npm - @strapi/plugin-users-permissions - Versions diffs - 0.0.0-next.f7babb775ed9a7e18d8351cb7f74c63e016323c4 → 0.0.0-next.f86041c89a8c1545c6437a881dc613e98bc52bd7 - Mend

@strapi/plugin-users-permissions 0.0.0-next.f7babb775ed9a7e18d8351cb7f74c63e016323c4 → 0.0.0-next.f86041c89a8c1545c6437a881dc613e98bc52bd7

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (678) hide show

package/dist/server/bootstrap/index.mjs ADDED Viewed

@@ -0,0 +1,164 @@
+import require$$0 from 'crypto';
+import require$$0$1 from 'lodash';
+import { __require as requireUtils } from '../utils/index.mjs';
+import { __require as requireUsersPermissionsActions } from './users-permissions-actions.mjs';
+import { __require as requireConstants } from '../services/constants.mjs';
+var bootstrap;
+var hasRequiredBootstrap;
+function requireBootstrap() {
+    if (hasRequiredBootstrap) return bootstrap;
+    hasRequiredBootstrap = 1;
+    /**
+	 * An asynchronous bootstrap function that runs before
+	 * your application gets started.
+	 *
+	 * This gives you an opportunity to set up your data model,
+	 * run jobs, or perform some special logic.
+	 */ const crypto = require$$0;
+    const _ = require$$0$1;
+    const { getService } = requireUtils();
+    const usersPermissionsActions = requireUsersPermissionsActions();
+    const { DEFAULT_ACCESS_TOKEN_LIFESPAN, DEFAULT_MAX_REFRESH_TOKEN_LIFESPAN, DEFAULT_IDLE_REFRESH_TOKEN_LIFESPAN, DEFAULT_MAX_SESSION_LIFESPAN, DEFAULT_IDLE_SESSION_LIFESPAN } = requireConstants();
+    const getSessionManager = ()=>{
+        const manager = strapi.sessionManager;
+        return manager ?? null;
+    };
+    const initGrant = async (pluginStore)=>{
+        const allProviders = getService('providers-registry').getAll();
+        const grantConfig = Object.entries(allProviders).reduce((acc, [name, provider])=>{
+            const { icon, enabled, grantConfig } = provider;
+            acc[name] = {
+                icon,
+                enabled,
+                ...grantConfig
+            };
+            return acc;
+        }, {});
+        const prevGrantConfig = await pluginStore.get({
+            key: 'grant'
+        }) || {};
+        if (!prevGrantConfig || !_.isEqual(prevGrantConfig, grantConfig)) {
+            // merge with the previous provider config.
+            _.keys(grantConfig).forEach((key)=>{
+                if (key in prevGrantConfig) {
+                    grantConfig[key] = _.merge(grantConfig[key], prevGrantConfig[key]);
+                }
+            });
+            await pluginStore.set({
+                key: 'grant',
+                value: grantConfig
+            });
+        }
+    };
+    const initEmails = async (pluginStore)=>{
+        if (!await pluginStore.get({
+            key: 'email'
+        })) {
+            const value = {
+                reset_password: {
+                    display: 'Email.template.reset_password',
+                    icon: 'sync',
+                    options: {
+                        from: {
+                            name: 'Administration Panel',
+                            email: 'no-reply@strapi.io'
+                        },
+                        response_email: '',
+                        object: 'Reset password',
+                        message: `<p>We heard that you lost your password. Sorry about that!</p>
+<p>But don’t worry! You can use the following link to reset your password:</p>
+<p><%= URL %>?code=<%= TOKEN %></p>
+<p>Thanks.</p>`
+                    }
+                },
+                email_confirmation: {
+                    display: 'Email.template.email_confirmation',
+                    icon: 'check-square',
+                    options: {
+                        from: {
+                            name: 'Administration Panel',
+                            email: 'no-reply@strapi.io'
+                        },
+                        response_email: '',
+                        object: 'Account confirmation',
+                        message: `<p>Thank you for registering!</p>
+<p>You have to confirm your email address. Please click on the link below.</p>
+<p><%= URL %>?confirmation=<%= CODE %></p>
+<p>Thanks.</p>`
+                    }
+                }
+            };
+            await pluginStore.set({
+                key: 'email',
+                value
+            });
+        }
+    };
+    const initAdvancedOptions = async (pluginStore)=>{
+        if (!await pluginStore.get({
+            key: 'advanced'
+        })) {
+            const value = {
+                unique_email: true,
+                allow_register: true,
+                email_confirmation: false,
+                email_reset_password: null,
+                email_confirmation_redirection: null,
+                default_role: 'authenticated'
+            };
+            await pluginStore.set({
+                key: 'advanced',
+                value
+            });
+        }
+    };
+    bootstrap = async ({ strapi: strapi1 })=>{
+        const pluginStore = strapi1.store({
+            type: 'plugin',
+            name: 'users-permissions'
+        });
+        await initGrant(pluginStore);
+        await initEmails(pluginStore);
+        await initAdvancedOptions(pluginStore);
+        await strapi1.service('admin::permission').actionProvider.registerMany(usersPermissionsActions.actions);
+        await getService('users-permissions').initialize();
+        // Define users-permissions origin configuration for sessionManager
+        const upConfig = strapi1.config.get('plugin::users-permissions');
+        const sessionManager = getSessionManager();
+        if (sessionManager) {
+            sessionManager.defineOrigin('users-permissions', {
+                jwtSecret: upConfig.jwtSecret || strapi1.config.get('admin.auth.secret'),
+                accessTokenLifespan: upConfig.sessions?.accessTokenLifespan || DEFAULT_ACCESS_TOKEN_LIFESPAN,
+                maxRefreshTokenLifespan: upConfig.sessions?.maxRefreshTokenLifespan || DEFAULT_MAX_REFRESH_TOKEN_LIFESPAN,
+                idleRefreshTokenLifespan: upConfig.sessions?.idleRefreshTokenLifespan || DEFAULT_IDLE_REFRESH_TOKEN_LIFESPAN,
+                maxSessionLifespan: upConfig.sessions?.maxSessionLifespan || DEFAULT_MAX_SESSION_LIFESPAN,
+                idleSessionLifespan: upConfig.sessions?.idleSessionLifespan || DEFAULT_IDLE_SESSION_LIFESPAN,
+                algorithm: upConfig.jwt?.algorithm,
+                jwtOptions: upConfig.jwt || {}
+            });
+        }
+        if (!strapi1.config.get('plugin::users-permissions.jwtSecret')) {
+            if (process.env.NODE_ENV !== 'development') {
+                throw new Error(`Missing jwtSecret. Please, set configuration variable "jwtSecret" for the users-permissions plugin in config/plugins.js (ex: you can generate one using Node with \`crypto.randomBytes(16).toString('base64')\`).
+For security reasons, prefer storing the secret in an environment variable and read it in config/plugins.js. See https://docs.strapi.io/developer-docs/latest/setup-deployment-guides/configurations/optional/environment.html#configuration-using-environment-variables.`);
+            }
+            const jwtSecret = crypto.randomBytes(16).toString('base64');
+            strapi1.config.set('plugin::users-permissions.jwtSecret', jwtSecret);
+            if (!process.env.JWT_SECRET) {
+                const envPath = process.env.ENV_PATH || '.env';
+                strapi1.fs.appendFile(envPath, `JWT_SECRET=${jwtSecret}\n`);
+                strapi1.log.info(`The Users & Permissions plugin automatically generated a jwt secret and stored it in ${envPath} under the name JWT_SECRET.`);
+            }
+        }
+    };
+    return bootstrap;
+}
+export { requireBootstrap as __require };
+//# sourceMappingURL=index.mjs.map

