n8n 1.101.1 → 1.102.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/bin/n8n +3 -11
- package/dist/auth/auth.service.d.ts +9 -5
- package/dist/auth/auth.service.js +46 -27
- package/dist/auth/auth.service.js.map +1 -1
- package/dist/auth/jwt.js +1 -1
- package/dist/auth/jwt.js.map +1 -1
- package/dist/build.tsbuildinfo +1 -1
- package/dist/command-registry.d.ts +17 -0
- package/dist/command-registry.js +191 -0
- package/dist/command-registry.js.map +1 -0
- package/dist/commands/audit.d.ts +13 -8
- package/dist/commands/audit.js +33 -21
- package/dist/commands/audit.js.map +1 -1
- package/dist/commands/base-command.d.ts +4 -3
- package/dist/commands/base-command.js +15 -11
- package/dist/commands/base-command.js.map +1 -1
- package/dist/commands/community-node.d.ts +19 -22
- package/dist/commands/community-node.js +34 -30
- package/dist/commands/community-node.js.map +1 -1
- package/dist/commands/db/revert.d.ts +3 -9
- package/dist/commands/db/revert.js +22 -15
- package/dist/commands/db/revert.js.map +1 -1
- package/dist/commands/execute-batch.d.ts +40 -17
- package/dist/commands/execute-batch.js +120 -96
- package/dist/commands/execute-batch.js.map +1 -1
- package/dist/commands/execute.d.ts +16 -8
- package/dist/commands/execute.js +24 -15
- package/dist/commands/execute.js.map +1 -1
- package/dist/commands/export/credentials.d.ts +28 -13
- package/dist/commands/export/credentials.js +47 -37
- package/dist/commands/export/credentials.js.map +1 -1
- package/dist/commands/export/workflow.d.ts +25 -12
- package/dist/commands/export/workflow.js +43 -34
- package/dist/commands/export/workflow.js.map +1 -1
- package/dist/commands/import/credentials.d.ts +19 -10
- package/dist/commands/import/credentials.js +44 -28
- package/dist/commands/import/credentials.js.map +1 -1
- package/dist/commands/import/workflow.d.ts +19 -10
- package/dist/commands/import/workflow.js +41 -28
- package/dist/commands/import/workflow.js.map +1 -1
- package/dist/commands/ldap/reset.d.ts +16 -9
- package/dist/commands/ldap/reset.js +37 -22
- package/dist/commands/ldap/reset.js.map +1 -1
- package/dist/commands/license/clear.d.ts +0 -2
- package/dist/commands/license/clear.js +15 -4
- package/dist/commands/license/clear.js.map +1 -1
- package/dist/commands/license/info.d.ts +0 -2
- package/dist/commands/license/info.js +15 -4
- package/dist/commands/license/info.js.map +1 -1
- package/dist/commands/list/workflow.d.ts +13 -8
- package/dist/commands/list/workflow.js +26 -19
- package/dist/commands/list/workflow.js.map +1 -1
- package/dist/commands/mfa/disable.d.ts +10 -8
- package/dist/commands/mfa/disable.js +22 -15
- package/dist/commands/mfa/disable.js.map +1 -1
- package/dist/commands/start.d.ts +16 -9
- package/dist/commands/start.js +31 -25
- package/dist/commands/start.js.map +1 -1
- package/dist/commands/update/workflow.d.ts +16 -9
- package/dist/commands/update/workflow.js +24 -21
- package/dist/commands/update/workflow.js.map +1 -1
- package/dist/commands/user-management/reset.d.ts +0 -2
- package/dist/commands/user-management/reset.js +16 -5
- package/dist/commands/user-management/reset.js.map +1 -1
- package/dist/commands/webhook.d.ts +0 -5
- package/dist/commands/webhook.js +15 -8
- package/dist/commands/webhook.js.map +1 -1
- package/dist/commands/worker.d.ts +12 -11
- package/dist/commands/worker.js +29 -14
- package/dist/commands/worker.js.map +1 -1
- package/dist/config/index.js +1 -1
- package/dist/config/index.js.map +1 -1
- package/dist/controller.registry.js +1 -1
- package/dist/controller.registry.js.map +1 -1
- package/dist/controllers/ai.controller.d.ts +1 -1
- package/dist/controllers/ai.controller.js +16 -0
- package/dist/controllers/ai.controller.js.map +1 -1
- package/dist/controllers/auth.controller.js +10 -3
- package/dist/controllers/auth.controller.js.map +1 -1
- package/dist/controllers/community-packages.controller.js +2 -2
- package/dist/controllers/community-packages.controller.js.map +1 -1
- package/dist/controllers/e2e.controller.js +13 -3
- package/dist/controllers/e2e.controller.js.map +1 -1
- package/dist/controllers/invitation.controller.js +1 -1
- package/dist/controllers/invitation.controller.js.map +1 -1
- package/dist/controllers/me.controller.js +2 -2
- package/dist/controllers/me.controller.js.map +1 -1
- package/dist/controllers/mfa.controller.d.ts +1 -0
- package/dist/controllers/mfa.controller.js +24 -6
- package/dist/controllers/mfa.controller.js.map +1 -1
- package/dist/controllers/oauth/abstract-oauth.controller.d.ts +1 -0
- package/dist/controllers/oauth/abstract-oauth.controller.js +6 -1
