strapi/packages/strapi-admin/ee/validation/role.js

'use strict';

const { yup, formatYupErrors, stringIncludes, stringEquals } = require('strapi-utils');

const handleReject = error => Promise.reject(formatYupErrors(error));

const roleCreateSchema = yup
  .object()
  .shape({
    name: yup
      .string()
      .min(1)
      .required(),
    description: yup.string().nullable(),
  })
  .noUnknown();

const rolesDeleteSchema = yup
  .object()
  .shape({
    ids: yup
      .array()
      .of(yup.strapiID())
      .min(1)
      .required()
      .test('no-admin-many-delete', 'You cannot delete the super admin role', async ids => {
        const superAdminRole = await strapi.admin.services.role.getSuperAdmin();
        return !superAdminRole || !stringIncludes(ids, superAdminRole.id);
      }),
  })
  .noUnknown();

const roleDeleteSchema = yup
  .strapiID()
  .required()
  .test('no-admin-single-delete', 'You cannot delete the super admin role', async function(id) {
    const superAdminRole = await strapi.admin.services.role.getSuperAdmin();
    return !superAdminRole || !stringEquals(id, superAdminRole.id)
      ? true
      : this.createError({ path: 'id', message: `You cannot delete the super admin role` });
  });

const validateRoleCreateInput = async data => {
  return roleCreateSchema.validate(data, { strict: true, abortEarly: false }).catch(handleReject);
};

const validateRolesDeleteInput = async data => {
  return rolesDeleteSchema.validate(data, { strict: true, abortEarly: false }).catch(handleReject);
};

const validateRoleDeleteInput = async data => {
  return roleDeleteSchema.validate(data, { strict: true, abortEarly: false }).catch(handleReject);
};

module.exports = {
  validateRoleCreateInput,
  validateRolesDeleteInput,
  validateRoleDeleteInput,
};
add loading of ee files + add create role Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-05-22 12:58:14 +02:00			`'use strict';`

fifth refacto Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-23 16:31:16 +02:00			`const { yup, formatYupErrors, stringIncludes, stringEquals } = require('strapi-utils');`
add loading of ee files + add create role Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-05-22 12:58:14 +02:00
			`const handleReject = error => Promise.reject(formatYupErrors(error));`

add route GET /admin/permissions Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-04 18:30:26 +02:00			`const roleCreateSchema = yup`
add loading of ee files + add create role Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-05-22 12:58:14 +02:00			`.object()`
			`.shape({`
			`name: yup`
			`.string()`
			`.min(1)`
			`.required(),`
add tests + make role decription optional + refacto Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-05-29 11:09:17 +02:00			`description: yup.string().nullable(),`
add loading of ee files + add create role Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-05-22 12:58:14 +02:00			`})`
			`.noUnknown();`

create role at startup + warning Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-12 18:42:07 +02:00			`const rolesDeleteSchema = yup`
refacto Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-05-28 17:32:44 +02:00			`.object()`
			`.shape({`
			`ids: yup`
			`.array()`
Fix PR: Refactor user e2e tests, fix domain logic, add user::deleteOne route 2020-06-04 10:25:02 +02:00			`.of(yup.strapiID())`
refacto Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-05-28 17:32:44 +02:00			`.min(1)`
create role at startup + warning Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-12 18:42:07 +02:00			`.required()`
prevent modification and delete of super admin role Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-15 11:54:44 +02:00			`.test('no-admin-many-delete', 'You cannot delete the super admin role', async ids => {`
first refacto Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-18 11:40:50 +02:00			`const superAdminRole = await strapi.admin.services.role.getSuperAdmin();`
fifth refacto Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-23 16:31:16 +02:00			`return !superAdminRole \|\| !stringIncludes(ids, superAdminRole.id);`
create role at startup + warning Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-12 18:42:07 +02:00			`}),`
refacto Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-05-28 17:32:44 +02:00			`})`
			`.noUnknown();`

create role at startup + warning Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-12 18:42:07 +02:00			`const roleDeleteSchema = yup`
			`.strapiID()`
			`.required()`
prevent modification and delete of super admin role Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-15 11:54:44 +02:00			`.test('no-admin-single-delete', 'You cannot delete the super admin role', async function(id) {`
first refacto Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-18 11:40:50 +02:00			`const superAdminRole = await strapi.admin.services.role.getSuperAdmin();`
fifth refacto Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-23 16:31:16 +02:00			`return !superAdminRole \|\| !stringEquals(id, superAdminRole.id)`
create role at startup + warning Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-12 18:42:07 +02:00			`? true`
prevent modification and delete of super admin role Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-15 11:54:44 +02:00			: this.createError({ path: 'id', message: `You cannot delete the super admin role` });
create role at startup + warning Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-12 18:42:07 +02:00			`});`

add loading of ee files + add create role Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-05-22 12:58:14 +02:00			`const validateRoleCreateInput = async data => {`
add route GET /admin/permissions Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-04 18:30:26 +02:00			`return roleCreateSchema.validate(data, { strict: true, abortEarly: false }).catch(handleReject);`
add loading of ee files + add create role Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-05-22 12:58:14 +02:00			`};`

create role at startup + warning Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-12 18:42:07 +02:00			`const validateRolesDeleteInput = async data => {`
			`return rolesDeleteSchema.validate(data, { strict: true, abortEarly: false }).catch(handleReject);`
			`};`

add DELETE /admin/roles Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-05-27 13:15:52 +02:00			`const validateRoleDeleteInput = async data => {`
			`return roleDeleteSchema.validate(data, { strict: true, abortEarly: false }).catch(handleReject);`
			`};`

add loading of ee files + add create role Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-05-22 12:58:14 +02:00			`module.exports = {`
			`validateRoleCreateInput,`
create role at startup + warning Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-06-12 18:42:07 +02:00			`validateRolesDeleteInput,`
add DELETE /admin/roles Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-05-27 13:15:52 +02:00			`validateRoleDeleteInput,`
add loading of ee files + add create role Signed-off-by: Pierre Noël <petersg83@gmail.com> 2020-05-22 12:58:14 +02:00			`};`