npm - @strapi/plugin-users-permissions - Versions diffs - 4.0.0-next.6 → 4.0.0 - Mend

@strapi/plugin-users-permissions 4.0.0-next.6 → 4.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (196) hide show

package/admin/src/components/BoundRoute/getMethodColor.js +41 -0
package/admin/src/components/BoundRoute/index.js +40 -24
package/admin/src/components/FormModal/Input/index.js +121 -0
package/admin/src/components/FormModal/index.js +123 -0
package/admin/src/components/Permissions/PermissionRow/CheckboxWrapper.js +19 -26
package/admin/src/components/Permissions/PermissionRow/SubCategory.js +118 -0
package/admin/src/components/Permissions/PermissionRow/index.js +9 -48
package/admin/src/components/Permissions/index.js +36 -24
package/admin/src/components/Permissions/init.js +1 -6
package/admin/src/components/Policies/index.js +46 -47
package/admin/src/components/UsersPermissions/index.js +29 -26
package/admin/src/components/UsersPermissions/init.js +1 -2
package/admin/src/hooks/useFetchRole/index.js +17 -7
package/admin/src/hooks/useForm/index.js +3 -29
package/admin/src/hooks/useForm/reducer.js +2 -21
package/admin/src/hooks/usePlugins/index.js +12 -21
package/admin/src/hooks/usePlugins/reducer.js +0 -3
package/admin/src/index.js +29 -34
package/admin/src/pages/AdvancedSettings/index.js +210 -193
package/admin/src/pages/AdvancedSettings/utils/api.js +13 -0
package/admin/src/pages/AdvancedSettings/utils/layout.js +96 -0
package/admin/src/pages/AdvancedSettings/utils/schema.js +22 -0
package/admin/src/pages/EmailTemplates/components/EmailForm.js +173 -0
package/admin/src/pages/EmailTemplates/components/EmailTable.js +116 -0
package/admin/src/pages/EmailTemplates/index.js +125 -198
package/admin/src/pages/EmailTemplates/utils/api.js +13 -0
package/admin/src/pages/Providers/index.js +208 -216
package/admin/src/pages/Providers/utils/api.js +21 -0
package/admin/src/pages/Providers/utils/forms.js +168 -126
package/admin/src/pages/Roles/CreatePage/index.js +155 -147
package/admin/src/pages/Roles/EditPage/index.js +162 -134
package/admin/src/pages/Roles/ListPage/components/TableBody.js +96 -0
package/admin/src/pages/Roles/ListPage/index.js +176 -156
package/admin/src/pages/Roles/ListPage/utils/api.js +28 -0
package/admin/src/pages/Roles/index.js +14 -8
package/admin/src/permissions.js +12 -14
package/admin/src/translations/ar.json +0 -8
package/admin/src/translations/cs.json +0 -8
package/admin/src/translations/de.json +0 -8
package/admin/src/translations/dk.json +0 -8
package/admin/src/translations/en.json +33 -12
package/admin/src/translations/es.json +0 -8
package/admin/src/translations/fr.json +0 -8
package/admin/src/translations/id.json +0 -8
package/admin/src/translations/it.json +0 -8
package/admin/src/translations/ja.json +0 -8
package/admin/src/translations/ko.json +0 -8
package/admin/src/translations/ms.json +0 -8
package/admin/src/translations/nl.json +0 -8
package/admin/src/translations/pl.json +0 -8
package/admin/src/translations/pt-BR.json +0 -8
package/admin/src/translations/pt.json +0 -8
package/admin/src/translations/ru.json +0 -8
package/admin/src/translations/sk.json +0 -8
package/admin/src/translations/sv.json +0 -8
package/admin/src/translations/th.json +0 -8
package/admin/src/translations/tr.json +0 -8
package/admin/src/translations/uk.json +0 -8
package/admin/src/translations/vi.json +0 -8
package/admin/src/translations/zh-Hans.json +5 -14
package/admin/src/translations/zh.json +0 -8
package/admin/src/utils/axiosInstance.js +36 -0
package/admin/src/utils/formatPluginName.js +26 -0
package/admin/src/utils/index.js +1 -0
package/documentation/1.0.0/overrides/users-permissions-Role.json +6 -6
package/documentation/1.0.0/overrides/users-permissions-User.json +7 -7
package/package.json +30 -29
package/{config/functions/bootstrap.js → server/bootstrap/index.js} +26 -33
package/{config → server/bootstrap}/users-permissions-actions.js +0 -0
package/server/config.js +23 -0
package/server/content-types/index.js +11 -0
package/server/content-types/permission/index.js +34 -0
