Merge pull request #368 from mjashanks/instanceid-url-removal
Remove Instance ID from URLS + appRootPath Removal
This commit is contained in:
commit
62a0bdc057
|
@ -1,17 +1,13 @@
|
||||||
const apiCall = method => async (url, body) => {
|
const apiCall = method => async (url, body) => {
|
||||||
|
const headers = {
|
||||||
|
"Content-Type": "application/json",
|
||||||
|
}
|
||||||
const response = await fetch(url, {
|
const response = await fetch(url, {
|
||||||
method: method,
|
method: method,
|
||||||
headers: {
|
|
||||||
"Content-Type": "application/json",
|
|
||||||
"x-user-agent": "Budibase Builder",
|
|
||||||
},
|
|
||||||
body: body && JSON.stringify(body),
|
body: body && JSON.stringify(body),
|
||||||
|
headers,
|
||||||
})
|
})
|
||||||
|
|
||||||
// if (response.status === 500) {
|
|
||||||
// throw new Error("Server Error");
|
|
||||||
// }
|
|
||||||
|
|
||||||
return response
|
return response
|
||||||
}
|
}
|
||||||
|
|
||||||
|
@ -22,9 +18,9 @@ export const del = apiCall("DELETE")
|
||||||
export const put = apiCall("PUT")
|
export const put = apiCall("PUT")
|
||||||
|
|
||||||
export default {
|
export default {
|
||||||
post,
|
post: apiCall("POST"),
|
||||||
get,
|
get: apiCall("GET"),
|
||||||
patch,
|
patch: apiCall("PATCH"),
|
||||||
delete: del,
|
delete: apiCall("DELETE"),
|
||||||
put,
|
put: apiCall("PUT"),
|
||||||
}
|
}
|
||||||
|
|
|
@ -24,8 +24,8 @@ export const getBackendUiStore = () => {
|
||||||
store.actions = {
|
store.actions = {
|
||||||
database: {
|
database: {
|
||||||
select: async db => {
|
select: async db => {
|
||||||
const modelsResponse = await api.get(`/api/${db._id}/models`)
|
const modelsResponse = await api.get(`/api/models`)
|
||||||
const viewsResponse = await api.get(`/api/${db._id}/views`)
|
const viewsResponse = await api.get(`/api/views`)
|
||||||
const models = await modelsResponse.json()
|
const models = await modelsResponse.json()
|
||||||
const views = await viewsResponse.json()
|
const views = await viewsResponse.json()
|
||||||
store.update(state => {
|
store.update(state => {
|
||||||
|
|
|
@ -1,5 +1,4 @@
|
||||||
import { values } from "lodash/fp"
|
import { values } from "lodash/fp"
|
||||||
import { backendUiStore } from "builderStore"
|
|
||||||
import * as backendStoreActions from "./backend"
|
import * as backendStoreActions from "./backend"
|
||||||
import { writable, get } from "svelte/store"
|
import { writable, get } from "svelte/store"
|
||||||
import api from "../api"
|
import api from "../api"
|
||||||
|
@ -295,13 +294,10 @@ const addChildComponent = store => (componentToAdd, presetName) => {
|
||||||
|
|
||||||
const presetProps = presetName ? component.presets[presetName] : {}
|
const presetProps = presetName ? component.presets[presetName] : {}
|
||||||
|
|
||||||
const instanceId = get(backendUiStore).selectedDatabase._id
|
|
||||||
|
|
||||||
const newComponent = createProps(
|
const newComponent = createProps(
|
||||||
component,
|
component,
|
||||||
{
|
{
|
||||||
...presetProps,
|
...presetProps,
|
||||||
_instanceId: instanceId,
|
|
||||||
},
|
},
|
||||||
state
|
state
|
||||||
)
|
)
|
||||||
|
|
|
@ -3,8 +3,8 @@ import api from "../../api"
|
||||||
import Workflow from "./Workflow"
|
import Workflow from "./Workflow"
|
||||||
|
|
||||||
const workflowActions = store => ({
|
const workflowActions = store => ({
|
||||||
fetch: async instanceId => {
|
fetch: async () => {
|
||||||
const WORKFLOWS_URL = `/api/${instanceId}/workflows`
|
const WORKFLOWS_URL = `/api/workflows`
|
||||||
const workflowResponse = await api.get(WORKFLOWS_URL)
|
const workflowResponse = await api.get(WORKFLOWS_URL)
|
||||||
const json = await workflowResponse.json()
|
const json = await workflowResponse.json()
|
||||||
store.update(state => {
|
store.update(state => {
|
||||||
|
@ -12,14 +12,14 @@ const workflowActions = store => ({
|
||||||
return state
|
return state
|
||||||
})
|
})
|
||||||
},
|
},
|
||||||
create: async ({ instanceId, name }) => {
|
create: async ({ name }) => {
|
||||||
const workflow = {
|
const workflow = {
|
||||||
name,
|
name,
|
||||||
definition: {
|
definition: {
|
||||||
steps: [],
|
steps: [],
|
||||||
},
|
},
|
||||||
}
|
}
|
||||||
const CREATE_WORKFLOW_URL = `/api/${instanceId}/workflows`
|
const CREATE_WORKFLOW_URL = `/api/workflows`
|
||||||
const response = await api.post(CREATE_WORKFLOW_URL, workflow)
|
const response = await api.post(CREATE_WORKFLOW_URL, workflow)
|
||||||
const json = await response.json()
|
const json = await response.json()
|
||||||
store.update(state => {
|
store.update(state => {
|
||||||
|
@ -28,8 +28,8 @@ const workflowActions = store => ({
|
||||||
return state
|
return state
|
||||||
})
|
})
|
||||||
},
|
},
|
||||||
save: async ({ instanceId, workflow }) => {
|
save: async ({ workflow }) => {
|
||||||
const UPDATE_WORKFLOW_URL = `/api/${instanceId}/workflows`
|
const UPDATE_WORKFLOW_URL = `/api/workflows`
|
||||||
const response = await api.put(UPDATE_WORKFLOW_URL, workflow)
|
const response = await api.put(UPDATE_WORKFLOW_URL, workflow)
|
||||||
const json = await response.json()
|
const json = await response.json()
|
||||||
store.update(state => {
|
store.update(state => {
|
||||||
|
@ -42,8 +42,8 @@ const workflowActions = store => ({
|
||||||
return state
|
return state
|
||||||
})
|
})
|
||||||
},
|
},
|
||||||
update: async ({ instanceId, workflow }) => {
|
update: async ({ workflow }) => {
|
||||||
const UPDATE_WORKFLOW_URL = `/api/${instanceId}/workflows`
|
const UPDATE_WORKFLOW_URL = `/api/workflows`
|
||||||
const response = await api.put(UPDATE_WORKFLOW_URL, workflow)
|
const response = await api.put(UPDATE_WORKFLOW_URL, workflow)
|
||||||
const json = await response.json()
|
const json = await response.json()
|
||||||
store.update(state => {
|
store.update(state => {
|
||||||
|
@ -55,9 +55,9 @@ const workflowActions = store => ({
|
||||||
return state
|
return state
|
||||||
})
|
})
|
||||||
},
|
},
|
||||||
delete: async ({ instanceId, workflow }) => {
|
delete: async ({ workflow }) => {
|
||||||
const { _id, _rev } = workflow
|
const { _id, _rev } = workflow
|
||||||
const DELETE_WORKFLOW_URL = `/api/${instanceId}/workflows/${_id}/${_rev}`
|
const DELETE_WORKFLOW_URL = `/api/workflows/${_id}/${_rev}`
|
||||||
await api.delete(DELETE_WORKFLOW_URL)
|
await api.delete(DELETE_WORKFLOW_URL)
|
||||||
|
|
||||||
store.update(state => {
|
store.update(state => {
|
||||||
|
|
|
@ -53,12 +53,10 @@
|
||||||
let views = []
|
let views = []
|
||||||
let currentPage = 0
|
let currentPage = 0
|
||||||
|
|
||||||
$: instanceId = $backendUiStore.selectedDatabase._id
|
|
||||||
|
|
||||||
$: {
|
$: {
|
||||||
if ($backendUiStore.selectedView) {
|
if ($backendUiStore.selectedView) {
|
||||||
api
|
api
|
||||||
.fetchDataForView($backendUiStore.selectedView, instanceId)
|
.fetchDataForView($backendUiStore.selectedView)
|
||||||
.then(records => {
|
.then(records => {
|
||||||
data = records || []
|
data = records || []
|
||||||
headers = Object.keys($backendUiStore.selectedModel.schema).filter(
|
headers = Object.keys($backendUiStore.selectedModel.schema).filter(
|
||||||
|
|
|
@ -1,7 +1,7 @@
|
||||||
import api from "builderStore/api"
|
import api from "builderStore/api"
|
||||||
|
|
||||||
export async function createUser(user, instanceId) {
|
export async function createUser(user) {
|
||||||
const CREATE_USER_URL = `/api/${instanceId}/users`
|
const CREATE_USER_URL = `/api/users`
|
||||||
const response = await api.post(CREATE_USER_URL, user)
|
const response = await api.post(CREATE_USER_URL, user)
|
||||||
return await response.json()
|
return await response.json()
|
||||||
}
|
}
|
||||||
|
@ -14,21 +14,21 @@ export async function createDatabase(appname, instanceName) {
|
||||||
return await response.json()
|
return await response.json()
|
||||||
}
|
}
|
||||||
|
|
||||||
export async function deleteRecord(record, instanceId) {
|
export async function deleteRecord(record) {
|
||||||
const DELETE_RECORDS_URL = `/api/${instanceId}/${record._modelId}/records/${record._id}/${record._rev}`
|
const DELETE_RECORDS_URL = `/api/${record._modelId}/records/${record._id}/${record._rev}`
|
||||||
const response = await api.delete(DELETE_RECORDS_URL)
|
const response = await api.delete(DELETE_RECORDS_URL)
|
||||||
return response
|
return response
|
||||||
}
|
}
|
||||||
|
|
||||||
export async function saveRecord(record, instanceId, modelId) {
|
export async function saveRecord(record, modelId) {
|
||||||
const SAVE_RECORDS_URL = `/api/${instanceId}/${modelId}/records`
|
const SAVE_RECORDS_URL = `/api/${modelId}/records`
|
||||||
const response = await api.post(SAVE_RECORDS_URL, record)
|
const response = await api.post(SAVE_RECORDS_URL, record)
|
||||||
|
|
||||||
return await response.json()
|
return await response.json()
|
||||||
}
|
}
|
||||||
|
|
||||||
export async function fetchDataForView(viewName, instanceId) {
|
export async function fetchDataForView(viewName) {
|
||||||
const FETCH_RECORDS_URL = `/api/${instanceId}/views/${viewName}`
|
const FETCH_RECORDS_URL = `/api/views/${viewName}`
|
||||||
|
|
||||||
const response = await api.get(FETCH_RECORDS_URL)
|
const response = await api.get(FETCH_RECORDS_URL)
|
||||||
return await response.json()
|
return await response.json()
|
||||||
|
|
|
@ -18,7 +18,6 @@
|
||||||
let fieldToEdit
|
let fieldToEdit
|
||||||
|
|
||||||
$: modelFields = model.schema ? Object.entries(model.schema) : []
|
$: modelFields = model.schema ? Object.entries(model.schema) : []
|
||||||
$: instanceId = $backendUiStore.selectedDatabase._id
|
|
||||||
|
|
||||||
function editField() {}
|
function editField() {}
|
||||||
|
|
||||||
|
@ -27,7 +26,7 @@
|
||||||
function onFinishedFieldEdit() {}
|
function onFinishedFieldEdit() {}
|
||||||
|
|
||||||
async function saveModel() {
|
async function saveModel() {
|
||||||
const SAVE_MODEL_URL = `/api/${instanceId}/models`
|
const SAVE_MODEL_URL = `/api/models`
|
||||||
const response = await api.post(SAVE_MODEL_URL, model)
|
const response = await api.post(SAVE_MODEL_URL, model)
|
||||||
const newModel = await response.json()
|
const newModel = await response.json()
|
||||||
backendUiStore.actions.models.create(newModel)
|
backendUiStore.actions.models.create(newModel)
|
||||||
|
|
|
@ -14,8 +14,6 @@
|
||||||
let errors = []
|
let errors = []
|
||||||
let selectedModel
|
let selectedModel
|
||||||
|
|
||||||
$: instanceId = $backendUiStore.selectedDatabase._id
|
|
||||||
|
|
||||||
$: modelSchema = $backendUiStore.selectedModel
|
$: modelSchema = $backendUiStore.selectedModel
|
||||||
? Object.entries($backendUiStore.selectedModel.schema)
|
? Object.entries($backendUiStore.selectedModel.schema)
|
||||||
: []
|
: []
|
||||||
|
@ -49,7 +47,6 @@
|
||||||
...record,
|
...record,
|
||||||
modelId: $backendUiStore.selectedModel._id,
|
modelId: $backendUiStore.selectedModel._id,
|
||||||
},
|
},
|
||||||
instanceId,
|
|
||||||
$backendUiStore.selectedModel._id
|
$backendUiStore.selectedModel._id
|
||||||
)
|
)
|
||||||
if (recordResponse.errors) {
|
if (recordResponse.errors) {
|
||||||
|
|
|
@ -29,7 +29,7 @@
|
||||||
function deleteView() {}
|
function deleteView() {}
|
||||||
|
|
||||||
async function saveView() {
|
async function saveView() {
|
||||||
const SAVE_VIEW_URL = `/api/${instanceId}/views`
|
const SAVE_VIEW_URL = `/api/views`
|
||||||
const response = await api.post(SAVE_VIEW_URL, view)
|
const response = await api.post(SAVE_VIEW_URL, view)
|
||||||
backendUiStore.update(state => {
|
backendUiStore.update(state => {
|
||||||
state.views = [...state.views, response.view]
|
state.views = [...state.views, response.view]
|
||||||
|
|
|
@ -10,12 +10,11 @@
|
||||||
let accessLevelId
|
let accessLevelId
|
||||||
|
|
||||||
$: valid = username && password && accessLevelId
|
$: valid = username && password && accessLevelId
|
||||||
$: instanceId = $backendUiStore.selectedDatabase._id
|
|
||||||
$: appId = $store.appId
|
$: appId = $store.appId
|
||||||
|
|
||||||
async function createUser() {
|
async function createUser() {
|
||||||
const user = { name: username, username, password, accessLevelId }
|
const user = { name: username, username, password, accessLevelId }
|
||||||
const response = await api.createUser(user, instanceId)
|
const response = await api.createUser(user)
|
||||||
backendUiStore.actions.users.create(response)
|
backendUiStore.actions.users.create(response)
|
||||||
onClosed()
|
onClosed()
|
||||||
}
|
}
|
||||||
|
|
|
@ -6,7 +6,6 @@
|
||||||
export let record
|
export let record
|
||||||
export let onClosed
|
export let onClosed
|
||||||
|
|
||||||
$: instanceId = $backendUiStore.selectedDatabase._id
|
|
||||||
</script>
|
</script>
|
||||||
|
|
||||||
<section>
|
<section>
|
||||||
|
@ -25,7 +24,7 @@
|
||||||
<ActionButton
|
<ActionButton
|
||||||
alert
|
alert
|
||||||
on:click={async () => {
|
on:click={async () => {
|
||||||
await api.deleteRecord(record, instanceId)
|
await api.deleteRecord(record)
|
||||||
backendUiStore.actions.records.delete(record)
|
backendUiStore.actions.records.delete(record)
|
||||||
onClosed()
|
onClosed()
|
||||||
}}>
|
}}>
|
||||||
|
|
|
@ -7,7 +7,6 @@
|
||||||
CreateEditModelModal,
|
CreateEditModelModal,
|
||||||
CreateEditViewModal,
|
CreateEditViewModal,
|
||||||
} from "components/database/ModelDataTable/modals"
|
} from "components/database/ModelDataTable/modals"
|
||||||
import api from "builderStore/api"
|
|
||||||
|
|
||||||
const { open, close } = getContext("simple-modal")
|
