@strapi/admin 4.9.0-alpha.0 → 4.9.0-beta.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (591) hide show
  1. package/admin/src/StrapiApp.js +1 -1
  2. package/admin/src/components/AutoReloadOverlayBlockerProvider/Blocker.js +6 -10
  3. package/admin/src/components/AutoReloadOverlayBlockerProvider/Overlay.js +2 -3
  4. package/admin/src/components/GuidedTour/Homepage/components/Step.js +1 -3
  5. package/admin/src/components/GuidedTour/Homepage/components/Stepper.js +1 -1
  6. package/admin/src/components/GuidedTour/Homepage/index.js +4 -8
  7. package/admin/src/components/GuidedTour/Modal/components/Content.js +35 -25
  8. package/admin/src/components/GuidedTour/Modal/components/Modal.js +7 -11
  9. package/admin/src/components/GuidedTour/Modal/components/StepNumberWithPadding.js +1 -1
  10. package/admin/src/components/GuidedTour/Modal/components/Stepper.js +2 -5
  11. package/admin/src/components/GuidedTour/Stepper/StepLine.js +1 -1
  12. package/admin/src/components/GuidedTour/Stepper/StepNumber.js +2 -4
  13. package/admin/src/components/LeftMenu/index.js +5 -10
  14. package/admin/src/components/Notifications/Notification/index.js +10 -3
  15. package/admin/src/components/Notifications/index.js +6 -4
  16. package/admin/src/components/Theme/index.js +1 -1
  17. package/admin/src/content-manager/components/AttributeFilter/Filters.js +2 -3
  18. package/admin/src/content-manager/components/CollectionTypeFormWrapper/index.js +0 -2
  19. package/admin/src/content-manager/components/ComponentInitializer/index.js +4 -7
  20. package/admin/src/content-manager/components/DragLayer/RelationDragPreview.js +3 -3
  21. package/admin/src/content-manager/components/DynamicTable/CellContent/Media/FileWrapper.js +1 -2
  22. package/admin/src/content-manager/components/DynamicTable/CellContent/Media/index.js +3 -3
  23. package/admin/src/content-manager/components/DynamicTable/CellContent/MultipleMedias.js +1 -1
  24. package/admin/src/content-manager/components/DynamicTable/CellContent/RelationMultiple/index.js +14 -11
  25. package/admin/src/content-manager/components/DynamicTable/CellContent/RelationSingle/index.js +1 -1
  26. package/admin/src/content-manager/components/DynamicTable/CellContent/RepeatableComponent/index.js +1 -4
  27. package/admin/src/content-manager/components/DynamicTable/CellContent/SingleComponent/index.js +1 -2
  28. package/admin/src/content-manager/components/DynamicTable/CellContent/index.js +1 -2
  29. package/admin/src/content-manager/components/DynamicTable/ConfirmDialogDelete/index.js +4 -9
  30. package/admin/src/content-manager/components/DynamicTable/ConfirmDialogDeleteAll/index.js +4 -9
  31. package/admin/src/content-manager/components/DynamicTable/TableRows/index.js +3 -9
  32. package/admin/src/content-manager/components/DynamicTable/index.js +1 -2
  33. package/admin/src/content-manager/components/DynamicZone/components/AddComponentButton.js +2 -5
  34. package/admin/src/content-manager/components/DynamicZone/components/ComponentCard.js +4 -6
  35. package/admin/src/content-manager/components/DynamicZone/components/ComponentCategory.js +1 -2
  36. package/admin/src/content-manager/components/DynamicZone/components/ComponentPicker.js +1 -4
  37. package/admin/src/content-manager/components/DynamicZone/components/DynamicComponent.js +3 -6
  38. package/admin/src/content-manager/components/DynamicZone/components/DynamicZoneLabel.js +1 -3
  39. package/admin/src/content-manager/components/DynamicZone/index.js +3 -3
  40. package/admin/src/content-manager/components/DynamicZone/utils/select.js +1 -1
  41. package/admin/src/content-manager/components/EditViewDataManagerProvider/index.js +3 -31
  42. package/admin/src/content-manager/components/EditViewDataManagerProvider/reducer.js +65 -134
  43. package/admin/src/content-manager/components/EditViewDataManagerProvider/utils/findAllAndReplace.js +85 -0
  44. package/admin/src/content-manager/components/EditViewDataManagerProvider/utils/index.js +1 -2
  45. package/admin/src/content-manager/components/EditViewDataManagerProvider/utils/schema.js +7 -1
  46. package/admin/src/content-manager/components/FieldComponent/Label.js +1 -3
  47. package/admin/src/content-manager/components/FieldComponent/index.js +4 -7
  48. package/admin/src/content-manager/components/FieldComponent/utils/select.js +2 -1
  49. package/admin/src/content-manager/components/FieldTypeIcon/index.js +15 -13
  50. package/admin/src/content-manager/components/Hint/index.js +1 -1
  51. package/admin/src/content-manager/components/InjectionZoneList/index.js +1 -1
  52. package/admin/src/content-manager/components/InputUID/endActionStyle.js +1 -3
  53. package/admin/src/content-manager/components/InputUID/index.js +2 -6
  54. package/admin/src/content-manager/components/Inputs/utils/getInputType.js +1 -1
  55. package/admin/src/content-manager/components/Inputs/utils/select.js +1 -1
  56. package/admin/src/content-manager/components/NonRepeatableComponent/index.js +3 -5
  57. package/admin/src/content-manager/components/RelationInput/RelationInput.js +17 -14
  58. package/admin/src/content-manager/components/RelationInput/components/Option.js +1 -2
  59. package/admin/src/content-manager/components/RelationInput/components/Relation.js +9 -4
  60. package/admin/src/content-manager/components/RelationInput/components/RelationItem.js +4 -4
  61. package/admin/src/content-manager/components/RelationInput/components/RelationList.js +1 -1
  62. package/admin/src/content-manager/components/RelationInputDataManager/RelationInputDataManager.js +39 -33
  63. package/admin/src/content-manager/components/RepeatableComponent/components/Component.js +12 -6
  64. package/admin/src/content-manager/components/Wysiwyg/Editor.js +2 -2
  65. package/admin/src/content-manager/components/Wysiwyg/WysiwygFooter.js +2 -4
  66. package/admin/src/content-manager/components/Wysiwyg/WysiwygNav.js +24 -18
  67. package/admin/src/content-manager/components/Wysiwyg/WysiwygStyles.js +1 -2
  68. package/admin/src/content-manager/components/Wysiwyg/index.js +5 -7
  69. package/admin/src/content-manager/components/Wysiwyg/utils/continueList.js +3 -3
  70. package/admin/src/content-manager/hooks/useContentTypeLayout/index.js +1 -2
  71. package/admin/src/content-manager/hooks/useFetchContentTypeLayout/utils/formatLayouts.js +4 -1
  72. package/admin/src/content-manager/hooks/useRelation/useRelation.js +2 -2
  73. package/admin/src/content-manager/pages/App/LeftMenu/index.js +1 -1
  74. package/admin/src/content-manager/pages/App/index.js +1 -2
  75. package/admin/src/content-manager/pages/App/useModels.js +1 -1
  76. package/admin/src/content-manager/pages/App/utils/generateModelsLinks.js +9 -8
  77. package/admin/src/content-manager/pages/CollectionTypeRecursivePath/components/ErrorFallback.js +1 -1
  78. package/admin/src/content-manager/pages/CollectionTypeRecursivePath/index.js +1 -2
  79. package/admin/src/content-manager/pages/EditSettingsView/components/ComponentFieldList.js +2 -5
  80. package/admin/src/content-manager/pages/EditSettingsView/components/DisplayedFieldButton.js +2 -4
  81. package/admin/src/content-manager/pages/EditSettingsView/components/DisplayedFields.js +6 -11
  82. package/admin/src/content-manager/pages/EditSettingsView/components/DynamicZoneList.js +3 -3
  83. package/admin/src/content-manager/pages/EditSettingsView/components/FieldButtonContent.js +2 -6
  84. package/admin/src/content-manager/pages/EditSettingsView/components/FormModal.js +5 -5
  85. package/admin/src/content-manager/pages/EditSettingsView/components/GenericInput.js +1 -3
  86. package/admin/src/content-manager/pages/EditSettingsView/components/LinkToCTB.js +1 -1
  87. package/admin/src/content-manager/pages/EditSettingsView/components/ModalForm.js +1 -2
  88. package/admin/src/content-manager/pages/EditSettingsView/components/RowsLayout.js +1 -1
  89. package/admin/src/content-manager/pages/EditSettingsView/index.js +17 -13
  90. package/admin/src/content-manager/pages/EditSettingsView/init.js +3 -1
  91. package/admin/src/content-manager/pages/EditSettingsView/utils/createPossibleMainFieldsForModelsAndComponents.js +2 -4
  92. package/admin/src/content-manager/pages/EditView/DeleteLink/index.js +2 -2
  93. package/admin/src/content-manager/pages/EditView/DeleteLink/utils/select.js +1 -1
  94. package/admin/src/content-manager/pages/EditView/DraftAndPublishBadge/index.js +3 -5
  95. package/admin/src/content-manager/pages/EditView/GridRow/index.js +1 -1
  96. package/admin/src/content-manager/pages/EditView/Header/index.js +17 -16
  97. package/admin/src/content-manager/pages/EditView/Information/index.js +9 -9
  98. package/admin/src/content-manager/pages/EditView/index.js +10 -15
  99. package/admin/src/content-manager/pages/EditView/utils/createAttributesLayout.js +2 -1
  100. package/admin/src/content-manager/pages/EditView/utils/getFieldsActionMatchingPermissions.js +2 -1
  101. package/admin/src/content-manager/pages/ListSettingsView/components/CardPreview.js +4 -8
  102. package/admin/src/content-manager/pages/ListSettingsView/components/DraggableCard.js +4 -9
  103. package/admin/src/content-manager/pages/ListSettingsView/components/EditFieldForm.js +8 -7
  104. package/admin/src/content-manager/pages/ListSettingsView/components/Settings.js +14 -10
  105. package/admin/src/content-manager/pages/ListSettingsView/components/SortDisplayedFields.js +4 -9
  106. package/admin/src/content-manager/pages/ListSettingsView/index.js +10 -7
  107. package/admin/src/content-manager/pages/ListView/FieldPicker/index.js +1 -2
  108. package/admin/src/content-manager/pages/ListView/PaginationFooter/index.js +1 -2
  109. package/admin/src/content-manager/pages/ListView/index.js +12 -10
  110. package/admin/src/content-manager/pages/NoContentType/index.js +2 -5
  111. package/admin/src/content-manager/pages/NoPermissions/index.js +1 -2
  112. package/admin/src/content-manager/utils/checkIfAttributeIsDisplayable.js +1 -1
