strapi/packages/strapi-admin/controllers/Admin.js

'use strict';

const execa = require('execa');
const _ = require('lodash');

const formatError = error => [
  { messages: [{ id: error.id, message: error.message, field: error.field }] },
];

const PLUGIN_NAME_REGEX = /^[A-Za-z][A-Za-z0-9-_]+$/;

/**
 * Validates a plugin name format
 */
const isValidPluginName = plugin => {
  return _.isString(plugin) && !_.isEmpty(plugin) && PLUGIN_NAME_REGEX.test(plugin);
};

/**
 * A set of functions called "actions" for `Admin`
 */

module.exports = {
  async init(ctx) {
    const uuid = _.get(strapi, ['config', 'uuid'], false);
    const currentEnvironment = strapi.app.env;
    const autoReload = _.get(strapi, ['config', 'autoReload'], false);
    const strapiVersion = _.get(strapi.config, 'info.strapi', null);

    return ctx.send({
      data: { uuid, currentEnvironment, autoReload, strapiVersion },
    });
  },

  async getCurrentEnvironment(ctx) {
    try {
      const autoReload = strapi.config.autoReload;
      return ctx.send({ autoReload, currentEnvironment: strapi.app.env });
    } catch (err) {
      ctx.badRequest(null, [{ messages: [{ id: 'An error occurred' }] }]);
    }
  },

  async getStrapiVersion(ctx) {
    try {
      const strapiVersion = _.get(strapi.config, 'info.strapi', null);
      return ctx.send({ strapiVersion });
    } catch (err) {
      return ctx.badRequest(null, [{ messages: [{ id: 'The version is not available' }] }]);
    }
  },

  async getGaConfig(ctx) {
    try {
      ctx.send({ uuid: _.get(strapi.config, 'uuid', false) });
    } catch (err) {
      ctx.badRequest(null, [{ messages: [{ id: 'An error occurred' }] }]);
    }
  },

  async getLayout(ctx) {
    try {
      const layout = require('../config/layout.js');

      return ctx.send({ layout });
    } catch (err) {
      return ctx.badRequest(null, [{ messages: [{ id: 'An error occurred' }] }]);
    }
  },

  async installPlugin(ctx) {
    try {
      const { plugin } = ctx.request.body;

      if (!isValidPluginName(plugin)) {
        return ctx.badRequest('Invalid plugin name');
      }

      strapi.reload.isWatching = false;

      strapi.log.info(`Installing ${plugin}...`);
      await execa('npm', ['run', 'strapi', '--', 'install', plugin]);

      ctx.send({ ok: true });

      strapi.reload();
    } catch (err) {
      strapi.log.error(err);
      strapi.reload.isWatching = true;
      ctx.badRequest(null, [{ messages: [{ id: 'An error occurred' }] }]);
    }
  },

  async plugins(ctx) {
    try {
      const plugins = Object.keys(strapi.plugins).reduce((acc, key) => {
        acc[key] = _.get(strapi.plugins, [key, 'package', 'strapi'], {
          name: key,
        });

        return acc;
      }, {});

      ctx.send({ plugins });
    } catch (err) {
      strapi.log.error(err);
      ctx.badRequest(null, [{ messages: [{ id: 'An error occurred' }] }]);
    }
  },

  async uninstallPlugin(ctx) {
    try {
      const { plugin } = ctx.params;

      if (!isValidPluginName(plugin)) {
        return ctx.badRequest('Invalid plugin name');
      }

      strapi.reload.isWatching = false;

      strapi.log.info(`Uninstalling ${plugin}...`);
      await execa('npm', ['run', 'strapi', '--', 'uninstall', plugin, '-d']);

      ctx.send({ ok: true });

      strapi.reload();
    } catch (err) {
      strapi.log.error(err);
      strapi.reload.isWatching = true;
      ctx.badRequest(null, [{ messages: [{ id: 'An error occurred' }] }]);
    }
  },