package/dist/server/bootstrap/index.mjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.mjs","sources":["../../../server/bootstrap/index.js"],"sourcesContent":["'use strict';\n\n/**\n * An asynchronous bootstrap function that runs before\n * your application gets started.\n *\n * This gives you an opportunity to set up your data model,\n * run jobs, or perform some special logic.\n */\nconst crypto = require('crypto');\nconst _ = require('lodash');\nconst { getService } = require('../utils');\nconst usersPermissionsActions = require('./users-permissions-actions');\nconst {\n DEFAULT_ACCESS_TOKEN_LIFESPAN,\n DEFAULT_MAX_REFRESH_TOKEN_LIFESPAN,\n DEFAULT_IDLE_REFRESH_TOKEN_LIFESPAN,\n DEFAULT_MAX_SESSION_LIFESPAN,\n DEFAULT_IDLE_SESSION_LIFESPAN,\n} = require('../services/constants');\n\nconst getSessionManager = () => {\n const manager = strapi.sessionManager;\n return manager ?? null;\n};\n\nconst initGrant = async (pluginStore) => {\n const allProviders = getService('providers-registry').getAll();\n\n const grantConfig = Object.entries(allProviders).reduce((acc, [name, provider]) => {\n const { icon, enabled, grantConfig } = provider;\n\n acc[name] = {\n icon,\n enabled,\n ...grantConfig,\n };\n return acc;\n }, {});\n\n const prevGrantConfig = (await pluginStore.get({ key: 'grant' })) || {};\n\n if (!prevGrantConfig || !_.isEqual(prevGrantConfig, grantConfig)) {\n // merge with the previous provider config.\n _.keys(grantConfig).forEach((key) => {\n if (key in prevGrantConfig) {\n grantConfig[key] = _.merge(grantConfig[key], prevGrantConfig[key]);\n }\n });\n await pluginStore.set({ key: 'grant', value: grantConfig });\n }\n};\n\nconst initEmails = async (pluginStore) => {\n if (!(await pluginStore.get({ key: 'email' }))) {\n const value = {\n reset_password: {\n display: 'Email.template.reset_password',\n icon: 'sync',\n options: {\n from: {\n name: 'Administration Panel',\n email: 'no-reply@strapi.io',\n },\n response_email: '',\n object: 'Reset password',\n message: `We heard that you lost your password. Sorry about that!\n\nBut don’t worry! You can use the following link to reset your password:\n<%= URL %>?code=<%= TOKEN %>\n\nThanks.`,\n },\n },\n email_confirmation: {\n display: 'Email.template.email_confirmation',\n icon: 'check-square',\n options: {\n from: {\n name: 'Administration Panel',\n email: 'no-reply@strapi.io',\n },\n response_email: '',\n object: 'Account confirmation',\n message: `Thank you for registering!\n\nYou have to confirm your email address. Please click on the link below.\n\n<%= URL %>?confirmation=<%= CODE %>\n\nThanks.`,\n },\n },\n };\n\n await pluginStore.set({ key: 'email', value });\n }\n};\n\nconst initAdvancedOptions = async (pluginStore) => {\n if (!(await pluginStore.get({ key: 'advanced' }))) {\n const value = {\n unique_email: true,\n allow_register: true,\n email_confirmation: false,\n email_reset_password: null,\n email_confirmation_redirection: null,\n default_role: 'authenticated',\n };\n\n await pluginStore.set({ key: 'advanced', value });\n }\n};\n\nmodule.exports = async ({ strapi }) => {\n const pluginStore = strapi.store({ type: 'plugin', name: 'users-permissions' });\n\n await initGrant(pluginStore);\n await initEmails(pluginStore);\n await initAdvancedOptions(pluginStore);\n\n await strapi\n .service('admin::permission')\n .actionProvider.registerMany(usersPermissionsActions.actions);\n\n await getService('users-permissions').initialize();\n\n // Define users-permissions origin configuration for sessionManager\n const upConfig = strapi.config.get('plugin::users-permissions');\n const sessionManager = getSessionManager();\n\n if (sessionManager) {\n sessionManager.defineOrigin('users-permissions', {\n jwtSecret: upConfig.jwtSecret || strapi.config.get('admin.auth.secret'),\n accessTokenLifespan: upConfig.sessions?.accessTokenLifespan || DEFAULT_ACCESS_TOKEN_LIFESPAN,\n maxRefreshTokenLifespan:\n upConfig.sessions?.maxRefreshTokenLifespan || DEFAULT_MAX_REFRESH_TOKEN_LIFESPAN,\n idleRefreshTokenLifespan:\n upConfig.sessions?.idleRefreshTokenLifespan || DEFAULT_IDLE_REFRESH_TOKEN_LIFESPAN,\n maxSessionLifespan: upConfig.sessions?.maxSessionLifespan || DEFAULT_MAX_SESSION_LIFESPAN,\n idleSessionLifespan: upConfig.sessions?.idleSessionLifespan || DEFAULT_IDLE_SESSION_LIFESPAN,\n algorithm: upConfig.jwt?.algorithm,\n jwtOptions: upConfig.jwt || {},\n });\n }\n\n if (!strapi.config.get('plugin::users-permissions.jwtSecret')) {\n if (process.env.NODE_ENV !== 'development') {\n throw new Error(\n `Missing jwtSecret. Please, set configuration variable \"jwtSecret\" for the users-permissions plugin in config/plugins.js (ex: you can generate one using Node with \\`crypto.randomBytes(16).toString('base64')\\`).\nFor security reasons, prefer storing the secret in an environment variable and read it in config/plugins.js. See https://docs.strapi.io/developer-docs/latest/setup-deployment-guides/configurations/optional/environment.html#configuration-using-environment-variables.`\n );\n }\n\n const jwtSecret = crypto.randomBytes(16).toString('base64');\n\n strapi.config.set('plugin::users-permissions.jwtSecret', jwtSecret);\n\n if (!process.env.JWT_SECRET) {\n const envPath = process.env.ENV_PATH || '.env';\n strapi.fs.appendFile(envPath, `JWT_SECRET=${jwtSecret}\\n`);\n strapi.log.info(\n `The Users & Permissions plugin automatically generated a jwt secret and stored it in ${envPath} under the name JWT_SECRET.