@strapi/plugin-users-permissions 4.0.0-next.1 → 4.0.0-next.13

package/admin/src/index.js

@@ -4,16 +4,11 @@
 // Here's the file: strapi/docs/3.0.0-beta.x/guides/registering-a-field-in-admin.md
 // Also the strapi-generate-plugins/files/admin/src/index.js needs to be updated
 // IF THE DOC IS NOT UPDATED THE PULL REQUEST WILL NOT BE MERGED
-import React from 'react';
-import { CheckPagePermissions, prefixPluginTranslations } from '@strapi/helper-plugin';
+import { prefixPluginTranslations } from '@strapi/helper-plugin';
 import pluginPkg from '../../package.json';
 import pluginLogo from './assets/images/logo.svg';
 import pluginPermissions from './permissions';
 import pluginId from './pluginId';
-import RolesPage from './pages/Roles';
-import ProvidersPage from './pages/Providers';
-import EmailTemplatesPage from './pages/EmailTemplates';
-import AdvancedSettingsPage from './pages/AdvancedSettings';
 import getTrad from './utils/getTrad';
 
 const pluginDescription = pluginPkg.strapi.description || pluginPkg.description;
@@ -39,11 +34,13 @@ export default {
           },
           id: 'roles',
           to: `/settings/${pluginId}/roles`,
-          Component: () => (
-            <CheckPagePermissions permissions={pluginPermissions.accessRoles}>
-              <RolesPage />
-            </CheckPagePermissions>
-          ),
+          Component: async () => {
+            const component = await import(
+              /* webpackChunkName: "users-roles-settings-page" */ './pages/Roles'
+            );
+
+            return component;
+          },
           permissions: pluginPermissions.accessRoles,
         },
         {
@@ -53,39 +50,45 @@ export default {
           },
           id: 'providers',
           to: `/settings/${pluginId}/providers`,
-          Component: () => (
-            <CheckPagePermissions permissions={pluginPermissions.readProviders}>
-              <ProvidersPage />
-            </CheckPagePermissions>
-          ),
+          Component: async () => {
+            const component = await import(
+              /* webpackChunkName: "users-providers-settings-page" */ './pages/Providers'
+            );
+
+            return component;
+          },
           permissions: pluginPermissions.readProviders,
         },
         {
           intlLabel: {
-            id: getTrad('HeaderNav.link.email-templates'),
+            id: getTrad('HeaderNav.link.emailTemplates'),
             defaultMessage: 'Email templates',
           },
           id: 'email-templates',
           to: `/settings/${pluginId}/email-templates`,
-          Component: () => (
-            <CheckPagePermissions permissions={pluginPermissions.readEmailTemplates}>
-              <EmailTemplatesPage />
-            </CheckPagePermissions>
-          ),
+          Component: async () => {
+            const component = await import(
+              /* webpackChunkName: "users-email-settings-page" */ './pages/EmailTemplates'
+            );
+
+            return component;
+          },
           permissions: pluginPermissions.readEmailTemplates,
         },
         {
           intlLabel: {
-            id: getTrad('HeaderNav.link.advanced-settings'),
+            id: getTrad('HeaderNav.link.advancedSettings'),
             defaultMessage: 'Advanced Settings',
           },
           id: 'advanced-settings',
           to: `/settings/${pluginId}/advanced-settings`,
-          Component: () => (
-            <CheckPagePermissions permissions={pluginPermissions.readAdvancedSettings}>
-              <AdvancedSettingsPage />
-            </CheckPagePermissions>
-          ),
+          Component: async () => {
+            const component = await import(
+              /* webpackChunkName: "users-advanced-settings-page" */ './pages/AdvancedSettings'
+            );
+
+            return component;
+          },
           permissions: pluginPermissions.readAdvancedSettings,
         },
       ]

package/admin/src/pages/AdvancedSettings/index.js

@@ -11,6 +11,7 @@ import {
   request,
   useNotification,
   useOverlayBlocker,
+  CheckPagePermissions,
 } from '@strapi/helper-plugin';
 import pluginPermissions from '../../permissions';
 import { getTrad, getRequestURL } from '../../utils';
@@ -18,12 +19,23 @@ import ListBaselineAlignment from '../../components/ListBaselineAlignment';
 import form from './utils/form';
 import reducer, { initialState } from './reducer';
 
