strapi/packages/core/admin/server/validation/user.js

'use strict';

const { isUndefined } = require('lodash/fp');
const { yup } = require('@strapi/utils');
const { YupValidationError } = require('@strapi/utils').errors;
const validators = require('./common-validators');

const handleYupError = error => {
  throw new YupValidationError(error);
};

const userCreationSchema = yup
  .object()
  .shape({
    email: validators.email.required(),
    firstname: validators.firstname.required(),
    lastname: validators.lastname.required(),
    roles: validators.roles.min(1),
    preferedLanguage: yup.string().nullable(),
  })
  .noUnknown();

const validateUserCreationInput = data => {
  return userCreationSchema
    .validate(data, { strict: true, abortEarly: false })
    .catch(handleYupError);
};

const profileUpdateSchema = yup
  .object()
  .shape({
    email: validators.email.notNull(),
    firstname: validators.firstname.notNull(),
    lastname: validators.lastname.notNull(),
    username: validators.username.nullable(),
    password: validators.password.notNull(),
    currentPassword: yup
      .string()
      .when('password', (password, schema) => (!isUndefined(password) ? schema.required() : schema))
      .notNull(),
    preferedLanguage: yup.string().nullable(),
  })
  .noUnknown();

const validateProfileUpdateInput = data => {
  return profileUpdateSchema
    .validate(data, { strict: true, abortEarly: false })
    .catch(handleYupError);
};

const userUpdateSchema = yup
  .object()
  .shape({
    email: validators.email.notNull(),
    firstname: validators.firstname.notNull(),
    lastname: validators.lastname.notNull(),
    username: validators.username.nullable(),
    password: validators.password.notNull(),
    isActive: yup.bool().notNull(),
    roles: validators.roles.min(1).notNull(),
  })
  .noUnknown();

const validateUserUpdateInput = data => {
  return userUpdateSchema.validate(data, { strict: true, abortEarly: false }).catch(handleYupError);
};

const usersDeleteSchema = yup
  .object()
  .shape({
    ids: yup
      .array()
      .of(yup.strapiID())
      .min(1)
      .required(),
  })
  .noUnknown();

const validateUsersDeleteInput = async data => {
  return usersDeleteSchema
    .validate(data, { strict: true, abortEarly: false })
    .catch(handleYupError);
};

module.exports = {
  validateUserCreationInput,
  validateProfileUpdateInput,
  validateUserUpdateInput,
  validateUsersDeleteInput,

  schemas: {
    userCreationSchema,
    usersDeleteSchema,
    userUpdateSchema,
  },
};
Add schema validation for POST /admin/users Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-05-14 11:57:43 +02:00			`'use strict';`

Add current password requirement to edit own profile password 2021-10-21 13:20:57 +02:00			`const { isUndefined } = require('lodash/fp');`
refactor error handling 2021-10-20 17:30:05 +02:00			`const { yup } = require('@strapi/utils');`
			`const { YupValidationError } = require('@strapi/utils').errors;`
Add /users/me routes Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 19:54:43 +02:00			`const validators = require('./common-validators');`
Add schema validation for POST /admin/users Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-05-14 11:57:43 +02:00
refactor error handling 2021-10-20 17:30:05 +02:00			`const handleYupError = error => {`
			`throw new YupValidationError(error);`
			`};`
Add schema validation for POST /admin/users Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-05-14 11:57:43 +02:00
Add register route Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 17:16:49 +02:00			`const userCreationSchema = yup`
			`.object()`
			`.shape({`
Remove email update of admin during test that break next tests Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 20:39:39 +02:00			`email: validators.email.required(),`
			`firstname: validators.firstname.required(),`
			`lastname: validators.lastname.required(),`
Add min validator Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-07-09 18:10:16 +02:00			`roles: validators.roles.min(1),`
add preferedLanguage 2021-02-05 16:35:47 +01:00			`preferedLanguage: yup.string().nullable(),`
Add register route Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 17:16:49 +02:00			`})`
			`.noUnknown();`
Add schema validation for POST /admin/users Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-05-14 11:57:43 +02:00
			`const validateUserCreationInput = data => {`
refactor error handling 2021-10-20 17:30:05 +02:00			`return userCreationSchema`
			`.validate(data, { strict: true, abortEarly: false })`
			`.catch(handleYupError);`
Add schema validation for POST /admin/users Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-05-14 11:57:43 +02:00			`};`

