npm - @webiny/app-headless-cms - Versions diffs - 6.1.0 → 6.2.0-beta.0 - Mend

@webiny/app-headless-cms 6.1.0 → 6.2.0-beta.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (172) hide show

package/admin/hooks/usePermission.js CHANGED Viewed

@@ -1,26 +1,108 @@
-import { useCallback, useMemo } from "react";
+import { useCallback, useContext, useMemo } from "react";
 import { useIdentity } from "@webiny/app-admin";
 import { makeDecoratable } from "@webiny/react-composition";
+import { ModelContext } from "@webiny/app-headless-cms-common/ModelProvider/ModelContext.js";
+function isModelAllowed(modelPermissions, modelId) {
+  // No model permissions in this group means all models are allowed.
+  if (!modelPermissions.length) {
+    return true;
+  }
+  for (const permission of modelPermissions) {
+    // If no models array, this permission grants access to all models.
+    if (!Array.isArray(permission.models)) {
+      return true;
+    }
+    if (permission.models.includes(modelId)) {
+      return true;
+    }
+  }
+  return false;
+}
+function isGroupAllowed(groupPermissions, groupId) {
+  // No group permissions in this group means all groups are allowed.
+  if (!groupPermissions.length) {
+    return true;
+  }
+  for (const permission of groupPermissions) {
+    // If no groups array, this permission grants access to all groups.
+    if (!Array.isArray(permission.groups)) {
+      return true;
+    }
+    if (permission.groups.includes(groupId)) {
+      return true;
+    }
+  }
+  return false;
+}
+/**
+ * Check if any _src group grants access for the given model.
+ */
+function hasAccessForModel({
+  permissions,
+  modelPermissions,
+  modelId,
+  check
+}) {
+  const srcKeys = new Set();
+  for (const p of [...permissions, ...modelPermissions]) {
+    srcKeys.add(p._src);
+  }
+  for (const src of srcKeys) {
+    const srcPerms = permissions.filter(p => p._src === src);
+    const srcModelPerms = modelPermissions.filter(p => p._src === src);
+    if (!srcPerms.length) {
+      continue;
+    }
+    if (!srcPerms.some(check)) {
+      continue;
+    }
+    const modelAllowed = isModelAllowed(srcModelPerms, modelId);
+    if (!modelAllowed) {
+      continue;
+    }
+    return true;
+  }
+  return false;
+}
 export const usePermission = makeDecoratable(() => {
   const {
     identity
   } = useIdentity();
+  const model = useContext(ModelContext);
+  const modelId = model?.modelId;
   const hasFullAccess = useMemo(() => !!identity.getPermission("cms.*"), [identity]);
-  const canRead = useCallback(permissionName => {
+  const modelPermissions = useMemo(() => identity.getPermissions("cms.contentModel") ?? [], [identity]);
+  /**
+   * Check permissions with _src-based model scoping when a model context is available.
+   * When no model context exists, falls back to checking permissions without model correlation.
+   */
+  const checkPermission = useCallback((permissionName, check) => {
     if (hasFullAccess) {
       return true;
     }
-    const permissions = identity.getPermissions(permissionName) ?? [];
+    const permissions = identity.getPermissions(permissionName);
     if (!permissions.length) {
       return false;
     }
-    return permissions.some(permission => {
+    if (modelId) {
+      return hasAccessForModel({
+        permissions,
+        modelPermissions,
+        modelId,
+        check
+      });
+    }
+    return permissions.some(check);
+  }, [identity, hasFullAccess, modelId, modelPermissions]);
+  const canRead = useCallback(permissionName => {
+    return checkPermission(permissionName, permission => {
       if (typeof permission.rwd !== "string") {
         return true;
       }
       return permission.rwd.includes("r");
     });
-  }, [identity, hasFullAccess]);
+  }, [checkPermission]);
   const canReadEntries = useCallback(({
     contentModelGroup,
     contentModel
@@ -28,79 +110,48 @@ export const usePermission = makeDecoratable(() => {
     if (hasFullAccess) {
       return true;
     }
-    const permissions = identity.getPermissions("cms.contentEntry") ?? [];
-    if (!permissions.length) {
+    const entryPermissions = identity.getPermissions("cms.contentEntry") ?? [];
+    if (!entryPermissions.length) {
       return false;
     }
+    const groupPermissions = identity.getPermissions("cms.contentModelGroup") ?? [];
-    // Check "contentModel" list.
-    const contentModelPermissions = identity.getPermissions("cms.contentModel");
-    // "all" means user has access to all models.
-    let allowedModels = [];
-    for (let i = 0; i < contentModelPermissions.length; i++) {
-      const permission = contentModelPermissions[i];
-      const permissionAllowedModels = permission?.models;
-      // The moment we encounter a permission that gives access to all models,
-      // we can stop checking other permissions.
-      const allModelsAllowed = !Array.isArray(permissionAllowedModels);
-      if (allModelsAllowed) {
-        allowedModels = "all";
-        break;
+    // Group all permissions by _src. Permissions without _src go into an "ungrouped" bucket.
+    const srcKeys = new Set();
+    for (const p of [...entryPermissions, ...modelPermissions, ...groupPermissions]) {
+      srcKeys.add(p._src);
+    }
+    for (const src of srcKeys) {
+      const srcEntryPerms = entryPermissions.filter(p => p._src === src);
+      const srcModelPerms = modelPermissions.filter(p => p._src === src);
+      const srcGroupPerms = groupPermissions.filter(p => p._src === src);
+      if (!srcEntryPerms.length) {
+        continue;
       }
-      allowedModels = [...allowedModels, ...permissionAllowedModels];
-    }
-    if (Array.isArray(allowedModels)) {
-      return allowedModels.includes(contentModel.modelId);
-    }
-    // Check "contentModelGroup" list.
-    const contentModelGroupPermissions = identity.getPermissions("cms.contentModelGroup");
-    // "all" means user has access to all models.
-    let allowedModelGroups = [];
-    for (let i = 0; i < contentModelGroupPermissions.length; i++) {
-      const permission = contentModelGroupPermissions[i];
-      const permissionAllowedModelGroups = permission?.models;
-      // The moment we encounter a permission that gives access to all models,
-      // we can stop checking other permissions.
-      const allModelGroupsAllowed = !Array.isArray(permissionAllowedModelGroups);
-      if (allModelGroupsAllowed) {
-        allowedModelGroups = "all";
-        break;
+      const hasReadAccess = srcEntryPerms.some(p => {
+        if (typeof p.rwd !== "string") {
+          return true;
+        }
+        return p.rwd.includes("r");
+      });
+      if (!hasReadAccess) {
+        continue;
       }
-      allowedModelGroups = [...allowedModelGroups, ...permissionAllowedModelGroups];
-    }
-    if (Array.isArray(allowedModelGroups)) {
-      return allowedModelGroups.includes(contentModelGroup.id);
-    }
-    for (let i = 0; i < permissions.length; i++) {
-      const permission = permissions[i];
-      // If no RWD restrictions are set, we can return true.
-      if (typeof permission.rwd !== "string") {
-        return true;
+      const modelAllowed = isModelAllowed(srcModelPerms, contentModel.modelId);
+      if (!modelAllowed) {
+        continue;
       }
-      const rwdGivesReadAccess = permission.rwd.includes("r");
-      if (rwdGivesReadAccess) {
-        return true;
+      const groupAllowed = isGroupAllowed(srcGroupPerms, contentModelGroup.id);
+      if (!groupAllowed) {
+        continue;
       }
+      return true;
     }
     return false;
-  }, [identity, hasFullAccess]);
+  }, [identity, hasFullAccess, modelPermissions]);
   const canEdit = useCallback((item, permissionName) => {
-    if (hasFullAccess) {
-      return true;
-    }
-    const permissions = identity.getPermissions(permissionName);
-    if (!permissions.length || !identity) {
-      return false;
-    }
-    return permissions.some(permission => {
+    return checkPermission(permissionName, permission => {
       if (permission.own) {
-        /**
-         * There will be no "createdBy" field for a new entry therefore we enable the access.
-         */
         if (!item.createdBy) {
           return true;
         }
@@ -115,41 +166,18 @@ export const usePermission = makeDecoratable(() => {
       }
       return false;
     });
-  }, [identity]);
-  /**
-   * @description This checks whether the user has the "write" access for given permission;
-   * without talking the "own" property in account.
-   * @param {string} permissionName
-   * */
+  }, [identity, checkPermission]);
   const canCreate = useCallback(permissionName => {
-    if (hasFullAccess) {
-      return true;
-    }
-    const permissions = identity.getPermissions(permissionName);
-    if (!permissions.length) {
-      return false;
-    }
-    return permissions.some(permission => {
+    return checkPermission(permissionName, permission => {
       if (typeof permission.rwd !== "string") {
         return true;
       }
       return permission.rwd.includes("w");
     });
-  }, [identity]);
+  }, [checkPermission]);
   const canDelete = useCallback((item, permissionName) => {
-    if (hasFullAccess) {
-      return true;
-    }
-    const permissions = identity.getPermissions(permissionName);
-    if (!permissions.length) {
-      return false;
-    }
-    return permissions.some(permission => {
+    return checkPermission(permissionName, permission => {
       if (permission.own) {
-        // Using optional chaining here because there might be cases where the item
-        // or its `createdBy` property is not defined. In that case, we want to
-        // return `false` and not throw an error.
         return item?.createdBy?.id === identity.id;
       }
       if (typeof permission.rwd === "string") {
@@ -157,43 +185,22 @@ export const usePermission = makeDecoratable(() => {
       }
       return false;
     });
-  }, [identity]);
+  }, [identity, checkPermission]);
   const canDeleteEntries = useCallback(permissionName => {
-    if (hasFullAccess) {
-      return true;
-    }
-    const permissions = identity.getPermissions(permissionName);
-    if (!permissions.length) {
-      return false;
-    }
-    return permissions.some(permission => {
-      return permission.rwd?.includes("d");
+    return checkPermission(permissionName, permission => {
+      return !!permission.rwd?.includes("d");
     });
-  }, [identity, hasFullAccess]);
+  }, [checkPermission]);
   const canPublish = useCallback(permissionName => {
-    if (hasFullAccess) {
-      return true;
-    }
-    const permissions = identity.getPermissions(permissionName);
-    if (!permissions.length) {
-      return false;
-    }
-    return permissions.some(permission => {
-      return permission.pw?.includes("p");
+    return checkPermission(permissionName, permission => {
+      return !!permission.pw?.includes("p");
     });
-  }, [identity, hasFullAccess]);
+  }, [checkPermission]);
   const canUnpublish = useCallback(permissionName => {
-    if (hasFullAccess) {
-      return true;
-    }
-    const permissions = identity.getPermissions(permissionName);
-    if (!permissions.length) {
-      return false;
-    }
-    return permissions.some(permission => {
-      return permission.pw?.includes("u");
+    return checkPermission(permissionName, permission => {
+      return !!permission.pw?.includes("u");
     });
-  }, [identity, hasFullAccess]);
+  }, [checkPermission]);
   const canReadContentModels = canRead("cms.contentModel");
   const canReadContentModelGroups = canRead("cms.contentModelGroup");
   const canCreateContentModels = canCreate("cms.contentModel");

