@strapi/admin 4.9.0-alpha.0 → 4.9.0-exp.90df253ba90fd6879eb56a720a1f80d04ff745b8
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/admin/src/StrapiApp.js +1 -1
- package/admin/src/components/AutoReloadOverlayBlockerProvider/Blocker.js +6 -10
- package/admin/src/components/AutoReloadOverlayBlockerProvider/Overlay.js +2 -3
- package/admin/src/components/GuidedTour/Homepage/components/Step.js +1 -3
- package/admin/src/components/GuidedTour/Homepage/components/Stepper.js +1 -1
- package/admin/src/components/GuidedTour/Homepage/index.js +4 -8
- package/admin/src/components/GuidedTour/Modal/components/Content.js +35 -25
- package/admin/src/components/GuidedTour/Modal/components/Modal.js +7 -11
- package/admin/src/components/GuidedTour/Modal/components/StepNumberWithPadding.js +1 -1
- package/admin/src/components/GuidedTour/Modal/components/Stepper.js +2 -5
- package/admin/src/components/GuidedTour/Stepper/StepLine.js +1 -1
- package/admin/src/components/GuidedTour/Stepper/StepNumber.js +2 -4
- package/admin/src/components/LeftMenu/index.js +5 -10
- package/admin/src/components/Notifications/Notification/index.js +10 -3
- package/admin/src/components/Notifications/index.js +6 -4
- package/admin/src/components/Theme/index.js +1 -1
- package/admin/src/content-manager/components/AttributeFilter/Filters.js +2 -3
- package/admin/src/content-manager/components/CollectionTypeFormWrapper/index.js +0 -2
- package/admin/src/content-manager/components/ComponentInitializer/index.js +4 -7
- package/admin/src/content-manager/components/DragLayer/RelationDragPreview.js +3 -3
- package/admin/src/content-manager/components/DynamicTable/CellContent/Media/FileWrapper.js +1 -2
- package/admin/src/content-manager/components/DynamicTable/CellContent/Media/index.js +3 -3
- package/admin/src/content-manager/components/DynamicTable/CellContent/MultipleMedias.js +1 -1
- package/admin/src/content-manager/components/DynamicTable/CellContent/RelationMultiple/index.js +14 -11
- package/admin/src/content-manager/components/DynamicTable/CellContent/RelationSingle/index.js +1 -1
- package/admin/src/content-manager/components/DynamicTable/CellContent/RepeatableComponent/index.js +1 -4
- package/admin/src/content-manager/components/DynamicTable/CellContent/SingleComponent/index.js +1 -2
- package/admin/src/content-manager/components/DynamicTable/CellContent/index.js +1 -2
- package/admin/src/content-manager/components/DynamicTable/ConfirmDialogDelete/index.js +4 -9
- package/admin/src/content-manager/components/DynamicTable/ConfirmDialogDeleteAll/index.js +4 -9
- package/admin/src/content-manager/components/DynamicTable/TableRows/index.js +3 -9
- package/admin/src/content-manager/components/DynamicTable/index.js +1 -2
- package/admin/src/content-manager/components/DynamicZone/components/AddComponentButton.js +2 -5
- package/admin/src/content-manager/components/DynamicZone/components/ComponentCard.js +4 -6
- package/admin/src/content-manager/components/DynamicZone/components/ComponentCategory.js +1 -2
- package/admin/src/content-manager/components/DynamicZone/components/ComponentPicker.js +1 -4
- package/admin/src/content-manager/components/DynamicZone/components/DynamicComponent.js +3 -6
- package/admin/src/content-manager/components/DynamicZone/components/DynamicZoneLabel.js +1 -3
- package/admin/src/content-manager/components/DynamicZone/index.js +3 -3
- package/admin/src/content-manager/components/EditViewDataManagerProvider/index.js +3 -31
- package/admin/src/content-manager/components/EditViewDataManagerProvider/reducer.js +65 -134
- package/admin/src/content-manager/components/EditViewDataManagerProvider/utils/findAllAndReplace.js +85 -0
- package/admin/src/content-manager/components/EditViewDataManagerProvider/utils/index.js +1 -2
- package/admin/src/content-manager/components/EditViewDataManagerProvider/utils/schema.js +7 -1
- package/admin/src/content-manager/components/FieldComponent/Label.js +1 -3
- package/admin/src/content-manager/components/FieldComponent/index.js +4 -7
- package/admin/src/content-manager/components/FieldTypeIcon/index.js +15 -13
- package/admin/src/content-manager/components/Hint/index.js +1 -1
- package/admin/src/content-manager/components/InjectionZoneList/index.js +1 -1
- package/admin/src/content-manager/components/InputUID/endActionStyle.js +1 -3
- package/admin/src/content-manager/components/InputUID/index.js +2 -6
- package/admin/src/content-manager/components/NonRepeatableComponent/index.js +3 -5
- package/admin/src/content-manager/components/RelationInput/RelationInput.js +17 -14
- package/admin/src/content-manager/components/RelationInput/components/Option.js +1 -2
- package/admin/src/content-manager/components/RelationInput/components/Relation.js +9 -4
- package/admin/src/content-manager/components/RelationInput/components/RelationItem.js +4 -4
- package/admin/src/content-manager/components/RelationInput/components/RelationList.js +1 -1
- package/admin/src/content-manager/components/RelationInputDataManager/RelationInputDataManager.js +39 -33
- package/admin/src/content-manager/components/RepeatableComponent/components/Component.js +12 -6
- package/admin/src/content-manager/components/Wysiwyg/Editor.js +2 -2
- package/admin/src/content-manager/components/Wysiwyg/WysiwygFooter.js +2 -4
- package/admin/src/content-manager/components/Wysiwyg/WysiwygNav.js +24 -18
- package/admin/src/content-manager/components/Wysiwyg/WysiwygStyles.js +1 -2
- package/admin/src/content-manager/components/Wysiwyg/index.js +5 -7
- package/admin/src/content-manager/components/Wysiwyg/utils/continueList.js +3 -3
- package/admin/src/content-manager/hooks/useRelation/useRelation.js +2 -2
- package/admin/src/content-manager/pages/App/LeftMenu/index.js +1 -1
- package/admin/src/content-manager/pages/App/index.js +1 -2
- package/admin/src/content-manager/pages/App/useModels.js +1 -1
- package/admin/src/content-manager/pages/App/utils/generateModelsLinks.js +9 -8
- package/admin/src/content-manager/pages/CollectionTypeRecursivePath/components/ErrorFallback.js +1 -1
- package/admin/src/content-manager/pages/EditSettingsView/components/ComponentFieldList.js +2 -5
- package/admin/src/content-manager/pages/EditSettingsView/components/DisplayedFieldButton.js +2 -4
- package/admin/src/content-manager/pages/EditSettingsView/components/DisplayedFields.js +6 -11
- package/admin/src/content-manager/pages/EditSettingsView/components/DynamicZoneList.js +3 -3
- package/admin/src/content-manager/pages/EditSettingsView/components/FieldButtonContent.js +2 -6
- package/admin/src/content-manager/pages/EditSettingsView/components/FormModal.js +5 -5
- package/admin/src/content-manager/pages/EditSettingsView/components/GenericInput.js +1 -3
- package/admin/src/content-manager/pages/EditSettingsView/components/LinkToCTB.js +1 -1
- package/admin/src/content-manager/pages/EditSettingsView/components/ModalForm.js +1 -2
- package/admin/src/content-manager/pages/EditSettingsView/components/RowsLayout.js +1 -1
- package/admin/src/content-manager/pages/EditSettingsView/index.js +17 -13
- package/admin/src/content-manager/pages/EditView/DeleteLink/index.js +2 -2
- package/admin/src/content-manager/pages/EditView/DraftAndPublishBadge/index.js +3 -5
- package/admin/src/content-manager/pages/EditView/GridRow/index.js +1 -1
- package/admin/src/content-manager/pages/EditView/Header/index.js +17 -16
- package/admin/src/content-manager/pages/EditView/Information/index.js +9 -9
- package/admin/src/content-manager/pages/EditView/index.js +10 -15
- package/admin/src/content-manager/pages/ListSettingsView/components/CardPreview.js +4 -8
- package/admin/src/content-manager/pages/ListSettingsView/components/DraggableCard.js +4 -9