  /**
   * Create a/an admin record.
   *
   * @return {Object}
   */

  async create(ctx) {
    const { email, username, password, blocked } = ctx.request.body;

    if (!email) {
      return ctx.badRequest(
        null,
        formatError({
          id: 'missing.email',
          message: 'Missing email',
          field: ['email'],
        })
      );
    }

    if (!username) {
      return ctx.badRequest(
        null,
        formatError({
          id: 'missing.username',
          message: 'Missing username',
          field: ['username'],
        })
      );
    }

    if (!password) {
      return ctx.badRequest(
        null,
        formatError({
          id: 'missing.password',
          message: 'Missing password',
          field: ['password'],
        })
      );
    }

    const adminsWithSameEmail = await strapi.query('administrator', 'admin').findOne({ email });

    const adminsWithSameUsername = await strapi
      .query('administrator', 'admin')
      .findOne({ username });

    if (adminsWithSameEmail) {
      return ctx.badRequest(
        null,
        formatError({
          id: 'Auth.form.error.email.taken',
          message: 'Email already taken',
          field: ['email'],
        })
      );
    }

    if (adminsWithSameUsername) {
      return ctx.badRequest(
        null,
        formatError({
          id: 'Auth.form.error.username.taken',
          message: 'Username already taken',
          field: ['username'],
        })
      );
    }

    const user = {
      email: email,
      username: username,
      blocked: blocked === true ? true : false,
      password: await strapi.admin.services.auth.hashPassword(password),
    };

    const data = await strapi.query('administrator', 'admin').create(user);

    // Send 201 `created`
    ctx.created(strapi.admin.services.auth.sanitizeUser(data));
  },

  /**
   * Update a/an admin record.
   *
   * @return {Object}
   */

  async update(ctx) {
    const { id } = ctx.params;
    const { email, username, password, blocked } = ctx.request.body;

    if (!email) {
      return ctx.badRequest(
        null,
        formatError({
          id: 'missing.email',
          message: 'Missing email',
          field: ['email'],
        })
      );
    }

    if (!username) {
      return ctx.badRequest(
        null,
        formatError({
          id: 'missing.username',
          message: 'Missing username',
          field: ['username'],
        })
      );
    }

    if (!password) {
      return ctx.badRequest(
        null,
        formatError({
          id: 'missing.password',
          message: 'Missing password',
          field: ['password'],
        })
      );
    }
    const admin = await strapi.query('administrator', 'admin').findOne({ id });

    // check the user exists
    if (!admin) return ctx.notFound('Administrator not found');

    // check there are not user with requested email
    if (email !== admin.email) {
      const adminsWithSameEmail = await strapi.query('administrator', 'admin').findOne({ email });

      if (adminsWithSameEmail && adminsWithSameEmail.id !== admin.id) {
        return ctx.badRequest(
          null,
          formatError({
            id: 'Auth.form.error.email.taken',
            message: 'Email already taken',
            field: ['email'],
          })
        );
      }
    }

    // check there are not user with requested username
    if (username !== admin.username) {
      const adminsWithSameUsername = await strapi
        .query('administrator', 'admin')
        .findOne({ username });

      if (adminsWithSameUsername && adminsWithSameUsername.id !== admin.id) {
        return ctx.badRequest(
          null,
          formatError({
            id: 'Auth.form.error.username.taken',
            message: 'Username already taken',
            field: ['username'],
          })
        );
      }
    }

    const user = {
      email: email,
      username: username,
      blocked: blocked === true ? true : false,
    };

    if (password !== admin.password) {
      user.password = await strapi.admin.services.auth.hashPassword(password);
    }

    const data = await strapi.query('administrator', 'admin').update({ id }, user);

    // Send 200 `ok`
    ctx.send(data);
  },
};
Integrate in Strapi project 2016-08-26 14:19:03 +02:00			`'use strict';`

Clean commands, add install and uninstall 2019-04-30 18:01:59 +02:00			`const execa = require('execa');`
Allow to disable GA 2018-03-23 12:44:17 +01:00			`const _ = require('lodash');`
Update for Koa v2 and new folders structure 2016-11-24 16:19:01 +01:00
Remove x-forwarded-host. - set security defaults for development mode that are standard - refactor error messages to work without ctx.request.admin - remove mask middleware and add a sanitization layer to the core-api to hide private fileds 2019-08-21 12:10:23 +02:00			`const formatError = error => [`
			`{ messages: [{ id: error.id, message: error.message, field: error.field }] },`
			`];`

chore(admin): Improve plugin name validator in install/uninstall plugin 2020-01-07 14:15:16 +01:00			`const PLUGIN_NAME_REGEX = /^[A-Za-z][A-Za-z0-9-_]+$/;`

