npm - @strapi/plugin-users-permissions - Versions diffs - 0.0.0-next.ff946d2c25a3e577b47132a357cac2932eb8e635 → 0.0.0-next.ffc36acb308febe288f1a31b62cbbb75b286585c - Mend

@strapi/plugin-users-permissions 0.0.0-next.ff946d2c25a3e577b47132a357cac2932eb8e635 → 0.0.0-next.ffc36acb308febe288f1a31b62cbbb75b286585c

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (681) hide show

package/dist/server/strategies/users-permissions.js ADDED Viewed

@@ -0,0 +1,114 @@
+'use strict';
+var require$$0 = require('lodash/fp');
+var require$$1 = require('@strapi/utils');
+var index = require('../utils/index.js');
+var usersPermissions;
+var hasRequiredUsersPermissions;
+function requireUsersPermissions() {
+    if (hasRequiredUsersPermissions) return usersPermissions;
+    hasRequiredUsersPermissions = 1;
+    const { castArray, map, every, pipe } = require$$0;
+    const { ForbiddenError, UnauthorizedError } = require$$1.errors;
+    const { getService } = index.__require();
+    const getAdvancedSettings = ()=>{
+        return strapi.store({
+            type: 'plugin',
+            name: 'users-permissions'
+        }).get({
+            key: 'advanced'
+        });
+    };
+    const authenticate = async (ctx)=>{
+        try {
+            const token = await getService('jwt').getToken(ctx);
+            if (token) {
+                const { id } = token;
+                // Invalid token
+                if (id === undefined) {
+                    return {
+                        authenticated: false
+                    };
+                }
+                const user = await getService('user').fetchAuthenticatedUser(id);
+                // No user associated to the token
+                if (!user) {
+                    return {
+                        error: 'Invalid credentials'
+                    };
+                }
+                const advancedSettings = await getAdvancedSettings();
+                // User not confirmed
+                if (advancedSettings.email_confirmation && !user.confirmed) {
+                    return {
+                        error: 'Invalid credentials'
+                    };
+                }
+                // User blocked
+                if (user.blocked) {
+                    return {
+                        error: 'Invalid credentials'
+                    };
+                }
+                // Fetch user's permissions
+                const permissions = await Promise.resolve(user.role.id).then(getService('permission').findRolePermissions).then(map(getService('permission').toContentAPIPermission));
+                // Generate an ability (content API engine) based on the given permissions
+                const ability = await strapi.contentAPI.permissions.engine.generateAbility(permissions);
+                ctx.state.user = user;
+                return {
+                    authenticated: true,
+                    credentials: user,
+                    ability
+                };
+            }
+            const publicPermissions = await getService('permission').findPublicPermissions().then(map(getService('permission').toContentAPIPermission));
+            if (publicPermissions.length === 0) {
+                return {
+                    authenticated: false
+                };
+            }
+            const ability = await strapi.contentAPI.permissions.engine.generateAbility(publicPermissions);
+            return {
+                authenticated: true,
+                credentials: null,
+                ability
+            };
+        } catch (err) {
+            return {
+                authenticated: false
+            };
+        }
+    };
+    const verify = async (auth, config)=>{
+        const { credentials: user, ability } = auth;
+        if (!config.scope) {
+            if (!user) {
+                // A non authenticated user cannot access routes that do not have a scope
+                throw new UnauthorizedError();
+            } else {
+                // An authenticated user can access non scoped routes
+                return;
+            }
+        }
+        // If no ability have been generated, then consider auth is missing
+        if (!ability) {
+            throw new UnauthorizedError();
+        }
+        const isAllowed = pipe(// Make sure we're dealing with an array
+        castArray, // Transform the scope array into an action array
+        every((scope)=>ability.can(scope)))(config.scope);
+        if (!isAllowed) {
+            throw new ForbiddenError();
+        }
+    };
+    usersPermissions = {
+        name: 'users-permissions',
+        authenticate,
+        verify
+    };
+    return usersPermissions;
+}
+exports.__require = requireUsersPermissions;
+//# sourceMappingURL=users-permissions.js.map

