npm - @sap/cds - Versions diffs - 8.4.1 → 8.5.0 - Mend

@sap/cds 8.4.1 → 8.5.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (71) hide show

package/CHANGELOG.md +41 -1
package/_i18n/messages.properties +99 -0
package/bin/serve.js +2 -2
package/lib/compile/cdsc.js +9 -4
package/lib/compile/to/srvinfo.js +4 -4
package/lib/core/classes.js +5 -1
package/lib/core/entities.js +1 -0
package/lib/core/types.js +1 -1
package/lib/dbs/cds-deploy.js +4 -1
package/lib/env/defaults.js +7 -6
package/lib/env/schemas/cds-rc.js +132 -22
package/lib/i18n/bundles.js +111 -0
package/lib/i18n/files.js +134 -0
package/lib/i18n/index.js +63 -0
package/lib/i18n/localize.js +101 -237
package/lib/i18n/resources.js +150 -0
package/lib/index.js +1 -0
package/lib/log/format/aspects/cls.js +6 -1
package/lib/log/format/json.js +1 -1
package/lib/ql/CREATE.js +1 -0
package/lib/ql/DELETE.js +1 -0
package/lib/ql/DROP.js +1 -0
package/lib/ql/INSERT.js +9 -8
package/lib/ql/Query.js +18 -8
package/lib/ql/SELECT.js +1 -0
package/lib/ql/UPDATE.js +2 -1
package/lib/ql/UPSERT.js +1 -1
package/lib/ql/Whereable.js +3 -3
package/lib/ql/cds-ql.js +12 -18
package/lib/req/user.js +1 -0
package/lib/req/validate.js +12 -3
package/lib/srv/factory.js +2 -2
package/lib/{auth → srv/middlewares/auth}/basic-auth.js +1 -1
package/lib/{auth → srv/middlewares/auth}/dummy-auth.js +1 -1
package/lib/srv/middlewares/auth/ias-auth.js +96 -0
package/lib/{auth → srv/middlewares/auth}/index.js +2 -2
package/lib/srv/middlewares/auth/jwt-auth.js +62 -0
package/lib/{auth → srv/middlewares/auth}/mocked-users.js +1 -1
package/lib/srv/middlewares/auth/xssec.js +7 -0
package/lib/srv/middlewares/index.js +1 -1
package/lib/utils/cds-utils.js +15 -19
package/lib/utils/tar.js +2 -2
package/libx/_runtime/cds-services/adapter/odata-v4/OData.js +2 -2
package/libx/_runtime/cds-services/adapter/odata-v4/handlers/read.js +1 -0
package/libx/_runtime/cds-services/adapter/odata-v4/handlers/update.js +1 -1
package/libx/_runtime/common/error/frontend.js +2 -6
package/libx/_runtime/common/error/log.js +7 -8
package/libx/_runtime/common/error/utils.js +3 -7
package/libx/_runtime/common/generic/auth/capabilities.js +1 -1
package/libx/_runtime/common/generic/input.js +41 -6
package/libx/_runtime/common/i18n/index.js +8 -15
package/libx/_runtime/common/utils/compareJson.js +10 -1
package/libx/_runtime/common/utils/resolveView.js +1 -1
package/libx/_runtime/fiori/lean-draft.js +77 -26
package/libx/_runtime/messaging/enterprise-messaging-utils/registerEndpoints.js +5 -1
package/libx/_runtime/messaging/kafka.js +1 -1
package/libx/odata/index.js +3 -0
package/libx/odata/middleware/create.js +8 -6
package/libx/odata/middleware/update.js +24 -21
package/libx/odata/parse/afterburner.js +15 -2
package/libx/odata/parse/grammar.peggy +24 -7
package/libx/odata/parse/parser.js +1 -1
package/libx/odata/utils/postProcess.js +4 -1
package/libx/rest/RestAdapter.js +2 -1
package/libx/rest/middleware/error.js +0 -50
package/package.json +1 -1
package/lib/auth/ias-auth.js +0 -68
package/lib/auth/ias-claims.js +0 -34
package/lib/auth/jwt-auth.js +0 -70
package/libx/_runtime/common/i18n/messages.properties +0 -99
package/libx/_runtime/common/utils/require.js +0 -9

