251 Commits

Author	SHA1	Message	Date
Christian Capeans	0740be570f	Add didCompleteRequest event	2023-04-19 12:54:10 +02:00
derrickmehaffy	773db0dcaf	add role as a failsafe	2023-04-17 08:08:19 -07:00
derrickmehaffy	52f5b7a16e	update blacklist with all system fields	2023-04-17 07:30:28 -07:00
focus-at	8e3d6c1e9b	Update providers-registry.js ... FIX for ``` body { error: { error_code: 3, error_msg: 'Unknown method passed', request_params: [ [Object], [Object], [Object], [Object] ] } } ```	2023-04-12 19:59:49 +03:00
Alexandre BODIN	aaeb988a0b	Expand nx usage and migrate logger to ts (#15957)	2023-03-22 11:21:33 +01:00
Ben Irvin	801e3db415	add traverse query ... fix single type fix query sanitize pagination count params add comments Cleanup the params/filters sanitize helpers sanitize association resolver Sanitize sort fix graphql single type fix graphql types fix addFindQuery Sanitize fields Update sanitize sort to handle all the different formats Update fields sanitize to handle regular strings & wildcard Fix non scalar recursion Add a traverse factory Add visitor to remove dz & morph relations Replace the old traverse utils (sort, filters) by one created using the traverse factory add sanitize populate await args fix async and duplicate sanitization sanitize u&p params Add traverse fields Fix traverse & sanitize fields add traverse fields to nested populate sanitize admin api filter queries Co-authored-by: Jean-Sébastien Herbaux <Convly@users.noreply.github.com> sanitize sort params in admin API todo make token fields unsearchable with _q sanitize delete mutation Update packages/core/admin/server/services/permission/permissions-manager/sanitize.js Co-authored-by: Jamie Howard <48524071+jhoward1994@users.noreply.github.com> fix errors on queries without ctx rename findParams to sanitizedParams Sanitize queries everywhere in the content manager admin controllers sanitize single type update and delete Ignore non attribute keys in the sanitize sort Fix the sanitize query sort for nested string sort Fix permission check for the admin typo sanitize upload sanitize admin media library sanitize admin users Add missing await Co-authored-by: Jean-Sébastien Herbaux <Convly@users.noreply.github.com> set U&P users fields to searchable:false add token support to createContentAPIRequest add searchable:false to getstarted U&P schema remove comment sanitize component resolver remove await add searchable false to the file's folder path Fix admin query when the permission query is set to null add basic tests for filtering private params add tests for fields add pagination tests Fix admin user fields not being sanitized Fix convert query params for the morph fragment on undefined value Traverse dynamic zone on nested populate Handle nested sort, filters & fields in populate queries + handle populate fragment for morphTo relations Sanitize 'on' subpopulate Co-authored-by: Jean-Sébastien Herbaux <Convly@users.noreply.github.com> don't throw error on invalid attributes check models for snake case column name instead of assuming they are operators Add first batch of api tests for params sanitize Fix sort traversal: handle object arrays Put back removePassword for fields,sort,filters Add schemas and fixtures for sanitize api tests Add tests for relations (sanitize api tests) Move constant to domain scope Rename sanitize params to sanitize query Fix typo Cleanup fixtures file Fix variable name conflict Update packages/core/admin/server/services/permission/permissions-manager/sanitize.js Co-authored-by: Alexandre BODIN <alexandrebodin@users.noreply.github.com> Update comment for array filters Rename sanitize test Test implicit & explicit array operator for filter Remove unused code	2023-03-15 14:59:19 +01:00
Nathan Pichon	0bd42b52de	Merge branch 'main' into features/patreon-auth-provider	2023-02-06 11:40:26 +01:00
Christian	449529fd02	Merge branch 'main' into fix/users-permissions-unique-email	2023-01-31 16:17:19 +01:00
Christian Capeans	bec07b0b0a	Merge branch 'main' into fix/unvalidated-cognito-access	2023-01-25 12:28:47 +01:00
