npm - @strapi/plugin-users-permissions - Versions diffs - 5.0.0-beta.1 → 5.0.0-beta.11 - Mend

@strapi/plugin-users-permissions 5.0.0-beta.1 → 5.0.0-beta.11

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (238) hide show

package/admin/src/components/BoundRoute/index.jsx +2 -2
package/admin/src/components/FormModal/Input/index.jsx +32 -31
package/admin/src/components/FormModal/index.jsx +50 -66
package/admin/src/components/Permissions/PermissionRow/CheckboxWrapper.jsx +1 -1
package/admin/src/components/Permissions/PermissionRow/SubCategory.jsx +11 -20
package/admin/src/components/Permissions/index.jsx +27 -35
package/admin/src/components/Policies/index.jsx +5 -5
package/admin/src/components/UsersPermissions/index.jsx +7 -7
package/admin/src/pages/AdvancedSettings/index.jsx +13 -23
package/admin/src/pages/EmailTemplates/components/EmailForm.jsx +113 -111
package/admin/src/pages/EmailTemplates/components/EmailTable.jsx +23 -24
package/admin/src/pages/EmailTemplates/index.jsx +14 -15
package/admin/src/pages/Providers/index.jsx +13 -16
package/admin/src/pages/Roles/pages/CreatePage.jsx +38 -35
package/admin/src/pages/Roles/pages/EditPage.jsx +42 -35
package/admin/src/pages/Roles/pages/ListPage/components/TableBody.jsx +9 -9
package/admin/src/pages/Roles/pages/ListPage/index.jsx +16 -21
package/dist/_chunks/{ar-t5qTFaAD.js → ar-BguGUqwK.js} +1 -1
package/dist/_chunks/ar-BguGUqwK.js.map +1 -0
package/dist/_chunks/{ar-MvD8Ghac.mjs → ar-CK8BRRXB.mjs} +1 -1
package/dist/_chunks/ar-CK8BRRXB.mjs.map +1 -0
package/dist/_chunks/{cs-BMuXwxA1.mjs → cs-BVigMk0l.mjs} +1 -1
package/dist/_chunks/cs-BVigMk0l.mjs.map +1 -0
package/dist/_chunks/{cs-I8N4u-Sd.js → cs-BW8-K_GY.js} +1 -1
package/dist/_chunks/cs-BW8-K_GY.js.map +1 -0
package/dist/_chunks/{de-zs2qqc0W.mjs → de-BKUdRFI4.mjs} +1 -1
package/dist/_chunks/de-BKUdRFI4.mjs.map +1 -0
package/dist/_chunks/{de-YTjtq89K.js → de-owXpVluI.js} +1 -1
package/dist/_chunks/de-owXpVluI.js.map +1 -0
package/dist/_chunks/{dk-HctVBMsG.mjs → dk-BQiTK50l.mjs} +1 -1
package/dist/_chunks/dk-BQiTK50l.mjs.map +1 -0
package/dist/_chunks/{dk-TF-dWjzl.js → dk-LXAnbuBk.js} +1 -1
package/dist/_chunks/dk-LXAnbuBk.js.map +1 -0
package/dist/_chunks/{en-jvJ-d-Qq.mjs → en-DOHtPf-2.mjs} +1 -1
package/dist/_chunks/en-DOHtPf-2.mjs.map +1 -0
package/dist/_chunks/{en-TaNIVnDO.js → en-MHo5mcsU.js} +1 -1
package/dist/_chunks/en-MHo5mcsU.js.map +1 -0
package/dist/_chunks/{es-XBQsB8_9.js → es-BwLCLXAQ.js} +1 -1
package/dist/_chunks/es-BwLCLXAQ.js.map +1 -0
package/dist/_chunks/{es-9381tih_.mjs → es-DNgOVMjD.mjs} +1 -1
package/dist/_chunks/es-DNgOVMjD.mjs.map +1 -0
package/dist/_chunks/{fr-CMSc77If.mjs → fr-DkgRugiU.mjs} +1 -1