- package/admin/src/content-manager/pages/ListSettingsView/components/EditFieldForm.js +8 -7
- package/admin/src/content-manager/pages/ListSettingsView/components/Settings.js +14 -10
- package/admin/src/content-manager/pages/ListSettingsView/components/SortDisplayedFields.js +4 -9
- package/admin/src/content-manager/pages/ListSettingsView/index.js +10 -7
- package/admin/src/content-manager/pages/ListView/FieldPicker/index.js +1 -2
- package/admin/src/content-manager/pages/ListView/PaginationFooter/index.js +1 -2
- package/admin/src/content-manager/pages/ListView/index.js +12 -10
- package/admin/src/content-manager/pages/NoContentType/index.js +2 -5
- package/admin/src/content-manager/pages/NoPermissions/index.js +1 -2
- package/admin/src/content-manager/utils/createDefaultForm.js +0 -8
- package/admin/src/hooks/index.js +2 -0
- package/admin/src/hooks/useLicenseLimitNotification/index.js +5 -0
- package/admin/src/hooks/useLicenseLimits/index.js +3 -0
- package/admin/src/hooks/useMenu/reducer.js +1 -3
- package/admin/src/hooks/useRegenerate/index.js +2 -2
- package/admin/src/hooks/useSettingsMenu/utils/defaultGlobalLinks.js +7 -0
- package/admin/src/index.js +0 -1
- package/admin/src/layouts/AppLayout/index.js +1 -3
- package/admin/src/layouts/UnauthenticatedLayout/LocaleToggle/index.js +1 -1
- package/admin/src/layouts/UnauthenticatedLayout/index.js +1 -2
- package/admin/src/pages/Admin/Onboarding/index.js +26 -7
- package/admin/src/pages/App/index.js +1 -1
- package/admin/src/pages/AuthPage/components/FieldActionWrapper/index.js +1 -1
- package/admin/src/pages/AuthPage/components/ForgotPassword/index.js +3 -9
- package/admin/src/pages/AuthPage/components/ForgotPasswordSuccess/index.js +1 -4
- package/admin/src/pages/AuthPage/components/Login/BaseLogin.js +4 -12
- package/admin/src/pages/AuthPage/components/Oops/index.js +1 -4
- package/admin/src/pages/AuthPage/components/Register/index.js +14 -13
- package/admin/src/pages/AuthPage/components/ResetPassword/index.js +4 -11
- package/admin/src/pages/HomePage/CloudBox.js +83 -0
- package/admin/src/pages/HomePage/ContentBlocks.js +6 -7
- package/admin/src/pages/HomePage/HomeHeader.js +5 -12
- package/admin/src/pages/HomePage/SocialLinks.js +37 -34
- package/admin/src/pages/HomePage/assets/strapi-cloud-background.png +0 -0
- package/admin/src/pages/HomePage/assets/strapi-cloud-flags.svg +1 -0
- package/admin/src/pages/HomePage/assets/strapi-cloud-icon.svg +1 -0
- package/admin/src/pages/HomePage/index.js +3 -4
- package/admin/src/pages/InstalledPluginsPage/Plugins.js +14 -5
- package/admin/src/pages/InternalErrorPage/index.js +2 -5
- package/admin/src/pages/MarketplacePage/components/EmptyNpmPackageSearch/EmptyNpmPackageGrid.js +1 -2
- package/admin/src/pages/MarketplacePage/components/EmptyNpmPackageSearch/index.js +2 -5
- package/admin/src/pages/MarketplacePage/components/MissingPluginBanner/index.js +2 -3
- package/admin/src/pages/MarketplacePage/components/NpmPackageCard/CardButton.js +2 -4
- package/admin/src/pages/MarketplacePage/components/NpmPackageCard/InstallPluginButton.js +2 -4
- package/admin/src/pages/MarketplacePage/components/NpmPackageCard/PackageStats.js +4 -9
- package/admin/src/pages/MarketplacePage/components/NpmPackageCard/index.js +5 -11
- package/admin/src/pages/MarketplacePage/components/NpmPackagesFilters/FilterSelect.js +1 -1
- package/admin/src/pages/MarketplacePage/components/NpmPackagesFilters/FiltersPopover.js +3 -6
- package/admin/src/pages/MarketplacePage/components/NpmPackagesFilters/index.js +2 -5
- package/admin/src/pages/MarketplacePage/components/NpmPackagesGrid/index.js +1 -1
- package/admin/src/pages/MarketplacePage/components/PageHeader/index.js +3 -3
- package/admin/src/pages/MarketplacePage/components/SortSelect/index.js +1 -2
- package/admin/src/pages/MarketplacePage/index.js +15 -8
- package/admin/src/pages/NotFoundPage/index.js +2 -5
- package/admin/src/pages/ProfilePage/index.js +27 -24
- package/admin/src/pages/SettingsPage/components/Filters/index.js +2 -3
- package/admin/src/pages/SettingsPage/components/SettingsNav/index.js +1 -1
- package/admin/src/pages/SettingsPage/{pages/ApiTokens/EditView/components → components/Tokens}/FormHead/index.js +41 -26
- package/admin/src/pages/SettingsPage/components/Tokens/LifeSpanInput/index.js +97 -0
- package/admin/src/pages/SettingsPage/components/Tokens/Regenerate/index.js +73 -0
- package/admin/src/pages/SettingsPage/components/Tokens/Table/DeleteButton/index.js +52 -0
- package/admin/src/pages/SettingsPage/{pages/ApiTokens/ListView/DynamicTable → components/Tokens/Table}/ReadButton/index.js +1 -1
- package/admin/src/pages/SettingsPage/{pages/ApiTokens/ListView/DynamicTable → components/Tokens/Table}/UpdateButton/index.js +1 -1
- package/admin/src/pages/SettingsPage/components/Tokens/Table/index.js +145 -0
- package/admin/src/pages/SettingsPage/{pages/ApiTokens/EditView/components/ContentBox → components/Tokens/TokenBox}/index.js +20 -18
- package/admin/src/pages/SettingsPage/components/Tokens/TokenDescription/index.js +51 -0
- package/admin/src/pages/SettingsPage/components/Tokens/TokenName/index.js +46 -0
- package/admin/src/pages/SettingsPage/components/Tokens/TokenTypeSelect/index.js +71 -0
- package/admin/src/pages/SettingsPage/components/Tokens/constants.js +2 -0
- package/admin/src/pages/SettingsPage/index.js +1 -1
- package/admin/src/pages/SettingsPage/pages/ApiTokens/EditView/components/ActionBoundRoutes/index.js +5 -7
- package/admin/src/pages/SettingsPage/pages/ApiTokens/EditView/components/BoundRoute/index.js +5 -7
- package/admin/src/pages/SettingsPage/pages/ApiTokens/EditView/components/CollapsableContentType/CheckBoxWrapper.js +1 -1
- package/admin/src/pages/SettingsPage/pages/ApiTokens/EditView/components/CollapsableContentType/index.js +16 -9
- package/admin/src/pages/SettingsPage/pages/ApiTokens/EditView/components/ContenTypesSection/index.js +1 -1
- package/admin/src/pages/SettingsPage/pages/ApiTokens/EditView/components/FormApiTokenContainer/index.js +56 -149
- package/admin/src/pages/SettingsPage/pages/ApiTokens/EditView/components/LoadingView/index.js +2 -4
- package/admin/src/pages/SettingsPage/pages/ApiTokens/EditView/components/Permissions/index.js +3 -5
- package/admin/src/pages/SettingsPage/pages/ApiTokens/EditView/components/Regenerate/index.js +12 -8
- package/admin/src/pages/SettingsPage/pages/ApiTokens/EditView/index.js +48 -19
- package/admin/src/pages/SettingsPage/pages/ApiTokens/EditView/utils/schema.js +1 -1
- package/admin/src/pages/SettingsPage/pages/ApiTokens/ListView/index.js +18 -20
- package/admin/src/pages/SettingsPage/pages/ApplicationInfosPage/components/AdminSeatInfo/index.js +5 -0
- package/admin/src/pages/SettingsPage/pages/ApplicationInfosPage/components/CustomizationInfos/index.js +1 -3
- package/admin/src/pages/SettingsPage/pages/ApplicationInfosPage/components/LogoInput/index.js +8 -5
- package/admin/src/pages/SettingsPage/pages/ApplicationInfosPage/components/LogoModalStepper/AddLogoDialog.js +1 -3
- package/admin/src/pages/SettingsPage/pages/ApplicationInfosPage/components/LogoModalStepper/FromComputerForm.js +14 -11
- package/admin/src/pages/SettingsPage/pages/ApplicationInfosPage/components/LogoModalStepper/FromUrlForm.js +1 -4
- package/admin/src/pages/SettingsPage/pages/ApplicationInfosPage/components/LogoModalStepper/ImageCardAsset.js +1 -1
- package/admin/src/pages/SettingsPage/pages/ApplicationInfosPage/components/LogoModalStepper/PendingLogoDialog.js +1 -5
- package/admin/src/pages/SettingsPage/pages/ApplicationInfosPage/components/LogoModalStepper/index.js +1 -2
- package/admin/src/pages/SettingsPage/pages/ApplicationInfosPage/index.js +63 -74
- package/admin/src/pages/SettingsPage/pages/Roles/CreatePage/index.js +266 -4
