npm - @saltcorn/server - Versions diffs - 0.8.7-beta.6 → 0.8.8-beta.0 - Mend

@saltcorn/server 0.8.7-beta.6 → 0.8.8-beta.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (23) hide show

package/auth/admin.js +20 -16
package/auth/routes.js +12 -8
package/load_plugins.js +14 -1
package/locales/en.json +29 -1
package/locales/si.json +1197 -0
package/package.json +8 -8
package/public/diagram_utils.js +21 -1
package/public/relationship_diagram_utils.js +32 -10
package/public/saltcorn-common.js +40 -19
package/public/saltcorn.js +11 -5
package/routes/admin.js +2 -0
package/routes/common_lists.js +34 -19
package/routes/diagram.js +214 -199
package/routes/fields.js +113 -6
package/routes/index.js +2 -0
package/routes/models.js +492 -0
package/routes/page.js +10 -6
package/routes/tables.js +105 -47
package/routes/view.js +10 -6
package/routes/viewedit.js +27 -5
package/tests/plugins.test.js +103 -2
package/tests/view.test.js +217 -0
package/public/vis-network.min.js +0 -49

package/auth/admin.js CHANGED Viewed

@@ -55,9 +55,9 @@ module.exports = router;
  */
 const getUserFields = async (req) => {
   const userTable = Table.findOne({ name: "users" });
-  const userFields = (userTable.getFields()).filter(
-    (f) => !f.calculated && f.name !== "id"
-  );
+  const userFields = userTable
+    .getFields()
+    .filter((f) => !f.calculated && f.name !== "id");
   //console.log("userFields:",userFields);
   const iterForm = async (cfgField) => {
     const signup_form_name = getState().getConfig(cfgField, "");
@@ -242,6 +242,22 @@ router.get(
   "/",
   isAdmin,
   error_catcher(async (req, res) => {
+    const auth_methods = getState().auth_methods;
+    const userBadges = (user) =>
+      span(
+        !!user.disabled &&
+          span({ class: "badge bg-danger me-1" }, req.__("Disabled")),
+        !!user.verified_on &&
+          span({ class: "badge bg-success me-1" }, req.__("Verified")),
+        Object.entries(auth_methods)
+          .filter(
+            ([k, v]) =>
+              v.setsUserAttribute && user._attributes[v.setsUserAttribute]
+          )
+          .map(([k, v]) =>
+            span({ class: "badge bg-secondary me-1" }, v.label || k)
+          )
+      );
     const users = await User.find({}, { orderBy: "id" });
     const roles = await User.get_roles();
     let roleMap = {};
@@ -278,19 +294,7 @@ router.get(
               },
               {
                 label: "",
-                key: (r) =>
-                  r.disabled
-                    ? span({ class: "badge bg-danger" }, req.__("Disabled"))
-                    : "",
-              },
-              {
-                label: req.__("Verified"),
-                key: (r) =>
-                  r.verified_on
-                    ? i({
-                        class: "fas fa-check-circle text-success",
-                      })
-                    : "",
+                key: userBadges,
               },
               { label: req.__("Role"), key: (r) => roleMap[r.role_id] },
               {

package/auth/routes.js CHANGED Viewed

@@ -445,7 +445,7 @@ router.post(
         req.flash("success", req.__("Email with password reset link sent"));
         res.redirect("/auth/login");
       };
-      if (!u) {
+      if (!u || !u.password) {
         respond();
         return;
       }
@@ -1339,12 +1339,16 @@ const userSettings = async ({ req, res, pwform, user }) => {
           )
         ),
       },
-      {
-        type: "card",
-        title: req.__("Change password"),
-        contents: renderForm(pwform, req.csrfToken()),
-      },
-      ...(show2FAPolicy
+      ...(user.password
+        ? [
+            {
+              type: "card",
+              title: req.__("Change password"),
+              contents: renderForm(pwform, req.csrfToken()),
+            },
+          ]
+        : []),
+      ...(user.password && show2FAPolicy
         ? [
             {
               type: "card",
@@ -1560,7 +1564,7 @@ router.post(
   loggedIn,
   error_catcher(async (req, res) => {
     const user = await User.findOne({ id: req.user.id });
-    if (req.body.new_password) {
+    if (req.body.new_password && user.password) {
       const pwform = changPwForm(req);
       pwform.fields[0].validator = (oldpw) => {