package/admin/hooks/usePermission.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"names":["useCallback","useMemo","useIdentity","makeDecoratable","usePermission","identity","hasFullAccess","getPermission","canRead","permissionName","permissions","getPermissions","length","some","permission","rwd","includes","canReadEntries","contentModelGroup","contentModel","contentModelPermissions","allowedModels","i","permissionAllowedModels","models","allModelsAllowed","Array","isArray","modelId","contentModelGroupPermissions","allowedModelGroups","permissionAllowedModelGroups","allModelGroupsAllowed","id","rwdGivesReadAccess","canEdit","item","own","createdBy","canCreate","canDelete","canDeleteEntries","canPublish","pw","canUnpublish","canReadContentModels","canReadContentModelGroups","canCreateContentModels","canCreateContentModelGroups","canAccessManageEndpoint","undefined"],"sources":["usePermission.ts"],"sourcesContent":["import { useCallback, useMemo } from \"react\";\nimport { useIdentity } from \"@webiny/app-admin\";\nimport { makeDecoratable } from \"@webiny/react-composition\";\nimport type { CmsGroup, CmsIdentity, CmsModel, CmsSecurityPermission } from \"~/types.js\";\n\nexport interface CreatableItem {\n createdBy?: Pick<CmsIdentity, \"id\">;\n}\n\ninterface CanReadEntriesCallableParams {\n contentModelGroup: Pick<CmsGroup, \"id\">;\n contentModel: Pick<CmsModel, \"modelId\">;\n}\n\nexport const usePermission = makeDecoratable(() => {\n const { identity } = useIdentity();\n\n const hasFullAccess = useMemo(() => !!identity.getPermission(\"cms.\"), [identity]);\n\n const canRead = useCallback(\n (permissionName: string): boolean => {\n if (hasFullAccess) {\n return true;\n }\n const permissions =\n identity.getPermissions<CmsSecurityPermission>(permissionName) ?? [];\n\n if (!permissions.length) {\n return false;\n }\n\n return permissions.some(permission => {\n if (typeof permission.rwd !== \"string\") {\n return true;\n }\n\n return permission.rwd.includes(\"r\");\n });\n },\n [identity, hasFullAccess]\n );\n\n const canReadEntries = useCallback(\n ({ contentModelGroup, contentModel }: CanReadEntriesCallableParams): boolean => {\n if (hasFullAccess) {\n return true;\n }\n\n const permissions =\n identity.getPermissions<CmsSecurityPermission>(\"cms.contentEntry\") ?? [];\n if (!permissions.length) {\n return false;\n }\n\n // Check \"contentModel\" list.\n const contentModelPermissions = identity.getPermissions(\"cms.contentModel\");\n\n // \"all\" means user has access to all models.\n let allowedModels: \"all\" \| string[] = [];\n\n for (let i = 0; i < contentModelPermissions.length; i++) {\n const permission = contentModelPermissions[i];\n const permissionAllowedModels = permission?.models;\n // The moment we encounter a permission that gives access to all models,\n // we can stop checking other permissions.\n const allModelsAllowed = !Array.isArray(permissionAllowedModels);\n if (allModelsAllowed) {\n allowedModels = \"all\";\n break;\n }\n\n allowedModels = [...allowedModels, ...permissionAllowedModels];\n }\n\n if (Array.isArray(allowedModels)) {\n return allowedModels.includes(contentModel.modelId);\n }\n\n // Check \"contentModelGroup\" list.\n const contentModelGroupPermissions = identity.getPermissions(\"cms.contentModelGroup\");\n\n // \"all\" means user has access to all models.\n let allowedModelGroups: \"all\" \| string[] = [];\n\n for (let i = 0; i < contentModelGroupPermissions.length; i++) {\n const permission = contentModelGroupPermissions[i];\n const permissionAllowedModelGroups = permission?.models;\n // The moment we encounter a permission that gives access to all models,\n // we can stop checking other permissions.\n const allModelGroupsAllowed = !Array.isArray(permissionAllowedModelGroups);\n if (allModelGroupsAllowed) {\n allowedModelGroups = \"all\";\n break;\n }\n\n allowedModelGroups = [...allowedModelGroups, ...permissionAllowedModelGroups];\n }\n\n if (Array.isArray(allowedModelGroups)) {\n return allowedModelGroups.includes(contentModelGroup.id);\n }\n\n for (let i = 0; i < permissions.length; i++) {\n const permission = permissions[i];\n\n // If no RWD restrictions are set, we can return true.\n if (typeof permission.rwd !== \"string\") {\n return true;\n }\n\n const rwdGivesReadAccess = permission.rwd.includes(\"r\");\n if (rwdGivesReadAccess) {\n return true;\n }\n }\n\n return false;\n },\n [identity, hasFullAccess]\n );\n\n const canEdit = useCallback(\n (item: CreatableItem, permissionName: string): boolean => {\n if (hasFullAccess) {\n return true;\n }\n\n const permissions = identity.getPermissions<CmsSecurityPermission>(permissionName);\n\n if (!permissions.length \|\| !identity) {\n return false;\n }\n\n return permissions.some(permission => {\n if (permission.own) {\n /\n There will be no \"createdBy\" field for a new entry therefore we enable the access.\n /\n if (!item.createdBy) {\n return true;\n }\n\n if (item?.createdBy?.id === identity.id) {\n return true;\n }\n }\n\n if (typeof permission.rwd === \"string\") {\n if (permission.rwd.includes(\"w\")) {\n return true;\n }\n }\n\n return false;\n });\n },\n [identity]\n );\n\n /\n @description This checks whether the user has the \"write\" access for given permission;\n * without talking the \"own\" property in account.\n * @param {string} permissionName\n * */\n const canCreate = useCallback(\n (permissionName: string): boolean => {\n if (hasFullAccess) {\n return true;\n }\n\n const permissions = identity.getPermissions<CmsSecurityPermission>(permissionName);\n if (!permissions.length) {\n return false;\n }\n\n return permissions.some(permission => {\n if (typeof permission.rwd !== \"string\") {\n return true;\n }\n\n return permission.rwd.includes(\"w\");\n });\n },\n [identity]\n );\n\n const canDelete = useCallback(\n (item: CreatableItem, permissionName: string): boolean => {\n if (hasFullAccess) {\n return true;\n }\n\n const permissions = identity.getPermissions<CmsSecurityPermission>(permissionName);\n\n if (!permissions.length) {\n return false;\n }\n\n return permissions.some(permission => {\n if (permission.own) {\n // Using optional chaining here because there might be cases where the item\n // or its `createdBy` property is not defined. In that case, we want to\n // return `false` and not throw an error.\n return item?.createdBy?.id === identity.id;\n }\n\n if (typeof permission.rwd === \"string\") {\n return permission.rwd.includes(\"d\");\n }\n\n return false;\n });\n },\n [identity]\n );\n\n const canDeleteEntries = useCallback(\n (permissionName: string): boolean => {\n if (hasFullAccess) {\n return true;\n }\n const permissions = identity.getPermissions<CmsSecurityPermission>(permissionName);\n\n if (!permissions.length) {\n return false;\n }\n\n return permissions.some(permission => {\n return permission.rwd?.includes(\"d\");\n });\n },\n [identity, hasFullAccess]\n );\n\n const canPublish = useCallback(\n (permissionName: string): boolean => {\n if (hasFullAccess) {\n return true;\n }\n const permissions = identity.getPermissions<CmsSecurityPermission>(permissionName);\n\n if (!permissions.length) {\n return false;\n }\n\n return permissions.some(permission => {\n return permission.pw?.includes(\"p\");\n });\n },\n [identity, hasFullAccess]\n );\n\n const canUnpublish = useCallback(\n (permissionName: string): boolean => {\n if (hasFullAccess) {\n return true;\n }\n const permissions = identity.getPermissions<CmsSecurityPermission>(permissionName);\n\n if (!permissions.length) {\n return false;\n }\n\n return permissions.some(permission => {\n return permission.pw?.includes(\"u\");\n });\n },\n [identity, hasFullAccess]\n );\n\n const canReadContentModels = canRead(\"cms.contentModel\");\n const canReadContentModelGroups = canRead(\"cms.contentModelGroup\");\n const canCreateContentModels = canCreate(\"cms.contentModel\");\n const canCreateContentModelGroups = canCreate(\"cms.contentModelGroup\");\n const canAccessManageEndpoint = useMemo(() => {\n return identity.getPermission(\"cms.endpoint.manage\") !