Add /users/me routes Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 19:54:43 +02:00			`const profileUpdateSchema = yup`
			`.object()`
			`.shape({`
Fix PR: Refactor user e2e tests, fix domain logic, add user::deleteOne route 2020-06-04 10:25:02 +02:00			`email: validators.email.notNull(),`
			`firstname: validators.firstname.notNull(),`
			`lastname: validators.lastname.notNull(),`
Add update user route in the user api 2020-05-27 16:06:15 +02:00			`username: validators.username.nullable(),`
Fix PR: Refactor user e2e tests, fix domain logic, add user::deleteOne route 2020-06-04 10:25:02 +02:00			`password: validators.password.notNull(),`
Add current password requirement to edit own profile password 2021-10-21 13:20:57 +02:00			`currentPassword: yup`
			`.string()`
			`.when('password', (password, schema) => (!isUndefined(password) ? schema.required() : schema))`
			`.notNull(),`
add preferedLanguage 2021-02-05 16:35:47 +01:00			`preferedLanguage: yup.string().nullable(),`
Add /users/me routes Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 19:54:43 +02:00			`})`
			`.noUnknown();`

			`const validateProfileUpdateInput = data => {`
			`return profileUpdateSchema`
			`.validate(data, { strict: true, abortEarly: false })`
refactor error handling 2021-10-20 17:30:05 +02:00			`.catch(handleYupError);`
Add /users/me routes Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 19:54:43 +02:00			`};`

Add update user route in the user api 2020-05-27 16:06:15 +02:00			`const userUpdateSchema = yup`
			`.object()`
			`.shape({`
Fix PR: Refactor user e2e tests, fix domain logic, add user::deleteOne route 2020-06-04 10:25:02 +02:00			`email: validators.email.notNull(),`
			`firstname: validators.firstname.notNull(),`
			`lastname: validators.lastname.notNull(),`
Add update user route in the user api 2020-05-27 16:06:15 +02:00			`username: validators.username.nullable(),`
Fix PR: Refactor user e2e tests, fix domain logic, add user::deleteOne route 2020-06-04 10:25:02 +02:00			`password: validators.password.notNull(),`
			`isActive: yup.bool().notNull(),`
			`roles: validators.roles.min(1).notNull(),`
Add update user route in the user api 2020-05-27 16:06:15 +02:00			`})`
			`.noUnknown();`

			`const validateUserUpdateInput = data => {`
refactor error handling 2021-10-20 17:30:05 +02:00			`return userUpdateSchema.validate(data, { strict: true, abortEarly: false }).catch(handleYupError);`
Add update user route in the user api 2020-05-27 16:06:15 +02:00			`};`

add batch delete for users Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-07-15 15:46:59 +02:00			`const usersDeleteSchema = yup`
			`.object()`
			`.shape({`
			`ids: yup`
			`.array()`
			`.of(yup.strapiID())`
			`.min(1)`
			`.required(),`
			`})`
			`.noUnknown();`

			`const validateUsersDeleteInput = async data => {`
refactor error handling 2021-10-20 17:30:05 +02:00			`return usersDeleteSchema`
			`.validate(data, { strict: true, abortEarly: false })`
			`.catch(handleYupError);`
add batch delete for users Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-07-15 15:46:59 +02:00			`};`

Add schema validation for POST /admin/users Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-05-14 11:57:43 +02:00			`module.exports = {`
			`validateUserCreationInput,`
Add /users/me routes Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 19:54:43 +02:00			`validateProfileUpdateInput,`
Add update user route in the user api 2020-05-27 16:06:15 +02:00			`validateUserUpdateInput,`
add batch delete for users Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-07-15 15:46:59 +02:00			`validateUsersDeleteInput,`
Add useSSORegistration option for gold users on admin creation 2021-02-10 11:57:11 +01:00
			`schemas: {`
			`userCreationSchema,`
			`usersDeleteSchema,`
			`userUpdateSchema,`
			`},`
Add schema validation for POST /admin/users Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-05-14 11:57:43 +02:00			`};`