npm - @strapi/plugin-users-permissions - Versions diffs - 4.0.0-next.9 → 4.0.0 - Mend

@strapi/plugin-users-permissions 4.0.0-next.9 → 4.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (177) hide show

package/admin/src/components/BoundRoute/getMethodColor.js +41 -0
package/admin/src/components/BoundRoute/index.js +40 -24
package/admin/src/components/FormModal/Input/index.js +121 -0
package/admin/src/components/FormModal/index.js +123 -0
package/admin/src/components/Permissions/PermissionRow/CheckboxWrapper.js +19 -26
package/admin/src/components/Permissions/PermissionRow/SubCategory.js +118 -0
package/admin/src/components/Permissions/PermissionRow/index.js +9 -48
package/admin/src/components/Permissions/index.js +36 -24
package/admin/src/components/Permissions/init.js +1 -6
package/admin/src/components/Policies/index.js +46 -47
package/admin/src/components/UsersPermissions/index.js +29 -26
package/admin/src/components/UsersPermissions/init.js +1 -2
package/admin/src/hooks/useFetchRole/index.js +17 -7
package/admin/src/hooks/useForm/index.js +3 -29
package/admin/src/hooks/useForm/reducer.js +2 -21
package/admin/src/hooks/usePlugins/index.js +12 -21
package/admin/src/hooks/usePlugins/reducer.js +0 -3
package/admin/src/index.js +0 -8
package/admin/src/pages/AdvancedSettings/index.js +203 -193
package/admin/src/pages/AdvancedSettings/utils/api.js +13 -0
package/admin/src/pages/AdvancedSettings/utils/layout.js +96 -0
package/admin/src/pages/AdvancedSettings/utils/schema.js +22 -0
package/admin/src/pages/EmailTemplates/components/EmailForm.js +173 -0
package/admin/src/pages/EmailTemplates/components/EmailTable.js +116 -0
package/admin/src/pages/EmailTemplates/index.js +117 -197
package/admin/src/pages/EmailTemplates/utils/api.js +13 -0
package/admin/src/pages/Providers/index.js +206 -221
package/admin/src/pages/Providers/utils/api.js +21 -0
package/admin/src/pages/Providers/utils/forms.js +168 -126
package/admin/src/pages/Roles/CreatePage/index.js +155 -147
package/admin/src/pages/Roles/EditPage/index.js +162 -134
package/admin/src/pages/Roles/ListPage/components/TableBody.js +96 -0
package/admin/src/pages/Roles/ListPage/index.js +176 -156
package/admin/src/pages/Roles/ListPage/utils/api.js +28 -0
package/admin/src/translations/ar.json +0 -8
package/admin/src/translations/cs.json +0 -8
package/admin/src/translations/de.json +0 -8
package/admin/src/translations/dk.json +0 -8
package/admin/src/translations/en.json +33 -12
package/admin/src/translations/es.json +0 -8
package/admin/src/translations/fr.json +0 -8
package/admin/src/translations/id.json +0 -8
package/admin/src/translations/it.json +0 -8
package/admin/src/translations/ja.json +0 -8
package/admin/src/translations/ko.json +0 -8
package/admin/src/translations/ms.json +0 -8
package/admin/src/translations/nl.json +0 -8
package/admin/src/translations/pl.json +0 -8
package/admin/src/translations/pt-BR.json +0 -8
package/admin/src/translations/pt.json +0 -8
package/admin/src/translations/ru.json +0 -8
package/admin/src/translations/sk.json +0 -8
package/admin/src/translations/sv.json +0 -8
package/admin/src/translations/th.json +0 -8
package/admin/src/translations/tr.json +0 -8
package/admin/src/translations/uk.json +0 -8
package/admin/src/translations/vi.json +0 -8
package/admin/src/translations/zh-Hans.json +5 -14
package/admin/src/translations/zh.json +0 -8
package/admin/src/utils/axiosInstance.js +36 -0
package/admin/src/utils/formatPluginName.js +26 -0