== undefined;\n }, [identity]);\n\n return {\n canReadEntries,\n canEdit,\n canCreate,\n canDelete,\n canDeleteEntries,\n canPublish,\n canUnpublish,\n canReadContentModels,\n canReadContentModelGroups,\n canCreateContentModels,\n canCreateContentModelGroups,\n canAccessManageEndpoint\n };\n});\n"],"mappings":"AAAA,SAASA,WAAW,EAAEC,OAAO,QAAQ,OAAO;AAC5C,SAASC,WAAW,QAAQ,mBAAmB;AAC/C,SAASC,eAAe,QAAQ,2BAA2B;AAY3D,OAAO,MAAMC,aAAa,GAAGD,eAAe,CAAC,MAAM;EAC/C,MAAM;IAAEE;EAAS,CAAC,GAAGH,WAAW,CAAC,CAAC;EAElC,MAAMI,aAAa,GAAGL,OAAO,CAAC,MAAM,CAAC,CAACI,QAAQ,CAACE,aAAa,CAAC,OAAO,CAAC,EAAE,CAACF,QAAQ,CAAC,CAAC;EAElF,MAAMG,OAAO,GAAGR,WAAW,CACtBS,cAAsB,IAAc;IACjC,IAAIH,aAAa,EAAE;MACf,OAAO,IAAI;IACf;IACA,MAAMI,WAAW,GACbL,QAAQ,CAACM,cAAc,CAAwBF,cAAc,CAAC,IAAI,EAAE;IAExE,IAAI,CAACC,WAAW,CAACE,MAAM,EAAE;MACrB,OAAO,KAAK;IAChB;IAEA,OAAOF,WAAW,CAACG,IAAI,CAACC,UAAU,IAAI;MAClC,IAAI,OAAOA,UAAU,CAACC,GAAG,KAAK,QAAQ,EAAE;QACpC,OAAO,IAAI;MACf;MAEA,OAAOD,UAAU,CAACC,GAAG,CAACC,QAAQ,CAAC,GAAG,CAAC;IACvC,CAAC,CAAC;EACN,CAAC,EACD,CAACX,QAAQ,EAAEC,aAAa,CAC5B,CAAC;EAED,MAAMW,cAAc,GAAGjB,WAAW,CAC9B,CAAC;IAAEkB,iBAAiB;IAAEC;EAA2C,CAAC,KAAc;IAC5E,IAAIb,aAAa,EAAE;MACf,OAAO,IAAI;IACf;IAEA,MAAMI,WAAW,GACbL,QAAQ,CAACM,cAAc,CAAwB,kBAAkB,CAAC,IAAI,EAAE;IAC5E,IAAI,CAACD,WAAW,CAACE,MAAM,EAAE;MACrB,OAAO,KAAK;IAChB;;IAEA;IACA,MAAMQ,uBAAuB,GAAGf,QAAQ,CAACM,cAAc,CAAC,kBAAkB,CAAC;;IAE3E;IACA,IAAIU,aAA+B,GAAG,EAAE;IAExC,KAAK,IAAIC,CAAC,GAAG,CAAC,EAAEA,CAAC,GAAGF,uBAAuB,CAACR,MAAM,EAAEU,CAAC,EAAE,EAAE;MACrD,MAAMR,UAAU,GAAGM,uBAAuB,CAACE,CAAC,CAAC;MAC7C,MAAMC,uBAAuB,GAAGT,UAAU,EAAEU,MAAM;MAClD;MACA;MACA,MAAMC,gBAAgB,GAAG,CAACC,KAAK,CAACC,OAAO,CAACJ,uBAAuB,CAAC;MAChE,IAAIE,gBAAgB,EAAE;QAClBJ,aAAa,GAAG,KAAK;QACrB;MACJ;MAEAA,aAAa,GAAG,CAAC,GAAGA,aAAa,EAAE,GAAGE,uBAAuB,CAAC;IAClE;IAEA,IAAIG,KAAK,CAACC,OAAO,CAACN,aAAa,CAAC,EAAE;MAC9B,OAAOA,aAAa,CAACL,QAAQ,CAACG,YAAY,CAACS,OAAO,CAAC;IACvD;;IAEA;IACA,MAAMC,4BAA4B,GAAGxB,QAAQ,CAACM,cAAc,CAAC,uBAAuB,CAAC;;IAErF;IACA,IAAImB,kBAAoC,GAAG,EAAE;IAE7C,KAAK,IAAIR,CAAC,GAAG,CAAC,EAAEA,CAAC,GAAGO,4BAA4B,CAACjB,MAAM,EAAEU,CAAC,EAAE,EAAE;MAC1D,MAAMR,UAAU,GAAGe,4BAA4B,CAACP,CAAC,CAAC;MAClD,MAAMS,4BAA4B,GAAGjB,UAAU,EAAEU,MAAM;MACvD;MACA;MACA,MAAMQ,qBAAqB,GAAG,CAACN,KAAK,CAACC,OAAO,CAACI,4BAA4B,CAAC;MAC1E,IAAIC,qBAAqB,EAAE;QACvBF,kBAAkB,GAAG,KAAK;QAC1B;MACJ;MAEAA,kBAAkB,GAAG,CAAC,GAAGA,kBAAkB,EAAE,GAAGC,4BAA4B,CAAC;IACjF;IAEA,IAAIL,KAAK,CAACC,OAAO,CAACG,kBAAkB,CAAC,EAAE;MACnC,OAAOA,kBAAkB,CAACd,QAAQ,CAACE,iBAAiB,CAACe,EAAE,CAAC;IAC5D;IAEA,KAAK,IAAIX,CAAC,GAAG,CAAC,EAAEA,CAAC,GAAGZ,WAAW,CAACE,MAAM,EAAEU,CAAC,EAAE,EAAE;MACzC,MAAMR,UAAU,GAAGJ,WAAW,CAACY,CAAC,CAAC;;MAEjC;MACA,IAAI,OAAOR,UAAU,CAACC,GAAG,KAAK,QAAQ,EAAE;QACpC,OAAO,IAAI;MACf;MAEA,MAAMmB,kBAAkB,GAAGpB,UAAU,CAACC,GAAG,CAACC,QAAQ,CAAC,GAAG,CAAC;MACvD,IAAIkB,kBAAkB,EAAE;QACpB,OAAO,IAAI;MACf;IACJ;IAEA,OAAO,KAAK;EAChB,CAAC,EACD,CAAC7B,QAAQ,EAAEC,aAAa,CAC5B,CAAC;EAED,MAAM6B,OAAO,GAAGnC,WAAW,CACvB,CAACoC,IAAmB,EAAE3B,cAAsB,KAAc;IACtD,IAAIH,aAAa,EAAE;MACf,OAAO,IAAI;IACf;IAEA,MAAMI,WAAW,GAAGL,QAAQ,CAACM,cAAc,CAAwBF,cAAc,CAAC;IAElF,IAAI,CAACC,WAAW,CAACE,MAAM,IAAI,CAACP,QAAQ,EAAE;MAClC,OAAO,KAAK;IAChB;IAEA,OAAOK,WAAW,CAACG,IAAI,CAACC,UAAU,IAAI;MAClC,IAAIA,UAAU,CAACuB,GAAG,EAAE;QAChB;AACpB;AACA;QACoB,IAAI,CAACD,IAAI,CAACE,SAAS,EAAE;UACjB,OAAO,IAAI;QACf;QAEA,IAAIF,IAAI,EAAEE,SAAS,EAAEL,EAAE,KAAK5B,QAAQ,CAAC4B,EAAE,EAAE;UACrC,OAAO,IAAI;QACf;MACJ;MAEA,IAAI,OAAOnB,UAAU,CAACC,GAAG,KAAK,QAAQ,EAAE;QACpC,IAAID,UAAU,CAACC,GAAG,CAACC,QAAQ,CAAC,GAAG,CAAC,EAAE;UAC9B,OAAO,IAAI;QACf;MACJ;MAEA,OAAO,KAAK;IAChB,CAAC,CAAC;EACN,CAAC,EACD,CAACX,QAAQ,CACb,CAAC;;EAED;AACJ;AACA;AACA;AACA;EACI,MAAMkC,SAAS,GAAGvC,WAAW,CACxBS,cAAsB,IAAc;IACjC,IAAIH,aAAa,EAAE;MACf,OAAO,IAAI;IACf;IAEA,MAAMI,WAAW,GAAGL,QAAQ,CAACM,cAAc,CAAwBF,cAAc,CAAC;IAClF,IAAI,CAACC,WAAW,CAACE,MAAM,EAAE;MACrB,OAAO,KAAK;IAChB;IAEA,OAAOF,WAAW,CAACG,IAAI,CAACC,UAAU,IAAI;MAClC,IAAI,OAAOA,UAAU,CAACC,GAAG,KAAK,QAAQ,EAAE;QACpC,OAAO,IAAI;MACf;MAEA,OAAOD,UAAU,CAACC,GAAG,CAACC,QAAQ,CAAC,GAAG,CAAC;IACvC,CAAC,CAAC;EACN,CAAC,EACD,CAACX,QAAQ,CACb,CAAC;EAED,MAAMmC,SAAS,GAAGxC,WAAW,CACzB,CAACoC,IAAmB,EAAE3B,cAAsB,KAAc;IACtD,IAAIH,aAAa,EAAE;MACf,OAAO,IAAI;IACf;IAEA,MAAMI,WAAW,GAAGL,QAAQ,CAACM,cAAc,CAAwBF,cAAc,CAAC;IAElF,IAAI,CAACC,WAAW,CAACE,MAAM,EAAE;MACrB,OAAO,KAAK;IAChB;IAEA,OAAOF,WAAW,CAACG,IAAI,CAACC,UAAU,IAAI;MAClC,IAAIA,UAAU,CAACuB,GAAG,EAAE;QAChB;QACA;QACA;QACA,OAAOD,IAAI,EAAEE,SAAS,EAAEL,EAAE,KAAK5B,QAAQ,CAAC4B,EAAE;MAC9C;MAEA,IAAI,OAAOnB,UAAU,CAACC,GAAG,KAAK,QAAQ,EAAE;QACpC,OAAOD,UAAU,CAACC,GAAG,CAACC,QAAQ,CAAC,GAAG,CAAC;MACvC;MAEA,OAAO,KAAK;IAChB,CAAC,CAAC;EACN,CAAC,EACD,CAACX,QAAQ,CACb,CAAC;EAED,MAAMoC,gBAAgB,GAAGzC,WAAW,CAC/BS,cAAsB,IAAc;IACjC,IAAIH,aAAa,EAAE;MACf,OAAO,IAAI;IACf;IACA,MAAMI,WAAW,GAAGL,QAAQ,CAACM,cAAc,CAAwBF,cAAc,CAAC;IAElF,IAAI,CAACC,WAAW,CAACE,MAAM,EAAE;MACrB,OAAO,KAAK;IAChB;IAEA,OAAOF,WAAW,CAACG,IAAI,CAACC,UAAU,IAAI;MAClC,OAAOA,UAAU,CAACC,GAAG,EAAEC,QAAQ,CAAC,GAAG,CAAC;IACxC,CAAC,CAAC;EACN,CAAC,EACD,CAACX,QAAQ,EAAEC,aAAa,CAC5B,CAAC;EAED,MAAMoC,UAAU,GAAG1C,WAAW,CACzBS,cAAsB,IAAc;IACjC,IAAIH,aAAa,EAAE;MACf,OAAO,IAAI;IACf;IACA,MAAMI,WAAW,GAAGL,QAAQ,CAACM,cAAc,CAAwBF,cAAc,CAAC;IAElF,IAAI,CAACC,WAAW,CAACE,MAAM,EAAE;MACrB,OAAO,KAAK;IAChB;IAEA,OAAOF,WAAW,CAACG,IAAI,CAACC,UAAU,IAAI;MAClC,OAAOA,UAAU,CAAC6B,EAAE,EAAE3B,QAAQ,CAAC,GAAG,CAAC;IACvC,CAAC,CAAC;EACN,CAAC,EACD,CAACX,QAAQ,EAAEC,aAAa,CAC5B,CAAC;EAED,MAAMsC,YAAY,GAAG5C,WAAW,CAC3BS,cAAsB,IAAc;IACjC,IAAIH,aAAa,EAAE;MACf,OAAO,IAAI;IACf;IACA,MAAMI,WAAW,GAAGL,QAAQ,CAACM,cAAc,CAAwBF,cAAc,CAAC;IAElF,IAAI,CAACC,WAAW,CAACE,MAAM,EAAE;MACrB,OAAO,KAAK;IAChB;IAEA,OAAOF,WAAW,CAACG,IAAI,CAACC,UAAU,IAAI;MAClC,OAAOA,UAAU,CAAC6B,EAAE,EAAE3B,QAAQ,CAAC,GAAG,CAAC;IACvC,CAAC,CAAC;EACN,CAAC,EACD,CAACX,QAAQ,EAAEC,aAAa,CAC5B,CAAC;EAED,MAAMuC,oBAAoB,GAAGrC,OAAO,CAAC,kBAAkB,CAAC;EACxD,MAAMsC,yBAAyB,GAAGtC,OAAO,CAAC,uBAAuB,CAAC;EAClE,MAAMuC,sBAAsB,GAAGR,SAAS,CAAC,kBAAkB,CAAC;EAC5D,MAAMS,2BAA2B,GAAGT,SAAS,CAAC,uBAAuB,CAAC;EACtE,MAAMU,uBAAuB,GAAGhD,OAAO,CAAC,MAAM;IAC1C,OAAOI,QAAQ,CAACE,aAAa,CAAC,qBAAqB,CAAC,KAAK2C,SAAS;EACtE,CAAC,EAAE,CAAC7C,QAAQ,CAAC,CAAC;EAEd,OAAO;IACHY,cAAc;IACdkB,OAAO;IACPI,SAAS;IACTC,SAAS;IACTC,gBAAgB;IAChBC,UAAU;IACVE,YAAY;IACZC,oBAAoB;IACpBC,yBAAyB;IACzBC,sBAAsB;IACtBC,2BAA2B;IAC3BC;EACJ,CAAC;AACL,CAAC,CAAC","ignoreList":[]}