package/dist/_chunks/fr-DkgRugiU.mjs.map +1 -0
package/dist/_chunks/{fr-6cz3U-IF.js → fr-DkhpSjjm.js} +1 -1
package/dist/_chunks/fr-DkhpSjjm.js.map +1 -0
package/dist/_chunks/{id-RJ934rq-.js → id-BTemOeTZ.js} +1 -1
package/dist/_chunks/id-BTemOeTZ.js.map +1 -0
package/dist/_chunks/{id-SDuyIkZa.mjs → id-BdEsvnaF.mjs} +1 -1
package/dist/_chunks/id-BdEsvnaF.mjs.map +1 -0
package/dist/_chunks/{index-gw-9XoIT.js → index--GpG6tLA.js} +112 -119
package/dist/_chunks/index--GpG6tLA.js.map +1 -0
package/dist/_chunks/index-7Wlj8eA7-7OWx8SwS.js +11473 -0
package/dist/_chunks/index-7Wlj8eA7-7OWx8SwS.js.map +1 -0
package/dist/_chunks/index-7Wlj8eA7-DHTckV6T.mjs +11449 -0
package/dist/_chunks/index-7Wlj8eA7-DHTckV6T.mjs.map +1 -0
package/dist/_chunks/{index-Vg50EMBp.mjs → index-C5U4ePo7.mjs} +119 -151
package/dist/_chunks/index-C5U4ePo7.mjs.map +1 -0
package/dist/_chunks/{index-JO4fO3Yj.js → index-C5qelx5h.js} +21 -21
package/dist/_chunks/{index-JO4fO3Yj.js.map → index-C5qelx5h.js.map} +1 -1
package/dist/_chunks/{index-UxzhJuP2.js → index-C61Rq3Wy.js} +66 -78
package/dist/_chunks/index-C61Rq3Wy.js.map +1 -0
package/dist/_chunks/{index-PTS42_em.mjs → index-CeYJys9a.mjs} +21 -21
package/dist/_chunks/{index-PTS42_em.mjs.map → index-CeYJys9a.mjs.map} +1 -1
package/dist/_chunks/{index-46oU0LRy.js → index-CulAxKsW.js} +16 -22
package/dist/_chunks/index-CulAxKsW.js.map +1 -0
package/dist/_chunks/{index-DtWla9tx.mjs → index-DPPPDM5v.mjs} +16 -22
package/dist/_chunks/index-DPPPDM5v.mjs.map +1 -0
package/dist/_chunks/{index-_UNneVIg.js → index-UMWzcJhY.js} +129 -162
package/dist/_chunks/index-UMWzcJhY.js.map +1 -0
package/dist/_chunks/{index-oUZpvYqS.mjs → index-_80225_r.mjs} +113 -120
package/dist/_chunks/index-_80225_r.mjs.map +1 -0
package/dist/_chunks/{index-G9pZniMC.mjs → index-xP-F2lwk.mjs} +66 -78
package/dist/_chunks/index-xP-F2lwk.mjs.map +1 -0
package/dist/_chunks/{it-bvH7DgQo.mjs → it-B-rv0E24.mjs} +1 -1
package/dist/_chunks/it-B-rv0E24.mjs.map +1 -0
package/dist/_chunks/{it-YhZOlM2X.js → it-D1rH6V6_.js} +1 -1
package/dist/_chunks/it-D1rH6V6_.js.map +1 -0
package/dist/_chunks/{ja-o_-JPvQv.mjs → ja-C8K-VBPD.mjs} +1 -1
package/dist/_chunks/ja-C8K-VBPD.mjs.map +1 -0
package/dist/_chunks/{ja-xssHUXFv.js → ja-DqShgTMf.js} +1 -1
package/dist/_chunks/ja-DqShgTMf.js.map +1 -0
package/dist/_chunks/{ko-C3mHUSJa.js → ko-B9DGEPWH.js} +1 -1
package/dist/_chunks/ko-B9DGEPWH.js.map +1 -0
package/dist/_chunks/{ko-XJbPSez_.mjs → ko-Busb0wIY.mjs} +1 -1
package/dist/_chunks/ko-Busb0wIY.mjs.map +1 -0
package/dist/_chunks/{ms-II5Ea73J.mjs → ms-ByvsQjRt.mjs} +1 -1
package/dist/_chunks/ms-ByvsQjRt.mjs.map +1 -0
