npm - strapi-identity - Versions diffs - 0.4.2 → 0.5.1 - Mend

strapi-identity 0.4.2 → 0.5.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (60) hide show

package/dist/admin/{AdminReset-DOmsyqwQ.mjs → AdminReset-DjVX7phX.mjs} RENAMED Viewed

@@ -2,7 +2,7 @@ import { jsxs, Fragment, jsx } from "react/jsx-runtime";
 import { useState, useEffect } from "react";
 import { W as WarningAlert } from "./WarningAlert-VU011LVF.mjs";
 import { Box, Flex, Typography, Grid, Button } from "@strapi/design-system";
-import { g as getToken, a as getTranslation } from "./index-DpIJdETG.mjs";
+import { g as getToken, a as getTranslation } from "./index-Bm3H4z3W.mjs";
 import { useIntl } from "react-intl";
 const AdminReset = ({ id }) => {
   const { formatMessage } = useIntl();

package/dist/admin/{AdminReset-BiWQDTRv.js → AdminReset-DsKz040S.js} RENAMED Viewed

@@ -4,7 +4,7 @@ const jsxRuntime = require("react/jsx-runtime");
 const React = require("react");
 const WarningAlert = require("./WarningAlert-DFE5euMk.js");
 const designSystem = require("@strapi/design-system");
-const index = require("./index-B9P8S4CX.js");
+const index = require("./index-Ce4QOU6Y.js");
 const reactIntl = require("react-intl");
 const AdminReset = ({ id }) => {
   const { formatMessage } = reactIntl.useIntl();

package/dist/admin/{ProfileToggle-BUqs_hxZ.js → ProfileToggle-4u6WWddz.js} RENAMED Viewed

@@ -3,7 +3,7 @@ Object.defineProperty(exports, Symbol.toStringTag, { value: "Module" });
 const jsxRuntime = require("react/jsx-runtime");
 const React = require("react");
 const designSystem = require("@strapi/design-system");
-const index = require("./index-B9P8S4CX.js");
+const index = require("./index-Ce4QOU6Y.js");
 const reactIntl = require("react-intl");
 function RemoveModal({ open, onOpenChange, onSubmit }) {
   const { formatMessage } = reactIntl.useIntl();

package/dist/admin/{ProfileToggle-k0d-caPC.mjs → ProfileToggle-B1UK1opI.mjs} RENAMED Viewed

@@ -1,7 +1,7 @@
 import { jsx, jsxs, Fragment } from "react/jsx-runtime";
 import { useState, useEffect } from "react";
 import { Modal, Flex, Typography, TextInput, Button, Box, Grid, Field, Toggle } from "@strapi/design-system";
-import { a as getTranslation, I as InputOTP, b as InputOTPGroup, c as InputOTPSlot, d as InputOTPSeparator, g as getToken, C as ConfirmModal, E as EmailOTPModal } from "./index-DpIJdETG.mjs";
+import { a as getTranslation, I as InputOTP, b as InputOTPGroup, c as InputOTPSlot, d as InputOTPSeparator, g as getToken, C as ConfirmModal, E as EmailOTPModal } from "./index-Bm3H4z3W.mjs";
 import { useIntl } from "react-intl";
 function RemoveModal({ open, onOpenChange, onSubmit }) {
   const { formatMessage } = useIntl();

package/dist/admin/{SettingsPage-Dm_llkYv.mjs → SettingsPage-CcHTu8-f.mjs} RENAMED Viewed

@@ -4,7 +4,7 @@ import { W as WarningAlert } from "./WarningAlert-VU011LVF.mjs";
 import { useNotification, Page, Layouts } from "@strapi/strapi/admin";
 import { Button, Flex, Typography, Grid, Field, Toggle, TextInput, Textarea } from "@strapi/design-system";
 import { Check } from "@strapi/icons";
-import { g as getToken, a as getTranslation } from "./index-DpIJdETG.mjs";
+import { g as getToken, a as getTranslation } from "./index-Bm3H4z3W.mjs";
 import { useIntl } from "react-intl";
 var commonjsGlobal = typeof globalThis !== "undefined" ? globalThis : typeof window !== "undefined" ? window : typeof global !== "undefined" ? global : typeof self !== "undefined" ? self : {};
 var lodash$1 = { exports: {} };

package/dist/admin/{SettingsPage-DVVkN1xw.js → SettingsPage-DZDW9kNI.js} RENAMED Viewed