package/load_plugins.js CHANGED Viewed

@@ -7,7 +7,7 @@
  */
 const db = require("@saltcorn/data/db");
 const { PluginManager } = require("live-plugin-manager");
-const { getState } = require("@saltcorn/data/db/state");
+const { getState, getRootState } = require("@saltcorn/data/db/state");
 const Plugin = require("@saltcorn/data/models/plugin");
 const fs = require("fs");
 const proc = require("child_process");
@@ -179,10 +179,23 @@ const loadAllPlugins = async () => {
  * @returns {Promise<void>}
  */
 const loadAndSaveNewPlugin = async (plugin, force, noSignalOrDB) => {
+  const tenants_unsafe_plugins = getRootState().getConfig(
+    "tenants_unsafe_plugins",
+    false
+  );
+  const isRoot = db.getTenantSchema() === db.connectObj.default_schema;
+  if (!isRoot && !tenants_unsafe_plugins) {
+    if (plugin.source !== "npm") return;
+    //get allowed plugins
+    const instore = await Plugin.store_plugins_available();
+    const safes = instore.filter((p) => !p.unsafe).map((p) => p.location);
+    if (!safes.includes(plugin.location)) return;
+  }
   const { version, plugin_module, location } = await requirePlugin(
     plugin,
     force
   );
   // install dependecies
   for (const loc of plugin_module.dependencies || []) {
     const existing = await Plugin.findOne({ location: loc });

package/locales/en.json CHANGED Viewed

@@ -1168,6 +1168,22 @@
 	"Tag Entries": "Tag Entries",
 	"Not a valid field name": "Not a valid field name",
 	"Set a default value for missing data": "Set a default value for missing data",
+	"Create model": "Create model",
+	"Models": "Models",
+	"New model": "New model",
+	"Show model": "Show model",
+	"Model instances": "Model instances",
+	"Trained": "Trained",
+	"Train new instance": "Train new instance",
+	"Train model": "Train model",
+	"Train": "Train",
+	"Report": "Report",
+	"Model training report": "Model training report",
+	"Model training error": "Model training error",
+	"Training error": "Training error",
+	"Model": "Model",
+	"Model instance": "Model instance",
+	"Prediction output": "Prediction output",
 	"Table triggers: ": "Table triggers: ",
 	"App name": "App name",
 	"App icon": "App icon",
@@ -1193,5 +1209,17 @@
 	"Prevent any deletion of parent rows": "Prevent any deletion of parent rows",
 	"If the parent row is deleted, set key fields on child rows to null": "If the parent row is deleted, set key fields on child rows to null",
 	"Link out?": "Link out?",
-	"Show a link to open popup contents in new tab": "Show a link to open popup contents in new tab"
+	"Show a link to open popup contents in new tab": "Show a link to open popup contents in new tab",
+	"Model %s deleted": "Model %s deleted",
+	"Model instance %s deleted": "Model instance %s deleted",
+	"Action information saved": "Action information saved",
+	"JavaScript code:": "JavaScript code:",
+	"code here": "code here",
+	"Page '%s' was loaded": "Page '%s' was loaded",
+	"View '%s' was loaded": "View '%s' was loaded",
+	"Error message": "Error message",
+	"Error shown to user if uniqueness is violated": "Error shown to user if uniqueness is violated",
+	"Protected": "Protected",
+	"Set role to access": "Set role to access",
+	"User must have this role or higher to update or create field values": "User must have this role or higher to update or create field values"
 }