  113. package/admin/src/content-manager/utils/createDefaultForm.js +2 -10
  114. package/admin/src/content-manager/utils/formatLayoutToApi.js +2 -1
  115. package/admin/src/content-manager/utils/getFieldName.js +1 -1
  116. package/admin/src/content-manager/utils/mergeMetasWithSchema.js +1 -1
  117. package/admin/src/content-manager/utils/paths.js +1 -1
  118. package/admin/src/content-manager/utils/removePasswordFieldsFromData.js +1 -1
  119. package/admin/src/hooks/index.js +2 -0
  120. package/admin/src/hooks/useLicenseLimitNotification/index.js +5 -0
  121. package/admin/src/hooks/useLicenseLimits/index.js +3 -0
  122. package/admin/src/hooks/useMenu/reducer.js +1 -3
  123. package/admin/src/hooks/useRegenerate/index.js +13 -8
  124. package/admin/src/hooks/useSettingsForm/index.js +3 -3
  125. package/admin/src/hooks/useSettingsForm/reducer.js +3 -1
  126. package/admin/src/hooks/useSettingsMenu/reducer.js +1 -1
  127. package/admin/src/hooks/useSettingsMenu/utils/defaultGlobalLinks.js +7 -0
  128. package/admin/src/index.js +0 -1
  129. package/admin/src/layouts/AppLayout/index.js +1 -3
  130. package/admin/src/layouts/UnauthenticatedLayout/LocaleToggle/index.js +1 -1
  131. package/admin/src/layouts/UnauthenticatedLayout/index.js +1 -2
  132. package/admin/src/pages/Admin/Onboarding/index.js +26 -7
  133. package/admin/src/pages/App/index.js +1 -1
  134. package/admin/src/pages/AuthPage/components/FieldActionWrapper/index.js +1 -1
  135. package/admin/src/pages/AuthPage/components/ForgotPassword/index.js +3 -9
  136. package/admin/src/pages/AuthPage/components/ForgotPasswordSuccess/index.js +1 -4
  137. package/admin/src/pages/AuthPage/components/Login/BaseLogin.js +4 -12
  138. package/admin/src/pages/AuthPage/components/Oops/index.js +1 -4
  139. package/admin/src/pages/AuthPage/components/Register/index.js +14 -13
  140. package/admin/src/pages/AuthPage/components/ResetPassword/index.js +4 -11
  141. package/admin/src/pages/AuthPage/reducer.js +1 -1
  142. package/admin/src/pages/HomePage/CloudBox.js +83 -0
  143. package/admin/src/pages/HomePage/ContentBlocks.js +6 -7
  144. package/admin/src/pages/HomePage/HomeHeader.js +5 -12
  145. package/admin/src/pages/HomePage/SocialLinks.js +37 -34
  146. package/admin/src/pages/HomePage/assets/strapi-cloud-background.png +0 -0
  147. package/admin/src/pages/HomePage/assets/strapi-cloud-flags.svg +1 -0
  148. package/admin/src/pages/HomePage/assets/strapi-cloud-icon.svg +1 -0
  149. package/admin/src/pages/HomePage/index.js +3 -4
  150. package/admin/src/pages/InstalledPluginsPage/Plugins.js +14 -5
  151. package/admin/src/pages/InternalErrorPage/index.js +2 -5
  152. package/admin/src/pages/MarketplacePage/components/EmptyNpmPackageSearch/EmptyNpmPackageGrid.js +1 -2
  153. package/admin/src/pages/MarketplacePage/components/EmptyNpmPackageSearch/index.js +2 -5
  154. package/admin/src/pages/MarketplacePage/components/MissingPluginBanner/index.js +2 -3
  155. package/admin/src/pages/MarketplacePage/components/NpmPackageCard/CardButton.js +2 -4
  156. package/admin/src/pages/MarketplacePage/components/NpmPackageCard/InstallPluginButton.js +2 -4
  157. package/admin/src/pages/MarketplacePage/components/NpmPackageCard/PackageStats.js +4 -9
  158. package/admin/src/pages/MarketplacePage/components/NpmPackageCard/index.js +5 -11
  159. package/admin/src/pages/MarketplacePage/components/NpmPackagesFilters/FilterSelect.js +1 -1
  160. package/admin/src/pages/MarketplacePage/components/NpmPackagesFilters/FiltersPopover.js +3 -6
  161. package/admin/src/pages/MarketplacePage/components/NpmPackagesFilters/index.js +2 -5
  162. package/admin/src/pages/MarketplacePage/components/NpmPackagesGrid/index.js +1 -1
  163. package/admin/src/pages/MarketplacePage/components/PageHeader/index.js +3 -3
  164. package/admin/src/pages/MarketplacePage/components/SortSelect/index.js +1 -2
  165. package/admin/src/pages/MarketplacePage/index.js +15 -8
  166. package/admin/src/pages/NotFoundPage/index.js +2 -5
  167. package/admin/src/pages/ProfilePage/index.js +27 -24
  168. package/admin/src/pages/SettingsPage/components/Filters/index.js +2 -3
  169. package/admin/src/pages/SettingsPage/components/SettingsNav/index.js +1 -1
  170. package/admin/src/pages/SettingsPage/{pages/ApiTokens/EditView/components → components/Tokens}/FormHead/index.js +45 -26
  171. package/admin/src/pages/SettingsPage/components/Tokens/LifeSpanInput/index.js +97 -0
  172. package/admin/src/pages/SettingsPage/components/Tokens/Regenerate/index.js +75 -0
  173. package/admin/src/pages/SettingsPage/components/Tokens/Table/DeleteButton/index.js +52 -0
  174. package/admin/src/pages/SettingsPage/{pages/ApiTokens/ListView/DynamicTable → components/Tokens/Table}/ReadButton/index.js +1 -1
  175. package/admin/src/pages/SettingsPage/{pages/ApiTokens/ListView/DynamicTable → components/Tokens/Table}/UpdateButton/index.js +1 -1
  176. package/admin/src/pages/SettingsPage/components/Tokens/Table/index.js +145 -0
  177. package/admin/src/pages/SettingsPage/{pages/ApiTokens/EditView/components/ContentBox → components/Tokens/TokenBox}/index.js +20 -18
  178. package/admin/src/pages/SettingsPage/components/Tokens/TokenDescription/index.js +51 -0
  179. package/admin/src/pages/SettingsPage/components/Tokens/TokenName/index.js +46 -0
  180. package/admin/src/pages/SettingsPage/components/Tokens/TokenTypeSelect/index.js +71 -0
  181. package/admin/src/pages/SettingsPage/components/Tokens/constants.js +2 -0
  182. package/admin/src/pages/SettingsPage/index.js +1 -1
  183. package/admin/src/pages/SettingsPage/pages/ApiTokens/EditView/components/ActionBoundRoutes/index.js +5 -7
  184. package/admin/src/pages/SettingsPage/pages/ApiTokens/EditView/components/BoundRoute/index.js +5 -7
  185. package/admin/src/pages/SettingsPage/pages/ApiTokens/EditView/components/CollapsableContentType/CheckBoxWrapper.js +1 -1
  186. package/admin/src/pages/SettingsPage/pages/ApiTokens/EditView/components/CollapsableContentType/index.js +17 -10
  187. package/admin/src/pages/SettingsPage/pages/ApiTokens/EditView/components/ContenTypesSection/index.js +1 -1
  188. package/admin/src/pages/SettingsPage/pages/ApiTokens/EditView/components/FormApiTokenContainer/index.js +56 -149
  189. package/admin/src/pages/SettingsPage/pages/ApiTokens/EditView/components/LoadingView/index.js +2 -4
  190. package/admin/src/pages/SettingsPage/pages/ApiTokens/EditView/components/Permissions/index.js +3 -5
  191. package/admin/src/pages/SettingsPage/pages/ApiTokens/EditView/components/Regenerate/index.js +12 -8
  192. package/admin/src/pages/SettingsPage/pages/ApiTokens/EditView/index.js +48 -19
  193. package/admin/src/pages/SettingsPage/pages/ApiTokens/EditView/reducer.js +1 -1
  194. package/admin/src/pages/SettingsPage/pages/ApiTokens/EditView/utils/schema.js +1 -1
  195. package/admin/src/pages/SettingsPage/pages/ApiTokens/EditView/utils/transformPermissionsData.js +6 -8
  196. package/admin/src/pages/SettingsPage/pages/ApiTokens/ListView/index.js +18 -20
  197. package/admin/src/pages/SettingsPage/pages/ApplicationInfosPage/components/AdminSeatInfo/index.js +5 -0
  198. package/admin/src/pages/SettingsPage/pages/ApplicationInfosPage/components/CustomizationInfos/index.js +1 -3
  199. package/admin/src/pages/SettingsPage/pages/ApplicationInfosPage/components/LogoInput/index.js +8 -5
  200. package/admin/src/pages/SettingsPage/pages/ApplicationInfosPage/components/LogoModalStepper/AddLogoDialog.js +1 -3
  201. package/admin/src/pages/SettingsPage/pages/ApplicationInfosPage/components/LogoModalStepper/FromComputerForm.js +14 -11
  202. package/admin/src/pages/SettingsPage/pages/ApplicationInfosPage/components/LogoModalStepper/FromUrlForm.js +1 -4
  203. package/admin/src/pages/SettingsPage/pages/ApplicationInfosPage/components/LogoModalStepper/ImageCardAsset.js +1 -1
  204. package/admin/src/pages/SettingsPage/pages/ApplicationInfosPage/components/LogoModalStepper/PendingLogoDialog.js +1 -5
  205. package/admin/src/pages/SettingsPage/pages/ApplicationInfosPage/components/LogoModalStepper/index.js +1 -2
  206. package/admin/src/pages/SettingsPage/pages/ApplicationInfosPage/index.js +63 -74
  207. package/admin/src/pages/SettingsPage/pages/Roles/CreatePage/index.js +266 -4
  208. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/CollapseLabel/index.js +1 -1
  209. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ConditionsButton/index.js +2 -2
  210. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ConditionsModal/ActionRow/index.js +2 -6
  211. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ConditionsModal/index.js +5 -4
  212. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ConditionsModal/utils/createDefaultConditionsForm.js +1 -1
  213. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ContentTypeCollapse/Collapse/index.js +4 -8
  214. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ContentTypeCollapse/Collapse/utils/generateCheckboxesActions.js +2 -1
  215. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ContentTypeCollapse/CollapsePropertyMatrix/ActionRow/index.js +3 -5
  216. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ContentTypeCollapse/CollapsePropertyMatrix/ActionRow/utils/getRowLabelCheckboxeState.js +2 -1
  217. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ContentTypeCollapse/CollapsePropertyMatrix/CarretIcon/index.js +1 -1
  218. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ContentTypeCollapse/CollapsePropertyMatrix/Header/index.js +1 -2
  219. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ContentTypeCollapse/CollapsePropertyMatrix/SubActionRow/index.js +3 -7
  220. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ContentTypeCollapse/CollapsePropertyMatrix/index.js +1 -1
  221. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ContentTypeCollapse/utils/activeStyle.js +1 -1
  222. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ContentTypes/index.js +1 -1
  223. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/Curve/index.js +1 -1