- package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/CollapseLabel/index.js +1 -1
- package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ConditionsButton/index.js +2 -2
- package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ConditionsModal/ActionRow/index.js +2 -6
- package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ConditionsModal/index.js +5 -4
- package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ContentTypeCollapse/Collapse/index.js +4 -8
- package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ContentTypeCollapse/CollapsePropertyMatrix/ActionRow/index.js +3 -5
- package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ContentTypeCollapse/CollapsePropertyMatrix/CarretIcon/index.js +1 -1
- package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ContentTypeCollapse/CollapsePropertyMatrix/Header/index.js +1 -2
- package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ContentTypeCollapse/CollapsePropertyMatrix/SubActionRow/index.js +3 -7
- package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ContentTypeCollapse/CollapsePropertyMatrix/index.js +1 -1
- package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ContentTypeCollapse/utils/activeStyle.js +1 -1
- package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ContentTypes/index.js +1 -1
- package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/Curve/index.js +1 -1
- package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/GlobalActions/index.js +12 -12
- package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/Permissions/index.js +1 -1
- package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/Permissions/utils/formatLayoutForSettingsAndPlugins.js +12 -16
- package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/PluginsAndSettings/Row/index.js +1 -2
- package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/PluginsAndSettings/SubCategory/index.js +4 -12
- package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/PluginsAndSettings/index.js +1 -1
- package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/RoleForm/index.js +12 -10
- package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/RowLabelWithCheckbox/index.js +1 -4
- package/admin/src/pages/SettingsPage/pages/Roles/EditPage/index.js +6 -10
- package/admin/src/pages/SettingsPage/pages/Roles/ListPage/components/RoleRow/index.js +1 -5
- package/admin/src/pages/SettingsPage/pages/Roles/ListPage/index.js +314 -129
- package/admin/src/pages/SettingsPage/pages/TransferTokens/EditView/components/FormTransferTokenContainer/index.js +142 -0
- package/admin/src/pages/SettingsPage/pages/TransferTokens/EditView/components/LoadingView/index.js +48 -0
- package/admin/src/pages/SettingsPage/pages/TransferTokens/EditView/index.js +221 -0
- package/admin/src/pages/SettingsPage/pages/TransferTokens/EditView/utils/getDateOfExpiration.js +16 -0
- package/admin/src/pages/SettingsPage/pages/TransferTokens/EditView/utils/index.js +4 -0
- package/admin/src/pages/SettingsPage/pages/TransferTokens/EditView/utils/schema.js +11 -0
- package/admin/src/pages/SettingsPage/pages/TransferTokens/ListView/index.js +194 -0
- package/admin/src/pages/SettingsPage/pages/TransferTokens/ListView/utils/tableHeaders.js +48 -0
- package/admin/src/pages/SettingsPage/pages/TransferTokens/ProtectedCreateView/index.js +14 -0
- package/admin/src/pages/SettingsPage/pages/TransferTokens/ProtectedEditView/index.js +14 -0
- package/admin/src/pages/SettingsPage/pages/TransferTokens/ProtectedListView/index.js +12 -0
- package/admin/src/pages/SettingsPage/pages/Users/EditPage/index.js +19 -19
- package/admin/src/pages/SettingsPage/pages/Users/ListPage/CreateAction/index.js +24 -0
- package/admin/src/pages/SettingsPage/pages/Users/ListPage/DynamicTable/TableRows/index.js +11 -8
- package/admin/src/pages/SettingsPage/pages/Users/ListPage/ModalForm/index.js +17 -12
- package/admin/src/pages/SettingsPage/pages/Users/ListPage/PaginationFooter/index.js +1 -2
- package/admin/src/pages/SettingsPage/pages/Users/ListPage/index.js +32 -34
- package/admin/src/pages/SettingsPage/pages/Users/ListPage/utils/tableHeaders.js +1 -2
- package/admin/src/pages/SettingsPage/pages/Users/components/SelectRoles/index.js +2 -2
- package/admin/src/pages/SettingsPage/pages/Webhooks/EditView/components/EventInput/EventRow.js +1 -2
- package/admin/src/pages/SettingsPage/pages/Webhooks/EditView/components/EventInput/index.js +3 -5
- package/admin/src/pages/SettingsPage/pages/Webhooks/EditView/components/HeadersInput/Combobox.js +1 -1
- package/admin/src/pages/SettingsPage/pages/Webhooks/EditView/components/HeadersInput/index.js +12 -10
- package/admin/src/pages/SettingsPage/pages/Webhooks/EditView/components/TriggerContainer/index.js +10 -16
- package/admin/src/pages/SettingsPage/pages/Webhooks/EditView/components/WebhookForm/index.js +17 -15
- package/admin/src/pages/SettingsPage/pages/Webhooks/EditView/index.js +1 -1
- package/admin/src/pages/SettingsPage/pages/Webhooks/ListView/index.js +183 -182
- package/admin/src/pages/SettingsPage/utils/defaultRoutes.js +51 -10
- package/admin/src/pages/UseCasePage/index.js +13 -11
- package/admin/src/permissions/defaultPermissions.js +8 -0
- package/admin/src/translations/ca.json +13 -19
- package/admin/src/translations/de.json +6 -12
- package/admin/src/translations/dk.json +6 -12
- package/admin/src/translations/en.json +220 -190
- package/admin/src/translations/es.json +6 -12
- package/admin/src/translations/eu.json +178 -184
- package/admin/src/translations/fr.json +6 -12
- package/admin/src/translations/gu.json +0 -6
- package/admin/src/translations/he.json +0 -6
- package/admin/src/translations/hi.json +6 -12
- package/admin/src/translations/hu.json +19 -25
- package/admin/src/translations/id.json +0 -6
- package/admin/src/translations/it.json +0 -6
- package/admin/src/translations/ja.json +6 -12
- package/admin/src/translations/ko.json +6 -12
- package/admin/src/translations/ml.json +6 -12
- package/admin/src/translations/nl.json +19 -25
- package/admin/src/translations/no.json +0 -6
- package/admin/src/translations/pl.json +6 -12
- package/admin/src/translations/pt-BR.json +6 -12
- package/admin/src/translations/ru.json +859 -785
- package/admin/src/translations/sa.json +6 -12
- package/admin/src/translations/sk.json +2 -8
- package/admin/src/translations/sv.json +19 -25
- package/admin/src/translations/th.json +0 -6
- package/admin/src/translations/tr.json +19 -25
- package/admin/src/translations/zh-Hans.json +895 -669
- package/admin/src/translations/zh.json +19 -25
- package/build/2637.679b590b.chunk.js +1 -0
- package/build/27d16aefee06412db90a.png +0 -0
- package/build/4049.64715f20.chunk.js +1 -0
- package/build/5563.451e91ee.chunk.js +30 -0
- package/build/7112.2bf13da3.chunk.js +14 -0
- package/build/7259.7744297b.chunk.js +1 -0
- package/build/{5015.8e3fe50b.chunk.js → 8469.853c822b.chunk.js} +1 -6
- package/build/{2223.1bfea951.chunk.js → 8580.b0dcf37c.chunk.js} +66 -177
- package/build/9816.01ee964f.chunk.js +2 -0
- package/build/Admin-authenticatedApp.5aa08bf5.chunk.js +79 -0
- package/build/Admin_InternalErrorPage.4ad8b0df.chunk.js +1 -0
- package/build/Admin_homePage.1411fb7c.chunk.js +68 -0
- package/build/Admin_marketplace.0f6c8ee2.chunk.js +22 -0
- package/build/Admin_pluginsPage.15e3b0fd.chunk.js +1 -0
- package/build/Admin_profilePage.d2a8f9ab.chunk.js +15 -0
- package/build/Admin_settingsPage.489ec4eb.chunk.js +9 -0
- package/build/Upload_ConfigureTheView.34dde278.chunk.js +1 -0
- package/build/admin-app.4b313104.chunk.js +112 -0
- package/build/admin-edit-roles-page.3b196317.chunk.js +216 -0
- package/build/admin-edit-users.af3b0f15.chunk.js +10 -0