package/dist/server/strategies/users-permissions.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"users-permissions.js","sources":["../../../server/strategies/users-permissions.js"],"sourcesContent":["'use strict';\n\nconst { castArray, map, every, pipe } = require('lodash/fp');\nconst { ForbiddenError, UnauthorizedError } = require('@strapi/utils').errors;\n\nconst { getService } = require('../utils');\n\nconst getAdvancedSettings = () => {\n return strapi.store({ type: 'plugin', name: 'users-permissions' }).get({ key: 'advanced' });\n};\n\nconst authenticate = async (ctx) => {\n try {\n const token = await getService('jwt').getToken(ctx);\n\n if (token) {\n const { id } = token;\n\n // Invalid token\n if (id === undefined) {\n return { authenticated: false };\n }\n\n const user = await getService('user').fetchAuthenticatedUser(id);\n\n // No user associated to the token\n if (!user) {\n return { error: 'Invalid credentials' };\n }\n\n const advancedSettings = await getAdvancedSettings();\n\n // User not confirmed\n if (advancedSettings.email_confirmation && !user.confirmed) {\n return { error: 'Invalid credentials' };\n }\n\n // User blocked\n if (user.blocked) {\n return { error: 'Invalid credentials' };\n }\n\n // Fetch user's permissions\n const permissions = await Promise.resolve(user.role.id)\n .then(getService('permission').findRolePermissions)\n .then(map(getService('permission').toContentAPIPermission));\n\n // Generate an ability (content API engine) based on the given permissions\n const ability = await strapi.contentAPI.permissions.engine.generateAbility(permissions);\n\n ctx.state.user = user;\n\n return {\n authenticated: true,\n credentials: user,\n ability,\n };\n }\n\n const publicPermissions = await getService('permission')\n .findPublicPermissions()\n .then(map(getService('permission').toContentAPIPermission));\n\n if (publicPermissions.length === 0) {\n return { authenticated: false };\n }\n\n const ability = await strapi.contentAPI.permissions.engine.generateAbility(publicPermissions);\n\n return {\n authenticated: true,\n credentials: null,\n ability,\n };\n } catch (err) {\n return { authenticated: false };\n }\n};\n\nconst verify = async (auth, config) => {\n const { credentials: user, ability } = auth;\n\n if (!config.scope) {\n if (!user) {\n // A non authenticated user cannot access routes that do not have a scope\n throw new UnauthorizedError();\n } else {\n // An authenticated user can access non scoped routes\n return;\n }\n }\n\n // If no ability have been generated, then consider auth is missing\n if (!ability) {\n throw new UnauthorizedError();\n }\n\n const isAllowed = pipe(\n // Make sure we're dealing with an array\n castArray,\n // Transform the scope array into an action array\n every((scope) => ability.can(scope))\n )(config.scope);\n\n if (!isAllowed) {\n throw new ForbiddenError();\n }\n};\n\nmodule.exports = {\n name: 'users-permissions',\n authenticate,\n verify,\n};\n"],"names":["castArray","map","every","pipe","require$$0","ForbiddenError","UnauthorizedError","require$$1","errors","getService","require$$2","getAdvancedSettings","strapi","store","type","name","get","key","authenticate","ctx","token","getToken","id","undefined","authenticated","user","fetchAuthenticatedUser","error","advancedSettings","email_confirmation","confirmed","blocked","permissions","Promise","resolve","role","then","findRolePermissions","toContentAPIPermission","ability","contentAPI","engine","generateAbility","state","credentials","publicPermissions","findPublicPermissions","length","err","verify","auth","config","scope","isAllowed","can","usersPermissions"],"mappings":";;;;;;;;;;;IAEA,MAAM,EAAEA,SAAS,EAAEC,GAAG,EAAEC,KAAK,EAAEC,IAAI,EAAE,GAAGC,UAAAA;AACxC,IAAA,MAAM,EAAEC,cAAc,EAAEC,iBAAiB,EAAE,GAAGC,WAAyBC,MAAM;IAE7E,MAAM,EAAEC,UAAU,EAAE,GAAGC,eAAAA,EAAAA;AAEvB,IAAA,MAAMC,mBAAsB,GAAA,IAAA;QAC1B,OAAOC,MAAAA,CAAOC,KAAK,CAAC;YAAEC,IAAM,EAAA,QAAA;YAAUC,IAAM,EAAA;AAAqB,SAAA,CAAA,CAAEC,GAAG,CAAC;YAAEC,GAAK,EAAA;AAAY,SAAA,CAAA;AAC5F,KAAA;AAEA,IAAA,MAAMC,eAAe,OAAOC,GAAAA,GAAAA;QAC1B,IAAI;AACF,YAAA,MAAMC,KAAQ,GAAA,MAAMX,UAAW,CAAA,KAAA,CAAA,CAAOY,QAAQ,CAACF,GAAAA,CAAAA;AAE/C,YAAA,IAAIC,KAAO,EAAA;gBACT,MAAM,EAAEE,EAAE,EAAE,GAAGF,KAAAA;;AAGf,gBAAA,IAAIE,OAAOC,SAAW,EAAA;oBACpB,OAAO;wBAAEC,aAAe,EAAA;;AACzB;AAED,gBAAA,MAAMC,IAAO,GAAA,MAAMhB,UAAW,CAAA,MAAA,CAAA,CAAQiB,sBAAsB,CAACJ,EAAAA,CAAAA;;AAG7D,gBAAA,IAAI,CAACG,IAAM,EAAA;oBACT,OAAO;wBAAEE,KAAO,EAAA;;AACjB;AAED,gBAAA,MAAMC,mBAAmB,MAAMjB,mBAAAA,EAAAA;;AAG/B,gBAAA,IAAIiB,iBAAiBC,kBAAkB,IAAI,CAACJ,IAAAA,CAAKK,SAAS,EAAE;oBAC1D,OAAO;wBAAEH,KAAO,EAAA;;AACjB;;gBAGD,IAAIF,IAAAA,CAAKM,OAAO,EAAE;oBAChB,OAAO;wBAAEJ,KAAO,EAAA;;AACjB;;gBAGD,MAAMK,WAAAA,GAAc,MAAMC,OAAQC,CAAAA,OAAO,CAACT,IAAKU,CAAAA,IAAI,CAACb,EAAE,CAAA,CACnDc,IAAI,CAAC3B,UAAAA,CAAW,cAAc4B,mBAAmB,CAAA,CACjDD,IAAI,CAACnC,GAAAA,CAAIQ,UAAW,CAAA,YAAA,CAAA,CAAc6B,sBAAsB,CAAA,CAAA;;gBAG3D,MAAMC,OAAAA,GAAU,MAAM3B,MAAAA,CAAO4B,UAAU,CAACR,WAAW,CAACS,MAAM,CAACC,eAAe,CAACV,WAAAA,CAAAA;gBAE3Eb,GAAIwB,CAAAA,KAAK,CAAClB,IAAI,GAAGA,IAAAA;gBAEjB,OAAO;oBACLD,aAAe,EAAA,IAAA;oBACfoB,WAAanB,EAAAA,IAAAA;AACbc,oBAAAA;AACR,iBAAA;AACK;YAED,MAAMM,iBAAAA,GAAoB,MAAMpC,UAAAA,CAAW,YACxCqC,CAAAA,CAAAA,qBAAqB,EACrBV,CAAAA,IAAI,CAACnC,GAAAA,CAAIQ,UAAW,CAAA,YAAA,CAAA,CAAc6B,sBAAsB,CAAA,CAAA;YAE3D,IAAIO,iBAAAA,CAAkBE,MAAM,KAAK,CAAG,EAAA;gBAClC,OAAO;oBAAEvB,aAAe,EAAA;;AACzB;YAED,MAAMe,OAAAA,GAAU,MAAM3B,MAAAA,CAAO4B,UAAU,CAACR,WAAW,CAACS,MAAM,CAACC,eAAe,CAACG,iBAAAA,CAAAA;YAE3E,OAAO;gBACLrB,aAAe,EAAA,IAAA;gBACfoB,WAAa,EAAA,IAAA;AACbL,gBAAAA;AACN,aAAA;AACG,SAAA,CAAC,OAAOS,GAAK,EAAA;YACZ,OAAO;gBAAExB,aAAe,EAAA;;AACzB;AACH,KAAA;IAEA,MAAMyB,MAAAA,GAAS,OAAOC,IAAMC,EAAAA,MAAAA,GAAAA;AAC1B,QAAA,MAAM,EAAEP,WAAanB,EAAAA,IAAI,EAAEc,OAAO,EAAE,GAAGW,IAAAA;QAEvC,IAAI,CAACC,MAAOC,CAAAA,KAAK,EAAE;AACjB,YAAA,IAAI,CAAC3B,IAAM,EAAA;;AAET,gBAAA,MAAM,IAAInB,iBAAAA,EAAAA;aACL,MAAA;;AAEL,gBAAA;AACD;AACF;;AAGD,QAAA,IAAI,CAACiC,OAAS,EAAA;AACZ,YAAA,MAAM,IAAIjC,iBAAAA,EAAAA;AACX;QAED,MAAM+C,SAAAA,GAAYlD;AAEhBH,QAAAA,SAAAA;AAEAE,QAAAA,KAAAA,CAAM,CAACkD,KAAUb,GAAAA,OAAAA,CAAQe,GAAG,CAACF,KAAAA,CAAAA,CAAAA,CAAAA,CAC7BD,OAAOC,KAAK,CAAA;AAEd,QAAA,IAAI,CAACC,SAAW,EAAA;AACd,YAAA,MAAM,IAAIhD,cAAAA,EAAAA;AACX;AACH,KAAA;IAEAkD,gBAAiB,GAAA;QACfxC,IAAM,EAAA,mBAAA;AACNG,QAAAA,YAAAA;AACA+B,QAAAA;AACF,KAAA;;;;;;"}