`\n );\n }\n }\n};\n"],"names":["crypto","require$$0","_","require$$1","getService","require$$2","usersPermissionsActions","require$$3","DEFAULT_ACCESS_TOKEN_LIFESPAN","DEFAULT_MAX_REFRESH_TOKEN_LIFESPAN","DEFAULT_IDLE_REFRESH_TOKEN_LIFESPAN","DEFAULT_MAX_SESSION_LIFESPAN","DEFAULT_IDLE_SESSION_LIFESPAN","require$$4","getSessionManager","manager","strapi","sessionManager","initGrant","pluginStore","allProviders","getAll","grantConfig","Object","entries","reduce","acc","name","provider","icon","enabled","prevGrantConfig","get","key","isEqual","keys","forEach","merge","set","value","initEmails","reset_password","display","options","from","email","response_email","object","message","email_confirmation","initAdvancedOptions","unique_email","allow_register","email_reset_password","email_confirmation_redirection","default_role","bootstrap","store","type","service","actionProvider","registerMany","actions","initialize","upConfig","config","defineOrigin","jwtSecret","accessTokenLifespan","sessions","maxRefreshTokenLifespan","idleRefreshTokenLifespan","maxSessionLifespan","idleSessionLifespan","algorithm","jwt","jwtOptions","process","env","NODE_ENV","Error","randomBytes","toString","JWT_SECRET","envPath","ENV_PATH","fs","appendFile","log","info"],"mappings":";;;;;;;;;;;AAEA;;;;;;AAMA,KACA,MAAMA,MAASC,GAAAA,UAAAA;AACf,IAAA,MAAMC,CAAIC,GAAAA,YAAAA;IACV,MAAM,EAAEC,UAAU,EAAE,GAAGC,YAAAA,EAAAA;AACvB,IAAA,MAAMC,uBAA0BC,GAAAA,8BAAAA,EAAAA;IAChC,MAAM,EACJC,6BAA6B,EAC7BC,kCAAkC,EAClCC,mCAAmC,EACnCC,4BAA4B,EAC5BC,6BAA6B,EAC9B,GAAGC,gBAAAA,EAAAA;AAEJ,IAAA,MAAMC,iBAAoB,GAAA,IAAA;QACxB,MAAMC,OAAAA,GAAUC,OAAOC,cAAc;AACrC,QAAA,OAAOF,OAAW,IAAA,IAAA;AACpB,KAAA;AAEA,IAAA,MAAMG,YAAY,OAAOC,WAAAA,GAAAA;QACvB,MAAMC,YAAAA,GAAehB,UAAW,CAAA,oBAAA,CAAA,CAAsBiB,MAAM,EAAA;QAE5D,MAAMC,WAAAA,GAAcC,MAAOC,CAAAA,OAAO,CAACJ,YAAAA,CAAAA,CAAcK,MAAM,CAAC,CAACC,GAAAA,EAAK,CAACC,IAAAA,EAAMC,QAAS,CAAA,GAAA;AAC5E,YAAA,MAAM,EAAEC,IAAI,EAAEC,OAAO,EAAER,WAAW,EAAE,GAAGM,QAAAA;YAEvCF,GAAG,CAACC,KAAK,GAAG;AACVE,gBAAAA,IAAAA;AACAC,gBAAAA,OAAAA;AACA,gBAAA,GAAGR;AACT,aAAA;YACI,OAAOI,GAAAA;AACR,SAAA,EAAE,EAAE,CAAA;AAEL,QAAA,MAAMK,eAAkB,GAAC,MAAMZ,WAAAA,CAAYa,GAAG,CAAC;YAAEC,GAAK,EAAA;cAAe;AAErE,QAAA,IAAI,CAACF,eAAmB,IAAA,CAAC7B,EAAEgC,OAAO,CAACH,iBAAiBT,WAAc,CAAA,EAAA;;AAEhEpB,YAAAA,CAAAA,CAAEiC,IAAI,CAACb,WAAac,CAAAA,CAAAA,OAAO,CAAC,CAACH,GAAAA,GAAAA;AAC3B,gBAAA,IAAIA,OAAOF,eAAiB,EAAA;AAC1BT,oBAAAA,WAAW,CAACW,GAAAA,CAAI,GAAG/B,CAAAA,CAAEmC,KAAK,CAACf,WAAW,CAACW,GAAI,CAAA,EAAEF,eAAe,CAACE,GAAI,CAAA,CAAA;AAClE;AACP,aAAA,CAAA;YACI,MAAMd,WAAAA,CAAYmB,GAAG,CAAC;gBAAEL,GAAK,EAAA,OAAA;gBAASM,KAAOjB,EAAAA;AAAW,aAAA,CAAA;AACzD;AACH,KAAA;AAEA,IAAA,MAAMkB,aAAa,OAAOrB,WAAAA,GAAAA;AACxB,QAAA,IAAI,CAAE,MAAMA,WAAYa,CAAAA,GAAG,CAAC;YAAEC,GAAK,EAAA;SAAa,CAAA,EAAA;AAC9C,YAAA,MAAMM,KAAQ,GAAA;gBACZE,cAAgB,EAAA;oBACdC,OAAS,EAAA,+BAAA;oBACTb,IAAM,EAAA,MAAA;oBACNc,OAAS,EAAA;wBACPC,IAAM,EAAA;4BACJjB,IAAM,EAAA,sBAAA;4BACNkB,KAAO,EAAA;AACR,yBAAA;wBACDC,cAAgB,EAAA,EAAA;wBAChBC,MAAQ,EAAA,gBAAA;AACRC,wBAAAA,OAAAA,EAAS,CAAC;;;;;cAKN;AACL;AACF,iBAAA;gBACDC,kBAAoB,EAAA;oBAClBP,OAAS,EAAA,mCAAA;oBACTb,IAAM,EAAA,cAAA;oBACNc,OAAS,EAAA;wBACPC,IAAM,EAAA;4BACJjB,IAAM,EAAA,sBAAA;4BACNkB,KAAO,EAAA;AACR,yBAAA;wBACDC,cAAgB,EAAA,EAAA;wBAChBC,MAAQ,EAAA,sBAAA;AACRC,wBAAAA,OAAAA,EAAS,CAAC;;;;;;cAMN;AACL;AACF;AACP,aAAA;YAEI,MAAM7B,WAAAA,CAAYmB,GAAG,CAAC;gBAAEL,GAAK,EAAA,OAAA;AAASM,gBAAAA;AAAK,aAAA,CAAA;AAC5C;AACH,KAAA;AAEA,IAAA,MAAMW,sBAAsB,OAAO/B,WAAAA,GAAAA;AACjC,QAAA,IAAI,CAAE,MAAMA,WAAYa,CAAAA,GAAG,CAAC;YAAEC,GAAK,EAAA;SAAgB,CAAA,EAAA;AACjD,YAAA,MAAMM,KAAQ,GAAA;gBACZY,YAAc,EAAA,IAAA;gBACdC,cAAgB,EAAA,IAAA;gBAChBH,kBAAoB,EAAA,KAAA;gBACpBI,oBAAsB,EAAA,IAAA;gBACtBC,8BAAgC,EAAA,IAAA;gBAChCC,YAAc,EAAA;AACpB,aAAA;YAEI,MAAMpC,WAAAA,CAAYmB,GAAG,CAAC;gBAAEL,GAAK,EAAA,UAAA;AAAYM,gBAAAA;AAAK,aAAA,CAAA;AAC/C;AACH,KAAA;AAEAiB,IAAAA,SAAAA,GAAiB,OAAO,EAAExC,MAAAA,EAAAA,OAAM,EAAE,GAAA;QAChC,MAAMG,WAAAA,GAAcH,OAAOyC,CAAAA,KAAK,CAAC;YAAEC,IAAM,EAAA,QAAA;YAAU/B,IAAM,EAAA;AAAmB,SAAA,CAAA;AAE5E,QAAA,MAAMT,SAAUC,CAAAA,WAAAA,CAAAA;AAChB,QAAA,MAAMqB,UAAWrB,CAAAA,WAAAA,CAAAA;AACjB,QAAA,MAAM+B,mBAAoB/B,CAAAA,WAAAA,CAAAA;QAE1B,MAAMH,OAAAA,CACH2C,OAAO,CAAC,mBAAA,CAAA,CACRC,cAAc,CAACC,YAAY,CAACvD,uBAAAA,CAAwBwD,OAAO,CAAA;QAE9D,MAAM1D,UAAAA,CAAW,qBAAqB2D,UAAU,EAAA;;AAGhD,QAAA,MAAMC,QAAWhD,GAAAA,OAAAA,CAAOiD,MAAM,CAACjC,GAAG,CAAC,2BAAA,CAAA;AACnC,QAAA,MAAMf,cAAiBH,GAAAA,iBAAAA,EAAAA;AAEvB,QAAA,IAAIG,cAAgB,EAAA;YAClBA,cAAeiD,CAAAA,YAAY,CAAC,mBAAqB,EAAA;AAC/CC,gBAAAA,SAAAA,EAAWH,SAASG,SAAS,IAAInD,QAAOiD,MAAM,CAACjC,GAAG,CAAC,mBAAA,CAAA;gBACnDoC,mBAAqBJ,EAAAA,QAAAA,CAASK,QAAQ,EAAED,mBAAuB5D,IAAAA,6BAAAA;gBAC/D8D,uBACEN,EAAAA,QAAAA,CAASK,QAAQ,EAAEC,uBAA2B7D,IAAAA,kCAAAA;gBAChD8D,wBACEP,EAAAA,QAAAA,CAASK,QAAQ,EAAEE,wBAA4B7D,IAAAA,mCAAAA;gBACjD8D,kBAAoBR,EAAAA,QAAAA,CAASK,QAAQ,EAAEG,kBAAsB7D,IAAAA,4BAAAA;gBAC7D8D,mBAAqBT,EAAAA,QAAAA,CAASK,QAAQ,EAAEI,mBAAuB7D,IAAAA,6BAAAA;gBAC/D8D,SAAWV,EAAAA,QAAAA,CAASW,GAAG,EAAED,SAAAA;gBACzBE,UAAYZ,EAAAA,QAAAA,CAASW,GAAG,IAAI;AAClC,aAAA,CAAA;AACG;AAED,QAAA,IAAI,CAAC3D,OAAOiD,CAAAA,MAAM,CAACjC,GAAG,CAAC,qCAAwC,CAAA,EAAA;AAC7D,YAAA,IAAI6C,OAAQC,CAAAA,GAAG,CAACC,QAAQ,KAAK,aAAe,EAAA;gBAC1C,MAAM,IAAIC,MACR,CAAC;yQACgQ,CAAC,CAAA;AAErQ;AAED,YAAA,MAAMb,YAAYnE,MAAOiF,CAAAA,WAAW,CAAC,EAAA,CAAA,CAAIC,QAAQ,CAAC,QAAA,CAAA;AAElDlE,YAAAA,OAAAA,CAAOiD,MAAM,CAAC3B,GAAG,CAAC,qCAAuC6B,EAAAA,SAAAA,CAAAA;AAEzD,YAAA,IAAI,CAACU,OAAAA,CAAQC,GAAG,CAACK,UAAU,EAAE;AAC3B,gBAAA,MAAMC,OAAUP,GAAAA,OAAAA,CAAQC,GAAG,CAACO,QAAQ,IAAI,MAAA;gBACxCrE,OAAOsE,CAAAA,EAAE,CAACC,UAAU,CAACH,OAAAA,EAAS,CAAC,WAAW,EAAEjB,SAAU,CAAA,EAAE,CAAC,CAAA;gBACzDnD,OAAOwE,CAAAA,GAAG,CAACC,IAAI,CACb,CAAC,qFAAqF,EAAEL,OAAQ,CAAA,2BAA2B,CAAC,CAAA;AAE/H;AACF;AACH,KAAA;;;;;;"}