  224. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/GlobalActions/index.js +12 -12
  225. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/GlobalActions/utils/getRowLabelCheckboxesState.js +1 -1
  226. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/Permissions/index.js +1 -1
  227. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/Permissions/reducer.js +6 -1
  228. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/Permissions/utils/createDefaultCTFormFromLayout.js +5 -1
  229. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/Permissions/utils/createDefaultPluginsFormFromLayout.js +1 -2
  230. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/Permissions/utils/formatContentTypesPermissionToAPI.js +2 -2
  231. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/Permissions/utils/formatLayoutForSettingsAndPlugins.js +12 -16
  232. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/Permissions/utils/updateConditionsToFalse.js +4 -1
  233. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/Permissions/utils/updateValues.js +1 -1
  234. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/PluginsAndSettings/Row/index.js +1 -2
  235. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/PluginsAndSettings/SubCategory/index.js +4 -12
  236. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/PluginsAndSettings/SubCategory/utils/formatActions.js +1 -1
  237. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/PluginsAndSettings/index.js +1 -1
  238. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/RoleForm/index.js +12 -10
  239. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/RowLabelWithCheckbox/index.js +1 -4
  240. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/utils/createArrayOfValues.js +2 -1
  241. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/index.js +6 -10
  242. package/admin/src/pages/SettingsPage/pages/Roles/ListPage/components/RoleRow/index.js +1 -5
  243. package/admin/src/pages/SettingsPage/pages/Roles/ListPage/index.js +314 -129
  244. package/admin/src/pages/SettingsPage/pages/TransferTokens/EditView/components/FormTransferTokenContainer/index.js +142 -0
  245. package/admin/src/pages/SettingsPage/pages/TransferTokens/EditView/components/LoadingView/index.js +48 -0
  246. package/admin/src/pages/SettingsPage/pages/TransferTokens/EditView/index.js +263 -0
  247. package/admin/src/pages/SettingsPage/pages/TransferTokens/EditView/utils/getDateOfExpiration.js +16 -0
  248. package/admin/src/pages/SettingsPage/pages/TransferTokens/EditView/utils/index.js +4 -0
  249. package/admin/src/pages/SettingsPage/pages/TransferTokens/EditView/utils/schema.js +11 -0
  250. package/admin/src/pages/SettingsPage/pages/TransferTokens/ListView/index.js +216 -0
  251. package/admin/src/pages/SettingsPage/pages/TransferTokens/ListView/utils/tableHeaders.js +48 -0
  252. package/admin/src/pages/SettingsPage/pages/TransferTokens/ProtectedCreateView/index.js +14 -0
  253. package/admin/src/pages/SettingsPage/pages/TransferTokens/ProtectedEditView/index.js +14 -0
  254. package/admin/src/pages/SettingsPage/pages/TransferTokens/ProtectedListView/index.js +12 -0
  255. package/admin/src/pages/SettingsPage/pages/Users/EditPage/index.js +19 -19
  256. package/admin/src/pages/SettingsPage/pages/Users/ListPage/CreateAction/index.js +24 -0
  257. package/admin/src/pages/SettingsPage/pages/Users/ListPage/DynamicTable/TableRows/index.js +11 -8
  258. package/admin/src/pages/SettingsPage/pages/Users/ListPage/ModalForm/index.js +17 -12
  259. package/admin/src/pages/SettingsPage/pages/Users/ListPage/PaginationFooter/index.js +1 -2
  260. package/admin/src/pages/SettingsPage/pages/Users/ListPage/index.js +32 -34
  261. package/admin/src/pages/SettingsPage/pages/Users/ListPage/utils/tableHeaders.js +1 -2
  262. package/admin/src/pages/SettingsPage/pages/Users/ProtectedEditPage/index.js +2 -2
  263. package/admin/src/pages/SettingsPage/pages/Users/components/SelectRoles/index.js +2 -2
  264. package/admin/src/pages/SettingsPage/pages/Webhooks/EditView/components/EventInput/EventRow.js +1 -2
  265. package/admin/src/pages/SettingsPage/pages/Webhooks/EditView/components/EventInput/index.js +3 -5
  266. package/admin/src/pages/SettingsPage/pages/Webhooks/EditView/components/HeadersInput/Combobox.js +1 -1
  267. package/admin/src/pages/SettingsPage/pages/Webhooks/EditView/components/HeadersInput/index.js +12 -10
  268. package/admin/src/pages/SettingsPage/pages/Webhooks/EditView/components/TriggerContainer/index.js +10 -16
  269. package/admin/src/pages/SettingsPage/pages/Webhooks/EditView/components/WebhookForm/index.js +17 -15
  270. package/admin/src/pages/SettingsPage/pages/Webhooks/EditView/index.js +1 -1
  271. package/admin/src/pages/SettingsPage/pages/Webhooks/EditView/utils/formatData.js +1 -7
  272. package/admin/src/pages/SettingsPage/pages/Webhooks/ListView/index.js +183 -182
  273. package/admin/src/pages/SettingsPage/utils/defaultRoutes.js +51 -10
  274. package/admin/src/pages/UseCasePage/index.js +13 -11
  275. package/admin/src/permissions/defaultPermissions.js +8 -0
  276. package/admin/src/permissions/index.js +1 -1
  277. package/admin/src/translations/ca.json +13 -19
  278. package/admin/src/translations/de.json +6 -12
  279. package/admin/src/translations/dk.json +6 -12
  280. package/admin/src/translations/en.json +221 -190
  281. package/admin/src/translations/es.json +6 -12
  282. package/admin/src/translations/eu.json +178 -184
  283. package/admin/src/translations/fr.json +6 -12
  284. package/admin/src/translations/gu.json +0 -6
  285. package/admin/src/translations/he.json +0 -6
  286. package/admin/src/translations/hi.json +6 -12
  287. package/admin/src/translations/hu.json +19 -25
  288. package/admin/src/translations/id.json +0 -6
  289. package/admin/src/translations/it.json +0 -6
  290. package/admin/src/translations/ja.json +6 -12
  291. package/admin/src/translations/ko.json +6 -12
  292. package/admin/src/translations/ml.json +6 -12
  293. package/admin/src/translations/nl.json +19 -25
  294. package/admin/src/translations/no.json +0 -6
  295. package/admin/src/translations/pl.json +6 -12
  296. package/admin/src/translations/pt-BR.json +6 -12
  297. package/admin/src/translations/ru.json +859 -785
  298. package/admin/src/translations/sa.json +6 -12
  299. package/admin/src/translations/sk.json +2 -8
  300. package/admin/src/translations/sv.json +19 -25
  301. package/admin/src/translations/th.json +0 -6
  302. package/admin/src/translations/tr.json +19 -25
  303. package/admin/src/translations/zh-Hans.json +895 -669
  304. package/admin/src/translations/zh.json +19 -25
  305. package/admin/src/utils/getAttributesToDisplay.js +2 -4
  306. package/admin/src/utils/getExistingActions.js +1 -3
  307. package/admin/src/utils/sortLinks.js +1 -1
  308. package/build/{2223.1bfea951.chunk.js → 2263.4c5916f9.chunk.js} +66 -177
  309. package/build/27d16aefee06412db90a.png +0 -0
  310. package/build/4049.64715f20.chunk.js +1 -0
  311. package/build/5563.aa832e5f.chunk.js +30 -0
  312. package/build/6985.66cca29c.chunk.js +1 -0
  313. package/build/7259.e6ef3b8e.chunk.js +1 -0
  314. package/build/{5015.8e3fe50b.chunk.js → 8469.853c822b.chunk.js} +1 -6
  315. package/build/9505.dbe702ab.chunk.js +14 -0
  316. package/build/9816.01ee964f.chunk.js +2 -0
  317. package/build/Admin-authenticatedApp.5a090404.chunk.js +79 -0
  318. package/build/Admin_InternalErrorPage.4ad8b0df.chunk.js +1 -0
  319. package/build/Admin_homePage.1411fb7c.chunk.js +68 -0
  320. package/build/Admin_marketplace.02608d56.chunk.js +22 -0
  321. package/build/Admin_pluginsPage.15e3b0fd.chunk.js +1 -0
  322. package/build/Admin_profilePage.76afeca0.chunk.js +15 -0
  323. package/build/Admin_settingsPage.0aa4fcdc.chunk.js +9 -0
  324. package/build/Upload_ConfigureTheView.34dde278.chunk.js +1 -0
  325. package/build/admin-app.50584489.chunk.js +112 -0
  326. package/build/admin-edit-roles-page.cf543488.chunk.js +216 -0
  327. package/build/admin-edit-users.31c20712.chunk.js +10 -0
  328. package/build/admin-roles-list.489c501f.chunk.js +2 -0
  329. package/build/admin-users.3e111a7d.chunk.js +11 -0
  330. package/build/{api-tokens-create-page.a31c7fba.chunk.js → api-tokens-create-page.2a6e22bd.chunk.js} +1 -1
  331. package/build/{api-tokens-edit-page.64fef287.chunk.js → api-tokens-edit-page.fa38cd63.chunk.js} +1 -1
  332. package/build/api-tokens-list-page.93f24348.chunk.js +16 -0
  333. package/build/audit-logs-settings-page.7be97e82.chunk.js +1 -0
  334. package/build/bb3108f7fd1e6179bde1.svg +1 -0
  335. package/build/bb4d0d527bdfb161bc5a.svg +1 -0
  336. package/build/ca-json.43e14418.chunk.js +1 -0
  337. package/build/content-manager.f8b9710b.chunk.js +1139 -0
  338. package/build/content-type-builder-list-view.cf38fe2f.chunk.js +191 -0
  339. package/build/content-type-builder-translation-zh-Hans-json.415577fb.chunk.js +1 -0
  340. package/build/content-type-builder.0f5dbcf1.chunk.js +126 -0
  341. package/build/de-json.fcac7381.chunk.js +1 -0
  342. package/build/dk-json.e34cad0d.chunk.js +1 -0
  343. package/build/email-settings-page.4bdbef9a.chunk.js +3 -0
  344. package/build/en-json.b052667a.chunk.js +1 -0
  345. package/build/es-json.715b6fd8.chunk.js +1 -0
  346. package/build/eu-json.fb17c8f9.chunk.js +1 -0
  347. package/build/fr-json.f66c3211.chunk.js +1 -0
  348. package/build/gu-json.4d667d0c.chunk.js +1 -0
  349. package/build/{he-json.f0de8cdb.chunk.js → he-json.3cf0b48a.chunk.js} +1 -1
  350. package/build/hi-json.323be97d.chunk.js +1 -0
  351. package/build/hu-json.fe71e6c8.chunk.js +1 -0
  352. package/build/i18n-settings-page.2bb5be96.chunk.js +1 -0
  353. package/build/id-json.41e07c46.chunk.js +1 -0
  354. package/build/index.html +1 -1
  355. package/build/it-json.bfe27ed8.chunk.js +1 -0
  356. package/build/ja-json.81b6d1e3.chunk.js +1 -0
  357. package/build/ko-json.4539f4ba.chunk.js +1 -0
  358. package/build/main.7fa3d343.js +3783 -0
  359. package/build/ml-json.8988e374.chunk.js +1 -0
  360. package/build/nl-json.98345913.chunk.js +1 -0