const { open, close } = getContext("simple-modal")
|
||||||
|
|
||||||
|
|
|
@ -52,7 +52,7 @@
|
||||||
}
|
}
|
||||||
|
|
||||||
async function deleteModel(modelToDelete) {
|
async function deleteModel(modelToDelete) {
|
||||||
const DELETE_MODEL_URL = `/api/${instanceId}/models/${node._id}/${node._rev}`
|
const DELETE_MODEL_URL = `/api/models/${node._id}/${node._rev}`
|
||||||
const response = await api.delete(DELETE_MODEL_URL)
|
const response = await api.delete(DELETE_MODEL_URL)
|
||||||
backendUiStore.update(state => {
|
backendUiStore.update(state => {
|
||||||
state.models = state.models.filter(
|
state.models = state.models.filter(
|
||||||
|
|
|
@ -12,11 +12,10 @@
|
||||||
|
|
||||||
$: currentAppInfo = {
|
$: currentAppInfo = {
|
||||||
appname: $store.appname,
|
appname: $store.appname,
|
||||||
instanceId: $backendUiStore.selectedDatabase._id,
|
|
||||||
}
|
}
|
||||||
|
|
||||||
async function fetchUsers() {
|
async function fetchUsers() {
|
||||||
const FETCH_USERS_URL = `/api/${currentAppInfo.instanceId}/users`
|
const FETCH_USERS_URL = `/api/users`
|
||||||
const response = await api.get(FETCH_USERS_URL)
|
const response = await api.get(FETCH_USERS_URL)
|
||||||
const users = await response.json()
|
const users = await response.json()
|
||||||
backendUiStore.update(state => {
|
backendUiStore.update(state => {
|
||||||
|
|
|
@ -91,7 +91,6 @@
|
||||||
? screenPlaceholder
|
? screenPlaceholder
|
||||||
: $store.currentPreviewItem,
|
: $store.currentPreviewItem,
|
||||||
],
|
],
|
||||||
appRootPath: "",
|
|
||||||
}
|
}
|
||||||
|
|
||||||
$: selectedComponentType = getComponentTypeName($store.currentComponentInfo)
|
$: selectedComponentType = getComponentTypeName($store.currentComponentInfo)
|
||||||
|
@ -108,6 +107,8 @@
|
||||||
selectedComponentType,
|
selectedComponentType,
|
||||||
selectedComponentId,
|
selectedComponentId,
|
||||||
frontendDefinition,
|
frontendDefinition,
|
||||||
|
appId: $store.appId,
|
||||||
|
instanceId: $backendUiStore.selectedDatabase._id,
|
||||||
})
|
})
|
||||||
)
|
)
|
||||||
}
|
}
|
||||||
|
|
|
@ -20,6 +20,7 @@ export default `<html>
|
||||||
font-weight: bold;
|
font-weight: bold;
|
||||||
}
|
}
|
||||||
</style>
|
</style>
|
||||||
|
<script src='/assets/budibase-client.js'></script>
|
||||||
<script>
|
<script>
|
||||||
function receiveMessage(event) {
|
function receiveMessage(event) {
|
||||||
|
|
||||||
|
@ -45,11 +46,10 @@ export default `<html>
|
||||||
styles.appendChild(document.createTextNode(data.styles))
|
styles.appendChild(document.createTextNode(data.styles))
|
||||||
|
|
||||||
window["##BUDIBASE_FRONTEND_DEFINITION##"] = data.frontendDefinition;
|
window["##BUDIBASE_FRONTEND_DEFINITION##"] = data.frontendDefinition;
|
||||||
if (clientModule) {
|
if (window.loadBudibase) {
|
||||||
clientModule.loadBudibase({ window, localStorage })
|
loadBudibase({ window, localStorage })
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
let clientModule
|
|
||||||
let styles
|
let styles
|
||||||
let selectedComponentStyle
|
let selectedComponentStyle
|
||||||
|
|
||||||
|
@ -59,12 +59,9 @@ export default `<html>
|
||||||
return false;
|
return false;
|
||||||
}, true)
|
}, true)
|
||||||
|
|
||||||
import('/_builder/budibase-client.esm.mjs')
|
window.addEventListener('message', receiveMessage)
|
||||||
.then(module => {
|
window.dispatchEvent(new Event('bb-ready'))
|
||||||
clientModule = module
|
|
||||||
window.addEventListener('message', receiveMessage)
|
|
||||||
window.dispatchEvent(new Event('bb-ready'))
|
|
||||||
})
|
|
||||||
</script>
|
</script>
|
||||||
</head>
|
</head>
|
||||||
<body>
|
<body>
|
||||||
|
|
|
@ -1,7 +1,6 @@
|
||||||
<script>
|
<script>
|
||||||
import { store, backendUiStore, workflowStore } from "builderStore"
|
import { store, backendUiStore, workflowStore } from "builderStore"
|
||||||
import { notifier } from "@beyonk/svelte-notifications"
|
import { notifier } from "@beyonk/svelte-notifications"
|
||||||
import api from "builderStore/api"
|
|
||||||
import ActionButton from "components/common/ActionButton.svelte"
|
import ActionButton from "components/common/ActionButton.svelte"
|
||||||
|
|
||||||
export let onClosed
|
export let onClosed
|
||||||
|
|
|
@ -3,7 +3,6 @@
|
||||||
import { onMount, getContext } from "svelte"
|
import { onMount, getContext } from "svelte"
|
||||||
import { backendUiStore, workflowStore } from "builderStore"
|
import { backendUiStore, workflowStore } from "builderStore"
|
||||||
import { notifier } from "@beyonk/svelte-notifications"
|
import { notifier } from "@beyonk/svelte-notifications"
|
||||||
import api from "builderStore/api"
|
|
||||||
import WorkflowBlockSetup from "./WorkflowBlockSetup.svelte"
|
import WorkflowBlockSetup from "./WorkflowBlockSetup.svelte"
|
||||||
import DeleteWorkflowModal from "./DeleteWorkflowModal.svelte"
|
import DeleteWorkflowModal from "./DeleteWorkflowModal.svelte"
|
||||||
|
|
||||||
|
|
|
@ -3,7 +3,6 @@
|
||||||
import { workflowStore, backendUiStore } from "builderStore"
|
import { workflowStore, backendUiStore } from "builderStore"
|
||||||
import { notifier } from "@beyonk/svelte-notifications"
|
import { notifier } from "@beyonk/svelte-notifications"
|
||||||
import Flowchart from "./flowchart/FlowChart.svelte"
|
import Flowchart from "./flowchart/FlowChart.svelte"
|
||||||
import api from "builderStore/api"
|
|
||||||
|
|
||||||
let selectedWorkflow
|
let selectedWorkflow
|
||||||
let uiTree
|
let uiTree
|
||||||
|
|
|
@ -3,7 +3,6 @@
|
||||||
import { backendUiStore, workflowStore } from "builderStore"
|
import { backendUiStore, workflowStore } from "builderStore"
|
||||||
import { WorkflowList } from "../"
|
import { WorkflowList } from "../"
|
||||||
import WorkflowBlock from "./WorkflowBlock.svelte"
|
import WorkflowBlock from "./WorkflowBlock.svelte"
|
||||||
import api from "builderStore/api"
|
|
||||||
import blockDefinitions from "../blockDefinitions"
|
import blockDefinitions from "../blockDefinitions"
|
||||||
|
|
||||||
let selectedTab = "TRIGGER"
|
let selectedTab = "TRIGGER"
|
||||||
|
|
|
@ -1,7 +1,6 @@
|
||||||
<script>
|
<script>
|
||||||
import { store, backendUiStore, workflowStore } from "builderStore"
|
import { store, backendUiStore, workflowStore } from "builderStore"
|
||||||
import { notifier } from "@beyonk/svelte-notifications"
|
import { notifier } from "@beyonk/svelte-notifications"
|
||||||
import api from "builderStore/api"
|
|
||||||
import ActionButton from "components/common/ActionButton.svelte"
|
import ActionButton from "components/common/ActionButton.svelte"
|
||||||
|
|
||||||
export let onClosed
|
export let onClosed
|
||||||
|
|
|
@ -3,7 +3,6 @@
|
||||||
import { notifier } from "@beyonk/svelte-notifications"
|
import { notifier } from "@beyonk/svelte-notifications"
|
||||||
import { onMount, getContext } from "svelte"
|
import { onMount, getContext } from "svelte"
|
||||||
import { backendUiStore, workflowStore } from "builderStore"
|
import { backendUiStore, workflowStore } from "builderStore"
|
||||||
import api from "builderStore/api"
|
|
||||||
import CreateWorkflowModal from "./CreateWorkflowModal.svelte"
|
import CreateWorkflowModal from "./CreateWorkflowModal.svelte"
|
||||||
|
|
||||||
const { open, close } = getContext("simple-modal")
|
const { open, close } = getContext("simple-modal")
|
||||||
|
@ -23,7 +22,7 @@
|
||||||
}
|
}
|
||||||
|
|
||||||
onMount(() => {
|
onMount(() => {
|
||||||
workflowStore.actions.fetch($backendUiStore.selectedDatabase._id)
|
workflowStore.actions.fetch()
|
||||||
})
|
})
|
||||||
</script>
|
</script>
|
||||||
|
|
||||||
|
|
|
@ -2,7 +2,6 @@
|
||||||
import { onMount } from "svelte"
|
import { onMount } from "svelte"
|
||||||
import { backendUiStore, workflowStore } from "builderStore"
|
import { backendUiStore, workflowStore } from "builderStore"
|
||||||
import { WorkflowList, BlockList } from "./"
|
import { WorkflowList, BlockList } from "./"
|
||||||
import api from "builderStore/api"
|
|
||||||
import blockDefinitions from "./blockDefinitions"
|
import blockDefinitions from "./blockDefinitions"
|
||||||
|
|
||||||
let selectedTab = "WORKFLOWS"
|
let selectedTab = "WORKFLOWS"
|
||||||
|
|
|
@ -1,3 +1,4 @@
|
||||||
<script>
|
<script>
|
||||||
|
import { params } from "@sveltech/routify"
|
||||||
store.setCurrentPage($params.page)
|
store.setCurrentPage($params.page)
|
||||||
</script>
|
</script>
|
||||||
|
|
|
@ -15,7 +15,7 @@
|
||||||
"client": "web"
|
"client": "web"
|
||||||
}
|
}
|
||||||
},
|
},
|
||||||
"testURL": "http://jest-breaks-if-this-does-not-exist",
|
"testURL": "http://test.com",
|
||||||
"moduleNameMapper": {
|
"moduleNameMapper": {
|
||||||
"\\.(jpg|jpeg|png|gif|eot|otf|webp|svg|ttf|woff|woff2|mp4|webm|wav|mp3|m4a|aac|oga)$": "<rootDir>/internals/mocks/fileMock.js",
|
"\\.(jpg|jpeg|png|gif|eot|otf|webp|svg|ttf|woff|woff2|mp4|webm|wav|mp3|m4a|aac|oga)$": "<rootDir>/internals/mocks/fileMock.js",
|
||||||
"\\.(css|less|sass|scss)$": "identity-obj-proxy"
|
"\\.(css|less|sass|scss)$": "identity-obj-proxy"
|
||||||
|
|
|
@ -1,9 +1,9 @@
|
||||||
import { authenticate } from "./authenticate"
|
import { authenticate } from "./authenticate"
|
||||||
import { triggerWorkflow } from "./workflow"
|
import { triggerWorkflow } from "./workflow"
|
||||||
|
|
||||||
export const createApi = ({ rootPath = "", setState, getState }) => {
|
export const createApi = ({ setState, getState }) => {
|
||||||
const apiCall = method => async ({ url, body }) => {
|
const apiCall = method => async ({ url, body }) => {
|
||||||
const response = await fetch(`${rootPath}${url}`, {
|
const response = await fetch(url, {
|
||||||
method: method,
|
method: method,
|
||||||
headers: {
|
headers: {
|
||||||
"Content-Type": "application/json",
|
"Content-Type": "application/json",
|
||||||
|
@ -45,7 +45,6 @@ export const createApi = ({ rootPath = "", setState, getState }) => {
|
||||||
const isSuccess = obj => !obj || !obj[ERROR_MEMBER]
|
const isSuccess = obj => !obj || !obj[ERROR_MEMBER]
|
||||||
|
|
||||||
const apiOpts = {
|
const apiOpts = {
|
||||||
rootPath,
|
|
||||||
setState,
|
setState,
|
||||||
getState,
|
getState,
|
||||||
isSuccess,
|
isSuccess,
|
||||||
|
|
|
@ -2,6 +2,7 @@ import { attachChildren } from "./render/attachChildren"
|
||||||
import { createTreeNode } from "./render/prepareRenderComponent"
|
import { createTreeNode } from "./render/prepareRenderComponent"
|
||||||
import { screenRouter } from "./render/screenRouter"
|
import { screenRouter } from "./render/screenRouter"
|
||||||
import { createStateManager } from "./state/stateManager"
|
import { createStateManager } from "./state/stateManager"
|
||||||
|
import { getAppId } from "./render/getAppId"
|
||||||
|
|
||||||
export const createApp = ({
|
export const createApp = ({
|
||||||
componentLibraries,
|
componentLibraries,
|
||||||
|
@ -15,11 +16,9 @@ export const createApp = ({
|
||||||
const onScreenSlotRendered = screenSlotNode => {
|
const onScreenSlotRendered = screenSlotNode => {
|
||||||
const onScreenSelected = (screen, url) => {
|
const onScreenSelected = (screen, url) => {
|
||||||
const stateManager = createStateManager({
|
const stateManager = createStateManager({
|
||||||
frontendDefinition,
|
|
||||||
componentLibraries,
|
componentLibraries,
|
||||||
onScreenSlotRendered: () => {},
|
onScreenSlotRendered: () => {},
|
||||||
routeTo,
|
routeTo,
|
||||||
appRootPath: frontendDefinition.appRootPath,
|
|
||||||
})
|
})
|
||||||
const getAttachChildrenParams = attachChildrenParams(stateManager)
|
const getAttachChildrenParams = attachChildrenParams(stateManager)
|
||||||
screenSlotNode.props._children = [screen.props]
|
screenSlotNode.props._children = [screen.props]
|
||||||
|
@ -36,10 +35,10 @@ export const createApp = ({
|
||||||
routeTo = screenRouter({
|
routeTo = screenRouter({
|
||||||
screens: frontendDefinition.screens,
|
screens: frontendDefinition.screens,
|
||||||
onScreenSelected,
|
onScreenSelected,
|
||||||
appRootPath: frontendDefinition.appRootPath,
|
window,
|
||||||
})
|
})
|
||||||
const fallbackPath = window.location.pathname.replace(
|
const fallbackPath = window.location.pathname.replace(
|
||||||
frontendDefinition.appRootPath,
|
getAppId(window.document.cookie),
|
||||||
""
|
""
|
||||||
)
|
)
|
||||||
routeTo(currentUrl || fallbackPath)
|
routeTo(currentUrl || fallbackPath)
|
||||||
|
@ -59,10 +58,8 @@ export const createApp = ({
|
||||||
|
|
||||||
let rootTreeNode
|
let rootTreeNode
|
||||||
const pageStateManager = createStateManager({
|
const pageStateManager = createStateManager({
|
||||||
frontendDefinition,
|
|
||||||
componentLibraries,
|
componentLibraries,
|
||||||
onScreenSlotRendered,
|
onScreenSlotRendered,
|
||||||
appRootPath: frontendDefinition.appRootPath,
|
|
||||||
// seems weird, but the routeTo variable may not be available at this point
|
// seems weird, but the routeTo variable may not be available at this point
|
||||||
routeTo: url => routeTo(url),
|
routeTo: url => routeTo(url),
|
||||||
})
|
})
|
||||||
|
|
|
@ -1,5 +1,6 @@
|
||||||
import { createApp } from "./createApp"
|
import { createApp } from "./createApp"
|
||||||
import { builtins, builtinLibName } from "./render/builtinComponents"
|
import { builtins, builtinLibName } from "./render/builtinComponents"
|
||||||
|
import { getAppId } from "./render/getAppId"
|
||||||
|
|
||||||
/**
|
/**
|
||||||
* create a web application from static budibase definition files.
|
* create a web application from static budibase definition files.