			`/**`
			`* Validates a plugin name format`
			`*/`
			`const isValidPluginName = plugin => {`
handle unexpected params from koa-router Signed-off-by: Pierre Noël <pierre.noel@strapi.io> Signed-off-by: Pierre Noël <pierre.noel@strapi.io> 2020-03-06 19:16:23 +01:00			`return _.isString(plugin) && !_.isEmpty(plugin) && PLUGIN_NAME_REGEX.test(plugin);`
chore(admin): Improve plugin name validator in install/uninstall plugin 2020-01-07 14:15:16 +01:00			`};`

Integrate in Strapi project 2016-08-26 14:19:03 +02:00			`/**`
			* A set of functions called "actions" for `Admin`
			`*/`

			`module.exports = {`
Global single request 2019-09-09 16:06:54 +02:00			`async init(ctx) {`
			`const uuid = _.get(strapi, ['config', 'uuid'], false);`
			`const currentEnvironment = strapi.app.env;`
			`const autoReload = _.get(strapi, ['config', 'autoReload'], false);`
			`const strapiVersion = _.get(strapi.config, 'info.strapi', null);`

			`return ctx.send({`
			`data: { uuid, currentEnvironment, autoReload, strapiVersion },`
			`});`
			`},`

Implement strapi.queries 2019-07-15 19:33:07 +02:00			`async getCurrentEnvironment(ctx) {`
Fix app environments bug 2018-03-08 10:32:01 +01:00			`try {`
Use autoReload with strapi dev only 2019-05-13 17:32:52 +02:00			`const autoReload = strapi.config.autoReload;`
Improve fetch main data 2019-04-02 22:45:21 +02:00			`return ctx.send({ autoReload, currentEnvironment: strapi.app.env });`
			`} catch (err) {`
Fix spelling 2018-05-15 16:08:47 -04:00			`ctx.badRequest(null, [{ messages: [{ id: 'An error occurred' }] }]);`
Fix app environments bug 2018-03-08 10:32:01 +01:00			`}`
			`},`

Implement strapi.queries 2019-07-15 19:33:07 +02:00			`async getStrapiVersion(ctx) {`
Fixes #810 2018-04-12 23:45:17 +02:00			`try {`
			`const strapiVersion = _.get(strapi.config, 'info.strapi', null);`
			`return ctx.send({ strapiVersion });`
Improve fetch main data 2019-04-02 22:45:21 +02:00			`} catch (err) {`
handle unexpected params from koa-router Signed-off-by: Pierre Noël <pierre.noel@strapi.io> Signed-off-by: Pierre Noël <pierre.noel@strapi.io> 2020-03-06 19:16:23 +01:00			`return ctx.badRequest(null, [{ messages: [{ id: 'The version is not available' }] }]);`
Fixes #810 2018-04-12 23:45:17 +02:00			`}`
			`},`

Implement strapi.queries 2019-07-15 19:33:07 +02:00			`async getGaConfig(ctx) {`
Allow to disable GA 2018-03-23 12:44:17 +01:00			`try {`
Add an easy way to disable tracking by removing the uuid 2018-11-20 16:20:52 +01:00			`ctx.send({ uuid: _.get(strapi.config, 'uuid', false) });`
Improve fetch main data 2019-04-02 22:45:21 +02:00			`} catch (err) {`
Fix spelling 2018-05-15 16:08:47 -04:00			`ctx.badRequest(null, [{ messages: [{ id: 'An error occurred' }] }]);`
Allow to disable GA 2018-03-23 12:44:17 +01:00			`}`
			`},`

Implement strapi.queries 2019-07-15 19:33:07 +02:00			`async getLayout(ctx) {`
Allow left menu customization 2018-04-05 11:13:49 +02:00			`try {`
			`const layout = require('../config/layout.js');`