package/admin/src/utils/index.js +1 -0
package/documentation/1.0.0/overrides/users-permissions-Role.json +6 -6
package/documentation/1.0.0/overrides/users-permissions-User.json +7 -7
package/package.json +30 -31
package/server/bootstrap/index.js +19 -21
package/server/config.js +3 -3
package/server/content-types/index.js +3 -3
package/server/content-types/permission/index.js +30 -3
package/server/content-types/role/index.js +47 -3
package/server/content-types/user/index.js +65 -4
package/server/controllers/auth.js +81 -244
package/server/controllers/content-manager-user.js +183 -0
package/server/controllers/index.js +12 -6
package/server/controllers/permissions.js +26 -0
package/server/controllers/role.js +77 -0
package/server/controllers/settings.js +85 -0
package/server/controllers/user.js +118 -44
package/server/controllers/validation/auth.js +29 -0
package/server/controllers/validation/user.js +38 -0
package/server/graphql/index.js +44 -0
package/server/graphql/mutations/auth/email-confirmation.js +39 -0
package/server/graphql/mutations/auth/forgot-password.js +38 -0
package/server/graphql/mutations/auth/login.js +38 -0
package/server/graphql/mutations/auth/register.js +39 -0
package/server/graphql/mutations/auth/reset-password.js +41 -0
package/server/graphql/mutations/crud/role/create-role.js +37 -0
package/server/graphql/mutations/crud/role/delete-role.js +28 -0
package/server/graphql/mutations/crud/role/update-role.js +38 -0
package/server/graphql/mutations/crud/user/create-user.js +48 -0
package/server/graphql/mutations/crud/user/delete-user.js +42 -0
package/server/graphql/mutations/crud/user/update-user.js +49 -0
package/server/graphql/mutations/index.js +42 -0
package/server/graphql/queries/index.js +13 -0
package/server/graphql/queries/me.js +17 -0
package/server/graphql/resolvers-configs.js +37 -0
package/server/graphql/types/create-role-payload.js +11 -0
package/server/graphql/types/delete-role-payload.js +11 -0
package/server/graphql/types/index.js +21 -0
package/server/graphql/types/login-input.js +13 -0
package/server/graphql/types/login-payload.js +12 -0
package/server/graphql/types/me-role.js +14 -0
package/server/graphql/types/me.js +16 -0
package/server/graphql/types/password-payload.js +11 -0
package/server/graphql/types/register-input.js +13 -0
package/server/graphql/types/update-role-payload.js +11 -0
package/server/graphql/utils.js +27 -0
package/server/index.js +21 -0
package/server/middlewares/index.js +2 -2
package/server/{policies → middlewares}/rateLimit.js +3 -7
package/server/register.js +11 -0
package/server/routes/admin/index.js +10 -0
package/server/routes/admin/permissions.js +20 -0
package/server/routes/admin/role.js +79 -0
package/server/routes/admin/settings.js +95 -0
package/server/routes/content-api/auth.js +73 -0
package/server/routes/content-api/index.js +11 -0
package/server/routes/content-api/permissions.js +9 -0
package/server/routes/content-api/role.js +29 -0
package/server/routes/content-api/user.js +61 -0
package/server/routes/index.js +4 -428
package/server/services/index.js +10 -8
package/server/services/jwt.js +9 -17
package/server/services/providers.js +32 -33
package/server/services/role.js +177 -0
package/server/services/user.js +9 -15
package/server/services/users-permissions.js +140 -338
package/server/strategies/users-permissions.js +123 -0
package/server/utils/index.d.ts +2 -0
package/strapi-admin.js +3 -0
package/strapi-server.js +1 -19