package/dist/server/strategies/users-permissions.mjs ADDED Viewed

@@ -0,0 +1,112 @@
+import require$$0 from 'lodash/fp';
+import require$$1 from '@strapi/utils';
+import { __require as requireUtils } from '../utils/index.mjs';
+var usersPermissions;
+var hasRequiredUsersPermissions;
+function requireUsersPermissions() {
+    if (hasRequiredUsersPermissions) return usersPermissions;
+    hasRequiredUsersPermissions = 1;
+    const { castArray, map, every, pipe } = require$$0;
+    const { ForbiddenError, UnauthorizedError } = require$$1.errors;
+    const { getService } = requireUtils();
+    const getAdvancedSettings = ()=>{
+        return strapi.store({
+            type: 'plugin',
+            name: 'users-permissions'
+        }).get({
+            key: 'advanced'
+        });
+    };
+    const authenticate = async (ctx)=>{
+        try {
+            const token = await getService('jwt').getToken(ctx);
+            if (token) {
+                const { id } = token;
+                // Invalid token
+                if (id === undefined) {
+                    return {
+                        authenticated: false
+                    };
+                }
+                const user = await getService('user').fetchAuthenticatedUser(id);
+                // No user associated to the token
+                if (!user) {
+                    return {
+                        error: 'Invalid credentials'
+                    };
+                }
+                const advancedSettings = await getAdvancedSettings();
+                // User not confirmed
+                if (advancedSettings.email_confirmation && !user.confirmed) {
+                    return {
+                        error: 'Invalid credentials'
+                    };
+                }
+                // User blocked
+                if (user.blocked) {
+                    return {
+                        error: 'Invalid credentials'
+                    };
+                }
+                // Fetch user's permissions
+                const permissions = await Promise.resolve(user.role.id).then(getService('permission').findRolePermissions).then(map(getService('permission').toContentAPIPermission));
+                // Generate an ability (content API engine) based on the given permissions
+                const ability = await strapi.contentAPI.permissions.engine.generateAbility(permissions);
+                ctx.state.user = user;
+                return {
+                    authenticated: true,
+                    credentials: user,
+                    ability
+                };
+            }
+            const publicPermissions = await getService('permission').findPublicPermissions().then(map(getService('permission').toContentAPIPermission));
+            if (publicPermissions.length === 0) {
+                return {
+                    authenticated: false
+                };
+            }
+            const ability = await strapi.contentAPI.permissions.engine.generateAbility(publicPermissions);
+            return {
+                authenticated: true,
+                credentials: null,
+                ability
+            };
+        } catch (err) {
+            return {
+                authenticated: false
+            };
+        }
+    };
+    const verify = async (auth, config)=>{
+        const { credentials: user, ability } = auth;
+        if (!config.scope) {
+            if (!user) {
+                // A non authenticated user cannot access routes that do not have a scope
+                throw new UnauthorizedError();
+            } else {
+                // An authenticated user can access non scoped routes
+                return;
+            }
+        }
+        // If no ability have been generated, then consider auth is missing
+        if (!ability) {
+            throw new UnauthorizedError();
+        }
+        const isAllowed = pipe(// Make sure we're dealing with an array
+        castArray, // Transform the scope array into an action array
+        every((scope)=>ability.can(scope)))(config.scope);
+        if (!isAllowed) {
+            throw new ForbiddenError();
+        }
+    };
+    usersPermissions = {
+        name: 'users-permissions',
+        authenticate,
+        verify
+    };
+    return usersPermissions;
+}
+export { requireUsersPermissions as __require };
+//# sourceMappingURL=users-permissions.mjs.map