@@ -6,7 +6,7 @@ const WarningAlert = require("./WarningAlert-DFE5euMk.js");
 const admin = require("@strapi/strapi/admin");
 const designSystem = require("@strapi/design-system");
 const icons = require("@strapi/icons");
-const index = require("./index-B9P8S4CX.js");
+const index = require("./index-Ce4QOU6Y.js");
 const reactIntl = require("react-intl");
 var commonjsGlobal = typeof globalThis !== "undefined" ? globalThis : typeof window !== "undefined" ? window : typeof global !== "undefined" ? global : typeof self !== "undefined" ? self : {};
 var lodash$1 = { exports: {} };

package/dist/admin/{index-DpIJdETG.mjs → index-Bm3H4z3W.mjs} RENAMED Viewed

@@ -1350,7 +1350,8 @@ const VerifyPage = ({ fallbackIcon }) => {
           `${response.status} ${response.statusText}: ${data.error || "Unknown error"}`
         );
       }
-      const target = new URLSearchParams(window.location.search).get("redirectTo") || "/admin";
+      const rawTarget = new URLSearchParams(window.location.search).get("redirectTo") || "/admin";
+      const target = /^\/[^/]/.test(rawTarget) ? rawTarget : "/admin";
       window.location.replace(target);
     } catch (error2) {
       setError(
@@ -1363,20 +1364,26 @@ const VerifyPage = ({ fallbackIcon }) => {
     }
   };
   useEffect(() => {
-    const mfaToken = document.cookie.split("; ").reduce((acc, cookie) => {
-      const [name, value] = cookie.split("=");
-      return name === "strapi_admin_mfa" ? value.trim() : acc;
-    }, null);
-    if (auth?.token || !mfaToken) {
+    if (auth?.token) {
       window.location.replace("/admin");
       return;
     }
-    try {
-      const payloadBase64 = mfaToken.split(".")[1];
-      const decoded = JSON.parse(atob(payloadBase64));
-      setMfaType(decoded.mfaType || null);
-    } catch {
-    }
+    const ac = new AbortController();
+    (async () => {
+      try {
+        const response = await fetch("/strapi-identity/verify/info", { signal: ac.signal });
+        if (!response.ok) {
+          window.location.replace("/admin");
+          return;
+        }
+        const data = await response.json();
+        setMfaType(data.data?.mfaType || null);
+      } catch (error2) {
+        if (error2 instanceof DOMException && error2.name === "AbortError") return;
+        window.location.replace("/admin");
+      }
+    })();
+    return () => ac.abort();
   }, [auth?.token]);
   const handleResend = async () => {
     setResendLoading(true);
@@ -1762,6 +1769,10 @@ const EnforcedPage = () => {
             signal: ac.signal
           })
         ]);
+        if (meRes.status === 401) {
+          window.location.replace("/admin/auth/login");
+          return;
+        }
         if (statusRes.ok) {
           const statusBody = await statusRes.json();
           if (statusBody.data?.status === "full") {
@@ -1777,10 +1788,10 @@ const EnforcedPage = () => {
           const meBody = await meRes.json();
           setUserEmail(meBody.data?.email || "");
         }
+        setLoading(false);
       } catch (error) {
         if (error.name === "AbortError") return;
         console.error("Failed to check MFA status:", error);
-      } finally {
         setLoading(false);
       }
     })();
@@ -1938,7 +1949,7 @@ const plugin = {
       },
       id: "strapi-identity-settings",
       to: `/${PLUGIN_ID}`,
-      Component: () => import("./SettingsPage-Dm_llkYv.mjs"),
+      Component: () => import("./SettingsPage-CcHTu8-f.mjs"),
       permissions: [{ action: "plugin::strapi-identity.settings.update" }]
     });
     app.addMiddlewares([mfaRedirect]);
@@ -1947,14 +1958,14 @@ const plugin = {
       id: "profile-toggle",
       route: "/admin/me",
       selector: '#main-content form[method="put"] > :nth-child(2) > div > div > div:nth-child(2)',
-      Component: () => import("./ProfileToggle-k0d-caPC.mjs")
+      Component: () => import("./ProfileToggle-B1UK1opI.mjs")
     });
     injections.registerRoute({
       id: "admin-reset",
       route: "/admin/settings/users/:id",
       selector: '#main-content form[method="put"] > :nth-child(2) > div > div:nth-child(2)',
       permissions: [{ action: "plugin::strapi-identity.settings.update" }],
-      Component: () => import("./AdminReset-DOmsyqwQ.mjs")
+      Component: () => import("./AdminReset-DjVX7phX.mjs")
     });
     InjectVerify(app);
     InjectEnforced(app);
@@ -1978,10 +1989,20 @@ const plugin = {
   }
 };
 const mfaRedirect = () => {
-  return () => (next) => (action) => {
-    if (action && action.type === "admin/login" && (action.payload || {}).hasOwnProperty("token") && action.payload.token === void 0) {
-      window.location.replace("/admin/strapi-identity/verify");
-      return;
+  return () => (next) => async (action) => {
+    if (action && action.type === "admin/login" && (action.payload || {}).hasOwnProperty("token")) {
+      if (action.payload.token === void 0) {
+        window.location.replace("/admin/strapi-identity/verify");
+        return;
+      }
+      const config = await fetch("/strapi-identity/config", {
+        headers: { authorization: `Bearer ${action.payload.token}` }
+      }).then((res) => res.json());
+      if (config.data?.enabled && config.data?.enforce) {
+        await next(action);
+        window.location.replace("/admin/strapi-identity/enforced");
+        return;
+      }
     }
     return next(action);
   };