package/admin/src/assets/images/logo.svg +0 -1
package/admin/src/components/BaselineAlignement/index.js +0 -33
package/admin/src/components/Bloc/index.js +0 -10
package/admin/src/components/BoundRoute/Components.js +0 -78
package/admin/src/components/ContainerFluid/index.js +0 -13
package/admin/src/components/FormBloc/index.js +0 -61
package/admin/src/components/IntlInput/index.js +0 -38
package/admin/src/components/ListBaselineAlignment/index.js +0 -8
package/admin/src/components/ListRow/Components.js +0 -74
package/admin/src/components/ListRow/index.js +0 -35
package/admin/src/components/ModalForm/Wrapper.js +0 -12
package/admin/src/components/ModalForm/index.js +0 -59
package/admin/src/components/Permissions/ListWrapper.js +0 -9
package/admin/src/components/Permissions/PermissionRow/BaselineAlignment.js +0 -7
package/admin/src/components/Permissions/PermissionRow/RowStyle.js +0 -28
package/admin/src/components/Permissions/PermissionRow/SubCategory/ConditionsButtonWrapper.js +0 -13
package/admin/src/components/Permissions/PermissionRow/SubCategory/PolicyWrapper.js +0 -8
package/admin/src/components/Permissions/PermissionRow/SubCategory/SubCategoryWrapper.js +0 -26
package/admin/src/components/Permissions/PermissionRow/SubCategory/index.js +0 -116
package/admin/src/components/Policies/Components.js +0 -26
package/admin/src/components/PrefixedIcon/index.js +0 -27
package/admin/src/components/Roles/EmptyRole/BaselineAlignment.js +0 -7
package/admin/src/components/Roles/EmptyRole/index.js +0 -27
package/admin/src/components/Roles/RoleListWrapper/index.js +0 -17
package/admin/src/components/Roles/RoleRow/RoleDescription.js +0 -9
package/admin/src/components/Roles/RoleRow/index.js +0 -45
package/admin/src/components/Roles/index.js +0 -3
package/admin/src/components/SizedInput/index.js +0 -24
package/admin/src/pages/AdvancedSettings/reducer.js +0 -65
package/admin/src/pages/AdvancedSettings/utils/form.js +0 -52
package/admin/src/pages/EmailTemplates/CustomTextInput.js +0 -105
package/admin/src/pages/EmailTemplates/Wrapper.js +0 -36
package/admin/src/pages/EmailTemplates/reducer.js +0 -58
package/admin/src/pages/EmailTemplates/utils/forms.js +0 -81
package/admin/src/pages/Roles/ListPage/BaselineAlignment.js +0 -8
package/server/content-types/permission/schema.json +0 -48
package/server/content-types/role/schema.json +0 -46
package/server/content-types/user/schema.json +0 -66
package/server/controllers/user/admin.js +0 -230
package/server/controllers/user/api.js +0 -174
package/server/controllers/users-permissions.js +0 -271
package/server/middlewares/users-permissions.js +0 -44
package/server/policies/index.js +0 -11
package/server/policies/isAuthenticated.js +0 -9
package/server/policies/permissions.js +0 -94
package/server/schema.graphql.js +0 -317

package/server/content-types/role/schema.json DELETED Viewed

@@ -1,46 +0,0 @@
-{
-  "collectionName": "up_roles",
-  "info": {
-    "name": "role",
-    "description": "",
-    "singularName": "role",
-    "pluralName": "roles",
-    "displayName": "Role"
-  },
-  "pluginOptions": {
-    "content-manager": {
-      "visible": false
-    }
-  },
-  "attributes": {
-    "name": {
-      "type": "string",
-      "minLength": 3,
-      "required": true,
-      "configurable": false
-    },
-    "description": {
-      "type": "string",
-      "configurable": false
-    },
-    "type": {
-      "type": "string",
-      "unique": true,
-      "configurable": false
-    },
-    "permissions": {