package/dist/server/strategies/users-permissions.mjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"users-permissions.mjs","sources":["../../../server/strategies/users-permissions.js"],"sourcesContent":["'use strict';\n\nconst { castArray, map, every, pipe } = require('lodash/fp');\nconst { ForbiddenError, UnauthorizedError } = require('@strapi/utils').errors;\n\nconst { getService } = require('../utils');\n\nconst getAdvancedSettings = () => {\n return strapi.store({ type: 'plugin', name: 'users-permissions' }).get({ key: 'advanced' });\n};\n\nconst authenticate = async (ctx) => {\n try {\n const token = await getService('jwt').getToken(ctx);\n\n if (token) {\n const { id } = token;\n\n // Invalid token\n if (id === undefined) {\n return { authenticated: false };\n }\n\n const user = await getService('user').fetchAuthenticatedUser(id);\n\n // No user associated to the token\n if (!user) {\n return { error: 'Invalid credentials' };\n }\n\n const advancedSettings = await getAdvancedSettings();\n\n // User not confirmed\n if (advancedSettings.email_confirmation && !user.confirmed) {\n return { error: 'Invalid credentials' };\n }\n\n // User blocked\n if (user.blocked) {\n return { error: 'Invalid credentials' };\n }\n\n // Fetch user's permissions\n const permissions = await Promise.resolve(user.role.id)\n .then(getService('permission').findRolePermissions)\n .then(map(getService('permission').toContentAPIPermission));\n\n // Generate an ability (content API engine) based on the given permissions\n const ability = await strapi.contentAPI.permissions.engine.generateAbility(permissions);\n\n ctx.state.user = user;\n\n return {\n authenticated: true,\n credentials: user,\n ability,\n };\n }\n\n const publicPermissions = await getService('permission')\n .findPublicPermissions()\n .then(map(getService('permission').toContentAPIPermission));\n\n if (publicPermissions.length === 0) {\n return { authenticated: false };\n }\n\n const ability = await strapi.contentAPI.permissions.engine.generateAbility(publicPermissions);\n\n return {\n authenticated: true,\n credentials: null,\n ability,\n };\n } catch (err) {\n return { authenticated: false };\n }\n};\n\nconst verify = async (auth, config) => {\n const { credentials: user, ability } = auth;\n\n if (!config.scope) {\n if (!user) {\n // A non authenticated user cannot access routes that do not have a scope\n throw new UnauthorizedError();\n } else {\n // An authenticated user can access non scoped routes\n return;\n }\n }\n\n // If no ability have been generated, then consider auth is missing\n if (!ability) {\n throw new UnauthorizedError();\n }\n\n const isAllowed = pipe(\n // Make sure we're dealing with an array\n castArray,\n // Transform the scope array into an action array\n every((scope) => ability.can(scope))\n )(config.scope);\n\n if (!isAllowed) {\n throw new ForbiddenError();\n }\n};\n\nmodule.exports = {\n name: 'users-permissions',\n authenticate,\n verify,\n};\n"],"names":["castArray","map","every","pipe","require$$0","ForbiddenError","UnauthorizedError","require$$1","errors","getService","require$$2","getAdvancedSettings","strapi","store","type","name","get","key","authenticate","ctx","token","getToken","id","undefined","authenticated","user","fetchAuthenticatedUser","error","advancedSettings","email_confirmation","confirmed","blocked","permissions","Promise","resolve","role","then","findRolePermissions","toContentAPIPermission","ability","contentAPI","engine","generateAbility","state","credentials","publicPermissions","findPublicPermissions","length","err","verify","auth","config","scope","isAllowed","can","usersPermissions"],"mappings":";;;;;;;;;IAEA,MAAM,EAAEA,SAAS,EAAEC,GAAG,EAAEC,KAAK,EAAEC,IAAI,EAAE,GAAGC,UAAAA;AACxC,IAAA,MAAM,EAAEC,cAAc,EAAEC,iBAAiB,EAAE,GAAGC,WAAyBC,MAAM;IAE7E,MAAM,EAAEC,UAAU,EAAE,GAAGC,YAAAA,EAAAA;AAEvB,IAAA,MAAMC,mBAAsB,GAAA,IAAA;QAC1B,OAAOC,MAAAA,CAAOC,KAAK,CAAC;YAAEC,IAAM,EAAA,QAAA;YAAUC,IAAM,EAAA;AAAqB,SAAA,CAAA,CAAEC,GAAG,CAAC;YAAEC,GAAK,EAAA;AAAY,SAAA,CAAA;AAC5F,KAAA;AAEA,IAAA,MAAMC,eAAe,OAAOC,GAAAA,GAAAA;QAC1B,IAAI;AACF,YAAA,MAAMC,KAAQ,GAAA,MAAMX,UAAW,CAAA,KAAA,CAAA,CAAOY,QAAQ,CAACF,GAAAA,CAAAA;AAE/C,YAAA,IAAIC,KAAO,EAAA;gBACT,MAAM,EAAEE,EAAE,EAAE,GAAGF,KAAAA;;AAGf,gBAAA,IAAIE,OAAOC,SAAW,EAAA;oBACpB,OAAO;wBAAEC,aAAe,EAAA;;AACzB;AAED,gBAAA,MAAMC,IAAO,GAAA,MAAMhB,UAAW,CAAA,MAAA,CAAA,CAAQiB,sBAAsB,CAACJ,EAAAA,CAAAA;;AAG7D,gBAAA,IAAI,CAACG,IAAM,EAAA;oBACT,OAAO;wBAAEE,KAAO,EAAA;;AACjB;AAED,gBAAA,MAAMC,mBAAmB,MAAMjB,mBAAAA,EAAAA;;AAG/B,gBAAA,IAAIiB,iBAAiBC,kBAAkB,IAAI,CAACJ,IAAAA,CAAKK,SAAS,EAAE;oBAC1D,OAAO;wBAAEH,KAAO,EAAA;;AACjB;;gBAGD,IAAIF,IAAAA,CAAKM,OAAO,EAAE;oBAChB,OAAO;wBAAEJ,KAAO,EAAA;;AACjB;;gBAGD,MAAMK,WAAAA,GAAc,MAAMC,OAAQC,CAAAA,OAAO,CAACT,IAAKU,CAAAA,IAAI,CAACb,EAAE,CAAA,CACnDc,IAAI,CAAC3B,UAAAA,CAAW,cAAc4B,mBAAmB,CAAA,CACjDD,IAAI,CAACnC,GAAAA,CAAIQ,UAAW,CAAA,YAAA,CAAA,CAAc6B,sBAAsB,CAAA,CAAA;;gBAG3D,MAAMC,OAAAA,GAAU,MAAM3B,MAAAA,CAAO4B,UAAU,CAACR,WAAW,CAACS,MAAM,CAACC,eAAe,CAACV,WAAAA,CAAAA;gBAE3Eb,GAAIwB,CAAAA,KAAK,CAAClB,IAAI,GAAGA,IAAAA;gBAEjB,OAAO;oBACLD,aAAe,EAAA,IAAA;oBACfoB,WAAanB,EAAAA,IAAAA;AACbc,oBAAAA;AACR,iBAAA;AACK;YAED,MAAMM,iBAAAA,GAAoB,MAAMpC,UAAAA,CAAW,YACxCqC,CAAAA,CAAAA,qBAAqB,EACrBV,CAAAA,IAAI,CAACnC,GAAAA,CAAIQ,UAAW,CAAA,YAAA,CAAA,CAAc6B,sBAAsB,CAAA,CAAA;YAE3D,IAAIO,iBAAAA,CAAkBE,MAAM,KAAK,CAAG,EAAA;gBAClC,OAAO;oBAAEvB,aAAe,EAAA;;AACzB;YAED,MAAMe,OAAAA,GAAU,MAAM3B,MAAAA,CAAO4B,UAAU,CAACR,WAAW,CAACS,MAAM,CAACC,eAAe,CAACG,iBAAAA,CAAAA;YAE3E,OAAO;gBACLrB,aAAe,EAAA,IAAA;gBACfoB,WAAa,EAAA,IAAA;AACbL,gBAAAA;AACN,aAAA;AACG,SAAA,CAAC,OAAOS,GAAK,EAAA;YACZ,OAAO;gBAAExB,aAAe,EAAA;;AACzB;AACH,KAAA;IAEA,MAAMyB,MAAAA,GAAS,OAAOC,IAAMC,EAAAA,MAAAA,GAAAA;AAC1B,QAAA,MAAM,EAAEP,WAAanB,EAAAA,IAAI,EAAEc,OAAO,EAAE,GAAGW,IAAAA;QAEvC,IAAI,CAACC,MAAOC,CAAAA,KAAK,EAAE;AACjB,YAAA,IAAI,CAAC3B,IAAM,EAAA;;AAET,gBAAA,MAAM,IAAInB,iBAAAA,EAAAA;aACL,MAAA;;AAEL,gBAAA;AACD;AACF;;AAGD,QAAA,IAAI,CAACiC,OAAS,EAAA;AACZ,YAAA,MAAM,IAAIjC,iBAAAA,EAAAA;AACX;QAED,MAAM+C,SAAAA,GAAYlD;AAEhBH,QAAAA,SAAAA;AAEAE,QAAAA,KAAAA,CAAM,CAACkD,KAAUb,GAAAA,OAAAA,CAAQe,GAAG,CAACF,KAAAA,CAAAA,CAAAA,CAAAA,CAC7BD,OAAOC,KAAK,CAAA;AAEd,QAAA,IAAI,CAACC,SAAW,EAAA;AACd,YAAA,MAAM,IAAIhD,cAAAA,EAAAA;AACX;AACH,KAAA;IAEAkD,gBAAiB,GAAA;QACfxC,IAAM,EAAA,mBAAA;AACNG,QAAAA,YAAAA;AACA+B,QAAAA;AACF,KAAA;;;;;;"}