package/dist/admin/{index-B9P8S4CX.js → index-Ce4QOU6Y.js} RENAMED Viewed

@@ -1370,7 +1370,8 @@ const VerifyPage = ({ fallbackIcon }) => {
           `${response.status} ${response.statusText}: ${data.error || "Unknown error"}`
         );
       }
-      const target = new URLSearchParams(window.location.search).get("redirectTo") || "/admin";
+      const rawTarget = new URLSearchParams(window.location.search).get("redirectTo") || "/admin";
+      const target = /^\/[^/]/.test(rawTarget) ? rawTarget : "/admin";
       window.location.replace(target);
     } catch (error2) {
       setError(
@@ -1383,20 +1384,26 @@ const VerifyPage = ({ fallbackIcon }) => {
     }
   };
   React.useEffect(() => {
-    const mfaToken = document.cookie.split("; ").reduce((acc, cookie) => {
-      const [name, value] = cookie.split("=");
-      return name === "strapi_admin_mfa" ? value.trim() : acc;
-    }, null);
-    if (auth?.token || !mfaToken) {
+    if (auth?.token) {
       window.location.replace("/admin");
       return;
     }
-    try {
-      const payloadBase64 = mfaToken.split(".")[1];
-      const decoded = JSON.parse(atob(payloadBase64));
-      setMfaType(decoded.mfaType || null);
-    } catch {
-    }
+    const ac = new AbortController();
+    (async () => {
+      try {
+        const response = await fetch("/strapi-identity/verify/info", { signal: ac.signal });
+        if (!response.ok) {
+          window.location.replace("/admin");
+          return;
+        }
+        const data = await response.json();
+        setMfaType(data.data?.mfaType || null);
+      } catch (error2) {
+        if (error2 instanceof DOMException && error2.name === "AbortError") return;
+        window.location.replace("/admin");
+      }
+    })();
+    return () => ac.abort();
   }, [auth?.token]);
   const handleResend = async () => {
     setResendLoading(true);
@@ -1782,6 +1789,10 @@ const EnforcedPage = () => {
             signal: ac.signal
           })
         ]);
+        if (meRes.status === 401) {
+          window.location.replace("/admin/auth/login");
+          return;
+        }
         if (statusRes.ok) {
           const statusBody = await statusRes.json();
           if (statusBody.data?.status === "full") {
@@ -1797,10 +1808,10 @@ const EnforcedPage = () => {
           const meBody = await meRes.json();
           setUserEmail(meBody.data?.email || "");
         }
+        setLoading(false);
       } catch (error) {
         if (error.name === "AbortError") return;
         console.error("Failed to check MFA status:", error);
-      } finally {
         setLoading(false);
       }
     })();
@@ -1958,7 +1969,7 @@ const plugin = {
       },
       id: "strapi-identity-settings",
       to: `/${PLUGIN_ID}`,
-      Component: () => Promise.resolve().then(() => require("./SettingsPage-DVVkN1xw.js")),
+      Component: () => Promise.resolve().then(() => require("./SettingsPage-DZDW9kNI.js")),
       permissions: [{ action: "plugin::strapi-identity.settings.update" }]
     });
     app.addMiddlewares([mfaRedirect]);
@@ -1967,14 +1978,14 @@ const plugin = {
       id: "profile-toggle",
       route: "/admin/me",
       selector: '#main-content form[method="put"] > :nth-child(2) > div > div > div:nth-child(2)',
-      Component: () => Promise.resolve().then(() => require("./ProfileToggle-BUqs_hxZ.js"))
+      Component: () => Promise.resolve().then(() => require("./ProfileToggle-4u6WWddz.js"))
     });
     injections.registerRoute({
       id: "admin-reset",
       route: "/admin/settings/users/:id",
       selector: '#main-content form[method="put"] > :nth-child(2) > div > div:nth-child(2)',
       permissions: [{ action: "plugin::strapi-identity.settings.update" }],
-      Component: () => Promise.resolve().then(() => require("./AdminReset-BiWQDTRv.js"))
+      Component: () => Promise.resolve().then(() => require("./AdminReset-DsKz040S.js"))
     });
     InjectVerify(app);
     InjectEnforced(app);
@@ -1998,10 +2009,20 @@ const plugin = {
   }
 };
 const mfaRedirect = () => {
-  return () => (next) => (action) => {
-    if (action && action.type === "admin/login" && (action.payload || {}).hasOwnProperty("token") && action.payload.token === void 0) {
-      window.location.replace("/admin/strapi-identity/verify");
-      return;
+  return () => (next) => async (action) => {
+    if (action && action.type === "admin/login" && (action.payload || {}).hasOwnProperty("token")) {
+      if (action.payload.token === void 0) {
+        window.location.replace("/admin/strapi-identity/verify");
+        return;
+      }
+      const config = await fetch("/strapi-identity/config", {
+        headers: { authorization: `Bearer ${action.payload.token}` }
+      }).then((res) => res.json());
+      if (config.data?.enabled && config.data?.enforce) {
+        await next(action);
+        window.location.replace("/admin/strapi-identity/enforced");
+        return;
+      }
     }
     return next(action);
   };