package/dist/server/bootstrap/users-permissions-actions.js ADDED Viewed

@@ -0,0 +1,98 @@
+'use strict';
+var usersPermissionsActions;
+var hasRequiredUsersPermissionsActions;
+function requireUsersPermissionsActions() {
+    if (hasRequiredUsersPermissionsActions) return usersPermissionsActions;
+    hasRequiredUsersPermissionsActions = 1;
+    usersPermissionsActions = {
+        actions: [
+            {
+                // Roles
+                section: 'plugins',
+                displayName: 'Create',
+                uid: 'roles.create',
+                subCategory: 'roles',
+                pluginName: 'users-permissions'
+            },
+            {
+                section: 'plugins',
+                displayName: 'Read',
+                uid: 'roles.read',
+                subCategory: 'roles',
+                pluginName: 'users-permissions',
+                aliases: [
+                    {
+                        actionId: 'plugin::content-manager.explorer.read',
+                        subjects: [
+                            'plugin::users-permissions.role'
+                        ]
+                    }
+                ]
+            },
+            {
+                section: 'plugins',
+                displayName: 'Update',
+                uid: 'roles.update',
+                subCategory: 'roles',
+                pluginName: 'users-permissions'
+            },
+            {
+                section: 'plugins',
+                displayName: 'Delete',
+                uid: 'roles.delete',
+                subCategory: 'roles',
+                pluginName: 'users-permissions'
+            },
+            {
+                // providers
+                section: 'plugins',
+                displayName: 'Read',
+                uid: 'providers.read',
+                subCategory: 'providers',
+                pluginName: 'users-permissions'
+            },
+            {
+                section: 'plugins',
+                displayName: 'Edit',
+                uid: 'providers.update',
+                subCategory: 'providers',
+                pluginName: 'users-permissions'
+            },
+            {
+                // emailTemplates
+                section: 'plugins',
+                displayName: 'Read',
+                uid: 'email-templates.read',
+                subCategory: 'emailTemplates',
+                pluginName: 'users-permissions'
+            },
+            {
+                section: 'plugins',
+                displayName: 'Edit',
+                uid: 'email-templates.update',
+                subCategory: 'emailTemplates',
+                pluginName: 'users-permissions'
+            },
+            {
+                // advancedSettings
+                section: 'plugins',
+                displayName: 'Read',
+                uid: 'advanced-settings.read',
+                subCategory: 'advancedSettings',
+                pluginName: 'users-permissions'
+            },
+            {
+                section: 'plugins',
+                displayName: 'Edit',
+                uid: 'advanced-settings.update',
+                subCategory: 'advancedSettings',
+                pluginName: 'users-permissions'
+            }
+        ]
+    };
+    return usersPermissionsActions;
+}
+exports.__require = requireUsersPermissionsActions;
+//# sourceMappingURL=users-permissions-actions.js.map

package/dist/server/bootstrap/users-permissions-actions.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"users-permissions-actions.js","sources":["../../../server/bootstrap/users-permissions-actions.js"],"sourcesContent":["'use strict';\n\nmodule.exports = {\n actions: [\n {\n // Roles\n section: 'plugins',\n displayName: 'Create',\n uid: 'roles.create',\n subCategory: 'roles',\n pluginName: 'users-permissions',\n },\n {\n section: 'plugins',\n displayName: 'Read',\n uid: 'roles.read',\n subCategory: 'roles',\n pluginName: 'users-permissions',\n aliases: [\n {\n actionId: 'plugin::content-manager.explorer.read',\n subjects: ['plugin::users-permissions.role'],\n },\n ],\n },\n {\n section: 'plugins',\n displayName: 'Update',\n uid: 'roles.update',\n subCategory: 'roles',\n pluginName: 'users-permissions',\n },\n {\n section: 'plugins',\n displayName: 'Delete',\n uid: 'roles.delete',\n subCategory: 'roles',\n pluginName: 'users-permissions',\n },\n {\n // providers\n section: 'plugins',\n displayName: 'Read',\n uid: 'providers.read',\n subCategory: 'providers',\n pluginName: 'users-permissions',\n },\n {\n section: 'plugins',\n displayName: 'Edit',\n uid: 'providers.update',\n subCategory: 'providers',\n pluginName: 'users-permissions',\n },\n {\n // emailTemplates\n section: 'plugins',\n displayName: 'Read',\n uid: 'email-templates.read',\n subCategory: 'emailTemplates',\n pluginName: 'users-permissions',\n },\n {\n section: 'plugins',\n displayName: 'Edit',\n uid: 'email-templates.update',\n subCategory: 'emailTemplates',\n pluginName: 'users-permissions',\n },\n {\n // advancedSettings\n section: 'plugins',\n displayName: 'Read',\n uid: 'advanced-settings.read',\n subCategory: 'advancedSettings',\n pluginName: 'users-permissions',\n },\n {\n section: 'plugins',\n displayName: 'Edit',\n uid: 'advanced-settings.update',\n subCategory: 'advancedSettings',\n pluginName: 'users-permissions',\n },\n ],\n};\n"],"names":["usersPermissionsActions","actions","section","displayName","uid","subCategory","pluginName","aliases","actionId","subjects"],"mappings":";;;;;;;IAEAA,uBAAiB,GAAA;QACfC,OAAS,EAAA;AACP,YAAA;;gBAEEC,OAAS,EAAA,SAAA;gBACTC,WAAa,EAAA,QAAA;gBACbC,GAAK,EAAA,cAAA;gBACLC,WAAa,EAAA,OAAA;gBACbC,UAAY,EAAA;AACb,aAAA;AACD,YAAA;gBACEJ,OAAS,EAAA,SAAA;gBACTC,WAAa,EAAA,MAAA;gBACbC,GAAK,EAAA,YAAA;gBACLC,WAAa,EAAA,OAAA;gBACbC,UAAY,EAAA,mBAAA;gBACZC,OAAS,EAAA;AACP,oBAAA;wBACEC,QAAU,EAAA,uCAAA;wBACVC,QAAU,EAAA;AAAC,4BAAA;AAAiC;AAC7C;AACF;AACF,aAAA;AACD,YAAA;gBACEP,OAAS,EAAA,SAAA;gBACTC,WAAa,EAAA,QAAA;gBACbC,GAAK,EAAA,cAAA;gBACLC,WAAa,EAAA,OAAA;gBACbC,UAAY,EAAA;AACb,aAAA;AACD,YAAA;gBACEJ,OAAS,EAAA,SAAA;gBACTC,WAAa,EAAA,QAAA;gBACbC,GAAK,EAAA,cAAA;gBACLC,WAAa,EAAA,OAAA;gBACbC,UAAY,EAAA;AACb,aAAA;AACD,YAAA;;gBAEEJ,OAAS,EAAA,SAAA;gBACTC,WAAa,EAAA,MAAA;gBACbC,GAAK,EAAA,gBAAA;gBACLC,WAAa,EAAA,WAAA;gBACbC,UAAY,EAAA;AACb,aAAA;AACD,YAAA;gBACEJ,OAAS,EAAA,SAAA;gBACTC,WAAa,EAAA,MAAA;gBACbC,GAAK,EAAA,kBAAA;gBACLC,WAAa,EAAA,WAAA;gBACbC,UAAY,EAAA;AACb,aAAA;AACD,YAAA;;gBAEEJ,OAAS,EAAA,SAAA;gBACTC,WAAa,EAAA,MAAA;gBACbC,GAAK,EAAA,sBAAA;gBACLC,WAAa,EAAA,gBAAA;gBACbC,UAAY,EAAA;AACb,aAAA;AACD,YAAA;gBACEJ,OAAS,EAAA,SAAA;gBACTC,WAAa,EAAA,MAAA;gBACbC,GAAK,EAAA,wBAAA;gBACLC,WAAa,EAAA,gBAAA;gBACbC,UAAY,EAAA;AACb,aAAA;AACD,YAAA;;gBAEEJ,OAAS,EAAA,SAAA;gBACTC,WAAa,EAAA,MAAA;gBACbC,GAAK,EAAA,wBAAA;gBACLC,WAAa,EAAA,kBAAA;gBACbC,UAAY,EAAA;AACb,aAAA;AACD,YAAA;gBACEJ,OAAS,EAAA,SAAA;gBACTC,WAAa,EAAA,MAAA;gBACbC,GAAK,EAAA,0BAAA;gBACLC,WAAa,EAAA,kBAAA;gBACbC,UAAY,EAAA;AACb;AACF;AACH,KAAA;;;;;;"}

