strapi/packages/strapi-admin/ee/validation/role.js

'use strict';

const { yup, formatYupErrors } = require('strapi-utils');

const handleReject = error => Promise.reject(formatYupErrors(error));

const roleCreateSchema = yup
  .object()
  .shape({
    name: yup
      .string()
      .min(1)
      .required(),
    description: yup.string().nullable(),
  })
  .noUnknown();

const roleUpdateSchema = yup
  .object()
  .shape({
    name: yup.string().min(1),
    description: yup.string().nullable(),
  })
  .noUnknown();

const rolesDeleteSchema = yup
  .object()
  .shape({
    ids: yup
      .array()
      .of(yup.strapiID())
      .min(1)
      .required()
      .test('no-admin-many-delete', 'You cannot delete the super admin role', async ids => {
        const adminRole = await strapi.admin.services.role.getAdmin();
        return !adminRole || !ids.map(String).includes(String(adminRole.id));
      }),
  })
  .noUnknown();

const roleDeleteSchema = yup
  .strapiID()
  .required()
  .test('no-admin-single-delete', 'You cannot delete the super admin role', async function(id) {
    const adminRole = await strapi.admin.services.role.getAdmin();
    return !adminRole || String(id) !== String(adminRole.id)
      ? true
      : this.createError({ path: 'id', message: `You cannot delete the super admin role` });
  });

const validateRoleCreateInput = async data => {
  return roleCreateSchema.validate(data, { strict: true, abortEarly: false }).catch(handleReject);
};

const validateRoleUpdateInput = async data => {
  return roleUpdateSchema.validate(data, { strict: true, abortEarly: false }).catch(handleReject);
};

const validateRolesDeleteInput = async data => {
  return rolesDeleteSchema.validate(data, { strict: true, abortEarly: false }).catch(handleReject);
};

const validateRoleDeleteInput = async data => {
  return roleDeleteSchema.validate(data, { strict: true, abortEarly: false }).catch(handleReject);
};

module.exports = {
  validateRoleCreateInput,
  validateRoleUpdateInput,
  validateRolesDeleteInput,
  validateRoleDeleteInput,
};
add loading of ee files + add create role Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-05-22 12:58:14 +02:00			`'use strict';`

			`const { yup, formatYupErrors } = require('strapi-utils');`

			`const handleReject = error => Promise.reject(formatYupErrors(error));`

add route GET /admin/permissions Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-04 18:30:26 +02:00			`const roleCreateSchema = yup`
add loading of ee files + add create role Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-05-22 12:58:14 +02:00			`.object()`
			`.shape({`
			`name: yup`
			`.string()`
			`.min(1)`
			`.required(),`
add tests + make role decription optional + refacto Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-05-29 11:09:17 +02:00			`description: yup.string().nullable(),`
add loading of ee files + add create role Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-05-22 12:58:14 +02:00			`})`
			`.noUnknown();`

add route GET /admin/permissions Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-04 18:30:26 +02:00			`const roleUpdateSchema = yup`
			`.object()`
			`.shape({`
			`name: yup.string().min(1),`
			`description: yup.string().nullable(),`
			`})`
			`.noUnknown();`

create role at startup + warning Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-12 18:42:07 +02:00			`const rolesDeleteSchema = yup`
refacto Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-05-28 17:32:44 +02:00			`.object()`
			`.shape({`
			`ids: yup`
			`.array()`
Fix PR: Refactor user e2e tests, fix domain logic, add user::deleteOne route 2020-06-04 10:25:02 +02:00			`.of(yup.strapiID())`
refacto Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-05-28 17:32:44 +02:00			`.min(1)`
create role at startup + warning Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-12 18:42:07 +02:00			`.required()`
prevent modification and delete of super admin role Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-15 11:54:44 +02:00			`.test('no-admin-many-delete', 'You cannot delete the super admin role', async ids => {`
create role at startup + warning Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-12 18:42:07 +02:00			`const adminRole = await strapi.admin.services.role.getAdmin();`
fix tests Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-16 18:49:49 +02:00			`return !adminRole \|\| !ids.map(String).includes(String(adminRole.id));`
create role at startup + warning Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-12 18:42:07 +02:00			`}),`
refacto Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-05-28 17:32:44 +02:00			`})`
			`.noUnknown();`

create role at startup + warning Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-12 18:42:07 +02:00			`const roleDeleteSchema = yup`
			`.strapiID()`
			`.required()`
prevent modification and delete of super admin role Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-15 11:54:44 +02:00			`.test('no-admin-single-delete', 'You cannot delete the super admin role', async function(id) {`
create role at startup + warning Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-12 18:42:07 +02:00			`const adminRole = await strapi.admin.services.role.getAdmin();`
fix tests Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-16 18:49:49 +02:00			`return !adminRole \|\| String(id) !== String(adminRole.id)`
create role at startup + warning Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-12 18:42:07 +02:00			`? true`
prevent modification and delete of super admin role Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-15 11:54:44 +02:00			: this.createError({ path: 'id', message: `You cannot delete the super admin role` });
create role at startup + warning Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-12 18:42:07 +02:00			`});`

add loading of ee files + add create role Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-05-22 12:58:14 +02:00			`const validateRoleCreateInput = async data => {`
add route GET /admin/permissions Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-04 18:30:26 +02:00			`return roleCreateSchema.validate(data, { strict: true, abortEarly: false }).catch(handleReject);`
add loading of ee files + add create role Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-05-22 12:58:14 +02:00			`};`

			`const validateRoleUpdateInput = async data => {`
add route GET /admin/permissions Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-04 18:30:26 +02:00			`return roleUpdateSchema.validate(data, { strict: true, abortEarly: false }).catch(handleReject);`
add loading of ee files + add create role Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-05-22 12:58:14 +02:00			`};`

create role at startup + warning Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-12 18:42:07 +02:00			`const validateRolesDeleteInput = async data => {`
			`return rolesDeleteSchema.validate(data, { strict: true, abortEarly: false }).catch(handleReject);`
			`};`

add DELETE /admin/roles Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-05-27 13:15:52 +02:00			`const validateRoleDeleteInput = async data => {`
			`return roleDeleteSchema.validate(data, { strict: true, abortEarly: false }).catch(handleReject);`
			`};`

add loading of ee files + add create role Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-05-22 12:58:14 +02:00			`module.exports = {`
			`validateRoleCreateInput,`
			`validateRoleUpdateInput,`
create role at startup + warning Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-12 18:42:07 +02:00			`validateRolesDeleteInput,`
add DELETE /admin/roles Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-05-27 13:15:52 +02:00			`validateRoleDeleteInput,`
add loading of ee files + add create role Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-05-22 12:58:14 +02:00			`};`