+const ProtectedAdvancedSettingsPage = () => (
+  <CheckPagePermissions permissions={pluginPermissions.readAdvancedSettings}>
+    <AdvancedSettingsPage />
+  </CheckPagePermissions>
+);
+
 const AdvancedSettingsPage = () => {
   const { formatMessage } = useIntl();
   const toggleNotification = useNotification();
   const { lockApp, unlockApp } = useOverlayBlocker();
   const [showModalWarning, setShowModalWarning] = useState(false);
   const pageTitle = formatMessage({ id: getTrad('HeaderNav.link.advancedSettings') });
+  const formTitle = formatMessage({
+    id: getTrad('Form.title.advancedSettings'),
+    defaultMessage: 'Settings',
+  });
+
   const updatePermissions = useMemo(() => {
     return { update: pluginPermissions.updateAdvancedSettings };
   }, []);
@@ -180,7 +192,7 @@ const AdvancedSettingsPage = () => {
         <form onSubmit={handleSubmit}>
           <Header actions={headerActions} title={{ label: pageTitle }} isLoading={showLoader} />
           <ListBaselineAlignment />
-          <FormBloc title="Settings" isLoading={showLoader}>
+          <FormBloc title={formTitle} isLoading={showLoader}>
             {form.map(input => {
               return (
                 <SizedInput
@@ -212,4 +224,4 @@ const AdvancedSettingsPage = () => {
   );
 };
 
-export default AdvancedSettingsPage;
+export default ProtectedAdvancedSettingsPage;

package/admin/src/pages/AdvancedSettings/utils/form.js

@@ -30,7 +30,7 @@ const form = [
     name: 'email_reset_password',
     type: 'text',
     size: { xs: 6 },
-    placeholder: 'ex: https://yourfrontend.com/reset-password',
+    placeholder: getTrad('EditForm.inputToggle.placeholder.email-reset-password'),
   },
   {
     description: getTrad('EditForm.inputToggle.description.email-confirmation'),
@@ -45,7 +45,7 @@ const form = [
     name: 'email_confirmation_redirection',
     type: 'text',
     size: { xs: 6 },
-    placeholder: 'ex: https://yourfrontend.com/reset-password',
+    placeholder: getTrad('EditForm.inputToggle.placeholder.email-confirmation-redirection'),
   },
 ];
 

package/admin/src/pages/EmailTemplates/index.js

@@ -11,6 +11,7 @@ import {
   getYupInnerErrors,
   useNotification,
   useOverlayBlocker,
+  CheckPagePermissions,
 } from '@strapi/helper-plugin';
 import { Row } from 'reactstrap';
 import pluginPermissions from '../../permissions';
@@ -22,6 +23,12 @@ import { getRequestURL, getTrad } from '../../utils';
 import forms from './utils/forms';
 import schema from './utils/schema';
 
+const ProtectedEmailTemplatesPage = () => (
+  <CheckPagePermissions permissions={pluginPermissions.readEmailTemplates}>
+    <EmailTemplatesPage />
+  </CheckPagePermissions>
+);
+
 const EmailTemplatesPage = () => {
   const { formatMessage } = useIntl();
   const { trackUsage } = useTracking();
@@ -232,4 +239,4 @@ const EmailTemplatesPage = () => {
   );
 };
 
-export default EmailTemplatesPage;
+export default ProtectedEmailTemplatesPage;

package/admin/src/pages/Providers/index.js

@@ -11,6 +11,7 @@ import {
   request,
   useNotification,
   useOverlayBlocker,
+  CheckPagePermissions,
 } from '@strapi/helper-plugin';
 import { get, upperFirst, has } from 'lodash';
 import { Row } from 'reactstrap';
@@ -23,6 +24,12 @@ import ModalForm from '../../components/ModalForm';
 import createProvidersArray from './utils/createProvidersArray';
 import forms from './utils/forms';
 
+const ProtectedProvidersPage = () => (
+  <CheckPagePermissions permissions={pluginPermissions.readProviders}>
+    <ProvidersPage />
+  </CheckPagePermissions>
+);
+
 const ProvidersPage = () => {
   const { formatMessage } = useIntl();
   const { trackUsage } = useTracking();
@@ -279,4 +286,4 @@ const ProvidersPage = () => {
   );
 };
 