- package/dist/controllers/oauth/abstract-oauth.controller.js.map +1 -1
- package/dist/controllers/oauth/oauth2-credential.controller.js +2 -1
- package/dist/controllers/oauth/oauth2-credential.controller.js.map +1 -1
- package/dist/controllers/owner.controller.js +1 -1
- package/dist/controllers/owner.controller.js.map +1 -1
- package/dist/controllers/password-reset.controller.js +1 -1
- package/dist/controllers/password-reset.controller.js.map +1 -1
- package/dist/controllers/users.controller.d.ts +1 -0
- package/dist/credential-types.js +6 -5
- package/dist/credential-types.js.map +1 -1
- package/dist/credentials-helper.js +1 -1
- package/dist/credentials-helper.js.map +1 -1
- package/dist/environments.ee/source-control/source-control-export.service.ee.js +5 -1
- package/dist/environments.ee/source-control/source-control-export.service.ee.js.map +1 -1
- package/dist/environments.ee/source-control/source-control-git.service.ee.js +4 -0
- package/dist/environments.ee/source-control/source-control-git.service.ee.js.map +1 -1
- package/dist/environments.ee/source-control/source-control.service.ee.js +5 -4
- package/dist/environments.ee/source-control/source-control.service.ee.js.map +1 -1
- package/dist/errors/response-errors/content-too-large.error.d.ts +4 -0
- package/dist/errors/response-errors/content-too-large.error.js +11 -0
- package/dist/errors/response-errors/content-too-large.error.js.map +1 -0
- package/dist/errors/response-errors/too-many-requests.error.d.ts +4 -0
- package/dist/errors/response-errors/too-many-requests.error.js +11 -0
- package/dist/errors/response-errors/too-many-requests.error.js.map +1 -0
- package/dist/evaluation.ee/test-runner/test-runner.service.ee.js +1 -1
- package/dist/evaluation.ee/test-runner/test-runner.service.ee.js.map +1 -1
- package/dist/events/relays/telemetry.event-relay.js +7 -2
- package/dist/events/relays/telemetry.event-relay.js.map +1 -1
- package/dist/license/license.service.js +2 -0
- package/dist/license/license.service.js.map +1 -1
- package/dist/mfa/constants.d.ts +2 -0
- package/dist/mfa/constants.js +6 -0
- package/dist/mfa/constants.js.map +1 -0
- package/dist/mfa/mfa.service.d.ts +11 -2
- package/dist/mfa/mfa.service.js +39 -2
- package/dist/mfa/mfa.service.js.map +1 -1
- package/dist/modules/insights/insights.module.d.ts +1 -5
- package/dist/modules/insights/insights.module.js +6 -8
- package/dist/modules/insights/insights.module.js.map +1 -1
- package/dist/public-api/v1/openapi.yml +2 -2
- package/dist/push/index.js +1 -1
- package/dist/push/index.js.map +1 -1
- package/dist/requests.d.ts +4 -0
- package/dist/scaling/job-processor.js +1 -0
- package/dist/scaling/job-processor.js.map +1 -1
- package/dist/scaling/scaling.types.d.ts +1 -0
- package/dist/server.d.ts +1 -3
- package/dist/server.js +14 -18
- package/dist/server.js.map +1 -1
- package/dist/services/community-packages.service.d.ts +1 -1
- package/dist/services/community-packages.service.js +7 -9
- package/dist/services/community-packages.service.js.map +1 -1
- package/dist/services/frontend.service.d.ts +3 -1
- package/dist/services/frontend.service.js +9 -2
- package/dist/services/frontend.service.js.map +1 -1
- package/dist/services/hooks.service.d.ts +1 -0
- package/dist/services/hooks.service.js +3 -2
- package/dist/services/hooks.service.js.map +1 -1
- package/dist/services/user.service.d.ts +1 -0
- package/dist/services/user.service.js +1 -0
- package/dist/services/user.service.js.map +1 -1
- package/dist/sso.ee/oidc/routes/oidc.controller.ee.js +3 -1
- package/dist/sso.ee/oidc/routes/oidc.controller.ee.js.map +1 -1
- package/dist/sso.ee/saml/routes/saml.controller.ee.js +1 -1
- package/dist/sso.ee/saml/routes/saml.controller.ee.js.map +1 -1
- package/dist/task-runners/task-runner-process.d.ts +1 -0
- package/dist/task-runners/task-runner-process.js +7 -2
- package/dist/task-runners/task-runner-process.js.map +1 -1
- package/dist/telemetry/index.d.ts +1 -3
- package/dist/telemetry/index.js +1 -4
- package/dist/telemetry/index.js.map +1 -1
- package/dist/webhooks/webhook-helpers.js +1 -1
- package/dist/webhooks/webhook-helpers.js.map +1 -1
- package/dist/workflow-execute-additional-data.js +1 -0
- package/dist/workflow-execute-additional-data.js.map +1 -1
- package/dist/workflow-runner.js +2 -0
- package/dist/workflow-runner.js.map +1 -1
- package/dist/zod-alias-support.d.ts +9 -0
- package/dist/zod-alias-support.js +8 -0
- package/dist/zod-alias-support.js.map +1 -0
- package/package.json +24 -26
- package/dist/help.d.ts +0 -4