  361. package/build/{no-json.9b3cd181.chunk.js → no-json.19a2dbfa.chunk.js} +1 -1
  362. package/build/pl-json.59a5dab3.chunk.js +1 -0
  363. package/build/pt-BR-json.9410688b.chunk.js +1 -0
  364. package/build/ru-json.6a01cea6.chunk.js +1 -0
  365. package/build/runtime~main.ee2bfeea.js +2 -0
  366. package/build/sa-json.6359a11c.chunk.js +1 -0
  367. package/build/sk-json.2374f129.chunk.js +1 -0
  368. package/build/sso-settings-page.272b87c8.chunk.js +1 -0
  369. package/build/sv-json.ae6e71ea.chunk.js +1 -0
  370. package/build/th-json.5f659396.chunk.js +1 -0
  371. package/build/tr-json.bac5dbd3.chunk.js +1 -0
  372. package/build/transfer-tokens-create-page.a1f14bb1.chunk.js +1 -0
  373. package/build/transfer-tokens-edit-page.00ee1c74.chunk.js +1 -0
  374. package/build/transfer-tokens-list-page.3c9b0280.chunk.js +16 -0
  375. package/build/upload-settings.0875e973.chunk.js +1 -0
  376. package/build/upload-translation-zh-Hans-json.db163b6b.chunk.js +1 -0
  377. package/build/upload.c7da1611.chunk.js +13 -0
  378. package/build/users-advanced-settings-page.1d3c14c7.chunk.js +1 -0
  379. package/build/users-email-settings-page.e8db68c4.chunk.js +1 -0
  380. package/build/users-permissions-translation-zh-Hans-json.6ab714ee.chunk.js +1 -0
  381. package/build/users-providers-settings-page.14cac425.chunk.js +1 -0
  382. package/build/users-roles-settings-page.2ea4de84.chunk.js +30 -0
  383. package/build/webhook-edit-page.329141a5.chunk.js +23 -0
  384. package/build/webhook-list-page.029957a4.chunk.js +1 -0
  385. package/build/zh-Hans-json.4cfef87d.chunk.js +1 -0
  386. package/build/zh-json.3529f1e5.chunk.js +1 -0
  387. package/ee/admin/hooks/index.js +2 -0
  388. package/ee/admin/hooks/useLicenseLimitNotification/index.js +88 -0
  389. package/ee/admin/hooks/useLicenseLimits/index.js +31 -0
  390. package/ee/admin/hooks/useSettingsMenu/utils/customAdminLinks.js +12 -12
  391. package/ee/admin/hooks/useSettingsMenu/utils/customGlobalLinks.js +13 -21
  392. package/ee/admin/pages/AuthPage/components/Login/index.js +3 -7
  393. package/ee/admin/pages/AuthPage/components/Providers/SSOProviders.js +1 -4
  394. package/ee/admin/pages/AuthPage/components/Providers/index.js +3 -10
  395. package/ee/admin/pages/SettingsPage/pages/ApplicationInfosPage/components/AdminSeatInfo/index.js +88 -0
  396. package/ee/admin/pages/SettingsPage/pages/AuditLogs/ListView/Modal/ActionBody.js +2 -7
  397. package/ee/admin/pages/SettingsPage/pages/AuditLogs/ListView/Modal/ActionItem.js +1 -2
  398. package/ee/admin/pages/SettingsPage/pages/AuditLogs/ListView/Modal/index.js +1 -2
  399. package/ee/admin/pages/SettingsPage/pages/AuditLogs/ListView/PaginationFooter/index.js +1 -2
  400. package/ee/admin/pages/SettingsPage/pages/AuditLogs/ListView/TableRows/index.js +2 -5
  401. package/ee/admin/pages/SettingsPage/pages/AuditLogs/ListView/utils/getDisplayedFilters.js +21 -10
  402. package/ee/admin/pages/SettingsPage/pages/AuditLogs/ListView/utils/tableHeaders.js +1 -1
  403. package/ee/admin/pages/SettingsPage/pages/SingleSignOn/index.js +25 -11
  404. package/ee/admin/pages/SettingsPage/pages/Users/ListPage/CreateAction/index.js +52 -0
  405. package/ee/admin/pages/SettingsPage/utils/customRoutes.js +2 -16
  406. package/ee/admin/permissions/customPermissions.js +0 -3
  407. package/ee/server/bootstrap.js +4 -7
  408. package/ee/server/config/admin-actions.js +0 -10
  409. package/ee/server/controllers/admin.js +49 -0
  410. package/ee/server/controllers/index.js +1 -3
  411. package/ee/server/controllers/role.js +0 -39
  412. package/ee/server/controllers/user.js +62 -4
  413. package/ee/server/index.js +0 -1
  414. package/ee/server/routes/index.js +9 -122
  415. package/ee/server/services/audit-logs.js +15 -5
  416. package/ee/server/services/index.js +2 -3
  417. package/ee/server/services/seat-enforcement.js +114 -0
  418. package/ee/server/services/user.js +234 -0
  419. package/ee/server/utils/persisted-tables.js +49 -0
  420. package/ee/server/validation/role.js +28 -20
  421. package/package.json +18 -17
  422. package/server/bootstrap.js +2 -1
  423. package/server/config/admin-actions.js +48 -0
  424. package/server/content-types/User.js +4 -0
  425. package/server/content-types/api-token.js +1 -0
  426. package/server/content-types/index.js +2 -0
  427. package/server/content-types/transfer-token-permission.js +36 -0
  428. package/server/content-types/transfer-token.js +66 -0
  429. package/server/controllers/api-token.js +8 -7
  430. package/server/controllers/index.js +1 -0
  431. package/server/controllers/permission.js +2 -4
  432. package/server/controllers/role.js +70 -23
  433. package/server/controllers/transfer/index.js +13 -0
  434. package/server/controllers/transfer/runner.js +28 -0
  435. package/server/controllers/transfer/token.js +131 -0
  436. package/server/controllers/user.js +7 -1
  437. package/server/domain/user.js +3 -0
  438. package/server/middlewares/data-transfer.js +29 -0
  439. package/server/middlewares/index.js +1 -0
  440. package/server/register.js +2 -9
  441. package/server/routes/index.js +2 -0
  442. package/server/routes/roles.js +48 -0
  443. package/server/routes/transfer.js +102 -0
  444. package/server/services/api-token.js +2 -3
  445. package/server/services/constants.js +10 -0
  446. package/server/services/index.js +1 -0
  447. package/server/services/permission/permissions-manager/index.js +9 -5
  448. package/server/services/permission/permissions-manager/sanitize.js +103 -4
  449. package/server/services/permission/queries.js +1 -74
  450. package/server/services/transfer/index.js +7 -0
  451. package/server/services/transfer/permission.js +22 -0
  452. package/server/services/transfer/token.js +426 -0
  453. package/server/services/transfer/utils.js +38 -0
  454. package/server/strategies/api-token.js +4 -2
  455. package/server/strategies/data-transfer.js +109 -0
  456. package/server/strategies/index.js +1 -0
  457. package/server/utils/index.d.ts +2 -0
  458. package/server/validation/api-tokens.js +1 -6
  459. package/server/validation/permission.js +1 -82
  460. package/server/validation/role.js +44 -0
  461. package/server/validation/transfer/index.js +5 -0
  462. package/server/validation/transfer/token.js +42 -0
  463. package/webpack.alias.js +0 -1
  464. package/admin/src/assets/images/hot-air-balloon.png +0 -0
  465. package/admin/src/assets/images/upgrade-details.png +0 -0
  466. package/admin/src/components/UpgradePlanModal/index.js +0 -131
  467. package/admin/src/content-manager/components/EditViewDataManagerProvider/utils/findLeafByPathAndReplace.js +0 -51
  468. package/admin/src/content-manager/components/EditViewDataManagerProvider/utils/recursivelyFindPathsBasedOnCondition.js +0 -79
  469. package/admin/src/pages/SettingsPage/pages/ApiTokens/EditView/components/FormBody/index.js +0 -78
  470. package/admin/src/pages/SettingsPage/pages/ApiTokens/ListView/DynamicTable/DeleteButton/index.js +0 -40
  471. package/admin/src/pages/SettingsPage/pages/ApiTokens/ListView/DynamicTable/index.js +0 -112
  472. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ConditionsModal/ActionRow/utils/constants.js +0 -3
  473. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ContentTypeCollapse/Collapse/utils/constants.js +0 -3
  474. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ContentTypeCollapse/CollapsePropertyMatrix/ActionRow/utils/constants.js +0 -3
  475. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ContentTypeCollapse/CollapsePropertyMatrix/SubActionRow/utils/constants.js +0 -3
  476. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/GlobalActions/utils/constants.js +0 -3
  477. package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/PluginsAndSettings/SubCategory/utils/constants.js +0 -3
  478. package/build/1412.936ed920.chunk.js +0 -159
  479. package/build/1683.d59d0f23.chunk.js +0 -268
  480. package/build/2607.2e48dbf8.chunk.js +0 -66
  481. package/build/2743.646a1015.chunk.js +0 -45
  482. package/build/3075.3ee481f1.chunk.js +0 -108
  483. package/build/3632.2e378cf8.chunk.js +0 -138
  484. package/build/4318.cd55ce02.chunk.js +0 -30
  485. package/build/617f9c948fa79e6d73bd.png +0 -0
  486. package/build/6d21938306785f176538.png +0 -0
  487. package/build/8633.00ccd382.chunk.js +0 -1
  488. package/build/9707.b36ed71e.chunk.js +0 -96
  489. package/build/Admin-authenticatedApp.a73577e1.chunk.js +0 -79
  490. package/build/Admin_InternalErrorPage.178ddb90.chunk.js +0 -1
  491. package/build/Admin_homePage.c2f5f27d.chunk.js +0 -77
  492. package/build/Admin_marketplace.1df49c42.chunk.js +0 -26
  493. package/build/Admin_pluginsPage.8d824408.chunk.js +0 -6
  494. package/build/Admin_profilePage.cb667bc5.chunk.js +0 -15
  495. package/build/Admin_settingsPage.f90615fb.chunk.js +0 -178
  496. package/build/Upload_ConfigureTheView.d306009d.chunk.js +0 -1
  497. package/build/admin-app.06f07029.chunk.js +0 -112
  498. package/build/admin-edit-roles-page.35199b9d.chunk.js +0 -1
  499. package/build/admin-edit-users.9e48b00d.chunk.js +0 -10
  500. package/build/admin-users.cf7b4151.chunk.js +0 -11
  501. package/build/api-tokens-list-page.e600ad3e.chunk.js +0 -16
  502. package/build/audit-logs-settings-page.d4da4579.chunk.js +0 -1
  503. package/build/ca-json.4d999055.chunk.js +0 -1
  504. package/build/content-manager.255c3a59.chunk.js +0 -1139
  505. package/build/content-type-builder-list-view.8d7a3d68.chunk.js +0 -193
  506. package/build/content-type-builder-translation-zh-Hans-json.52a30266.chunk.js +0 -1
  507. package/build/content-type-builder.3c8558a5.chunk.js +0 -126
  508. package/build/de-json.866f8a28.chunk.js +0 -1
  509. package/build/dk-json.10f7b1d1.chunk.js +0 -1
  510. package/build/email-settings-page.b19f2eb2.chunk.js +0 -10
  511. package/build/en-json.1997583c.chunk.js +0 -1
  512. package/build/es-json.ea15c957.chunk.js +0 -1
  513. package/build/eu-json.3bc24d60.chunk.js +0 -1
  514. package/build/fr-json.e88fbdfd.chunk.js +0 -1