- package/build/admin-roles-list.0ad504a7.chunk.js +2 -0
- package/build/admin-users.af8c3123.chunk.js +11 -0
- package/build/{api-tokens-create-page.a31c7fba.chunk.js → api-tokens-create-page.2a6e22bd.chunk.js} +1 -1
- package/build/{api-tokens-edit-page.64fef287.chunk.js → api-tokens-edit-page.fa38cd63.chunk.js} +1 -1
- package/build/api-tokens-list-page.93f24348.chunk.js +16 -0
- package/build/audit-logs-settings-page.7be97e82.chunk.js +1 -0
- package/build/bb3108f7fd1e6179bde1.svg +1 -0
- package/build/bb4d0d527bdfb161bc5a.svg +1 -0
- package/build/ca-json.43e14418.chunk.js +1 -0
- package/build/content-manager.f530e141.chunk.js +1139 -0
- package/build/content-type-builder-list-view.cf38fe2f.chunk.js +191 -0
- package/build/content-type-builder-translation-zh-Hans-json.415577fb.chunk.js +1 -0
- package/build/content-type-builder.6ecd201d.chunk.js +126 -0
- package/build/de-json.fcac7381.chunk.js +1 -0
- package/build/dk-json.e34cad0d.chunk.js +1 -0
- package/build/email-settings-page.4bdbef9a.chunk.js +3 -0
- package/build/en-json.01a88a30.chunk.js +1 -0
- package/build/es-json.715b6fd8.chunk.js +1 -0
- package/build/eu-json.fb17c8f9.chunk.js +1 -0
- package/build/fr-json.f66c3211.chunk.js +1 -0
- package/build/gu-json.4d667d0c.chunk.js +1 -0
- package/build/{he-json.f0de8cdb.chunk.js → he-json.3cf0b48a.chunk.js} +1 -1
- package/build/hi-json.323be97d.chunk.js +1 -0
- package/build/hu-json.fe71e6c8.chunk.js +1 -0
- package/build/i18n-settings-page.2bb5be96.chunk.js +1 -0
- package/build/id-json.41e07c46.chunk.js +1 -0
- package/build/index.html +1 -1
- package/build/it-json.bfe27ed8.chunk.js +1 -0
- package/build/ja-json.81b6d1e3.chunk.js +1 -0
- package/build/ko-json.4539f4ba.chunk.js +1 -0
- package/build/main.43b93ff3.js +3843 -0
- package/build/ml-json.8988e374.chunk.js +1 -0
- package/build/nl-json.98345913.chunk.js +1 -0
- package/build/{no-json.9b3cd181.chunk.js → no-json.19a2dbfa.chunk.js} +1 -1
- package/build/pl-json.59a5dab3.chunk.js +1 -0
- package/build/pt-BR-json.9410688b.chunk.js +1 -0
- package/build/ru-json.6a01cea6.chunk.js +1 -0
- package/build/runtime~main.a40b1b57.js +2 -0
- package/build/sa-json.6359a11c.chunk.js +1 -0
- package/build/sk-json.2374f129.chunk.js +1 -0
- package/build/sso-settings-page.5a8588ef.chunk.js +1 -0
- package/build/sv-json.ae6e71ea.chunk.js +1 -0
- package/build/th-json.5f659396.chunk.js +1 -0
- package/build/tr-json.bac5dbd3.chunk.js +1 -0
- package/build/transfer-tokens-create-page.a1f14bb1.chunk.js +1 -0
- package/build/transfer-tokens-edit-page.00ee1c74.chunk.js +1 -0
- package/build/transfer-tokens-list-page.ce37354b.chunk.js +16 -0
- package/build/upload-settings.0200561d.chunk.js +1 -0
- package/build/upload-translation-zh-Hans-json.db163b6b.chunk.js +1 -0
- package/build/upload.c7da1611.chunk.js +13 -0
- package/build/users-advanced-settings-page.c0cae03a.chunk.js +1 -0
- package/build/users-email-settings-page.a3c80419.chunk.js +1 -0
- package/build/users-permissions-translation-zh-Hans-json.6ab714ee.chunk.js +1 -0
- package/build/users-providers-settings-page.5f86e45c.chunk.js +1 -0
- package/build/users-roles-settings-page.b02986df.chunk.js +30 -0
- package/build/webhook-edit-page.a2a2b7bb.chunk.js +23 -0
- package/build/webhook-list-page.029957a4.chunk.js +1 -0
- package/build/zh-Hans-json.4cfef87d.chunk.js +1 -0
- package/build/zh-json.3529f1e5.chunk.js +1 -0
- package/ee/admin/hooks/index.js +2 -0
- package/ee/admin/hooks/useLicenseLimitNotification/index.js +88 -0
- package/ee/admin/hooks/useLicenseLimits/index.js +31 -0
- package/ee/admin/hooks/useSettingsMenu/utils/customAdminLinks.js +12 -12
- package/ee/admin/hooks/useSettingsMenu/utils/customGlobalLinks.js +13 -21
- package/ee/admin/pages/AuthPage/components/Login/index.js +3 -7
- package/ee/admin/pages/AuthPage/components/Providers/SSOProviders.js +1 -4
- package/ee/admin/pages/AuthPage/components/Providers/index.js +3 -10
- package/ee/admin/pages/SettingsPage/pages/ApplicationInfosPage/components/AdminSeatInfo/index.js +88 -0
- package/ee/admin/pages/SettingsPage/pages/AuditLogs/ListView/Modal/ActionBody.js +2 -7
- package/ee/admin/pages/SettingsPage/pages/AuditLogs/ListView/Modal/ActionItem.js +1 -2
- package/ee/admin/pages/SettingsPage/pages/AuditLogs/ListView/Modal/index.js +1 -2
- package/ee/admin/pages/SettingsPage/pages/AuditLogs/ListView/PaginationFooter/index.js +1 -2
- package/ee/admin/pages/SettingsPage/pages/AuditLogs/ListView/TableRows/index.js +2 -5
- package/ee/admin/pages/SettingsPage/pages/AuditLogs/ListView/utils/getDisplayedFilters.js +21 -10
- package/ee/admin/pages/SettingsPage/pages/AuditLogs/ListView/utils/tableHeaders.js +1 -1
- package/ee/admin/pages/SettingsPage/pages/SingleSignOn/index.js +25 -11
- package/ee/admin/pages/SettingsPage/pages/Users/ListPage/CreateAction/index.js +52 -0
- package/ee/admin/pages/SettingsPage/utils/customRoutes.js +2 -16
- package/ee/admin/permissions/customPermissions.js +0 -3
- package/ee/server/bootstrap.js +1 -7
- package/ee/server/config/admin-actions.js +0 -10
- package/ee/server/controllers/admin.js +49 -0
- package/ee/server/controllers/index.js +1 -3
- package/ee/server/controllers/role.js +0 -39
- package/ee/server/controllers/user.js +62 -4
- package/ee/server/index.js +0 -1
- package/ee/server/routes/index.js +9 -122
- package/ee/server/services/audit-logs.js +15 -5
- package/ee/server/services/index.js +2 -3
- package/ee/server/services/seat-enforcement.js +114 -0
- package/ee/server/services/user.js +234 -0
- package/ee/server/validation/role.js +28 -20
- package/package.json +18 -17
- package/server/bootstrap.js +2 -1
- package/server/config/admin-actions.js +48 -0
- package/server/content-types/User.js +4 -0
- package/server/content-types/api-token.js +1 -0
- package/server/content-types/index.js +2 -0
- package/server/content-types/transfer-token-permission.js +36 -0
- package/server/content-types/transfer-token.js +66 -0
- package/server/controllers/api-token.js +8 -7
- package/server/controllers/index.js +1 -0
- package/server/controllers/permission.js +2 -4
- package/server/controllers/role.js +70 -23
- package/server/controllers/transfer/index.js +13 -0
- package/server/controllers/transfer/runner.js +28 -0
- package/server/controllers/transfer/token.js +131 -0
- package/server/controllers/user.js +7 -1
- package/server/domain/user.js +3 -0
- package/server/middlewares/data-transfer.js +26 -0
- package/server/middlewares/index.js +1 -0
- package/server/register.js +2 -9
- package/server/routes/index.js +2 -0
- package/server/routes/roles.js +48 -0
- package/server/routes/transfer.js +102 -0
- package/server/services/api-token.js +2 -3
- package/server/services/constants.js +10 -0
- package/server/services/index.js +1 -0
- package/server/services/permission/permissions-manager/index.js +9 -5
- package/server/services/permission/permissions-manager/sanitize.js +101 -4
- package/server/services/permission/queries.js +1 -74
- package/server/services/transfer/index.js +7 -0
- package/server/services/transfer/permission.js +22 -0
- package/server/services/transfer/token.js +426 -0
- package/server/services/transfer/utils.js +38 -0
- package/server/strategies/api-token.js +4 -2
- package/server/strategies/data-transfer.js +109 -0
- package/server/strategies/index.js +1 -0
- package/server/utils/index.d.ts +2 -0
- package/server/validation/api-tokens.js +1 -6
- package/server/validation/permission.js +1 -82
- package/server/validation/role.js +44 -0
- package/server/validation/transfer/index.js +5 -0
- package/server/validation/transfer/token.js +42 -0
- package/webpack.alias.js +0 -1
- package/admin/src/assets/images/hot-air-balloon.png +0 -0
- package/admin/src/assets/images/upgrade-details.png +0 -0
