directus 9.23.3 → 9.24.0

package/dist/extensions.js

@@ -64,7 +64,7 @@ function getExtensionManager() {
 exports.getExtensionManager = getExtensionManager;
 const defaultOptions = {
     schedule: true,
-    watch: env_1.default.EXTENSIONS_AUTO_RELOAD && env_1.default.NODE_ENV !== 'development',
+    watch: env_1.default['EXTENSIONS_AUTO_RELOAD'] && env_1.default['NODE_ENV'] !== 'development',
 };
 class ExtensionManager {
     isLoaded = false;
@@ -189,7 +189,7 @@ class ExtensionManager {
     }
     async load() {
         try {
-            await (0, node_1.ensureExtensionDirs)(env_1.default.EXTENSIONS_PATH, constants_1.NESTED_EXTENSION_TYPES);
+            await (0, node_1.ensureExtensionDirs)(env_1.default['EXTENSIONS_PATH'], constants_1.NESTED_EXTENSION_TYPES);
             this.extensions = await this.getExtensions();
         }
         catch (err) {
@@ -200,7 +200,7 @@ class ExtensionManager {
         await this.registerEndpoints();
         await this.registerOperations();
         await this.registerBundles();
-        if (env_1.default.SERVE_APP) {
+        if (env_1.default['SERVE_APP']) {
             this.appExtensions = await this.generateExtensionBundle();
         }
         this.isLoaded = true;
@@ -208,7 +208,7 @@ class ExtensionManager {
     async unload() {
         this.unregisterApiExtensions();
         this.apiEmitter.offAll();
-        if (env_1.default.SERVE_APP) {
+        if (env_1.default['SERVE_APP']) {
             this.appExtensions = null;
         }
         this.isLoaded = false;
@@ -217,7 +217,7 @@ class ExtensionManager {
         if (!this.watcher) {
             logger_1.default.info('Watching extensions for changes...');
             const localExtensionPaths = constants_1.NESTED_EXTENSION_TYPES.flatMap((type) => {
-                const typeDir = path_1.default.posix.join((0, node_1.pathToRelativeUrl)(env_1.default.EXTENSIONS_PATH), (0, utils_1.pluralize)(type));
+                const typeDir = path_1.default.posix.join((0, node_1.pathToRelativeUrl)(env_1.default['EXTENSIONS_PATH']), (0, utils_1.pluralize)(type));
                 if ((0, utils_1.isIn)(type, constants_1.HYBRID_EXTENSION_TYPES)) {
                     return [path_1.default.posix.join(typeDir, '*', 'app.js'), path_1.default.posix.join(typeDir, '*', 'api.js')];
                 }
@@ -256,10 +256,10 @@ class ExtensionManager {
         }
     }
     async getExtensions() {
-        const packageExtensions = await (0, node_1.getPackageExtensions)(env_1.default.PACKAGE_FILE_LOCATION);
-        const localPackageExtensions = await (0, node_1.resolvePackageExtensions)(env_1.default.EXTENSIONS_PATH);
-        const localExtensions = await (0, node_1.getLocalExtensions)(env_1.default.EXTENSIONS_PATH);
-        return [...packageExtensions, ...localPackageExtensions, ...localExtensions].filter((extension) => env_1.default.SERVE_APP || constants_1.APP_EXTENSION_TYPES.includes(extension.type) === false);
+        const packageExtensions = await (0, node_1.getPackageExtensions)(env_1.default['PACKAGE_FILE_LOCATION']);
+        const localPackageExtensions = await (0, node_1.resolvePackageExtensions)(env_1.default['EXTENSIONS_PATH']);
+        const localExtensions = await (0, node_1.getLocalExtensions)(env_1.default['EXTENSIONS_PATH']);
+        return [...packageExtensions, ...localPackageExtensions, ...localExtensions].filter((extension) => env_1.default['SERVE_APP'] || constants_1.APP_EXTENSION_TYPES.includes(extension.type) === false);
     }
     async generateExtensionBundle() {
         const sharedDepsMapping = await this.getSharedDepsMapping(constants_1.APP_SHARED_DEPS);
@@ -292,7 +292,7 @@ class ExtensionManager {
             const depRegex = new RegExp(`${(0, lodash_1.escapeRegExp)(dep.replace(/\//g, '_'))}\\.[0-9a-f]{8}\\.entry\\.js`);
             const depName = appDir.find((file) => depRegex.test(file));
             if (depName) {
-                const depUrl = new url_1.Url(env_1.default.PUBLIC_URL).addPath('admin', 'assets', depName);
+                const depUrl = new url_1.Url(env_1.default['PUBLIC_URL']).addPath('admin', 'assets', depName);
                 depsMapping[dep] = depUrl.toString({ rootRelative: true });
             }
             else {

