yujunjun/strapi
1
0
Fork 0
mirror of https://github.com/strapi/strapi.git synced 2025-08-01 13:29:01 +00:00
Code Issues Packages Projects Releases Wiki Activity
24,134 Commits 108 Branches 487 Tags
Commit Graph

412 Commits

Author SHA1 Message Date
Convly
d6516116b2 Move pipeAsync to @strapi/utils 2021-11-04 16:43:27 +01:00
Jean-Sébastien Herbaux
7f285fb755
[V4] Enhanced sanitize & remove restricted relations from content API's payloads (#11411) 
* Rework sanitizeEntity, first iteration

* remove console.log

* Remove useless comments

* Fix e2e tests

* Fix up user e2e test

* Fix remove-restricted-relations visitor

* Handle grapqhql resolver, prevent access to restricted relations

* Handle polymorphic relation in the related visitor

* Remove morph attribute if empty

* Use only the find action to check if the relation is allowed
 2021-11-04 15:47:53 +01:00
Convly
14d6a5b2c4 Fix users-permissions user controllers permissions 2021-11-04 15:18:09 +01:00
Alexandre Bodin
8a018619ef Add /plugins list api and update description to be plain english for now 2021-11-04 12:01:49 +01:00
Pierre Noël
cb098ec280 clean yup validations 2021-11-04 11:42:45 +01:00
Pierre Noël
194321591e fix EE e2e tests 2021-11-04 11:42:43 +01:00
Pierre Noël
b4c9ad0440 refacto graphql errors 2021-11-04 11:42:43 +01:00
Pierre Noël
0a6200ac2f fix unit tests 2021-11-04 11:42:40 +01:00
Pierre Noël
b58274aecb refactor error handling 2021-11-04 11:41:29 +01:00
Dieter Stinglhamber
8191be8a10 enable API token strategy 2021-11-02 10:48:15 +01:00
Alexandre Bodin
9cd59197b1 Fix tests and move api token config to use camelcase naming 2021-10-26 12:18:53 +02:00
Alexandre Bodin
a33d9e56be Move admin config to config/admin.js 2021-10-26 12:12:02 +02:00
Dieter Sting
ed64650c25
Merge pull request #11298 from strapi/features/api-token-fe 
Implement the UI for the API Tokens
 2021-10-26 09:20:20 +02:00
Dieter Stinglhamber
ed83cc353c implement the ListView for the API Tokens 2021-10-25 09:15:03 +02:00
Pierre Noël
6fd9f780c7 Merge branch 'v4/ctb' into v4/plural-name-in-CTB 2021-10-22 12:33:48 +02:00
Alexandre BODIN
bd5a1106e9
Update packages/core/admin/server/controllers/authenticated-user.js 2021-10-21 15:31:05 +02:00
Alexandre Bodin
15e18be98c Add current password requirement to edit own profile password 2021-10-21 13:20:57 +02:00
Alexandre Bodin
3d04f9bfb2 Update the snapshots 2021-10-20 18:15:53 +02:00
Alexandre Bodin
cc52a93a47 Use array checks in api-token aut strategy 2021-10-11 12:29:38 +02:00
Alexandre Bodin
c1c6dd4c11 Harmonize registries and simplify listing commands 2021-10-07 13:06:40 +02:00
Alexandre Bodin
c1aa57f436 Harmonize and make policies and middlwares more consistent 2021-10-05 10:43:24 +02:00
Alexandre Bodin
6ef3e1deb6 Migrate plugin generator and fix some internal issues to make everything compatible 2021-09-30 11:40:54 +02:00
Pierre Noël
947981200b use { strapi } as params in all lifecycle functions 2021-09-28 16:54:07 +02:00
Dieter Stinglhamber
17742d2153 update tests to avoid false negative 2021-09-28 11:17:44 +02:00
Alexandre BODIN
9ae4f28928
Merge pull request #11082 from strapi/v4/fix-user-sort 
fix sort on admin user
 2021-09-27 18:24:51 +02:00
Pierre Noël
995c5c86b9 clean code 2021-09-27 16:44:05 +02:00
Pierre Noël
6ba4ce561f lower email when login using local provider 2021-09-27 16:40:04 +02:00
Pierre Noël
95d9b19588 fix sort on admin user 2021-09-27 16:06:43 +02:00
Pierre Noël
491a662692 clean some code 2021-09-27 12:28:17 +02:00
Pierre Noël
0f123ceb39 fix RBAC 2021-09-27 11:08:48 +02:00
Pierre Noël
d02c7ab741 Use new filters format in the upload plugin 2021-09-27 11:08:47 +02:00
Alexandre Bodin
60cbb448f6 Make perm compare accurate 2021-09-25 00:59:53 +02:00
Alexandre BODIN
87d79388c1
Merge pull request #11064 from strapi/v4/refactor-policy-api 
[v4] Refactor policy API
 2021-09-24 18:44:21 +02:00
Dieter Stinglhamber
14a0ba9ee3 comment the api-token auth strategy 2021-09-24 12:07:31 +02:00
Dieter Stinglhamber
edeca8a6ce fix issue with string and number id comparaison 2021-09-24 12:07:00 +02:00
Dieter Stinglhamber
b9b98c620c improve scope matching and verification failures 2021-09-24 12:07:00 +02:00
Dieter Sting
0db6950d9d fix typo 
Co-authored-by: Alexandre BODIN <alexandrebodin@users.noreply.github.com>
 2021-09-24 12:07:00 +02:00
Dieter Stinglhamber
4b6704d2ae fix unit tests 2021-09-24 12:07:00 +02:00
Dieter Stinglhamber
1a72747672 add api-token auth strategy to the content-api 2021-09-24 12:06:56 +02:00
Dieter Stinglhamber
5bc7c4462a fix typo 2021-09-24 12:05:40 +02:00
Dieter Stinglhamber
31d74d2710 allow for partial payload to update a token 2021-09-24 12:05:40 +02:00
Dieter Stinglhamber
f7bd99cb74 implement PUT endpoint to update a token 2021-09-24 12:05:40 +02:00
Dieter Stinglhamber
ca668c78e8 store the hashed accessKey in the database 2021-09-24 12:05:39 +02:00
Dieter Stinglhamber
b50afb69d5 implement POST endpoint to create api tokens 2021-09-24 12:05:39 +02:00
Dieter Stinglhamber
78e5bd98d3 update tests and rename get method 2021-09-24 12:05:39 +02:00
Dieter Stinglhamber
f791c21cc9 fix typos 2021-09-24 12:05:39 +02:00
Dieter Stinglhamber
a4e0df4ce8 implement GET endpoint to get a single token 2021-09-24 12:05:39 +02:00
Dieter Stinglhamber
c143d58bc1 fix typos 2021-09-24 12:05:38 +02:00
Dieter Stinglhamber
930156a574 return deleted token 2021-09-24 12:05:38 +02:00
Dieter Stinglhamber
946d3a0ea3 add DELETE route and logic 2021-09-24 12:05:38 +02:00