package/dist/_chunks/{ms-d0hfg65Z.js → ms-CPBU3LWf.js} +1 -1
package/dist/_chunks/ms-CPBU3LWf.js.map +1 -0
package/dist/_chunks/{nl-vEy6TN0K.mjs → nl-5qO8Rpcy.mjs} +1 -1
package/dist/_chunks/nl-5qO8Rpcy.mjs.map +1 -0
package/dist/_chunks/{nl-TA7TfK_5.js → nl-CwNB6YoO.js} +1 -1
package/dist/_chunks/nl-CwNB6YoO.js.map +1 -0
package/dist/_chunks/{pl-2VowaFGt.mjs → pl-BdIzifBE.mjs} +1 -1
package/dist/_chunks/pl-BdIzifBE.mjs.map +1 -0
package/dist/_chunks/{pl-0pUL9hdA.js → pl-Do9UD69f.js} +1 -1
package/dist/_chunks/pl-Do9UD69f.js.map +1 -0
package/dist/_chunks/{pt-Rf9W51IO.mjs → pt-BIO24ioG.mjs} +1 -1
package/dist/_chunks/pt-BIO24ioG.mjs.map +1 -0
package/dist/_chunks/{pt-BR-WNOhafR4.js → pt-BR-D7dZhxuP.js} +1 -1
package/dist/_chunks/pt-BR-D7dZhxuP.js.map +1 -0
package/dist/_chunks/{pt-BR-sS1Xp3Jt.mjs → pt-BR-f0p23AQZ.mjs} +1 -1
package/dist/_chunks/pt-BR-f0p23AQZ.mjs.map +1 -0
package/dist/_chunks/{pt-guNR9Gax.js → pt-fdvyOnUp.js} +1 -1
package/dist/_chunks/pt-fdvyOnUp.js.map +1 -0
package/dist/_chunks/{ru-X3BMXDds.js → ru-C94rjPGA.js} +1 -1
package/dist/_chunks/ru-C94rjPGA.js.map +1 -0
package/dist/_chunks/{ru-qKHnd5or.mjs → ru-VWy-IB7K.mjs} +1 -1
package/dist/_chunks/ru-VWy-IB7K.mjs.map +1 -0
package/dist/_chunks/{sk-NWPw1oTN.js → sk-BABEhykl.js} +1 -1
package/dist/_chunks/sk-BABEhykl.js.map +1 -0
package/dist/_chunks/{sk-_Ryr-eTT.mjs → sk-B_LIcepm.mjs} +1 -1
package/dist/_chunks/sk-B_LIcepm.mjs.map +1 -0
package/dist/_chunks/{sv-BqzScFXS.mjs → sv-ABLKOokl.mjs} +1 -1
package/dist/_chunks/sv-ABLKOokl.mjs.map +1 -0
package/dist/_chunks/{sv-76NnbB__.js → sv-Be43LhA9.js} +1 -1
package/dist/_chunks/sv-Be43LhA9.js.map +1 -0
package/dist/_chunks/{th-WsknMEpq.mjs → th-DKyP7ueR.mjs} +1 -1
package/dist/_chunks/th-DKyP7ueR.mjs.map +1 -0
package/dist/_chunks/{th-cbppX21D.js → th-DgVhVLhL.js} +1 -1
package/dist/_chunks/th-DgVhVLhL.js.map +1 -0
package/dist/_chunks/{tr-6mm_Fmz7.js → tr-B_idhkEs.js} +1 -1
package/dist/_chunks/tr-B_idhkEs.js.map +1 -0
package/dist/_chunks/{tr-_DB1F1GW.mjs → tr-qa1Q5UjC.mjs} +1 -1
package/dist/_chunks/tr-qa1Q5UjC.mjs.map +1 -0
package/dist/_chunks/{uk-yxMSQAwI.mjs → uk-BmRqbeQc.mjs} +1 -1
package/dist/_chunks/uk-BmRqbeQc.mjs.map +1 -0
package/dist/_chunks/{uk-sI2I1ogF.js → uk-LHOivnhP.js} +1 -1
package/dist/_chunks/uk-LHOivnhP.js.map +1 -0
package/dist/_chunks/{vi-A3zJxaiI.js → vi-CdVRdKDw.js} +1 -1
package/dist/_chunks/vi-CdVRdKDw.js.map +1 -0
package/dist/_chunks/{vi-xY0zCW3d.mjs → vi-HW-EdMea.mjs} +1 -1
package/dist/_chunks/vi-HW-EdMea.mjs.map +1 -0
package/dist/_chunks/{zh-OFeldzbX.mjs → zh-5hKkVPA4.mjs} +1 -1
package/dist/_chunks/zh-5hKkVPA4.mjs.map +1 -0