-export default ProvidersPage;
+export default ProtectedProvidersPage;

package/admin/src/pages/Roles/CreatePage/index.js

@@ -33,7 +33,7 @@ const CreatePage = () => {
     return [
       {
         label: formatMessage({
-          id: getTrad('app.components.Button.reset'),
+          id: 'app.components.Button.reset',
           defaultMessage: 'Reset',
         }),
         onClick: () => {

package/admin/src/pages/Roles/EditPage/index.js

@@ -37,7 +37,7 @@ const EditPage = () => {
     return [
       {
         label: formatMessage({
-          id: getTrad('app.components.Button.reset'),
+          id: 'app.components.Button.reset',
           defaultMessage: 'Reset',
         }),
         onClick: () => {
@@ -49,7 +49,7 @@ const EditPage = () => {
       },
       {
         label: formatMessage({
-          id: getTrad('app.components.Button.save'),
+          id: 'app.components.Button.save',
           defaultMessage: 'Save',
         }),
         onClick: handleSubmit,

package/admin/src/pages/Roles/ListPage/index.js

@@ -100,7 +100,7 @@ const RoleListPage = () => {
     ? [
         {
           label: formatMessage({
-            id: 'List.button.roles',
+            id: getTrad('List.button.roles'),
             defaultMessage: 'Add new role',
           }),
           onClick: handleNewRoleClick,

package/admin/src/pages/Roles/index.js

@@ -1,20 +1,26 @@
 import React from 'react';
 import { Switch, Route } from 'react-router-dom';
-import { NotFound } from '@strapi/helper-plugin';
+import { CheckPagePermissions, NotFound } from '@strapi/helper-plugin';
 import pluginId from '../../pluginId';
-
+import pluginPermissions from '../../permissions';
 import ProtectedRolesListPage from './ProtectedListPage';
 import ProtectedRolesEditPage from './ProtectedEditPage';
 import ProtectedRolesCreatePage from './ProtectedCreatePage';
 
 const Roles = () => {
   return (
-    <Switch>
-      <Route path={`/settings/${pluginId}/roles/new`} component={ProtectedRolesCreatePage} exact />
-      <Route path={`/settings/${pluginId}/roles/:id`} component={ProtectedRolesEditPage} exact />
-      <Route path={`/settings/${pluginId}/roles`} component={ProtectedRolesListPage} exact />
-      <Route path="" component={NotFound} />
-    </Switch>
+    <CheckPagePermissions permissions={pluginPermissions.accessRoles}>
+      <Switch>
+        <Route
+          path={`/settings/${pluginId}/roles/new`}
+          component={ProtectedRolesCreatePage}
+          exact
+        />
+        <Route path={`/settings/${pluginId}/roles/:id`} component={ProtectedRolesEditPage} exact />
+        <Route path={`/settings/${pluginId}/roles`} component={ProtectedRolesListPage} exact />
+        <Route path="" component={NotFound} />
+      </Switch>
+    </CheckPagePermissions>
   );
 };
 

package/admin/src/permissions.js

@@ -1,33 +1,31 @@
 const pluginPermissions = {
   // Roles
   accessRoles: [
-    { action: 'plugins::users-permissions.roles.create', subject: null },
-    { action: 'plugins::users-permissions.roles.read', subject: null },
+    { action: 'plugin::users-permissions.roles.create', subject: null },
+    { action: 'plugin::users-permissions.roles.read', subject: null },
   ],
-  createRole: [{ action: 'plugins::users-permissions.roles.create', subject: null }],
-  deleteRole: [{ action: 'plugins::users-permissions.roles.delete', subject: null }],
-  readRoles: [{ action: 'plugins::users-permissions.roles.read', subject: null }],
-  updateRole: [{ action: 'plugins::users-permissions.roles.update', subject: null }],
+  createRole: [{ action: 'plugin::users-permissions.roles.create', subject: null }],
+  deleteRole: [{ action: 'plugin::users-permissions.roles.delete', subject: null }],
+  readRoles: [{ action: 'plugin::users-permissions.roles.read', subject: null }],
+  updateRole: [{ action: 'plugin::users-permissions.roles.update', subject: null }],
 
   // AdvancedSettings
   readAdvancedSettings: [
-    { action: 'plugins::users-permissions.advanced-settings.read', subject: null },
+    { action: 'plugin::users-permissions.advanced-settings.read', subject: null },
   ],
   updateAdvancedSettings: [
-    { action: 'plugins::users-permissions.advanced-settings.update', subject: null },
+    { action: 'plugin::users-permissions.advanced-settings.update', subject: null },
   ],
 