1	+ {"version":3,"names":["useCallback","useContext","useMemo","useIdentity","makeDecoratable","ModelContext","isModelAllowed","modelPermissions","modelId","length","permission","Array","isArray","models","includes","isGroupAllowed","groupPermissions","groupId","groups","hasAccessForModel","permissions","check","srcKeys","Set","p","add","_src","src","srcPerms","filter","srcModelPerms","some","modelAllowed","usePermission","identity","model","hasFullAccess","getPermission","getPermissions","checkPermission","permissionName","canRead","rwd","canReadEntries","contentModelGroup","contentModel","entryPermissions","srcEntryPerms","srcGroupPerms","hasReadAccess","groupAllowed","id","canEdit","item","own","createdBy","canCreate","canDelete","canDeleteEntries","canPublish","pw","canUnpublish","canReadContentModels","canReadContentModelGroups","canCreateContentModels","canCreateContentModelGroups","canAccessManageEndpoint","undefined"],"sources":["usePermission.ts"],"sourcesContent":["import { useCallback, useContext, useMemo } from \"react\";\nimport { useIdentity } from \"@webiny/app-admin\";\nimport { makeDecoratable } from \"@webiny/react-composition\";\nimport { ModelContext } from \"@webiny/app-headless-cms-common/ModelProvider/ModelContext.js\";\nimport type { CmsGroup, CmsIdentity, CmsModel, CmsSecurityPermission } from \"~/types.js\";\n\nexport interface CreatableItem {\n createdBy?: Pick<CmsIdentity, \"id\">;\n}\n\ninterface CanReadEntriesCallableParams {\n contentModelGroup: Pick<CmsGroup, \"id\">;\n contentModel: Pick<CmsModel, \"modelId\">;\n}\n\nfunction isModelAllowed(modelPermissions: CmsSecurityPermission[], modelId: string): boolean {\n // No model permissions in this group means all models are allowed.\n if (!modelPermissions.length) {\n return true;\n }\n\n for (const permission of modelPermissions) {\n // If no models array, this permission grants access to all models.\n if (!Array.isArray(permission.models)) {\n return true;\n }\n\n if (permission.models.includes(modelId)) {\n return true;\n }\n }\n\n return false;\n}\n\nfunction isGroupAllowed(groupPermissions: CmsSecurityPermission[], groupId: string): boolean {\n // No group permissions in this group means all groups are allowed.\n if (!groupPermissions.length) {\n return true;\n }\n\n for (const permission of groupPermissions) {\n // If no groups array, this permission grants access to all groups.\n if (!Array.isArray(permission.groups)) {\n return true;\n }\n\n if (permission.groups.includes(groupId)) {\n return true;\n }\n }\n\n return false;\n}\n\ninterface HasAccessParams {\n permissions: CmsSecurityPermission[];\n modelPermissions: CmsSecurityPermission[];\n modelId: string;\n check: (permission: CmsSecurityPermission) => boolean;\n}\n\n/*\n Check if any _src group grants access for the given model.\n /\nfunction hasAccessForModel({ permissions, modelPermissions, modelId, check }: HasAccessParams) {\n const srcKeys = new Set<string \| undefined>();\n for (const p of [...permissions, ...modelPermissions]) {\n srcKeys.add(p._src);\n }\n\n for (const src of srcKeys) {\n const srcPerms = permissions.filter(p => p._src === src);\n const srcModelPerms = modelPermissions.filter(p => p._src === src);\n\n if (!srcPerms.length) {\n continue;\n }\n\n if (!srcPerms.some(check)) {\n continue;\n }\n\n const modelAllowed = isModelAllowed(srcModelPerms, modelId);\n if (!modelAllowed) {\n continue;\n }\n\n return true;\n }\n\n return false;\n}\n\nexport const usePermission = makeDecoratable(() => {\n const { identity } = useIdentity();\n const model = useContext(ModelContext);\n const modelId = model?.modelId;\n\n const hasFullAccess = useMemo(() => !!identity.getPermission(\"cms.\"), [identity]);\n\n const modelPermissions = useMemo(\n () => identity.getPermissions<CmsSecurityPermission>(\"cms.contentModel\") ?? [],\n [identity]\n );\n\n /*\n Check permissions with _src-based model scoping when a model context is available.\n * When no model context exists, falls back to checking permissions without model correlation.\n */\n const checkPermission = useCallback(\n (permissionName: string, check: (permission: CmsSecurityPermission) => boolean) => {\n if (hasFullAccess) {\n return true;\n }\n\n const permissions = identity.getPermissions<CmsSecurityPermission>(permissionName);\n if (!permissions.length) {\n return false;\n }\n\n if (modelId) {\n return hasAccessForModel({\n permissions,\n modelPermissions,\n modelId,\n check\n });\n }\n\n return permissions.some(check);\n },\n [identity, hasFullAccess, modelId, modelPermissions]\n );\n\n const canRead = useCallback(\n (permissionName: string): boolean => {\n return checkPermission(permissionName, permission => {\n if (typeof permission.rwd !== \"string\") {\n return true;\n }\n return permission.rwd.includes(\"r\");\n });\n },\n [checkPermission]\n );\n\n const canReadEntries = useCallback(\n ({ contentModelGroup, contentModel }: CanReadEntriesCallableParams): boolean => {\n if (hasFullAccess) {\n return true;\n }\n\n const entryPermissions =\n identity.getPermissions<CmsSecurityPermission>(\"cms.contentEntry\") ?? [];\n if (!entryPermissions.length) {\n return false;\n }\n\n const groupPermissions =\n identity.getPermissions<CmsSecurityPermission>(\"cms.contentModelGroup\") ?? [];\n\n // Group all permissions by _src. Permissions without _src go into an \"ungrouped\" bucket.\n const srcKeys = new Set<string \| undefined>();\n for (const p of [...entryPermissions, ...modelPermissions, ...groupPermissions]) {\n srcKeys.add(p._src);\n }\n\n for (const src of srcKeys) {\n const srcEntryPerms = entryPermissions.filter(p => p._src === src);\n const srcModelPerms = modelPermissions.filter(p => p._src === src);\n const srcGroupPerms = groupPermissions.filter(p => p._src === src);\n\n if (!srcEntryPerms.length) {\n continue;\n }\n\n const hasReadAccess = srcEntryPerms.some(p => {\n if (typeof p.rwd !== \"string\") {\n return true;\n }\n return p.rwd.includes(\"r\");\n });\n\n if (!hasReadAccess) {\n continue;\n }\n\n const modelAllowed = isModelAllowed(srcModelPerms, contentModel.modelId);\n if (!modelAllowed) {\n continue;\n }\n\n const groupAllowed = isGroupAllowed(srcGroupPerms, contentModelGroup.id);\n if (!groupAllowed) {\n continue;\n }\n\n return true;\n }\n\n return false;\n },\n [identity, hasFullAccess, modelPermissions]\n );\n\n const canEdit = useCallback(\n (item: CreatableItem, permissionName: string): boolean => {\n return checkPermission(permissionName, permission => {\n if (permission.own) {\n if (!item.createdBy) {\n return true;\n }\n\n if (item?.createdBy?.id === identity.id) {\n return true;\n }\n }\n\n if (typeof permission.rwd === \"string\") {\n if (permission.rwd.includes(\"w\")) {\n return true;\n }\n }\n\n return false;\n });\n },\n [identity, checkPermission]\n );\n\n const canCreate = useCallback(\n (permissionName: string): boolean => {\n return checkPermission(permissionName, permission => {\n if (typeof permission.rwd !== \"string\") {\n return true;\n }\n return permission.rwd.includes(\"w\");\n });\n },\n [checkPermission]\n );\n\n const canDelete = useCallback(\n (item: CreatableItem, permissionName: string): boolean => {\n return checkPermission(permissionName, permission => {\n if (permission.own) {\n return item?.createdBy?.id === identity.id;\n }\n\n if (typeof permission.rwd === \"string\") {\n return permission.rwd.includes(\"d\");\n }\n\n return false;\n });\n },\n [identity, checkPermission]\n );\n\n const canDeleteEntries = useCallback(\n (permissionName: string): boolean => {\n return checkPermission(permissionName, permission => {\n return !!permission.rwd?.includes(\"d\");\n });\n },\n [checkPermission]\n );\n\n const canPublish = useCallback(\n (permissionName: string): boolean => {\n return checkPermission(permissionName, permission => {\n return !!permission.pw?.includes(\"p\");\n });\n },\n [checkPermission]\n );\n\n const canUnpublish = useCallback(\n (permissionName: string): boolean => {\n return checkPermission(permissionName, permission => {\n return !!permission.pw?.includes(\"u\");\n });\n },\n [checkPermission]\n );\n\n const canReadContentModels = canRead(\"cms.contentModel\");\n const canReadContentModelGroups = canRead(\"cms.contentModelGroup\");\n const canCreateContentModels = canCreate(\"cms.contentModel\");\n const canCreateContentModelGroups = canCreate(\"cms.contentModelGroup\");\n const canAccessManageEndpoint = useMemo(() => {\n return identity.getPermission(\"cms.endpoint.manage\") !