package/server/content-types/role/index.js +51 -0
package/server/content-types/user/index.js +72 -0
package/{models/User.config.js → server/content-types/user/schema-config.js} +0 -0
package/server/controllers/auth.js +440 -0
package/server/controllers/content-manager-user.js +183 -0
package/server/controllers/index.js +17 -0
package/server/controllers/permissions.js +26 -0
package/server/controllers/role.js +77 -0
package/server/controllers/settings.js +85 -0
package/server/controllers/user.js +191 -0
package/server/controllers/validation/auth.js +29 -0
package/{controllers → server/controllers}/validation/email-template.js +0 -0
package/server/controllers/validation/user.js +38 -0
package/server/graphql/index.js +44 -0
package/server/graphql/mutations/auth/email-confirmation.js +39 -0
package/server/graphql/mutations/auth/forgot-password.js +38 -0
package/server/graphql/mutations/auth/login.js +38 -0
package/server/graphql/mutations/auth/register.js +39 -0
package/server/graphql/mutations/auth/reset-password.js +41 -0
package/server/graphql/mutations/crud/role/create-role.js +37 -0
package/server/graphql/mutations/crud/role/delete-role.js +28 -0
package/server/graphql/mutations/crud/role/update-role.js +38 -0
package/server/graphql/mutations/crud/user/create-user.js +48 -0
package/server/graphql/mutations/crud/user/delete-user.js +42 -0
package/server/graphql/mutations/crud/user/update-user.js +49 -0
package/server/graphql/mutations/index.js +42 -0
package/server/graphql/queries/index.js +13 -0
package/server/graphql/queries/me.js +17 -0
package/server/graphql/resolvers-configs.js +37 -0
package/server/graphql/types/create-role-payload.js +11 -0
package/server/graphql/types/delete-role-payload.js +11 -0
package/server/graphql/types/index.js +21 -0
package/server/graphql/types/login-input.js +13 -0
package/server/graphql/types/login-payload.js +12 -0
package/server/graphql/types/me-role.js +14 -0
package/server/graphql/types/me.js +16 -0
package/server/graphql/types/password-payload.js +11 -0
package/server/graphql/types/register-input.js +13 -0
package/server/graphql/types/update-role-payload.js +11 -0
package/server/graphql/utils.js +27 -0
package/server/index.js +21 -0
package/server/middlewares/index.js +7 -0
package/{config/policies → server/middlewares}/rateLimit.js +4 -8
package/server/register.js +11 -0
package/server/routes/admin/index.js +10 -0
package/server/routes/admin/permissions.js +20 -0
package/server/routes/admin/role.js +79 -0
package/server/routes/admin/settings.js +95 -0
package/server/routes/content-api/auth.js +73 -0
package/server/routes/content-api/index.js +11 -0
package/server/routes/content-api/permissions.js +9 -0
package/server/routes/content-api/role.js +29 -0
package/server/routes/content-api/user.js +61 -0
package/server/routes/index.js +6 -0
package/server/services/index.js +15 -0
package/server/services/jwt.js +55 -0
package/server/services/providers.js +599 -0
package/server/services/role.js +177 -0
package/{services → server/services}/user.js +32 -35
package/server/services/users-permissions.js +233 -0
package/server/strategies/users-permissions.js +123 -0
package/{utils → server/utils}/index.d.ts +6 -1
package/server/utils/index.js +9 -0
package/strapi-admin.js +3 -0
package/strapi-server.js +3 -0
package/admin/src/assets/images/logo.svg +0 -1
package/admin/src/components/BaselineAlignement/index.js +0 -33
package/admin/src/components/Bloc/index.js +0 -10
package/admin/src/components/BoundRoute/Components.js +0 -78
package/admin/src/components/ContainerFluid/index.js +0 -13
package/admin/src/components/FormBloc/index.js +0 -61
package/admin/src/components/IntlInput/index.js +0 -38
package/admin/src/components/ListBaselineAlignment/index.js +0 -8
package/admin/src/components/ListRow/Components.js +0 -74
package/admin/src/components/ListRow/index.js +0 -35
package/admin/src/components/ModalForm/Wrapper.js +0 -12
package/admin/src/components/ModalForm/index.js +0 -59
package/admin/src/components/Permissions/ListWrapper.js +0 -9