- package/dist/help.js +0 -12
- package/dist/help.js.map +0 -1
package/bin/n8n
CHANGED
|
@@ -13,11 +13,6 @@ if (versionFlags.includes(process.argv.slice(-1)[0])) {
|
|
|
13
13
|
process.exit(0);
|
|
14
14
|
}
|
|
15
15
|
|
|
16
|
-
if (process.argv.length === 2) {
|
|
17
|
-
// When no command is given choose by default start
|
|
18
|
-
process.argv.push('start');
|
|
19
|
-
}
|
|
20
|
-
|
|
21
16
|
const satisfies = require('semver/functions/satisfies');
|
|
22
17
|
const nodeVersion = process.versions.node;
|
|
23
18
|
const {
|
|
@@ -63,10 +58,7 @@ if (process.env.NODEJS_PREFER_IPV4 === 'true') {
|
|
|
63
58
|
require('net').setDefaultAutoSelectFamily?.(false);
|
|
64
59
|
|
|
65
60
|
(async () => {
|
|
66
|
-
|
|
67
|
-
const {
|
|
68
|
-
await
|
|
69
|
-
|
|
70
|
-
const oclif = await import('@oclif/core');
|
|
71
|
-
await oclif.execute({ dir: __dirname });
|
|
61
|
+
const { Container } = await import('@n8n/di');
|
|
62
|
+
const { CommandRegistry } = await import('../dist/command-registry.js');
|
|
63
|
+
await Container.get(CommandRegistry).execute();
|
|
72
64
|
})();
|
|
@@ -5,6 +5,7 @@ import { InvalidAuthTokenRepository, UserRepository } from '@n8n/db';
|
|
|
5
5
|
import type { NextFunction, Response } from 'express';
|
|
6
6
|
import type { StringValue as TimeUnitValue } from 'ms';
|
|
7
7
|
import { License } from '../license';
|
|
8
|
+
import { MfaService } from '../mfa/mfa.service';
|
|
8
9
|
import { JwtService } from '../services/jwt.service';
|
|
9
10
|
import { UrlService } from '../services/url.service';
|
|
10
11
|
export declare class AuthService {
|
|
@@ -15,14 +16,17 @@ export declare class AuthService {
|
|
|
15
16
|
private readonly urlService;
|
|
16
17
|
private readonly userRepository;
|
|
17
18
|
private readonly invalidAuthTokenRepository;
|
|
19
|
+
private readonly mfaService;
|
|
18
20
|
private skipBrowserIdCheckEndpoints;
|
|
19
|
-
constructor(globalConfig: GlobalConfig, logger: Logger, license: License, jwtService: JwtService, urlService: UrlService, userRepository: UserRepository, invalidAuthTokenRepository: InvalidAuthTokenRepository);
|
|
20
|
-
|
|
21
|
+
constructor(globalConfig: GlobalConfig, logger: Logger, license: License, jwtService: JwtService, urlService: UrlService, userRepository: UserRepository, invalidAuthTokenRepository: InvalidAuthTokenRepository, mfaService: MfaService);
|
|
22
|
+
createAuthMiddleware(allowSkipMFA: boolean): (req: AuthenticatedRequest, res: Response, next: NextFunction) => Promise<void>;
|
|
21
23
|
clearCookie(res: Response): void;
|
|
22
24
|
invalidateToken(req: AuthenticatedRequest): Promise<void>;
|
|
23
|
-
issueCookie(res: Response, user: User, browserId?: string): void;
|
|
24
|
-
issueJWT(user: User, browserId?: string): string;
|
|
25
|
-
resolveJwt(token: string, req: AuthenticatedRequest, res: Response): Promise<User
|
|
25
|
+
issueCookie(res: Response, user: User, usedMfa: boolean, browserId?: string): void;
|
|
26
|
+
issueJWT(user: User, usedMfa?: boolean, browserId?: string): string;
|
|
27
|
+
resolveJwt(token: string, req: AuthenticatedRequest, res: Response): Promise<[User, {
|
|
28
|
+
usedMfa: boolean;
|
|
29
|
+
}]>;
|
|
26
30
|
generatePasswordResetToken(user: User, expiresIn?: TimeUnitValue): string;
|
|
27
31
|
generatePasswordResetUrl(user: User): string;
|
|
28
32
|
resolvePasswordResetToken(token: string): Promise<User | undefined>;
|
|
@@ -25,10 +25,11 @@ const constants_2 = require("../constants");
|
|
|
25
25
|
const auth_error_1 = require("../errors/response-errors/auth.error");
|
|
26
26
|
const forbidden_error_1 = require("../errors/response-errors/forbidden.error");
|
|
27
27
|
const license_1 = require("../license");
|
|
28
|
+
const mfa_service_1 = require("../mfa/mfa.service");
|
|
28
29
|
const jwt_service_1 = require("../services/jwt.service");
|
|
29
30
|
const url_service_1 = require("../services/url.service");
|
|
30
31
|
let AuthService = class AuthService {
|
|
31
|
-
constructor(globalConfig, logger, license, jwtService, urlService, userRepository, invalidAuthTokenRepository) {
|
|
32
|
+
constructor(globalConfig, logger, license, jwtService, urlService, userRepository, invalidAuthTokenRepository, mfaService) {
|
|
32
33
|
this.globalConfig = globalConfig;
|
|
33
34
|
this.logger = logger;
|
|
34
35
|
this.license = license;
|
|
@@ -36,7 +37,7 @@ let AuthService = class AuthService {
|
|
|
36
37
|
this.urlService = urlService;
|
|
37
38
|
this.userRepository = userRepository;
|
|
38
39
|
this.invalidAuthTokenRepository = invalidAuthTokenRepository;
|
|
39
|
-
this.