  515. package/build/gu-json.94f0d242.chunk.js +0 -1
  516. package/build/hi-json.df3a7be2.chunk.js +0 -1
  517. package/build/hu-json.680e6eef.chunk.js +0 -1
  518. package/build/i18n-settings-page.a6b49eac.chunk.js +0 -60
  519. package/build/id-json.e0d83d41.chunk.js +0 -1
  520. package/build/it-json.8be59205.chunk.js +0 -1
  521. package/build/ja-json.97ee41ba.chunk.js +0 -1
  522. package/build/ko-json.4cbbf4f2.chunk.js +0 -1
  523. package/build/main.7f308c20.js +0 -4322
  524. package/build/ml-json.e3747091.chunk.js +0 -1
  525. package/build/nl-json.371a15ee.chunk.js +0 -1
  526. package/build/pl-json.e535cbce.chunk.js +0 -1
  527. package/build/pt-BR-json.e5fafa46.chunk.js +0 -1
  528. package/build/review-workflows-settings.7b4be1b0.chunk.js +0 -63
  529. package/build/ru-json.866f0ff1.chunk.js +0 -1
  530. package/build/runtime~main.bf374148.js +0 -2
  531. package/build/sa-json.7efeb257.chunk.js +0 -1
  532. package/build/sk-json.7bbeb0af.chunk.js +0 -1
  533. package/build/sso-settings-page.ad2143dd.chunk.js +0 -41
  534. package/build/sv-json.dc40951f.chunk.js +0 -1
  535. package/build/th-json.f664b96d.chunk.js +0 -1
  536. package/build/tr-json.b79eae31.chunk.js +0 -1
  537. package/build/upload-settings.eb1a7908.chunk.js +0 -84
  538. package/build/upload-translation-zh-Hans-json.3da5cf56.chunk.js +0 -1
  539. package/build/upload.700e2c84.chunk.js +0 -33
  540. package/build/users-advanced-settings-page.aae212f2.chunk.js +0 -8
  541. package/build/users-email-settings-page.8a9b0da1.chunk.js +0 -23
  542. package/build/users-permissions-translation-zh-Hans-json.0b31c705.chunk.js +0 -1
  543. package/build/users-providers-settings-page.e6be909d.chunk.js +0 -99
  544. package/build/users-roles-settings-page.97d06a80.chunk.js +0 -30
  545. package/build/webhook-edit-page.9eb0f789.chunk.js +0 -75
  546. package/build/webhook-list-page.66082323.chunk.js +0 -42
  547. package/build/zh-Hans-json.30a18940.chunk.js +0 -1
  548. package/build/zh-json.49d84433.chunk.js +0 -1
  549. package/ee/admin/pages/SettingsPage/pages/ReviewWorkflows/ReviewWorkflows.js +0 -137
  550. package/ee/admin/pages/SettingsPage/pages/ReviewWorkflows/actions/index.js +0 -42
  551. package/ee/admin/pages/SettingsPage/pages/ReviewWorkflows/components/AddStage/AddStage.js +0 -87
  552. package/ee/admin/pages/SettingsPage/pages/ReviewWorkflows/components/AddStage/index.js +0 -1
  553. package/ee/admin/pages/SettingsPage/pages/ReviewWorkflows/components/Stages/Stage/Stage.js +0 -90
  554. package/ee/admin/pages/SettingsPage/pages/ReviewWorkflows/components/Stages/Stage/index.js +0 -1
  555. package/ee/admin/pages/SettingsPage/pages/ReviewWorkflows/components/Stages/Stages.js +0 -77
  556. package/ee/admin/pages/SettingsPage/pages/ReviewWorkflows/components/Stages/index.js +0 -1
  557. package/ee/admin/pages/SettingsPage/pages/ReviewWorkflows/constants.js +0 -6
  558. package/ee/admin/pages/SettingsPage/pages/ReviewWorkflows/hooks/useReviewWorkflows.js +0 -63
  559. package/ee/admin/pages/SettingsPage/pages/ReviewWorkflows/index.js +0 -3
  560. package/ee/admin/pages/SettingsPage/pages/ReviewWorkflows/reducer/index.js +0 -102
  561. package/ee/admin/pages/SettingsPage/pages/ReviewWorkflows/utils/getWorkflowValidationSchema.js +0 -25
  562. package/ee/admin/pages/SettingsPage/pages/Roles/CreatePage/index.js +0 -267
  563. package/ee/admin/pages/SettingsPage/pages/Roles/EditPage/components/ConditionsModal/ActionRow/utils/constants.js +0 -3
  564. package/ee/admin/pages/SettingsPage/pages/Roles/EditPage/components/ConditionsModal/ConditionsSelect/MenuList/utils/constants.js +0 -3
  565. package/ee/admin/pages/SettingsPage/pages/Roles/EditPage/components/ContentTypeCollapse/Collapse/utils/constants.js +0 -3
  566. package/ee/admin/pages/SettingsPage/pages/Roles/EditPage/components/ContentTypeCollapse/CollapsePropertyMatrix/ActionRow/utils/constants.js +0 -3
  567. package/ee/admin/pages/SettingsPage/pages/Roles/EditPage/components/ContentTypeCollapse/CollapsePropertyMatrix/SubActionRow/utils/constants.js +0 -3
  568. package/ee/admin/pages/SettingsPage/pages/Roles/EditPage/components/GlobalActions/utils/constants.js +0 -3
  569. package/ee/admin/pages/SettingsPage/pages/Roles/EditPage/components/PluginsAndSettings/SubCategory/utils/constants.js +0 -3
  570. package/ee/admin/pages/SettingsPage/pages/Roles/ListPage/index.js +0 -370
  571. package/ee/admin/pages/SettingsPage/pages/Roles/ProtectedListPage/index.js +0 -12
  572. package/ee/server/constants/default-stages.json +0 -14
  573. package/ee/server/constants/default-workflow.json +0 -1
  574. package/ee/server/constants/workflows.js +0 -7
  575. package/ee/server/content-types/index.js +0 -9
  576. package/ee/server/content-types/workflow/index.js +0 -34
  577. package/ee/server/content-types/workflow-stage/index.js +0 -36
  578. package/ee/server/controllers/permission.js +0 -21
  579. package/ee/server/controllers/workflows/index.js +0 -36
  580. package/ee/server/controllers/workflows/stages/index.js +0 -57
  581. package/ee/server/services/review-workflows/review-workflows.js +0 -54
  582. package/ee/server/services/review-workflows/stages.js +0 -133
  583. package/ee/server/services/review-workflows/workflows.js +0 -25
  584. package/ee/server/utils/index.js +0 -8
  585. package/ee/server/utils/test.js +0 -11
  586. package/ee/server/validation/permission.js +0 -8
  587. package/ee/server/validation/review-workflows.js +0 -17
  588. package/server/domain/role.js +0 -29
  589. package/admin/src/pages/SettingsPage/{pages/ApiTokens/ListView/DynamicTable → components/Tokens/Table}/DefaultButton/index.js +1 -1
  590. /package/{ee/admin → admin/src}/pages/SettingsPage/pages/Roles/CreatePage/utils/schema.js +0 -0
  591. /package/{ee/admin → admin/src}/pages/SettingsPage/pages/Roles/ListPage/reducer.js +0 -0
package/server/controllers/transfer/token.js ADDED
@@ -0,0 +1,131 @@
1
+ 'use strict';
2
+
3
+ const { trim, has } = require('lodash/fp');
4
+ const {
5
+ errors: { ApplicationError },
6
+ stringEquals,
7
+ } = require('@strapi/utils');
8
+
9
+ const {
10
+ token: { validateTransferTokenCreationInput, validateTransferTokenUpdateInput },
11
+ } = require('../../validation/transfer');
12
+ const { getService } = require('../../utils');
13
+
14
+ module.exports = {
15
+ async list(ctx) {
16
+ const transferService = getService('transfer');
17
+ const transferTokens = await transferService.token.list();
18
+
19
+ ctx.body = { data: transferTokens };
20
+ },
21
+
22
+ async getById(ctx) {
23
+ const { id } = ctx.params;
24
+ const tokenService = getService('transfer').token;
25
+
26
+ const transferToken = await tokenService.getById(id);
27
+
28
+ if (!transferToken) {
29
+ ctx.notFound('Transfer token not found');
30
+ return;
31
+ }
32
+
33
+ ctx.body = { data: transferToken };
34
+ },
35
+
36
+ async create(ctx) {
37
+ const { body } = ctx.request;
38
+ const { token: tokenService } = getService('transfer');
39
+
40
+ /**
41
+ * We trim fields to avoid having issues with either:
42
+ * - having a space at the end or start of the value
43
+ * - having only spaces as value (so that an empty field can be caught in validation)
44
+ */
45
+ const attributes = {
46
+ name: trim(body.name),
47
+ description: trim(body.description),
48
+ permissions: body.permissions,
49
+ lifespan: body.lifespan,
50
+ };
51
+
52
+ await validateTransferTokenCreationInput(attributes);
53
+
54
+ const alreadyExists = await tokenService.exists({ name: attributes.name });
55
+ if (alreadyExists) {
56
+ throw new ApplicationError('Name already taken');
57
+ }
58
+
59
+ const transferTokens = await tokenService.create(attributes);
60
+
61
+ ctx.created({ data: transferTokens });
62
+ },
63
+
64
+ async update(ctx) {
65
+ const { body } = ctx.request;
66
+ const { id } = ctx.params;
67
+ const { token: tokenService } = getService('transfer');
68
+
69
+ const attributes = body;
70
+ /**
71
+ * We trim fields to avoid having issues with either:
72
+ * - having a space at the end or start of the value
73
+ * - having only spaces as value (so that an empty field can be caught in validation)
74
+ */
75
+ if (has('name', attributes)) {
76
+ attributes.name = trim(body.name);
77
+ }
78
+
79
+ if (has('description', attributes) || attributes.description === null) {
80
+ attributes.description = trim(body.description);
81
+ }
82
+
83
+ await validateTransferTokenUpdateInput(attributes);
84
+
85
+ const apiTokenExists = await tokenService.getById(id);
86
+ if (!apiTokenExists) {
87
+ return ctx.notFound('Transfer token not found');
88
+ }
89
+
90
+ if (has('name', attributes)) {
91
+ const nameAlreadyTaken = await tokenService.getByName(attributes.name);
92
+
93
+ /**
94
+ * We cast the ids as string as the one coming from the ctx isn't cast
95
+ * as a Number in case it is supposed to be an integer. It remains
96
+ * as a string. This way we avoid issues with integers in the db.
97
+ */
98
+ if (!!nameAlreadyTaken && !stringEquals(nameAlreadyTaken.id, id)) {
99
+ throw new ApplicationError('Name already taken');
100
+ }
101
+ }
102
+
103
+ const apiToken = await tokenService.update(id, attributes);
104
+
105
+ ctx.body = { data: apiToken };
106
+ },
107
+
108
+ async revoke(ctx) {
109
+ const { id } = ctx.params;
110
+ const { token: tokenService } = getService('transfer');
111
+
112
+ const transferToken = await tokenService.revoke(id);
113
+
114
+ ctx.deleted({ data: transferToken });
115
+ },
116
+
117
+ async regenerate(ctx) {
118
+ const { id } = ctx.params;
119
+ const { token: tokenService } = getService('transfer');
120
+
121
+ const exists = await tokenService.getById(id);
122
+ if (!exists) {
123
+ ctx.notFound('Transfer token not found');
124
+ return;
125
+ }
126
+
127
+ const accessToken = await tokenService.regenerate(id);
128
+
129
+ ctx.created({ data: accessToken });
130
+ },
131
+ };
package/server/controllers/user.js CHANGED
@@ -48,7 +48,13 @@ module.exports = {
48
48
  async find(ctx) {
49
49
  const userService = getService('user');
50
50
 