package/admin/src/components/Permissions/PermissionRow/BaselineAlignment.js +0 -7
package/admin/src/components/Permissions/PermissionRow/RowStyle.js +0 -28
package/admin/src/components/Permissions/PermissionRow/SubCategory/ConditionsButtonWrapper.js +0 -13
package/admin/src/components/Permissions/PermissionRow/SubCategory/PolicyWrapper.js +0 -8
package/admin/src/components/Permissions/PermissionRow/SubCategory/SubCategoryWrapper.js +0 -26
package/admin/src/components/Permissions/PermissionRow/SubCategory/index.js +0 -116
package/admin/src/components/Policies/Components.js +0 -26
package/admin/src/components/PrefixedIcon/index.js +0 -27
package/admin/src/components/Roles/EmptyRole/BaselineAlignment.js +0 -7
package/admin/src/components/Roles/EmptyRole/index.js +0 -27
package/admin/src/components/Roles/RoleListWrapper/index.js +0 -17
package/admin/src/components/Roles/RoleRow/RoleDescription.js +0 -9
package/admin/src/components/Roles/RoleRow/index.js +0 -45
package/admin/src/components/Roles/index.js +0 -3
package/admin/src/components/SizedInput/index.js +0 -24
package/admin/src/pages/AdvancedSettings/reducer.js +0 -65
package/admin/src/pages/AdvancedSettings/utils/form.js +0 -52
package/admin/src/pages/EmailTemplates/CustomTextInput.js +0 -105
package/admin/src/pages/EmailTemplates/Wrapper.js +0 -36
package/admin/src/pages/EmailTemplates/reducer.js +0 -58
package/admin/src/pages/EmailTemplates/utils/forms.js +0 -81
package/admin/src/pages/Roles/ListPage/BaselineAlignment.js +0 -8
package/config/layout.js +0 -10
package/config/policies/isAuthenticated.js +0 -9
package/config/policies/permissions.js +0 -94
package/config/request.json +0 -6
package/config/routes.json +0 -381
package/config/schema.graphql.js +0 -284
package/config/security.json +0 -5
package/controllers/auth.js +0 -596
package/controllers/user/admin.js +0 -230
package/controllers/user/api.js +0 -174
package/controllers/user.js +0 -117
package/controllers/users-permissions.js +0 -271
package/middlewares/users-permissions/defaults.json +0 -5
package/middlewares/users-permissions/index.js +0 -40
package/models/Permission.js +0 -7
package/models/Permission.settings.json +0 -45
package/models/Role.js +0 -7
package/models/Role.settings.json +0 -43
package/models/User.js +0 -7
package/models/User.settings.json +0 -63
package/services/jwt.js +0 -65
package/services/providers.js +0 -598
package/services/users-permissions.js +0 -429
package/utils/index.js +0 -11

package/controllers/user/admin.js DELETED Viewed

@@ -1,230 +0,0 @@
-'use strict';
-const _ = require('lodash');
-const { contentTypes: contentTypesUtils } = require('@strapi/utils');
-const { getService } = require('../../utils');
-const { UPDATED_BY_ATTRIBUTE, CREATED_BY_ATTRIBUTE } = contentTypesUtils.constants;
-const formatError = error => [
-  { messages: [{ id: error.id, message: error.message, field: error.field }] },
-];
-const userModel = 'plugins::users-permissions.user';
-const ACTIONS = {
-  read: 'plugins::content-manager.explorer.read',
-  create: 'plugins::content-manager.explorer.create',
-  edit: 'plugins::content-manager.explorer.update',
-  delete: 'plugins::content-manager.explorer.delete',
-};
-const findEntityAndCheckPermissions = async (ability, action, model, id) => {
-  const entity = await strapi.query('plugins::users-permissions.user').findOne({ where: { id } });
-  if (_.isNil(entity)) {
-    throw strapi.errors.notFound();
-  }
-  const pm = strapi.admin.services.permission.createPermissionsManager({ ability, action, model });
-  const roles = _.has(entity, `${CREATED_BY_ATTRIBUTE}.id`)
-    ? await strapi.query('strapi::role').findMany({
-        where: {
-          users: { id: entity[CREATED_BY_ATTRIBUTE].id },
-        },
-      })
-    : [];
-  const entityWithRoles = _.set(_.cloneDeep(entity), `${CREATED_BY_ATTRIBUTE}.roles`, roles);
-  if (pm.ability.cannot(pm.action, pm.toSubject(entityWithRoles))) {
-    throw strapi.errors.forbidden();
-  }
-  return { pm, entity };
-};
-module.exports = {
-  /**
-   * Create a/an user record.