|
||||||
|
@ -8,7 +9,7 @@ import { builtins, builtinLibName } from "./render/builtinComponents"
|
||||||
export const loadBudibase = async opts => {
|
export const loadBudibase = async opts => {
|
||||||
const _window = (opts && opts.window) || window
|
const _window = (opts && opts.window) || window
|
||||||
// const _localStorage = (opts && opts.localStorage) || localStorage
|
// const _localStorage = (opts && opts.localStorage) || localStorage
|
||||||
|
const appId = getAppId(_window.document.cookie)
|
||||||
const frontendDefinition = _window["##BUDIBASE_FRONTEND_DEFINITION##"]
|
const frontendDefinition = _window["##BUDIBASE_FRONTEND_DEFINITION##"]
|
||||||
|
|
||||||
const user = {}
|
const user = {}
|
||||||
|
@ -20,9 +21,7 @@ export const loadBudibase = async opts => {
|
||||||
for (let library of libraries) {
|
for (let library of libraries) {
|
||||||
// fetch the JavaScript for the component libraries from the server
|
// fetch the JavaScript for the component libraries from the server
|
||||||
componentLibraryModules[library] = await import(
|
componentLibraryModules[library] = await import(
|
||||||
`/${frontendDefinition.appId}/componentlibrary?library=${encodeURI(
|
`/componentlibrary?library=${encodeURI(library)}`
|
||||||
library
|
|
||||||
)}`
|
|
||||||
)
|
)
|
||||||
}
|
}
|
||||||
|
|
||||||
|
@ -38,11 +37,11 @@ export const loadBudibase = async opts => {
|
||||||
componentLibraries: componentLibraryModules,
|
componentLibraries: componentLibraryModules,
|
||||||
frontendDefinition,
|
frontendDefinition,
|
||||||
user,
|
user,
|
||||||
window,
|
window: _window,
|
||||||
})
|
})
|
||||||
|
|
||||||
const route = _window.location
|
const route = _window.location
|
||||||
? _window.location.pathname.replace(frontendDefinition.appRootPath, "")
|
? _window.location.pathname.replace(`${appId}/`, "").replace(appId, "")
|
||||||
: ""
|
: ""
|
||||||
|
|
||||||
initialisePage(frontendDefinition.page, _window.document.body, route)
|
initialisePage(frontendDefinition.page, _window.document.body, route)
|
||||||
|
|
|
@ -0,0 +1,12 @@
|
||||||
|
export const getAppId = docCookie => {
|
||||||
|
const cookie =
|
||||||
|
docCookie.split(";").find(c => c.trim().startsWith("budibase:token")) ||
|
||||||
|
docCookie.split(";").find(c => c.trim().startsWith("builder:token"))
|
||||||
|
|
||||||
|
const base64Token = cookie.substring(lengthOfKey)
|
||||||
|
|
||||||
|
const user = JSON.parse(atob(base64Token.split(".")[1]))
|
||||||
|
return user.appId
|
||||||
|
}
|
||||||
|
|
||||||
|
const lengthOfKey = "budibase:token=".length
|
|
@ -1,11 +1,20 @@
|
||||||
import regexparam from "regexparam"
|
import regexparam from "regexparam"
|
||||||
import { routerStore } from "../state/store"
|
import { routerStore } from "../state/store"
|
||||||
|
import { getAppId } from "./getAppId"
|
||||||
|
|
||||||
export const screenRouter = ({ screens, onScreenSelected, appRootPath }) => {
|
export const screenRouter = ({ screens, onScreenSelected, window }) => {
|
||||||
const makeRootedPath = url => {
|
const makeRootedPath = url => {
|
||||||
if (appRootPath) {
|
if (
|
||||||
if (url) return `${appRootPath}${url.startsWith("/") ? "" : "/"}${url}`
|
window.location &&
|
||||||
return appRootPath
|
(window.location.hostname === "localhost" ||
|
||||||
|
window.location.hostname === "127.0.0.1")
|
||||||
|
) {
|
||||||
|
const appId = getAppId(window.document.cookie)
|
||||||
|
if (url) {
|
||||||
|
if (url.startsWith(appId)) return url
|
||||||
|
return `/${appId}${url.startsWith("/") ? "" : "/"}${url}`
|
||||||
|
}
|
||||||
|
return appId
|
||||||
}
|
}
|
||||||
return url
|
return url
|
||||||
}
|
}
|
||||||
|
@ -70,7 +79,7 @@ export const screenRouter = ({ screens, onScreenSelected, appRootPath }) => {
|
||||||
)
|
)
|
||||||
return
|
return
|
||||||
|
|
||||||
const target = x.target || "_self"
|
const target = (x && x.target) || "_self"
|
||||||
if (!y || target !== "_self" || x.host !== location.host) return
|
if (!y || target !== "_self" || x.host !== location.host) return
|
||||||
|
|
||||||
e.preventDefault()
|
e.preventDefault()
|
||||||
|
|
|
@ -6,31 +6,19 @@ export const trimSlash = str => str.replace(/^\/+|\/+$/g, "")
|
||||||
|
|
||||||
export const bbFactory = ({
|
export const bbFactory = ({
|
||||||
store,
|
store,
|
||||||
frontendDefinition,
|
|
||||||
componentLibraries,
|
componentLibraries,
|
||||||
onScreenSlotRendered,
|
onScreenSlotRendered,
|
||||||
}) => {
|
}) => {
|
||||||
const relativeUrl = url => {
|
const apiCall = method => (url, body) => {
|
||||||
if (!frontendDefinition.appRootPath) return url
|
return fetch(url, {
|
||||||
if (
|
|
||||||
url.startsWith("http:") ||
|
|
||||||
url.startsWith("https:") ||
|
|
||||||
url.startsWith("./")
|
|
||||||
)
|
|
||||||
return url
|
|
||||||
|
|
||||||
return frontendDefinition.appRootPath + "/" + trimSlash(url)
|
|
||||||
}
|
|
||||||
|
|
||||||
const apiCall = method => (url, body) =>
|
|
||||||
fetch(url, {
|
|
||||||
method: method,
|
method: method,
|
||||||
headers: {
|
headers: {
|
||||||
"Content-Type": "application/json",
|
"Content-Type": "application/json",
|
||||||
"x-user-agent": "Budibase Builder",
|
|
||||||
},
|
},
|
||||||
body: body && JSON.stringify(body),
|
body: body && JSON.stringify(body),
|
||||||
|
credentials: "same-origin",
|
||||||
})
|
})
|
||||||
|
}
|
||||||
|
|
||||||
const api = {
|
const api = {
|
||||||
post: apiCall("POST"),
|
post: apiCall("POST"),
|
||||||
|
@ -63,7 +51,6 @@ export const bbFactory = ({
|
||||||
getContext: getContext(treeNode),
|
getContext: getContext(treeNode),
|
||||||
setContext: setContext(treeNode),
|
setContext: setContext(treeNode),
|
||||||
store: store,
|
store: store,
|
||||||
relativeUrl,
|
|
||||||
api,
|
api,
|
||||||
parent,
|
parent,
|
||||||
}
|
}
|
||||||
|
|
|
@ -6,14 +6,13 @@ import { createApi } from "../api"
|
||||||
|
|
||||||
export const EVENT_TYPE_MEMBER_NAME = "##eventHandlerType"
|
export const EVENT_TYPE_MEMBER_NAME = "##eventHandlerType"
|
||||||
|
|
||||||
export const eventHandlers = (rootPath, routeTo) => {
|
export const eventHandlers = routeTo => {
|
||||||
const handler = (parameters, execute) => ({
|
const handler = (parameters, execute) => ({
|
||||||
execute,
|
execute,
|
||||||
parameters,
|
parameters,
|
||||||
})
|
})
|
||||||
|
|
||||||
const api = createApi({
|
const api = createApi({
|
||||||
rootPath,
|
|
||||||
setState,
|
setState,
|
||||||
getState: (path, fallback) => getState(path, fallback),
|
getState: (path, fallback) => getState(path, fallback),
|
||||||
})
|
})
|
||||||
|
|
|
@ -21,13 +21,11 @@ const isMetaProp = propName =>
|
||||||
propName === "_styles"
|
propName === "_styles"
|
||||||
|
|
||||||
export const createStateManager = ({
|
export const createStateManager = ({
|
||||||
appRootPath,
|
|
||||||
frontendDefinition,
|
|
||||||
componentLibraries,
|
componentLibraries,
|
||||||
onScreenSlotRendered,
|
onScreenSlotRendered,
|
||||||
routeTo,
|
routeTo,
|
||||||
}) => {
|
}) => {
|
||||||
let handlerTypes = eventHandlers(appRootPath, routeTo)
|
let handlerTypes = eventHandlers(routeTo)
|
||||||
let currentState
|
let currentState
|
||||||
|
|
||||||
const getCurrentState = () => currentState
|
const getCurrentState = () => currentState
|
||||||
|
@ -35,7 +33,6 @@ export const createStateManager = ({
|
||||||
const bb = bbFactory({
|
const bb = bbFactory({
|
||||||
store: appStore,
|
store: appStore,
|
||||||
getCurrentState,
|
getCurrentState,
|
||||||
frontendDefinition,
|
|
||||||
componentLibraries,
|
componentLibraries,
|
||||||
onScreenSlotRendered,
|
onScreenSlotRendered,
|
||||||
})
|
})
|
||||||
|
|
|
@ -18,7 +18,7 @@ describe("screenRouting", () => {
|
||||||
|
|
||||||
it("should load correct screen, for initial URL, when appRootPath is something", async () => {
|
it("should load correct screen, for initial URL, when appRootPath is something", async () => {
|
||||||
const { page, screens } = pageWith3Screens()
|
const { page, screens } = pageWith3Screens()
|
||||||
const { dom } = await load(page, screens, "/testApp/screen2", "/testApp")
|
const { dom } = await load(page, screens, "/TEST_APP_ID/screen2", "127.0.0.1")
|
||||||
|
|
||||||
const rootDiv = dom.window.document.body.children[0]
|
const rootDiv = dom.window.document.body.children[0]
|
||||||
expect(rootDiv.children.length).toBe(1)
|
expect(rootDiv.children.length).toBe(1)
|
||||||
|
@ -50,8 +50,8 @@ describe("screenRouting", () => {
|
||||||
const { dom, app } = await load(
|
const { dom, app } = await load(
|
||||||
page,
|
page,
|
||||||
screens,
|
screens,
|
||||||
"/testApp/screen2",
|
"/TEST_APP_ID/screen2",
|
||||||
"/testApp"
|
"127.0.0.1"
|
||||||
)
|
)
|
||||||
|
|
||||||
app.routeTo()("/screen3")
|
app.routeTo()("/screen3")
|
||||||
|
|
|
@ -1,19 +1,33 @@
|
||||||
import { JSDOM } from "jsdom"
|
import jsdom, { JSDOM } from "jsdom"
|
||||||
import { loadBudibase } from "../src/index"
|
import { loadBudibase } from "../src/index"
|
||||||
|
|
||||||
export const load = async (page, screens, url, appRootPath) => {
|
export const load = async (page, screens, url, host = "test.com") => {
|
||||||
screens = screens || []
|
screens = screens || []
|
||||||
url = url || "/"
|
url = url || "/"
|
||||||
appRootPath = appRootPath || ""
|
|
||||||
|
const fullUrl = `http://${host}${url}`
|
||||||
|
const cookieJar = new jsdom.CookieJar()
|
||||||
|
const cookie = `${btoa("{}")}.${btoa('{"appId":"TEST_APP_ID"}')}.signature`
|
||||||
|
cookieJar.setCookie(
|
||||||
|
`budibase:token=${cookie};domain=${host};path=/`,
|
||||||
|
fullUrl,
|
||||||
|
{
|
||||||
|
looseMode: false,
|
||||||
|
},
|
||||||
|
() => {}
|
||||||
|
)
|
||||||
|
|
||||||
const dom = new JSDOM("<!DOCTYPE html><html><body></body><html>", {
|
const dom = new JSDOM("<!DOCTYPE html><html><body></body><html>", {
|
||||||
url: `http://test${url}`,
|
url: fullUrl,
|
||||||
|
cookieJar,
|
||||||
})
|
})
|
||||||
|
|
||||||
autoAssignIds(page.props)
|
autoAssignIds(page.props)
|
||||||
for (let s of screens) {
|
for (let s of screens) {
|
||||||
autoAssignIds(s.props)
|
autoAssignIds(s.props)
|
||||||
}
|
}
|
||||||
setAppDef(dom.window, page, screens)
|
setAppDef(dom.window, page, screens)
|
||||||
addWindowGlobals(dom.window, page, screens, appRootPath, {
|
addWindowGlobals(dom.window, page, screens, {
|
||||||
hierarchy: {},
|
hierarchy: {},
|
||||||
actions: [],
|
actions: [],
|
||||||
triggers: [],
|
triggers: [],
|
||||||
|
@ -27,11 +41,10 @@ export const load = async (page, screens, url, appRootPath) => {
|
||||||
return { dom, app }
|
return { dom, app }
|
||||||
}
|
}
|
||||||
|
|
||||||
const addWindowGlobals = (window, page, screens, appRootPath) => {
|
const addWindowGlobals = (window, page, screens) => {
|
||||||
window["##BUDIBASE_FRONTEND_DEFINITION##"] = {
|
window["##BUDIBASE_FRONTEND_DEFINITION##"] = {
|
||||||
page,
|
page,
|
||||||
screens,
|
screens,
|
||||||
appRootPath,
|
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
@ -88,7 +101,6 @@ const setAppDef = (window, page, screens) => {
|
||||||
componentLibraries: [],
|
componentLibraries: [],
|
||||||
page,
|
page,
|
||||||
screens,
|
screens,
|
||||||
appRootPath: "",
|
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
|
@ -14,12 +14,6 @@ export default async () => {
|
||||||
componentLibraries["@budibase/standard-components"] = standardcomponents
|
componentLibraries["@budibase/standard-components"] = standardcomponents
|
||||||
const appDef = { hierarchy: {}, actions: {} }
|
const appDef = { hierarchy: {}, actions: {} }
|
||||||
const user = { name: "yeo", permissions: [] }
|
const user = { name: "yeo", permissions: [] }
|
||||||
const { initialisePage } = createApp(
|
const { initialisePage } = createApp(componentLibraries, {}, appDef, user, {})
|
||||||
componentLibraries,
|
|
||||||
{ appRootPath: "" },
|
|
||||||
appDef,
|
|
||||||
user,
|
|
||||||
{}
|
|
||||||
)
|
|
||||||
return initialisePage
|
return initialisePage
|
||||||
}
|
}
|
||||||
|
|
|
@ -8,7 +8,7 @@ const {
|
||||||
} = require("../../utilities/accessLevels")
|
} = require("../../utilities/accessLevels")
|
||||||
|
|
||||||
exports.fetch = async function(ctx) {
|
exports.fetch = async function(ctx) {
|
||||||
const db = new CouchDB(ctx.params.instanceId)
|
const db = new CouchDB(ctx.user.instanceId)
|
||||||
const body = await db.query("database/by_type", {
|
const body = await db.query("database/by_type", {
|
||||||
include_docs: true,
|
include_docs: true,
|
||||||
key: ["accesslevel"],
|
key: ["accesslevel"],
|
||||||
|
@ -19,12 +19,12 @@ exports.fetch = async function(ctx) {
|
||||||
{
|
{
|
||||||
_id: ADMIN_LEVEL_ID,
|
_id: ADMIN_LEVEL_ID,
|
||||||
name: "Admin",
|
name: "Admin",
|
||||||
permissions: await generateAdminPermissions(ctx.params.instanceId),
|
permissions: await generateAdminPermissions(ctx.user.instanceId),
|
||||||
},
|
},
|
||||||
{
|
{
|
||||||
_id: POWERUSER_LEVEL_ID,
|
_id: POWERUSER_LEVEL_ID,
|
||||||
name: "Power User",
|
name: "Power User",
|
||||||
permissions: await generatePowerUserPermissions(ctx.params.instanceId),
|
permissions: await generatePowerUserPermissions(ctx.user.instanceId),
|
||||||
},
|
},
|
||||||
]
|
]
|
||||||
|
|
||||||
|
@ -32,12 +32,12 @@ exports.fetch = async function(ctx) {
|
||||||
}
|
}
|
||||||
|
|
||||||
exports.find = async function(ctx) {
|
exports.find = async function(ctx) {
|
||||||
const db = new CouchDB(ctx.params.instanceId)
|
const db = new CouchDB(ctx.user.instanceId)
|
||||||
ctx.body = await db.get(ctx.params.levelId)
|
ctx.body = await db.get(ctx.params.levelId)
|
||||||
}
|
}
|
||||||
|
|
||||||
exports.update = async function(ctx) {
|
exports.update = async function(ctx) {
|
||||||
const db = new CouchDB(ctx.params.instanceId)
|
const db = new CouchDB(ctx.user.instanceId)
|
||||||
const level = await db.get(ctx.params.levelId)
|
const level = await db.get(ctx.params.levelId)
|
||||||
level.name = ctx.body.name
|
level.name = ctx.body.name
|
||||||
level.permissions = ctx.request.body.permissions
|
level.permissions = ctx.request.body.permissions
|
||||||
|
@ -48,7 +48,7 @@ exports.update = async function(ctx) {
|
||||||
}
|
}
|
||||||
|
|
||||||
exports.patch = async function(ctx) {
|
exports.patch = async function(ctx) {
|
||||||
const db = new CouchDB(ctx.params.instanceId)
|
const db = new CouchDB(ctx.user.instanceId)
|
||||||
const level = await db.get(ctx.params.levelId)
|
const level = await db.get(ctx.params.levelId)
|
||||||
const { removedPermissions, addedPermissions, _rev } = ctx.request.body
|
const { removedPermissions, addedPermissions, _rev } = ctx.request.body
|
||||||
|
|
||||||
|
@ -84,7 +84,7 @@ exports.patch = async function(ctx) {
|
||||||
}
|
}
|
||||||
|
|
||||||
exports.create = async function(ctx) {
|
exports.create = async function(ctx) {
|
||||||
const db = new CouchDB(ctx.params.instanceId)
|
const db = new CouchDB(ctx.user.instanceId)
|
||||||
|
|
||||||
const level = {
|
const level = {
|
||||||
name: ctx.request.body.name,
|
name: ctx.request.body.name,
|
||||||
|
@ -101,7 +101,7 @@ exports.create = async function(ctx) {
|
||||||
}
|
}
|
||||||
|
|
||||||
exports.destroy = async function(ctx) {
|
exports.destroy = async function(ctx) {
|
||||||
const db = new CouchDB(ctx.params.instanceId)
|
const db = new CouchDB(ctx.user.instanceId)
|
||||||
await db.remove(ctx.params.levelId, ctx.params.rev)
|
await db.remove(ctx.params.levelId, ctx.params.rev)
|
||||||
ctx.message = `Access Level ${ctx.params.id} deleted successfully`
|
ctx.message = `Access Level ${ctx.params.id} deleted successfully`
|
||||||
ctx.status = 200
|
ctx.status = 200
|
||||||
|
|
|
@ -9,6 +9,7 @@ const { copy, exists, readFile, writeFile } = require("fs-extra")
|
||||||
const { budibaseAppsDir } = require("../../utilities/budibaseDir")
|
const { budibaseAppsDir } = require("../../utilities/budibaseDir")
|
||||||
const { exec } = require("child_process")
|
const { exec } = require("child_process")
|
||||||
const sqrl = require("squirrelly")
|
const sqrl = require("squirrelly")
|
||||||
|
const setBuilderToken = require("../../utilities/builder/setBuilderToken")
|
||||||
|
|
||||||
exports.fetch = async function(ctx) {
|
exports.fetch = async function(ctx) {
|
||||||
const db = new CouchDB(ClientDb.name(getClientId(ctx)))
|
const db = new CouchDB(ClientDb.name(getClientId(ctx)))
|
||||||
|
@ -25,6 +26,14 @@ exports.fetchAppPackage = async function(ctx) {
|
||||||
const db = new CouchDB(ClientDb.name(clientId))
|
const db = new CouchDB(ClientDb.name(clientId))
|
||||||
const application = await db.get(ctx.params.applicationId)
|
const application = await db.get(ctx.params.applicationId)
|
||||||
ctx.body = await getPackageForBuilder(ctx.config, application)
|
ctx.body = await getPackageForBuilder(ctx.config, application)
|
||||||
|
/*
|
||||||
|
instance is hardcoded now - this can only change when we move
|
||||||
|
pages and screens into the database
|
||||||
|
*/
|
||||||
|
const devInstance = application.instances.find(
|
||||||
|
i => i.name === `dev-${clientId}`
|
||||||
|
)
|
||||||
|
setBuilderToken(ctx, ctx.params.applicationId, devInstance._id)
|
||||||
}
|
}
|
||||||
|
|
||||||
exports.create = async function(ctx) {
|
exports.create = async function(ctx) {
|
||||||
|
@ -37,10 +46,12 @@ exports.create = async function(ctx) {
|
||||||
const appId = newid()
|
const appId = newid()
|
||||||
// insert an appId -> clientId lookup
|
// insert an appId -> clientId lookup
|
||||||
const masterDb = new CouchDB("clientAppLookup")
|
const masterDb = new CouchDB("clientAppLookup")
|
||||||
|
|
||||||
await masterDb.put({
|
await masterDb.put({
|
||||||
_id: appId,
|
_id: appId,
|
||||||
clientId,
|
clientId,
|
||||||
})
|
})
|
||||||
|
|
||||||
const db = new CouchDB(ClientDb.name(clientId))
|
const db = new CouchDB(ClientDb.name(clientId))
|
||||||
|
|
||||||
const newApplication = {
|
const newApplication = {
|
||||||
|
@ -56,18 +67,18 @@ exports.create = async function(ctx) {
|
||||||
description: ctx.request.body.description,
|
description: ctx.request.body.description,
|
||||||
}
|
}
|
||||||
|
|
||||||
const { rev } = await db.post(newApplication)
|
const { rev } = await db.put(newApplication)
|
||||||
newApplication._rev = rev
|
newApplication._rev = rev
|
||||||
|
|
||||||
const createInstCtx = {
|
const createInstCtx = {
|
||||||
params: {
|
user: {
|
||||||
applicationId: newApplication._id,
|
appId: newApplication._id,
|
||||||
},
|
},
|
||||||
request: {
|
request: {
|
||||||
body: { name: `dev-${clientId}` },
|
body: { name: `dev-${clientId}` },
|
||||||
},
|
},
|
||||||
}
|
}
|
||||||
await instanceController.create(createInstCtx)
|
await instanceController.create(createInstCtx)
|
||||||
|
newApplication.instances.push(createInstCtx.body)
|
||||||
|
|
||||||
if (ctx.isDev) {
|
if (ctx.isDev) {
|
||||||
const newAppFolder = await createEmptyAppPackage(ctx, newApplication)
|
const newAppFolder = await createEmptyAppPackage(ctx, newApplication)
|
||||||
|
|
|
@ -4,25 +4,31 @@ const ClientDb = require("../../db/clientDb")
|
||||||
const bcrypt = require("../../utilities/bcrypt")
|
const bcrypt = require("../../utilities/bcrypt")
|
||||||
|
|
||||||
exports.authenticate = async ctx => {
|
exports.authenticate = async ctx => {
|
||||||
|
if (!ctx.user.appId) ctx.throw(400, "No appId")
|
||||||
|
|
||||||
const { username, password } = ctx.request.body
|
const { username, password } = ctx.request.body
|
||||||
|
|
||||||
if (!username) ctx.throw(400, "Username Required.")