- package/admin/src/components/UpgradePlanModal/index.js +0 -131
- package/admin/src/content-manager/components/EditViewDataManagerProvider/utils/findLeafByPathAndReplace.js +0 -51
- package/admin/src/content-manager/components/EditViewDataManagerProvider/utils/recursivelyFindPathsBasedOnCondition.js +0 -79
- package/admin/src/pages/SettingsPage/pages/ApiTokens/EditView/components/FormBody/index.js +0 -78
- package/admin/src/pages/SettingsPage/pages/ApiTokens/ListView/DynamicTable/DeleteButton/index.js +0 -40
- package/admin/src/pages/SettingsPage/pages/ApiTokens/ListView/DynamicTable/index.js +0 -112
- package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ConditionsModal/ActionRow/utils/constants.js +0 -3
- package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ContentTypeCollapse/Collapse/utils/constants.js +0 -3
- package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ContentTypeCollapse/CollapsePropertyMatrix/ActionRow/utils/constants.js +0 -3
- package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/ContentTypeCollapse/CollapsePropertyMatrix/SubActionRow/utils/constants.js +0 -3
- package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/GlobalActions/utils/constants.js +0 -3
- package/admin/src/pages/SettingsPage/pages/Roles/EditPage/components/PluginsAndSettings/SubCategory/utils/constants.js +0 -3
- package/build/1412.936ed920.chunk.js +0 -159
- package/build/1683.d59d0f23.chunk.js +0 -268
- package/build/2607.2e48dbf8.chunk.js +0 -66
- package/build/2743.646a1015.chunk.js +0 -45
- package/build/3075.3ee481f1.chunk.js +0 -108
- package/build/3632.2e378cf8.chunk.js +0 -138
- package/build/4318.cd55ce02.chunk.js +0 -30
- package/build/617f9c948fa79e6d73bd.png +0 -0
- package/build/6d21938306785f176538.png +0 -0
- package/build/8633.00ccd382.chunk.js +0 -1
- package/build/9707.b36ed71e.chunk.js +0 -96
- package/build/Admin-authenticatedApp.a73577e1.chunk.js +0 -79
- package/build/Admin_InternalErrorPage.178ddb90.chunk.js +0 -1
- package/build/Admin_homePage.c2f5f27d.chunk.js +0 -77
- package/build/Admin_marketplace.1df49c42.chunk.js +0 -26
- package/build/Admin_pluginsPage.8d824408.chunk.js +0 -6
- package/build/Admin_profilePage.cb667bc5.chunk.js +0 -15
- package/build/Admin_settingsPage.f90615fb.chunk.js +0 -178
- package/build/Upload_ConfigureTheView.d306009d.chunk.js +0 -1
- package/build/admin-app.06f07029.chunk.js +0 -112
- package/build/admin-edit-roles-page.35199b9d.chunk.js +0 -1
- package/build/admin-edit-users.9e48b00d.chunk.js +0 -10
- package/build/admin-users.cf7b4151.chunk.js +0 -11
- package/build/api-tokens-list-page.e600ad3e.chunk.js +0 -16
- package/build/audit-logs-settings-page.d4da4579.chunk.js +0 -1
- package/build/ca-json.4d999055.chunk.js +0 -1
- package/build/content-manager.255c3a59.chunk.js +0 -1139
- package/build/content-type-builder-list-view.8d7a3d68.chunk.js +0 -193
- package/build/content-type-builder-translation-zh-Hans-json.52a30266.chunk.js +0 -1
- package/build/content-type-builder.3c8558a5.chunk.js +0 -126
- package/build/de-json.866f8a28.chunk.js +0 -1
- package/build/dk-json.10f7b1d1.chunk.js +0 -1
- package/build/email-settings-page.b19f2eb2.chunk.js +0 -10
- package/build/en-json.1997583c.chunk.js +0 -1
- package/build/es-json.ea15c957.chunk.js +0 -1
- package/build/eu-json.3bc24d60.chunk.js +0 -1
- package/build/fr-json.e88fbdfd.chunk.js +0 -1
- package/build/gu-json.94f0d242.chunk.js +0 -1
- package/build/hi-json.df3a7be2.chunk.js +0 -1
- package/build/hu-json.680e6eef.chunk.js +0 -1
- package/build/i18n-settings-page.a6b49eac.chunk.js +0 -60
- package/build/id-json.e0d83d41.chunk.js +0 -1
- package/build/it-json.8be59205.chunk.js +0 -1
- package/build/ja-json.97ee41ba.chunk.js +0 -1
- package/build/ko-json.4cbbf4f2.chunk.js +0 -1
- package/build/main.7f308c20.js +0 -4322
- package/build/ml-json.e3747091.chunk.js +0 -1
- package/build/nl-json.371a15ee.chunk.js +0 -1
- package/build/pl-json.e535cbce.chunk.js +0 -1
- package/build/pt-BR-json.e5fafa46.chunk.js +0 -1
- package/build/review-workflows-settings.7b4be1b0.chunk.js +0 -63
- package/build/ru-json.866f0ff1.chunk.js +0 -1
- package/build/runtime~main.bf374148.js +0 -2
- package/build/sa-json.7efeb257.chunk.js +0 -1
- package/build/sk-json.7bbeb0af.chunk.js +0 -1
- package/build/sso-settings-page.ad2143dd.chunk.js +0 -41
- package/build/sv-json.dc40951f.chunk.js +0 -1
- package/build/th-json.f664b96d.chunk.js +0 -1
- package/build/tr-json.b79eae31.chunk.js +0 -1
- package/build/upload-settings.eb1a7908.chunk.js +0 -84
- package/build/upload-translation-zh-Hans-json.3da5cf56.chunk.js +0 -1
- package/build/upload.700e2c84.chunk.js +0 -33
- package/build/users-advanced-settings-page.aae212f2.chunk.js +0 -8
- package/build/users-email-settings-page.8a9b0da1.chunk.js +0 -23
- package/build/users-permissions-translation-zh-Hans-json.0b31c705.chunk.js +0 -1
- package/build/users-providers-settings-page.e6be909d.chunk.js +0 -99
- package/build/users-roles-settings-page.97d06a80.chunk.js +0 -30
- package/build/webhook-edit-page.9eb0f789.chunk.js +0 -75
- package/build/webhook-list-page.66082323.chunk.js +0 -42
- package/build/zh-Hans-json.30a18940.chunk.js +0 -1
- package/build/zh-json.49d84433.chunk.js +0 -1
- package/ee/admin/pages/SettingsPage/pages/ReviewWorkflows/ReviewWorkflows.js +0 -137
- package/ee/admin/pages/SettingsPage/pages/ReviewWorkflows/actions/index.js +0 -42
- package/ee/admin/pages/SettingsPage/pages/ReviewWorkflows/components/AddStage/AddStage.js +0 -87
- package/ee/admin/pages/SettingsPage/pages/ReviewWorkflows/components/AddStage/index.js +0 -1
- package/ee/admin/pages/SettingsPage/pages/ReviewWorkflows/components/Stages/Stage/Stage.js +0 -90
- package/ee/admin/pages/SettingsPage/pages/ReviewWorkflows/components/Stages/Stage/index.js +0 -1
- package/ee/admin/pages/SettingsPage/pages/ReviewWorkflows/components/Stages/Stages.js +0 -77
- package/ee/admin/pages/SettingsPage/pages/ReviewWorkflows/components/Stages/index.js +0 -1
- package/ee/admin/pages/SettingsPage/pages/ReviewWorkflows/constants.js +0 -6
- package/ee/admin/pages/SettingsPage/pages/ReviewWorkflows/hooks/useReviewWorkflows.js +0 -63
- package/ee/admin/pages/SettingsPage/pages/ReviewWorkflows/index.js +0 -3
- package/ee/admin/pages/SettingsPage/pages/ReviewWorkflows/reducer/index.js +0 -102
- package/ee/admin/pages/SettingsPage/pages/ReviewWorkflows/utils/getWorkflowValidationSchema.js +0 -25
- package/ee/admin/pages/SettingsPage/pages/Roles/CreatePage/index.js +0 -267
- package/ee/admin/pages/SettingsPage/pages/Roles/EditPage/components/ConditionsModal/ActionRow/utils/constants.js +0 -3
- package/ee/admin/pages/SettingsPage/pages/Roles/EditPage/components/ConditionsModal/ConditionsSelect/MenuList/utils/constants.js +0 -3
- package/ee/admin/pages/SettingsPage/pages/Roles/EditPage/components/ContentTypeCollapse/Collapse/utils/constants.js +0 -3
- package/ee/admin/pages/SettingsPage/pages/Roles/EditPage/components/ContentTypeCollapse/CollapsePropertyMatrix/ActionRow/utils/constants.js +0 -3
- package/ee/admin/pages/SettingsPage/pages/Roles/EditPage/components/ContentTypeCollapse/CollapsePropertyMatrix/SubActionRow/utils/constants.js +0 -3
- package/ee/admin/pages/SettingsPage/pages/Roles/EditPage/components/GlobalActions/utils/constants.js +0 -3
- package/ee/admin/pages/SettingsPage/pages/Roles/EditPage/components/PluginsAndSettings/SubCategory/utils/constants.js +0 -3
- package/ee/admin/pages/SettingsPage/pages/Roles/ListPage/index.js +0 -370
- package/ee/admin/pages/SettingsPage/pages/Roles/ProtectedListPage/index.js +0 -12
- package/ee/server/constants/default-stages.json +0 -14
- package/ee/server/constants/default-workflow.json +0 -1
- package/ee/server/constants/workflows.js +0 -7