package/dist/flows.js

@@ -77,7 +77,7 @@ class FlowManager {
         this.reloadQueue = new job_queue_1.JobQueue();
         const messenger = (0, messenger_1.getMessenger)();
         messenger.subscribe('flows', (event) => {
-            if (event.type === 'reload') {
+            if (event['type'] === 'reload') {
                 this.reloadQueue.enqueue(async () => {
                     if (this.isLoaded) {
                         await this.unload();
@@ -132,13 +132,13 @@ class FlowManager {
         for (const flow of flowTrees) {
             if (flow.trigger === 'event') {
                 let events = [];
-                if (flow.options?.scope) {
-                    events = (0, utils_1.toArray)(flow.options.scope)
+                if (flow.options?.['scope']) {
+                    events = (0, utils_1.toArray)(flow.options['scope'])
                         .map((scope) => {
                         if (['items.create', 'items.update', 'items.delete'].includes(scope)) {
-                            if (!flow.options?.collections)
+                            if (!flow.options?.['collections'])
                                 return [];
-                            return (0, utils_1.toArray)(flow.options.collections).map((collection) => {
+                            return (0, utils_1.toArray)(flow.options['collections']).map((collection) => {
                                 if (collection.startsWith('directus_')) {
                                     const action = scope.split('.')[1];
                                     return collection.substring(9) + '.' + action;
@@ -150,11 +150,11 @@ class FlowManager {
                     })
                         .flat();
                 }
-                if (flow.options.type === 'filter') {
+                if (flow.options['type'] === 'filter') {
                     const handler = (payload, meta, context) => this.executeFlow(flow, { payload, ...meta }, {
-                        accountability: context.accountability,
-                        database: context.database,
-                        getSchema: context.schema ? () => context.schema : get_schema_1.getSchema,
+                        accountability: context['accountability'],
+                        database: context['database'],
+                        getSchema: context['schema'] ? () => context['schema'] : get_schema_1.getSchema,
                     });
                     events.forEach((event) => emitter_1.default.onFilter(event, handler));
                     this.triggerHandlers.push({
@@ -162,11 +162,11 @@ class FlowManager {
                         events: events.map((event) => ({ type: 'filter', name: event, handler })),
                     });
                 }
-                else if (flow.options.type === 'action') {
+                else if (flow.options['type'] === 'action') {
                     const handler = (meta, context) => this.executeFlow(flow, meta, {
-                        accountability: context.accountability,
+                        accountability: context['accountability'],
                         database: (0, database_1.default)(),
-                        getSchema: context.schema ? () => context.schema : get_schema_1.getSchema,
+                        getSchema: context['schema'] ? () => context['schema'] : get_schema_1.getSchema,
                     });
                     events.forEach((event) => emitter_1.default.onAction(event, handler));
                     this.triggerHandlers.push({
@@ -176,8 +176,8 @@ class FlowManager {
                 }
             }
             else if (flow.trigger === 'schedule') {
-                if ((0, node_cron_1.validate)(flow.options.cron)) {
-                    const task = (0, node_cron_1.schedule)(flow.options.cron, async () => {
+                if ((0, node_cron_1.validate)(flow.options['cron'])) {
+                    const task = (0, node_cron_1.schedule)(flow.options['cron'], async () => {
                         try {
                             await this.executeFlow(flow);
                         }
@@ -188,7 +188,7 @@ class FlowManager {
                     this.triggerHandlers.push({ id: flow.id, events: [{ type: flow.trigger, task }] });
                 }
                 else {
-                    logger_1.default.warn(`Couldn't register cron trigger. Provided cron is invalid: ${flow.options.cron}`);
+                    logger_1.default.warn(`Couldn't register cron trigger. Provided cron is invalid: ${flow.options['cron']}`);
                 }
             }
             else if (flow.trigger === 'operation') {
@@ -197,22 +197,23 @@ class FlowManager {
             }
             else if (flow.trigger === 'webhook') {