package/dist/_chunks/{zh-72SpmFXa.js → zh-Cuq8gMnF.js} +1 -1
package/dist/_chunks/zh-Cuq8gMnF.js.map +1 -0
package/dist/_chunks/{zh-Hans-E84cu4kP.mjs → zh-Hans-BHilK-yc.mjs} +1 -1
package/dist/_chunks/zh-Hans-BHilK-yc.mjs.map +1 -0
package/dist/_chunks/{zh-Hans-ArWWtyP4.js → zh-Hans-GQDMKtY4.js} +1 -1
package/dist/_chunks/zh-Hans-GQDMKtY4.js.map +1 -0
package/dist/admin/index.js +1 -1
package/dist/admin/index.mjs +1 -1
package/package.json +16 -16
package/server/bootstrap/index.js +3 -3
package/server/config.js +29 -0
package/server/controllers/auth.js +22 -4
package/server/controllers/content-manager-user.js +4 -2
package/server/services/user.js +21 -4
package/server/services/users-permissions.js +3 -3
package/server/utils/sanitize/visitors/remove-user-relation-from-role-entities.js +2 -2
package/dist/_chunks/EditViewPage-BJdNfzBZ-XIkFGBc4.mjs +0 -84380
package/dist/_chunks/EditViewPage-BJdNfzBZ-XIkFGBc4.mjs.map +0 -1
package/dist/_chunks/EditViewPage-BJdNfzBZ-eKwHxgPQ.js +0 -84408
package/dist/_chunks/EditViewPage-BJdNfzBZ-eKwHxgPQ.js.map +0 -1
package/dist/_chunks/Helmet-En-SEnNC.mjs +0 -1008
package/dist/_chunks/Helmet-En-SEnNC.mjs.map +0 -1
package/dist/_chunks/Helmet-d9JljxUo.js +0 -1010
package/dist/_chunks/Helmet-d9JljxUo.js.map +0 -1
package/dist/_chunks/ListViewPage-FE12IpwT-Wq63ge4-.js +0 -1595
package/dist/_chunks/ListViewPage-FE12IpwT-Wq63ge4-.js.map +0 -1
package/dist/_chunks/ListViewPage-FE12IpwT-qmEuoG2g.mjs +0 -1571
package/dist/_chunks/ListViewPage-FE12IpwT-qmEuoG2g.mjs.map +0 -1
package/dist/_chunks/ReviewWorkflowsColumn-NUu47oVz-8gQO_Y5x.mjs +0 -33
package/dist/_chunks/ReviewWorkflowsColumn-NUu47oVz-8gQO_Y5x.mjs.map +0 -1
package/dist/_chunks/ReviewWorkflowsColumn-NUu47oVz-ARD7iQQF.js +0 -33
package/dist/_chunks/ReviewWorkflowsColumn-NUu47oVz-ARD7iQQF.js.map +0 -1
package/dist/_chunks/ar-MvD8Ghac.mjs.map +0 -1
package/dist/_chunks/ar-t5qTFaAD.js.map +0 -1
package/dist/_chunks/constants-D6NLEhwu-4IL8biHd.js +0 -209
package/dist/_chunks/constants-D6NLEhwu-4IL8biHd.js.map +0 -1
package/dist/_chunks/constants-D6NLEhwu-gRKBHArd.mjs +0 -190
package/dist/_chunks/constants-D6NLEhwu-gRKBHArd.mjs.map +0 -1
package/dist/_chunks/cs-BMuXwxA1.mjs.map +0 -1
package/dist/_chunks/cs-I8N4u-Sd.js.map +0 -1
package/dist/_chunks/de-YTjtq89K.js.map +0 -1
package/dist/_chunks/de-zs2qqc0W.mjs.map +0 -1
package/dist/_chunks/dk-HctVBMsG.mjs.map +0 -1
package/dist/_chunks/dk-TF-dWjzl.js.map +0 -1
package/dist/_chunks/en-TaNIVnDO.js.map +0 -1
package/dist/_chunks/en-jvJ-d-Qq.mjs.map +0 -1
package/dist/_chunks/es-9381tih_.mjs.map +0 -1
package/dist/_chunks/es-XBQsB8_9.js.map +0 -1
package/dist/_chunks/fr-6cz3U-IF.js.map +0 -1