|
if (!username) ctx.throw(400, "Username Required.")
|
||||||
if (!password) ctx.throw(400, "Password Required")
|
if (!password) ctx.throw(400, "Password Required")
|
||||||
|
|
||||||
const masterDb = new CouchDB("clientAppLookup")
|
const masterDb = new CouchDB("clientAppLookup")
|
||||||
const { clientId } = await masterDb.get(ctx.params.appId)
|
|
||||||
|
const { clientId } = await masterDb.get(ctx.user.appId)
|
||||||
|
|
||||||
if (!clientId) {
|
if (!clientId) {
|
||||||
ctx.throw(400, "ClientId not suplied")
|
ctx.throw(400, "ClientId not suplied")
|
||||||
}
|
}
|
||||||
// find the instance that the user is associated with
|
// find the instance that the user is associated with
|
||||||
const db = new CouchDB(ClientDb.name(clientId))
|
const db = new CouchDB(ClientDb.name(clientId))
|
||||||
const appId = ctx.params.appId
|
const app = await db.get(ctx.user.appId)
|
||||||
const app = await db.get(appId)
|
|
||||||
const instanceId = app.userInstanceMap[username]
|
const instanceId = app.userInstanceMap[username]
|
||||||
|
|
||||||
if (!instanceId)
|
if (!instanceId)
|
||||||
ctx.throw(500, "User is not associated with an instance of app", appId)
|
ctx.throw(
|
||||||
|
500,
|
||||||
|
"User is not associated with an instance of app",
|
||||||
|
ctx.user.appId
|
||||||
|
)
|
||||||
|
|
||||||
// Check the user exists in the instance DB by username
|
// Check the user exists in the instance DB by username
|
||||||
const instanceDb = new CouchDB(instanceId)
|
const instanceDb = new CouchDB(instanceId)
|
||||||
|
@ -41,16 +47,22 @@ exports.authenticate = async ctx => {
|
||||||
const payload = {
|
const payload = {
|
||||||
userId: dbUser._id,
|
userId: dbUser._id,
|
||||||
accessLevelId: dbUser.accessLevelId,
|
accessLevelId: dbUser.accessLevelId,
|
||||||
instanceId: instanceId,
|
appId: ctx.user.appId,
|
||||||
|
instanceId,
|
||||||
}
|
}
|
||||||
|
|
||||||
const token = jwt.sign(payload, ctx.config.jwtSecret, {
|
const token = jwt.sign(payload, ctx.config.jwtSecret, {
|
||||||
expiresIn: "1 day",
|
expiresIn: "1 day",
|
||||||
})
|
})
|
||||||
|
|
||||||
const ONE_DAY_FROM_NOW = new Date(Date.now() + 24 * 3600)
|
const expires = new Date()
|
||||||
|
expires.setDate(expires.getDate() + 1)
|
||||||
|
|
||||||
ctx.cookies.set("budibase:token", token, { expires: ONE_DAY_FROM_NOW })
|
ctx.cookies.set("budibase:token", token, {
|
||||||
|
expires,
|
||||||
|
path: "/",
|
||||||
|
httpOnly: false,
|
||||||
|
})
|
||||||
|
|
||||||
ctx.body = {
|
ctx.body = {
|
||||||
token,
|
token,
|
||||||
|
|
|
@ -4,19 +4,19 @@ const newid = require("../../db/newid")
|
||||||
|
|
||||||
exports.create = async function(ctx) {
|
exports.create = async function(ctx) {
|
||||||
const instanceName = ctx.request.body.name
|
const instanceName = ctx.request.body.name
|
||||||
const appShortId = ctx.params.applicationId.substring(0, 7)
|
const { appId } = ctx.user
|
||||||
|
const appShortId = appId.substring(0, 7)
|
||||||
const instanceId = `inst_${appShortId}_${newid()}`
|
const instanceId = `inst_${appShortId}_${newid()}`
|
||||||
const { applicationId } = ctx.params
|
|
||||||
|
|
||||||
const masterDb = new CouchDB("clientAppLookup")
|
const masterDb = new CouchDB("clientAppLookup")
|
||||||
const { clientId } = await masterDb.get(applicationId)
|
const { clientId } = await masterDb.get(appId)
|
||||||
|
|
||||||
const db = new CouchDB(instanceId)
|
const db = new CouchDB(instanceId)
|
||||||
await db.put({
|
await db.put({
|
||||||
_id: "_design/database",
|
_id: "_design/database",
|
||||||
metadata: {
|
metadata: {
|
||||||
clientId,
|
clientId,
|
||||||
applicationId,
|
applicationId: appId,
|
||||||
},
|
},
|
||||||
views: {
|
views: {
|
||||||
by_username: {
|
by_username: {
|
||||||
|
@ -46,7 +46,7 @@ exports.create = async function(ctx) {
|
||||||
|
|
||||||
// Add the new instance under the app clientDB
|
// Add the new instance under the app clientDB
|
||||||
const clientDb = new CouchDB(client.name(clientId))
|
const clientDb = new CouchDB(client.name(clientId))
|
||||||
const budibaseApp = await clientDb.get(applicationId)
|
const budibaseApp = await clientDb.get(appId)
|
||||||
const instance = { _id: instanceId, name: instanceName }
|
const instance = { _id: instanceId, name: instanceName }
|
||||||
budibaseApp.instances.push(instance)
|
budibaseApp.instances.push(instance)
|
||||||
await clientDb.put(budibaseApp)
|
await clientDb.put(budibaseApp)
|
||||||
|
|
|
@ -2,7 +2,7 @@ const CouchDB = require("../../db")
|
||||||
const newid = require("../../db/newid")
|
const newid = require("../../db/newid")
|
||||||
|
|
||||||
exports.fetch = async function(ctx) {
|
exports.fetch = async function(ctx) {
|
||||||
const db = new CouchDB(ctx.params.instanceId)
|
const db = new CouchDB(ctx.user.instanceId)
|
||||||
const body = await db.query("database/by_type", {
|
const body = await db.query("database/by_type", {
|
||||||
include_docs: true,
|
include_docs: true,
|
||||||
key: ["model"],
|
key: ["model"],
|
||||||
|
@ -11,13 +11,13 @@ exports.fetch = async function(ctx) {
|
||||||
}
|
}
|
||||||
|
|
||||||
exports.find = async function(ctx) {
|
exports.find = async function(ctx) {
|
||||||
const db = new CouchDB(ctx.params.instanceId)
|
const db = new CouchDB(ctx.user.instanceId)
|
||||||
const model = await db.get(ctx.params.id)
|
const model = await db.get(ctx.params.id)
|
||||||
ctx.body = model
|
ctx.body = model
|
||||||
}
|
}
|
||||||
|
|
||||||
exports.create = async function(ctx) {
|
exports.create = async function(ctx) {
|
||||||
const db = new CouchDB(ctx.params.instanceId)
|
const db = new CouchDB(ctx.user.instanceId)
|
||||||
const newModel = {
|
const newModel = {
|
||||||
type: "model",
|
type: "model",
|
||||||
...ctx.request.body,
|
...ctx.request.body,
|
||||||
|
@ -65,7 +65,7 @@ exports.create = async function(ctx) {
|
||||||
exports.update = async function() {}
|
exports.update = async function() {}
|
||||||
|
|
||||||
exports.destroy = async function(ctx) {
|
exports.destroy = async function(ctx) {
|
||||||
const db = new CouchDB(ctx.params.instanceId)
|
const db = new CouchDB(ctx.user.instanceId)
|
||||||
|
|
||||||
const modelToDelete = await db.get(ctx.params.modelId)
|
const modelToDelete = await db.get(ctx.params.modelId)
|
||||||
|
|
||||||
|
|
|
@ -3,7 +3,7 @@ const validateJs = require("validate.js")
|
||||||
const newid = require("../../db/newid")
|
const newid = require("../../db/newid")
|
||||||
|
|
||||||
exports.save = async function(ctx) {
|
exports.save = async function(ctx) {
|
||||||
const db = new CouchDB(ctx.params.instanceId)
|
const db = new CouchDB(ctx.user.instanceId)
|
||||||
const record = ctx.request.body
|
const record = ctx.request.body
|
||||||
record.modelId = ctx.params.modelId
|
record.modelId = ctx.params.modelId
|
||||||
|
|
||||||
|
@ -46,7 +46,7 @@ exports.save = async function(ctx) {
|
||||||
ctx.eventEmitter &&
|
ctx.eventEmitter &&
|
||||||
ctx.eventEmitter.emit(`record:save`, {
|
ctx.eventEmitter.emit(`record:save`, {
|
||||||
record,
|
record,
|
||||||
instanceId: ctx.params.instanceId,
|
instanceId: ctx.user.instanceId,
|
||||||
})
|
})
|
||||||
ctx.body = record
|
ctx.body = record
|
||||||
ctx.status = 200
|
ctx.status = 200
|
||||||
|
@ -54,7 +54,7 @@ exports.save = async function(ctx) {
|
||||||
}
|
}
|
||||||
|
|
||||||
exports.fetchView = async function(ctx) {
|
exports.fetchView = async function(ctx) {
|
||||||
const db = new CouchDB(ctx.params.instanceId)
|
const db = new CouchDB(ctx.user.instanceId)
|
||||||
const response = await db.query(`database/${ctx.params.viewName}`, {
|
const response = await db.query(`database/${ctx.params.viewName}`, {
|
||||||
include_docs: true,
|
include_docs: true,
|
||||||
})
|
})
|
||||||
|
@ -62,7 +62,7 @@ exports.fetchView = async function(ctx) {
|
||||||
}
|
}
|
||||||
|
|
||||||
exports.fetchModelRecords = async function(ctx) {
|
exports.fetchModelRecords = async function(ctx) {
|
||||||
const db = new CouchDB(ctx.params.instanceId)
|
const db = new CouchDB(ctx.user.instanceId)
|
||||||
const response = await db.query(`database/all_${ctx.params.modelId}`, {
|
const response = await db.query(`database/all_${ctx.params.modelId}`, {
|
||||||
include_docs: true,
|
include_docs: true,
|
||||||
})
|
})
|
||||||
|
@ -70,7 +70,7 @@ exports.fetchModelRecords = async function(ctx) {
|
||||||
}
|
}
|
||||||
|
|
||||||
exports.search = async function(ctx) {
|
exports.search = async function(ctx) {
|
||||||
const db = new CouchDB(ctx.params.instanceId)
|
const db = new CouchDB(ctx.user.instanceId)
|
||||||
const response = await db.allDocs({
|
const response = await db.allDocs({
|
||||||
include_docs: true,
|
include_docs: true,
|
||||||
...ctx.request.body,
|
...ctx.request.body,
|
||||||
|
@ -79,7 +79,7 @@ exports.search = async function(ctx) {
|
||||||
}
|
}
|
||||||
|
|
||||||
exports.find = async function(ctx) {
|
exports.find = async function(ctx) {
|
||||||
const db = new CouchDB(ctx.params.instanceId)
|
const db = new CouchDB(ctx.user.instanceId)
|
||||||
const record = await db.get(ctx.params.recordId)
|
const record = await db.get(ctx.params.recordId)
|
||||||
if (record.modelId !== ctx.params.modelId) {
|
if (record.modelId !== ctx.params.modelId) {
|
||||||
ctx.throw(400, "Supplied modelId doe not match the record's modelId")
|
ctx.throw(400, "Supplied modelId doe not match the record's modelId")
|
||||||
|
@ -89,7 +89,7 @@ exports.find = async function(ctx) {
|
||||||
}
|
}
|
||||||
|
|
||||||
exports.destroy = async function(ctx) {
|
exports.destroy = async function(ctx) {
|
||||||
const db = new CouchDB(ctx.params.instanceId)
|
const db = new CouchDB(ctx.user.instanceId)
|
||||||
const record = await db.get(ctx.params.recordId)
|
const record = await db.get(ctx.params.recordId)
|
||||||
if (record.modelId !== ctx.params.modelId) {
|
if (record.modelId !== ctx.params.modelId) {
|
||||||
ctx.throw(400, "Supplied modelId doe not match the record's modelId")
|
ctx.throw(400, "Supplied modelId doe not match the record's modelId")
|
||||||
|
@ -101,7 +101,7 @@ exports.destroy = async function(ctx) {
|
||||||
|
|
||||||
exports.validate = async function(ctx) {
|
exports.validate = async function(ctx) {
|
||||||
const errors = await validate({
|
const errors = await validate({
|
||||||
instanceId: ctx.params.instanceId,
|
instanceId: ctx.user.instanceId,
|
||||||
modelId: ctx.params.modelId,
|
modelId: ctx.params.modelId,
|
||||||
record: ctx.request.body,
|
record: ctx.request.body,
|
||||||
})
|
})
|
||||||
|
|
|
@ -4,11 +4,15 @@ const {
|
||||||
budibaseAppsDir,
|
budibaseAppsDir,
|
||||||
budibaseTempDir,
|
budibaseTempDir,
|
||||||
} = require("../../utilities/budibaseDir")
|
} = require("../../utilities/budibaseDir")
|
||||||
const env = require("../../environment")
|
const setBuilderToken = require("../../utilities/builder/setBuilderToken")
|
||||||
|
const { ANON_LEVEL_ID } = require("../../utilities/accessLevels")
|
||||||
|
const jwt = require("jsonwebtoken")
|
||||||
|
|
||||||
exports.serveBuilder = async function(ctx) {
|
exports.serveBuilder = async function(ctx) {
|
||||||
let builderPath = resolve(__dirname, "../../../builder")
|
let builderPath = resolve(__dirname, "../../../builder")
|
||||||
ctx.cookies.set("builder:token", env.ADMIN_SECRET)
|
if (ctx.file === "index.html") {
|
||||||
|
setBuilderToken(ctx)
|
||||||
|
}
|
||||||
await send(ctx, ctx.file, { root: ctx.devPath || builderPath })
|
await send(ctx, ctx.file, { root: ctx.devPath || builderPath })
|
||||||
}
|
}
|
||||||
|
|
||||||
|
@ -20,6 +24,33 @@ exports.serveApp = async function(ctx) {
|
||||||
"public",
|
"public",
|
||||||
ctx.isAuthenticated ? "main" : "unauthenticated"
|
ctx.isAuthenticated ? "main" : "unauthenticated"
|
||||||
)
|
)
|
||||||
|
// only set the appId cookie for /appId .. we COULD check for valid appIds
|
||||||
|
// but would like to avoid that DB hit
|
||||||
|
const looksLikeAppId = /^[0-9a-f]{32}$/.test(ctx.params.appId)
|
||||||
|
if (looksLikeAppId && !ctx.isAuthenticated) {
|
||||||
|
const anonUser = {
|
||||||
|
userId: "ANON",
|
||||||
|
accessLevelId: ANON_LEVEL_ID,
|
||||||
|
appId: ctx.params.appId,
|
||||||
|
}
|
||||||
|
const anonToken = jwt.sign(anonUser, ctx.config.jwtSecret)
|
||||||
|
ctx.cookies.set("budibase:token", anonToken, {
|
||||||
|
path: "/",
|
||||||
|
httpOnly: false,
|
||||||
|
})
|
||||||
|
}
|
||||||
|
|
||||||
|
await send(ctx, ctx.file || "index.html", { root: ctx.devPath || appPath })
|
||||||
|
}
|
||||||
|
|
||||||
|
exports.serveAppAsset = async function(ctx) {
|
||||||
|
// default to homedir
|
||||||
|
const appPath = resolve(
|
||||||
|
budibaseAppsDir(),
|
||||||
|
ctx.user.appId,
|
||||||
|
"public",
|
||||||
|
ctx.isAuthenticated ? "main" : "unauthenticated"
|
||||||
|
)
|
||||||
|
|
||||||
await send(ctx, ctx.file, { root: ctx.devPath || appPath })
|
await send(ctx, ctx.file, { root: ctx.devPath || appPath })
|
||||||
}
|
}
|
||||||
|
@ -28,7 +59,7 @@ exports.serveComponentLibrary = async function(ctx) {
|
||||||
// default to homedir
|
// default to homedir
|
||||||
let componentLibraryPath = resolve(
|
let componentLibraryPath = resolve(
|
||||||
budibaseAppsDir(),
|
budibaseAppsDir(),
|
||||||
ctx.params.appId,
|
ctx.user.appId,
|
||||||
"node_modules",
|
"node_modules",
|
||||||
decodeURI(ctx.query.library),
|
decodeURI(ctx.query.library),
|
||||||
"dist"
|
"dist"
|
||||||
|
|
|
@ -8,7 +8,7 @@ const {
|
||||||
} = require("../../utilities/accessLevels")
|
} = require("../../utilities/accessLevels")
|
||||||
|
|
||||||
exports.fetch = async function(ctx) {
|
exports.fetch = async function(ctx) {
|
||||||
const database = new CouchDB(ctx.params.instanceId)
|
const database = new CouchDB(ctx.user.instanceId)
|
||||||
const data = await database.query("database/by_type", {
|
const data = await database.query("database/by_type", {
|
||||||
include_docs: true,
|
include_docs: true,
|
||||||
key: ["user"],
|
key: ["user"],
|
||||||
|
@ -18,7 +18,7 @@ exports.fetch = async function(ctx) {
|
||||||
}
|
}
|
||||||
|
|
||||||
exports.create = async function(ctx) {
|
exports.create = async function(ctx) {
|
||||||
const database = new CouchDB(ctx.params.instanceId)
|
const database = new CouchDB(ctx.user.instanceId)
|
||||||
const appId = (await database.get("_design/database")).metadata.applicationId
|
const appId = (await database.get("_design/database")).metadata.applicationId
|
||||||