   // Emails
-  readEmailTemplates: [
-    { action: 'plugins::users-permissions.email-templates.read', subject: null },
-  ],
+  readEmailTemplates: [{ action: 'plugin::users-permissions.email-templates.read', subject: null }],
   updateEmailTemplates: [
-    { action: 'plugins::users-permissions.email-templates.update', subject: null },
+    { action: 'plugin::users-permissions.email-templates.update', subject: null },
   ],
 
   // Providers
-  readProviders: [{ action: 'plugins::users-permissions.providers.read', subject: null }],
-  updateProviders: [{ action: 'plugins::users-permissions.providers.update', subject: null }],
+  readProviders: [{ action: 'plugin::users-permissions.providers.read', subject: null }],
+  updateProviders: [{ action: 'plugin::users-permissions.providers.update', subject: null }],
 };
 
 export default pluginPermissions;

package/admin/src/translations/en.json

@@ -12,6 +12,9 @@
   "EditForm.inputToggle.label.email-confirmation-redirection": "Redirection url",
   "EditForm.inputToggle.label.email-reset-password": "Reset password page",
   "EditForm.inputToggle.label.sign-up": "Enable sign-ups",
+  "EditForm.inputToggle.placeholder.email-reset-password": "ex: https://yourfrontend.com/reset-password",
+  "EditForm.inputToggle.placeholder.email-confirmation-redirection": "ex: https://yourfrontend.com/reset-password",
+  "EditPage.form.roles": "Role details",
   "Email.template.email_confirmation": "Email address confirmation",
   "Email.template.reset_password": "Reset password",
   "HeaderNav.link.advancedSettings": "Advanced settings",
@@ -24,6 +27,7 @@
   "List.title.providers.disabled.singular": "{number} is disabled",
   "List.title.providers.enabled.plural": "{number} providers are enabled and",
   "List.title.providers.enabled.singular": "{number} provider is enabled and",
+  "Form.title.advancedSettings": "Settings",
   "Plugin.permissions.plugins.description": "Define all allowed actions for the {name} plugin.",
   "Plugins.header.description": "Only actions bound by a route are listed below.",
   "Plugins.header.title": "Permissions",