== undefined;\n }, [identity]);\n\n return {\n canReadEntries,\n canEdit,\n canCreate,\n canDelete,\n canDeleteEntries,\n canPublish,\n canUnpublish,\n canReadContentModels,\n canReadContentModelGroups,\n canCreateContentModels,\n canCreateContentModelGroups,\n canAccessManageEndpoint\n };\n});\n"],"mappings":"AAAA,SAASA,WAAW,EAAEC,UAAU,EAAEC,OAAO,QAAQ,OAAO;AACxD,SAASC,WAAW,QAAQ,mBAAmB;AAC/C,SAASC,eAAe,QAAQ,2BAA2B;AAC3D,SAASC,YAAY,QAAQ,+DAA+D;AAY5F,SAASC,cAAcA,CAACC,gBAAyC,EAAEC,OAAe,EAAW;EACzF;EACA,IAAI,CAACD,gBAAgB,CAACE,MAAM,EAAE;IAC1B,OAAO,IAAI;EACf;EAEA,KAAK,MAAMC,UAAU,IAAIH,gBAAgB,EAAE;IACvC;IACA,IAAI,CAACI,KAAK,CAACC,OAAO,CAACF,UAAU,CAACG,MAAM,CAAC,EAAE;MACnC,OAAO,IAAI;IACf;IAEA,IAAIH,UAAU,CAACG,MAAM,CAACC,QAAQ,CAACN,OAAO,CAAC,EAAE;MACrC,OAAO,IAAI;IACf;EACJ;EAEA,OAAO,KAAK;AAChB;AAEA,SAASO,cAAcA,CAACC,gBAAyC,EAAEC,OAAe,EAAW;EACzF;EACA,IAAI,CAACD,gBAAgB,CAACP,MAAM,EAAE;IAC1B,OAAO,IAAI;EACf;EAEA,KAAK,MAAMC,UAAU,IAAIM,gBAAgB,EAAE;IACvC;IACA,IAAI,CAACL,KAAK,CAACC,OAAO,CAACF,UAAU,CAACQ,MAAM,CAAC,EAAE;MACnC,OAAO,IAAI;IACf;IAEA,IAAIR,UAAU,CAACQ,MAAM,CAACJ,QAAQ,CAACG,OAAO,CAAC,EAAE;MACrC,OAAO,IAAI;IACf;EACJ;EAEA,OAAO,KAAK;AAChB;AASA;AACA;AACA;AACA,SAASE,iBAAiBA,CAAC;EAAEC,WAAW;EAAEb,gBAAgB;EAAEC,OAAO;EAAEa;AAAuB,CAAC,EAAE;EAC3F,MAAMC,OAAO,GAAG,IAAIC,GAAG,CAAqB,CAAC;EAC7C,KAAK,MAAMC,CAAC,IAAI,CAAC,GAAGJ,WAAW,EAAE,GAAGb,gBAAgB,CAAC,EAAE;IACnDe,OAAO,CAACG,GAAG,CAACD,CAAC,CAACE,IAAI,CAAC;EACvB;EAEA,KAAK,MAAMC,GAAG,IAAIL,OAAO,EAAE;IACvB,MAAMM,QAAQ,GAAGR,WAAW,CAACS,MAAM,CAACL,CAAC,IAAIA,CAAC,CAACE,IAAI,KAAKC,GAAG,CAAC;IACxD,MAAMG,aAAa,GAAGvB,gBAAgB,CAACsB,MAAM,CAACL,CAAC,IAAIA,CAAC,CAACE,IAAI,KAAKC,GAAG,CAAC;IAElE,IAAI,CAACC,QAAQ,CAACnB,MAAM,EAAE;MAClB;IACJ;IAEA,IAAI,CAACmB,QAAQ,CAACG,IAAI,CAACV,KAAK,CAAC,EAAE;MACvB;IACJ;IAEA,MAAMW,YAAY,GAAG1B,cAAc,CAACwB,aAAa,EAAEtB,OAAO,CAAC;IAC3D,IAAI,CAACwB,YAAY,EAAE;MACf;IACJ;IAEA,OAAO,IAAI;EACf;EAEA,OAAO,KAAK;AAChB;AAEA,OAAO,MAAMC,aAAa,GAAG7B,eAAe,CAAC,MAAM;EAC/C,MAAM;IAAE8B;EAAS,CAAC,GAAG/B,WAAW,CAAC,CAAC;EAClC,MAAMgC,KAAK,GAAGlC,UAAU,CAACI,YAAY,CAAC;EACtC,MAAMG,OAAO,GAAG2B,KAAK,EAAE3B,OAAO;EAE9B,MAAM4B,aAAa,GAAGlC,OAAO,CAAC,MAAM,CAAC,CAACgC,QAAQ,CAACG,aAAa,CAAC,OAAO,CAAC,EAAE,CAACH,QAAQ,CAAC,CAAC;EAElF,MAAM3B,gBAAgB,GAAGL,OAAO,CAC5B,MAAMgC,QAAQ,CAACI,cAAc,CAAwB,kBAAkB,CAAC,IAAI,EAAE,EAC9E,CAACJ,QAAQ,CACb,CAAC;;EAED;AACJ;AACA;AACA;EACI,MAAMK,eAAe,GAAGvC,WAAW,CAC/B,CAACwC,cAAsB,EAAEnB,KAAqD,KAAK;IAC/E,IAAIe,aAAa,EAAE;MACf,OAAO,IAAI;IACf;IAEA,MAAMhB,WAAW,GAAGc,QAAQ,CAACI,cAAc,CAAwBE,cAAc,CAAC;IAClF,IAAI,CAACpB,WAAW,CAACX,MAAM,EAAE;MACrB,OAAO,KAAK;IAChB;IAEA,IAAID,OAAO,EAAE;MACT,OAAOW,iBAAiB,CAAC;QACrBC,WAAW;QACXb,gBAAgB;QAChBC,OAAO;QACPa;MACJ,CAAC,CAAC;IACN;IAEA,OAAOD,WAAW,CAACW,IAAI,CAACV,KAAK,CAAC;EAClC,CAAC,EACD,CAACa,QAAQ,EAAEE,aAAa,EAAE5B,OAAO,EAAED,gBAAgB,CACvD,CAAC;EAED,MAAMkC,OAAO,GAAGzC,WAAW,CACtBwC,cAAsB,IAAc;IACjC,OAAOD,eAAe,CAACC,cAAc,EAAE9B,UAAU,IAAI;MACjD,IAAI,OAAOA,UAAU,CAACgC,GAAG,KAAK,QAAQ,EAAE;QACpC,OAAO,IAAI;MACf;MACA,OAAOhC,UAAU,CAACgC,GAAG,CAAC5B,QAAQ,CAAC,GAAG,CAAC;IACvC,CAAC,CAAC;EACN,CAAC,EACD,CAACyB,eAAe,CACpB,CAAC;EAED,MAAMI,cAAc,GAAG3C,WAAW,CAC9B,CAAC;IAAE4C,iBAAiB;IAAEC;EAA2C,CAAC,KAAc;IAC5E,IAAIT,aAAa,EAAE;MACf,OAAO,IAAI;IACf;IAEA,MAAMU,gBAAgB,GAClBZ,QAAQ,CAACI,cAAc,CAAwB,kBAAkB,CAAC,IAAI,EAAE;IAC5E,IAAI,CAACQ,gBAAgB,CAACrC,MAAM,EAAE;MAC1B,OAAO,KAAK;IAChB;IAEA,MAAMO,gBAAgB,GAClBkB,QAAQ,CAACI,cAAc,CAAwB,uBAAuB,CAAC,IAAI,EAAE;;IAEjF;IACA,MAAMhB,OAAO,GAAG,IAAIC,GAAG,CAAqB,CAAC;IAC7C,KAAK,MAAMC,CAAC,IAAI,CAAC,GAAGsB,gBAAgB,EAAE,GAAGvC,gBAAgB,EAAE,GAAGS,gBAAgB,CAAC,EAAE;MAC7EM,OAAO,CAACG,GAAG,CAACD,CAAC,CAACE,IAAI,CAAC;IACvB;IAEA,KAAK,MAAMC,GAAG,IAAIL,OAAO,EAAE;MACvB,MAAMyB,aAAa,GAAGD,gBAAgB,CAACjB,MAAM,CAACL,CAAC,IAAIA,CAAC,CAACE,IAAI,KAAKC,GAAG,CAAC;MAClE,MAAMG,aAAa,GAAGvB,gBAAgB,CAACsB,MAAM,CAACL,CAAC,IAAIA,CAAC,CAACE,IAAI,KAAKC,GAAG,CAAC;MAClE,MAAMqB,aAAa,GAAGhC,gBAAgB,CAACa,MAAM,CAACL,CAAC,IAAIA,CAAC,CAACE,IAAI,KAAKC,GAAG,CAAC;MAElE,IAAI,CAACoB,aAAa,CAACtC,MAAM,EAAE;QACvB;MACJ;MAEA,MAAMwC,aAAa,GAAGF,aAAa,CAAChB,IAAI,CAACP,CAAC,IAAI;QAC1C,IAAI,OAAOA,CAAC,CAACkB,GAAG,KAAK,QAAQ,EAAE;UAC3B,OAAO,IAAI;QACf;QACA,OAAOlB,CAAC,CAACkB,GAAG,CAAC5B,QAAQ,CAAC,GAAG,CAAC;MAC9B,CAAC,CAAC;MAEF,IAAI,CAACmC,aAAa,EAAE;QAChB;MACJ;MAEA,MAAMjB,YAAY,GAAG1B,cAAc,CAACwB,aAAa,EAAEe,YAAY,CAACrC,OAAO,CAAC;MACxE,IAAI,CAACwB,YAAY,EAAE;QACf;MACJ;MAEA,MAAMkB,YAAY,GAAGnC,cAAc,CAACiC,aAAa,EAAEJ,iBAAiB,CAACO,EAAE,CAAC;MACxE,IAAI,CAACD,YAAY,EAAE;QACf;MACJ;MAEA,OAAO,IAAI;IACf;IAEA,OAAO,KAAK;EAChB,CAAC,EACD,CAAChB,QAAQ,EAAEE,aAAa,EAAE7B,gBAAgB,CAC9C,CAAC;EAED,MAAM6C,OAAO,GAAGpD,WAAW,CACvB,CAACqD,IAAmB,EAAEb,cAAsB,KAAc;IACtD,OAAOD,eAAe,CAACC,cAAc,EAAE9B,UAAU,IAAI;MACjD,IAAIA,UAAU,CAAC4C,GAAG,EAAE;QAChB,IAAI,CAACD,IAAI,CAACE,SAAS,EAAE;UACjB,OAAO,IAAI;QACf;QAEA,IAAIF,IAAI,EAAEE,SAAS,EAAEJ,EAAE,KAAKjB,QAAQ,CAACiB,EAAE,EAAE;UACrC,OAAO,IAAI;QACf;MACJ;MAEA,IAAI,OAAOzC,UAAU,CAACgC,GAAG,KAAK,QAAQ,EAAE;QACpC,IAAIhC,UAAU,CAACgC,GAAG,CAAC5B,QAAQ,CAAC,GAAG,CAAC,EAAE;UAC9B,OAAO,IAAI;QACf;MACJ;MAEA,OAAO,KAAK;IAChB,CAAC,CAAC;EACN,CAAC,EACD,CAACoB,QAAQ,EAAEK,eAAe,CAC9B,CAAC;EAED,MAAMiB,SAAS,GAAGxD,WAAW,CACxBwC,cAAsB,IAAc;IACjC,OAAOD,eAAe,CAACC,cAAc,EAAE9B,UAAU,IAAI;MACjD,IAAI,OAAOA,UAAU,CAACgC,GAAG,KAAK,QAAQ,EAAE;QACpC,OAAO,IAAI;MACf;MACA,OAAOhC,UAAU,CAACgC,GAAG,CAAC5B,QAAQ,CAAC,GAAG,CAAC;IACvC,CAAC,CAAC;EACN,CAAC,EACD,CAACyB,eAAe,CACpB,CAAC;EAED,MAAMkB,SAAS,GAAGzD,WAAW,CACzB,CAACqD,IAAmB,EAAEb,cAAsB,KAAc;IACtD,OAAOD,eAAe,CAACC,cAAc,EAAE9B,UAAU,IAAI;MACjD,IAAIA,UAAU,CAAC4C,GAAG,EAAE;QAChB,OAAOD,IAAI,EAAEE,SAAS,EAAEJ,EAAE,KAAKjB,QAAQ,CAACiB,EAAE;MAC9C;MAEA,IAAI,OAAOzC,UAAU,CAACgC,GAAG,KAAK,QAAQ,EAAE;QACpC,OAAOhC,UAAU,CAACgC,GAAG,CAAC5B,QAAQ,CAAC,GAAG,CAAC;MACvC;MAEA,OAAO,KAAK;IAChB,CAAC,CAAC;EACN,CAAC,EACD,CAACoB,QAAQ,EAAEK,eAAe,CAC9B,CAAC;EAED,MAAMmB,gBAAgB,GAAG1D,WAAW,CAC/BwC,cAAsB,IAAc;IACjC,OAAOD,eAAe,CAACC,cAAc,EAAE9B,UAAU,IAAI;MACjD,OAAO,CAAC,CAACA,UAAU,CAACgC,GAAG,EAAE5B,QAAQ,CAAC,GAAG,CAAC;IAC1C,CAAC,CAAC;EACN,CAAC,EACD,CAACyB,eAAe,CACpB,CAAC;EAED,MAAMoB,UAAU,GAAG3D,WAAW,CACzBwC,cAAsB,IAAc;IACjC,OAAOD,eAAe,CAACC,cAAc,EAAE9B,UAAU,IAAI;MACjD,OAAO,CAAC,CAACA,UAAU,CAACkD,EAAE,EAAE9C,QAAQ,CAAC,GAAG,CAAC;IACzC,CAAC,CAAC;EACN,CAAC,EACD,CAACyB,eAAe,CACpB,CAAC;EAED,MAAMsB,YAAY,GAAG7D,WAAW,CAC3BwC,cAAsB,IAAc;IACjC,OAAOD,eAAe,CAACC,cAAc,EAAE9B,UAAU,IAAI;MACjD,OAAO,CAAC,CAACA,UAAU,CAACkD,EAAE,EAAE9C,QAAQ,CAAC,GAAG,CAAC;IACzC,CAAC,CAAC;EACN,CAAC,EACD,CAACyB,eAAe,CACpB,CAAC;EAED,MAAMuB,oBAAoB,GAAGrB,OAAO,CAAC,kBAAkB,CAAC;EACxD,MAAMsB,yBAAyB,GAAGtB,OAAO,CAAC,uBAAuB,CAAC;EAClE,MAAMuB,sBAAsB,GAAGR,SAAS,CAAC,kBAAkB,CAAC;EAC5D,MAAMS,2BAA2B,GAAGT,SAAS,CAAC,uBAAuB,CAAC;EACtE,MAAMU,uBAAuB,GAAGhE,OAAO,CAAC,MAAM;IAC1C,OAAOgC,QAAQ,CAACG,aAAa,CAAC,qBAAqB,CAAC,KAAK8B,SAAS;EACtE,CAAC,EAAE,CAACjC,QAAQ,CAAC,CAAC;EAEd,OAAO;IACHS,cAAc;IACdS,OAAO;IACPI,SAAS;IACTC,SAAS;IACTC,gBAAgB;IAChBC,UAAU;IACVE,YAAY;IACZC,oBAAoB;IACpBC,yBAAyB;IACzBC,sBAAsB;IACtBC,2BAA2B;IAC3BC;EACJ,CAAC;AACL,CAAC,CAAC","ignoreList":[]}