const { username, password, name, accessLevelId } = ctx.request.body
|
const { username, password, name, accessLevelId } = ctx.request.body
|
||||||
|
|
||||||
|
@ -50,7 +50,7 @@ exports.create = async function(ctx) {
|
||||||
|
|
||||||
app.userInstanceMap = {
|
app.userInstanceMap = {
|
||||||
...app.userInstanceMap,
|
...app.userInstanceMap,
|
||||||
[username]: ctx.params.instanceId,
|
[username]: ctx.user.instanceId,
|
||||||
}
|
}
|
||||||
await db.put(app)
|
await db.put(app)
|
||||||
|
|
||||||
|
@ -66,14 +66,14 @@ exports.create = async function(ctx) {
|
||||||
exports.update = async function() {}
|
exports.update = async function() {}
|
||||||
|
|
||||||
exports.destroy = async function(ctx) {
|
exports.destroy = async function(ctx) {
|
||||||
const database = new CouchDB(ctx.params.instanceId)
|
const database = new CouchDB(ctx.user.instanceId)
|
||||||
await database.destroy(getUserId(ctx.params.username))
|
await database.destroy(getUserId(ctx.params.username))
|
||||||
ctx.message = `User ${ctx.params.username} deleted.`
|
ctx.message = `User ${ctx.params.username} deleted.`
|
||||||
ctx.status = 200
|
ctx.status = 200
|
||||||
}
|
}
|
||||||
|
|
||||||
exports.find = async function(ctx) {
|
exports.find = async function(ctx) {
|
||||||
const database = new CouchDB(ctx.params.instanceId)
|
const database = new CouchDB(ctx.user.instanceId)
|
||||||
const user = await database.get(getUserId(ctx.params.username))
|
const user = await database.get(getUserId(ctx.params.username))
|
||||||
ctx.body = {
|
ctx.body = {
|
||||||
username: user.username,
|
username: user.username,
|
||||||
|
|
|
@ -3,7 +3,7 @@ const CouchDB = require("../../db")
|
||||||
const controller = {
|
const controller = {
|
||||||
query: async () => {},
|
query: async () => {},
|
||||||
fetch: async ctx => {
|
fetch: async ctx => {
|
||||||
const db = new CouchDB(ctx.params.instanceId)
|
const db = new CouchDB(ctx.user.instanceId)
|
||||||
const designDoc = await db.get("_design/database")
|
const designDoc = await db.get("_design/database")
|
||||||
const response = []
|
const response = []
|
||||||
|
|
||||||
|
@ -24,7 +24,7 @@ const controller = {
|
||||||
ctx.body = response
|
ctx.body = response
|
||||||
},
|
},
|
||||||
create: async ctx => {
|
create: async ctx => {
|
||||||
const db = new CouchDB(ctx.params.instanceId)
|
const db = new CouchDB(ctx.user.instanceId)
|
||||||
const newView = ctx.request.body
|
const newView = ctx.request.body
|
||||||
|
|
||||||
const designDoc = await db.get("_design/database")
|
const designDoc = await db.get("_design/database")
|
||||||
|
@ -38,7 +38,7 @@ const controller = {
|
||||||
ctx.message = `View ${newView.name} created successfully.`
|
ctx.message = `View ${newView.name} created successfully.`
|
||||||
},
|
},
|
||||||
destroy: async ctx => {
|
destroy: async ctx => {
|
||||||
const db = new CouchDB(ctx.params.instanceId)
|
const db = new CouchDB(ctx.user.instanceId)
|
||||||
ctx.body = await db.destroy(ctx.params.userId)
|
ctx.body = await db.destroy(ctx.params.userId)
|
||||||
},
|
},
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,7 +2,7 @@ const CouchDB = require("../../../db")
|
||||||
const newid = require("../../../db/newid")
|
const newid = require("../../../db/newid")
|
||||||
|
|
||||||
exports.create = async function(ctx) {
|
exports.create = async function(ctx) {
|
||||||
const db = new CouchDB(ctx.params.instanceId)
|
const db = new CouchDB(ctx.user.instanceId)
|
||||||
const workflow = ctx.request.body
|
const workflow = ctx.request.body
|
||||||
|
|
||||||
workflow._id = newid()
|
workflow._id = newid()
|
||||||
|
@ -22,7 +22,7 @@ exports.create = async function(ctx) {
|
||||||
}
|
}
|
||||||
|
|
||||||
exports.update = async function(ctx) {
|
exports.update = async function(ctx) {
|
||||||
const db = new CouchDB(ctx.params.instanceId)
|
const db = new CouchDB(ctx.user.instanceId)
|
||||||
const workflow = ctx.request.body
|
const workflow = ctx.request.body
|
||||||
|
|
||||||
const response = await db.put(workflow)
|
const response = await db.put(workflow)
|
||||||
|
@ -40,7 +40,7 @@ exports.update = async function(ctx) {
|
||||||
}
|
}
|
||||||
|
|
||||||
exports.fetch = async function(ctx) {
|
exports.fetch = async function(ctx) {
|
||||||
const db = new CouchDB(ctx.params.instanceId)
|
const db = new CouchDB(ctx.user.instanceId)
|
||||||
const response = await db.query(`database/by_type`, {
|
const response = await db.query(`database/by_type`, {
|
||||||
key: ["workflow"],
|
key: ["workflow"],
|
||||||
include_docs: true,
|
include_docs: true,
|
||||||
|
@ -69,6 +69,6 @@ exports.fetchActionScript = async function(ctx) {
|
||||||
}
|
}
|
||||||
|
|
||||||
exports.destroy = async function(ctx) {
|
exports.destroy = async function(ctx) {
|
||||||
const db = new CouchDB(ctx.params.instanceId)
|
const db = new CouchDB(ctx.user.instanceId)
|
||||||
ctx.body = await db.remove(ctx.params.id, ctx.params.rev)
|
ctx.body = await db.remove(ctx.params.id, ctx.params.rev)
|
||||||
}
|
}
|
||||||
|
|
|
@ -4,11 +4,11 @@ const controller = require("../controllers/accesslevel")
|
||||||
const router = Router()
|
const router = Router()
|
||||||
|
|
||||||
router
|
router
|
||||||
.post("/api/:instanceId/accesslevels", controller.create)
|
.post("/api/accesslevels", controller.create)
|
||||||
.put("/api/:instanceId/accesslevels", controller.update)
|
.put("/api/accesslevels", controller.update)
|
||||||
.get("/api/:instanceId/accesslevels", controller.fetch)
|
.get("/api/accesslevels", controller.fetch)
|
||||||
.get("/api/:instanceId/accesslevels/:levelId", controller.find)
|
.get("/api/accesslevels/:levelId", controller.find)
|
||||||
.delete("/api/:instanceId/accesslevels/:levelId/:rev", controller.destroy)
|
.delete("/api/accesslevels/:levelId/:rev", controller.destroy)
|
||||||
.patch("/api/:instanceId/accesslevels/:levelId", controller.patch)
|
.patch("/api/accesslevels/:levelId", controller.patch)
|
||||||
|
|
||||||
module.exports = router
|
module.exports = router
|
||||||
|
|
|
@ -3,6 +3,6 @@ const controller = require("../controllers/auth")
|
||||||
|
|
||||||
const router = Router()
|
const router = Router()
|
||||||
|
|
||||||
router.post("/:appId/api/authenticate", controller.authenticate)
|
router.post("/api/authenticate", controller.authenticate)
|
||||||
|
|
||||||
module.exports = router
|
module.exports = router
|
||||||
|
|
|
@ -6,7 +6,7 @@ const { BUILDER } = require("../../utilities/accessLevels")
|
||||||
const router = Router()
|
const router = Router()
|
||||||
|
|
||||||
router
|
router
|
||||||
.post("/api/:applicationId/instances", authorized(BUILDER), controller.create)
|
.post("/api/instances", authorized(BUILDER), controller.create)
|
||||||
.delete("/api/instances/:instanceId", authorized(BUILDER), controller.destroy)
|
.delete("/api/instances/:instanceId", authorized(BUILDER), controller.destroy)
|
||||||
|
|
||||||
module.exports = router
|
module.exports = router
|
||||||
|
|
|
@ -1,17 +1,21 @@
|
||||||
const Router = require("@koa/router")
|
const Router = require("@koa/router")
|
||||||
const modelController = require("../controllers/model")
|
const modelController = require("../controllers/model")
|
||||||
const authorized = require("../../middleware/authorized")
|
const authorized = require("../../middleware/authorized")
|
||||||
const { BUILDER } = require("../../utilities/accessLevels")
|
const { BUILDER, READ_MODEL } = require("../../utilities/accessLevels")
|
||||||
|
|
||||||
const router = Router()
|
const router = Router()
|
||||||
|
|
||||||
router
|
router
|
||||||
.get("/api/:instanceId/models", authorized(BUILDER), modelController.fetch)
|
.get("/api/models", authorized(BUILDER), modelController.fetch)
|
||||||
.get("/api/:instanceId/models/:id", authorized(BUILDER), modelController.find)
|
.get(
|
||||||
.post("/api/:instanceId/models", authorized(BUILDER), modelController.create)
|
"/api/models/:id",
|
||||||
|
authorized(READ_MODEL, ctx => ctx.params.id),
|
||||||
|
modelController.find
|
||||||
|
)
|
||||||
|
.post("/api/models", authorized(BUILDER), modelController.create)
|
||||||
// .patch("/api/:instanceId/models", controller.update)
|
// .patch("/api/:instanceId/models", controller.update)
|
||||||
.delete(
|
.delete(
|
||||||
"/api/:instanceId/models/:modelId/:revId",
|
"/api/models/:modelId/:revId",
|
||||||
authorized(BUILDER),
|
authorized(BUILDER),
|
||||||
modelController.destroy
|
modelController.destroy
|
||||||
)
|
)
|
||||||
|
|
|
@ -7,28 +7,28 @@ const router = Router()
|
||||||
|
|
||||||
router
|
router
|
||||||
.get(
|
.get(
|
||||||
"/api/:instanceId/:modelId/records",
|
"/api/:modelId/records",
|
||||||
authorized(READ_MODEL, ctx => ctx.params.modelId),
|
authorized(READ_MODEL, ctx => ctx.params.modelId),
|
||||||
recordController.fetchModelRecords
|
recordController.fetchModelRecords
|
||||||
)
|
)
|
||||||
.get(
|
.get(
|
||||||
"/api/:instanceId/:modelId/records/:recordId",
|
"/api/:modelId/records/:recordId",
|
||||||
authorized(READ_MODEL, ctx => ctx.params.modelId),
|
authorized(READ_MODEL, ctx => ctx.params.modelId),
|
||||||
recordController.find
|
recordController.find
|
||||||
)
|
)
|
||||||
.post("/api/:instanceId/records/search", recordController.search)
|
.post("/api/records/search", recordController.search)
|
||||||
.post(
|
.post(
|
||||||
"/api/:instanceId/:modelId/records",
|
"/api/:modelId/records",
|
||||||
authorized(WRITE_MODEL, ctx => ctx.params.modelId),
|
authorized(WRITE_MODEL, ctx => ctx.params.modelId),
|
||||||
recordController.save
|
recordController.save
|
||||||
)
|
)
|
||||||
.post(
|
.post(
|
||||||
"/api/:instanceId/:modelId/records/validate",
|
"/api/:modelId/records/validate",
|
||||||
authorized(WRITE_MODEL, ctx => ctx.params.modelId),
|
authorized(WRITE_MODEL, ctx => ctx.params.modelId),
|
||||||
recordController.validate
|
recordController.validate
|
||||||
)
|
)
|
||||||
.delete(
|
.delete(
|
||||||
"/api/:instanceId/:modelId/records/:recordId/:revId",
|
"/api/:modelId/records/:recordId/:revId",
|
||||||
authorized(WRITE_MODEL, ctx => ctx.params.modelId),
|
authorized(WRITE_MODEL, ctx => ctx.params.modelId),
|
||||||
recordController.destroy
|
recordController.destroy
|
||||||
)
|
)
|
||||||
|
|
|
@ -6,12 +6,8 @@ const { BUILDER } = require("../../utilities/accessLevels")
|
||||||
const router = Router()
|
const router = Router()
|
||||||
|
|
||||||
router
|
router
|
||||||
.get("/api/:instanceId/screens", authorized(BUILDER), controller.fetch)
|
.get("/api/screens", authorized(BUILDER), controller.fetch)
|
||||||
.post("/api/:instanceId/screens", authorized(BUILDER), controller.save)
|
.post("/api/screens", authorized(BUILDER), controller.save)
|
||||||
.delete(
|
.delete("/api/:screenId/:revId", authorized(BUILDER), controller.destroy)
|
||||||
"/api/:instanceId/:screenId/:revId",
|
|
||||||
authorized(BUILDER),
|
|
||||||
controller.destroy
|
|
||||||
)
|
|
||||||
|
|
||||||
module.exports = router
|
module.exports = router
|
||||||
|
|
|
@ -21,7 +21,8 @@ if (env.NODE_ENV !== "production") {
|
||||||
}
|
}
|
||||||
|
|
||||||
router
|
router
|
||||||
.get("/:appId/componentlibrary", controller.serveComponentLibrary)
|
.get("/componentlibrary", controller.serveComponentLibrary)
|
||||||
.get("/:appId/:file*", controller.serveApp)
|
.get("/assets/:file*", controller.serveAppAsset)
|
||||||
|
.get("/:appId/:path*", controller.serveApp)
|
||||||
|
|
||||||
module.exports = router
|
module.exports = router
|
||||||
|
|
|
@ -36,17 +36,17 @@ describe("/accesslevels", () => {
|
||||||
|
|
||||||
beforeEach(async () => {
|
beforeEach(async () => {
|
||||||
instanceId = (await createInstance(request, appId))._id
|
instanceId = (await createInstance(request, appId))._id
|
||||||
model = await createModel(request, instanceId)
|
model = await createModel(request, appId, instanceId)
|
||||||
view = await createView(request, instanceId)
|
view = await createView(request, appId, instanceId)
|
||||||
})
|
})
|
||||||
|
|
||||||
describe("create", () => {
|
describe("create", () => {
|
||||||
|
|
||||||
it("returns a success message when level is successfully created", async () => {
|
it("returns a success message when level is successfully created", async () => {
|
||||||
const res = await request
|
const res = await request
|
||||||
.post(`/api/${instanceId}/accesslevels`)
|
.post(`/api/accesslevels`)
|
||||||
.send({ name: "user" })
|
.send({ name: "user" })
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(appId, instanceId))
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
.expect(200)
|
.expect(200)
|
||||||
|
|
||||||
|
@ -62,17 +62,17 @@ describe("/accesslevels", () => {
|
||||||
|
|
||||||
it("should list custom levels, plus 2 default levels", async () => {
|
it("should list custom levels, plus 2 default levels", async () => {
|
||||||
const createRes = await request
|
const createRes = await request
|
||||||
.post(`/api/${instanceId}/accesslevels`)
|
.post(`/api/accesslevels`)
|
||||||
.send({ name: "user", permissions: [ { itemId: model._id, name: READ_MODEL }] })
|
.send({ name: "user", permissions: [ { itemId: model._id, name: READ_MODEL }] })
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(appId, instanceId))
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
.expect(200)
|
.expect(200)
|
||||||
|
|
||||||
const customLevel = createRes.body
|
const customLevel = createRes.body
|
||||||
|
|
||||||
const res = await request
|
const res = await request
|
||||||
.get(`/api/${instanceId}/accesslevels`)
|
.get(`/api/accesslevels`)
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(appId, instanceId))
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
.expect(200)
|
.expect(200)
|
||||||
|
|
||||||
|
@ -95,22 +95,22 @@ describe("/accesslevels", () => {
|
||||||
describe("destroy", () => {
|
describe("destroy", () => {
|
||||||
it("should delete custom access level", async () => {
|
it("should delete custom access level", async () => {
|
||||||
const createRes = await request
|
const createRes = await request
|
||||||
.post(`/api/${instanceId}/accesslevels`)
|
.post(`/api/accesslevels`)
|
||||||
.send({ name: "user", permissions: [ { itemId: model._id, name: READ_MODEL } ] })
|
.send({ name: "user", permissions: [ { itemId: model._id, name: READ_MODEL } ] })
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(appId, instanceId))
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
.expect(200)
|