package/dist/_chunks/fr-CMSc77If.mjs.map +0 -1
package/dist/_chunks/id-RJ934rq-.js.map +0 -1
package/dist/_chunks/id-SDuyIkZa.mjs.map +0 -1
package/dist/_chunks/index-1NFAbkxM-Km1zKLTh.mjs +0 -16568
package/dist/_chunks/index-1NFAbkxM-Km1zKLTh.mjs.map +0 -1
package/dist/_chunks/index-1NFAbkxM-c8HdvwSA.js +0 -16593
package/dist/_chunks/index-1NFAbkxM-c8HdvwSA.js.map +0 -1
package/dist/_chunks/index-46oU0LRy.js.map +0 -1
package/dist/_chunks/index-DtWla9tx.mjs.map +0 -1
package/dist/_chunks/index-G9pZniMC.mjs.map +0 -1
package/dist/_chunks/index-UxzhJuP2.js.map +0 -1
package/dist/_chunks/index-Vg50EMBp.mjs.map +0 -1
package/dist/_chunks/index-_UNneVIg.js.map +0 -1
package/dist/_chunks/index-gw-9XoIT.js.map +0 -1
package/dist/_chunks/index-oUZpvYqS.mjs.map +0 -1
package/dist/_chunks/it-YhZOlM2X.js.map +0 -1
package/dist/_chunks/it-bvH7DgQo.mjs.map +0 -1
package/dist/_chunks/ja-o_-JPvQv.mjs.map +0 -1
package/dist/_chunks/ja-xssHUXFv.js.map +0 -1
package/dist/_chunks/ko-C3mHUSJa.js.map +0 -1
package/dist/_chunks/ko-XJbPSez_.mjs.map +0 -1
package/dist/_chunks/ms-II5Ea73J.mjs.map +0 -1
package/dist/_chunks/ms-d0hfg65Z.js.map +0 -1
package/dist/_chunks/nl-TA7TfK_5.js.map +0 -1
package/dist/_chunks/nl-vEy6TN0K.mjs.map +0 -1
package/dist/_chunks/pl-0pUL9hdA.js.map +0 -1
package/dist/_chunks/pl-2VowaFGt.mjs.map +0 -1
package/dist/_chunks/pt-BR-WNOhafR4.js.map +0 -1
package/dist/_chunks/pt-BR-sS1Xp3Jt.mjs.map +0 -1
package/dist/_chunks/pt-Rf9W51IO.mjs.map +0 -1
package/dist/_chunks/pt-guNR9Gax.js.map +0 -1
package/dist/_chunks/ru-X3BMXDds.js.map +0 -1
package/dist/_chunks/ru-qKHnd5or.mjs.map +0 -1
package/dist/_chunks/sk-NWPw1oTN.js.map +0 -1
package/dist/_chunks/sk-_Ryr-eTT.mjs.map +0 -1
package/dist/_chunks/sv-76NnbB__.js.map +0 -1
package/dist/_chunks/sv-BqzScFXS.mjs.map +0 -1
package/dist/_chunks/th-WsknMEpq.mjs.map +0 -1
package/dist/_chunks/th-cbppX21D.js.map +0 -1
package/dist/_chunks/tr-6mm_Fmz7.js.map +0 -1
package/dist/_chunks/tr-_DB1F1GW.mjs.map +0 -1
package/dist/_chunks/uk-sI2I1ogF.js.map +0 -1
package/dist/_chunks/uk-yxMSQAwI.mjs.map +0 -1
package/dist/_chunks/useSyncRbac-LNOzRXJ5-5S0qhFuZ.js +0 -63
package/dist/_chunks/useSyncRbac-LNOzRXJ5-5S0qhFuZ.js.map +0 -1
package/dist/_chunks/useSyncRbac-LNOzRXJ5-PZzFwA1X.mjs +0 -45
package/dist/_chunks/useSyncRbac-LNOzRXJ5-PZzFwA1X.mjs.map +0 -1
package/dist/_chunks/vi-A3zJxaiI.js.map +0 -1
package/dist/_chunks/vi-xY0zCW3d.mjs.map +0 -1
package/dist/_chunks/zh-72SpmFXa.js.map +0 -1
package/dist/_chunks/zh-Hans-ArWWtyP4.js.map +0 -1
package/dist/_chunks/zh-Hans-E84cu4kP.mjs.map +0 -1
package/dist/_chunks/zh-OFeldzbX.mjs.map +0 -1
package/dist/style.css +0 -84