-   * @return {Object}
-   */
-  async create(ctx) {
-    const {
-      request: { body },
-      state: { userAbility, admin },
-    } = ctx;
-    const { email, username, password } = body;
-    const pm = strapi.admin.services.permission.createPermissionsManager({
-      ability: userAbility,
-      action: ACTIONS.create,
-      model: userModel,
-    });
-    if (!pm.isAllowed) {
-      throw strapi.errors.forbidden();
-    }
-    const sanitizedBody = pm.pickPermittedFieldsOf(body, { subject: userModel });
-    const advanced = await strapi
-      .store({
-        environment: '',
-        type: 'plugin',
-        name: 'users-permissions',
-        key: 'advanced',
-      })
-      .get();
-    if (!email) return ctx.badRequest('missing.email');
-    if (!username) return ctx.badRequest('missing.username');
-    if (!password) return ctx.badRequest('missing.password');
-    const userWithSameUsername = await strapi
-      .query('plugins::users-permissions.user')
-      .findOne({ where: { username } });
-    if (userWithSameUsername) {
-      return ctx.badRequest(
-        null,
-        formatError({
-          id: 'Auth.form.error.username.taken',
-          message: 'Username already taken.',
-          field: ['username'],
-        })
-      );
-    }
-    if (advanced.unique_email) {
-      const userWithSameEmail = await strapi
-        .query('plugins::users-permissions.user')
-        .findOne({ where: { email: email.toLowerCase() } });
-      if (userWithSameEmail) {
-        return ctx.badRequest(
-          null,
-          formatError({
-            id: 'Auth.form.error.email.taken',
-            message: 'Email already taken.',
-            field: ['email'],
-          })
-        );
-      }
-    }
-    const user = {
-      ...sanitizedBody,
-      provider: 'local',
-      [CREATED_BY_ATTRIBUTE]: admin.id,
-      [UPDATED_BY_ATTRIBUTE]: admin.id,
-    };
-    user.email = user.email.toLowerCase();
-    if (!user.role) {
-      const defaultRole = await strapi
-        .query('plugins::users-permissions.role')
-        .findOne({ where: { type: advanced.default_role } });
-      user.role = defaultRole.id;
-    }
-    try {
-      const data = await strapi.plugins['users-permissions'].services.user.add(user);
-      ctx.created(pm.sanitize(data, { action: ACTIONS.read }));
-    } catch (error) {
-      ctx.badRequest(null, formatError(error));
-    }
-  },
-  /**
-   * Update a/an user record.