.expect(200)
|
||||||
|
|
||||||
const customLevel = createRes.body
|
const customLevel = createRes.body
|
||||||
|
|
||||||
await request
|
await request
|
||||||
.delete(`/api/${instanceId}/accesslevels/${customLevel._id}/${customLevel._rev}`)
|
.delete(`/api/accesslevels/${customLevel._id}/${customLevel._rev}`)
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(appId, instanceId))
|
||||||
.expect(200)
|
.expect(200)
|
||||||
|
|
||||||
await request
|
await request
|
||||||
.get(`/api/${instanceId}/accesslevels/${customLevel._id}`)
|
.get(`/api/accesslevels/${customLevel._id}`)
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(appId, instanceId))
|
||||||
.expect(404)
|
.expect(404)
|
||||||
})
|
})
|
||||||
})
|
})
|
||||||
|
@ -118,27 +118,27 @@ describe("/accesslevels", () => {
|
||||||
describe("patch", () => {
|
describe("patch", () => {
|
||||||
it("should add given permissions", async () => {
|
it("should add given permissions", async () => {
|
||||||
const createRes = await request
|
const createRes = await request
|
||||||
.post(`/api/${instanceId}/accesslevels`)
|
.post(`/api/accesslevels`)
|
||||||
.send({ name: "user", permissions: [ { itemId: model._id, name: READ_MODEL }] })
|
.send({ name: "user", permissions: [ { itemId: model._id, name: READ_MODEL }] })
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(appId, instanceId))
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
.expect(200)
|
.expect(200)
|
||||||
|
|
||||||
const customLevel = createRes.body
|
const customLevel = createRes.body
|
||||||
|
|
||||||
await request
|
await request
|
||||||
.patch(`/api/${instanceId}/accesslevels/${customLevel._id}`)
|
.patch(`/api/accesslevels/${customLevel._id}`)
|
||||||
.send({
|
.send({
|
||||||
_rev: customLevel._rev,
|
_rev: customLevel._rev,
|
||||||
addedPermissions: [ { itemId: model._id, name: WRITE_MODEL } ]
|
addedPermissions: [ { itemId: model._id, name: WRITE_MODEL } ]
|
||||||
})
|
})
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(appId, instanceId))
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
.expect(200)
|
.expect(200)
|
||||||
|
|
||||||
const finalRes = await request
|
const finalRes = await request
|
||||||
.get(`/api/${instanceId}/accesslevels/${customLevel._id}`)
|
.get(`/api/accesslevels/${customLevel._id}`)
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(appId, instanceId))
|
||||||
.expect(200)
|
.expect(200)
|
||||||
|
|
||||||
expect(finalRes.body.permissions.length).toBe(2)
|
expect(finalRes.body.permissions.length).toBe(2)
|
||||||
|
@ -148,7 +148,7 @@ describe("/accesslevels", () => {
|
||||||
|
|
||||||
it("should remove given permissions", async () => {
|
it("should remove given permissions", async () => {
|
||||||
const createRes = await request
|
const createRes = await request
|
||||||
.post(`/api/${instanceId}/accesslevels`)
|
.post(`/api/accesslevels`)
|
||||||
.send({
|
.send({
|
||||||
name: "user",
|
name: "user",
|
||||||
permissions: [
|
permissions: [
|
||||||
|
@ -156,25 +156,25 @@ describe("/accesslevels", () => {
|
||||||
{ itemId: model._id, name: WRITE_MODEL },
|
{ itemId: model._id, name: WRITE_MODEL },
|
||||||
]
|
]
|
||||||
})
|
})
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(appId, instanceId))
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
.expect(200)
|
.expect(200)
|
||||||
|
|
||||||
const customLevel = createRes.body
|
const customLevel = createRes.body
|
||||||
|
|
||||||
await request
|
await request
|
||||||
.patch(`/api/${instanceId}/accesslevels/${customLevel._id}`)
|
.patch(`/api/accesslevels/${customLevel._id}`)
|
||||||
.send({
|
.send({
|
||||||
_rev: customLevel._rev,
|
_rev: customLevel._rev,
|
||||||
removedPermissions: [ { itemId: model._id, name: WRITE_MODEL }]
|
removedPermissions: [ { itemId: model._id, name: WRITE_MODEL }]
|
||||||
})
|
})
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(appId, instanceId))
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
.expect(200)
|
.expect(200)
|
||||||
|
|
||||||
const finalRes = await request
|
const finalRes = await request
|
||||||
.get(`/api/${instanceId}/accesslevels/${customLevel._id}`)
|
.get(`/api/accesslevels/${customLevel._id}`)
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(appId, instanceId))
|
||||||
.expect(200)
|
.expect(200)
|
||||||
|
|
||||||
expect(finalRes.body.permissions.length).toBe(1)
|
expect(finalRes.body.permissions.length).toBe(1)
|
||||||
|
|
|
@ -34,7 +34,7 @@ describe("/applications", () => {
|
||||||
const res = await request
|
const res = await request
|
||||||
.post("/api/applications")
|
.post("/api/applications")
|
||||||
.send({ name: "My App" })
|
.send({ name: "My App" })
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders())
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
.expect(200)
|
.expect(200)
|
||||||
expect(res.res.statusMessage).toEqual("Application My App created successfully")
|
expect(res.res.statusMessage).toEqual("Application My App created successfully")
|
||||||
|
@ -49,6 +49,7 @@ describe("/applications", () => {
|
||||||
method: "POST",
|
method: "POST",
|
||||||
url: `/api/applications`,
|
url: `/api/applications`,
|
||||||
instanceId: instance._id,
|
instanceId: instance._id,
|
||||||
|
appId: otherApplication._id,
|
||||||
body: { name: "My App" }
|
body: { name: "My App" }
|
||||||
})
|
})
|
||||||
})
|
})
|
||||||
|
@ -63,7 +64,7 @@ describe("/applications", () => {
|
||||||
|
|
||||||
const res = await request
|
const res = await request
|
||||||
.get("/api/applications")
|
.get("/api/applications")
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders())
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
.expect(200)
|
.expect(200)
|
||||||
|
|
||||||
|
@ -77,13 +78,13 @@ describe("/applications", () => {
|
||||||
const blah = await request
|
const blah = await request
|
||||||
.post("/api/applications")
|
.post("/api/applications")
|
||||||
.send({ name: "app2", clientId: "new_client"})
|
.send({ name: "app2", clientId: "new_client"})
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders())
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
//.expect(200)
|
//.expect(200)
|
||||||
|
|
||||||
const client1Res = await request
|
const client1Res = await request
|
||||||
.get(`/api/applications?clientId=${TEST_CLIENT_ID}`)
|
.get(`/api/applications?clientId=${TEST_CLIENT_ID}`)
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders())
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
.expect(200)
|
.expect(200)
|
||||||
|
|
||||||
|
@ -92,7 +93,7 @@ describe("/applications", () => {
|
||||||
|
|
||||||
const client2Res = await request
|
const client2Res = await request
|
||||||
.get(`/api/applications?clientId=new_client`)
|
.get(`/api/applications?clientId=new_client`)
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders())
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
.expect(200)
|
.expect(200)
|
||||||
|
|
||||||
|
@ -109,6 +110,7 @@ describe("/applications", () => {
|
||||||
method: "GET",
|
method: "GET",
|
||||||
url: `/api/applications`,
|
url: `/api/applications`,
|
||||||
instanceId: instance._id,
|
instanceId: instance._id,
|
||||||
|
appId: otherApplication._id,
|
||||||
})
|
})
|
||||||
})
|
})
|
||||||
})
|
})
|
||||||
|
|
|
@ -4,8 +4,12 @@ const supertest = require("supertest")
|
||||||
const app = require("../../../app")
|
const app = require("../../../app")
|
||||||
const {
|
const {
|
||||||
POWERUSER_LEVEL_ID,
|
POWERUSER_LEVEL_ID,
|
||||||
|
ANON_LEVEL_ID,
|
||||||
|
BUILDER_LEVEL_ID,
|
||||||
generateAdminPermissions,
|
generateAdminPermissions,
|
||||||
} = require("../../../utilities/accessLevels")
|
} = require("../../../utilities/accessLevels")
|
||||||
|
const jwt = require("jsonwebtoken")
|
||||||
|
const env = require("../../../environment")
|
||||||
|
|
||||||
const TEST_CLIENT_ID = "test-client-id"
|
const TEST_CLIENT_ID = "test-client-id"
|
||||||
|
|
||||||
|
@ -20,13 +24,23 @@ exports.supertest = async () => {
|
||||||
return { request, server }
|
return { request, server }
|
||||||
}
|
}
|
||||||
|
|
||||||
exports.defaultHeaders = {
|
exports.defaultHeaders = (appId, instanceId) => {
|
||||||
Accept: "application/json",
|
const builderUser = {
|
||||||
Cookie: ["builder:token=test-admin-secret"],
|
userId: "BUILDER",
|
||||||
"x-user-agent": "Budibase Builder",
|
accessLevelId: BUILDER_LEVEL_ID,
|
||||||
|
appId,
|
||||||
|
instanceId,
|
||||||
|
}
|
||||||
|
|
||||||
|
const builderToken = jwt.sign(builderUser, env.JWT_SECRET)
|
||||||
|
|
||||||
|
return {
|
||||||
|
Accept: "application/json",
|
||||||
|
Cookie: [`builder:token=${builderToken}`],
|
||||||
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
exports.createModel = async (request, instanceId, model) => {
|
exports.createModel = async (request, appId, instanceId, model) => {
|
||||||
model = model || {
|
model = model || {
|
||||||
name: "TestModel",
|
name: "TestModel",
|
||||||
type: "model",
|
type: "model",
|
||||||
|
@ -42,20 +56,20 @@ exports.createModel = async (request, instanceId, model) => {
|
||||||
}
|
}
|
||||||
|
|
||||||
const res = await request
|
const res = await request
|
||||||
.post(`/api/${instanceId}/models`)
|
.post(`/api/models`)
|
||||||
.set(exports.defaultHeaders)
|
.set(exports.defaultHeaders(appId, instanceId))
|
||||||
.send(model)
|
.send(model)
|
||||||
return res.body
|
return res.body
|
||||||
}
|
}
|
||||||
|
|
||||||
exports.createView = async (request, instanceId, view) => {
|
exports.createView = async (request, appId, instanceId, view) => {
|
||||||
view = view || {
|
view = view || {
|
||||||
map: "function(doc) { emit(doc[doc.key], doc._id); } ",
|
map: "function(doc) { emit(doc[doc.key], doc._id); } ",
|
||||||
}
|
}
|
||||||
|
|
||||||
const res = await request
|
const res = await request
|
||||||
.post(`/api/${instanceId}/views`)
|
.post(`/api/views`)
|
||||||
.set(exports.defaultHeaders)
|
.set(exports.defaultHeaders(appId, instanceId))
|
||||||
.send(view)
|
.send(view)
|
||||||
return res.body
|
return res.body
|
||||||
}
|
}
|
||||||
|
@ -65,10 +79,10 @@ exports.createClientDatabase = async id => await create(id || TEST_CLIENT_ID)
|
||||||
exports.createApplication = async (request, name = "test_application") => {
|
exports.createApplication = async (request, name = "test_application") => {
|
||||||
const res = await request
|
const res = await request
|
||||||
.post("/api/applications")
|
.post("/api/applications")
|
||||||
.set(exports.defaultHeaders)
|
|
||||||
.send({
|
.send({
|
||||||
name,
|
name,
|
||||||
})
|
})
|
||||||
|
.set(exports.defaultHeaders())
|
||||||
return res.body
|
return res.body
|
||||||
}
|
}
|
||||||
|
|
||||||
|
@ -76,23 +90,24 @@ exports.destroyClientDatabase = async () => await destroy(TEST_CLIENT_ID)
|
||||||
|
|
||||||
exports.createInstance = async (request, appId) => {
|
exports.createInstance = async (request, appId) => {
|
||||||
const res = await request
|
const res = await request
|
||||||
.post(`/api/${appId}/instances`)
|
.post(`/api/instances`)
|
||||||
.set(exports.defaultHeaders)
|
|
||||||
.send({
|
.send({
|
||||||
name: "test-instance",
|
name: "test-instance2",
|
||||||
})
|
})
|
||||||
|
.set(exports.defaultHeaders(appId))
|
||||||
return res.body
|
return res.body
|
||||||
}
|
}
|
||||||
|
|
||||||
exports.createUser = async (
|
exports.createUser = async (
|
||||||
request,
|
request,
|
||||||
|
appId,
|
||||||
instanceId,
|
instanceId,
|
||||||
username = "babs",
|
username = "babs",
|
||||||
password = "babs_password"
|
password = "babs_password"
|
||||||
) => {
|
) => {
|
||||||
const res = await request
|
const res = await request
|
||||||
.post(`/api/${instanceId}/users`)
|
.post(`/api/users`)
|
||||||
.set(exports.defaultHeaders)
|
.set(exports.defaultHeaders(appId, instanceId))
|
||||||
.send({
|
.send({
|
||||||
name: "Bill",
|
name: "Bill",
|
||||||
username,
|
username,
|
||||||
|
@ -104,6 +119,7 @@ exports.createUser = async (
|
||||||
|
|
||||||
const createUserWithOnePermission = async (
|
const createUserWithOnePermission = async (
|
||||||
request,
|
request,
|
||||||
|
appId,
|
||||||
instanceId,
|
instanceId,
|
||||||
permName,
|
permName,
|
||||||
itemId
|
itemId
|
||||||
|
@ -115,17 +131,19 @@ const createUserWithOnePermission = async (
|
||||||
|
|
||||||
return await createUserWithPermissions(
|
return await createUserWithPermissions(
|
||||||
request,
|
request,
|
||||||
|
appId,
|
||||||
instanceId,
|
instanceId,
|
||||||
permissions,
|
permissions,
|
||||||
"onePermOnlyUser"
|
"onePermOnlyUser"
|
||||||
)
|
)
|
||||||
}
|
}
|
||||||
|
|
||||||
const createUserWithAdminPermissions = async (request, instanceId) => {
|
const createUserWithAdminPermissions = async (request, appId, instanceId) => {
|
||||||
let permissions = await generateAdminPermissions(instanceId)
|
let permissions = await generateAdminPermissions(instanceId)
|
||||||
|
|
||||||
return await createUserWithPermissions(
|
return await createUserWithPermissions(
|
||||||
request,
|
request,
|
||||||
|
appId,
|
||||||
instanceId,
|
instanceId,
|
||||||
permissions,
|
permissions,
|
||||||
"adminUser"
|
"adminUser"
|
||||||
|
@ -134,6 +152,7 @@ const createUserWithAdminPermissions = async (request, instanceId) => {
|
||||||
|
|
||||||
const createUserWithAllPermissionExceptOne = async (
|
const createUserWithAllPermissionExceptOne = async (
|
||||||
request,
|
request,
|
||||||
|
appId,
|
||||||
instanceId,
|
instanceId,
|
||||||
permName,
|
permName,
|
||||||
itemId
|
itemId
|
||||||
|
@ -145,6 +164,7 @@ const createUserWithAllPermissionExceptOne = async (
|
||||||
|
|
||||||
return await createUserWithPermissions(
|
return await createUserWithPermissions(
|
||||||
request,
|
request,
|
||||||
|
appId,
|
||||||
instanceId,
|
instanceId,
|
||||||
permissions,
|
permissions,
|
||||||
"allPermsExceptOneUser"
|
"allPermsExceptOneUser"
|
||||||
|
@ -153,19 +173,20 @@ const createUserWithAllPermissionExceptOne = async (
|
||||||
|
|
||||||
const createUserWithPermissions = async (
|
const createUserWithPermissions = async (
|
||||||
request,
|
request,
|
||||||
|
appId,
|
||||||
instanceId,
|
instanceId,
|
||||||
permissions,
|
permissions,
|
||||||
username
|
username
|
||||||
) => {
|
) => {
|
||||||
const accessRes = await request
|
const accessRes = await request
|
||||||
.post(`/api/${instanceId}/accesslevels`)
|
.post(`/api/accesslevels`)
|
||||||
.send({ name: "TestLevel", permissions })