- package/ee/server/content-types/index.js +0 -9
- package/ee/server/content-types/workflow/index.js +0 -34
- package/ee/server/content-types/workflow-stage/index.js +0 -36
- package/ee/server/controllers/permission.js +0 -21
- package/ee/server/controllers/workflows/index.js +0 -36
- package/ee/server/controllers/workflows/stages/index.js +0 -57
- package/ee/server/services/review-workflows/review-workflows.js +0 -54
- package/ee/server/services/review-workflows/stages.js +0 -133
- package/ee/server/services/review-workflows/workflows.js +0 -25
- package/ee/server/utils/index.js +0 -8
- package/ee/server/utils/test.js +0 -11
- package/ee/server/validation/permission.js +0 -8
- package/ee/server/validation/review-workflows.js +0 -17
- package/server/domain/role.js +0 -29
- package/admin/src/pages/SettingsPage/{pages/ApiTokens/ListView/DynamicTable → components/Tokens/Table}/DefaultButton/index.js +1 -1
- /package/{ee/admin → admin/src}/pages/SettingsPage/pages/Roles/CreatePage/utils/schema.js +0 -0
- /package/{ee/admin → admin/src}/pages/SettingsPage/pages/Roles/ListPage/reducer.js +0 -0
|
@@ -0,0 +1,426 @@
|
|
|
1
|
+
'use strict';
|
|
2
|
+
|
|
3
|
+
const { map, isArray, omit, uniq, isNil, difference, isEmpty } = require('lodash/fp');
|
|
4
|
+
const crypto = require('crypto');
|
|
5
|
+
|
|
6
|
+
const {
|
|
7
|
+
errors: { ValidationError, NotFoundError },
|
|
8
|
+
} = require('@strapi/utils');
|
|
9
|
+
|
|
10
|
+
const constants = require('../constants');
|
|
11
|
+
const { getService } = require('../../utils');
|
|
12
|
+
|
|
13
|
+
const TRANSFER_TOKEN_UID = 'admin::transfer-token';
|
|
14
|
+
const TRANSFER_TOKEN_PERMISSION_UID = 'admin::transfer-token-permission';
|
|
15
|
+
|
|
16
|
+
/**
|
|
17
|
+
* @typedef TransferToken
|
|
18
|
+
*
|
|
19
|
+
* @property {number|string} id
|
|
20
|
+
* @property {string} name
|
|
21
|
+
* @property {string} description
|
|
22
|
+
* @property {string} accessKey
|
|
23
|
+
* @property {number} lastUsedAt
|
|
24
|
+
* @property {number} lifespan
|
|
25
|
+
* @property {number} expiresAt
|
|
26
|
+
* @property {(number[]|TransferTokenPermission[])} permissions
|
|
27
|
+
*/
|
|
28
|
+
|
|
29
|
+
/**
|
|
30
|
+
* @typedef TransferTokenPermission
|
|
31
|
+
*
|
|
32
|
+
* @property {number|string} id
|
|
33
|
+
* @property {string} action
|
|
34
|
+
* @property {TransferToken|number} token
|
|
35
|
+
*/
|
|
36
|
+
|
|
37
|
+
/** @constant {Array<string>} */
|
|
38
|
+
const SELECT_FIELDS = [
|
|
39
|
+
'id',
|
|
40
|
+
'name',
|
|
41
|
+
'description',
|
|
42
|
+
'lastUsedAt',
|
|
43
|
+
'lifespan',
|
|
44
|
+
'expiresAt',
|
|
45
|
+
'createdAt',
|
|
46
|
+
'updatedAt',
|
|
47
|
+
];
|
|
48
|
+
|
|
49
|
+
/** @constant {Array<string>} */
|
|
50
|
+
const POPULATE_FIELDS = ['permissions'];
|
|
51
|
+
|
|
52
|
+
/**
|
|
53
|
+
* Return a list of all tokens and their permissions
|
|
54
|
+
*
|
|
55
|
+
* @returns {Promise<Omit<TransferToken, 'accessKey'>[]>}
|
|
56
|
+
*/
|
|
57
|
+
const list = async () => {
|
|
58
|
+
const tokens = await strapi.query(TRANSFER_TOKEN_UID).findMany({
|
|
59
|
+
select: SELECT_FIELDS,
|
|
60
|
+
populate: POPULATE_FIELDS,
|
|
61
|
+
orderBy: { name: 'ASC' },
|
|
62
|
+
});
|
|
63
|
+
|
|
64
|
+
if (!tokens) return tokens;
|
|
65
|
+
return tokens.map((token) => flattenTokenPermissions(token));
|
|
66
|
+
};
|
|
67
|
+
|
|
68
|
+
/**
|
|
69
|
+
* Create a token and its permissions
|
|
70
|
+
*
|
|
71
|
+
* @param {Object} attributes
|
|
72
|
+
* @param {string} attributes.name
|
|
73
|
+
* @param {string} attributes.description
|
|
74
|
+
* @param {number} attributes.lifespan
|
|
75
|
+
* @param {string[]} attributes.permissions
|
|
76
|
+
*
|
|
77
|
+
* @returns {Promise<TransferToken>}
|
|
78
|
+
*/
|
|
79
|
+
const create = async (attributes) => {
|
|
80
|
+
const accessKey = crypto.randomBytes(128).toString('hex');
|
|
81
|
+
|
|
82
|
+
assertTokenPermissionsValidity(attributes);
|
|
83
|
+
assertValidLifespan(attributes);
|
|
84
|
+
|
|
85
|
+
const result = await strapi.db.transaction(async () => {
|
|
86
|
+
const transferToken = await strapi.query(TRANSFER_TOKEN_UID).create({
|
|
87
|
+
select: SELECT_FIELDS,
|
|
88
|
+
populate: POPULATE_FIELDS,
|
|
89
|
+
data: {
|
|
90
|
+
...omit('permissions', attributes),
|
|
91
|
+
accessKey: hash(accessKey),
|
|
92
|
+
...getExpirationFields(attributes.lifespan),
|
|
93
|
+
},
|
|
94
|
+
});
|
|
95
|
+
|
|
96
|
+
await Promise.all(
|
|
97
|
+
uniq(attributes.permissions).map((action) =>
|
|
98
|
+
strapi
|
|
99
|
+
.query(TRANSFER_TOKEN_PERMISSION_UID)
|
|
100
|
+
.create({ data: { action, token: transferToken } })
|
|
101
|
+
)
|
|
102
|
+
);
|
|
103
|
+
|
|
104
|
+
const currentPermissions = await strapi.entityService.load(
|
|
105
|
+
TRANSFER_TOKEN_UID,
|
|
106
|
+
transferToken,
|
|
107
|
+
'permissions'
|
|
108
|
+
);
|
|
109
|
+
|
|
110
|
+
if (currentPermissions) {
|
|
111
|
+
Object.assign(transferToken, { permissions: map('action', currentPermissions) });
|
|
112
|
+
}
|
|
113
|
+
|
|
114
|
+
return transferToken;
|
|
115
|
+
});
|
|
116
|
+
|
|
117
|
+
return { ...result, accessKey };
|
|
118
|
+
};
|
|
119
|
+
|
|
120
|
+
/**
|
|
121
|
+
* Update a token and its permissions
|
|
122
|
+
*
|
|
123
|
+
* @param {string|number} id
|
|
124
|
+
* @param {Object} attributes
|
|
125
|
+
* @param {string} attributes.name
|
|
126
|
+
* @param {number} attributes.lastUsedAt
|
|
127
|
+
* @param {string[]} attributes.permissions
|
|
128
|
+
* @param {string} attributes.description
|
|
129
|
+
*
|
|
130
|
+
* @returns {Promise<Omit<TransferToken, 'accessKey'>>}
|
|
131
|
+
*/
|
|
132
|
+
const update = async (id, attributes) => {
|
|
133
|
+
// retrieve token without permissions
|
|
134
|
+
const originalToken = await strapi.query(TRANSFER_TOKEN_UID).findOne({ where: { id } });
|
|
135
|
+
|
|
136
|
+
if (!originalToken) {
|
|
137
|
+
throw new NotFoundError('Token not found');
|
|
138
|
+
}
|
|
139
|
+
|
|
140
|
+
assertTokenPermissionsValidity(attributes);
|
|
141
|
+
assertValidLifespan(attributes);
|
|
142
|
+
|
|
143
|
+
return strapi.db.transaction(async () => {
|
|
144
|
+
const updatedToken = await strapi.query(TRANSFER_TOKEN_UID).update({
|
|
145
|
+
select: SELECT_FIELDS,
|
|
146
|
+
where: { id },
|
|
147
|
+
data: {
|
|
148
|
+
...omit('permissions', attributes),
|
|
149
|
+
},
|
|
150
|
+
});
|
|
151
|
+
|
|
152
|
+
if (attributes.permissions) {
|
|
153
|
+
const currentPermissionsResult = await strapi.entityService.load(
|
|
154
|
+
TRANSFER_TOKEN_UID,
|
|
155
|
+
updatedToken,
|
|
156
|
+
'permissions'
|
|
157
|
+
);
|
|
158
|
+
|
|
159
|
+
const currentPermissions = map('action', currentPermissionsResult || []);
|
|
160
|
+
const newPermissions = uniq(attributes.permissions);
|
|
161
|
+
|
|
162
|
+
const actionsToDelete = difference(currentPermissions, newPermissions);
|
|
163
|
+
const actionsToAdd = difference(newPermissions, currentPermissions);
|
|
164
|
+
|
|
165
|
+
// TODO: improve efficiency here
|
|
166
|
+
// method using a loop -- works but very inefficient
|
|
167
|
+
await Promise.all(
|
|
168
|
+
actionsToDelete.map((action) =>
|
|
169
|
+
strapi.query(TRANSFER_TOKEN_PERMISSION_UID).delete({
|
|
170
|
+
where: { action, token: id },
|
|
171
|
+
})
|
|
172
|
+
)
|
|
173
|
+
);
|
|
174
|
+
|
|
175
|
+
// TODO: improve efficiency here
|
|
176
|
+
// using a loop -- works but very inefficient
|
|
177
|
+
await Promise.all(
|
|
178
|
+
actionsToAdd.map((action) =>
|
|
179
|
+
strapi.query(TRANSFER_TOKEN_PERMISSION_UID).create({
|
|
180
|
+
data: { action, token: id },
|
|
181
|
+
})
|
|
182
|
+
)
|
|
183
|
+
);
|
|
184
|
+
}
|
|
185
|
+
|
|
186
|
+
// retrieve permissions
|
|
187
|
+