package/dist/admin/index.js CHANGED Viewed

@@ -1,5 +1,5 @@
 "use strict";
 Object.defineProperties(exports, { __esModule: { value: true }, [Symbol.toStringTag]: { value: "Module" } });
-const index = require("./index-B9P8S4CX.js");
+const index = require("./index-Ce4QOU6Y.js");
 require("strapi-admin-portal");
 exports.default = index.plugin;

package/dist/admin/index.mjs CHANGED Viewed

@@ -1,4 +1,4 @@
-import { p } from "./index-DpIJdETG.mjs";
+import { p } from "./index-Bm3H4z3W.mjs";
 import "strapi-admin-portal";
 export {
   p as default

package/dist/admin/src/components/ConfirmModal/ConfirmModal.d.ts ADDED Viewed

@@ -0,0 +1,9 @@
+export interface ConfirmModalProps {
+    open?: boolean;
+    onOpenChange?: (open: boolean) => void;
+    onSubmit?: React.FormEventHandler<HTMLFormElement>;
+    qrCodeUri?: string | null;
+    secret?: string | null;
+    passcodes?: string[] | null;
+}
+export default function ConfirmModal({ open, onOpenChange, onSubmit, qrCodeUri, secret, passcodes, }: ConfirmModalProps): import("react/jsx-runtime").JSX.Element;

package/dist/admin/src/components/ConfirmModal/index.d.ts ADDED Viewed

	@@ -0,0 +1 @@
1	+ export { default, type ConfirmModalProps } from './ConfirmModal';

package/dist/admin/src/components/EmailOTPModal/EmailOTPModal.d.ts ADDED Viewed

@@ -0,0 +1,8 @@
+export interface EmailOTPModalProps {
+    mode: 'setup' | 'disable';
+    open: boolean;
+    email: string;
+    onOpenChange: (open: boolean) => void;
+    onSuccess: () => void;
+}
+export default function EmailOTPModal({ mode, open, email, onOpenChange, onSuccess, }: EmailOTPModalProps): import("react/jsx-runtime").JSX.Element;

package/dist/admin/src/components/Initializer.d.ts ADDED Viewed

@@ -0,0 +1,5 @@
+type InitializerProps = {
+    setPlugin: (id: string) => void;
+};
+declare const Initializer: ({ setPlugin }: InitializerProps) => null;
+export { Initializer };

package/dist/admin/src/components/InputOTP.d.ts ADDED Viewed

@@ -0,0 +1,11 @@
+import { OTPInput } from 'input-otp';
+import * as React from 'react';
+declare function InputOTP({ className, containerClassName, ...props }: React.ComponentPropsWithoutRef<typeof OTPInput> & {
+    containerClassName?: string;
+}): import("react/jsx-runtime").JSX.Element;
+declare function InputOTPGroup({ className, ...props }: React.ComponentProps<'div'>): import("react/jsx-runtime").JSX.Element;
+declare function InputOTPSlot({ index, className, ...props }: React.ComponentProps<'div'> & {
+    index: number;
+}): import("react/jsx-runtime").JSX.Element;
+declare function InputOTPSeparator({ ...props }: React.ComponentProps<'div'>): import("react/jsx-runtime").JSX.Element;
+export { InputOTP, InputOTPGroup, InputOTPSlot, InputOTPSeparator };