			`return ctx.send({ layout });`
Improve fetch main data 2019-04-02 22:45:21 +02:00			`} catch (err) {`
handle unexpected params from koa-router Signed-off-by: Pierre Noël <pierre.noel@strapi.io> Signed-off-by: Pierre Noël <pierre.noel@strapi.io> 2020-03-06 19:16:23 +01:00			`return ctx.badRequest(null, [{ messages: [{ id: 'An error occurred' }] }]);`
Allow left menu customization 2018-04-05 11:13:49 +02:00			`}`
			`},`

Implement strapi.queries 2019-07-15 19:33:07 +02:00			`async installPlugin(ctx) {`
Add install plugin route 2017-12-16 17:35:16 +01:00			`try {`
Fix install uninstall plugin from UI and remove usless install uninstall commands now that npm install is enough 2019-04-26 19:19:00 +02:00			`const { plugin } = ctx.request.body;`
Valid plugin name 2019-12-01 23:05:58 +01:00
chore(admin): Improve plugin name validator in install/uninstall plugin 2020-01-07 14:15:16 +01:00			`if (!isValidPluginName(plugin)) {`
Valid plugin name 2019-12-01 23:05:58 +01:00			`return ctx.badRequest('Invalid plugin name');`
			`}`

Add install plugin route 2017-12-16 17:35:16 +01:00			`strapi.reload.isWatching = false;`

			strapi.log.info(`Installing ${plugin}...`);
Clean commands, add install and uninstall 2019-04-30 18:01:59 +02:00			`await execa('npm', ['run', 'strapi', '--', 'install', plugin]);`
Add install plugin route 2017-12-16 17:35:16 +01:00
			`ctx.send({ ok: true });`

			`strapi.reload();`
Improve fetch main data 2019-04-02 22:45:21 +02:00			`} catch (err) {`
Clean commands, add install and uninstall 2019-04-30 18:01:59 +02:00			`strapi.log.error(err);`
Add install plugin route 2017-12-16 17:35:16 +01:00			`strapi.reload.isWatching = true;`
Fix spelling 2018-05-15 16:08:47 -04:00			`ctx.badRequest(null, [{ messages: [{ id: 'An error occurred' }] }]);`
Add install plugin route 2017-12-16 17:35:16 +01:00			`}`
			`},`

Implement strapi.queries 2019-07-15 19:33:07 +02:00			`async plugins(ctx) {`
Add handler to get the app installed plugins 2017-11-09 11:25:01 +01:00			`try {`
Fix settings-manager description typo, expose only the needed informations in /plugins 2017-11-09 13:30:54 +01:00			`const plugins = Object.keys(strapi.plugins).reduce((acc, key) => {`
Fix install uninstall plugin from UI and remove usless install uninstall commands now that npm install is enough 2019-04-26 19:19:00 +02:00			`acc[key] = _.get(strapi.plugins, [key, 'package', 'strapi'], {`
			`name: key,`
			`});`
Fix settings-manager description typo, expose only the needed informations in /plugins 2017-11-09 13:30:54 +01:00
			`return acc;`
			`}, {});`

			`ctx.send({ plugins });`
Improve fetch main data 2019-04-02 22:45:21 +02:00			`} catch (err) {`
Fix install uninstall plugin from UI and remove usless install uninstall commands now that npm install is enough 2019-04-26 19:19:00 +02:00			`strapi.log.error(err);`
Fix spelling 2018-05-15 16:08:47 -04:00			`ctx.badRequest(null, [{ messages: [{ id: 'An error occurred' }] }]);`
Add handler to get the app installed plugins 2017-11-09 11:25:01 +01:00			`}`
			`},`

Implement strapi.queries 2019-07-15 19:33:07 +02:00			`async uninstallPlugin(ctx) {`
Design list-plugins page and handle front end uninstall plugin 2017-11-02 16:49:10 +01:00			`try {`
			`const { plugin } = ctx.params;`
Valid plugin name 2019-12-01 23:05:58 +01:00
chore(admin): Improve plugin name validator in install/uninstall plugin 2020-01-07 14:15:16 +01:00			`if (!isValidPluginName(plugin)) {`
Valid plugin name 2019-12-01 23:05:58 +01:00			`return ctx.badRequest('Invalid plugin name');`
			`}`