package/dist/_chunks/uk-LHOivnhP.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"uk-LHOivnhP.js","sources":[],"sourcesContent":[],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;"}

package/dist/_chunks/{vi-A3zJxaiI.js → vi-CdVRdKDw.js} RENAMED Viewed

@@ -47,4 +47,4 @@ const vi = {
   "plugin.name": "Vai trò và Quyền"
 };
 exports.default = vi;
-//# sourceMappingURL=vi-A3zJxaiI.js.map
+//# sourceMappingURL=vi-CdVRdKDw.js.map

package/dist/_chunks/vi-CdVRdKDw.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"vi-CdVRdKDw.js","sources":[],"sourcesContent":[],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;"}

package/dist/_chunks/{vi-xY0zCW3d.mjs → vi-HW-EdMea.mjs} RENAMED Viewed

@@ -47,4 +47,4 @@ const vi = {
 export {
   vi as default
 };
-//# sourceMappingURL=vi-xY0zCW3d.mjs.map
+//# sourceMappingURL=vi-HW-EdMea.mjs.map

package/dist/_chunks/vi-HW-EdMea.mjs.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"vi-HW-EdMea.mjs","sources":[],"sourcesContent":[],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;"}

package/dist/_chunks/{zh-OFeldzbX.mjs → zh-5hKkVPA4.mjs} RENAMED Viewed

@@ -83,4 +83,4 @@ const zh = {
 export {
   zh as default
 };
-//# sourceMappingURL=zh-OFeldzbX.mjs.map
+//# sourceMappingURL=zh-5hKkVPA4.mjs.map

package/dist/_chunks/zh-5hKkVPA4.mjs.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"zh-5hKkVPA4.mjs","sources":[],"sourcesContent":[],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;"}

package/dist/_chunks/{zh-72SpmFXa.js → zh-Cuq8gMnF.js} RENAMED Viewed

@@ -83,4 +83,4 @@ const zh = {
   "popUpWarning.warning.cancel": "您確定要取消變更嗎？"
 };
 exports.default = zh;
-//# sourceMappingURL=zh-72SpmFXa.js.map
+//# sourceMappingURL=zh-Cuq8gMnF.js.map

package/dist/_chunks/zh-Cuq8gMnF.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"zh-Cuq8gMnF.js","sources":[],"sourcesContent":[],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;"}

package/dist/_chunks/{zh-Hans-E84cu4kP.mjs → zh-Hans-BHilK-yc.mjs} RENAMED Viewed

@@ -83,4 +83,4 @@ const zhHans = {
 export {
   zhHans as default
 };
-//# sourceMappingURL=zh-Hans-E84cu4kP.mjs.map
+//# sourceMappingURL=zh-Hans-BHilK-yc.mjs.map

package/dist/_chunks/zh-Hans-BHilK-yc.mjs.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"zh-Hans-BHilK-yc.mjs","sources":[],"sourcesContent":[],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;"}

package/dist/_chunks/{zh-Hans-ArWWtyP4.js → zh-Hans-GQDMKtY4.js} RENAMED Viewed

@@ -83,4 +83,4 @@ const zhHans = {
   "popUpWarning.warning.cancel": "你确定你要取消你的修改？"
 };
 exports.default = zhHans;
-//# sourceMappingURL=zh-Hans-ArWWtyP4.js.map
+//# sourceMappingURL=zh-Hans-GQDMKtY4.js.map

package/dist/_chunks/zh-Hans-GQDMKtY4.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"zh-Hans-GQDMKtY4.js","sources":[],"sourcesContent":[],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;"}

package/dist/admin/index.js CHANGED Viewed

@@ -1,4 +1,4 @@
 "use strict";
-const index = require("../_chunks/index-JO4fO3Yj.js");
+const index = require("../_chunks/index-C5qelx5h.js");
 module.exports = index.index;
 //# sourceMappingURL=index.js.map

package/dist/admin/index.mjs CHANGED Viewed

@@ -1,4 +1,4 @@
-import { i } from "../_chunks/index-PTS42_em.mjs";
+import { i } from "../_chunks/index-CeYJys9a.mjs";
 export {
   i as default
 };