51
- const { results, pagination } = await userService.findPage(ctx.query);
51
+ const permissionsManager = strapi.admin.services.permission.createPermissionsManager({
52
+ ability: ctx.state.userAbility,
53
+ model: 'admin::user',
54
+ });
55
+ const sanitizedQuery = await permissionsManager.sanitizeQuery(ctx.query);
56
+
57
+ const { results, pagination } = await userService.findPage(sanitizedQuery);
52
58
 
53
59
  ctx.body = {
54
60
  data: {
package/server/domain/user.js CHANGED
@@ -19,7 +19,10 @@ const hasSuperAdminRole = (user) => {
19
19
  return user.roles.filter((role) => role.code === SUPER_ADMIN_CODE).length > 0;
20
20
  };
21
21
 
22
+ const ADMIN_USER_ALLOWED_FIELDS = ['id', 'firstname', 'lastname', 'username'];
23
+
22
24
  module.exports = {
23
25
  createUser,
24
26
  hasSuperAdminRole,
27
+ ADMIN_USER_ALLOWED_FIELDS,
25
28
  };
package/server/middlewares/data-transfer.js ADDED
@@ -0,0 +1,29 @@
1
+ 'use strict';
2
+
3
+ const { getService } = require('../utils');
4
+
5
+ module.exports = () => async (ctx, next) => {
6
+ const transferUtils = getService('transfer').utils;
7
+
8
+ const { hasValidTokenSalt, isDataTransferEnabled, isDisabledFromEnv } = transferUtils;
9
+
10
+ if (isDataTransferEnabled()) {
11
+ return next();
12
+ }
13
+
14
+ if (!hasValidTokenSalt()) {
15
+ return ctx.notImplemented(
16
+ 'The server configuration for data transfer is invalid. Please contact your server administrator.',
17
+ {
18
+ code: 'INVALID_TOKEN_SALT',
19
+ }
20
+ );
21
+ }
22
+
23
+ if (isDisabledFromEnv()) {
24
+ return ctx.notFound();
25
+ }
26
+
27
+ // This should never happen as long as we're handling individual scenarios above
28
+ throw new Error('Unexpected error while trying to access a data transfer route');
29
+ };
package/server/middlewares/index.js CHANGED
@@ -4,4 +4,5 @@ const rateLimit = require('./rateLimit');
4
4
 