Add uninstall plugin dynamic 2017-11-02 17:05:37 +01:00			`strapi.reload.isWatching = false;`

			strapi.log.info(`Uninstalling ${plugin}...`);
Add Delete files option to strapi uninstall 2019-05-13 18:38:13 +02:00			`await execa('npm', ['run', 'strapi', '--', 'uninstall', plugin, '-d']);`
Add uninstall plugin dynamic 2017-11-02 17:05:37 +01:00
Design list-plugins page and handle front end uninstall plugin 2017-11-02 16:49:10 +01:00			`ctx.send({ ok: true });`
Add uninstall plugin dynamic 2017-11-02 17:05:37 +01:00
			`strapi.reload();`
Improve fetch main data 2019-04-02 22:45:21 +02:00			`} catch (err) {`
Clean commands, add install and uninstall 2019-04-30 18:01:59 +02:00			`strapi.log.error(err);`
Add uninstall plugin dynamic 2017-11-02 17:05:37 +01:00			`strapi.reload.isWatching = true;`
Fix spelling 2018-05-15 16:08:47 -04:00			`ctx.badRequest(null, [{ messages: [{ id: 'An error occurred' }] }]);`
Design list-plugins page and handle front end uninstall plugin 2017-11-02 16:49:10 +01:00			`}`
Improve fetch main data 2019-04-02 22:45:21 +02:00			`},`
Split admin and users. Co-authored-by: lauriejim 2019-04-09 12:09:03 +02:00
			`/**`
			`* Create a/an admin record.`
			`*`
			`* @return {Object}`
			`*/`

Refactor strapi-admin services and controllers 2019-05-24 14:05:25 +02:00			`async create(ctx) {`
Fix username unique in users-permissions plugin and implement sql db unique option 2019-07-16 15:31:15 +02:00			`const { email, username, password, blocked } = ctx.request.body;`
Split admin and users. Co-authored-by: lauriejim 2019-04-09 12:09:03 +02:00
Remove x-forwarded-host. - set security defaults for development mode that are standard - refactor error messages to work without ctx.request.admin - remove mask middleware and add a sanitization layer to the core-api to hide private fileds 2019-08-21 12:10:23 +02:00			`if (!email) {`
			`return ctx.badRequest(`
			`null,`
			`formatError({`
			`id: 'missing.email',`
			`message: 'Missing email',`
			`field: ['email'],`
			`})`
			`);`
			`}`

			`if (!username) {`
			`return ctx.badRequest(`
			`null,`
			`formatError({`
			`id: 'missing.username',`
			`message: 'Missing username',`
			`field: ['username'],`
			`})`
			`);`
			`}`

			`if (!password) {`
			`return ctx.badRequest(`
			`null,`
			`formatError({`
			`id: 'missing.password',`
			`message: 'Missing password',`
			`field: ['password'],`
			`})`
			`);`
			`}`
Refactor strapi-admin services and controllers 2019-05-24 14:05:25 +02:00
handle unexpected params from koa-router Signed-off-by: Pierre Noël <pierre.noel@strapi.io> Signed-off-by: Pierre Noël <pierre.noel@strapi.io> 2020-03-06 19:16:23 +01:00			`const adminsWithSameEmail = await strapi.query('administrator', 'admin').findOne({ email });`
Refactor strapi-admin services and controllers 2019-05-24 14:05:25 +02:00
Implement strapi.queries 2019-07-15 19:33:07 +02:00			`const adminsWithSameUsername = await strapi`
			`.query('administrator', 'admin')`
Fix username unique in users-permissions plugin and implement sql db unique option 2019-07-16 15:31:15 +02:00			`.findOne({ username });`
Refactor strapi-admin services and controllers 2019-05-24 14:05:25 +02:00
Fix username unique in users-permissions plugin and implement sql db unique option 2019-07-16 15:31:15 +02:00			`if (adminsWithSameEmail) {`
Refactor strapi-admin services and controllers 2019-05-24 14:05:25 +02:00			`return ctx.badRequest(`
			`null,`
Remove x-forwarded-host. - set security defaults for development mode that are standard - refactor error messages to work without ctx.request.admin - remove mask middleware and add a sanitization layer to the core-api to hide private fileds 2019-08-21 12:10:23 +02:00			`formatError({`
			`id: 'Auth.form.error.email.taken',`
			`message: 'Email already taken',`
			`field: ['email'],`
			`})`
Refactor strapi-admin services and controllers 2019-05-24 14:05:25 +02:00			`);`
Split admin and users. Co-authored-by: lauriejim 2019-04-09 12:09:03 +02:00			`}`