package/admin/src/translations/zh-Hans.json

@@ -1,4 +1,5 @@
 {
+  "page.title": "设置 - 角色",
   "BoundRoute.title": "绑定路由到",
   "EditForm.inputSelect.description.role": "新验证身份的用户将被赋予所选角色。",
   "EditForm.inputSelect.label.role": "认证用户的默认角色",
@@ -12,16 +13,23 @@
   "EditForm.inputToggle.label.email-confirmation-redirection": "重定向 URL",
   "EditForm.inputToggle.label.email-reset-password": "重置密码页面 URL",
   "EditForm.inputToggle.label.sign-up": "启用注册",
+  "EditForm.inputToggle.placeholder.email-reset-password": "例如: https://yourfrontend.com/reset-password",
+  "EditForm.inputToggle.placeholder.email-confirmation-redirection": "例如: https://yourfrontend.com/reset-password",
+  "EditPage.form.roles": "角色详情",
+  "Email.template.email_confirmation": "邮箱地址确认",
+  "Email.template.reset_password": "重置密码",
   "HeaderNav.link.advancedSettings": "高级设置",
   "HeaderNav.link.emailTemplates": "电子邮件模板",
   "HeaderNav.link.providers": "提供者",
   "HeaderNav.link.roles": "角色和权限",
+  "List.button.roles": "添加新的角色",
   "List.title.emailTemplates.plural": "{number} 电子邮件模板是可用的",
   "List.title.emailTemplates.singular": "{number} 电子邮件模板是可用的",
   "List.title.providers.disabled.plural": "{number} 被禁用",
   "List.title.providers.disabled.singular": "{number} 被禁用",
   "List.title.providers.enabled.plural": "{number} 个供应商被启用, ",
   "List.title.providers.enabled.singular": "{number} 个供应商被启用, ",
+  "Form.title.advancedSettings": "设置",
   "Plugin.permissions.plugins.description": "定义 {name} 插件所有允许的操作。",
   "Plugins.header.description": "下面只列出路由绑定的操作。",
   "Plugins.header.title": "权限",
@@ -30,26 +38,37 @@
   "Policies.header.hint": "选择应用程序或插件的操作，然后点击 COG 图标显示绑定的路由",
   "Policies.header.title": "高级设置",
   "PopUpForm.Email.email_templates.inputDescription": "如果你不确定如何使用变量， {link}",
-  "PopUpForm.Email.options.from.email.label": "Shipper 电子邮件地址",
+  "PopUpForm.Email.link.documentation": "查看我们的文档",
+  "PopUpForm.Email.options.from.email.label": "发件人地址",
   "PopUpForm.Email.options.from.email.placeholder": "kai@doe.com",
-  "PopUpForm.Email.options.from.name.label": "Shipper 名称",
+  "PopUpForm.Email.options.from.name.label": "发件人名称",
   "PopUpForm.Email.options.from.name.placeholder": "Kai Doe",
   "PopUpForm.Email.options.message.label": "消息",
   "PopUpForm.Email.options.object.label": "主题",
-  "PopUpForm.Email.options.response_email.label": "回复电子邮件",
+  "PopUpForm.Email.options.object.placeholder": "请为%APP_NAME%确认邮箱地址",
+  "PopUpForm.Email.options.response_email.label": "回复邮件",
   "PopUpForm.Email.options.response_email.placeholder": "kai@doe.com",
   "PopUpForm.Providers.enabled.description": "如果禁用，用户将无法使用此供应商。",
   "PopUpForm.Providers.enabled.label": "启用",
-  "PopUpForm.Providers.key.label": "Client ID",
+  "PopUpForm.Providers.key.label": "客户端 ID",
   "PopUpForm.Providers.key.placeholder": "文本",
   "PopUpForm.Providers.redirectURL.front-end.label": "重定向 URL",
-  "PopUpForm.Providers.secret.label": "Client Secret",
+  "PopUpForm.Providers.redirectURL.label": "添加到{provider}应用配置的跳转URL",
+  "PopUpForm.Providers.secret.label": "客户端秘钥",
   "PopUpForm.Providers.secret.placeholder": "文本",
+  "PopUpForm.header.edit.email-templates": "编辑电子邮件模版",
+  "PopUpForm.header.edit.providers": "编辑提供商",
   "PopUpForm.Providers.subdomain.label": "Host URI (Subdomain)",
   "PopUpForm.Providers.subdomain.placeholder": "my.subdomain.com",
-  "PopUpForm.header.edit.email-templates": "编辑电子邮件模版",
+  "Settings.roles.deleted": "角色已被删除",
+  "Settings.roles.edited": "角色编辑完成",
+  "Settings.section-label": "用户及权限插件",
   "notification.success.submit": "设置已被更新",
   "plugin.description.long": "使用基于 JWT 的完整身份验证过程来保护 API。这个插件还有一个 ACL 策略，允许你管理用户组之间的权限。",
   "plugin.description.short": "使用基于 JWT 的完整身份验证过程保护 API",
-  "plugin.name": "角色 & 权限"
+  "plugin.name": "角色及权限",
+  "popUpWarning.button.cancel": "取消",
+  "popUpWarning.button.confirm": "确认",
+  "popUpWarning.title": "请确认",
+  "popUpWarning.warning.cancel": "你确定你要取消你的修改？"
 }

package/documentation/1.0.0/overrides/users-permissions-Role.json

@@ -67,16 +67,16 @@
                           "role": {
                             "type": "string"
                           },
-                          "created_by": {
+                          "createdBy": {
                             "type": "string"
                           },
-                          "updated_by": {
+                          "updatedBy": {
                             "type": "string"
                           }
                         }
                       }
                     },
-                    "created_by": {
+                    "createdBy": {
                       "required": ["id", "email"],
                       "properties": {
                         "id": {
@@ -117,7 +117,7 @@
                         }
                       }
                     },
-                    "updated_by": {
+                    "updatedBy": {
                       "required": ["id", "email"],
                       "properties": {
                         "id": {
@@ -192,7 +192,7 @@
                       "type": {
                         "type": "string"
                       },
-                      "created_by": {
+                      "createdBy": {
                         "required": ["id", "email"],
                         "properties": {
                           "id": {
@@ -233,7 +233,7 @@
                           }
                         }
                       },
-                      "updated_by": {
+                      "updatedBy": {
                         "required": ["id", "email"],
                         "properties": {
                           "id": {