Christian Capeans	8bbbd7383a	Split the url to fill origin and path values in purest	2023-01-25 12:12:55 +01:00
Christian Capeans	eeab43b577	Store jwk set url in strapi core	2023-01-11 12:57:39 +01:00
Convly	56aa69f472	Use lodash fp instead of lodash	2023-01-10 10:34:49 +01:00
Convly	6f07d33f88	Disable lodash template's escape	2023-01-09 18:28:30 +01:00
Christian Capeans	46f8f98378	Verify cognito token with AWS	2023-01-09 14:20:02 +01:00
Convly	0458e88bce	Handle object variables & fix sendTemplatedEmail	2022-12-30 19:46:33 +01:00
Convly	6b0b981e90	Update users-permissions service to prevent usage of invalid email templates	2022-12-30 19:01:04 +01:00
Convly	403a1fe81b	Update email template validation & tests	2022-12-30 19:00:19 +01:00
Tom Shortall	7dbf8896ee	use full_name instead of concatenating first_name and last_name	2022-12-19 21:31:01 +00:00
Tom Shortall	32f9e9a780	Add Patreon as an Oauth2 Provider to the Users & Permissions plugin	2022-12-19 21:10:31 +00:00
jason.chang	00dcbf8ee2	fix: fix duplicated emails checking in connect method	2022-11-18 11:59:11 +08:00
Alexandre Bodin	3ef2eabdad	Fix validation on user update	2022-11-09 19:10:41 +01:00
Julie Plantey	41b1bcf8cd	Merge branch 'main' of https://github.com/strapi/strapi into feature/relations-main-view	2022-10-11 11:16:00 +02:00
Pierre Noël	93d030df8b	update permissions plugin role validation (done by @Marc-Roig)	2022-10-06 11:15:07 +02:00
derrickmehaffy	a230f29587	Fix wrong filter param used with the entityService ... Signed-off-by: Derrick Mehaffy <derrickmehaffy@gmail.com>	2022-09-29 14:02:26 -07:00
Simone Taeggi	e1a0ae803e	Merge branch 'main' into features/api-token-v2	2022-09-08 22:16:55 +02:00
Alexandre Bodin	e57f02d2d9	Fix eslint in plugins folder	2022-09-05 15:18:24 +02:00
Convly	6abea9cd85	Expose "get actions as map" & update sync actions ... Co-authored-by: Ben Irvin <innerdvations@users.noreply.github.com>	2022-08-23 16:02:45 +02:00
Ben Irvin	7a1de40bb6	register actions in contentapi bootstrap	2022-08-22 17:31:15 +02:00
Bassel Kanso	baad6fd93f	Merge branch 'main' into features/api-token-v2	2022-08-18 12:18:09 +03:00
markkaylor	a8ff3aef2f	Merge pull request #13901 from ihmpavel/unify-template-variables-spacing ... chore: Unify template spacing	2022-08-16 09:20:37 +02:00
Alexandre Bodin	cf49ddbbfc	Prettier and backend fix	2022-08-11 10:20:49 +02:00
Alexandre Bodin	0ae14c06cb	1st fix pass	2022-08-11 10:20:48 +02:00
Alexandre Bodin	dd357e63e6	Put missing code back	2022-08-11 10:04:46 +02:00
ihmpavel	1cf23e141f	chore: Update after CR	2022-08-09 12:03:51 +02:00
Alexandre Bodin	8be749a5ac	Add tests	2022-08-03 22:43:03 +02:00
Alexandre Bodin	a25a65918c	Move to Post and cleanup validation	2022-08-03 16:46:41 +02:00
Alexandre Bodin	fbc7e882f4	Apply feedback and finish some tasks	2022-08-02 20:58:37 +02:00
Alexandre Bodin	85b3e7de32	Merge branch 'master' into feature/user-permissions-change-password	2022-08-02 20:22:13 +02:00
Convly	7d40f78384	Revert action/subject to action only	2022-08-02 16:51:06 +02:00
Convly	4ebc128ffb	Make users-permissions auth strategy use the content API permission engine	2022-07-29 10:17:06 +02:00
Convly	a5fbcc9e48	Merge branch 'master' into features/typescript	2022-07-07 15:20:34 +02:00
Alexandre Bodin	0d5557a71d	Fix default permissions	2022-07-01 19:58:51 +02:00
Convly	bdb5a3ee89	Merge branch 'releases/4.3.0' into features/typescript	2022-06-30 16:08:51 +02:00
Alexandre Bodin	f925e93db4	Complete U&P documentation	2022-06-04 09:48:31 +02:00
Alexandre Bodin	573d56bc30	Improve doc merge and start documentation of U&P	2022-06-02 15:52:47 +02:00
Alexandre Bodin	bdf2e13290	Init docs fix	2022-06-01 23:12:16 +02:00
Alexandre Bodin	f7f9ecc898	Fix check login before checking status	2022-06-01 20:35:43 +02:00
Alexandre Bodin	bb5500fe0b	Remove console.log	2022-06-01 20:13:57 +02:00
Alexandre Bodin	70b05b5e9b	Fix twitter provider ... Co-authored-by: kwang1198 Please enter the commit message for your changes. Lines starting	2022-06-01 20:05:01 +02:00
Alexandre Bodin	64852e9cda	Allow query params for /me	2022-06-01 19:11:18 +02:00