|
|
40
|
+
this.mfaService = mfaService;
|
|
40
41
|
const restEndpoint = globalConfig.endpoints.rest;
|
|
41
42
|
this.skipBrowserIdCheckEndpoints = [
|
|
42
43
|
`/${restEndpoint}/push`,
|
|
@@ -45,28 +46,44 @@ let AuthService = class AuthService {
|
|
|
45
46
|
`/${restEndpoint}/oauth2-credential/callback`,
|
|
46
47
|
];
|
|
47
48
|
}
|
|
48
|
-
|
|
49
|
-
|
|
50
|
-
|
|
51
|
-
|
|
52
|
-
|
|
53
|
-
|
|
54
|
-
|
|
55
|
-
|
|
56
|
-
|
|
57
|
-
|
|
58
|
-
|
|
59
|
-
|
|
49
|
+
createAuthMiddleware(allowSkipMFA) {
|
|
50
|
+
return async (req, res, next) => {
|
|
51
|
+
const token = req.cookies[constants_2.AUTH_COOKIE_NAME];
|
|
52
|
+
if (token) {
|
|
53
|
+
try {
|
|
54
|
+
const isInvalid = await this.invalidAuthTokenRepository.existsBy({ token });
|
|
55
|
+
if (isInvalid)
|
|
56
|
+
throw new auth_error_1.AuthError('Unauthorized');
|
|
57
|
+
const [user, { usedMfa }] = await this.resolveJwt(token, req, res);
|
|
58
|
+
const mfaEnforced = this.mfaService.isMFAEnforced();
|
|
59
|
+
if (mfaEnforced && !usedMfa && !allowSkipMFA) {
|
|
60
|
+
if (user.mfaEnabled) {
|
|
61
|
+
throw new auth_error_1.AuthError('MFA not used during authentication');
|
|
62
|
+
}
|
|
63
|
+
else {
|
|
64
|
+
res.status(401).json({ status: 'error', message: 'Unauthorized', mfaRequired: true });
|
|
65
|
+
return;
|
|
66
|
+
}
|
|
67
|
+
}
|
|
68
|
+
req.user = user;
|
|
69
|
+
req.authInfo = {
|
|
70
|
+
usedMfa,
|
|
71
|
+
};
|
|
60
72
|
}
|
|
61
|
-
|
|
62
|
-
|
|
73
|
+
catch (error) {
|
|
74
|
+
if (error instanceof jsonwebtoken_1.JsonWebTokenError || error instanceof auth_error_1.AuthError) {
|
|
75
|
+
this.clearCookie(res);
|
|
76
|
+
}
|
|
77
|
+
else {
|
|
78
|
+
throw error;
|
|
79
|
+
}
|
|
63
80
|
}
|
|
64
81
|
}
|
|
65
|
-
|
|
66
|
-
|
|
67
|
-
|
|
68
|
-
|
|
69
|
-
|
|
82
|
+
if (req.user)
|
|
83
|
+
next();
|
|
84
|
+
else
|
|
85
|
+
res.status(401).json({ status: 'error', message: 'Unauthorized' });
|
|
86
|
+
};
|
|
70
87
|
}
|
|
71
88
|
clearCookie(res) {
|
|
72
89
|
res.clearCookie(constants_2.AUTH_COOKIE_NAME);
|
|
@@ -88,14 +105,14 @@ let AuthService = class AuthService {
|
|
|
88
105
|
this.logger.warn('failed to invalidate auth token', { error: e.message });
|
|
89
106
|
}
|
|
90
107
|
}
|
|
91
|
-
issueCookie(res, user, browserId) {
|
|
108
|
+
issueCookie(res, user, usedMfa, browserId) {
|
|
92
109
|
const isWithinUsersLimit = this.license.isWithinUsersLimit();
|
|
93
110
|
if (config_2.default.getEnv('userManagement.isInstanceOwnerSetUp') &&
|
|
94
111
|
user.role !== 'global:owner' &&
|
|
95
112
|
!isWithinUsersLimit) {
|
|
96
113
|
throw new forbidden_error_1.ForbiddenError(constants_2.RESPONSE_ERROR_MESSAGES.USERS_QUOTA_REACHED);
|
|
97
114
|
}
|
|
98
|
-
const token = this.issueJWT(user, browserId);
|
|
115
|
+
const token = this.issueJWT(user, usedMfa, browserId);
|
|
99
116
|