5
5
  module.exports = {
6
6
  rateLimit,
7
+ 'data-transfer': require('./data-transfer'),
7
8
  };
package/server/register.js CHANGED
@@ -1,9 +1,9 @@
1
1
  'use strict';
2
2
 
3
- // const { register: registerDataTransferRoute } = require('@strapi/data-transfer/lib/strapi');
4
-
5
3
  const registerAdminPanelRoute = require('./routes/serve-admin-panel');
4
+
6
5
  const adminAuthStrategy = require('./strategies/admin');
6
+
7
7
  const apiTokenAuthStrategy = require('./strategies/api-token');
8
8
 
9
9
  module.exports = ({ strapi }) => {
@@ -16,11 +16,4 @@ module.exports = ({ strapi }) => {
16
16
  if (strapi.config.serveAdminPanel) {
17
17
  registerAdminPanelRoute({ strapi });
18
18
  }
19
-
20
- // if (
21
- // process.env.STRAPI_EXPERIMENTAL === 'true' &&
22
- // process.env.STRAPI_DISABLE_REMOTE_DATA_TRANSFER !== 'true'
23
- // ) {
24
- // registerDataTransferRoute(strapi);
25
- // }
26
19
  };
package/server/routes/index.js CHANGED
@@ -8,6 +8,7 @@ const roles = require('./roles');
8
8
  const webhooks = require('./webhooks');
9
9
  const apiTokens = require('./api-tokens');
10
10
  const contentApi = require('./content-api');
11
+ const transfer = require('./transfer');
11
12
 
12
13
  module.exports = [
13
14
  ...admin,
@@ -18,4 +19,5 @@ module.exports = [
18
19
  ...webhooks,
19
20
  ...apiTokens,
20
21
  ...contentApi,
22
+ ...transfer,
21
23
  ];
package/server/routes/roles.js CHANGED
@@ -45,6 +45,22 @@ module.exports = [
45
45
  ],
46
46
  },
47
47
  },
48
+ {
49
+ method: 'POST',
50
+ path: '/roles',
51
+ handler: 'role.create',
52
+ config: {
53
+ policies: [
54
+ 'admin::isAuthenticatedAdmin',
55
+ {
56
+ name: 'admin::hasPermissions',
57
+ config: {
58
+ actions: ['admin::roles.create'],
59
+ },
60
+ },
61
+ ],
62
+ },
63
+ },
48
64
  {
49
65
  method: 'PUT',
50
66
  path: '/roles/:id',
@@ -56,4 +72,36 @@ module.exports = [
56
72
  ],
57
73
  },
58
74
  },
75
+ {
76
+ method: 'DELETE',
77
+ path: '/roles/:id',
78
+ handler: 'role.deleteOne',
79
+ config: {
80
+ policies: [
81
+ 'admin::isAuthenticatedAdmin',
82
+ {
83
+ name: 'admin::hasPermissions',
84
+ config: {
85
+ actions: ['admin::roles.delete'],
86
+ },
87
+ },
88
+ ],
89
+ },
90
+ },
91
+ {
92
+ method: 'POST',
93
+ path: '/roles/batch-delete',
94
+ handler: 'role.deleteMany',
95
+ config: {
96
+ policies: [
97
+ 'admin::isAuthenticatedAdmin',
98
+ {
99
+ name: 'admin::hasPermissions',
100
+ config: {
101
+ actions: ['admin::roles.delete'],
102
+ },
103
+ },
104
+ ],
105
+ },
106
+ },
59
107
  ];
package/server/routes/transfer.js ADDED
@@ -0,0 +1,102 @@
1
+ 'use strict';
2
+
3
+ const dataTransferAuthStrategy = require('../strategies/data-transfer');
4
+
5
+ module.exports = [
6
+ // Transfer Push
7
+ {
8
+ method: 'GET',
9
+ path: '/transfer/runner/push',
10
+ handler: 'transfer.runner-push',
11
+ config: {
12
+ middlewares: ['admin::data-transfer'],
13
+ auth: { strategies: [dataTransferAuthStrategy], scope: ['push'] },
14
+ },
15
+ },
16
+ // Transfer Pull
17
+ {
18
+ method: 'GET',
19
+ path: '/transfer/runner/pull',
20
+ handler: 'transfer.runner-pull',
21
+ config: {
22
+ middlewares: ['admin::data-transfer'],
23
+ auth: { strategies: [dataTransferAuthStrategy], scope: ['pull'] },
24
+ },
25
+ },
26
+ // Transfer Tokens
27
+ {
28
+ method: 'POST',
29
+ path: '/transfer/tokens',
30
+ handler: 'transfer.token-create',
31
+ config: {
32
+ middlewares: ['admin::data-transfer'],
33
+ policies: [
34
+ 'admin::isAuthenticatedAdmin',
35
+ { name: 'admin::hasPermissions', config: { actions: ['admin::transfer.tokens.create'] } },
36
+ ],
37
+ },
38
+ },
39
+ {
40
+ method: 'GET',
41
+ path: '/transfer/tokens',
42
+ handler: 'transfer.token-list',
43
+ config: {
44
+ middlewares: ['admin::data-transfer'],
45
+ policies: [
46
+ 'admin::isAuthenticatedAdmin',
47
+ { name: 'admin::hasPermissions', config: { actions: ['admin::transfer.tokens.read'] } },
48
+ ],
49
+ },
50
+ },
51
+ {
52
+ method: 'DELETE',
53
+ path: '/transfer/tokens/:id',
54
+ handler: 'transfer.token-revoke',
55
+ config: {
56
+ middlewares: ['admin::data-transfer'],
57
+ policies: [
58
+ 'admin::isAuthenticatedAdmin',
59
+ { name: 'admin::hasPermissions', config: { actions: ['admin::transfer.tokens.delete'] } },
60
+ ],
61
+ },
62
+ },
63
+ {
64
+ method: 'GET',
65
+ path: '/transfer/tokens/:id',
66
+ handler: 'transfer.token-getById',
67
+ config: {
68
+ middlewares: ['admin::data-transfer'],
69
+ policies: [
70
+ 'admin::isAuthenticatedAdmin',
71
+ { name: 'admin::hasPermissions', config: { actions: ['admin::transfer.tokens.read'] } },
72
+ ],
73
+ },
74
+ },
75
+ {
76
+ method: 'PUT',
77
+ path: '/transfer/tokens/:id',
78
+ handler: 'transfer.token-update',
79
+ config: {
80
+ middlewares: ['admin::data-transfer'],
81
+ policies: [
82
+ 'admin::isAuthenticatedAdmin',
83
+ { name: 'admin::hasPermissions', config: { actions: ['admin::transfer.tokens.update'] } },
84
+ ],
85
+ },
86
+ },
87
+ {
88
+ method: 'POST',
89
+ path: '/transfer/tokens/:id/regenerate',
90
+ handler: 'transfer.token-regenerate',
91
+ config: {
92
+ middlewares: ['admin::data-transfer'],
93
+ policies: [
94
+ 'admin::isAuthenticatedAdmin',
95
+ {
96
+ name: 'admin::hasPermissions',
97
+ config: { actions: ['admin::transfer.tokens.regenerate'] },
98
+ },
99
+ ],
100
+ },
101
+ },
102
+ ];
package/server/services/api-token.js CHANGED
@@ -1,8 +1,7 @@
1
1
  'use strict';
2
2
 