-      "type": "relation",
-      "relation": "oneToMany",
-      "target": "plugin::users-permissions.permission",
-      "mappedBy": "role",
-      "configurable": false
-    },
-    "users": {
-      "type": "relation",
-      "relation": "oneToMany",
-      "target": "plugin::users-permissions.user",
-      "mappedBy": "role",
-      "configurable": false
-    }
-  }
-}

package/server/content-types/user/schema.json DELETED Viewed

@@ -1,66 +0,0 @@
-{
-  "collectionName": "up_users",
-  "info": {
-    "name": "user",
-    "description": "",
-    "singularName": "user",
-    "pluralName": "users",
-    "displayName": "User"
-  },
-  "options": {
-    "draftAndPublish": false,
-    "timestamps": true
-  },
-  "attributes": {
-    "username": {
-      "type": "string",
-      "minLength": 3,
-      "unique": true,
-      "configurable": false,
-      "required": true
-    },
-    "email": {
-      "type": "email",
-      "minLength": 6,
-      "configurable": false,
-      "required": true
-    },
-    "provider": {
-      "type": "string",
-      "configurable": false
-    },
-    "password": {
-      "type": "password",
-      "minLength": 6,
-      "configurable": false,
-      "private": true
-    },
-    "resetPasswordToken": {
-      "type": "string",
-      "configurable": false,
-      "private": true
-    },
-    "confirmationToken": {
-      "type": "string",
-      "configurable": false,
-      "private": true
-    },
-    "confirmed": {
-      "type": "boolean",
-      "default": false,
-      "configurable": false
-    },
-    "blocked": {
-      "type": "boolean",
-      "default": false,
-      "configurable": false
-    },
-    "role": {
-      "type": "relation",
-      "relation": "manyToOne",
-      "target": "plugin::users-permissions.role",
-      "inversedBy": "users",
-      "configurable": false
-    }
-  }
-}

package/server/controllers/user/admin.js DELETED Viewed

@@ -1,230 +0,0 @@
-'use strict';
-const _ = require('lodash');
-const { contentTypes: contentTypesUtils } = require('@strapi/utils');
-const { getService } = require('../../utils');
-const { UPDATED_BY_ATTRIBUTE, CREATED_BY_ATTRIBUTE } = contentTypesUtils.constants;
-const formatError = error => [
-  { messages: [{ id: error.id, message: error.message, field: error.field }] },
-];
-const userModel = 'plugin::users-permissions.user';
-const ACTIONS = {
-  read: 'plugin::content-manager.explorer.read',
-  create: 'plugin::content-manager.explorer.create',
-  edit: 'plugin::content-manager.explorer.update',
-  delete: 'plugin::content-manager.explorer.delete',
-};
-const findEntityAndCheckPermissions = async (ability, action, model, id) => {
-  const entity = await strapi.query('plugin::users-permissions.user').findOne({ where: { id } });
-  if (_.isNil(entity)) {
-    throw strapi.errors.notFound();
-  }
-  const pm = strapi.admin.services.permission.createPermissionsManager({ ability, action, model });
-  const roles = _.has(entity, `${CREATED_BY_ATTRIBUTE}.id`)
-    ? await strapi.query('admin::role').findMany({
-        where: {
-          users: { id: entity[CREATED_BY_ATTRIBUTE].id },
-        },
-      })
-    : [];
-  const entityWithRoles = _.set(_.cloneDeep(entity), `${CREATED_BY_ATTRIBUTE}.roles`, roles);
-  if (pm.ability.cannot(pm.action, pm.toSubject(entityWithRoles))) {
-    throw strapi.errors.forbidden();
-  }
-  return { pm, entity };
-};
-module.exports = {
-  /**
-   * Create a/an user record.