|
.send({ name: "TestLevel", permissions })
|
||||||
.set(exports.defaultHeaders)
|
.set(exports.defaultHeaders(appId, instanceId))
|
||||||
|
|
||||||
const password = `password_${username}`
|
const password = `password_${username}`
|
||||||
await request
|
await request
|
||||||
.post(`/api/${instanceId}/users`)
|
.post(`/api/users`)
|
||||||
.set(exports.defaultHeaders)
|
.set(exports.defaultHeaders(appId, instanceId))
|
||||||
.send({
|
.send({
|
||||||
name: username,
|
name: username,
|
||||||
username,
|
username,
|
||||||
|
@ -173,11 +194,20 @@ const createUserWithPermissions = async (
|
||||||
accessLevelId: accessRes.body._id,
|
accessLevelId: accessRes.body._id,
|
||||||
})
|
})
|
||||||
|
|
||||||
const db = new CouchDB(instanceId)
|
//const db = new CouchDB(instanceId)
|
||||||
const designDoc = await db.get("_design/database")
|
//const designDoc = await db.get("_design/database")
|
||||||
|
|
||||||
|
const anonUser = {
|
||||||
|
userId: "ANON",
|
||||||
|
accessLevelId: ANON_LEVEL_ID,
|
||||||
|
appId: appId,
|
||||||
|
}
|
||||||
|
|
||||||
|
const anonToken = jwt.sign(anonUser, env.JWT_SECRET)
|
||||||
|
|
||||||
const loginResult = await request
|
const loginResult = await request
|
||||||
.post(`/${designDoc.metadata.applicationId}/api/authenticate`)
|
.post(`/api/authenticate`)
|
||||||
|
.set({ Cookie: `budibase:token=${anonToken}` })
|
||||||
.send({ username, password })
|
.send({ username, password })
|
||||||
|
|
||||||
// returning necessary request headers
|
// returning necessary request headers
|
||||||
|
@ -192,12 +222,14 @@ exports.testPermissionsForEndpoint = async ({
|
||||||
method,
|
method,
|
||||||
url,
|
url,
|
||||||
body,
|
body,
|
||||||
|
appId,
|
||||||
instanceId,
|
instanceId,
|
||||||
permissionName,
|
permissionName,
|
||||||
itemId,
|
itemId,
|
||||||
}) => {
|
}) => {
|
||||||
const headers = await createUserWithOnePermission(
|
const headers = await createUserWithOnePermission(
|
||||||
request,
|
request,
|
||||||
|
appId,
|
||||||
instanceId,
|
instanceId,
|
||||||
permissionName,
|
permissionName,
|
||||||
itemId
|
itemId
|
||||||
|
@ -209,6 +241,7 @@ exports.testPermissionsForEndpoint = async ({
|
||||||
|
|
||||||
const noPermsHeaders = await createUserWithAllPermissionExceptOne(
|
const noPermsHeaders = await createUserWithAllPermissionExceptOne(
|
||||||
request,
|
request,
|
||||||
|
appId,
|
||||||
instanceId,
|
instanceId,
|
||||||
permissionName,
|
permissionName,
|
||||||
itemId
|
itemId
|
||||||
|
@ -224,9 +257,14 @@ exports.builderEndpointShouldBlockNormalUsers = async ({
|
||||||
method,
|
method,
|
||||||
url,
|
url,
|
||||||
body,
|
body,
|
||||||
|
appId,
|
||||||
instanceId,
|
instanceId,
|
||||||
}) => {
|
}) => {
|
||||||
const headers = await createUserWithAdminPermissions(request, instanceId)
|
const headers = await createUserWithAdminPermissions(
|
||||||
|
request,
|
||||||
|
appId,
|
||||||
|
instanceId
|
||||||
|
)
|
||||||
|
|
||||||
await createRequest(request, method, url, body)
|
await createRequest(request, method, url, body)
|
||||||
.set(headers)
|
.set(headers)
|
||||||
|
|
|
@ -24,9 +24,9 @@ describe("/instances", () => {
|
||||||
|
|
||||||
it("returns a success message when the instance database is successfully created", async () => {
|
it("returns a success message when the instance database is successfully created", async () => {
|
||||||
const res = await request
|
const res = await request
|
||||||
.post(`/api/${TEST_APP_ID}/instances`)
|
.post(`/api/instances`)
|
||||||
.send({ name: "test-instance" })
|
.send({ name: "test-instance" })
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(TEST_APP_ID))
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
.expect(200)
|
.expect(200)
|
||||||
|
|
||||||
|
@ -42,7 +42,7 @@ describe("/instances", () => {
|
||||||
const instance = await createInstance(request, TEST_APP_ID);
|
const instance = await createInstance(request, TEST_APP_ID);
|
||||||
const res = await request
|
const res = await request
|
||||||
.delete(`/api/instances/${instance._id}`)
|
.delete(`/api/instances/${instance._id}`)
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(TEST_APP_ID))
|
||||||
.expect(200)
|
.expect(200)
|
||||||
|
|
||||||
expect(res.res.statusMessage).toEqual(`Instance Database ${instance._id} successfully destroyed.`);
|
expect(res.res.statusMessage).toEqual(`Instance Database ${instance._id} successfully destroyed.`);
|
||||||
|
|
|
@ -33,7 +33,7 @@ describe("/models", () => {
|
||||||
|
|
||||||
it("returns a success message when the model is successfully created", done => {
|
it("returns a success message when the model is successfully created", done => {
|
||||||
request
|
request
|
||||||
.post(`/api/${instance._id}/models`)
|
.post(`/api/models`)
|
||||||
.send({
|
.send({
|
||||||
name: "TestModel",
|
name: "TestModel",
|
||||||
key: "name",
|
key: "name",
|
||||||
|
@ -41,7 +41,7 @@ describe("/models", () => {
|
||||||
name: { type: "string" }
|
name: { type: "string" }
|
||||||
}
|
}
|
||||||
})
|
})
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(app._id, instance._id))
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
.expect(200)
|
.expect(200)
|
||||||
.end(async (err, res) => {
|
.end(async (err, res) => {
|
||||||
|
@ -55,8 +55,9 @@ describe("/models", () => {
|
||||||
await builderEndpointShouldBlockNormalUsers({
|
await builderEndpointShouldBlockNormalUsers({
|
||||||
request,
|
request,
|
||||||
method: "POST",
|
method: "POST",
|
||||||
url: `/api/${instance._id}/models`,
|
url: `/api/models`,
|
||||||
instanceId: instance._id,
|
instanceId: instance._id,
|
||||||
|
appId: app._id,
|
||||||
body: {
|
body: {
|
||||||
name: "TestModel",
|
name: "TestModel",
|
||||||
key: "name",
|
key: "name",
|
||||||
|
@ -73,13 +74,13 @@ describe("/models", () => {
|
||||||
|
|
||||||
beforeEach(async () => {
|
beforeEach(async () => {
|
||||||
instance = await createInstance(request, app._id)
|
instance = await createInstance(request, app._id)
|
||||||
testModel = await createModel(request, instance._id, testModel)
|
testModel = await createModel(request, app._id, instance._id, testModel)
|
||||||
});
|
});
|
||||||
|
|
||||||
it("returns all the models for that instance in the response body", done => {
|
it("returns all the models for that instance in the response body", done => {
|
||||||
request
|
request
|
||||||
.get(`/api/${instance._id}/models`)
|
.get(`/api/models`)
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(app._id, instance._id))
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
.expect(200)
|
.expect(200)
|
||||||
.end(async (_, res) => {
|
.end(async (_, res) => {
|
||||||
|
@ -94,8 +95,9 @@ describe("/models", () => {
|
||||||
await builderEndpointShouldBlockNormalUsers({
|
await builderEndpointShouldBlockNormalUsers({
|
||||||
request,
|
request,
|
||||||
method: "GET",
|
method: "GET",
|
||||||
url: `/api/${instance._id}/models`,
|
url: `/api/models`,
|
||||||
instanceId: instance._id,
|
instanceId: instance._id,
|
||||||
|
appId: app._id,
|
||||||
})
|
})
|
||||||
})
|
})
|
||||||
});
|
});
|
||||||
|
@ -105,7 +107,7 @@ describe("/models", () => {
|
||||||
|
|
||||||
beforeEach(async () => {
|
beforeEach(async () => {
|
||||||
instance = await createInstance(request, app._id)
|
instance = await createInstance(request, app._id)
|
||||||
testModel = await createModel(request, instance._id, testModel)
|
testModel = await createModel(request, app._id, instance._id, testModel)
|
||||||
});
|
});
|
||||||
|
|
||||||
afterEach(() => {
|
afterEach(() => {
|
||||||
|
@ -114,8 +116,8 @@ describe("/models", () => {
|
||||||
|
|
||||||
it("returns a success response when a model is deleted.", async done => {
|
it("returns a success response when a model is deleted.", async done => {
|
||||||
request
|
request
|
||||||
.delete(`/api/${instance._id}/models/${testModel._id}/${testModel._rev}`)
|
.delete(`/api/models/${testModel._id}/${testModel._rev}`)
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(app._id, instance._id))
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
.expect(200)
|
.expect(200)
|
||||||
.end(async (_, res) => {
|
.end(async (_, res) => {
|
||||||
|
@ -125,7 +127,7 @@ describe("/models", () => {
|
||||||
})
|
})
|
||||||
|
|
||||||
it("deletes linked references to the model after deletion", async done => {
|
it("deletes linked references to the model after deletion", async done => {
|
||||||
const linkedModel = await createModel(request, instance._id, {
|
const linkedModel = await createModel(request, app._id, instance._id, {
|
||||||
name: "LinkedModel",
|
name: "LinkedModel",
|
||||||
type: "model",
|
type: "model",
|
||||||
key: "name",
|
key: "name",
|
||||||
|
@ -147,8 +149,8 @@ describe("/models", () => {
|
||||||
})
|
})
|
||||||
|
|
||||||
request
|
request
|
||||||
.delete(`/api/${instance._id}/models/${testModel._id}/${testModel._rev}`)
|
.delete(`/api/models/${testModel._id}/${testModel._rev}`)
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(app._id, instance._id))
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
.expect(200)
|
.expect(200)
|
||||||
.end(async (_, res) => {
|
.end(async (_, res) => {
|
||||||
|
@ -163,8 +165,9 @@ describe("/models", () => {
|
||||||
await builderEndpointShouldBlockNormalUsers({
|
await builderEndpointShouldBlockNormalUsers({
|
||||||
request,
|
request,
|
||||||
method: "DELETE",
|
method: "DELETE",
|
||||||
url: `/api/${instance._id}/models/${testModel._id}/${testModel._rev}`,
|
url: `/api/models/${testModel._id}/${testModel._rev}`,
|
||||||
instanceId: instance._id,
|
instanceId: instance._id,
|
||||||
|
appId: app._id,
|
||||||
})
|
})
|
||||||
})
|
})
|
||||||
|
|
||||||
|
|
|
@ -27,7 +27,7 @@ describe("/records", () => {
|
||||||
|
|
||||||
beforeEach(async () => {
|
beforeEach(async () => {
|
||||||
instance = await createInstance(request, app._id)
|
instance = await createInstance(request, app._id)
|
||||||
model = await createModel(request, instance._id)
|
model = await createModel(request, app._id, instance._id)
|
||||||
record = {
|
record = {
|
||||||
name: "Test Contact",
|
name: "Test Contact",
|
||||||
status: "new",
|
status: "new",
|
||||||
|
@ -39,9 +39,9 @@ describe("/records", () => {
|
||||||
|
|
||||||
const createRecord = async r =>
|
const createRecord = async r =>
|
||||||
await request
|
await request
|
||||||
.post(`/api/${instance._id}/${model._id}/records`)
|
.post(`/api/${model._id}/records`)
|
||||||
.send(r || record)
|
.send(r || record)
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(app._id, instance._id))
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
.expect(200)
|
.expect(200)
|
||||||
|
|
||||||
|
@ -57,14 +57,14 @@ describe("/records", () => {
|
||||||
const existing = rec.body
|
const existing = rec.body
|
||||||
|
|
||||||
const res = await request
|
const res = await request
|
||||||
.post(`/api/${instance._id}/${model._id}/records`)
|
.post(`/api/${model._id}/records`)
|
||||||
.send({
|
.send({
|
||||||
_id: existing._id,
|
_id: existing._id,
|
||||||
_rev: existing._rev,
|
_rev: existing._rev,
|
||||||
modelId: model._id,
|
modelId: model._id,
|
||||||
name: "Updated Name",
|
name: "Updated Name",
|
||||||
})
|
})
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(app._id, instance._id))
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
.expect(200)
|
.expect(200)
|
||||||
|
|
||||||
|
@ -77,8 +77,8 @@ describe("/records", () => {
|
||||||
const existing = rec.body
|
const existing = rec.body
|
||||||
|
|
||||||
const res = await request
|
const res = await request
|
||||||
.get(`/api/${instance._id}/${model._id}/records/${existing._id}`)
|
.get(`/api/${model._id}/records/${existing._id}`)
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(app._id, instance._id))
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
.expect(200)
|
.expect(200)
|
||||||
|
|
||||||
|
@ -100,8 +100,8 @@ describe("/records", () => {
|
||||||
await createRecord(newRecord)
|
await createRecord(newRecord)
|
||||||
|
|
||||||
const res = await request
|
const res = await request
|
||||||
.get(`/api/${instance._id}/${model._id}/records`)
|
.get(`/api/${model._id}/records`)
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(app._id, instance._id))
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
.expect(200)
|
.expect(200)
|
||||||
|
|
||||||
|
@ -122,8 +122,8 @@ describe("/records", () => {
|
||||||
const recordIds = [record.body._id, secondRecord.body._id]
|
const recordIds = [record.body._id, secondRecord.body._id]
|
||||||
|
|
||||||
const res = await request
|
const res = await request
|
||||||
.post(`/api/${instance._id}/records/search`)
|
.post(`/api/records/search`)
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(app._id, instance._id))
|
||||||
.send({
|
.send({
|
||||||
keys: recordIds
|
keys: recordIds
|
||||||
})
|
})
|
||||||
|
@ -137,8 +137,8 @@ describe("/records", () => {
|
||||||
it("load should return 404 when record does not exist", async () => {
|
it("load should return 404 when record does not exist", async () => {
|
||||||
await createRecord()
|
await createRecord()
|
||||||
await request
|
await request
|
||||||
.get(`/api/${instance._id}/${model._id}/records/not-a-valid-id`)
|
.get(`/api/${model._id}/records/not-a-valid-id`)
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(app._id, instance._id))
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
.expect(404)
|
.expect(404)
|
||||||
})
|
})
|
||||||
|
@ -147,9 +147,9 @@ describe("/records", () => {
|
||||||
describe("validate", () => {
|
describe("validate", () => {
|
||||||
it("should return no errors on valid record", async () => {
|
it("should return no errors on valid record", async () => {
|
||||||
const result = await request
|
const result = await request
|
||||||
.post(`/api/${instance._id}/${model._id}/records/validate`)
|
.post(`/api/${model._id}/records/validate`)
|
||||||
.send({ name: "ivan" })
|
.send({ name: "ivan" })
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(app._id, instance._id))
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
.expect(200)
|
.expect(200)
|
||||||
|
|
||||||
|
@ -159,9 +159,9 @@ describe("/records", () => {
|
||||||
|
|
||||||
it("should errors on invalid record", async () => {
|
it("should errors on invalid record", async () => {
|
||||||
const result = await request
|
const result = await request