package/dist/server/utils/index.js ADDED Viewed

@@ -0,0 +1,22 @@
+'use strict';
+var index = require('./sanitize/index.js');
+var utils;
+var hasRequiredUtils;
+function requireUtils() {
+    if (hasRequiredUtils) return utils;
+    hasRequiredUtils = 1;
+    const sanitize = index.__require();
+    const getService = (name)=>{
+        return strapi.plugin('users-permissions').service(name);
+    };
+    utils = {
+        getService,
+        sanitize
+    };
+    return utils;
+}
+exports.__require = requireUtils;
+//# sourceMappingURL=index.js.map

package/dist/server/utils/index.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.js","sources":["../../../server/utils/index.js"],"sourcesContent":["'use strict';\n\nconst sanitize = require('./sanitize');\n\nconst getService = (name) => {\n return strapi.plugin('users-permissions').service(name);\n};\n\nmodule.exports = {\n getService,\n sanitize,\n};\n"],"names":["sanitize","require$$0","getService","name","strapi","plugin","service","utils"],"mappings":";;;;;;;;;AAEA,IAAA,MAAMA,QAAWC,GAAAA,eAAAA,EAAAA;AAEjB,IAAA,MAAMC,aAAa,CAACC,IAAAA,GAAAA;AAClB,QAAA,OAAOC,MAAOC,CAAAA,MAAM,CAAC,mBAAA,CAAA,CAAqBC,OAAO,CAACH,IAAAA,CAAAA;AACpD,KAAA;IAEAI,KAAiB,GAAA;AACfL,QAAAA,UAAAA;AACAF,QAAAA;AACF,KAAA;;;;;;"}

package/dist/server/utils/index.mjs ADDED Viewed

@@ -0,0 +1,20 @@
+import { __require as requireSanitize } from './sanitize/index.mjs';
+var utils;
+var hasRequiredUtils;
+function requireUtils() {
+    if (hasRequiredUtils) return utils;
+    hasRequiredUtils = 1;
+    const sanitize = requireSanitize();
+    const getService = (name)=>{
+        return strapi.plugin('users-permissions').service(name);
+    };
+    utils = {
+        getService,
+        sanitize
+    };
+    return utils;
+}
+export { requireUtils as __require };
+//# sourceMappingURL=index.mjs.map

package/dist/server/utils/index.mjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.mjs","sources":["../../../server/utils/index.js"],"sourcesContent":["'use strict';\n\nconst sanitize = require('./sanitize');\n\nconst getService = (name) => {\n return strapi.plugin('users-permissions').service(name);\n};\n\nmodule.exports = {\n getService,\n sanitize,\n};\n"],"names":["sanitize","require$$0","getService","name","strapi","plugin","service","utils"],"mappings":";;;;;;;AAEA,IAAA,MAAMA,QAAWC,GAAAA,eAAAA,EAAAA;AAEjB,IAAA,MAAMC,aAAa,CAACC,IAAAA,GAAAA;AAClB,QAAA,OAAOC,MAAOC,CAAAA,MAAM,CAAC,mBAAA,CAAA,CAAqBC,OAAO,CAACH,IAAAA,CAAAA;AACpD,KAAA;IAEAI,KAAiB,GAAA;AACfL,QAAAA,UAAAA;AACAF,QAAAA;AACF,KAAA;;;;;;"}