Fix username unique in users-permissions plugin and implement sql db unique option 2019-07-16 15:31:15 +02:00			`if (adminsWithSameUsername) {`
Refactor strapi-admin services and controllers 2019-05-24 14:05:25 +02:00			`return ctx.badRequest(`
			`null,`
Remove x-forwarded-host. - set security defaults for development mode that are standard - refactor error messages to work without ctx.request.admin - remove mask middleware and add a sanitization layer to the core-api to hide private fileds 2019-08-21 12:10:23 +02:00			`formatError({`
			`id: 'Auth.form.error.username.taken',`
			`message: 'Username already taken',`
			`field: ['username'],`
			`})`
Refactor strapi-admin services and controllers 2019-05-24 14:05:25 +02:00			`);`
			`}`

			`const user = {`
Fix username unique in users-permissions plugin and implement sql db unique option 2019-07-16 15:31:15 +02:00			`email: email,`
			`username: username,`
			`blocked: blocked === true ? true : false,`
			`password: await strapi.admin.services.auth.hashPassword(password),`
Refactor strapi-admin services and controllers 2019-05-24 14:05:25 +02:00			`};`

Implement strapi.queries 2019-07-15 19:33:07 +02:00			`const data = await strapi.query('administrator', 'admin').create(user);`
Split admin and users. Co-authored-by: lauriejim 2019-04-09 12:09:03 +02:00
			// Send 201 `created`
Implement strapi.queries 2019-07-15 19:33:07 +02:00			`ctx.created(strapi.admin.services.auth.sanitizeUser(data));`
Split admin and users. Co-authored-by: lauriejim 2019-04-09 12:09:03 +02:00			`},`

			`/**`
			`* Update a/an admin record.`
			`*`
			`* @return {Object}`
			`*/`

Refactor strapi-admin services and controllers 2019-05-24 14:05:25 +02:00			`async update(ctx) {`
Implement strapi.queries 2019-07-15 19:33:07 +02:00			`const { id } = ctx.params;`
Fix username unique in users-permissions plugin and implement sql db unique option 2019-07-16 15:31:15 +02:00			`const { email, username, password, blocked } = ctx.request.body;`
Split admin and users. Co-authored-by: lauriejim 2019-04-09 12:09:03 +02:00
Remove x-forwarded-host. - set security defaults for development mode that are standard - refactor error messages to work without ctx.request.admin - remove mask middleware and add a sanitization layer to the core-api to hide private fileds 2019-08-21 12:10:23 +02:00			`if (!email) {`
			`return ctx.badRequest(`
			`null,`
			`formatError({`
			`id: 'missing.email',`
			`message: 'Missing email',`
			`field: ['email'],`
			`})`
			`);`
			`}`

			`if (!username) {`
			`return ctx.badRequest(`
			`null,`
			`formatError({`
			`id: 'missing.username',`
			`message: 'Missing username',`
			`field: ['username'],`
			`})`
			`);`
			`}`
Refactor strapi-admin services and controllers 2019-05-24 14:05:25 +02:00
Remove x-forwarded-host. - set security defaults for development mode that are standard - refactor error messages to work without ctx.request.admin - remove mask middleware and add a sanitization layer to the core-api to hide private fileds 2019-08-21 12:10:23 +02:00			`if (!password) {`
			`return ctx.badRequest(`
			`null,`
			`formatError({`
			`id: 'missing.password',`
			`message: 'Missing password',`
			`field: ['password'],`
			`})`
			`);`
			`}`
handle unexpected params from koa-router Signed-off-by: Pierre Noël <pierre.noel@strapi.io> Signed-off-by: Pierre Noël <pierre.noel@strapi.io> 2020-03-06 19:16:23 +01:00			`const admin = await strapi.query('administrator', 'admin').findOne({ id });`
Refactor strapi-admin services and controllers 2019-05-24 14:05:25 +02:00
			`// check the user exists`
			`if (!admin) return ctx.notFound('Administrator not found');`