const { samesite, secure } = this.globalConfig.auth.cookie;
|
|
100
117
|
res.cookie(constants_2.AUTH_COOKIE_NAME, token, {
|
|
101
118
|
maxAge: this.jwtExpiration * constants_1.Time.seconds.toMilliseconds,
|
|
@@ -104,11 +121,12 @@ let AuthService = class AuthService {
|
|
|
104
121
|
secure,
|
|
105
122
|
});
|
|
106
123
|
}
|
|
107
|
-
issueJWT(user, browserId) {
|
|
124
|
+
issueJWT(user, usedMfa = false, browserId) {
|
|
108
125
|
const payload = {
|
|
109
126
|
id: user.id,
|
|
110
127
|
hash: this.createJWTHash(user),
|
|
111
128
|
browserId: browserId && this.hash(browserId),
|
|
129
|
+
usedMfa,
|
|
112
130
|
};
|
|
113
131
|
return this.jwtService.sign(payload, {
|
|
114
132
|
expiresIn: this.jwtExpiration,
|
|
@@ -137,9 +155,9 @@ let AuthService = class AuthService {
|
|
|
137
155
|
}
|
|
138
156
|
if (jwtPayload.exp * 1000 - Date.now() < this.jwtRefreshTimeout) {
|
|
139
157
|
this.logger.debug('JWT about to expire. Will be refreshed');
|
|
140
|
-
this.issueCookie(res, user, req.browserId);
|
|
158
|
+
this.issueCookie(res, user, jwtPayload.usedMfa ?? false, req.browserId);
|
|
141
159
|
}
|
|
142
|
-
return user;
|
|
160
|
+
return [user, { usedMfa: jwtPayload.usedMfa ?? false }];
|
|
143
161
|
}
|
|
144
162
|
generatePasswordResetToken(user, expiresIn = '20m') {
|
|
145
163
|
const payload = { sub: user.id, hash: this.createJWTHash(user) };
|
|
@@ -212,6 +230,7 @@ exports.AuthService = AuthService = __decorate([
|
|
|
212
230
|
jwt_service_1.JwtService,
|
|
213
231
|
url_service_1.UrlService,
|
|
214
232
|
db_1.UserRepository,
|
|
215
|
-
db_1.InvalidAuthTokenRepository
|
|
233
|
+
db_1.InvalidAuthTokenRepository,
|
|
234
|
+
mfa_service_1.MfaService])
|
|
216
235
|
], AuthService);
|
|
217
236
|
//# sourceMappingURL=auth.service.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"auth.service.js","sourceRoot":"","sources":["../../src/auth/auth.service.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;AAAA,wDAA6C;AAC7C,wCAA2C;AAC3C,8CAAsC;AAEtC,gCAAqE;AACrE,gCAAkC;AAClC,mCAAoC;AAEpC,+CAAoE;AAGpE,sDAA8B;AAC9B,2CAAwE;AACxE,oEAAgE;AAChE,8EAA0E;AAC1E,uCAAoC;AACpC,wDAAoD;AACpD,wDAAoD;
|
|
1
|
+
{"version":3,"file":"auth.service.js","sourceRoot":"","sources":["../../src/auth/auth.service.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;AAAA,wDAA6C;AAC7C,wCAA2C;AAC3C,8CAAsC;AAEtC,gCAAqE;AACrE,gCAAkC;AAClC,mCAAoC;AAEpC,+CAAoE;AAGpE,sDAA8B;AAC9B,2CAAwE;AACxE,oEAAgE;AAChE,8EAA0E;AAC1E,uCAAoC;AACpC,mDAA+C;AAC/C,wDAAoD;AACpD,wDAAoD;AAuB7C,IAAM,WAAW,GAAjB,MAAM,WAAW;IAIvB,YACkB,YAA0B,EAC1B,MAAc,EACd,OAAgB,EAChB,UAAsB,EACtB,UAAsB,EACtB,cAA8B,EAC9B,0BAAsD,EACtD,UAAsB;QAPtB,iBAAY,GAAZ,YAAY,CAAc;QAC1B,WAAM,GAAN,MAAM,CAAQ;QACd,YAAO,GAAP,OAAO,CAAS;QAChB,eAAU,GAAV,UAAU,CAAY;QACtB,eAAU,GAAV,UAAU,CAAY;QACtB,mBAAc,GAAd,cAAc,CAAgB;QAC9B,+BAA0B,GAA1B,0BAA0B,CAA4B;QACtD,eAAU,GAAV,UAAU,CAAY;QAEvC,MAAM,YAAY,GAAG,YAAY,CAAC,SAAS,CAAC,IAAI,CAAC;QACjD,IAAI,CAAC,2BAA2B,GAAG;YAGlC,IAAI,YAAY,OAAO;YAGvB,IAAI,YAAY,eAAe;YAG/B,IAAI,YAAY,6BAA6B;YAC7C,IAAI,YAAY,6BAA6B;SAC7C,CAAC;IACH,CAAC;IAED,oBAAoB,CAAC,YAAqB;QACzC,OAAO,KAAK,EAAE,GAAyB,EAAE,GAAa,EAAE,IAAkB,EAAE,EAAE;YAC7E,MAAM,KAAK,GAAG,GAAG,CAAC,OAAO,CAAC,4BAAgB,CAAC,CAAC;YAC5C,IAAI,KAAK,EAAE,CAAC;gBACX,IAAI,CAAC;oBACJ,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,0BAA0B,CAAC,QAAQ,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC;oBAC5E,IAAI,SAAS;wBAAE,MAAM,IAAI,sBAAS,CAAC,cAAc,CAAC,CAAC;oBACnD,MAAM,CAAC,IAAI,EAAE,EAAE,OAAO,EAAE,CAAC,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,KAAK,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC;oBACnE,MAAM,WAAW,GAAG,IAAI,CAAC,UAAU,CAAC,aAAa,EAAE,CAAC;oBAEpD,IAAI,WAAW,IAAI,CAAC,OAAO,IAAI,CAAC,YAAY,EAAE,CAAC;wBAE9C,IAAI,IAAI,CAAC,UAAU,EAAE,CAAC;4BAErB,MAAM,IAAI,sBAAS,CAAC,oCAAoC,CAAC,CAAC;wBAC3D,CAAC;6BAAM,CAAC;4BAEP,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,EAAE,cAAc,EAAE,WAAW,EAAE,IAAI,EAAE,CAAC,CAAC;4BACtF,OAAO;wBACR,CAAC;oBACF,CAAC;oBAED,GAAG,CAAC,IAAI,GAAG,IAAI,CAAC;oBAChB,GAAG,CAAC,QAAQ,GAAG;wBACd,OAAO;qBACP,CAAC;gBACH,CAAC;gBAAC,OAAO,KAAK,EAAE,CAAC;oBAChB,IAAI,KAAK,YAAY,gCAAiB,IAAI,KAAK,YAAY,sBAAS,EAAE,CAAC;wBACtE,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC;oBACvB,CAAC;yBAAM,CAAC;wBACP,MAAM,KAAK,CAAC;oBACb,CAAC;gBACF,CAAC;YACF,CAAC;YAED,IAAI,GAAG,CAAC,IAAI;gBAAE,IAAI,EAAE,CAAC;;gBAChB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,EAAE,cAAc,EAAE,CAAC,CAAC;QACzE,CAAC,CAAC;IACH,CAAC;IAED,WAAW,CAAC,GAAa;QACxB,GAAG,CAAC,WAAW,CAAC,4BAAgB,CAAC,CAAC;IACnC,CAAC;IAED,KAAK,CAAC,eAAe,CAAC,GAAyB;QAC9C,MAAM,KAAK,GAAG,GAAG,CAAC,OAAO,CAAC,4BAAgB,CAAC,CAAC;QAC5C,IAAI,CAAC,KAAK;YAAE,OAAO;QACnB,IAAI,CAAC;YACJ,MAAM,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;YAC9C,IAAI,GAAG,EAAE,CAAC;gBACT,MAAM,IAAI,CAAC,0BAA0B,CAAC,MAAM,CAAC;oBAC5C,KAAK;oBACL,SAAS,EAAE,IAAI,IAAI,CAAC,GAAG,GAAG,IAAI,CAAC;iBAC/B,CAAC,CAAC;YACJ,CAAC;QACF,CAAC;QAAC,OAAO,CAAC,EAAE,CAAC;YACZ,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,iCAAiC,EAAE,EAAE,KAAK,EAAG,CAAW,CAAC,OAAO,EAAE,CAAC,CAAC;QACtF,CAAC;IACF,CAAC;IAED,WAAW,CAAC,GAAa,EAAE,IAAU,EAAE,OAAgB,EAAE,SAAkB;QAG1E,MAAM,kBAAkB,GAAG,IAAI,CAAC,OAAO,CAAC,kBAAkB,EAAE,CAAC;QAC7D,IACC,gBAAM,CAAC,MAAM,CAAC,qCAAqC,CAAC;YACpD,IAAI,CAAC,IAAI,KAAK,cAAc;YAC5B,CAAC,kBAAkB,EAClB,CAAC;YACF,MAAM,IAAI,gCAAc,CAAC,mCAAuB,CAAC,mBAAmB,CAAC,CAAC;QACvE,CAAC;QAED,MAAM,KAAK,GAAG,IAAI,CAAC,QAAQ,CAAC,IAAI,EAAE,OAAO,EAAE,SAAS,CAAC,CAAC;QACtD,MAAM,EAAE,QAAQ,EAAE,MAAM,EAAE,GAAG,IAAI,CAAC,YAAY,CAAC,IAAI,CAAC,MAAM,CAAC;QAC3D,GAAG,CAAC,MAAM,CAAC,4BAAgB,EAAE,KAAK,EAAE;YACnC,MAAM,EAAE,IAAI,CAAC,aAAa,GAAG,gBAAI,CAAC,OAAO,CAAC,cAAc;YACxD,QAAQ,EAAE,IAAI;YACd,QAAQ,EAAE,QAAQ;YAClB,MAAM;SACN,CAAC,CAAC;IACJ,CAAC;IAED,QAAQ,CAAC,IAAU,EAAE,UAAmB,KAAK,EAAE,SAAkB;QAChE,MAAM,OAAO,GAAmB;YAC/B,EAAE,EAAE,IAAI,CAAC,EAAE;YACX,IAAI,EAAE,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC;YAC9B,SAAS,EAAE,SAAS,IAAI,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC;YAC5C,OAAO;SACP,CAAC;QACF,OAAO,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,OAAO,EAAE;YACpC,SAAS,EAAE,IAAI,CAAC,aAAa;SAC7B,CAAC,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,UAAU,CACf,KAAa,EACb,GAAyB,EACzB,GAAa;QAEb,MAAM,UAAU,GAAc,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,KAAK,EAAE;YAC3D,UAAU,EAAE,CAAC,OAAO,CAAC;SACrB,CAAC,CAAC;QAGH,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,OAAO,CAAC;YAC9C,KAAK,EAAE,EAAE,EAAE,EAAE,UAAU,CAAC,EAAE,EAAE;SAC5B,CAAC,CAAC;QAEH,IAEC,CAAC,IAAI;YAEL,IAAI,CAAC,QAAQ;YAEb,UAAU,CAAC,IAAI,KAAK,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,EAC3C,CAAC;YACF,MAAM,IAAI,sBAAS,CAAC,cAAc,CAAC,CAAC;QACrC,CAAC;QAGD,MAAM,QAAQ,GAAG,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC,GAAG,GAAG,CAAC,OAAO,GAAG,GAAG,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC;QAC7E,IAAI,GAAG,CAAC,MAAM,KAAK,KAAK,IAAI,IAAI,CAAC,2BAA2B,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC;YACjF,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,8BAA8B,QAAQ,EAAE,CAAC,CAAC;QAC7D,CAAC;aAAM,IACN,UAAU,CAAC,SAAS;YACpB,CAAC,CAAC,GAAG,CAAC,SAAS,IAAI,UAAU,CAAC,SAAS,KAAK,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC,EACpE,CAAC;YACF,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,6BAA6B,QAAQ,EAAE,CAAC,CAAC;YAC1D,MAAM,IAAI,sBAAS,CAAC,cAAc,CAAC,CAAC;QACrC,CAAC;QAED,IAAI,UAAU,CAAC,GAAG,GAAG,IAAI,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,iBAAiB,EAAE,CAAC;YACjE,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,wCAAwC,CAAC,CAAC;YAC5D,IAAI,CAAC,WAAW,CAAC,GAAG,EAAE,IAAI,EAAE,UAAU,CAAC,OAAO,IAAI,KAAK,EAAE,GAAG,CAAC,SAAS,CAAC,CAAC;QACzE,CAAC;QAED,OAAO,CAAC,IAAI,EAAE,EAAE,OAAO,EAAE,UAAU,CAAC,OAAO,IAAI,KAAK,EAAE,CAAC,CAAC;IACzD,CAAC;IAED,0BAA0B,CAAC,IAAU,EAAE,YAA2B,KAAK;QACtE,MAAM,OAAO,GAAuB,EAAE,GAAG,EAAE,IAAI,CAAC,EAAE,EAAE,IAAI,EAAE,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,EAAE,CAAC;QACrF,OAAO,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,OAAO,EAAE,EAAE,SAAS,EAAE,CAAC,CAAC;IACrD,CAAC;IAED,wBAAwB,CAAC,IAAU;QAClC,MAAM,eAAe,GAAG,IAAI,CAAC,UAAU,CAAC,kBAAkB,EAAE,CAAC;QAC7D,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,GAAG,eAAe,kBAAkB,CAAC,CAAC;QAE1D,GAAG,CAAC,YAAY,CAAC,MAAM,CAAC,OAAO,EAAE,IAAI,CAAC,0BAA0B,CAAC,IAAI,CAAC,CAAC,CAAC;QACxE,GAAG,CAAC,YAAY,CAAC,MAAM,CAAC,YAAY,EAAE,IAAI,CAAC,UAAU,CAAC,QAAQ,EAAE,CAAC,CAAC;QAElE,OAAO,GAAG,CAAC,QAAQ,EAAE,CAAC;IACvB,CAAC;IAED,KAAK,CAAC,yBAAyB,CAAC,KAAa;QAC5C,IAAI,YAAgC,CAAC;QACrC,IAAI,CAAC;YACJ,YAAY,GAAG,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QAC9C,CAAC;QAAC,OAAO,CAAC,EAAE,CAAC;YACZ,IAAI,CAAC,YAAY,gCAAiB,EAAE,CAAC;gBACpC,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,8BAA8B,EAAE,EAAE,KAAK,EAAE,CAAC,CAAC;YAC9D,CAAC;iBAAM,CAAC;gBACP,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,uBAAuB,EAAE,EAAE,KAAK,EAAE,CAAC,CAAC;YACvD,CAAC;YACD,OAAO;QACR,CAAC;QAED,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,OAAO,CAAC;YAC9C,KAAK,EAAE,EAAE,EAAE,EAAE,YAAY,CAAC,GAAG,EAAE;YAC/B,SAAS,EAAE,CAAC,gBAAgB,CAAC;SAC7B,CAAC,CAAC;QAEH,IAAI,CAAC,IAAI,EAAE,CAAC;YACX,IAAI,CAAC,MAAM,CAAC,KAAK,CAChB,6FAA6F,EAC7F,EAAE,MAAM,EAAE,YAAY,CAAC,GAAG,EAAE,KAAK,EAAE,CACnC,CAAC;YACF,OAAO;QACR,CAAC;QAED,IAAI,YAAY,CAAC,IAAI,KAAK,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,EAAE,CAAC;YACpD,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,iDAAiD,CAAC,CAAC;YACrE,OAAO;QACR,CAAC;QAED,OAAO,IAAI,CAAC;IACb,CAAC;IAED,aAAa,CAAC,EAAE,KAAK,EAAE,QAAQ,EAAE,UAAU,EAAE,SAAS,EAAQ;QAC7D,MAAM,OAAO,GAAG,CAAC,KAAK,EAAE,QAAQ,CAAC,CAAC;QAClC,IAAI,UAAU,IAAI,SAAS,EAAE,CAAC;YAC7B,OAAO,CAAC,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;QACzC,CAAC;QACD,OAAO,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IACtD,CAAC;IAEO,IAAI,CAAC,KAAa;QACzB,OAAO,IAAA,mBAAU,EAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;IAC5D,CAAC;IAGD,IAAI,iBAAiB;QACpB,MAAM,EAAE,sBAAsB,EAAE,uBAAuB,EAAE,GAAG,gBAAM,CAAC,GAAG,CAAC,gBAAgB,CAAC,CAAC;QACzF,IAAI,sBAAsB,KAAK,CAAC,EAAE,CAAC;YAClC,OAAO,IAAI,CAAC,KAAK,CAAC,uBAAuB,GAAG,IAAI,GAAG,gBAAI,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC;QAC/E,CAAC;aAAM,CAAC;YACP,OAAO,IAAI,CAAC,KAAK,CAAC,sBAAsB,GAAG,gBAAI,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC;QACvE,CAAC;IACF,CAAC;IAGD,IAAI,aAAa;QAChB,OAAO,gBAAM,CAAC,GAAG,CAAC,wCAAwC,CAAC,GAAG,gBAAI,CAAC,KAAK,CAAC,SAAS,CAAC;IACpF,CAAC;CACD,CAAA;AAnPY,kCAAW;sBAAX,WAAW;IADvB,IAAA,YAAO,GAAE;qCAMuB,qBAAY;QAClB,uBAAM;QACL,iBAAO;QACJ,wBAAU;QACV,wBAAU;QACN,mBAAc;QACF,+BAA0B;QAC1C,wBAAU;GAZ5B,WAAW,CAmPvB"}
|
package/dist/auth/jwt.js
CHANGED
|
@@ -4,6 +4,6 @@ exports.issueCookie = issueCookie;
|
|
|
4
4
|
const di_1 = require("@n8n/di");
|
|
5
5
|
const auth_service_1 = require("./auth.service");
|
|
6
6
|
function issueCookie(res, user) {
|
|
7
|
-
return di_1.Container.get(auth_service_1.AuthService).issueCookie(res, user);
|
|
7
|
+
return di_1.Container.get(auth_service_1.AuthService).issueCookie(res, user, user.mfaEnabled);
|
|
8
8
|
}
|
|
9
9
|
//# sourceMappingURL=jwt.js.map
|
package/dist/auth/jwt.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"jwt.js","sourceRoot":"","sources":["../../src/auth/jwt.ts"],"names":[],"mappings":";;AASA,kCAEC;AAVD,gCAAoC;AAGpC,iDAA6C;AAK7C,SAAgB,WAAW,CAAC,GAAa,EAAE,IAAU;IACpD,OAAO,cAAS,CAAC,GAAG,CAAC,0BAAW,CAAC,CAAC,WAAW,CAAC,GAAG,EAAE,IAAI,CAAC,CAAC;
|
|
1
|
+
{"version":3,"file":"jwt.js","sourceRoot":"","sources":["../../src/auth/jwt.ts"],"names":[],"mappings":";;AASA,kCAEC;AAVD,gCAAoC;AAGpC,iDAA6C;AAK7C,SAAgB,WAAW,CAAC,GAAa,EAAE,IAAU;IACpD,OAAO,cAAS,CAAC,GAAG,CAAC,0BAAW,CAAC,CAAC,WAAW,CAAC,GAAG,EAAE,IAAI,EAAE,IAAI,CAAC,UAAU,CAAC,CAAC;AAC3E,CAAC"}
|