-   * @return {Object}
-   */
-  async update(ctx) {
-    const advancedConfigs = await strapi
-      .store({
-        environment: '',
-        type: 'plugin',
-        name: 'users-permissions',
-        key: 'advanced',
-      })
-      .get();
-    const {
-      params: { id },
-      request: { body },
-      state: { userAbility, admin },
-    } = ctx;
-    const { email, username, password } = body;
-    const { pm, entity: user } = await findEntityAndCheckPermissions(
-      userAbility,
-      ACTIONS.edit,
-      userModel,
-      id
-    );
-    if (_.has(body, 'email') && !email) {
-      return ctx.badRequest('email.notNull');
-    }
-    if (_.has(body, 'username') && !username) {
-      return ctx.badRequest('username.notNull');
-    }
-    if (_.has(body, 'password') && !password && user.provider === 'local') {
-      return ctx.badRequest('password.notNull');
-    }
-    if (_.has(body, 'username')) {
-      const userWithSameUsername = await strapi
-        .query('plugins::users-permissions.user')
-        .findOne({ where: { username } });
-      if (userWithSameUsername && userWithSameUsername.id != id) {
-        return ctx.badRequest(
-          null,
-          formatError({
-            id: 'Auth.form.error.username.taken',
-            message: 'username.alreadyTaken.',
-            field: ['username'],
-          })
-        );
-      }
-    }
-    if (_.has(body, 'email') && advancedConfigs.unique_email) {
-      const userWithSameEmail = await strapi
-        .query('plugins::users-permissions.user')
-        .findOne({ where: { email: email.toLowerCase() } });
-      if (userWithSameEmail && userWithSameEmail.id != id) {
-        return ctx.badRequest(
-          null,
-          formatError({
-            id: 'Auth.form.error.email.taken',
-            message: 'Email already taken',
-            field: ['email'],
-          })
-        );
-      }
-      body.email = body.email.toLowerCase();
-    }
-    const sanitizedData = pm.pickPermittedFieldsOf(body, { subject: pm.toSubject(user) });
-    const updateData = _.omit({ ...sanitizedData, updated_by: admin.id }, 'created_by');
-    if (_.has(body, 'password') && password === user.password) {
-      delete updateData.password;
-    }
-    const data = await getService('user').edit({ id }, updateData);
-    ctx.body = pm.sanitize(data, { action: ACTIONS.read });
-  },
-};

package/controllers/user/api.js DELETED Viewed

@@ -1,174 +0,0 @@
-'use strict';
-const _ = require('lodash');
-const { sanitizeEntity } = require('@strapi/utils');
-const { getService } = require('../../utils');
-const sanitizeUser = user =>
-  sanitizeEntity(user, {
-    model: strapi.getModel('plugins::users-permissions.user'),
-  });
-const formatError = error => [
-  { messages: [{ id: error.id, message: error.message, field: error.field }] },
-];
-module.exports = {
-  /**
-   * Create a/an user record.
-   * @return {Object}
-   */
-  async create(ctx) {
-    const advanced = await strapi
-      .store({
-        environment: '',
-        type: 'plugin',
-        name: 'users-permissions',
-        key: 'advanced',
-      })
-      .get();
-    const { email, username, password, role } = ctx.request.body;
-    if (!email) return ctx.badRequest('missing.email');
-    if (!username) return ctx.badRequest('missing.username');
-    if (!password) return ctx.badRequest('missing.password');
-    const userWithSameUsername = await strapi
-      .query('plugins::users-permissions.user')
-      .findOne({ where: { username } });
-    if (userWithSameUsername) {
-      return ctx.badRequest(
-        null,
-        formatError({
-          id: 'Auth.form.error.username.taken',
-          message: 'Username already taken.',
-          field: ['username'],
-        })
-      );
-    }
-    if (advanced.unique_email) {
-      const userWithSameEmail = await strapi
-        .query('plugins::users-permissions.user')
-        .findOne({ where: { email: email.toLowerCase() } });
-      if (userWithSameEmail) {
-        return ctx.badRequest(
-          null,
-          formatError({
-            id: 'Auth.form.error.email.taken',
-            message: 'Email already taken.',
-            field: ['email'],
-          })
-        );
-      }
-    }
-    const user = {
-      ...ctx.request.body,
-      provider: 'local',
-    };
-    user.email = user.email.toLowerCase();
-    if (!role) {
-      const defaultRole = await strapi
-        .query('plugins::users-permissions.role')
-        .findOne({ where: { type: advanced.default_role } });
-      user.role = defaultRole.id;
-    }
-    try {
-      const data = await getService('user').add(user);
-      ctx.created(sanitizeUser(data));
-    } catch (error) {
-      ctx.badRequest(null, formatError(error));
-    }
-  },
-  /**
-   * Update a/an user record.