const permissionsFromDb = await strapi.entityService.load(
|
|
188
|
+
TRANSFER_TOKEN_UID,
|
|
189
|
+
updatedToken,
|
|
190
|
+
'permissions'
|
|
191
|
+
);
|
|
192
|
+
|
|
193
|
+
return {
|
|
194
|
+
...updatedToken,
|
|
195
|
+
permissions: permissionsFromDb ? permissionsFromDb.map((p) => p.action) : undefined,
|
|
196
|
+
};
|
|
197
|
+
});
|
|
198
|
+
};
|
|
199
|
+
|
|
200
|
+
/**
|
|
201
|
+
* Revoke (delete) a token
|
|
202
|
+
*
|
|
203
|
+
* @param {string|number} id
|
|
204
|
+
*
|
|
205
|
+
* @returns {Promise<Omit<TransferToken, 'accessKey'>>}
|
|
206
|
+
*/
|
|
207
|
+
const revoke = async (id) => {
|
|
208
|
+
return strapi.db.transaction(async () =>
|
|
209
|
+
strapi
|
|
210
|
+
.query(TRANSFER_TOKEN_UID)
|
|
211
|
+
.delete({ select: SELECT_FIELDS, populate: POPULATE_FIELDS, where: { id } })
|
|
212
|
+
);
|
|
213
|
+
};
|
|
214
|
+
|
|
215
|
+
/**
|
|
216
|
+
* Get a token
|
|
217
|
+
*
|
|
218
|
+
* @param {Object} whereParams
|
|
219
|
+
* @param {string|number} whereParams.id
|
|
220
|
+
* @param {string} whereParams.name
|
|
221
|
+
* @param {number} whereParams.lastUsedAt
|
|
222
|
+
* @param {string} whereParams.description
|
|
223
|
+
* @param {string} whereParams.accessKey
|
|
224
|
+
*
|
|
225
|
+
* @returns {Promise<Omit<TransferToken, 'accessKey'> | null>}
|
|
226
|
+
*/
|
|
227
|
+
const getBy = async (whereParams = {}) => {
|
|
228
|
+
if (Object.keys(whereParams).length === 0) {
|
|
229
|
+
return null;
|
|
230
|
+
}
|
|
231
|
+
|
|
232
|
+
const token = await strapi
|
|
233
|
+
.query(TRANSFER_TOKEN_UID)
|
|
234
|
+
.findOne({ select: SELECT_FIELDS, populate: POPULATE_FIELDS, where: whereParams });
|
|
235
|
+
|
|
236
|
+
if (!token) return token;
|
|
237
|
+
return flattenTokenPermissions(token);
|
|
238
|
+
};
|
|
239
|
+
|
|
240
|
+
/**
|
|
241
|
+
* Retrieve a token by id
|
|
242
|
+
*
|
|
243
|
+
* @param {string|number} id
|
|
244
|
+
*
|
|
245
|
+
* @returns {Promise<Omit<TransferToken, 'accessKey'>>}
|
|
246
|
+
*/
|
|
247
|
+
const getById = async (id) => {
|
|
248
|
+
return getBy({ id });
|
|
249
|
+
};
|
|
250
|
+
|
|
251
|
+
/**
|
|
252
|
+
* Retrieve a token by name
|
|
253
|
+
*
|
|
254
|
+
* @param {string} name
|
|
255
|
+
*
|
|
256
|
+
* ^@returns {Promise<Omit<TransferToken, 'accessKey'>>}
|
|
257
|
+
*/
|
|
258
|
+
const getByName = async (name) => {
|
|
259
|
+
return getBy({ name });
|
|
260
|
+
};
|
|
261
|
+
|
|
262
|
+
/**
|
|
263
|
+
* Check if token exists
|
|
264
|
+
*
|
|
265
|
+
* @param {Object} whereParams
|
|
266
|
+
* @param {string|number} whereParams.id
|
|
267
|
+
* @param {string} whereParams.name
|
|
268
|
+
* @param {number} whereParams.lastUsedAt
|
|
269
|
+
* @param {string} whereParams.description
|
|
270
|
+
* @param {string} whereParams.accessKey
|
|
271
|
+
*
|
|
272
|
+
* @returns {Promise<boolean>}
|
|
273
|
+
*/
|
|
274
|
+
const exists = async (whereParams = {}) => {
|
|
275
|
+
const transferToken = await getBy(whereParams);
|
|
276
|
+
|
|
277
|
+
return !!transferToken;
|
|
278
|
+
};
|
|
279
|
+
|
|
280
|
+
/**
|
|
281
|
+
* @param {string|number} id
|
|
282
|
+
*
|
|
283
|
+
* @returns {Promise<TransferToken>}
|
|
284
|
+
*/
|
|
285
|
+
const regenerate = async (id) => {
|
|
286
|
+
const accessKey = crypto.randomBytes(128).toString('hex');
|
|
287
|
+
const transferToken = await strapi.db.transaction(async () =>
|
|
288
|
+
strapi.query(TRANSFER_TOKEN_UID).update({
|
|
289
|
+
select: ['id', 'accessKey'],
|
|
290
|
+
where: { id },
|
|
291
|
+
data: {
|
|
292
|
+
accessKey: hash(accessKey),
|
|
293
|
+
},
|
|
294
|
+
})
|
|
295
|
+
);
|
|
296
|
+
|
|
297
|
+
if (!transferToken) {
|
|
298
|
+
throw new NotFoundError('The provided token id does not exist');
|
|
299
|
+
}
|
|
300
|
+
|
|
301
|
+
return {
|
|
302
|
+
...transferToken,
|
|
303
|
+
accessKey,
|
|
304
|
+
};
|
|
305
|
+
};
|
|
306
|
+
|
|
307
|
+
/**
|
|
308
|
+
* @param {number} lifespan
|
|
309
|
+
*
|
|
310
|
+
* @returns { { lifespan: null | number, expiresAt: null | number } }
|
|
311
|
+
*/
|
|
312
|
+
const getExpirationFields = (lifespan) => {
|
|
313
|
+
// it must be nil or a finite number >= 0
|
|
314
|
+
const isValidNumber = Number.isFinite(lifespan) && lifespan > 0;
|
|
315
|
+
if (!isValidNumber && !isNil(lifespan)) {
|
|
316
|
+
throw new ValidationError('lifespan must be a positive number or null');
|
|
317
|
+
}
|
|
318
|
+
|
|
319
|
+
return {
|
|
320
|
+
lifespan: lifespan || null,
|
|
321
|
+
expiresAt: lifespan ? Date.now() + lifespan : null,
|
|
322
|
+
};
|
|
323
|
+
};
|
|
324
|
+
|
|
325
|
+
/**
|
|
326
|
+
* Return a secure sha512 hash of an accessKey
|
|
327
|
+
*
|
|
328
|
+
* @param {string} accessKey
|
|
329
|
+
*
|
|
330
|
+
* @returns {string}
|
|
331
|
+
*/
|
|
332
|
+
const hash = (accessKey) => {
|
|
333
|
+
const { hasValidTokenSalt } = getService('transfer').utils;
|
|
334
|
+
|
|
335
|
+
if (!hasValidTokenSalt()) {
|
|
336
|
+
throw new TypeError('Required token salt is not defined');
|
|
337
|
+
}
|
|
338
|
+
|
|
339
|
+
return crypto
|
|
340
|
+
.createHmac('sha512', strapi.config.get('admin.transfer.token.salt'))
|
|
341
|
+
.update(accessKey)
|
|
342
|
+
.digest('hex');
|
|
343
|
+
};
|
|
344
|
+
|
|
345
|
+
/**
|
|
346
|
+
* @returns {void}
|
|
347
|
+
*/
|
|
348
|
+
const checkSaltIsDefined = () => {
|
|
349
|
+
const { hasValidTokenSalt, isDisabledFromEnv } = getService('transfer').utils;
|
|
350
|
+
|
|
351
|
+
// Ignore the check if the data-transfer feature is manually disabled
|
|
352
|
+
if (isDisabledFromEnv()) {
|
|
353
|
+
return;
|
|
354
|
+
}
|
|
355
|
+
|
|
356
|
+
if (!hasValidTokenSalt()) {
|
|
357
|
+
process.emitWarning(
|
|
358
|
+
`Missing transfer.token.salt: Data transfer features have been disabled.
|
|
359
|
+
Please set transfer.token.salt in config/admin.js (ex: you can generate one using Node with \`crypto.randomBytes(16).toString('base64')\`)
|
|
360
|
+
For security reasons, prefer storing the secret in an environment variable and read it in config/admin.js. See https://docs.strapi.io/developer-docs/latest/setup-deployment-guides/configurations/optional/environment.html#configuration-using-environment-variables.`
|
|
361
|
+
);
|
|
362
|
+
}
|
|
363
|
+
};
|
|
364
|
+
|
|
365
|
+
/**
|
|
366
|
+
* Flatten a token's database permissions objects to an array of strings
|
|
367
|
+
*
|
|
368
|
+
* @param {TransferToken} token
|
|
369
|
+
*
|
|
370
|
+
* @returns {TransferToken}
|
|
371
|
+
*/
|
|
372
|
+
const flattenTokenPermissions = (token) => {
|
|
373
|
+
if (!token) return token;
|
|
374
|
+
|
|
375
|
+
return {
|
|
376
|
+
...token,
|
|
377
|
+
permissions: isArray(token.permissions) ? map('action', token.permissions) : token.permissions,
|
|
378
|
+
};
|
|
379
|
+
};
|
|
380
|
+
|
|
381
|
+
/**
|
|
382
|
+
* Assert that a token's permissions are valid
|
|
383
|
+
*
|
|
384
|
+
* @param {TransferToken} token
|
|
385
|
+
*/
|
|
386
|
+
const assertTokenPermissionsValidity = (attributes) => {
|
|
387
|
+
const permissionService = strapi.admin.services.transfer.permission;
|
|
388
|
+
const validPermissions = permissionService.providers.action.keys();
|
|
389
|
+
const invalidPermissions = difference(attributes.permissions, validPermissions);
|
|
390
|
+
|
|
391
|
+
if (!isEmpty(invalidPermissions)) {
|
|
392
|
+
throw new ValidationError(`Unknown permissions provided: ${invalidPermissions.join(', ')}`);
|
|
393
|
+
}
|
|
394
|
+
};
|
|
395
|
+
|
|
396
|
+
/**
|
|
397
|
+
* Assert that a token's lifespan is valid
|
|
398
|
+
*
|
|
399
|
+
* @param {TransferToken} token
|
|
400
|
+
*/
|
|
401
|
+
const assertValidLifespan = ({ lifespan }) => {
|
|
402
|
+
if (isNil(lifespan)) {
|
|
403
|
+
return;
|
|
404
|
+
}
|
|
405
|
+
|
|
406
|
+
if (!Object.values(constants.TRANSFER_TOKEN_LIFESPANS).includes(lifespan)) {