package/dist/server/bootstrap/users-permissions-actions.mjs ADDED Viewed

@@ -0,0 +1,96 @@
+var usersPermissionsActions;
+var hasRequiredUsersPermissionsActions;
+function requireUsersPermissionsActions() {
+    if (hasRequiredUsersPermissionsActions) return usersPermissionsActions;
+    hasRequiredUsersPermissionsActions = 1;
+    usersPermissionsActions = {
+        actions: [
+            {
+                // Roles
+                section: 'plugins',
+                displayName: 'Create',
+                uid: 'roles.create',
+                subCategory: 'roles',
+                pluginName: 'users-permissions'
+            },
+            {
+                section: 'plugins',
+                displayName: 'Read',
+                uid: 'roles.read',
+                subCategory: 'roles',
+                pluginName: 'users-permissions',
+                aliases: [
+                    {
+                        actionId: 'plugin::content-manager.explorer.read',
+                        subjects: [
+                            'plugin::users-permissions.role'
+                        ]
+                    }
+                ]
+            },
+            {
+                section: 'plugins',
+                displayName: 'Update',
+                uid: 'roles.update',
+                subCategory: 'roles',
+                pluginName: 'users-permissions'
+            },
+            {
+                section: 'plugins',
+                displayName: 'Delete',
+                uid: 'roles.delete',
+                subCategory: 'roles',
+                pluginName: 'users-permissions'
+            },
+            {
+                // providers
+                section: 'plugins',
+                displayName: 'Read',
+                uid: 'providers.read',
+                subCategory: 'providers',
+                pluginName: 'users-permissions'
+            },
+            {
+                section: 'plugins',
+                displayName: 'Edit',
+                uid: 'providers.update',
+                subCategory: 'providers',
+                pluginName: 'users-permissions'
+            },
+            {
+                // emailTemplates
+                section: 'plugins',
+                displayName: 'Read',
+                uid: 'email-templates.read',
+                subCategory: 'emailTemplates',
+                pluginName: 'users-permissions'
+            },
+            {
+                section: 'plugins',
+                displayName: 'Edit',
+                uid: 'email-templates.update',
+                subCategory: 'emailTemplates',
+                pluginName: 'users-permissions'
+            },
+            {
+                // advancedSettings
+                section: 'plugins',
+                displayName: 'Read',
+                uid: 'advanced-settings.read',
+                subCategory: 'advancedSettings',
+                pluginName: 'users-permissions'
+            },
+            {
+                section: 'plugins',
+                displayName: 'Edit',
+                uid: 'advanced-settings.update',
+                subCategory: 'advancedSettings',
+                pluginName: 'users-permissions'
+            }
+        ]
+    };
+    return usersPermissionsActions;
+}
+export { requireUsersPermissionsActions as __require };
+//# sourceMappingURL=users-permissions-actions.mjs.map

package/dist/server/bootstrap/users-permissions-actions.mjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"users-permissions-actions.mjs","sources":["../../../server/bootstrap/users-permissions-actions.js"],"sourcesContent":["'use strict';\n\nmodule.exports = {\n actions: [\n {\n // Roles\n section: 'plugins',\n displayName: 'Create',\n uid: 'roles.create',\n subCategory: 'roles',\n pluginName: 'users-permissions',\n },\n {\n section: 'plugins',\n displayName: 'Read',\n uid: 'roles.read',\n subCategory: 'roles',\n pluginName: 'users-permissions',\n aliases: [\n {\n actionId: 'plugin::content-manager.explorer.read',\n subjects: ['plugin::users-permissions.role'],\n },\n ],\n },\n {\n section: 'plugins',\n displayName: 'Update',\n uid: 'roles.update',\n subCategory: 'roles',\n pluginName: 'users-permissions',\n },\n {\n section: 'plugins',\n displayName: 'Delete',\n uid: 'roles.delete',\n subCategory: 'roles',\n pluginName: 'users-permissions',\n },\n {\n // providers\n section: 'plugins',\n displayName: 'Read',\n uid: 'providers.read',\n subCategory: 'providers',\n pluginName: 'users-permissions',\n },\n {\n section: 'plugins',\n displayName: 'Edit',\n uid: 'providers.update',\n subCategory: 'providers',\n pluginName: 'users-permissions',\n },\n {\n // emailTemplates\n section: 'plugins',\n displayName: 'Read',\n uid: 'email-templates.read',\n subCategory: 'emailTemplates',\n pluginName: 'users-permissions',\n },\n {\n section: 'plugins',\n displayName: 'Edit',\n uid: 'email-templates.update',\n subCategory: 'emailTemplates',\n pluginName: 'users-permissions',\n },\n {\n // advancedSettings\n section: 'plugins',\n displayName: 'Read',\n uid: 'advanced-settings.read',\n subCategory: 'advancedSettings',\n pluginName: 'users-permissions',\n },\n {\n section: 'plugins',\n displayName: 'Edit',\n uid: 'advanced-settings.update',\n subCategory: 'advancedSettings',\n pluginName: 'users-permissions',\n },\n ],\n};\n"],"names":["usersPermissionsActions","actions","section","displayName","uid","subCategory","pluginName","aliases","actionId","subjects"],"mappings":";;;;;IAEAA,uBAAiB,GAAA;QACfC,OAAS,EAAA;AACP,YAAA;;gBAEEC,OAAS,EAAA,SAAA;gBACTC,WAAa,EAAA,QAAA;gBACbC,GAAK,EAAA,cAAA;gBACLC,WAAa,EAAA,OAAA;gBACbC,UAAY,EAAA;AACb,aAAA;AACD,YAAA;gBACEJ,OAAS,EAAA,SAAA;gBACTC,WAAa,EAAA,MAAA;gBACbC,GAAK,EAAA,YAAA;gBACLC,WAAa,EAAA,OAAA;gBACbC,UAAY,EAAA,mBAAA;gBACZC,OAAS,EAAA;AACP,oBAAA;wBACEC,QAAU,EAAA,uCAAA;wBACVC,QAAU,EAAA;AAAC,4BAAA;AAAiC;AAC7C;AACF;AACF,aAAA;AACD,YAAA;gBACEP,OAAS,EAAA,SAAA;gBACTC,WAAa,EAAA,QAAA;gBACbC,GAAK,EAAA,cAAA;gBACLC,WAAa,EAAA,OAAA;gBACbC,UAAY,EAAA;AACb,aAAA;AACD,YAAA;gBACEJ,OAAS,EAAA,SAAA;gBACTC,WAAa,EAAA,QAAA;gBACbC,GAAK,EAAA,cAAA;gBACLC,WAAa,EAAA,OAAA;gBACbC,UAAY,EAAA;AACb,aAAA;AACD,YAAA;;gBAEEJ,OAAS,EAAA,SAAA;gBACTC,WAAa,EAAA,MAAA;gBACbC,GAAK,EAAA,gBAAA;gBACLC,WAAa,EAAA,WAAA;gBACbC,UAAY,EAAA;AACb,aAAA;AACD,YAAA;gBACEJ,OAAS,EAAA,SAAA;gBACTC,WAAa,EAAA,MAAA;gBACbC,GAAK,EAAA,kBAAA;gBACLC,WAAa,EAAA,WAAA;gBACbC,UAAY,EAAA;AACb,aAAA;AACD,YAAA;;gBAEEJ,OAAS,EAAA,SAAA;gBACTC,WAAa,EAAA,MAAA;gBACbC,GAAK,EAAA,sBAAA;gBACLC,WAAa,EAAA,gBAAA;gBACbC,UAAY,EAAA;AACb,aAAA;AACD,YAAA;gBACEJ,OAAS,EAAA,SAAA;gBACTC,WAAa,EAAA,MAAA;gBACbC,GAAK,EAAA,wBAAA;gBACLC,WAAa,EAAA,gBAAA;gBACbC,UAAY,EAAA;AACb,aAAA;AACD,YAAA;;gBAEEJ,OAAS,EAAA,SAAA;gBACTC,WAAa,EAAA,MAAA;gBACbC,GAAK,EAAA,wBAAA;gBACLC,WAAa,EAAA,kBAAA;gBACbC,UAAY,EAAA;AACb,aAAA;AACD,YAAA;gBACEJ,OAAS,EAAA,SAAA;gBACTC,WAAa,EAAA,MAAA;gBACbC,GAAK,EAAA,0BAAA;gBACLC,WAAa,EAAA,kBAAA;gBACbC,UAAY,EAAA;AACb;AACF;AACH,KAAA;;;;;;"}