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@strapi/plugin-users-permissions",
-  "version": "5.0.0-beta.1",
+  "version": "5.0.0-beta.11",
   "description": "Protect your API with a full-authentication process based on JWT",
   "repository": {
     "type": "git",
@@ -46,17 +46,17 @@
     "watch": "pack-up watch"
   },
   "dependencies": {
-    "@strapi/design-system": "1.16.0",
-    "@strapi/icons": "1.16.0",
-    "@strapi/utils": "5.0.0-beta.1",
+    "@strapi/design-system": "2.0.0-beta.6",
+    "@strapi/icons": "2.0.0-beta.6",
+    "@strapi/utils": "5.0.0-beta.11",
     "bcryptjs": "2.4.3",
     "formik": "2.4.5",
     "grant-koa": "5.4.8",
     "immer": "9.0.21",
     "jsonwebtoken": "9.0.0",
     "jwk-to-pem": "2.0.5",
-    "koa": "2.13.4",
-    "koa2-ratelimit": "^1.1.2",
+    "koa": "2.15.2",
+    "koa2-ratelimit": "^1.1.3",
     "lodash": "4.17.21",
     "prop-types": "^15.8.1",
     "purest": "4.0.2",
@@ -67,23 +67,23 @@
     "yup": "0.32.9"
   },
   "devDependencies": {
-    "@strapi/pack-up": "5.0.0-beta.1",
-    "@strapi/strapi": "5.0.0-beta.1",
-    "@testing-library/dom": "9.2.0",
-    "@testing-library/react": "14.0.0",
-    "@testing-library/user-event": "14.4.3",
+    "@strapi/pack-up": "5.0.0",
+    "@strapi/strapi": "5.0.0-beta.11",
+    "@testing-library/dom": "10.1.0",
+    "@testing-library/react": "15.0.7",
+    "@testing-library/user-event": "14.5.2",
     "msw": "1.3.0",
-    "react": "^18.2.0",
-    "react-dom": "^18.2.0",
+    "react": "18.3.1",
+    "react-dom": "18.3.1",
     "react-router-dom": "6.22.3",
-    "styled-components": "5.3.11"
+    "styled-components": "6.1.8"
   },
   "peerDependencies": {
     "@strapi/strapi": "^5.0.0 || ^5.0.0-beta || ^5.0.0-alpha || ^5.0.0-rc",
     "react": "^17.0.0 || ^18.0.0",
     "react-dom": "^17.0.0 || ^18.0.0",
     "react-router-dom": "^6.0.0",
-    "styled-components": "^5.2.1"
+    "styled-components": "^6.0.0"
   },
   "engines": {
     "node": ">=18.0.0 <=20.x.x",
@@ -96,5 +96,5 @@
     "required": true,
     "kind": "plugin"
   },
-  "gitHead": "ae773621dfcbc67c49dc6fa52ac41ea5de676ecb"
+  "gitHead": "0991f0ac0f739e43e6a5f9ac79acb8c774c359bf"
 }

package/server/bootstrap/index.js CHANGED Viewed

@@ -103,9 +103,9 @@ module.exports = async ({ strapi }) => {
   await initEmails(pluginStore);
   await initAdvancedOptions(pluginStore);
-  await strapi.admin.services.permission.actionProvider.registerMany(
-    usersPermissionsActions.actions
-  );
+  await strapi
+    .service('admin::permission')
+    .actionProvider.registerMany(usersPermissionsActions.actions);
   await getService('users-permissions').initialize();

package/server/config.js CHANGED Viewed

@@ -18,6 +18,35 @@ module.exports = {
         },
       },
     },
+    callback: {
+      validate(callback, provider) {
+        let uCallback;
+        let uProviderCallback;
+        try {
+          uCallback = new URL(callback);
+          uProviderCallback = new URL(provider.callback);
+        } catch {
+          throw new Error('The callback is not a valid URL');
+        }
+        // Make sure the different origin matches
+        if (uCallback.origin !== uProviderCallback.origin) {
+          throw new Error(
+            `Forbidden callback provided: origins don't match. Please verify your config.`
+          );
+        }
+        // Make sure the different pathname matches
+        if (uCallback.pathname !== uProviderCallback.pathname) {
+          throw new Error(
+            `Forbidden callback provided: pathname don't match. Please verify your config.`
+          );
+        }
+        // NOTE: We're not checking the search parameters on purpose to allow passing different states
+      },
+    },
   }),
   validator() {},
 };

package/server/controllers/auth.js CHANGED Viewed

@@ -196,10 +196,28 @@ module.exports = {
     }
     // Ability to pass OAuth callback dynamically
-    grantConfig[provider].callback =
-      _.get(ctx, 'query.callback') ||
-      _.get(ctx, 'session.grant.dynamic.callback') ||
-      grantConfig[provider].callback;
+    const queryCustomCallback = _.get(ctx, 'query.callback');
+    const dynamicSessionCallback = _.get(ctx, 'session.grant.dynamic.callback');
+    const customCallback = queryCustomCallback ?? dynamicSessionCallback;
+    // The custom callback is validated to make sure it's not redirecting to an unwanted actor.
+    if (customCallback !== undefined) {
+      try {
+        // We're extracting the callback validator from the plugin config since it can be user-customized
+        const { validate: validateCallback } = strapi
+          .plugin('users-permissions')
+          .config('callback');
+        await validateCallback(customCallback, grantConfig[provider]);
+        grantConfig[provider].callback = customCallback;
+      } catch (e) {
+        throw new ValidationError('Invalid callback URL provided', { callback: customCallback });
+      }
+    }
+    // Build a valid redirect URI for the current provider
     grantConfig[provider].redirect_uri = getService('providers').buildRedirectUri(provider);
     return grant(grantConfig)(ctx, next);