3
3
  const crypto = require('crypto');
4
- const { isNil } = require('lodash/fp');
5
- const { omit, difference, isEmpty, map, isArray, uniq } = require('lodash/fp');
4
+ const { omit, difference, isNil, isEmpty, map, isArray, uniq } = require('lodash/fp');
6
5
  const { ValidationError, NotFoundError } = require('@strapi/utils').errors;
7
6
  const constants = require('./constants');
8
7
 
@@ -78,7 +77,7 @@ const assertCustomTokenPermissionsValidity = (attributes) => {
78
77
  };
79
78
 
80
79
  /**
81
- * Assert that a token's permissions attribute is valid for its type
80
+ * Assert that a token's lifespan is valid
82
81
  *
83
82
  * @param {ApiToken} token
84
83
  */
package/server/services/constants.js CHANGED
@@ -24,4 +24,14 @@ module.exports = {
24
24
  DAYS_30: 30 * DAY_IN_MS,
25
25
  DAYS_90: 90 * DAY_IN_MS,
26
26
  },
27
+ TRANSFER_TOKEN_TYPE: {
28
+ PUSH: 'push',
29
+ PULL: 'pull',
30
+ },
31
+ TRANSFER_TOKEN_LIFESPANS: {
32
+ UNLIMITED: null,
33
+ DAYS_7: 7 * DAY_IN_MS,
34
+ DAYS_30: 30 * DAY_IN_MS,
35
+ DAYS_90: 90 * DAY_IN_MS,
36
+ },
27
37
  };
package/server/services/index.js CHANGED
@@ -13,5 +13,6 @@ module.exports = {
13
13
  auth: require('./auth'),
14
14
  action: require('./action'),
15
15
  'api-token': require('./api-token'),
16
+ transfer: require('./transfer'),
16
17
  'project-settings': require('./project-settings'),
17
18
  };
package/server/services/permission/permissions-manager/index.js CHANGED
@@ -34,11 +34,15 @@ module.exports = ({ ability, action, model }) => ({
34
34
 
35
35
  addPermissionsQueryTo(query = {}, action) {
36
36
  const newQuery = cloneDeep(query);
37
- const permissionQuery = this.getQuery(action);
38
-
39
- newQuery.filters = isPlainObject(query.filters)
40
- ? { $and: [query.filters, permissionQuery] }
41
- : permissionQuery;
37
+ const permissionQuery = this.getQuery(action) ?? undefined;
38
+
39
+ if (isPlainObject(query.filters)) {
40
+ newQuery.filters = permissionQuery
41
+ ? { $and: [query.filters, permissionQuery] }
42
+ : query.filters;
43
+ } else {
44
+ newQuery.filters = permissionQuery;
45
+ }
42
46
 
43
47
  return newQuery;
44
48
  },
package/server/services/permission/permissions-manager/sanitize.js CHANGED
@@ -15,16 +15,26 @@ const {
15
15
  intersection,
16
16
  pick,
17
17
  getOr,
18
+ isObject,
19
+ cloneDeep,
18
20
  } = require('lodash/fp');
19
21
 
20
- const { contentTypes, traverseEntity, sanitize, pipeAsync } = require('@strapi/utils');
22
+ const { contentTypes, traverseEntity, sanitize, pipeAsync, traverse } = require('@strapi/utils');
23
+ const { removePassword } = require('@strapi/utils/lib/sanitize/visitors');
24
+ const { ADMIN_USER_ALLOWED_FIELDS } = require('../../../domain/user');
21
25
 
22
- const { constants, getNonVisibleAttributes, getNonWritableAttributes, getWritableAttributes } =
23
- contentTypes;
26
+ const {
27
+ constants,
28
+ isScalarAttribute,
29
+ getNonVisibleAttributes,
30
+ getNonWritableAttributes,
31
+ getWritableAttributes,
32
+ } = contentTypes;
24
33
  const {
25
34
  ID_ATTRIBUTE,
26
35
  CREATED_AT_ATTRIBUTE,
27
36
  UPDATED_AT_ATTRIBUTE,
37
+ PUBLISHED_AT_ATTRIBUTE,
28
38
  CREATED_BY_ATTRIBUTE,
29
39
  UPDATED_BY_ATTRIBUTE,
30
40
  } = constants;
@@ -37,6 +47,74 @@ module.exports = ({ action, ability, model }) => {
37
47
 
38
48
  const { allowedFields } = sanitize.visitors;
39
49
 
50
+ const createSanitizeQuery = (options = {}) => {
51
+ const { fields } = options;
52
+
53
+ // TODO: sanitize relations to admin users in all sanitizers
54
+ const permittedFields = fields.shouldIncludeAll ? null : getQueryFields(fields.permitted);
55
+
56
+ const sanitizeFilters = pipeAsync(
57
+ traverse.traverseQueryFilters(allowedFields(permittedFields), { schema }),
58
+ traverse.traverseQueryFilters(omitDisallowedAdminUserFields, { schema }),
59
+ traverse.traverseQueryFilters(removePassword, { schema }),
60
+ traverse.traverseQueryFilters(
61
+ ({ key, value }, { remove }) => {
62
+ if (isObject(value) && isEmpty(value)) {
63
+ remove(key);
64
+ }
65
+ },
66
+ { schema }
67
+ )
68
+ );
69
+
70
+ const sanitizeSort = pipeAsync(
71
+ traverse.traverseQuerySort(allowedFields(permittedFields), { schema }),
72
+ traverse.traverseQuerySort(omitDisallowedAdminUserFields, { schema }),
73
+ traverse.traverseQuerySort(removePassword, { schema }),
74
+ traverse.traverseQuerySort(
75
+ ({ key, attribute, value }, { remove }) => {
76
+ if (!isScalarAttribute(attribute) && isEmpty(value)) {
77
+ remove(key);
78
+ }
79
+ },
80
+ { schema }
81
+ )
82
+ );
83
+
84
+ const sanitizePopulate = pipeAsync(
85
+ traverse.traverseQueryPopulate(allowedFields(permittedFields), { schema }),
86
+ traverse.traverseQueryPopulate(omitDisallowedAdminUserFields, { schema }),
87
+ traverse.traverseQueryPopulate(removePassword, { schema })
88
+ );
89
+
90
+ const sanitizeFields = pipeAsync(
91
+ traverse.traverseQueryFields(allowedFields(permittedFields), { schema }),
92
+ traverse.traverseQueryFields(removePassword, { schema })
93
+ );
94
+
95
+ return async (query) => {
96
+ const sanitizedQuery = cloneDeep(query);
97
+
98
+ if (query.filters) {
99
+ Object.assign(sanitizedQuery, { filters: await sanitizeFilters(query.filters) });
100
+ }
101
+
102
+ if (query.sort) {
103
+ Object.assign(sanitizedQuery, { sort: await sanitizeSort(query.sort) });
104
+ }
105
+
106
+ if (query.populate) {
107
+ Object.assign(sanitizedQuery, { populate: await sanitizePopulate(query.populate) });
108
+ }
109
+
110
+ if (query.fields) {
111
+ Object.assign(sanitizedQuery, { fields: await sanitizeFields(query.fields) });
112
+ }
113
+
114
+ return sanitizedQuery;
115
+ };
116
+ };
117
+
40
118
  const createSanitizeOutput = (options = {}) => {
41
119
  const { fields } = options;
42
120
 
@@ -128,7 +206,7 @@ module.exports = ({ action, ability, model }) => {
128
206
  * Visitor used to only select needed fields from the admin users entities & avoid leaking sensitive information
129
207
  */
130
208
  const pickAllowedAdminUserFields = ({ attribute, key, value }, { set }) => {
131
- const pickAllowedFields = pick(['id', 'firstname', 'lastname', 'username']);
209
+ const pickAllowedFields = pick(ADMIN_USER_ALLOWED_FIELDS);
132
210
 
133
211
  if (attribute.type === 'relation' && attribute.target === 'admin::user' && value) {
134
212
  if (Array.isArray(value)) {
@@ -139,6 +217,15 @@ module.exports = ({ action, ability, model }) => {
139
217
  }
140
218
  };
141
219
 
220
+ /**
221
+ * Visitor used to omit disallowed fields from the admin users entities & avoid leaking sensitive information
222
+ */
223
+ const omitDisallowedAdminUserFields = ({ key, attribute, schema }, { remove }) => {
224
+ if (schema.uid === 'admin::user' && attribute && !ADMIN_USER_ALLOWED_FIELDS.includes(key)) {
225
+ remove(key);
226
+ }
227
+ };
228
+
142
229
  const getInputFields = (fields = []) => {
143
230
  const nonVisibleAttributes = getNonVisibleAttributes(schema);
144
231
  const writableAttributes = getWritableAttributes(schema);
@@ -168,8 +255,20 @@ module.exports = ({ action, ability, model }) => {
168
255
  ]);
169
256
  };
170
257
 
258
+ const getQueryFields = (fields = []) => {
259
+ return uniq([
260
+ ...fields,
261
+ ...STATIC_FIELDS,
262
+ ...COMPONENT_FIELDS,
263
+ CREATED_AT_ATTRIBUTE,
264
+ UPDATED_AT_ATTRIBUTE,
265
+ PUBLISHED_AT_ATTRIBUTE,
266
+ ]);
267
+ };
268
+
171
269
  return {
172
270
  sanitizeOutput: wrapSanitize(createSanitizeOutput),
173
271
  sanitizeInput: wrapSanitize(createSanitizeInput),
272
+ sanitizeQuery: wrapSanitize(createSanitizeQuery),
174
273
  };
175
274
  };