package/dist/server/config.js ADDED Viewed

@@ -0,0 +1,70 @@
+'use strict';
+var constants = require('./services/constants.js');
+var config;
+var hasRequiredConfig;
+function requireConfig() {
+    if (hasRequiredConfig) return config;
+    hasRequiredConfig = 1;
+    const { DEFAULT_ACCESS_TOKEN_LIFESPAN, DEFAULT_MAX_REFRESH_TOKEN_LIFESPAN, DEFAULT_IDLE_REFRESH_TOKEN_LIFESPAN, DEFAULT_MAX_SESSION_LIFESPAN, DEFAULT_IDLE_SESSION_LIFESPAN } = constants.__require();
+    config = {
+        default: ({ env })=>({
+                jwtSecret: env('JWT_SECRET'),
+                jwt: {
+                    expiresIn: '30d'
+                },
+                /**
+	     * JWT management mode for the Content API authentication
+	     * - "legacy-support": use plugin JWTs (backward compatible)
+	     * - "refresh": use SessionManager (access/refresh tokens)
+	     */ jwtManagement: 'legacy-support',
+                sessions: {
+                    accessTokenLifespan: DEFAULT_ACCESS_TOKEN_LIFESPAN,
+                    maxRefreshTokenLifespan: DEFAULT_MAX_REFRESH_TOKEN_LIFESPAN,
+                    idleRefreshTokenLifespan: DEFAULT_IDLE_REFRESH_TOKEN_LIFESPAN,
+                    maxSessionLifespan: DEFAULT_MAX_SESSION_LIFESPAN,
+                    idleSessionLifespan: DEFAULT_IDLE_SESSION_LIFESPAN,
+                    httpOnly: false
+                },
+                ratelimit: {
+                    interval: 60000,
+                    max: 10
+                },
+                layout: {
+                    user: {
+                        actions: {
+                            create: 'contentManagerUser.create',
+                            update: 'contentManagerUser.update'
+                        }
+                    }
+                },
+                callback: {
+                    validate (callback, provider) {
+                        let uCallback;
+                        let uProviderCallback;
+                        try {
+                            uCallback = new URL(callback);
+                            uProviderCallback = new URL(provider.callback);
+                        } catch  {
+                            throw new Error('The callback is not a valid URL');
+                        }
+                        // Make sure the different origin matches
+                        if (uCallback.origin !== uProviderCallback.origin) {
+                            throw new Error(`Forbidden callback provided: origins don't match. Please verify your config.`);
+                        }
+                        // Make sure the different pathname matches
+                        if (uCallback.pathname !== uProviderCallback.pathname) {
+                            throw new Error(`Forbidden callback provided: pathname don't match. Please verify your config.`);
+                        }
+                    // NOTE: We're not checking the search parameters on purpose to allow passing different states
+                    }
+                }
+            }),
+        validator () {}
+    };
+    return config;
+}
+exports.__require = requireConfig;
+//# sourceMappingURL=config.js.map

package/dist/server/config.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"config.js","sources":["../../server/config.js"],"sourcesContent":["'use strict';\n\nconst {\n DEFAULT_ACCESS_TOKEN_LIFESPAN,\n DEFAULT_MAX_REFRESH_TOKEN_LIFESPAN,\n DEFAULT_IDLE_REFRESH_TOKEN_LIFESPAN,\n DEFAULT_MAX_SESSION_LIFESPAN,\n DEFAULT_IDLE_SESSION_LIFESPAN,\n} = require('./services/constants');\n\nmodule.exports = {\n default: ({ env }) => ({\n jwtSecret: env('JWT_SECRET'),\n jwt: {\n expiresIn: '30d',\n },\n /**\n * JWT management mode for the Content API authentication\n * - \"legacy-support\": use plugin JWTs (backward compatible)\n * - \"refresh\": use SessionManager (access/refresh tokens)\n */\n jwtManagement: 'legacy-support',\n sessions: {\n accessTokenLifespan: DEFAULT_ACCESS_TOKEN_LIFESPAN,\n maxRefreshTokenLifespan: DEFAULT_MAX_REFRESH_TOKEN_LIFESPAN,\n idleRefreshTokenLifespan: DEFAULT_IDLE_REFRESH_TOKEN_LIFESPAN,\n maxSessionLifespan: DEFAULT_MAX_SESSION_LIFESPAN,\n idleSessionLifespan: DEFAULT_IDLE_SESSION_LIFESPAN,\n httpOnly: false,\n },\n ratelimit: {\n interval: 60000,\n max: 10,\n },\n layout: {\n user: {\n actions: {\n create: 'contentManagerUser.create', // Use the User plugin's controller.\n update: 'contentManagerUser.update',\n },\n },\n },\n callback: {\n validate(callback, provider) {\n let uCallback;\n let uProviderCallback;\n\n try {\n uCallback = new URL(callback);\n uProviderCallback = new URL(provider.callback);\n } catch {\n throw new Error('The callback is not a valid URL');\n }\n\n // Make sure the different origin matches\n if (uCallback.origin !== uProviderCallback.origin) {\n throw new Error(\n `Forbidden callback provided: origins don't match. Please verify your config.`\n );\n }\n\n // Make sure the different pathname matches\n if (uCallback.pathname !== uProviderCallback.pathname) {\n throw new Error(\n `Forbidden callback provided: pathname don't match. Please verify your config.`\n );\n }\n\n // NOTE: We're not checking the search parameters on purpose to allow passing different states\n },\n },\n }),\n validator() {},\n};\n"],"names":["DEFAULT_ACCESS_TOKEN_LIFESPAN","DEFAULT_MAX_REFRESH_TOKEN_LIFESPAN","DEFAULT_IDLE_REFRESH_TOKEN_LIFESPAN","DEFAULT_MAX_SESSION_LIFESPAN","DEFAULT_IDLE_SESSION_LIFESPAN","require$$0","config","default","env","jwtSecret","jwt","expiresIn","jwtManagement","sessions","accessTokenLifespan","maxRefreshTokenLifespan","idleRefreshTokenLifespan","maxSessionLifespan","idleSessionLifespan","httpOnly","ratelimit","interval","max","layout","user","actions","create","update","callback","validate","provider","uCallback","uProviderCallback","URL","Error","origin","pathname","validator"],"mappings":";;;;;;;;;IAEA,MAAM,EACJA,6BAA6B,EAC7BC,kCAAkC,EAClCC,mCAAmC,EACnCC,4BAA4B,EAC5BC,6BAA6B,EAC9B,GAAGC,mBAAAA,EAAAA;IAEJC,MAAiB,GAAA;AACfC,QAAAA,OAAAA,EAAS,CAAC,EAAEC,GAAG,EAAE,IAAM;AACrBC,gBAAAA,SAAAA,EAAWD,GAAI,CAAA,YAAA,CAAA;gBACfE,GAAK,EAAA;oBACHC,SAAW,EAAA;AACZ,iBAAA;AACL;;;;AAIA,SACIC,aAAe,EAAA,gBAAA;gBACfC,QAAU,EAAA;oBACRC,mBAAqBd,EAAAA,6BAAAA;oBACrBe,uBAAyBd,EAAAA,kCAAAA;oBACzBe,wBAA0Bd,EAAAA,mCAAAA;oBAC1Be,kBAAoBd,EAAAA,4BAAAA;oBACpBe,mBAAqBd,EAAAA,6BAAAA;oBACrBe,QAAU,EAAA;AACX,iBAAA;gBACDC,SAAW,EAAA;oBACTC,QAAU,EAAA,KAAA;oBACVC,GAAK,EAAA;AACN,iBAAA;gBACDC,MAAQ,EAAA;oBACNC,IAAM,EAAA;wBACJC,OAAS,EAAA;4BACPC,MAAQ,EAAA,2BAAA;4BACRC,MAAQ,EAAA;AACT;AACF;AACF,iBAAA;gBACDC,QAAU,EAAA;oBACRC,QAASD,CAAAA,CAAAA,QAAQ,EAAEE,QAAQ,EAAA;wBACzB,IAAIC,SAAAA;wBACJ,IAAIC,iBAAAA;wBAEJ,IAAI;AACFD,4BAAAA,SAAAA,GAAY,IAAIE,GAAIL,CAAAA,QAAAA,CAAAA;4BACpBI,iBAAoB,GAAA,IAAIC,GAAIH,CAAAA,QAAAA,CAASF,QAAQ,CAAA;AACvD,yBAAA,CAAU,OAAM;AACN,4BAAA,MAAM,IAAIM,KAAM,CAAA,iCAAA,CAAA;AACjB;;AAGD,wBAAA,IAAIH,SAAUI,CAAAA,MAAM,KAAKH,iBAAAA,CAAkBG,MAAM,EAAE;AACjD,4BAAA,MAAM,IAAID,KAAAA,CACR,CAAC,4EAA4E,CAAC,CAAA;AAEjF;;AAGD,wBAAA,IAAIH,SAAUK,CAAAA,QAAQ,KAAKJ,iBAAAA,CAAkBI,QAAQ,EAAE;AACrD,4BAAA,MAAM,IAAIF,KAAAA,CACR,CAAC,6EAA6E,CAAC,CAAA;AAElF;;AAGF;AACF;aACL,CAAA;QACEG,SAAc,CAAA,GAAA;AAChB,KAAA;;;;;;"}