                 const handler = (data, context) => {
-                    if (flow.options.async) {
+                    if (flow.options['async']) {
                         this.executeFlow(flow, data, context);
+                        return undefined;
                     }
                     else {
                         return this.executeFlow(flow, data, context);
                     }
                 };
-                const method = flow.options?.method ?? 'GET';
+                const method = flow.options?.['method'] ?? 'GET';
                 // Default return to $last for webhooks
-                flow.options.return = flow.options.return ?? '$last';
+                flow.options['return'] = flow.options['return'] ?? '$last';
                 this.webhookFlowHandlers[`${method}-${flow.id}`] = handler;
             }
             else if (flow.trigger === 'manual') {
                 const handler = (data, context) => {
-                    const enabledCollections = flow.options?.collections ?? [];
-                    const targetCollection = data?.body.collection;
+                    const enabledCollections = flow.options?.['collections'] ?? [];
+                    const targetCollection = data?.['body'].collection;
                     if (!targetCollection) {
                         logger_1.default.warn(`Manual trigger requires "collection" to be specified in the payload`);
                         throw new exceptions.ForbiddenException();
@@ -225,15 +226,16 @@ class FlowManager {
                         logger_1.default.warn(`Specified collection must be one of: ${enabledCollections.join(', ')}.`);
                         throw new exceptions.ForbiddenException();
                     }
-                    if (flow.options.async) {
+                    if (flow.options['async']) {
                         this.executeFlow(flow, data, context);
+                        return undefined;
                     }
                     else {
                         return this.executeFlow(flow, data, context);
                     }
                 };
                 // Default return to $last for manual
-                flow.options.return = '$last';
+                flow.options['return'] = '$last';
                 this.webhookFlowHandlers[`POST-${flow.id}`] = handler;
             }
         }
@@ -261,13 +263,13 @@ class FlowManager {
         this.isLoaded = false;
     }
     async executeFlow(flow, data = null, context = {}) {
-        const database = context.database ?? (0, database_1.default)();
-        const schema = context.schema ?? (await (0, get_schema_1.getSchema)({ database }));
+        const database = context['database'] ?? (0, database_1.default)();
+        const schema = context['schema'] ?? (await (0, get_schema_1.getSchema)({ database }));
         const keyedData = {
             [TRIGGER_KEY]: data,
             [LAST_KEY]: data,
-            [ACCOUNTABILITY_KEY]: context?.accountability ?? null,
-            [ENV_KEY]: (0, lodash_1.pick)(env_1.default, env_1.default.FLOWS_ENV_ALLOW_LIST ? (0, utils_1.toArray)(env_1.default.FLOWS_ENV_ALLOW_LIST) : []),
+            [ACCOUNTABILITY_KEY]: context?.['accountability'] ?? null,
+            [ENV_KEY]: (0, lodash_1.pick)(env_1.default, env_1.default['FLOWS_ENV_ALLOW_LIST'] ? (0, utils_1.toArray)(env_1.default['FLOWS_ENV_ALLOW_LIST']) : []),
         };
         let nextOperation = flow.operation;
         let lastOperationStatus = 'unknown';
@@ -285,7 +287,7 @@ class FlowManager {
                 knex: database,
                 schema: schema,
             });
-            const accountability = context?.accountability;
+            const accountability = context?.['accountability'];
             const activity = await activityService.createOne({
                 action: types_1.Action.RUN,
                 user: accountability?.user ?? null,
@@ -311,14 +313,14 @@ class FlowManager {
                 });
             }
         }
-        if (flow.trigger === 'event' && flow.options.type === 'filter' && lastOperationStatus === 'reject') {
+        if (flow.trigger === 'event' && flow.options['type'] === 'filter' && lastOperationStatus === 'reject') {
             throw keyedData[LAST_KEY];
         }
-        if (flow.options.return === '$all') {
+        if (flow.options['return'] === '$all') {
             return keyedData;
         }
-        else if (flow.options.return) {
-            return (0, micromustache_1.get)(keyedData, flow.options.return);
+        else if (flow.options['return']) {
+            return (0, micromustache_1.get)(keyedData, flow.options['return']);
         }
         return undefined;
     }