package/dist/server/utils/sanitize/index.js ADDED Viewed

@@ -0,0 +1,21 @@
+'use strict';
+var index = require('./visitors/index.js');
+var sanitizers = require('./sanitizers.js');
+var sanitize;
+var hasRequiredSanitize;
+function requireSanitize() {
+    if (hasRequiredSanitize) return sanitize;
+    hasRequiredSanitize = 1;
+    const visitors = index.__require();
+    const sanitizers$1 = sanitizers.__require();
+    sanitize = {
+        sanitizers: sanitizers$1,
+        visitors
+    };
+    return sanitize;
+}
+exports.__require = requireSanitize;
+//# sourceMappingURL=index.js.map

package/dist/server/utils/sanitize/index.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.js","sources":["../../../../server/utils/sanitize/index.js"],"sourcesContent":["'use strict';\n\nconst visitors = require('./visitors');\nconst sanitizers = require('./sanitizers');\n\nmodule.exports = {\n sanitizers,\n visitors,\n};\n"],"names":["visitors","require$$0","sanitizers","require$$1","sanitize"],"mappings":";;;;;;;;;;AAEA,IAAA,MAAMA,QAAWC,GAAAA,eAAAA,EAAAA;AACjB,IAAA,MAAMC,YAAaC,GAAAA,oBAAAA,EAAAA;IAEnBC,QAAiB,GAAA;AACfF,oBAAAA,YAAAA;AACAF,QAAAA;AACF,KAAA;;;;;;"}

package/dist/server/utils/sanitize/index.mjs ADDED Viewed

@@ -0,0 +1,19 @@
+import { __require as requireVisitors } from './visitors/index.mjs';
+import { __require as requireSanitizers } from './sanitizers.mjs';
+var sanitize;
+var hasRequiredSanitize;
+function requireSanitize() {
+    if (hasRequiredSanitize) return sanitize;
+    hasRequiredSanitize = 1;
+    const visitors = requireVisitors();
+    const sanitizers = requireSanitizers();
+    sanitize = {
+        sanitizers,
+        visitors
+    };
+    return sanitize;
+}
+export { requireSanitize as __require };
+//# sourceMappingURL=index.mjs.map

package/dist/server/utils/sanitize/index.mjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.mjs","sources":["../../../../server/utils/sanitize/index.js"],"sourcesContent":["'use strict';\n\nconst visitors = require('./visitors');\nconst sanitizers = require('./sanitizers');\n\nmodule.exports = {\n sanitizers,\n visitors,\n};\n"],"names":["visitors","require$$0","sanitizers","require$$1","sanitize"],"mappings":";;;;;;;;AAEA,IAAA,MAAMA,QAAWC,GAAAA,eAAAA,EAAAA;AACjB,IAAA,MAAMC,UAAaC,GAAAA,iBAAAA,EAAAA;IAEnBC,QAAiB,GAAA;AACfF,QAAAA,UAAAA;AACAF,QAAAA;AACF,KAAA;;;;;;"}

package/dist/server/utils/sanitize/sanitizers.js ADDED Viewed

@@ -0,0 +1,32 @@
+'use strict';
+var require$$0 = require('lodash/fp');
+var require$$1 = require('@strapi/utils');
+var index = require('./visitors/index.js');
+var sanitizers;
+var hasRequiredSanitizers;
+function requireSanitizers() {
+    if (hasRequiredSanitizers) return sanitizers;
+    hasRequiredSanitizers = 1;
+    const { curry } = require$$0;
+    const { traverseEntity, async } = require$$1;
+    const { removeUserRelationFromRoleEntities } = index.__require();
+    const sanitizeUserRelationFromRoleEntities = curry((schema, entity)=>{
+        return traverseEntity(removeUserRelationFromRoleEntities, {
+            schema,
+            getModel: strapi.getModel.bind(strapi)
+        }, entity);
+    });
+    const defaultSanitizeOutput = curry((schema, entity)=>{
+        return async.pipe(sanitizeUserRelationFromRoleEntities(schema))(entity);
+    });
+    sanitizers = {
+        sanitizeUserRelationFromRoleEntities,
+        defaultSanitizeOutput
+    };
+    return sanitizers;
+}
+exports.__require = requireSanitizers;
+//# sourceMappingURL=sanitizers.js.map

package/dist/server/utils/sanitize/sanitizers.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"sanitizers.js","sources":["../../../../server/utils/sanitize/sanitizers.js"],"sourcesContent":["'use strict';\n\nconst { curry } = require('lodash/fp');\nconst { traverseEntity, async } = require('@strapi/utils');\n\nconst { removeUserRelationFromRoleEntities } = require('./visitors');\n\nconst sanitizeUserRelationFromRoleEntities = curry((schema, entity) => {\n return traverseEntity(\n removeUserRelationFromRoleEntities,\n { schema, getModel: strapi.getModel.bind(strapi) },\n entity\n );\n});\n\nconst defaultSanitizeOutput = curry((schema, entity) => {\n return async.pipe(sanitizeUserRelationFromRoleEntities(schema))(entity);\n});\n\nmodule.exports = {\n sanitizeUserRelationFromRoleEntities,\n defaultSanitizeOutput,\n};\n"],"names":["curry","require$$0","traverseEntity","async","require$$1","removeUserRelationFromRoleEntities","require$$2","sanitizeUserRelationFromRoleEntities","schema","entity","getModel","strapi","bind","defaultSanitizeOutput","pipe","sanitizers"],"mappings":";;;;;;;;;;;IAEA,MAAM,EAAEA,KAAK,EAAE,GAAGC,UAAAA;AAClB,IAAA,MAAM,EAAEC,cAAc,EAAEC,KAAK,EAAE,GAAGC,UAAAA;IAElC,MAAM,EAAEC,kCAAkC,EAAE,GAAGC,eAAAA,EAAAA;IAE/C,MAAMC,oCAAAA,GAAuCP,KAAM,CAAA,CAACQ,MAAQC,EAAAA,MAAAA,GAAAA;AAC1D,QAAA,OAAOP,eACLG,kCACA,EAAA;AAAEG,YAAAA,MAAAA;AAAQE,YAAAA,QAAAA,EAAUC,MAAOD,CAAAA,QAAQ,CAACE,IAAI,CAACD,MAAAA;SACzCF,EAAAA,MAAAA,CAAAA;AAEJ,KAAA,CAAA;IAEA,MAAMI,qBAAAA,GAAwBb,KAAM,CAAA,CAACQ,MAAQC,EAAAA,MAAAA,GAAAA;AAC3C,QAAA,OAAON,KAAMW,CAAAA,IAAI,CAACP,oCAAAA,CAAqCC,MAASC,CAAAA,CAAAA,CAAAA,MAAAA,CAAAA;AAClE,KAAA,CAAA;IAEAM,UAAiB,GAAA;AACfR,QAAAA,oCAAAA;AACAM,QAAAA;AACF,KAAA;;;;;;"}