-   * @return {Object}
-   */
-  async create(ctx) {
-    const {
-      request: { body },
-      state: { userAbility, admin },
-    } = ctx;
-    const { email, username, password } = body;
-    const pm = strapi.admin.services.permission.createPermissionsManager({
-      ability: userAbility,
-      action: ACTIONS.create,
-      model: userModel,
-    });
-    if (!pm.isAllowed) {
-      throw strapi.errors.forbidden();
-    }
-    const sanitizedBody = pm.pickPermittedFieldsOf(body, { subject: userModel });
-    const advanced = await strapi
-      .store({
-        environment: '',
-        type: 'plugin',
-        name: 'users-permissions',
-        key: 'advanced',
-      })
-      .get();
-    if (!email) return ctx.badRequest('missing.email');
-    if (!username) return ctx.badRequest('missing.username');
-    if (!password) return ctx.badRequest('missing.password');
-    const userWithSameUsername = await strapi
-      .query('plugin::users-permissions.user')
-      .findOne({ where: { username } });
-    if (userWithSameUsername) {
-      return ctx.badRequest(
-        null,
-        formatError({
-          id: 'Auth.form.error.username.taken',
-          message: 'Username already taken.',
-          field: ['username'],
-        })
-      );
-    }
-    if (advanced.unique_email) {
-      const userWithSameEmail = await strapi
-        .query('plugin::users-permissions.user')
-        .findOne({ where: { email: email.toLowerCase() } });
-      if (userWithSameEmail) {
-        return ctx.badRequest(
-          null,
-          formatError({
-            id: 'Auth.form.error.email.taken',
-            message: 'Email already taken.',
-            field: ['email'],
-          })
-        );
-      }
-    }
-    const user = {
-      ...sanitizedBody,
-      provider: 'local',
-      [CREATED_BY_ATTRIBUTE]: admin.id,
-      [UPDATED_BY_ATTRIBUTE]: admin.id,
-    };
-    user.email = user.email.toLowerCase();
-    if (!user.role) {
-      const defaultRole = await strapi
-        .query('plugin::users-permissions.role')
-        .findOne({ where: { type: advanced.default_role } });
-      user.role = defaultRole.id;
-    }
-    try {
-      const data = await getService('user').add(user);
-      ctx.created(pm.sanitize(data, { action: ACTIONS.read }));
-    } catch (error) {
-      ctx.badRequest(null, formatError(error));
-    }
-  },
-  /**
-   * Update a/an user record.
-   * @return {Object}
-   */
-  async update(ctx) {
-    const advancedConfigs = await strapi
-      .store({
-        environment: '',
-        type: 'plugin',
-        name: 'users-permissions',
-        key: 'advanced',
-      })
-      .get();
-    const {
-      params: { id },
-      request: { body },
-      state: { userAbility, admin },
-    } = ctx;
-    const { email, username, password } = body;
-    const { pm, entity: user } = await findEntityAndCheckPermissions(
-      userAbility,
-      ACTIONS.edit,
-      userModel,
-      id
-    );
-    if (_.has(body, 'email') && !email) {
-      return ctx.badRequest('email.notNull');
-    }
-    if (_.has(body, 'username') && !username) {
-      return ctx.badRequest('username.notNull');
-    }
-    if (_.has(body, 'password') && !password && user.provider === 'local') {
-      return ctx.badRequest('password.notNull');
-    }
-    if (_.has(body, 'username')) {
-      const userWithSameUsername = await strapi
-        .query('plugin::users-permissions.user')
-        .findOne({ where: { username } });
-      if (userWithSameUsername && userWithSameUsername.id != id) {
-        return ctx.badRequest(
-          null,
-          formatError({
-            id: 'Auth.form.error.username.taken',
-            message: 'username.alreadyTaken.',
-            field: ['username'],
-          })
-        );
-      }
-    }
-    if (_.has(body, 'email') && advancedConfigs.unique_email) {
-      const userWithSameEmail = await strapi
-        .query('plugin::users-permissions.user')
-        .findOne({ where: { email: email.toLowerCase() } });
-      if (userWithSameEmail && userWithSameEmail.id != id) {
-        return ctx.badRequest(
-          null,
-          formatError({
-            id: 'Auth.form.error.email.taken',
-            message: 'Email already taken',
-            field: ['email'],
-          })
-        );
-      }
-      body.email = body.email.toLowerCase();
-    }
-    const sanitizedData = pm.pickPermittedFieldsOf(body, { subject: pm.toSubject(user) });
-    const updateData = _.omit({ ...sanitizedData, updated_by: admin.id }, 'created_by');
-    if (_.has(body, 'password') && password === user.password) {
-      delete updateData.password;
-    }
-    const data = await getService('user').edit({ id }, updateData);
-    ctx.body = pm.sanitize(data, { action: ACTIONS.read });
-  },
-};

package/server/controllers/user/api.js DELETED Viewed

@@ -1,174 +0,0 @@
-'use strict';
-const _ = require('lodash');
-const { sanitizeEntity } = require('@strapi/utils');
-const { getService } = require('../../utils');
-const sanitizeUser = user =>
-  sanitizeEntity(user, {
-    model: strapi.getModel('plugin::users-permissions.user'),
-  });
-const formatError = error => [
-  { messages: [{ id: error.id, message: error.message, field: error.field }] },
-];
-module.exports = {
-  /**
-   * Create a/an user record.