package/dist/logger.d.ts

@@ -1,6 +1,7 @@
 /// <reference types="qs" />
 import { LoggerOptions } from 'pino';
 import type { RequestHandler } from 'express';
+export declare const httpLoggerOptions: LoggerOptions;
 declare const logger: import("pino").Logger<LoggerOptions & Record<string, any>>;
 export declare const expressLogger: RequestHandler<import("express-serve-static-core").ParamsDictionary, any, any, import("qs").ParsedQs, Record<string, any>>;
 export default logger;

package/dist/logger.js

@@ -26,30 +26,30 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
     return (mod && mod.__esModule) ? mod : { "default": mod };
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.expressLogger = void 0;
+exports.expressLogger = exports.httpLoggerOptions = void 0;
 const utils_1 = require("@directus/shared/utils");
 const lodash_1 = require("lodash");
 const pino_1 = __importDefault(require("pino"));
 const pino_http_1 = __importStar(require("pino-http"));
 const url_1 = require("url");
 const env_1 = __importDefault(require("./env"));
+const constants_1 = require("./constants");
 const get_config_from_env_1 = require("./utils/get-config-from-env");
-const redact_header_cookies_1 = require("./utils/redact-header-cookies");
 const pinoOptions = {
-    level: env_1.default.LOG_LEVEL || 'info',
+    level: env_1.default['LOG_LEVEL'] || 'info',
     redact: {
-        paths: ['req.headers.authorization', `req.cookies.${env_1.default.REFRESH_TOKEN_COOKIE_NAME}`],
-        censor: '--redact--',
+        paths: ['req.headers.authorization', 'req.headers.cookie'],
+        censor: constants_1.REDACT_TEXT,
     },
 };
-const httpLoggerOptions = {
-    level: env_1.default.LOG_LEVEL || 'info',
+exports.httpLoggerOptions = {
+    level: env_1.default['LOG_LEVEL'] || 'info',
     redact: {
-        paths: ['req.headers.authorization', `req.cookies.${env_1.default.REFRESH_TOKEN_COOKIE_NAME}`],
-        censor: '--redact--',
+        paths: ['req.headers.authorization', 'req.headers.cookie'],
+        censor: constants_1.REDACT_TEXT,
     },
 };
-if (env_1.default.LOG_STYLE !== 'raw') {
+if (env_1.default['LOG_STYLE'] !== 'raw') {
     pinoOptions.transport = {
         target: 'pino-pretty',
         options: {
@@ -57,7 +57,7 @@ if (env_1.default.LOG_STYLE !== 'raw') {
             sync: true,
         },
     };
-    httpLoggerOptions.transport = {
+    exports.httpLoggerOptions.transport = {
         target: 'pino-http-print',
         options: {
             all: true,
@@ -70,11 +70,26 @@ if (env_1.default.LOG_STYLE !== 'raw') {
         },
     };
 }
+if (env_1.default['LOG_STYLE'] === 'raw') {
+    exports.httpLoggerOptions.redact = {
+        paths: ['req.headers.authorization', 'req.headers.cookie', 'res.headers'],
+        censor: (value, pathParts) => {
+            const path = pathParts.join('.');
+            if (path === 'res.headers') {
+                if ('set-cookie' in value) {