package/dist/server/config.mjs ADDED Viewed

@@ -0,0 +1,68 @@
+import { __require as requireConstants } from './services/constants.mjs';
+var config;
+var hasRequiredConfig;
+function requireConfig() {
+    if (hasRequiredConfig) return config;
+    hasRequiredConfig = 1;
+    const { DEFAULT_ACCESS_TOKEN_LIFESPAN, DEFAULT_MAX_REFRESH_TOKEN_LIFESPAN, DEFAULT_IDLE_REFRESH_TOKEN_LIFESPAN, DEFAULT_MAX_SESSION_LIFESPAN, DEFAULT_IDLE_SESSION_LIFESPAN } = requireConstants();
+    config = {
+        default: ({ env })=>({
+                jwtSecret: env('JWT_SECRET'),
+                jwt: {
+                    expiresIn: '30d'
+                },
+                /**
+	     * JWT management mode for the Content API authentication
+	     * - "legacy-support": use plugin JWTs (backward compatible)
+	     * - "refresh": use SessionManager (access/refresh tokens)
+	     */ jwtManagement: 'legacy-support',
+                sessions: {
+                    accessTokenLifespan: DEFAULT_ACCESS_TOKEN_LIFESPAN,
+                    maxRefreshTokenLifespan: DEFAULT_MAX_REFRESH_TOKEN_LIFESPAN,
+                    idleRefreshTokenLifespan: DEFAULT_IDLE_REFRESH_TOKEN_LIFESPAN,
+                    maxSessionLifespan: DEFAULT_MAX_SESSION_LIFESPAN,
+                    idleSessionLifespan: DEFAULT_IDLE_SESSION_LIFESPAN,
+                    httpOnly: false
+                },
+                ratelimit: {
+                    interval: 60000,
+                    max: 10
+                },
+                layout: {
+                    user: {
+                        actions: {
+                            create: 'contentManagerUser.create',
+                            update: 'contentManagerUser.update'
+                        }
+                    }
+                },
+                callback: {
+                    validate (callback, provider) {
+                        let uCallback;
+                        let uProviderCallback;
+                        try {
+                            uCallback = new URL(callback);
+                            uProviderCallback = new URL(provider.callback);
+                        } catch  {
+                            throw new Error('The callback is not a valid URL');
+                        }
+                        // Make sure the different origin matches
+                        if (uCallback.origin !== uProviderCallback.origin) {
+                            throw new Error(`Forbidden callback provided: origins don't match. Please verify your config.`);
+                        }
+                        // Make sure the different pathname matches
+                        if (uCallback.pathname !== uProviderCallback.pathname) {
+                            throw new Error(`Forbidden callback provided: pathname don't match. Please verify your config.`);
+                        }
+                    // NOTE: We're not checking the search parameters on purpose to allow passing different states
+                    }
+                }
+            }),
+        validator () {}
+    };
+    return config;
+}
+export { requireConfig as __require };
+//# sourceMappingURL=config.mjs.map