-   * @return {Object}
-   */
-  async create(ctx) {
-    const advanced = await strapi
-      .store({
-        environment: '',
-        type: 'plugin',
-        name: 'users-permissions',
-        key: 'advanced',
-      })
-      .get();
-    const { email, username, password, role } = ctx.request.body;
-    if (!email) return ctx.badRequest('missing.email');
-    if (!username) return ctx.badRequest('missing.username');
-    if (!password) return ctx.badRequest('missing.password');
-    const userWithSameUsername = await strapi
-      .query('plugin::users-permissions.user')
-      .findOne({ where: { username } });
-    if (userWithSameUsername) {
-      return ctx.badRequest(
-        null,
-        formatError({
-          id: 'Auth.form.error.username.taken',
-          message: 'Username already taken.',
-          field: ['username'],
-        })
-      );
-    }
-    if (advanced.unique_email) {
-      const userWithSameEmail = await strapi
-        .query('plugin::users-permissions.user')
-        .findOne({ where: { email: email.toLowerCase() } });
-      if (userWithSameEmail) {
-        return ctx.badRequest(
-          null,
-          formatError({
-            id: 'Auth.form.error.email.taken',
-            message: 'Email already taken.',
-            field: ['email'],
-          })
-        );
-      }
-    }
-    const user = {
-      ...ctx.request.body,
-      provider: 'local',
-    };
-    user.email = user.email.toLowerCase();
-    if (!role) {
-      const defaultRole = await strapi
-        .query('plugin::users-permissions.role')
-        .findOne({ where: { type: advanced.default_role } });
-      user.role = defaultRole.id;
-    }
-    try {
-      const data = await getService('user').add(user);
-      ctx.created(sanitizeUser(data));
-    } catch (error) {
-      ctx.badRequest(null, formatError(error));
-    }
-  },
-  /**
-   * Update a/an user record.
-   * @return {Object}
-   */
-  async update(ctx) {
-    const advancedConfigs = await strapi
-      .store({
-        environment: '',
-        type: 'plugin',
-        name: 'users-permissions',
-        key: 'advanced',
-      })
-      .get();
-    const { id } = ctx.params;
-    const { email, username, password } = ctx.request.body;
-    const user = await getService('user').fetch({
-      id,
-    });
-    if (_.has(ctx.request.body, 'email') && !email) {
-      return ctx.badRequest('email.notNull');
-    }
-    if (_.has(ctx.request.body, 'username') && !username) {
-      return ctx.badRequest('username.notNull');
-    }
-    if (_.has(ctx.request.body, 'password') && !password && user.provider === 'local') {
-      return ctx.badRequest('password.notNull');
-    }
-    if (_.has(ctx.request.body, 'username')) {
-      const userWithSameUsername = await strapi
-        .query('plugin::users-permissions.user')
-        .findOne({ where: { username } });
-      if (userWithSameUsername && userWithSameUsername.id != id) {
-        return ctx.badRequest(
-          null,
-          formatError({
-            id: 'Auth.form.error.username.taken',
-            message: 'username.alreadyTaken.',
-            field: ['username'],
-          })
-        );
-      }
-    }
-    if (_.has(ctx.request.body, 'email') && advancedConfigs.unique_email) {
-      const userWithSameEmail = await strapi
-        .query('plugin::users-permissions.user')
-        .findOne({ where: { email: email.toLowerCase() } });
-      if (userWithSameEmail && userWithSameEmail.id != id) {
-        return ctx.badRequest(
-          null,
-          formatError({
-            id: 'Auth.form.error.email.taken',
-            message: 'Email already taken',
-            field: ['email'],
-          })
-        );
-      }
-      ctx.request.body.email = ctx.request.body.email.toLowerCase();
-    }
-    let updateData = {
-      ...ctx.request.body,
-    };
-    if (_.has(ctx.request.body, 'password') && password === user.password) {
-      delete updateData.password;
-    }
-    const data = await getService('user').edit({ id }, updateData);
-    ctx.send(sanitizeUser(data));
-  },
-};