+                    value['set-cookie'] = constants_1.REDACT_TEXT;
+                }
+                return value;
+            }
+            return constants_1.REDACT_TEXT;
+        },
+    };
+}
 const loggerEnvConfig = (0, get_config_from_env_1.getConfigFromEnv)('LOGGER_', 'LOGGER_HTTP');
 // Expose custom log levels into formatter function
-if (loggerEnvConfig.levels) {
+if (loggerEnvConfig['levels']) {
     const customLogLevels = {};
-    for (const el of (0, utils_1.toArray)(loggerEnvConfig.levels)) {
+    for (const el of (0, utils_1.toArray)(loggerEnvConfig['levels'])) {
         const key_val = el.split(':');
         customLogLevels[key_val[0].trim()] = key_val[1].trim();
     }
@@ -86,7 +101,7 @@ if (loggerEnvConfig.levels) {
             };
         },
     };
-    httpLoggerOptions.formatters = {
+    exports.httpLoggerOptions.formatters = {
         level(label, number) {
             return {
                 severity: customLogLevels[label] || 'info',
@@ -94,41 +109,26 @@ if (loggerEnvConfig.levels) {
             };
         },
     };
-    delete loggerEnvConfig.levels;
+    delete loggerEnvConfig['levels'];
 }
 const logger = (0, pino_1.default)((0, lodash_1.merge)(pinoOptions, loggerEnvConfig));
 const httpLoggerEnvConfig = (0, get_config_from_env_1.getConfigFromEnv)('LOGGER_HTTP', ['LOGGER_HTTP_LOGGER']);
 exports.expressLogger = (0, pino_http_1.default)({
-    logger: (0, pino_1.default)((0, lodash_1.merge)(httpLoggerOptions, loggerEnvConfig)),
+    logger: (0, pino_1.default)((0, lodash_1.merge)(exports.httpLoggerOptions, loggerEnvConfig)),
     ...httpLoggerEnvConfig,
     serializers: {
         req(request) {
             const output = pino_http_1.stdSerializers.req(request);
             output.url = redactQuery(output.url);
-            if (output.headers?.cookie) {
-                output.headers.cookie = (0, redact_header_cookies_1.redactHeaderCookie)(output.headers.cookie, [
-                    'access_token',
-                    `${env_1.default.REFRESH_TOKEN_COOKIE_NAME}`,
-                ]);
-            }
             return output;
         },
-        res(response) {
-            if (response.headers?.['set-cookie']) {
-                response.headers['set-cookie'] = (0, redact_header_cookies_1.redactHeaderCookie)(response.headers['set-cookie'], [
-                    'access_token',
-                    `${env_1.default.REFRESH_TOKEN_COOKIE_NAME}`,
-                ]);
-            }
-            return response;
-        },
     },
 });
 exports.default = logger;
 function redactQuery(originalPath) {
     const url = new url_1.URL(originalPath, 'http://example.com/');
     if (url.searchParams.has('access_token')) {
-        url.searchParams.set('access_token', '--redacted--');
+        url.searchParams.set('access_token', constants_1.REDACT_TEXT);
     }
     return url.pathname + url.search;
 }