package/admin/plugins/apiInformation/index.js CHANGED Viewed

@@ -1,6 +1,6 @@
-const manageQuery = "#  Webiny Headless CMS Manage API\n#\n#  This API controls all the operations within the Headless CMS module.\n#  Use it to manage content, create and modify content models and more.\n#  Explore the schema for details.\n#\n#  Note: to use the API outside of the playground, you will need to provide an API key via the Authorization header.\n#\n#  Example query - list content model groups:\n{\n  listContentModelGroups {\n    data {\n      name\n      icon\n      slug\n    }\n  }\n}\n";
-const readQuery = "#  Webiny Headless CMS Read API\n#\n#  This is the API to use in your 3rd party apps to read your content.\n#  It returns only content that has been published.\n#\n#  Note: to use the API outside of the playground, you will need to provide an API key via the Authorization header.\n#\n#  Example query - list content models:\n{\n  listContentModels {\n    data {\n      name\n      modelId\n    }\n  }\n}\n";
-const previewQuery = "#  Webiny Headless CMS Preview API\n#\n#  This is the API to use in your 3rd party apps to preview content.\n#  It returns the latest content revision, regardless of whether it was published or not.\n#\n#  Note: to use the API outside of the playground, you will need to provide an API key via the Authorization header.\n#\n#  Example query - list content models:\n{\n  listContentModels {\n    data {\n      name\n    }\n  }\n}\n";
+import { manageQuery } from "./placeholder.manage.graphql.js";
+import { readQuery } from "./placeholder.read.graphql.js";
+import { previewQuery } from "./placeholder.preview.graphql.js";
 import { config as appConfig } from "@webiny/app/config.js";
 const plugins = [{
   type: "graphql-playground-tab",