package/dist/admin/src/components/RemoveModal/RemoveModal.d.ts ADDED Viewed

@@ -0,0 +1,6 @@
+export interface RemoveModalProps {
+    open: boolean;
+    onOpenChange: (open: boolean) => void;
+    onSubmit: React.FormEventHandler<HTMLFormElement>;
+}
+export default function RemoveModal({ open, onOpenChange, onSubmit }: RemoveModalProps): import("react/jsx-runtime").JSX.Element;

package/dist/admin/src/components/RemoveModal/index.d.ts ADDED Viewed

	@@ -0,0 +1 @@
1	+ export { default, type RemoveModalProps } from './RemoveModal';

package/dist/admin/src/components/WarningAlert/WarningAlert.d.ts ADDED Viewed

@@ -0,0 +1,10 @@
+export interface WarningAlertProps {
+    open: boolean;
+    title?: string;
+    children: React.ReactNode;
+    confirmText?: string;
+    loading?: boolean;
+    onConfirm: () => void;
+    onCancel: () => void;
+}
+export default function WarningAlert({ open, title, children, confirmText, loading, onConfirm, onCancel, }: WarningAlertProps): import("react/jsx-runtime").JSX.Element;

package/dist/admin/src/components/WarningAlert/index.d.ts ADDED Viewed

	@@ -0,0 +1 @@
1	+ export { default, type WarningAlertProps } from './WarningAlert';

package/dist/admin/src/injection/AdminReset.d.ts ADDED Viewed

@@ -0,0 +1,4 @@
+declare const AdminReset: ({ id }: {
+    id?: string;
+}) => import("react/jsx-runtime").JSX.Element;
+export default AdminReset;

package/dist/admin/src/injection/ProfileToggle.d.ts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ declare const ProfileToggle: () => import("react/jsx-runtime").JSX.Element \| null;
2	+ export default ProfileToggle;

package/dist/admin/src/pages/EnforcedPage.d.ts ADDED Viewed

@@ -0,0 +1,13 @@
+import { StrapiApp } from '@strapi/strapi/admin';
+import { RouteObject } from 'react-router-dom';
+export interface InjectPublicRouter extends Omit<StrapiApp['router'], 'router'> {
+    router: {
+        routes: RouteObject[];
+    };
+}
+/**
+ * Inject the enforced MFA page route into the Strapi admin router
+ */
+export declare const InjectEnforced: (app: StrapiApp) => Promise<void>;
+declare const EnforcedPage: () => import("react/jsx-runtime").JSX.Element | null;
+export { EnforcedPage };

package/dist/admin/src/pluginId.d.ts ADDED Viewed

	@@ -0,0 +1 @@
1	+ export declare const PLUGIN_ID = "strapi-identity";

package/dist/admin/src/public/VerifyPage.d.ts ADDED Viewed

@@ -0,0 +1,12 @@
+import { StrapiApp } from '@strapi/strapi/admin';
+import { RouteObject } from 'react-router-dom';
+export interface InjectPublicRouter extends Omit<StrapiApp['router'], 'router'> {
+    router: {
+        routes: RouteObject[];
+    };
+}
+/**
+ * Inject the verify page route into the Strapi router
+ * @param router StrapiApp router instance
+ */
+export declare const InjectVerify: (app: StrapiApp) => Promise<void>;

package/dist/admin/src/settings/SettingsPage.d.ts ADDED Viewed

	@@ -0,0 +1 @@
1	+ export default function SettingsPage(): import("react/jsx-runtime").JSX.Element;

package/dist/admin/src/utils/getTranslation.d.ts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ declare const getTranslation: (id: string) => string;
2	+ export { getTranslation };

package/dist/admin/src/utils/tokenHelpers.d.ts ADDED Viewed

@@ -0,0 +1,12 @@
+/**
+ * Retrieves the value of a specified cookie.
+ *
+ * @param name - The name of the cookie to retrieve.
+ * @returns The decoded cookie value if found, otherwise null.
+ */
+export declare const getCookieValue: (name: string) => string | null;
+/**
+ * Retrieves the JWT token from localStorage or cookies.
+ * @returns The JWT token if found, otherwise null.
+ */
+export declare const getToken: () => string | null;