package/dist/mailer.js

@@ -11,12 +11,12 @@ let transporter;
 function getMailer() {
     if (transporter)
         return transporter;
-    const transportName = env_1.default.EMAIL_TRANSPORT.toLowerCase();
+    const transportName = env_1.default['EMAIL_TRANSPORT'].toLowerCase();
     if (transportName === 'sendmail') {
         transporter = nodemailer_1.default.createTransport({
             sendmail: true,
-            newline: env_1.default.EMAIL_SENDMAIL_NEW_LINE || 'unix',
-            path: env_1.default.EMAIL_SENDMAIL_PATH || '/usr/sbin/sendmail',
+            newline: env_1.default['EMAIL_SENDMAIL_NEW_LINE'] || 'unix',
+            path: env_1.default['EMAIL_SENDMAIL_PATH'] || '/usr/sbin/sendmail',
         });
     }
     else if (transportName === 'ses') {
@@ -29,20 +29,20 @@ function getMailer() {
     }
     else if (transportName === 'smtp') {
         let auth = false;
-        if (env_1.default.EMAIL_SMTP_USER || env_1.default.EMAIL_SMTP_PASSWORD) {
+        if (env_1.default['EMAIL_SMTP_USER'] || env_1.default['EMAIL_SMTP_PASSWORD']) {
             auth = {
-                user: env_1.default.EMAIL_SMTP_USER,
-                pass: env_1.default.EMAIL_SMTP_PASSWORD,
+                user: env_1.default['EMAIL_SMTP_USER'],
+                pass: env_1.default['EMAIL_SMTP_PASSWORD'],
             };
         }
         const tls = (0, get_config_from_env_1.getConfigFromEnv)('EMAIL_SMTP_TLS_');
         transporter = nodemailer_1.default.createTransport({
-            name: env_1.default.EMAIL_SMTP_NAME,
-            pool: env_1.default.EMAIL_SMTP_POOL,
-            host: env_1.default.EMAIL_SMTP_HOST,
-            port: env_1.default.EMAIL_SMTP_PORT,
-            secure: env_1.default.EMAIL_SMTP_SECURE,
-            ignoreTLS: env_1.default.EMAIL_SMTP_IGNORE_TLS,
+            name: env_1.default['EMAIL_SMTP_NAME'],
+            pool: env_1.default['EMAIL_SMTP_POOL'],
+            host: env_1.default['EMAIL_SMTP_HOST'],
+            port: env_1.default['EMAIL_SMTP_PORT'],
+            secure: env_1.default['EMAIL_SMTP_SECURE'],
+            ignoreTLS: env_1.default['EMAIL_SMTP_IGNORE_TLS'],
             auth,
             tls,
         });
@@ -51,16 +51,16 @@ function getMailer() {
         const mg = require('nodemailer-mailgun-transport');
         transporter = nodemailer_1.default.createTransport(mg({
             auth: {
-                api_key: env_1.default.EMAIL_MAILGUN_API_KEY,
-                domain: env_1.default.EMAIL_MAILGUN_DOMAIN,
+                api_key: env_1.default['EMAIL_MAILGUN_API_KEY'],
+                domain: env_1.default['EMAIL_MAILGUN_DOMAIN'],
             },
-            host: env_1.default.EMAIL_MAILGUN_HOST || 'api.mailgun.net',
+            host: env_1.default['EMAIL_MAILGUN_HOST'] || 'api.mailgun.net',
         }));
     }
     else if (transportName === 'sendgrid') {
         const sg = require('nodemailer-sendgrid');
         transporter = nodemailer_1.default.createTransport(sg({
-            apiKey: env_1.default.EMAIL_SENDGRID_API_KEY,
+            apiKey: env_1.default['EMAIL_SENDGRID_API_KEY'],
         }));
     }
     else {

package/dist/messenger.js

@@ -30,9 +30,9 @@ class MessengerRedis {
     sub;
     constructor() {
         const config = (0, get_config_from_env_1.getConfigFromEnv)('MESSENGER_REDIS');
-        this.pub = new ioredis_1.default(env_1.default.MESSENGER_REDIS ?? config);
-        this.sub = new ioredis_1.default(env_1.default.MESSENGER_REDIS ?? config);
-        this.namespace = env_1.default.MESSENGER_NAMESPACE ?? 'directus';
+        this.pub = new ioredis_1.default(env_1.default['MESSENGER_REDIS'] ?? config);
+        this.sub = new ioredis_1.default(env_1.default['MESSENGER_REDIS'] ?? config);
+        this.namespace = env_1.default['MESSENGER_NAMESPACE'] ?? 'directus';
     }
     publish(channel, payload) {
         this.pub.publish(`${this.namespace}:${channel}`, JSON.stringify(payload));
@@ -55,7 +55,7 @@ let messenger;
 function getMessenger() {
     if (messenger)
         return messenger;
-    if (env_1.default.MESSENGER_STORE === 'redis') {
+    if (env_1.default['MESSENGER_STORE'] === 'redis') {
         messenger = new MessengerRedis();
     }
     else {

package/dist/middleware/authenticate.d.ts

@@ -3,6 +3,6 @@ import type { NextFunction, Request, Response } from 'express';
 /**
  * Verify the passed JWT and assign the user ID and role to `req`
  */
-export declare const handler: (req: Request, res: Response, next: NextFunction) => Promise<void>;
+export declare const handler: (req: Request, _res: Response, next: NextFunction) => Promise<void>;
 declare const _default: (req: Request<import("express-serve-static-core").ParamsDictionary, any, any, import("qs").ParsedQs, Record<string, any>>, res: Response<any, Record<string, any>>, next: NextFunction) => Promise<void>;
 export default _default;