			`// check there are not user with requested email`
Fix username unique in users-permissions plugin and implement sql db unique option 2019-07-16 15:31:15 +02:00			`if (email !== admin.email) {`
handle unexpected params from koa-router Signed-off-by: Pierre Noël <pierre.noel@strapi.io> Signed-off-by: Pierre Noël <pierre.noel@strapi.io> 2020-03-06 19:16:23 +01:00			`const adminsWithSameEmail = await strapi.query('administrator', 'admin').findOne({ email });`
Refactor strapi-admin services and controllers 2019-05-24 14:05:25 +02:00
Implement strapi.queries 2019-07-15 19:33:07 +02:00			`if (adminsWithSameEmail && adminsWithSameEmail.id !== admin.id) {`
Refactor strapi-admin services and controllers 2019-05-24 14:05:25 +02:00			`return ctx.badRequest(`
			`null,`
Remove x-forwarded-host. - set security defaults for development mode that are standard - refactor error messages to work without ctx.request.admin - remove mask middleware and add a sanitization layer to the core-api to hide private fileds 2019-08-21 12:10:23 +02:00			`formatError({`
			`id: 'Auth.form.error.email.taken',`
			`message: 'Email already taken',`
			`field: ['email'],`
			`})`
Refactor strapi-admin services and controllers 2019-05-24 14:05:25 +02:00			`);`
			`}`
Fix administrator edition 2019-05-14 09:30:10 +02:00			`}`

Refactor strapi-admin services and controllers 2019-05-24 14:05:25 +02:00			`// check there are not user with requested username`
Fix username unique in users-permissions plugin and implement sql db unique option 2019-07-16 15:31:15 +02:00			`if (username !== admin.username) {`
Implement strapi.queries 2019-07-15 19:33:07 +02:00			`const adminsWithSameUsername = await strapi`
			`.query('administrator', 'admin')`
Fix username unique in users-permissions plugin and implement sql db unique option 2019-07-16 15:31:15 +02:00			`.findOne({ username });`
Refactor strapi-admin services and controllers 2019-05-24 14:05:25 +02:00
Implement strapi.queries 2019-07-15 19:33:07 +02:00			`if (adminsWithSameUsername && adminsWithSameUsername.id !== admin.id) {`
Refactor strapi-admin services and controllers 2019-05-24 14:05:25 +02:00			`return ctx.badRequest(`
			`null,`
Remove x-forwarded-host. - set security defaults for development mode that are standard - refactor error messages to work without ctx.request.admin - remove mask middleware and add a sanitization layer to the core-api to hide private fileds 2019-08-21 12:10:23 +02:00			`formatError({`
			`id: 'Auth.form.error.username.taken',`
			`message: 'Username already taken',`
			`field: ['username'],`
			`})`
Refactor strapi-admin services and controllers 2019-05-24 14:05:25 +02:00			`);`
			`}`
			`}`

			`const user = {`
Fix username unique in users-permissions plugin and implement sql db unique option 2019-07-16 15:31:15 +02:00			`email: email,`
			`username: username,`
			`blocked: blocked === true ? true : false,`
Refactor strapi-admin services and controllers 2019-05-24 14:05:25 +02:00			`};`

Fix username unique in users-permissions plugin and implement sql db unique option 2019-07-16 15:31:15 +02:00			`if (password !== admin.password) {`
			`user.password = await strapi.admin.services.auth.hashPassword(password);`
Split admin and users. Co-authored-by: lauriejim 2019-04-09 12:09:03 +02:00			`}`

handle unexpected params from koa-router Signed-off-by: Pierre Noël <pierre.noel@strapi.io> Signed-off-by: Pierre Noël <pierre.noel@strapi.io> 2020-03-06 19:16:23 +01:00			`const data = await strapi.query('administrator', 'admin').update({ id }, user);`
Split admin and users. Co-authored-by: lauriejim 2019-04-09 12:09:03 +02:00
			// Send 200 `ok`
			`ctx.send(data);`
			`},`
Integrate in Strapi project 2016-08-26 14:19:03 +02:00			`};`