package/lib/auth/jwt-auth.js DELETED Viewed

@@ -1,70 +0,0 @@
-const cds = require('../')
-const LOG = cds.log('auth')
-// _require for better error message
-const _require = require('../../libx/_runtime/common/utils/require')
-let xssec = _require('@sap/xssec')
-// use v3 compat api
-if (xssec.v3) xssec = xssec.v3
-module.exports = function jwt_auth(config) {
-  const { kind, credentials } = config
-  if (!credentials) {
-    let msg = `Authentication kind "${kind}" configured, but no XSUAA instance bound to application.`
-    msg += ' Either bind an XSUAA instance, or switch to an authentication kind that does not require a binding.'
-    throw new Error(msg)
-  }
-  function getUser(tokenInfo) {
-    const payload = tokenInfo.getPayload()
-    let id = payload.user_name
-    // Roles = scope names w/o xsappname
-    const xsappname = new RegExp(`^${credentials.xsappname}\\.`)
-    let roles = payload.scope.map(s => s.replace(xsappname, ''))
-    // Disallow setting system roles from external
-    roles = roles.filter(r => !(r in { 'internal-user': 1, 'system-user': 1 }))
-    if (payload.grant_type in { client_credentials: 1, client_x509: 1 }) {
-      id = 'system'
-      roles.push('system-user')
-      if (tokenInfo.getClientId() === credentials.clientid) roles.push('internal-user')
-    }
-    const attr = Object.assign({}, payload['xs.user.attributes'])
-    if (kind === 'xsuaa') {
-      attr.logonName = payload.user_name
-      attr.givenName = payload.given_name
-      attr.familyName = payload.family_name
-      attr.email = payload.email
-    }
-    return new cds.User({ id, roles, attr, tokenInfo })
-  }
-  return (req, _, next) => {
-    if (!req.headers.authorization) return next()
-    const token = req.headers.authorization.split(/^bearer /i)[1]
-    xssec.createSecurityContext(token, credentials, function (err, securityContext, tokenInfo) {
-      if (err) {
-        const level = (err.statusCode >= 400 && err.statusCode < 500) ? 'warn' : 'error'
-        LOG[level]('User could not be authenticated due to error:', err)
-      }
-      if (!securityContext) return next(new cds.error('Unauthorized', { code: 401, statusCode: 401 }))
-      const ctx = cds.context
-      ctx.user = getUser(tokenInfo)
-      ctx.tenant = tokenInfo.getZoneId()
-      req.authInfo = securityContext //> compat req.authInfo
-      next()
-    })
-  }
-}