package/dist/middleware/authenticate.js

@@ -16,7 +16,7 @@ const jwt_1 = require("../utils/jwt");
 /**
  * Verify the passed JWT and assign the user ID and role to `req`
  */
-const handler = async (req, res, next) => {
+const handler = async (req, _res, next) => {
     const defaultAccountability = {
         user: null,
         role: null,
@@ -45,7 +45,7 @@ const handler = async (req, res, next) => {
     req.accountability = defaultAccountability;
     if (req.token) {
         if ((0, is_directus_jwt_1.default)(req.token)) {
-            const payload = (0, jwt_1.verifyAccessJWT)(req.token, env_1.default.SECRET);
+            const payload = (0, jwt_1.verifyAccessJWT)(req.token, env_1.default['SECRET']);
             req.accountability.role = payload.role;
             req.accountability.admin = payload.admin_access === true || payload.admin_access == 1;
             req.accountability.app = payload.app_access === true || payload.app_access == 1;

package/dist/middleware/cache.js

@@ -14,13 +14,13 @@ const checkCacheMiddleware = (0, async_handler_1.default)(async (req, res, next)
     const { cache } = (0, cache_1.getCache)();
     if (req.method.toLowerCase() !== 'get' && req.originalUrl?.startsWith('/graphql') === false)
         return next();
-    if (env_1.default.CACHE_ENABLED !== true)
+    if (env_1.default['CACHE_ENABLED'] !== true)
         return next();
     if (!cache)
         return next();
     if ((0, should_skip_cache_1.shouldSkipCache)(req)) {
-        if (env_1.default.CACHE_STATUS_HEADER)
-            res.setHeader(`${env_1.default.CACHE_STATUS_HEADER}`, 'MISS');
+        if (env_1.default['CACHE_STATUS_HEADER'])
+            res.setHeader(`${env_1.default['CACHE_STATUS_HEADER']}`, 'MISS');
         return next();
     }
     const key = (0, get_cache_key_1.getCacheKey)(req);
@@ -30,8 +30,8 @@ const checkCacheMiddleware = (0, async_handler_1.default)(async (req, res, next)
     }
     catch (err) {
         logger_1.default.warn(err, `[cache] Couldn't read key ${key}. ${err.message}`);
-        if (env_1.default.CACHE_STATUS_HEADER)
-            res.setHeader(`${env_1.default.CACHE_STATUS_HEADER}`, 'MISS');
+        if (env_1.default['CACHE_STATUS_HEADER'])
+            res.setHeader(`${env_1.default['CACHE_STATUS_HEADER']}`, 'MISS');
         return next();
     }
     if (cachedData) {
@@ -41,20 +41,20 @@ const checkCacheMiddleware = (0, async_handler_1.default)(async (req, res, next)
         }
         catch (err) {
             logger_1.default.warn(err, `[cache] Couldn't read key ${`${key}__expires_at`}. ${err.message}`);
-            if (env_1.default.CACHE_STATUS_HEADER)
-                res.setHeader(`${env_1.default.CACHE_STATUS_HEADER}`, 'MISS');
+            if (env_1.default['CACHE_STATUS_HEADER'])
+                res.setHeader(`${env_1.default['CACHE_STATUS_HEADER']}`, 'MISS');
             return next();
         }
         const cacheTTL = cacheExpiryDate ? cacheExpiryDate - Date.now() : undefined;
         res.setHeader('Cache-Control', (0, get_cache_headers_1.getCacheControlHeader)(req, cacheTTL, true, true));
         res.setHeader('Vary', 'Origin, Cache-Control');
-        if (env_1.default.CACHE_STATUS_HEADER)
-            res.setHeader(`${env_1.default.CACHE_STATUS_HEADER}`, 'HIT');
+        if (env_1.default['CACHE_STATUS_HEADER'])
+            res.setHeader(`${env_1.default['CACHE_STATUS_HEADER']}`, 'HIT');
         return res.json(cachedData);
     }
     else {
-        if (env_1.default.CACHE_STATUS_HEADER)
-            res.setHeader(`${env_1.default.CACHE_STATUS_HEADER}`, 'MISS');
+        if (env_1.default['CACHE_STATUS_HEADER'])
+            res.setHeader(`${env_1.default['CACHE_STATUS_HEADER']}`, 'MISS');
         return next();
     }
 });