package/dist/server/utils/sanitize/sanitizers.mjs ADDED Viewed

@@ -0,0 +1,30 @@
+import require$$0 from 'lodash/fp';
+import require$$1 from '@strapi/utils';
+import { __require as requireVisitors } from './visitors/index.mjs';
+var sanitizers;
+var hasRequiredSanitizers;
+function requireSanitizers() {
+    if (hasRequiredSanitizers) return sanitizers;
+    hasRequiredSanitizers = 1;
+    const { curry } = require$$0;
+    const { traverseEntity, async } = require$$1;
+    const { removeUserRelationFromRoleEntities } = requireVisitors();
+    const sanitizeUserRelationFromRoleEntities = curry((schema, entity)=>{
+        return traverseEntity(removeUserRelationFromRoleEntities, {
+            schema,
+            getModel: strapi.getModel.bind(strapi)
+        }, entity);
+    });
+    const defaultSanitizeOutput = curry((schema, entity)=>{
+        return async.pipe(sanitizeUserRelationFromRoleEntities(schema))(entity);
+    });
+    sanitizers = {
+        sanitizeUserRelationFromRoleEntities,
+        defaultSanitizeOutput
+    };
+    return sanitizers;
+}
+export { requireSanitizers as __require };
+//# sourceMappingURL=sanitizers.mjs.map

package/dist/server/utils/sanitize/sanitizers.mjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"sanitizers.mjs","sources":["../../../../server/utils/sanitize/sanitizers.js"],"sourcesContent":["'use strict';\n\nconst { curry } = require('lodash/fp');\nconst { traverseEntity, async } = require('@strapi/utils');\n\nconst { removeUserRelationFromRoleEntities } = require('./visitors');\n\nconst sanitizeUserRelationFromRoleEntities = curry((schema, entity) => {\n return traverseEntity(\n removeUserRelationFromRoleEntities,\n { schema, getModel: strapi.getModel.bind(strapi) },\n entity\n );\n});\n\nconst defaultSanitizeOutput = curry((schema, entity) => {\n return async.pipe(sanitizeUserRelationFromRoleEntities(schema))(entity);\n});\n\nmodule.exports = {\n sanitizeUserRelationFromRoleEntities,\n defaultSanitizeOutput,\n};\n"],"names":["curry","require$$0","traverseEntity","async","require$$1","removeUserRelationFromRoleEntities","require$$2","sanitizeUserRelationFromRoleEntities","schema","entity","getModel","strapi","bind","defaultSanitizeOutput","pipe","sanitizers"],"mappings":";;;;;;;;;IAEA,MAAM,EAAEA,KAAK,EAAE,GAAGC,UAAAA;AAClB,IAAA,MAAM,EAAEC,cAAc,EAAEC,KAAK,EAAE,GAAGC,UAAAA;IAElC,MAAM,EAAEC,kCAAkC,EAAE,GAAGC,eAAAA,EAAAA;IAE/C,MAAMC,oCAAAA,GAAuCP,KAAM,CAAA,CAACQ,MAAQC,EAAAA,MAAAA,GAAAA;AAC1D,QAAA,OAAOP,eACLG,kCACA,EAAA;AAAEG,YAAAA,MAAAA;AAAQE,YAAAA,QAAAA,EAAUC,MAAOD,CAAAA,QAAQ,CAACE,IAAI,CAACD,MAAAA;SACzCF,EAAAA,MAAAA,CAAAA;AAEJ,KAAA,CAAA;IAEA,MAAMI,qBAAAA,GAAwBb,KAAM,CAAA,CAACQ,MAAQC,EAAAA,MAAAA,GAAAA;AAC3C,QAAA,OAAON,KAAMW,CAAAA,IAAI,CAACP,oCAAAA,CAAqCC,MAASC,CAAAA,CAAAA,CAAAA,MAAAA,CAAAA;AAClE,KAAA,CAAA;IAEAM,UAAiB,GAAA;AACfR,QAAAA,oCAAAA;AACAM,QAAAA;AACF,KAAA;;;;;;"}

package/dist/server/utils/sanitize/visitors/index.js ADDED Viewed

@@ -0,0 +1,17 @@
+'use strict';
+var removeUserRelationFromRoleEntities = require('./remove-user-relation-from-role-entities.js');
+var visitors;
+var hasRequiredVisitors;
+function requireVisitors() {
+    if (hasRequiredVisitors) return visitors;
+    hasRequiredVisitors = 1;
+    visitors = {
+        removeUserRelationFromRoleEntities: removeUserRelationFromRoleEntities.__require()
+    };
+    return visitors;
+}
+exports.__require = requireVisitors;
+//# sourceMappingURL=index.js.map

package/dist/server/utils/sanitize/visitors/index.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.js","sources":["../../../../../server/utils/sanitize/visitors/index.js"],"sourcesContent":["'use strict';\n\nmodule.exports = {\n removeUserRelationFromRoleEntities: require('./remove-user-relation-from-role-entities'),\n};\n"],"names":["visitors","removeUserRelationFromRoleEntities","require$$0"],"mappings":";;;;;;;;;IAEAA,QAAiB,GAAA;QACfC,kCAAoCC,EAAAA,4CAAAA;AACtC,KAAA;;;;;;"}