package/dist/server/config.mjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"config.mjs","sources":["../../server/config.js"],"sourcesContent":["'use strict';\n\nconst {\n DEFAULT_ACCESS_TOKEN_LIFESPAN,\n DEFAULT_MAX_REFRESH_TOKEN_LIFESPAN,\n DEFAULT_IDLE_REFRESH_TOKEN_LIFESPAN,\n DEFAULT_MAX_SESSION_LIFESPAN,\n DEFAULT_IDLE_SESSION_LIFESPAN,\n} = require('./services/constants');\n\nmodule.exports = {\n default: ({ env }) => ({\n jwtSecret: env('JWT_SECRET'),\n jwt: {\n expiresIn: '30d',\n },\n /**\n * JWT management mode for the Content API authentication\n * - \"legacy-support\": use plugin JWTs (backward compatible)\n * - \"refresh\": use SessionManager (access/refresh tokens)\n */\n jwtManagement: 'legacy-support',\n sessions: {\n accessTokenLifespan: DEFAULT_ACCESS_TOKEN_LIFESPAN,\n maxRefreshTokenLifespan: DEFAULT_MAX_REFRESH_TOKEN_LIFESPAN,\n idleRefreshTokenLifespan: DEFAULT_IDLE_REFRESH_TOKEN_LIFESPAN,\n maxSessionLifespan: DEFAULT_MAX_SESSION_LIFESPAN,\n idleSessionLifespan: DEFAULT_IDLE_SESSION_LIFESPAN,\n httpOnly: false,\n },\n ratelimit: {\n interval: 60000,\n max: 10,\n },\n layout: {\n user: {\n actions: {\n create: 'contentManagerUser.create', // Use the User plugin's controller.\n update: 'contentManagerUser.update',\n },\n },\n },\n callback: {\n validate(callback, provider) {\n let uCallback;\n let uProviderCallback;\n\n try {\n uCallback = new URL(callback);\n uProviderCallback = new URL(provider.callback);\n } catch {\n throw new Error('The callback is not a valid URL');\n }\n\n // Make sure the different origin matches\n if (uCallback.origin !== uProviderCallback.origin) {\n throw new Error(\n `Forbidden callback provided: origins don't match. Please verify your config.`\n );\n }\n\n // Make sure the different pathname matches\n if (uCallback.pathname !== uProviderCallback.pathname) {\n throw new Error(\n `Forbidden callback provided: pathname don't match. Please verify your config.`\n );\n }\n\n // NOTE: We're not checking the search parameters on purpose to allow passing different states\n },\n },\n }),\n validator() {},\n};\n"],"names":["DEFAULT_ACCESS_TOKEN_LIFESPAN","DEFAULT_MAX_REFRESH_TOKEN_LIFESPAN","DEFAULT_IDLE_REFRESH_TOKEN_LIFESPAN","DEFAULT_MAX_SESSION_LIFESPAN","DEFAULT_IDLE_SESSION_LIFESPAN","require$$0","config","default","env","jwtSecret","jwt","expiresIn","jwtManagement","sessions","accessTokenLifespan","maxRefreshTokenLifespan","idleRefreshTokenLifespan","maxSessionLifespan","idleSessionLifespan","httpOnly","ratelimit","interval","max","layout","user","actions","create","update","callback","validate","provider","uCallback","uProviderCallback","URL","Error","origin","pathname","validator"],"mappings":";;;;;;;IAEA,MAAM,EACJA,6BAA6B,EAC7BC,kCAAkC,EAClCC,mCAAmC,EACnCC,4BAA4B,EAC5BC,6BAA6B,EAC9B,GAAGC,gBAAAA,EAAAA;IAEJC,MAAiB,GAAA;AACfC,QAAAA,OAAAA,EAAS,CAAC,EAAEC,GAAG,EAAE,IAAM;AACrBC,gBAAAA,SAAAA,EAAWD,GAAI,CAAA,YAAA,CAAA;gBACfE,GAAK,EAAA;oBACHC,SAAW,EAAA;AACZ,iBAAA;AACL;;;;AAIA,SACIC,aAAe,EAAA,gBAAA;gBACfC,QAAU,EAAA;oBACRC,mBAAqBd,EAAAA,6BAAAA;oBACrBe,uBAAyBd,EAAAA,kCAAAA;oBACzBe,wBAA0Bd,EAAAA,mCAAAA;oBAC1Be,kBAAoBd,EAAAA,4BAAAA;oBACpBe,mBAAqBd,EAAAA,6BAAAA;oBACrBe,QAAU,EAAA;AACX,iBAAA;gBACDC,SAAW,EAAA;oBACTC,QAAU,EAAA,KAAA;oBACVC,GAAK,EAAA;AACN,iBAAA;gBACDC,MAAQ,EAAA;oBACNC,IAAM,EAAA;wBACJC,OAAS,EAAA;4BACPC,MAAQ,EAAA,2BAAA;4BACRC,MAAQ,EAAA;AACT;AACF;AACF,iBAAA;gBACDC,QAAU,EAAA;oBACRC,QAASD,CAAAA,CAAAA,QAAQ,EAAEE,QAAQ,EAAA;wBACzB,IAAIC,SAAAA;wBACJ,IAAIC,iBAAAA;wBAEJ,IAAI;AACFD,4BAAAA,SAAAA,GAAY,IAAIE,GAAIL,CAAAA,QAAAA,CAAAA;4BACpBI,iBAAoB,GAAA,IAAIC,GAAIH,CAAAA,QAAAA,CAASF,QAAQ,CAAA;AACvD,yBAAA,CAAU,OAAM;AACN,4BAAA,MAAM,IAAIM,KAAM,CAAA,iCAAA,CAAA;AACjB;;AAGD,wBAAA,IAAIH,SAAUI,CAAAA,MAAM,KAAKH,iBAAAA,CAAkBG,MAAM,EAAE;AACjD,4BAAA,MAAM,IAAID,KAAAA,CACR,CAAC,4EAA4E,CAAC,CAAA;AAEjF;;AAGD,wBAAA,IAAIH,SAAUK,CAAAA,QAAQ,KAAKJ,iBAAAA,CAAkBI,QAAQ,EAAE;AACrD,4BAAA,MAAM,IAAIF,KAAAA,CACR,CAAC,6EAA6E,CAAC,CAAA;AAElF;;AAGF;AACF;aACL,CAAA;QACEG,SAAc,CAAA,GAAA;AAChB,KAAA;;;;;;"}

package/dist/server/content-types/index.js ADDED Viewed

@@ -0,0 +1,30 @@
+'use strict';
+var index = require('./permission/index.js');
+var index$1 = require('./role/index.js');
+var index$2 = require('./user/index.js');
+var contentTypes;
+var hasRequiredContentTypes;
+function requireContentTypes() {
+    if (hasRequiredContentTypes) return contentTypes;
+    hasRequiredContentTypes = 1;
+    const permission = index.__require();
+    const role = index$1.__require();
+    const user = index$2.__require();
+    contentTypes = {
+        permission: {
+            schema: permission
+        },
+        role: {
+            schema: role
+        },
+        user: {
+            schema: user
+        }
+    };
+    return contentTypes;
+}
+exports.__require = requireContentTypes;
+//# sourceMappingURL=index.js.map

package/dist/server/content-types/index.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.js","sources":["../../../server/content-types/index.js"],"sourcesContent":["'use strict';\n\nconst permission = require('./permission');\nconst role = require('./role');\nconst user = require('./user');\n\nmodule.exports = {\n permission: { schema: permission },\n role: { schema: role },\n user: { schema: user },\n};\n"],"names":["permission","require$$0","role","require$$1","user","require$$2","contentTypes","schema"],"mappings":";;;;;;;;;;;AAEA,IAAA,MAAMA,UAAaC,GAAAA,eAAAA,EAAAA;AACnB,IAAA,MAAMC,IAAOC,GAAAA,iBAAAA,EAAAA;AACb,IAAA,MAAMC,IAAOC,GAAAA,iBAAAA,EAAAA;IAEbC,YAAiB,GAAA;QACfN,UAAY,EAAA;YAAEO,MAAQP,EAAAA;AAAY,SAAA;QAClCE,IAAM,EAAA;YAAEK,MAAQL,EAAAA;AAAM,SAAA;QACtBE,IAAM,EAAA;YAAEG,MAAQH,EAAAA;AAAM;AACxB,KAAA;;;;;;"}

package/dist/server/content-types/index.mjs ADDED Viewed

@@ -0,0 +1,28 @@
+import { __require as requirePermission } from './permission/index.mjs';
+import { __require as requireRole } from './role/index.mjs';
+import { __require as requireUser } from './user/index.mjs';
+var contentTypes;
+var hasRequiredContentTypes;
+function requireContentTypes() {
+    if (hasRequiredContentTypes) return contentTypes;
+    hasRequiredContentTypes = 1;
+    const permission = requirePermission();
+    const role = requireRole();
+    const user = requireUser();
+    contentTypes = {
+        permission: {
+            schema: permission
+        },
+        role: {
+            schema: role
+        },
+        user: {
+            schema: user
+        }
+    };
+    return contentTypes;
+}
+export { requireContentTypes as __require };
+//# sourceMappingURL=index.mjs.map

package/dist/server/content-types/index.mjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.mjs","sources":["../../../server/content-types/index.js"],"sourcesContent":["'use strict';\n\nconst permission = require('./permission');\nconst role = require('./role');\nconst user = require('./user');\n\nmodule.exports = {\n permission: { schema: permission },\n role: { schema: role },\n user: { schema: user },\n};\n"],"names":["permission","require$$0","role","require$$1","user","require$$2","contentTypes","schema"],"mappings":";;;;;;;;;AAEA,IAAA,MAAMA,UAAaC,GAAAA,iBAAAA,EAAAA;AACnB,IAAA,MAAMC,IAAOC,GAAAA,WAAAA,EAAAA;AACb,IAAA,MAAMC,IAAOC,GAAAA,WAAAA,EAAAA;IAEbC,YAAiB,GAAA;QACfN,UAAY,EAAA;YAAEO,MAAQP,EAAAA;AAAY,SAAA;QAClCE,IAAM,EAAA;YAAEK,MAAQL,EAAAA;AAAM,SAAA;QACtBE,IAAM,EAAA;YAAEG,MAAQH,EAAAA;AAAM;AACxB,KAAA;;;;;;"}