package/admin/plugins/apiInformation/index.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"names":["manageQuery","readQuery","previewQuery","config","appConfig","plugins","type","name","tab","identity","apiUrl","getKey","process","env","REACT_APP_API_URL","getPermission","endpoint","headers","query"],"sources":["index.tsx"],"sourcesContent":["import type { GraphQLPlaygroundTabPlugin } from \"@webiny/app-graphql-playground/types.js\";\nimport ~~raw~~ ~~from~~ ~~\"raw.macro\";\nconst~~ ~~manageQuery~~ ~~= raw(~~\"./placeholder.manage.graphql\");\~~nconst~~ readQuery = ~~raw(~~\"./placeholder.read.graphql\");\~~nconst~~ previewQuery = ~~raw(~~\"./placeholder.preview.graphql\");\nimport { config as appConfig } from \"@webiny/app/config.js\";\n\nconst plugins: GraphQLPlaygroundTabPlugin[] = [\n {\n type: \"graphql-playground-tab\",\n name: \"graphql-playground-tab-manage\",\n tab({ identity }) {\n const apiUrl = appConfig.getKey(\"API_URL\", process.env.REACT_APP_API_URL);\n if (\n !identity \|\|\n !identity.getPermission \|\|\n !identity.getPermission(\"cms.endpoint.manage\")\n ) {\n return null;\n }\n\n return {\n name: \"Headless CMS - Manage API\",\n endpoint: apiUrl + \"/cms/manage\",\n headers: {},\n query: manageQuery\n };\n }\n },\n {\n type: \"graphql-playground-tab\",\n name: \"graphql-playground-tab-read\",\n tab({ identity }) {\n const apiUrl = appConfig.getKey(\"API_URL\", process.env.REACT_APP_API_URL);\n if (\n !identity \|\|\n !identity.getPermission \|\|\n !identity.getPermission(\"cms.endpoint.read\")\n ) {\n return null;\n }\n\n return {\n name: \"Headless CMS - Read API\",\n endpoint: apiUrl + \"/cms/read\",\n headers: {},\n query: readQuery\n };\n }\n },\n {\n type: \"graphql-playground-tab\",\n name: \"graphql-playground-tab-preview\",\n tab({ identity }) {\n const apiUrl = appConfig.getKey(\"API_URL\", process.env.REACT_APP_API_URL);\n if (\n !identity \|\|\n !identity.getPermission \|\|\n !identity.getPermission(\"cms.endpoint.preview\")\n ) {\n return null;\n }\n\n return {\n name: \"Headless CMS - Preview API\",\n endpoint: apiUrl + \"/cms/preview\",\n headers: {},\n query: previewQuery\n };\n }\n }\n];\n\nexport default plugins;\n"],"mappings":"~~AAEA~~,~~MAAMA~~,WAAW~~,0eAAsC~~;~~AACvD~~,~~MAAMC~~,SAAS~~,2ZAAoC~~;~~AACnD~~,~~MAAMC~~,YAAY~~,mbAAuC~~;~~AACzD~~,SAASC,MAAM,IAAIC,SAAS,QAAQ,uBAAuB;AAE3D,MAAMC,OAAqC,GAAG,CAC1C;EACIC,IAAI,EAAE,wBAAwB;EAC9BC,IAAI,EAAE,+BAA+B;EACrCC,GAAGA,CAAC;IAAEC;EAAS,CAAC,EAAE;IACd,MAAMC,MAAM,GAAGN,SAAS,CAACO,MAAM,CAAC,SAAS,EAAEC,OAAO,CAACC,GAAG,CAACC,iBAAiB,CAAC;IACzE,IACI,CAACL,QAAQ,IACT,CAACA,QAAQ,CAACM,aAAa,IACvB,CAACN,QAAQ,CAACM,aAAa,CAAC,qBAAqB,CAAC,EAChD;MACE,OAAO,IAAI;IACf;IAEA,OAAO;MACHR,IAAI,EAAE,2BAA2B;MACjCS,QAAQ,EAAEN,MAAM,GAAG,aAAa;MAChCO,OAAO,EAAE,CAAC,CAAC;MACXC,KAAK,EAAElB;IACX,CAAC;EACL;AACJ,CAAC,EACD;EACIM,IAAI,EAAE,wBAAwB;EAC9BC,IAAI,EAAE,6BAA6B;EACnCC,GAAGA,CAAC;IAAEC;EAAS,CAAC,EAAE;IACd,MAAMC,MAAM,GAAGN,SAAS,CAACO,MAAM,CAAC,SAAS,EAAEC,OAAO,CAACC,GAAG,CAACC,iBAAiB,CAAC;IACzE,IACI,CAACL,QAAQ,IACT,CAACA,QAAQ,CAACM,aAAa,IACvB,CAACN,QAAQ,CAACM,aAAa,CAAC,mBAAmB,CAAC,EAC9C;MACE,OAAO,IAAI;IACf;IAEA,OAAO;MACHR,IAAI,EAAE,yBAAyB;MAC/BS,QAAQ,EAAEN,MAAM,GAAG,WAAW;MAC9BO,OAAO,EAAE,CAAC,CAAC;MACXC,KAAK,EAAEjB;IACX,CAAC;EACL;AACJ,CAAC,EACD;EACIK,IAAI,EAAE,wBAAwB;EAC9BC,IAAI,EAAE,gCAAgC;EACtCC,GAAGA,CAAC;IAAEC;EAAS,CAAC,EAAE;IACd,MAAMC,MAAM,GAAGN,SAAS,CAACO,MAAM,CAAC,SAAS,EAAEC,OAAO,CAACC,GAAG,CAACC,iBAAiB,CAAC;IACzE,IACI,CAACL,QAAQ,IACT,CAACA,QAAQ,CAACM,aAAa,IACvB,CAACN,QAAQ,CAACM,aAAa,CAAC,sBAAsB,CAAC,EACjD;MACE,OAAO,IAAI;IACf;IAEA,OAAO;MACHR,IAAI,EAAE,4BAA4B;MAClCS,QAAQ,EAAEN,MAAM,GAAG,cAAc;MACjCO,OAAO,EAAE,CAAC,CAAC;MACXC,KAAK,EAAEhB;IACX,CAAC;EACL;AACJ,CAAC,CACJ;AAED,eAAeG,OAAO","ignoreList":[]}
1	+ {"version":3,"names":["manageQuery","readQuery","previewQuery","config","appConfig","plugins","type","name","tab","identity","apiUrl","getKey","process","env","REACT_APP_API_URL","getPermission","endpoint","headers","query"],"sources":["index.tsx"],"sourcesContent":["import type { GraphQLPlaygroundTabPlugin } from \"@webiny/app-graphql-playground/types.js\";\nimport { manageQuery } from \"./placeholder.manage.graphql.js\";\nimport { readQuery } from \"./placeholder.read.graphql.js\";\nimport { previewQuery } from \"./placeholder.preview.graphql.js\";\nimport { config as appConfig } from \"@webiny/app/config.js\";\n\nconst plugins: GraphQLPlaygroundTabPlugin[] = [\n {\n type: \"graphql-playground-tab\",\n name: \"graphql-playground-tab-manage\",\n tab({ identity }) {\n const apiUrl = appConfig.getKey(\"API_URL\", process.env.REACT_APP_API_URL);\n if (\n !identity \|\|\n !identity.getPermission \|\|\n !identity.getPermission(\"cms.endpoint.manage\")\n ) {\n return null;\n }\n\n return {\n name: \"Headless CMS - Manage API\",\n endpoint: apiUrl + \"/cms/manage\",\n headers: {},\n query: manageQuery\n };\n }\n },\n {\n type: \"graphql-playground-tab\",\n name: \"graphql-playground-tab-read\",\n tab({ identity }) {\n const apiUrl = appConfig.getKey(\"API_URL\", process.env.REACT_APP_API_URL);\n if (\n !identity \|\|\n !identity.getPermission \|\|\n !identity.getPermission(\"cms.endpoint.read\")\n ) {\n return null;\n }\n\n return {\n name: \"Headless CMS - Read API\",\n endpoint: apiUrl + \"/cms/read\",\n headers: {},\n query: readQuery\n };\n }\n },\n {\n type: \"graphql-playground-tab\",\n name: \"graphql-playground-tab-preview\",\n tab({ identity }) {\n const apiUrl = appConfig.getKey(\"API_URL\", process.env.REACT_APP_API_URL);\n if (\n !identity \|\|\n !identity.getPermission \|\|\n !identity.getPermission(\"cms.endpoint.preview\")\n ) {\n return null;\n }\n\n return {\n name: \"Headless CMS - Preview API\",\n endpoint: apiUrl + \"/cms/preview\",\n headers: {},\n query: previewQuery\n };\n }\n }\n];\n\nexport default plugins;\n"],"mappings":"AACA,SAASA,WAAW;AACpB,SAASC,SAAS;AAClB,SAASC,YAAY;AACrB,SAASC,MAAM,IAAIC,SAAS,QAAQ,uBAAuB;AAE3D,MAAMC,OAAqC,GAAG,CAC1C;EACIC,IAAI,EAAE,wBAAwB;EAC9BC,IAAI,EAAE,+BAA+B;EACrCC,GAAGA,CAAC;IAAEC;EAAS,CAAC,EAAE;IACd,MAAMC,MAAM,GAAGN,SAAS,CAACO,MAAM,CAAC,SAAS,EAAEC,OAAO,CAACC,GAAG,CAACC,iBAAiB,CAAC;IACzE,IACI,CAACL,QAAQ,IACT,CAACA,QAAQ,CAACM,aAAa,IACvB,CAACN,QAAQ,CAACM,aAAa,CAAC,qBAAqB,CAAC,EAChD;MACE,OAAO,IAAI;IACf;IAEA,OAAO;MACHR,IAAI,EAAE,2BAA2B;MACjCS,QAAQ,EAAEN,MAAM,GAAG,aAAa;MAChCO,OAAO,EAAE,CAAC,CAAC;MACXC,KAAK,EAAElB;IACX,CAAC;EACL;AACJ,CAAC,EACD;EACIM,IAAI,EAAE,wBAAwB;EAC9BC,IAAI,EAAE,6BAA6B;EACnCC,GAAGA,CAAC;IAAEC;EAAS,CAAC,EAAE;IACd,MAAMC,MAAM,GAAGN,SAAS,CAACO,MAAM,CAAC,SAAS,EAAEC,OAAO,CAACC,GAAG,CAACC,iBAAiB,CAAC;IACzE,IACI,CAACL,QAAQ,IACT,CAACA,QAAQ,CAACM,aAAa,IACvB,CAACN,QAAQ,CAACM,aAAa,CAAC,mBAAmB,CAAC,EAC9C;MACE,OAAO,IAAI;IACf;IAEA,OAAO;MACHR,IAAI,EAAE,yBAAyB;MAC/BS,QAAQ,EAAEN,MAAM,GAAG,WAAW;MAC9BO,OAAO,EAAE,CAAC,CAAC;MACXC,KAAK,EAAEjB;IACX,CAAC;EACL;AACJ,CAAC,EACD;EACIK,IAAI,EAAE,wBAAwB;EAC9BC,IAAI,EAAE,gCAAgC;EACtCC,GAAGA,CAAC;IAAEC;EAAS,CAAC,EAAE;IACd,MAAMC,MAAM,GAAGN,SAAS,CAACO,MAAM,CAAC,SAAS,EAAEC,OAAO,CAACC,GAAG,CAACC,iBAAiB,CAAC;IACzE,IACI,CAACL,QAAQ,IACT,CAACA,QAAQ,CAACM,aAAa,IACvB,CAACN,QAAQ,CAACM,aAAa,CAAC,sBAAsB,CAAC,EACjD;MACE,OAAO,IAAI;IACf;IAEA,OAAO;MACHR,IAAI,EAAE,4BAA4B;MAClCS,QAAQ,EAAEN,MAAM,GAAG,cAAc;MACjCO,OAAO,EAAE,CAAC,CAAC;MACXC,KAAK,EAAEhB;IACX,CAAC;EACL;AACJ,CAAC,CACJ;AAED,eAAeG,OAAO","ignoreList":[]}

package/admin/plugins/apiInformation/placeholder.manage.graphql.d.ts ADDED Viewed

@@ -0,0 +1 @@

+ export declare const manageQuery = "\n # Webiny Headless CMS Manage API\n #\n # This API controls all the operations within the Headless CMS module.\n # Use it to manage content, create and modify content models and more.\n # Explore the schema for details.\n #\n # Note: to use the API outside of the playground, you will need to provide an API key via the Authorization header.\n #\n # Example query - list content model groups:\n {\n listContentModelGroups {\n data {\n name\n icon\n slug\n }\n }\n }\n";

package/admin/plugins/apiInformation/placeholder.manage.graphql.js ADDED Viewed

@@ -0,0 +1,22 @@
+export const manageQuery = /* GraphQL */`
+    #  Webiny Headless CMS Manage API
+    #
+    #  This API controls all the operations within the Headless CMS module.
+    #  Use it to manage content, create and modify content models and more.
+    #  Explore the schema for details.
+    #
+    #  Note: to use the API outside of the playground, you will need to provide an API key via the Authorization header.
+    #
+    #  Example query - list content model groups:
+    {
+        listContentModelGroups {
+            data {
+                name
+                icon
+                slug
+            }
+        }
+    }
+`;
+//# sourceMappingURL=placeholder.manage.graphql.js.map

package/admin/plugins/apiInformation/placeholder.manage.graphql.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"names":["manageQuery"],"sources":["placeholder.manage.graphql.ts"],"sourcesContent":["export const manageQuery = /* GraphQL */ `\n # Webiny Headless CMS Manage API\n #\n # This API controls all the operations within the Headless CMS module.\n # Use it to manage content, create and modify content models and more.\n # Explore the schema for details.\n #\n # Note: to use the API outside of the playground, you will need to provide an API key via the Authorization header.\n #\n # Example query - list content model groups:\n {\n listContentModelGroups {\n data {\n name\n icon\n slug\n }\n }\n }\n`;\n"],"mappings":"AAAA,OAAO,MAAMA,WAAW,GAAG,aAAc;AACzC;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,CAAC","ignoreList":[]}

package/admin/plugins/apiInformation/placeholder.preview.graphql.d.ts ADDED Viewed