package/package.json

@@ -1,20 +1,22 @@
 {
   "name": "@strapi/plugin-users-permissions",
-  "version": "4.0.0-next.1",
+  "version": "4.0.0-next.13",
   "description": "Protect your API with a full-authentication process based on JWT",
   "strapi": {
-    "name": "Roles & Permissions",
+    "displayName": "Roles & Permissions",
+    "name": "users-permissions",
     "icon": "users",
     "description": "users-permissions.plugin.description",
-    "required": true
+    "required": true,
+    "kind": "plugin"
   },
   "scripts": {
     "test": "echo \"no tests yet\""
   },
   "dependencies": {
     "@purest/providers": "^1.0.2",
-    "@strapi/helper-plugin": "4.0.0-next.1",
-    "@strapi/utils": "4.0.0-next.1",
+    "@strapi/helper-plugin": "4.0.0-next.13",
+    "@strapi/utils": "4.0.0-next.13",
     "bcryptjs": "^2.4.3",
     "grant-koa": "5.4.8",
     "jsonwebtoken": "^8.1.0",
@@ -56,5 +58,5 @@
     "npm": ">=6.0.0"
   },
   "license": "SEE LICENSE IN LICENSE",
-  "gitHead": "46c94940a71d744b724c5d1a8101601270abb923"
+  "gitHead": "c1369c796034fb1b57471498eb1e0c75ce2d7715"
 }

package/{config/functions/bootstrap.js → server/bootstrap/index.js}

@@ -9,16 +9,12 @@
  */
 const _ = require('lodash');
 const uuid = require('uuid/v4');
-const { getService } = require('../../utils');
+const { getService } = require('../utils');
 
-const usersPermissionsActions = require('../users-permissions-actions');
+const usersPermissionsActions = require('./users-permissions-actions');
 
 module.exports = async () => {
-  const pluginStore = strapi.store({
-    environment: '',
-    type: 'plugin',
-    name: 'users-permissions',
-  });
+  const pluginStore = strapi.store({ type: 'plugin', name: 'users-permissions' });
 
   await initGrant(pluginStore);
   await initEmails(pluginStore);
@@ -30,19 +26,14 @@ module.exports = async () => {
 
   await getService('users-permissions').initialize();
 
-  if (!_.get(strapi.plugins['users-permissions'], 'config.jwtSecret')) {
+  // TODO: adapt with new extension system
+  if (!strapi.config.get('plugin.users-permissions.jwtSecret')) {
     const jwtSecret = uuid();
-    _.set(strapi.plugins['users-permissions'], 'config.jwtSecret', jwtSecret);
+    strapi.config.set('plugin.users-permissions.jwtSecret', jwtSecret);
 
-    strapi.reload.isWatching = false;
-
-    await strapi.fs.writePluginFile(
-      'users-permissions',
-      'config/jwt.js',
-      `module.exports = {\n  jwtSecret: process.env.JWT_SECRET || '${jwtSecret}'\n};`
-    );
-
-    strapi.reload.isWatching = true;
+    if (!process.env.JWT_SECRET) {
+      strapi.fs.appendFile('.env', `JWT_SECRET=${jwtSecret}\n`);
+    }
   }
 };
 

package/server/config.js

@@ -0,0 +1,23 @@
+'use strict';
+
+module.exports = {
+  default: ({ env }) => ({
+    jwtSecret: env('JWT_SECRET'),
+    jwt: {
+      expiresIn: '30d',
+    },
+    ratelimit: {
+      interval: 60000,
+      max: 10,
+    },
+    layout: {
+      user: {
+        actions: {
+          create: 'User.create', // Use the User plugin's controller.
+          update: 'User.update',
+        },
+      },
+    },
+  }),
+  validator() {},
+};

package/server/content-types/index.js

@@ -0,0 +1,11 @@
+'use strict';
+
+const permission = require('./permission');
+const role = require('./role');
+const user = require('./user');
+
+module.exports = {
+  permission: { schema: permission },
+  role: { schema: role },
+  user: { schema: user },
+};

package/server/content-types/permission/index.js

@@ -0,0 +1,31 @@
+'use strict';
+
+module.exports = {
+  collectionName: 'up_permissions',
+  info: {
+    name: 'permission',
+    description: '',
+    singularName: 'permission',
+    pluralName: 'permissions',
+    displayName: 'Permission',
+  },
+  pluginOptions: {
+    'content-manager': {
+      visible: false,
+    },
+  },
+  attributes: {
+    action: {
+      type: 'string',
+      required: true,
+      configurable: false,
+    },
+    role: {
+      type: 'relation',
+      relation: 'manyToOne',
+      target: 'plugin::users-permissions.role',
+      inversedBy: 'permissions',
+      configurable: false,
+    },
+  },
+};