package/server/controllers/content-manager-user.js CHANGED Viewed

@@ -25,7 +25,9 @@ const findEntityAndCheckPermissions = async (ability, action, model, id) => {
     throw new NotFoundError();
   }
-  const pm = strapi.admin.services.permission.createPermissionsManager({ ability, action, model });
+  const pm = strapi
+    .service('admin::permission')
+    .createPermissionsManager({ ability, action, model });
   if (pm.ability.cannot(pm.action, pm.toSubject(doc))) {
     throw new ForbiddenError();
@@ -47,7 +49,7 @@ module.exports = {
     const { email, username } = body;
-    const pm = strapi.admin.services.permission.createPermissionsManager({
+    const pm = strapi.service('admin::permission').createPermissionsManager({
       ability: userAbility,
       action: ACTIONS.create,
       model: userModel,

package/server/services/user.js CHANGED Viewed

@@ -11,6 +11,7 @@ const bcrypt = require('bcryptjs');
 const urlJoin = require('url-join');
 const { sanitize } = require('@strapi/utils');
+const { toNumber, getOr } = require('lodash/fp');
 const { getService } = require('../utils');
 const USER_MODEL_UID = 'plugin::users-permissions.user';
@@ -27,10 +28,26 @@ module.exports = ({ strapi }) => ({
   },
   /**
-   * Promise to search count users
+   * Hashes password fields in the provided values object if they are present.
+   * It checks each key in the values object against the model's attributes and
+   * hashes it if the attribute type is 'password',
    *
-   * @return {Promise}
+   * @param {object} values - The object containing the fields to be hashed.
+   * @return {object} The values object with hashed password fields if they were present.
    */
+  async ensureHashedPasswords(values) {
+    const attributes = strapi.getModel(USER_MODEL_UID).attributes;
+    for (const key in values) {
+      if (attributes[key] && attributes[key].type === 'password') {
+        // Check if a custom encryption.rounds has been set on the password attribute
+        const rounds = toNumber(getOr(10, 'encryption.rounds', attributes[key]));
+        values[key] = await bcrypt.hash(values[key], rounds);
+      }
+    }
+    return values;
+  },
   /**
    * Promise to add a/an user.
@@ -38,7 +55,7 @@ module.exports = ({ strapi }) => ({
    */
   async add(values) {
     return strapi.db.query(USER_MODEL_UID).create({
-      data: values,
+      data: await this.ensureHashedPasswords(values),
       populate: ['role'],
     });
   },
@@ -52,7 +69,7 @@ module.exports = ({ strapi }) => ({
   async edit(userId, params = {}) {
     return strapi.db.query(USER_MODEL_UID).update({
       where: { id: userId },
-      data: params,
+      data: await this.ensureHashedPasswords(params),
       populate: ['role'],
     });
   },

package/server/services/users-permissions.js CHANGED Viewed

@@ -45,7 +45,7 @@ module.exports = ({ strapi }) => ({
       return action[Symbol.for('__type__')].includes('content-api');
     };
-    _.forEach(strapi.api, (api, apiName) => {
+    _.forEach(strapi.apis, (api, apiName) => {
       const controllers = _.reduce(
         api.controllers,
         (acc, controller, controllerName) => {
@@ -105,7 +105,7 @@ module.exports = ({ strapi }) => ({
   async getRoutes() {
     const routesMap = {};
-    _.forEach(strapi.api, (api, apiName) => {
+    _.forEach(strapi.apis, (api, apiName) => {
       const routes = _.flatMap(api.routes, (route) => {
         if (_.has(route, 'routes')) {
           return route.routes;
@@ -156,7 +156,7 @@ module.exports = ({ strapi }) => ({
     const permissionsFoundInDB = _.uniq(_.map(dbPermissions, 'action'));
-    const appActions = _.flatMap(strapi.api, (api, apiName) => {
+    const appActions = _.flatMap(strapi.apis, (api, apiName) => {
       return _.flatMap(api.controllers, (controller, controllerName) => {
         return _.keys(controller).map((actionName) => {
           return `api::${apiName}.${controllerName}.${actionName}`;

package/server/utils/sanitize/visitors/remove-user-relation-from-role-entities.js CHANGED Viewed

@@ -2,8 +2,8 @@
 module.exports = ({ schema, key, attribute }, { remove }) => {
   if (
-    attribute.type === 'relation' &&
-    attribute.target === 'plugin::users-permissions.user' &&
+    attribute?.type === 'relation' &&
+    attribute?.target === 'plugin::users-permissions.user' &&
     schema.uid === 'plugin::users-permissions.role'
   ) {
     remove(key);