package/libx/_runtime/common/i18n/messages.properties DELETED Viewed

@@ -1,99 +0,0 @@
-400=Bad Request
-401=Unauthorized
-403=Forbidden
-404=Not Found
-405=Method Not Allowed
-406=Not Acceptable
-407=Proxy Authentication Required
-408=Request Timeout
-409=Conflict
-410=Gone
-411=Length Required
-412=Precondition Failed
-413=Payload Too Large
-414=URI Too Long
-415=Unsupported Media Type
-416=Range Not Satisfiable
-417=Expectation Failed
-422=Unprocessable Content
-424=Failed Dependency
-428=Precondition Required
-429=Too Many Requests
-431=Request Header Fields Too Large
-451=Unavailable For Legal Reasons
-500=Internal Server Error
-501=The server does not support the functionality required to fulfill the request
-502=Bad Gateway
-503=Service Unavailable
-504=Gateway Timeout
-MULTIPLE_ERRORS=Multiple errors occurred. Please see the details for more information.
-# -------------------------------------------------------------------------------------------------
-# all texts below are subject to change!
-# -------------------------------------------------------------------------------------------------
-# fragments
-ENTITY=entity
-TYPE=type
-FUNCTION=function
-ACTION=action
-# assert
-ASSERT_VALID_ELEMENT=Element is not valid
-ASSERT_RANGE=Value {0} is not in specified range [{1}, {2}]
-ASSERT_FORMAT=Value "{0}" is not in specified format "{1}"
-ASSERT_DATA_TYPE=Value {0} is not a valid {1}
-ASSERT_ARRAY=Value must be an array
-ASSERT_ENUM=Value {0} is invalid according to enum declaration {{1}}
-ASSERT_NOT_NULL=Value is required
-ASSERT_TARGET="Value doesn't exist"
-# db
-NO_DATABASE_CONNECTION=No database connection
-ENTITY_ALREADY_EXISTS=Entity already exists
-ENTITY_LOCKED=Entity locked
-UNIQUE_CONSTRAINT_VIOLATION=Unique constraint violation
-FK_CONSTRAINT_VIOLATION=Foreign key constraint violation
-# remote
-INVALID_CONTENT_TYPE_ONLY_JSON=Invalid content type. Only "application/json" is supported.
-# access control
-INSERTABLE=insertable
-READABLE=readable
-UPDATABLE=updatable
-DELETABLE=deletable
-ENTITY_IS_INSERT_ONLY=Entity "{0}" is insert-only
-ENTITY_IS_READ_ONLY=Entity "{0}" is read-only
-ENTITY_IS_NOT_CRUD=Entity "{0}" is not {1}
-ENTITY_IS_NOT_CRUD_VIA_NAVIGATION=Entity "{0}" is not {1} via navigation "{2}"
-ENTITY_IS_AUTOEXPOSED=Entity "{0}" is not explicitly exposed as part of the service
-ENTITY_IS_AUTOEXPOSE_READONLY=Entity "{0}" is explicitly exposed as readonly
-EXPAND_IS_RESTRICTED=Navigation property "{0}" is not allowed for expand operation
-# rest protocol adapter
-INVALID_RESOURCE="{0}" is not a valid resource
-INVALID_PARAMETER="{0}" is not a valid parameter
-INVALID_PARAMETER_VALUE_TYPE=Parameter value for "{0}" must be of type "{1}"
-INVALID_OPERATION_FOR_ENTITY=Entity "{0}" has no {1} "{2}"
-NO_MATCHING_RESOURCE=The server has not found a resource matching the requested URI
-INVALID_POST=POST is only allowed on resource collections and actions
-INVALID_PUT=PUT is only allowed on a specific resource
-INVALID_PATCH=PATCH is only allowed on a specific resource
-INVALID_DELETE=DELETE is only supported on a specific resource
-CRUD_VIA_NAVIGATION_NOT_SUPPORTED=CRUD via navigations is not yet supported
-# OData protocol adapter
-BATCH_TOO_MANY_REQ=Batch request contains too many requests
-# draft
-DRAFT_ALREADY_EXISTS=A draft for this entity already exists
-DRAFT_NOT_EXISTING=No draft for this entity exists
-DRAFT_LOCKED_BY_ANOTHER_USER=The entity is locked by user "{0}"
-DRAFT_MODIFICATION_ONLY_VIA_ROOT=A draft-enabled entity can only be modified via its root entity
-ACTIVE_MODIFICATION_VIA_DRAFT=Active entities cannot be modified via draft request
-DRAFT_ACTIVE_DELETE_FORBIDDEN_DRAFT_EXISTS=Entity cannot be deleted because a draft exists
-# singleton
-SINGLETON_NOT_NULLABLE=The singleton entity is not nullable

package/libx/_runtime/common/utils/require.js DELETED Viewed

@@ -1,9 +0,0 @@
-module.exports = name => {
-  name = Array.isArray(name) ? name[0] : name
-  try {
-    return require(name)
-  } catch (e) {
-    e.message = `Cannot find module '${name}'. Make sure to install it with 'npm i ${name}'\n` + e.message
-    throw e
-  }
-}