package/dist/middleware/collection-exists.js

@@ -9,13 +9,13 @@ Object.defineProperty(exports, "__esModule", { value: true });
 const collections_1 = require("../database/system-data/collections");
 const exceptions_1 = require("../exceptions");
 const async_handler_1 = __importDefault(require("../utils/async-handler"));
-const collectionExists = (0, async_handler_1.default)(async (req, res, next) => {
-    if (!req.params.collection)
+const collectionExists = (0, async_handler_1.default)(async (req, _res, next) => {
+    if (!req.params['collection'])
         return next();
-    if (req.params.collection in req.schema.collections === false) {
+    if (req.params['collection'] in req.schema.collections === false) {
         throw new exceptions_1.ForbiddenException();
     }
-    req.collection = req.params.collection;
+    req.collection = req.params['collection'];
     if (req.collection.startsWith('directus_')) {
         const systemRow = collections_1.systemCollectionRows.find((collection) => {
             return collection?.collection === req.collection;

package/dist/middleware/cors.js

@@ -5,15 +5,15 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 Object.defineProperty(exports, "__esModule", { value: true });
 const cors_1 = __importDefault(require("cors"));
 const env_1 = __importDefault(require("../env"));
-let corsMiddleware = (req, res, next) => next();
-if (env_1.default.CORS_ENABLED === true) {
+let corsMiddleware = (_req, _res, next) => next();
+if (env_1.default['CORS_ENABLED'] === true) {
     corsMiddleware = (0, cors_1.default)({
-        origin: env_1.default.CORS_ORIGIN || true,
-        methods: env_1.default.CORS_METHODS || 'GET,POST,PATCH,DELETE',
-        allowedHeaders: env_1.default.CORS_ALLOWED_HEADERS,
-        exposedHeaders: env_1.default.CORS_EXPOSED_HEADERS,
-        credentials: env_1.default.CORS_CREDENTIALS || undefined,
-        maxAge: env_1.default.CORS_MAX_AGE || undefined,
+        origin: env_1.default['CORS_ORIGIN'] || true,
+        methods: env_1.default['CORS_METHODS'] || 'GET,POST,PATCH,DELETE',
+        allowedHeaders: env_1.default['CORS_ALLOWED_HEADERS'],
+        exposedHeaders: env_1.default['CORS_EXPOSED_HEADERS'],
+        credentials: env_1.default['CORS_CREDENTIALS'] || undefined,
+        maxAge: env_1.default['CORS_MAX_AGE'] || undefined,
     });
 }
 exports.default = corsMiddleware;

package/dist/middleware/error-handler.js

@@ -32,7 +32,7 @@ const errorHandler = (err, req, res, _next) => {
         res.status(status);
     }
     for (const err of errors) {
-        if (env_1.default.NODE_ENV === 'development') {
+        if (env_1.default['NODE_ENV'] === 'development') {
             err.extensions = {
                 ...(err.extensions || {}),
                 stack: err.stack,
@@ -49,7 +49,7 @@ const errorHandler = (err, req, res, _next) => {
                 },
             });
             if (err instanceof exceptions_2.MethodNotAllowedException) {
-                res.header('Allow', err.extensions.allow.join(', '));
+                res.header('Allow', err.extensions['allow'].join(', '));
             }
         }
         else {

package/dist/middleware/extract-token.js

@@ -8,10 +8,10 @@
  * and store in req.token
  */
 Object.defineProperty(exports, "__esModule", { value: true });
-const extractToken = (req, res, next) => {
+const extractToken = (req, _res, next) => {
     let token = null;
-    if (req.query && req.query.access_token) {
-        token = req.query.access_token;
+    if (req.query && req.query['access_token']) {
+        token = req.query['access_token'];
     }
     if (req.headers && req.headers.authorization) {
         const parts = req.headers.authorization.split(' ');

package/dist/middleware/get-permissions.js

@@ -5,7 +5,7 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 Object.defineProperty(exports, "__esModule", { value: true });
 const async_handler_1 = __importDefault(require("../utils/async-handler"));
 const get_permissions_1 = require("../utils/get-permissions");
-const getPermissions = (0, async_handler_1.default)(async (req, res, next) => {
+const getPermissions = (0, async_handler_1.default)(async (req, _res, next) => {
     if (!req.accountability) {
         throw new Error('getPermissions middleware needs to be called after authenticate');
     }