-   * @return {Object}
-   */
-  async update(ctx) {
-    const advancedConfigs = await strapi
-      .store({
-        environment: '',
-        type: 'plugin',
-        name: 'users-permissions',
-        key: 'advanced',
-      })
-      .get();
-    const { id } = ctx.params;
-    const { email, username, password } = ctx.request.body;
-    const user = await getService('user').fetch({
-      id,
-    });
-    if (_.has(ctx.request.body, 'email') && !email) {
-      return ctx.badRequest('email.notNull');
-    }
-    if (_.has(ctx.request.body, 'username') && !username) {
-      return ctx.badRequest('username.notNull');
-    }
-    if (_.has(ctx.request.body, 'password') && !password && user.provider === 'local') {
-      return ctx.badRequest('password.notNull');
-    }
-    if (_.has(ctx.request.body, 'username')) {
-      const userWithSameUsername = await strapi
-        .query('plugins::users-permissions.user')
-        .findOne({ where: { username } });
-      if (userWithSameUsername && userWithSameUsername.id != id) {
-        return ctx.badRequest(
-          null,
-          formatError({
-            id: 'Auth.form.error.username.taken',
-            message: 'username.alreadyTaken.',
-            field: ['username'],
-          })
-        );
-      }
-    }
-    if (_.has(ctx.request.body, 'email') && advancedConfigs.unique_email) {
-      const userWithSameEmail = await strapi
-        .query('plugins::users-permissions.user')
-        .findOne({ where: { email: email.toLowerCase() } });
-      if (userWithSameEmail && userWithSameEmail.id != id) {
-        return ctx.badRequest(
-          null,
-          formatError({
-            id: 'Auth.form.error.email.taken',
-            message: 'Email already taken',
-            field: ['email'],
-          })
-        );
-      }
-      ctx.request.body.email = ctx.request.body.email.toLowerCase();
-    }
-    let updateData = {
-      ...ctx.request.body,
-    };
-    if (_.has(ctx.request.body, 'password') && password === user.password) {
-      delete updateData.password;
-    }
-    const data = await getService('user').edit({ id }, updateData);
-    ctx.send(sanitizeUser(data));
-  },
-};

package/controllers/user.js DELETED Viewed

@@ -1,117 +0,0 @@
-'use strict';
-/**
- * User.js controller
- *
- * @description: A set of functions called "actions" for managing `User`.
- */
-const _ = require('lodash');
-const { sanitizeEntity } = require('@strapi/utils');
-const { getService } = require('../utils');
-const adminUserController = require('./user/admin');
-const apiUserController = require('./user/api');
-const sanitizeUser = user =>
-  sanitizeEntity(user, {
-    model: strapi.getModel('plugins::users-permissions.user'),
-  });
-const resolveController = ctx => {
-  const {
-    state: { isAuthenticatedAdmin },
-  } = ctx;
-  return isAuthenticatedAdmin ? adminUserController : apiUserController;
-};
-const resolveControllerMethod = method => ctx => {
-  const controller = resolveController(ctx);
-  const callbackFn = controller[method];
-  if (!_.isFunction(callbackFn)) {
-    return ctx.notFound();
-  }
-  return callbackFn(ctx);
-};
-module.exports = {
-  create: resolveControllerMethod('create'),
-  update: resolveControllerMethod('update'),
-  /**
-   * Retrieve user records.
-   * @return {Object|Array}
-   */
-  async find(ctx, next, { populate } = {}) {
-    const users = await getService('user').fetchAll(ctx.query, populate);
-    ctx.body = users.map(sanitizeUser);
-  },
-  /**
-   * Retrieve a user record.
-   * @return {Object}
-   */
-  async findOne(ctx) {
-    const { id } = ctx.params;
-    let data = await getService('user').fetch({ id });
-    if (data) {
-      data = sanitizeUser(data);
-    }
-    // Send 200 `ok`
-    ctx.body = data;
-  },
-  /**
-   * Retrieve user count.
-   * @return {Number}
-   */
-  async count(ctx) {
-    ctx.body = await getService('user').count(ctx.query);
-  },
-  /**
-   * Destroy a/an user record.
-   * @return {Object}
-   */
-  async destroy(ctx) {
-    const { id } = ctx.params;
-    const data = await getService('user').remove({ id });
-    ctx.send(sanitizeUser(data));
-  },
-  async destroyAll(ctx) {
-    const {
-      request: { query },
-    } = ctx;
-    const toRemove = Object.values(_.omit(query, 'source'));
-    // FIXME: delete many
-    const finalQuery = { id: toRemove };
-    const data = await getService('user').removeAll(finalQuery);
-    ctx.send(data);
-  },
-  /**
-   * Retrieve authenticated user.
-   * @return {Object|Array}
-   */
-  async me(ctx) {
-    const user = ctx.state.user;
-    if (!user) {
-      return ctx.badRequest(null, [{ messages: [{ id: 'No authorization header was found' }] }]);
-    }
-    ctx.body = sanitizeUser(user);
-  },
-};