package/dist/server/utils/sanitize/visitors/index.mjs ADDED Viewed

@@ -0,0 +1,15 @@
+import { __require as requireRemoveUserRelationFromRoleEntities } from './remove-user-relation-from-role-entities.mjs';
+var visitors;
+var hasRequiredVisitors;
+function requireVisitors() {
+    if (hasRequiredVisitors) return visitors;
+    hasRequiredVisitors = 1;
+    visitors = {
+        removeUserRelationFromRoleEntities: requireRemoveUserRelationFromRoleEntities()
+    };
+    return visitors;
+}
+export { requireVisitors as __require };
+//# sourceMappingURL=index.mjs.map

package/dist/server/utils/sanitize/visitors/index.mjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.mjs","sources":["../../../../../server/utils/sanitize/visitors/index.js"],"sourcesContent":["'use strict';\n\nmodule.exports = {\n removeUserRelationFromRoleEntities: require('./remove-user-relation-from-role-entities'),\n};\n"],"names":["visitors","removeUserRelationFromRoleEntities","require$$0"],"mappings":";;;;;;;IAEAA,QAAiB,GAAA;QACfC,kCAAoCC,EAAAA,yCAAAA;AACtC,KAAA;;;;;;"}

package/dist/server/utils/sanitize/visitors/remove-user-relation-from-role-entities.js ADDED Viewed

@@ -0,0 +1,17 @@
+'use strict';
+var removeUserRelationFromRoleEntities;
+var hasRequiredRemoveUserRelationFromRoleEntities;
+function requireRemoveUserRelationFromRoleEntities() {
+    if (hasRequiredRemoveUserRelationFromRoleEntities) return removeUserRelationFromRoleEntities;
+    hasRequiredRemoveUserRelationFromRoleEntities = 1;
+    removeUserRelationFromRoleEntities = ({ schema, key, attribute }, { remove })=>{
+        if (attribute?.type === 'relation' && attribute?.target === 'plugin::users-permissions.user' && schema.uid === 'plugin::users-permissions.role') {
+            remove(key);
+        }
+    };
+    return removeUserRelationFromRoleEntities;
+}
+exports.__require = requireRemoveUserRelationFromRoleEntities;
+//# sourceMappingURL=remove-user-relation-from-role-entities.js.map

package/dist/server/utils/sanitize/visitors/remove-user-relation-from-role-entities.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"remove-user-relation-from-role-entities.js","sources":["../../../../../server/utils/sanitize/visitors/remove-user-relation-from-role-entities.js"],"sourcesContent":["'use strict';\n\nmodule.exports = ({ schema, key, attribute }, { remove }) => {\n if (\n attribute?.type === 'relation' &&\n attribute?.target === 'plugin::users-permissions.user' &&\n schema.uid === 'plugin::users-permissions.role'\n ) {\n remove(key);\n }\n};\n"],"names":["removeUserRelationFromRoleEntities","schema","key","attribute","remove","type","target","uid"],"mappings":";;;;;;;IAEAA,kCAAiB,GAAA,CAAC,EAAEC,MAAM,EAAEC,GAAG,EAAEC,SAAS,EAAE,EAAE,EAAEC,MAAM,EAAE,GAAA;QACtD,IACED,SAAAA,EAAWE,SAAS,UACpBF,IAAAA,SAAAA,EAAWG,WAAW,gCACtBL,IAAAA,MAAAA,CAAOM,GAAG,KAAK,gCACf,EAAA;YACAH,MAAOF,CAAAA,GAAAA,CAAAA;AACR;AACH,KAAA;;;;;;"}

package/dist/server/utils/sanitize/visitors/remove-user-relation-from-role-entities.mjs ADDED Viewed

@@ -0,0 +1,15 @@
+var removeUserRelationFromRoleEntities;
+var hasRequiredRemoveUserRelationFromRoleEntities;
+function requireRemoveUserRelationFromRoleEntities() {
+    if (hasRequiredRemoveUserRelationFromRoleEntities) return removeUserRelationFromRoleEntities;
+    hasRequiredRemoveUserRelationFromRoleEntities = 1;
+    removeUserRelationFromRoleEntities = ({ schema, key, attribute }, { remove })=>{
+        if (attribute?.type === 'relation' && attribute?.target === 'plugin::users-permissions.user' && schema.uid === 'plugin::users-permissions.role') {
+            remove(key);
+        }
+    };
+    return removeUserRelationFromRoleEntities;
+}
+export { requireRemoveUserRelationFromRoleEntities as __require };
+//# sourceMappingURL=remove-user-relation-from-role-entities.mjs.map

package/dist/server/utils/sanitize/visitors/remove-user-relation-from-role-entities.mjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"remove-user-relation-from-role-entities.mjs","sources":["../../../../../server/utils/sanitize/visitors/remove-user-relation-from-role-entities.js"],"sourcesContent":["'use strict';\n\nmodule.exports = ({ schema, key, attribute }, { remove }) => {\n if (\n attribute?.type === 'relation' &&\n attribute?.target === 'plugin::users-permissions.user' &&\n schema.uid === 'plugin::users-permissions.role'\n ) {\n remove(key);\n }\n};\n"],"names":["removeUserRelationFromRoleEntities","schema","key","attribute","remove","type","target","uid"],"mappings":";;;;;IAEAA,kCAAiB,GAAA,CAAC,EAAEC,MAAM,EAAEC,GAAG,EAAEC,SAAS,EAAE,EAAE,EAAEC,MAAM,EAAE,GAAA;QACtD,IACED,SAAAA,EAAWE,SAAS,UACpBF,IAAAA,SAAAA,EAAWG,WAAW,gCACtBL,IAAAA,MAAAA,CAAOM,GAAG,KAAK,gCACf,EAAA;YACAH,MAAOF,CAAAA,GAAAA,CAAAA;AACR;AACH,KAAA;;;;;;"}

package/documentation/content-api.yaml CHANGED Viewed

@@ -93,7 +93,7 @@ paths:
         required: true
       responses:
         200:
-          description: Successfull registration
+          description: Successful registration
           content:
             application/json:
               schema:

package/jest.config.front.js CHANGED Viewed

@@ -3,4 +3,5 @@
 module.exports = {
   preset: '../../../jest-preset.front.js',
   displayName: 'Users & Permissions plugin',
+  setupFilesAfterEnv: ['./admin/src/tests/setup.js'],
 };