|
|
407
|
+
throw new ValidationError(
|
|
408
|
+
`lifespan must be one of the following values:
|
|
409
|
+
${Object.values(constants.TRANSFER_TOKEN_LIFESPANS).join(', ')}`
|
|
410
|
+
);
|
|
411
|
+
}
|
|
412
|
+
};
|
|
413
|
+
|
|
414
|
+
module.exports = {
|
|
415
|
+
create,
|
|
416
|
+
list,
|
|
417
|
+
exists,
|
|
418
|
+
getBy,
|
|
419
|
+
getById,
|
|
420
|
+
getByName,
|
|
421
|
+
update,
|
|
422
|
+
revoke,
|
|
423
|
+
regenerate,
|
|
424
|
+
hash,
|
|
425
|
+
checkSaltIsDefined,
|
|
426
|
+
};
|
|
@@ -0,0 +1,38 @@
|
|
|
1
|
+
'use strict';
|
|
2
|
+
|
|
3
|
+
const { env } = require('@strapi/utils');
|
|
4
|
+
|
|
5
|
+
const { getService } = require('../../utils');
|
|
6
|
+
|
|
7
|
+
/**
|
|
8
|
+
* Returns whether the data transfer features have been disabled from the env configuration
|
|
9
|
+
*
|
|
10
|
+
* @returns {boolean}
|
|
11
|
+
*/
|
|
12
|
+
const isDisabledFromEnv = () => {
|
|
13
|
+
return env.bool('STRAPI_DISABLE_REMOTE_DATA_TRANSFER', false);
|
|
14
|
+
};
|
|
15
|
+
|
|
16
|
+
/**
|
|
17
|
+
* A valid transfer token salt must be a non-empty string defined in the Strapi config
|
|
18
|
+
*
|
|
19
|
+
* @returns {boolean}
|
|
20
|
+
*/
|
|
21
|
+
const hasValidTokenSalt = () => {
|
|
22
|
+
const salt = strapi.config.get('admin.transfer.token.salt', null);
|
|
23
|
+
|
|
24
|
+
return typeof salt === 'string' && salt.length > 0;
|
|
25
|
+
};
|
|
26
|
+
|
|
27
|
+
/**
|
|
28
|
+
* Checks whether data transfer features are enabled
|
|
29
|
+
*
|
|
30
|
+
* @returns {boolean}
|
|
31
|
+
*/
|
|
32
|
+
const isDataTransferEnabled = () => {
|
|
33
|
+
const { utils } = getService('transfer');
|
|
34
|
+
|
|
35
|
+
return !utils.isDisabledFromEnv() && utils.hasValidTokenSalt();
|
|
36
|
+
};
|
|
37
|
+
|
|
38
|
+
module.exports = { isDataTransferEnabled, isDisabledFromEnv, hasValidTokenSalt };
|
|
@@ -24,7 +24,8 @@ const extractToken = (ctx) => {
|
|
|
24
24
|
/**
|
|
25
25
|
* Authenticate the validity of the token
|
|
26
26
|
*
|
|
27
|
-
* @type {import('.').AuthenticateFunction}
|
|
27
|
+
* @type {import('.').AuthenticateFunction}
|
|
28
|
+
*/
|
|
28
29
|
const authenticate = async (ctx) => {
|
|
29
30
|
const apiTokenService = getService('api-token');
|
|
30
31
|
const token = extractToken(ctx);
|
|
@@ -72,7 +73,8 @@ const authenticate = async (ctx) => {
|
|
|
72
73
|
/**
|
|
73
74
|
* Verify the token has the required abilities for the requested scope
|
|
74
75
|
*
|
|
75
|
-
* @type {import('.').VerifyFunction}
|
|
76
|
+
* @type {import('.').VerifyFunction}
|
|
77
|
+
*/
|
|
76
78
|
const verify = (auth, config) => {
|
|
77
79
|
const { credentials: apiToken, ability } = auth;
|
|
78
80
|
|
|
@@ -0,0 +1,109 @@
|
|
|
1
|
+
'use strict';
|
|
2
|
+
|
|
3
|
+
const {
|
|
4
|
+
errors: { UnauthorizedError, ForbiddenError },
|
|
5
|
+
} = require('@strapi/utils');
|
|
6
|
+
const { castArray, isNil } = require('lodash/fp');
|
|
7
|
+
|
|
8
|
+
const { getService } = require('../utils');
|
|
9
|
+
|
|
10
|
+
const extractToken = (ctx) => {
|
|
11
|
+
if (ctx.request && ctx.request.header && ctx.request.header.authorization) {
|
|
12
|
+
const parts = ctx.request.header.authorization.split(/\s+/);
|
|
13
|
+
|
|
14
|
+
if (parts[0].toLowerCase() !== 'bearer' || parts.length !== 2) {
|
|
15
|
+
return null;
|
|
16
|
+
}
|
|
17
|
+
|
|
18
|
+
return parts[1];
|
|
19
|
+
}
|
|
20
|
+
|
|
21
|
+
return null;
|
|
22
|
+
};
|
|
23
|
+
|
|
24
|
+
/**
|
|
25
|
+
* Authenticate the validity of the token
|
|
26
|
+
*
|
|
27
|
+
* @type {import('.').AuthenticateFunction}
|
|
28
|
+
*/
|
|
29
|
+
const authenticate = async (ctx) => {
|
|
30
|
+
const { token: tokenService } = getService('transfer');
|
|
31
|
+
const token = extractToken(ctx);
|
|
32
|
+
|
|
33
|
+
if (!token) {
|
|
34
|
+
return { authenticated: false };
|
|
35
|
+
}
|
|
36
|
+
|
|
37
|
+
const transferToken = await tokenService.getBy({ accessKey: tokenService.hash(token) });
|
|
38
|
+
|
|
39
|
+
// Check if the token exists
|
|
40
|
+
if (!transferToken) {
|
|
41
|
+
return { authenticated: false };
|
|
42
|
+
}
|
|
43
|
+
|
|
44
|
+
// Check if the token has expired
|
|
45
|
+
const currentDate = new Date();
|
|
46
|
+
|
|
47
|
+
if (!isNil(transferToken.expiresAt)) {
|
|
48
|
+
const expirationDate = new Date(transferToken.expiresAt);
|
|
49
|
+
|
|
50
|
+
if (expirationDate < currentDate) {
|
|
51
|
+
return { authenticated: false, error: new UnauthorizedError('Token expired') };
|
|
52
|
+
}
|
|
53
|
+
}
|
|
54
|
+
|
|
55
|
+
// Update token metadata
|
|
56
|
+
await strapi.query('admin::transfer-token').update({
|
|
57
|
+
where: { id: transferToken.id },
|
|
58
|
+
data: { lastUsedAt: currentDate },
|
|
59
|
+
});
|
|
60
|
+
|
|
61
|
+
// Generate an ability based on the token permissions
|
|
62
|
+
const ability = await getService('transfer').permission.engine.generateAbility(
|
|
63
|
+
transferToken.permissions.map((action) => ({ action }))
|
|
64
|
+
);
|
|
65
|
+
|
|
66
|
+
return { authenticated: true, ability, credentials: transferToken };
|
|
67
|
+
};
|
|
68
|
+
|
|
69
|
+
/**
|
|
70
|
+
* Verify the token has the required abilities for the requested scope
|
|
71
|
+
*
|
|
72
|
+
* @type {import('.').VerifyFunction}
|
|
73
|
+
*/
|
|
74
|
+
const verify = async (auth, config = {}) => {
|
|
75
|
+
const { credentials: transferToken, ability } = auth;
|
|
76
|
+
|
|
77
|
+
if (!transferToken) {
|
|
78
|
+
throw new UnauthorizedError('Token not found');
|
|
79
|
+
}
|
|
80
|
+
|
|
81
|
+
const currentDate = new Date();
|
|
82
|
+
|
|
83
|
+
if (!isNil(transferToken.expiresAt)) {
|
|
84
|
+
const expirationDate = new Date(transferToken.expiresAt);
|
|
85
|
+
// token has expired
|
|
86
|
+
if (expirationDate < currentDate) {
|
|
87
|
+
throw new UnauthorizedError('Token expired');
|
|
88
|
+
}
|
|
89
|
+
}
|
|
90
|
+
|
|
91
|
+
if (!ability) {
|
|
92
|
+
throw new ForbiddenError();
|
|
93
|
+
}
|
|
94
|
+
|
|
95
|
+
const scopes = castArray(config.scope ?? []);
|
|
96
|
+
|
|
97
|
+
const isAllowed = scopes.every((scope) => ability.can(scope));
|
|
98
|
+
|
|
99
|
+
if (!isAllowed) {
|
|
100
|
+
throw new ForbiddenError();
|
|
101
|
+
}
|
|
102
|
+
};
|
|
103
|
+
|
|
104
|
+
/** @type {import('.').AuthStrategy} */
|
|
105
|
+
module.exports = {
|
|
106
|
+
name: 'data-transfer',
|
|
107
|
+
authenticate,
|
|
108
|
+
verify,
|
|
109
|
+
};
|
package/server/utils/index.d.ts
CHANGED
|
@@ -7,6 +7,7 @@ import * as token from '../services/token';
|
|
|
7
7
|
import * as auth from '../services/auth';
|
|
8
8
|
import * as apiToken from '../services/api-token';
|
|
9
9
|
import * as projectSettings from '../services/project-settings';
|
|
10
|
+
import * as transfer from '../services/transfer';
|
|
10
11
|
|
|
11
12
|
type S = {
|
|
12
13
|
role: typeof role;
|
|
@@ -18,6 +19,7 @@ type S = {
|
|
|
18
19
|
metrics: typeof metrics;
|
|
19
20
|
'api-token': typeof apiToken;
|
|
20
21
|
'project-settings': typeof projectSettings;
|
|
22
|
+
transfer: typeof transfer;
|
|
21
23
|
};
|
|
22
24
|
|
|
23
25
|
export function getService<T extends keyof S>(name: T): S[T];
|
|
@@ -10,12 +10,7 @@ const apiTokenCreationSchema = yup
|
|
|
10
10
|
description: yup.string().optional(),
|
|
11
11
|
type: yup.string().oneOf(Object.values(constants.API_TOKEN_TYPE)).required(),
|
|
12
12
|
permissions: yup.array().of(yup.string()).nullable(),
|
|
13
|
-
lifespan: yup
|
|
14
|
-
.number()
|
|
15
|
-
.integer()
|
|
16
|
-
.min(1)
|
|
17
|
-
.oneOf(Object.values(constants.API_TOKEN_LIFESPANS))
|
|
18
|
-
.nullable(),
|
|
13
|
+
lifespan: yup.number().min(1).oneOf(Object.values(constants.API_TOKEN_LIFESPANS)).nullable(),
|
|
19
14
|
})
|
|
20
15
|
.noUnknown()
|
|
21
16
|
.strict();
|