+                this.app.resourcer.registerActionHandler(`users:${key}`, action);
+            }
+            this.app.resourcer.use(middlewares.parseToken({ plugin: this }));
+            const publicActions = ['check', 'signin', 'signup', 'lostpassword', 'resetpassword', 'getUserByResetToken'];
+            const loggedInActions = ['signout', 'updateProfile', 'changePassword', 'setDefaultRole'];
+            publicActions.forEach((action) => this.app.acl.allow('users', action));
+            loggedInActions.forEach((action) => this.app.acl.allow('users', action, 'loggedIn'));
+        });
+    }
+    load() {
+        return __awaiter(this, void 0, void 0, function* () {
+            yield this.db.import({
+                directory: resolve(__dirname, 'collections'),
+            });
+        });
+    }
+    getRootUserInfo() {
+        const { adminNickname = 'Super Admin', adminEmail = 'admin@nocobase.com', adminPassword = 'admin123', } = this.options.installing || {};
+        return {
+            adminNickname,
+            adminEmail,
+            adminPassword,
+        };
+    }
+    install() {
+        return __awaiter(this, void 0, void 0, function* () {
+            const { adminNickname, adminPassword, adminEmail } = this.getRootUserInfo();
+            const User = this.db.getCollection('users');
+            const user = yield User.repository.create({
+                values: {
+                    nickname: adminNickname,
+                    email: adminEmail,
+                    password: adminPassword,
+                    roles: ['root', 'admin'],
+                },
+            });
+            yield user.setDefaultRole('root');
+            const repo = this.db.getRepository('collections');
+            if (repo) {
+                yield repo.db2cm('users');
+            }
+        });
+    }
+    getName() {
+        return this.getPackageName(__dirname);
+    }
+}
+//# sourceMappingURL=server.js.map

package/esm/server.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"server.js","sourceRoot":"","sources":["../src/server.ts"],"names":[],"mappings":";;;;;;;;;AAAA,OAAO,EAAc,EAAE,EAAE,MAAM,oBAAoB,CAAC;AACpD,OAAO,EAAE,MAAM,EAAE,MAAM,kBAAkB,CAAC;AAC1C,OAAO,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AAC/B,OAAO,KAAK,OAAO,MAAM,iBAAiB,CAAC;AAC3C,OAAO,EAAc,UAAU,EAAE,MAAM,eAAe,CAAC;AACvD,OAAO,KAAK,WAAW,MAAM,eAAe,CAAC;AAC7C,OAAO,EAAE,SAAS,EAAE,MAAM,oBAAoB,CAAC;AAY/C,MAAM,CAAC,OAAO,OAAO,WAAY,SAAQ,MAAwB;IAG/D,YAAY,GAAG,EAAE,OAAO;QACtB,KAAK,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC;QACpB,IAAI,CAAC,UAAU,GAAG,IAAI,UAAU,CAAC,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,GAAG,CAAC,CAAC;IACjD,CAAC;IAEK,UAAU;;YACd,IAAI,CAAC,EAAE,CAAC,iBAAiB,CAAC;gBACxB,cAAc,CAAC,CAAC,EAAE,GAAG;;oBACnB,OAAO;wBACL,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAA,MAAA,MAAA,MAAA,MAAA,GAAG,aAAH,GAAG,uBAAH,GAAG,CAAE,GAAG,0CAAE,GAAG,0CAAE,KAAK,0CAAE,WAAW,0CAAE,EAAE,KAAI,CAAC,CAAC;qBACrD,CAAC;gBACJ,CAAC;aACF,CAAC,CAAC;YACH,IAAI,CAAC,EAAE,CAAC,cAAc,CAAC,EAAE,SAAS,EAAE,CAAC,CAAC;YACtC,IAAI,CAAC,EAAE,CAAC,EAAE,CAAC,mCAAmC,EAAE,CAAO,KAAK,EAAE,OAAO,EAAE,EAAE;gBACvE,MAAM,EAAE,WAAW,EAAE,GAAG,OAAO,CAAC;gBAChC,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,aAAa,CAAC,OAAO,CAAC,CAAC;gBACtD,IAAI,CAAC,UAAU,EAAE;oBACf,OAAO;iBACR;gBACD,MAAM,WAAW,GAAG,MAAM,UAAU,CAAC,OAAO,CAAC;oBAC3C,MAAM,EAAE;wBACN,OAAO,EAAE,IAAI;qBACd;oBACD,WAAW;iBACZ,CAAC,CAAC;gBACH,IAAI,WAAW,IAAI,CAAC,MAAM,KAAK,CAAC,UAAU,CAAC,EAAE,WAAW,EAAE,CAAC,CAAC,IAAI,CAAC,EAAE;oBACjE,MAAM,KAAK,CAAC,QAAQ,CAAC,WAAW,EAAE,EAAE,WAAW,EAAE,CAAC,CAAC;iBACpD;YACH,CAAC,CAAA,CAAC,CAAC;YAEH,IAAI,CAAC,EAAE,CAAC,EAAE,CAAC,uBAAuB,EAAE,CAAC,UAAsB,EAAE,EAAE;gBAC7D,IAAI,EAAE,SAAS,EAAE,SAAS,EAAE,GAAG,UAAU,CAAC,OAAO,CAAC;gBAClD,IAAI,SAAS,KAAK,IAAI,EAAE;oBACtB,UAAU,CAAC,QAAQ,CAAC,aAAa,EAAE;wBACjC,IAAI,EAAE,SAAS;wBACf,QAAQ,EAAE,SAAS;wBACnB,SAAS,EAAE,sBAAsB;wBACjC,UAAU,EAAE,IAAI;wBAChB,OAAO,EAAE,IAAI;wBACb,QAAQ,EAAE,UAAU;wBACpB,QAAQ,EAAE,SAAS;qBACpB,CAAC,CAAC;oBACH,UAAU,CAAC,QAAQ,CAAC,WAAW,EAAE;wBAC/B,IAAI,EAAE,WAAW;wBACjB,MAAM,EAAE,OAAO;wBACf,UAAU,EAAE,aAAa;wBACzB,SAAS,EAAE,IAAI;qBAChB,CAAC,CAAC;iBACJ;gBACD,IAAI,SAAS,KAAK,IAAI,EAAE;oBACtB,UAAU,CAAC,QAAQ,CAAC,aAAa,EAAE;wBACjC,IAAI,EAAE,SAAS;wBACf,QAAQ,EAAE,SAAS;wBACnB,SAAS,EAAE,sBAAsB;wBACjC,OAAO,EAAE,IAAI;wBACb,QAAQ,EAAE,UAAU;wBACpB,QAAQ,EAAE,SAAS;qBACpB,CAAC,CAAC;oBACH,UAAU,CAAC,QAAQ,CAAC,WAAW,EAAE;wBAC/B,IAAI,EAAE,WAAW;wBACjB,MAAM,EAAE,OAAO;wBACf,UAAU,EAAE,aAAa;wBACzB,SAAS,EAAE,IAAI;qBAChB,CAAC,CAAC;iBACJ;YACH,CAAC,CAAC,CAAC;YAEH,KAAK,MAAM,CAAC,GAAG,EAAE,MAAM,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE;gBACnD,IAAI,CAAC,GAAG,CAAC,SAAS,CAAC,qBAAqB,CAAC,SAAS,GAAG,EAAE,EAAE,MAAM,CAAC,CAAC;aAClE;YAED,IAAI,CAAC,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,WAAW,CAAC,UAAU,CAAC,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;YAEjE,MAAM,aAAa,GAAG,CAAC,OAAO,EAAE,QAAQ,EAAE,QAAQ,EAAE,cAAc,EAAE,eAAe,EAAE,qBAAqB,CAAC,CAAC;YAC5G,MAAM,eAAe,GAAG,CAAC,SAAS,EAAE,eAAe,EAAE,gBAAgB,EAAE,gBAAgB,CAAC,CAAC;YAEzF,aAAa,CAAC,OAAO,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC,CAAC;YACvE,eAAe,CAAC,OAAO,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,OAAO,EAAE,MAAM,EAAE,UAAU,CAAC,CAAC,CAAC;QACvF,CAAC;KAAA;IAEK,IAAI;;YACR,MAAM,IAAI,CAAC,EAAE,CAAC,MAAM,CAAC;gBACnB,SAAS,EAAE,OAAO,CAAC,SAAS,EAAE,aAAa,CAAC;aAC7C,CAAC,CAAC;QACL,CAAC;KAAA;IAED,eAAe;QACb,MAAM,EACJ,aAAa,GAAG,aAAa,EAC7B,UAAU,GAAG,oBAAoB,EACjC,aAAa,GAAG,UAAU,GAC3B,GAAG,IAAI,CAAC,OAAO,CAAC,UAAU,IAAI,EAAE,CAAC;QAElC,OAAO;YACL,aAAa;YACb,UAAU;YACV,aAAa;SACd,CAAC;IACJ,CAAC;IAEK,OAAO;;YACX,MAAM,EAAE,aAAa,EAAE,aAAa,EAAE,UAAU,EAAE,GAAG,IAAI,CAAC,eAAe,EAAE,CAAC;YAE5E,MAAM,IAAI,GAAG,IAAI,CAAC,EAAE,CAAC,aAAa,CAAC,OAAO,CAAC,CAAC;YAC5C,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,MAAM,CAAY;gBACnD,MAAM,EAAE;oBACN,QAAQ,EAAE,aAAa;oBACvB,KAAK,EAAE,UAAU;oBACjB,QAAQ,EAAE,aAAa;oBACvB,KAAK,EAAE,CAAC,MAAM,EAAE,OAAO,CAAC;iBACzB;aACF,CAAC,CAAC;YAEH,MAAM,IAAI,CAAC,cAAc,CAAC,MAAM,CAAC,CAAC;YAElC,MAAM,IAAI,GAAG,IAAI,CAAC,EAAE,CAAC,aAAa,CAAM,aAAa,CAAC,CAAC;YACvD,IAAI,IAAI,EAAE;gBACR,MAAM,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;aAC3B;QACH,CAAC;KAAA;IAED,OAAO;QACL,OAAO,IAAI,CAAC,cAAc,CAAC,SAAS,CAAC,CAAC;IACxC,CAAC;CACF","sourcesContent":["import { Collection, Op } from '@nocobase/database';\nimport { Plugin } from '@nocobase/server';\nimport { resolve } from 'path';\nimport * as actions from './actions/users';\nimport { JwtOptions, JwtService } from './jwt-service';\nimport * as middlewares from './middlewares';\nimport { UserModel } from './models/UserModel';\n\nexport interface UserPluginConfig {\n  jwt: JwtOptions;\n\n  installing?: {\n    adminNickname: string;\n    adminEmail: string;\n    adminPassword: string;\n  };\n}\n\nexport default class UsersPlugin extends Plugin<UserPluginConfig> {\n  public jwtService: JwtService;\n\n  constructor(app, options) {\n    super(app, options);\n    this.jwtService = new JwtService(options?.jwt);\n  }\n\n  async beforeLoad() {\n    this.db.registerOperators({\n      $isCurrentUser(_, ctx) {\n        return {\n          [Op.eq]: ctx?.app?.ctx?.state?.currentUser?.id || -1,\n        };\n      },\n    });\n    this.db.registerModels({ UserModel });\n    this.db.on('users.afterCreateWithAssociations', async (model, options) => {\n      const { transaction } = options;\n      const repository = this.app.db.getRepository('roles');\n      if (!repository) {\n        return;\n      }\n      const defaultRole = await repository.findOne({\n        filter: {\n          default: true,\n        },\n        transaction,\n      });\n      if (defaultRole && (await model.countRoles({ transaction })) == 0) {\n        await model.addRoles(defaultRole, { transaction });\n      }\n    });\n\n    this.db.on('afterDefineCollection', (collection: Collection) => {\n      let { createdBy, updatedBy } = collection.options;\n      if (createdBy === true) {\n        collection.setField('createdById', {\n          type: 'context',\n          dataType: 'integer',\n          dataIndex: 'state.currentUser.id',\n          createOnly: true,\n          visible: true,\n          onDelete: 'SET NULL',\n          onUpdate: 'CASCADE',\n        });\n        collection.setField('createdBy', {\n          type: 'belongsTo',\n          target: 'users',\n          foreignKey: 'createdById',\n          targetKey: 'id',\n        });\n      }\n      if (updatedBy === true) {\n        collection.setField('updatedById', {\n          type: 'context',\n          dataType: 'integer',\n          dataIndex: 'state.currentUser.id',\n          visible: true,\n          onDelete: 'SET NULL',\n          onUpdate: 'CASCADE',\n        });\n        collection.setField('updatedBy', {\n          type: 'belongsTo',\n          target: 'users',\n          foreignKey: 'updatedById',\n          targetKey: 'id',\n        });\n      }\n    });\n\n    for (const [key, action] of Object.entries(actions)) {\n      this.app.resourcer.registerActionHandler(`users:${key}`, action);\n    }\n\n    this.app.resourcer.use(middlewares.parseToken({ plugin: this }));\n\n    const publicActions = ['check', 'signin', 'signup', 'lostpassword', 'resetpassword', 'getUserByResetToken'];\n    const loggedInActions = ['signout', 'updateProfile', 'changePassword', 'setDefaultRole'];\n\n    publicActions.forEach((action) => this.app.acl.allow('users', action));\n    loggedInActions.forEach((action) => this.app.acl.allow('users', action, 'loggedIn'));\n  }\n\n  async load() {\n    await this.db.import({\n      directory: resolve(__dirname, 'collections'),\n    });\n  }\n\n  getRootUserInfo() {\n    const {\n      adminNickname = 'Super Admin',\n      adminEmail = 'admin@nocobase.com',\n      adminPassword = 'admin123',\n    } = this.options.installing || {};\n\n    return {\n      adminNickname,\n      adminEmail,\n      adminPassword,\n    };\n  }\n\n  async install() {\n    const { adminNickname, adminPassword, adminEmail } = this.getRootUserInfo();\n\n    const User = this.db.getCollection('users');\n    const user = await User.repository.create<UserModel>({\n      values: {\n        nickname: adminNickname,\n        email: adminEmail,\n        password: adminPassword,\n        roles: ['root', 'admin'],\n      },\n    });\n\n    await user.setDefaultRole('root');\n\n    const repo = this.db.getRepository<any>('collections');\n    if (repo) {\n      await repo.db2cm('users');\n    }\n  }\n\n  getName(): string {\n    return this.getPackageName(__dirname);\n  }\n}\n"]}

package/lib/actions/users.d.ts

@@ -8,3 +8,4 @@ export declare function resetpassword(ctx: Context, next: Next): Promise<void>;
 export declare function getUserByResetToken(ctx: Context, next: Next): Promise<void>;
 export declare function updateProfile(ctx: Context, next: Next): Promise<void>;
 export declare function changePassword(ctx: Context, next: Next): Promise<void>;
+export declare function setDefaultRole(ctx: Context, next: Next): Promise<void>;