@@ -0,0 +1 @@

+ export declare const previewQuery = "\n # Webiny Headless CMS Preview API\n #\n # This is the API to use in your 3rd party apps to preview content.\n # It returns the latest content revision, regardless of whether it was published or not.\n #\n # Note: to use the API outside of the playground, you will need to provide an API key via the Authorization header.\n #\n # Example query - list content models:\n {\n listContentModels {\n data {\n name\n }\n }\n }\n";

package/admin/plugins/apiInformation/placeholder.preview.graphql.js ADDED Viewed

@@ -0,0 +1,19 @@
+export const previewQuery = /* GraphQL */`
+    #  Webiny Headless CMS Preview API
+    #
+    #  This is the API to use in your 3rd party apps to preview content.
+    #  It returns the latest content revision, regardless of whether it was published or not.
+    #
+    #  Note: to use the API outside of the playground, you will need to provide an API key via the Authorization header.
+    #
+    #  Example query - list content models:
+    {
+        listContentModels {
+            data {
+                name
+            }
+        }
+    }
+`;
+//# sourceMappingURL=placeholder.preview.graphql.js.map

package/admin/plugins/apiInformation/placeholder.preview.graphql.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"names":["previewQuery"],"sources":["placeholder.preview.graphql.ts"],"sourcesContent":["export const previewQuery = /* GraphQL */ `\n # Webiny Headless CMS Preview API\n #\n # This is the API to use in your 3rd party apps to preview content.\n # It returns the latest content revision, regardless of whether it was published or not.\n #\n # Note: to use the API outside of the playground, you will need to provide an API key via the Authorization header.\n #\n # Example query - list content models:\n {\n listContentModels {\n data {\n name\n }\n }\n }\n`;\n"],"mappings":"AAAA,OAAO,MAAMA,YAAY,GAAG,aAAc;AAC1C;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,CAAC","ignoreList":[]}

package/admin/plugins/apiInformation/placeholder.read.graphql.d.ts ADDED Viewed

@@ -0,0 +1 @@

+ export declare const readQuery = "\n # Webiny Headless CMS Read API\n #\n # This is the API to use in your 3rd party apps to read your content.\n # It returns only content that has been published.\n #\n # Note: to use the API outside of the playground, you will need to provide an API key via the Authorization header.\n #\n # Example query - list content models:\n {\n listContentModels {\n data {\n name\n modelId\n }\n }\n }\n";

package/admin/plugins/apiInformation/placeholder.read.graphql.js ADDED Viewed

@@ -0,0 +1,20 @@
+export const readQuery = /* GraphQL */`
+    #  Webiny Headless CMS Read API
+    #
+    #  This is the API to use in your 3rd party apps to read your content.
+    #  It returns only content that has been published.
+    #
+    #  Note: to use the API outside of the playground, you will need to provide an API key via the Authorization header.
+    #
+    #  Example query - list content models:
+    {
+        listContentModels {
+            data {
+                name
+                modelId
+            }
+        }
+    }
+`;
+//# sourceMappingURL=placeholder.read.graphql.js.map

package/admin/plugins/apiInformation/placeholder.read.graphql.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"names":["readQuery"],"sources":["placeholder.read.graphql.ts"],"sourcesContent":["export const readQuery = /* GraphQL */ `\n # Webiny Headless CMS Read API\n #\n # This is the API to use in your 3rd party apps to read your content.\n # It returns only content that has been published.\n #\n # Note: to use the API outside of the playground, you will need to provide an API key via the Authorization header.\n #\n # Example query - list content models:\n {\n listContentModels {\n data {\n name\n modelId\n }\n }\n }\n`;\n"],"mappings":"AAAA,OAAO,MAAMA,SAAS,GAAG,aAAc;AACvC;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,CAAC","ignoreList":[]}

package/admin/views/contentEntries/ContentEntriesContext.js CHANGED Viewed

@@ -1,5 +1,5 @@
-import React, { useMemo } from "react";
-import { useSecurity } from "@webiny/app-admin";
+import React from "react";
+import { usePermission } from "../../hooks/usePermission.js";
 export const ContentEntriesContext = /*#__PURE__*/React.createContext(undefined);
 export const ContentEntriesProvider = ({
   contentModel,
@@ -7,19 +7,9 @@ export const ContentEntriesProvider = ({
   insideDialog
 }) => {
   const {
-    identity,
-    getPermission
-  } = useSecurity();
-  const canCreate = useMemo(() => {
-    const permission = getPermission("cms.contentEntry");
-    if (!permission) {
-      return false;
-    }
-    if (typeof permission.rwd !== "string") {
-      return true;
-    }
-    return permission.rwd.includes("w");
-  }, [identity]);
+    canCreate: canCreateEntries
+  } = usePermission();
+  const canCreate = canCreateEntries("cms.contentEntry");
   const value = {
     insideDialog,
     contentModel,

package/admin/views/contentEntries/ContentEntriesContext.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"names":["React","~~useMemo~~","~~useSecurity","~~ContentEntriesContext","createContext","undefined","ContentEntriesProvider","contentModel","children","insideDialog","~~identity","getPermission","~~canCreate","~~permission~~","~~rwd","includes","~~value","createElement","Provider","displayName"],"sources":["ContentEntriesContext.tsx"],"sourcesContent":["import React, ~~{ useMemo }~~ from \"react\";\nimport { ~~useSecurity~~ } from \"~~@webiny/app-admin~~\";\nimport ~~type~~ { ~~CmsModel,~~ ~~CmsSecurityPermission~~ } from \"~/~~types~~.js\";\n\nexport interface ContentEntriesContext {\n contentModel: CmsModel;\n canCreate: boolean;\n insideDialog?: boolean;\n}\n\nexport const ContentEntriesContext = React.createContext<ContentEntriesContext \| undefined>(\n undefined\n);\n\nexport interface ContentEntriesContextProviderProps {\n contentModel: CmsModel;\n children: React.ReactNode;\n insideDialog?: boolean;\n}\n\nexport const ContentEntriesProvider = ({\n contentModel,\n children,\n insideDialog\n}: ContentEntriesContextProviderProps) => {\n const { ~~identity,~~ ~~getPermission~~ } = ~~useSecurity~~();\n\n const canCreate = ~~useMemo~~(~~(): boolean => {~~\~~n const permission = getPermission<CmsSecurityPermission>(\~~"cms.contentEntry\");\n ~~if (!permission) {~~\n ~~return false;\n }\n\n if (typeof permission.rwd !== \"string\") {\n return true;\n }\n\n return permission.rwd.includes(\"w\");\n~~ ~~}, [identity]);\n\n~~ const value = {\n insideDialog,\n contentModel,\n canCreate\n };\n\n return (\n <ContentEntriesContext.Provider value={value}>{children}</ContentEntriesContext.Provider>\n );\n};\n\nContentEntriesProvider.displayName = \"ContentEntriesProvider\";\n"],"mappings":"AAAA,OAAOA,KAAK,~~IAAIC~~,OAAO~~,QAAQ,OAAO~~;~~AACtC~~,SAASC,~~WAAW,QAAQ,mBAAmB~~;~~AAS/C~~,OAAO,MAAMC,qBAAqB,~~gBAAGH~~,KAAK,~~CAACI~~,aAAa,CACpDC,SACJ,CAAC;AAQD,OAAO,MAAMC,sBAAsB,GAAGA,CAAC;EACnCC,YAAY;EACZC,QAAQ;EACRC;AACgC,CAAC,KAAK;EACtC,MAAM;IAAEC,~~QAAQ~~;~~IAAEC;EAAc~~,CAAC,GAAGT,~~WAAW~~,CAAC,CAAC;~~EAEjD~~,~~MAAMU~~,SAAS,~~GAAGX~~,~~OAAO~~,CAAC,~~MAAe;IACrC,MAAMY,UAAU,GAAGF,aAAa,CAAwB,~~kBAAkB,CAAC;~~IAC3E~~,~~IAAI~~,~~CAACE,UAAU,EAAE;MACb,OAAO,~~KAAK~~;IAChB;IAEA~~,~~IAAI,OAAOA,UAAU,CAACC,~~GAAG~~,KAAK,QAAQ,EAAE~~;~~MACpC~~,~~OAAO,IAAI;IACf;IAEA,OAAOD,UAAU,CAACC,GAAG,CAACC,QAAQ,CAAC,GAAG,CAAC;EACvC,CAAC,EAAE,CAACL,QAAQ,CAAC,CAAC;EAEd,MAAMM,KAAK,GAAG;IACVP,~~YAAY;IACZF,YAAY;~~IACZK~~;EACJ,CAAC;EAED,~~oBACIZ~~,KAAA,~~CAAAiB~~,aAAA,~~CAACd~~,qBAAqB,~~CAACe~~,QAAQ;IAACF,KAAK,EAAEA;EAAM,~~GAAER~~,QAAyC,CAAC;AAEjG,CAAC;AAEDF,sBAAsB,~~CAACa~~,WAAW,GAAG,wBAAwB","ignoreList":[]}
1	+ {"version":3,"names":["React","usePermission","ContentEntriesContext","createContext","undefined","ContentEntriesProvider","contentModel","children","insideDialog","canCreate","canCreateEntries","value","createElement","Provider","displayName"],"sources":["ContentEntriesContext.tsx"],"sourcesContent":["import React from \"react\";\nimport type { CmsModel } from \"~/types.js\";\nimport { usePermission } from \"~/admin/hooks/usePermission.js\";\n\nexport interface ContentEntriesContext {\n contentModel: CmsModel;\n canCreate: boolean;\n insideDialog?: boolean;\n}\n\nexport const ContentEntriesContext = React.createContext<ContentEntriesContext \| undefined>(\n undefined\n);\n\nexport interface ContentEntriesContextProviderProps {\n contentModel: CmsModel;\n children: React.ReactNode;\n insideDialog?: boolean;\n}\n\nexport const ContentEntriesProvider = ({\n contentModel,\n children,\n insideDialog\n}: ContentEntriesContextProviderProps) => {\n const { canCreate: canCreateEntries } = usePermission();\n const canCreate = canCreateEntries(\"cms.contentEntry\");\n\n const value = {\n insideDialog,\n contentModel,\n canCreate\n };\n\n return (\n <ContentEntriesContext.Provider value={value}>{children}</ContentEntriesContext.Provider>\n );\n};\n\nContentEntriesProvider.displayName = \"ContentEntriesProvider\";\n"],"mappings":"AAAA,OAAOA,KAAK,MAAM,OAAO;AAEzB,SAASC,aAAa;AAQtB,OAAO,MAAMC,qBAAqB,gBAAGF,KAAK,CAACG,aAAa,CACpDC,SACJ,CAAC;AAQD,OAAO,MAAMC,sBAAsB,GAAGA,CAAC;EACnCC,YAAY;EACZC,QAAQ;EACRC;AACgC,CAAC,KAAK;EACtC,MAAM;IAAEC,SAAS,EAAEC;EAAiB,CAAC,GAAGT,aAAa,CAAC,CAAC;EACvD,MAAMQ,SAAS,GAAGC,gBAAgB,CAAC,kBAAkB,CAAC;EAEtD,MAAMC,KAAK,GAAG;IACVH,YAAY;IACZF,YAAY;IACZG;EACJ,CAAC;EAED,oBACIT,KAAA,CAAAY,aAAA,CAACV,qBAAqB,CAACW,QAAQ;IAACF,KAAK,EAAEA;EAAM,GAAEJ,QAAyC,CAAC;AAEjG,CAAC;AAEDF,sBAAsB,CAACS,WAAW,GAAG,wBAAwB","ignoreList":[]}