|
||||||
.post(`/api/${instance._id}/${model._id}/records/validate`)
|
.post(`/api/${model._id}/records/validate`)
|
||||||
.send({ name: 1 })
|
.send({ name: 1 })
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(app._id, instance._id))
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
.expect(200)
|
.expect(200)
|
||||||
|
|
||||||
|
|
|
@ -36,11 +36,11 @@ describe("/users", () => {
|
||||||
describe("fetch", () => {
|
describe("fetch", () => {
|
||||||
|
|
||||||
it("returns a list of users from an instance db", async () => {
|
it("returns a list of users from an instance db", async () => {
|
||||||
await createUser(request, instance._id, "brenda", "brendas_password")
|
await createUser(request, app._id, instance._id, "brenda", "brendas_password")
|
||||||
await createUser(request, instance._id, "pam", "pam_password")
|
await createUser(request, app._id, instance._id, "pam", "pam_password")
|
||||||
const res = await request
|
const res = await request
|
||||||
.get(`/api/${instance._id}/users`)
|
.get(`/api/users`)
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(app._id, instance._id))
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
.expect(200)
|
.expect(200)
|
||||||
|
|
||||||
|
@ -50,12 +50,13 @@ describe("/users", () => {
|
||||||
})
|
})
|
||||||
|
|
||||||
it("should apply authorization to endpoint", async () => {
|
it("should apply authorization to endpoint", async () => {
|
||||||
await createUser(request, instance._id, "brenda", "brendas_password")
|
await createUser(request, app._id, instance._id, "brenda", "brendas_password")
|
||||||
await testPermissionsForEndpoint({
|
await testPermissionsForEndpoint({
|
||||||
request,
|
request,
|
||||||
method: "GET",
|
method: "GET",
|
||||||
url: `/api/${instance._id}/users`,
|
url: `/api/users`,
|
||||||
instanceId: instance._id,
|
instanceId: instance._id,
|
||||||
|
appId: app._id,
|
||||||
permissionName: LIST_USERS,
|
permissionName: LIST_USERS,
|
||||||
})
|
})
|
||||||
})
|
})
|
||||||
|
@ -66,8 +67,8 @@ describe("/users", () => {
|
||||||
|
|
||||||
it("returns a success message when a user is successfully created", async () => {
|
it("returns a success message when a user is successfully created", async () => {
|
||||||
const res = await request
|
const res = await request
|
||||||
.post(`/api/${instance._id}/users`)
|
.post(`/api/users`)
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(app._id, instance._id))
|
||||||
.send({ name: "Bill", username: "bill", password: "bills_password", accessLevelId: POWERUSER_LEVEL_ID })
|
.send({ name: "Bill", username: "bill", password: "bills_password", accessLevelId: POWERUSER_LEVEL_ID })
|
||||||
.expect(200)
|
.expect(200)
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
|
@ -81,8 +82,9 @@ describe("/users", () => {
|
||||||
request,
|
request,
|
||||||
method: "POST",
|
method: "POST",
|
||||||
body: { name: "brandNewUser", username: "brandNewUser", password: "yeeooo", accessLevelId: POWERUSER_LEVEL_ID },
|
body: { name: "brandNewUser", username: "brandNewUser", password: "yeeooo", accessLevelId: POWERUSER_LEVEL_ID },
|
||||||
url: `/api/${instance._id}/users`,
|
url: `/api/users`,
|
||||||
instanceId: instance._id,
|
instanceId: instance._id,
|
||||||
|
appId: app._id,
|
||||||
permissionName: USER_MANAGEMENT,
|
permissionName: USER_MANAGEMENT,
|
||||||
})
|
})
|
||||||
})
|
})
|
||||||
|
|
|
@ -30,7 +30,7 @@ describe("/views", () => {
|
||||||
|
|
||||||
const createView = async () =>
|
const createView = async () =>
|
||||||
await request
|
await request
|
||||||
.post(`/api/${instance._id}/views`)
|
.post(`/api/views`)
|
||||||
.send({
|
.send({
|
||||||
name: "TestView",
|
name: "TestView",
|
||||||
map: `function(doc) {
|
map: `function(doc) {
|
||||||
|
@ -40,7 +40,7 @@ describe("/views", () => {
|
||||||
}`,
|
}`,
|
||||||
reduce: `function(keys, values) { }`
|
reduce: `function(keys, values) { }`
|
||||||
})
|
})
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(app._id, instance._id))
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
.expect(200)
|
.expect(200)
|
||||||
|
|
||||||
|
@ -56,14 +56,14 @@ describe("/views", () => {
|
||||||
describe("fetch", () => {
|
describe("fetch", () => {
|
||||||
|
|
||||||
beforeEach(async () => {
|
beforeEach(async () => {
|
||||||
model = await createModel(request, instance._id);
|
model = await createModel(request, app._id, instance._id);
|
||||||
});
|
});
|
||||||
|
|
||||||
it("should only return custom views", async () => {
|
it("should only return custom views", async () => {
|
||||||
const view = await createView()
|
const view = await createView()
|
||||||
const res = await request
|
const res = await request
|
||||||
.get(`/api/${instance._id}/views`)
|
.get(`/api/views`)
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(app._id, instance._id))
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
.expect(200)
|
.expect(200)
|
||||||
expect(res.body.length).toBe(1)
|
expect(res.body.length).toBe(1)
|
||||||
|
|
|
@ -63,8 +63,8 @@ describe("/workflows", () => {
|
||||||
describe("create", () => {
|
describe("create", () => {
|
||||||
it("returns a success message when the workflow is successfully created", async () => {
|
it("returns a success message when the workflow is successfully created", async () => {
|
||||||
const res = await request
|
const res = await request
|
||||||
.post(`/api/${instance._id}/workflows`)
|
.post(`/api/workflows`)
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(app._id, instance._id))
|
||||||
.send(TEST_WORKFLOW)
|
.send(TEST_WORKFLOW)
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
.expect(200)
|
.expect(200)
|
||||||
|
@ -77,8 +77,9 @@ describe("/workflows", () => {
|
||||||
await builderEndpointShouldBlockNormalUsers({
|
await builderEndpointShouldBlockNormalUsers({
|
||||||
request,
|
request,
|
||||||
method: "POST",
|
method: "POST",
|
||||||
url: `/api/${instance._id}/workflows`,
|
url: `/api/workflows`,
|
||||||
instanceId: instance._id,
|
instanceId: instance._id,
|
||||||
|
appId: app._id,
|
||||||
body: TEST_WORKFLOW
|
body: TEST_WORKFLOW
|
||||||
})
|
})
|
||||||
})
|
})
|
||||||
|
@ -92,8 +93,8 @@ describe("/workflows", () => {
|
||||||
workflow.name = "Updated Name";
|
workflow.name = "Updated Name";
|
||||||
|
|
||||||
const res = await request
|
const res = await request
|
||||||
.put(`/api/${instance._id}/workflows`)
|
.put(`/api/workflows`)
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(app._id, instance._id))
|
||||||
.send(workflow)
|
.send(workflow)
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
.expect(200)
|
.expect(200)
|
||||||
|
@ -107,8 +108,8 @@ describe("/workflows", () => {
|
||||||
it("return all the workflows for an instance", async () => {
|
it("return all the workflows for an instance", async () => {
|
||||||
await createWorkflow();
|
await createWorkflow();
|
||||||
const res = await request
|
const res = await request
|
||||||
.get(`/api/${instance._id}/workflows`)
|
.get(`/api/workflows`)
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(app._id, instance._id))
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
.expect(200)
|
.expect(200)
|
||||||
|
|
||||||
|
@ -119,8 +120,9 @@ describe("/workflows", () => {
|
||||||
await builderEndpointShouldBlockNormalUsers({
|
await builderEndpointShouldBlockNormalUsers({
|
||||||
request,
|
request,
|
||||||
method: "GET",
|
method: "GET",
|
||||||
url: `/api/${instance._id}/workflows`,
|
url: `/api/workflows`,
|
||||||
instanceId: instance._id,
|
instanceId: instance._id,
|
||||||
|
appId: app._id,
|
||||||
})
|
})
|
||||||
})
|
})
|
||||||
})
|
})
|
||||||
|
@ -129,8 +131,8 @@ describe("/workflows", () => {
|
||||||
it("deletes a workflow by its ID", async () => {
|
it("deletes a workflow by its ID", async () => {
|
||||||
await createWorkflow();
|
await createWorkflow();
|
||||||
const res = await request
|
const res = await request
|
||||||
.delete(`/api/${instance._id}/workflows/${workflow.id}/${workflow.rev}`)
|
.delete(`/api/workflows/${workflow.id}/${workflow.rev}`)
|
||||||
.set(defaultHeaders)
|
.set(defaultHeaders(app._id, instance._id))
|
||||||
.expect('Content-Type', /json/)
|
.expect('Content-Type', /json/)
|
||||||
.expect(200)
|
.expect(200)
|
||||||
|
|
||||||
|
@ -142,8 +144,9 @@ describe("/workflows", () => {
|
||||||
await builderEndpointShouldBlockNormalUsers({
|
await builderEndpointShouldBlockNormalUsers({
|
||||||
request,
|
request,
|
||||||
method: "DELETE",
|
method: "DELETE",
|
||||||
url: `/api/${instance._id}/workflows/${workflow.id}/${workflow._rev}`,
|
url: `/api/workflows/${workflow.id}/${workflow._rev}`,
|
||||||
instanceId: instance._id,
|
instanceId: instance._id,
|
||||||
|
appId: app._id,
|
||||||
})
|
})
|
||||||
})
|
})
|
||||||
})
|
})
|
||||||
|
|
|
@ -6,19 +6,11 @@ const { USER_MANAGEMENT, LIST_USERS } = require("../../utilities/accessLevels")
|
||||||
const router = Router()
|
const router = Router()
|
||||||
|
|
||||||
router
|
router
|
||||||
.get("/api/:instanceId/users", authorized(LIST_USERS), controller.fetch)
|
.get("/api/users", authorized(LIST_USERS), controller.fetch)
|
||||||
.get(
|
.get("/api/users/:username", authorized(USER_MANAGEMENT), controller.find)
|
||||||
"/api/:instanceId/users/:username",
|
.post("/api/users", authorized(USER_MANAGEMENT), controller.create)
|
||||||
authorized(USER_MANAGEMENT),
|
|
||||||
controller.find
|
|
||||||
)
|
|
||||||
.post(
|
|
||||||
"/api/:instanceId/users",
|
|
||||||
authorized(USER_MANAGEMENT),
|
|
||||||
controller.create
|
|
||||||
)
|
|
||||||
.delete(
|
.delete(
|
||||||
"/api/:instanceId/users/:username",
|
"/api/users/:username",
|
||||||
authorized(USER_MANAGEMENT),
|
authorized(USER_MANAGEMENT),
|
||||||
controller.destroy
|
controller.destroy
|
||||||
)
|
)
|
||||||
|
|
|
@ -8,13 +8,13 @@ const router = Router()
|
||||||
|
|
||||||
router
|
router
|
||||||
.get(
|
.get(
|
||||||
"/api/:instanceId/views/:viewName",
|
"/api/views/:viewName",
|
||||||
authorized(READ_VIEW, ctx => ctx.params.viewName),
|
authorized(READ_VIEW, ctx => ctx.params.viewName),
|
||||||
recordController.fetchView
|
recordController.fetchView
|
||||||
)
|
)
|
||||||
.get("/api/:instanceId/views", authorized(BUILDER), viewController.fetch)
|
.get("/api/views", authorized(BUILDER), viewController.fetch)
|
||||||
// .patch("/api/:databaseId/views", controller.update);
|
// .patch("/api/:databaseId/views", controller.update);
|
||||||
// .delete("/api/:instanceId/views/:viewId/:revId", controller.destroy);
|
// .delete("/api/:instanceId/views/:viewId/:revId", controller.destroy);
|
||||||
.post("/api/:instanceId/views", authorized(BUILDER), viewController.create)
|
.post("/api/views", authorized(BUILDER), viewController.create)
|
||||||
|
|
||||||
module.exports = router
|
module.exports = router
|
||||||
|
|
|
@ -6,20 +6,16 @@ const { BUILDER } = require("../../utilities/accessLevels")
|
||||||
const router = Router()
|
const router = Router()
|
||||||
|
|
||||||
router
|
router
|
||||||
.get("/api/:instanceId/workflows", authorized(BUILDER), controller.fetch)
|
.get("/api/workflows", authorized(BUILDER), controller.fetch)
|
||||||
.get("/api/workflows/:id", authorized(BUILDER), controller.find)
|
.get("/api/workflows/:id", authorized(BUILDER), controller.find)
|
||||||
.get(
|
.get(
|
||||||
"/api/:instanceId/workflows/:id/:action",
|
"/api/workflows/:id/:action",
|
||||||
authorized(BUILDER),
|
authorized(BUILDER),
|
||||||
controller.fetchActionScript
|
controller.fetchActionScript
|
||||||
)
|
)
|
||||||
.put("/api/:instanceId/workflows", authorized(BUILDER), controller.update)
|
.put("/api/workflows", authorized(BUILDER), controller.update)
|
||||||
.post("/api/:instanceId/workflows", authorized(BUILDER), controller.create)
|
.post("/api/workflows", authorized(BUILDER), controller.create)
|
||||||
.post("/api/workflows/action", controller.executeAction)
|
.post("/api/workflows/action", controller.executeAction)
|
||||||
.delete(
|
.delete("/api/workflows/:id/:rev", authorized(BUILDER), controller.destroy)
|
||||||
"/api/:instanceId/workflows/:id/:rev",
|
|
||||||
authorized(BUILDER),
|
|
||||||
controller.destroy
|
|
||||||
)
|
|
||||||
|
|
||||||
module.exports = router
|
module.exports = router
|
||||||
|
|
|
@ -1,10 +1,11 @@
|
||||||
const jwt = require("jsonwebtoken")
|
const jwt = require("jsonwebtoken")
|
||||||
const STATUS_CODES = require("../utilities/statusCodes")
|
const STATUS_CODES = require("../utilities/statusCodes")
|
||||||
const env = require("../environment")
|
|
||||||
const accessLevelController = require("../api/controllers/accesslevel")
|
const accessLevelController = require("../api/controllers/accesslevel")
|
||||||
const {
|
const {
|
||||||
ADMIN_LEVEL_ID,
|
ADMIN_LEVEL_ID,
|
||||||
POWERUSER_LEVEL_ID,
|
POWERUSER_LEVEL_ID,
|
||||||
|
BUILDER_LEVEL_ID,
|
||||||
|
ANON_LEVEL_ID,
|
||||||
} = require("../utilities/accessLevels")
|
} = require("../utilities/accessLevels")
|
||||||
|
|
||||||
module.exports = async (ctx, next) => {
|
module.exports = async (ctx, next) => {
|
||||||
|
@ -15,16 +16,21 @@ module.exports = async (ctx, next) => {
|
||||||
|
|
||||||
const appToken = ctx.cookies.get("budibase:token")
|
const appToken = ctx.cookies.get("budibase:token")
|
||||||
const builderToken = ctx.cookies.get("builder:token")
|
const builderToken = ctx.cookies.get("builder:token")
|
||||||
const isBuilderAgent = ctx.headers["x-user-agent"] === "Budibase Builder"
|
|
||||||
|
|
||||||
// all admin api access should auth with buildertoken and 'Budibase Builder user agent
|
if (builderToken) {
|
||||||
const shouldAuthAsBuilder = isBuilderAgent && builderToken
|
try {
|
||||||
|
const jwtPayload = jwt.verify(builderToken, ctx.config.jwtSecret)
|
||||||
if (shouldAuthAsBuilder) {
|
ctx.isAuthenticated = jwtPayload.accessLevelId === BUILDER_LEVEL_ID
|
||||||
const builderTokenValid = builderToken === env.ADMIN_SECRET
|
ctx.user = {
|
||||||
|
...jwtPayload,
|
||||||
ctx.isAuthenticated = builderTokenValid
|
accessLevel: await getAccessLevel(
|
||||||
ctx.isBuilder = builderTokenValid
|
jwtPayload.instanceId,
|
||||||
|
jwtPayload.accessLevelId
|
||||||
|
),
|
||||||
|
}
|
||||||
|
} catch (_) {
|
||||||
|
// empty: do nothing
|
||||||
|
}
|
||||||
|
|
||||||
await next()
|
await next()
|
||||||
return
|
return
|
||||||
|
@ -46,7 +52,7 @@ module.exports = async (ctx, next) => {
|
||||||
jwtPayload.accessLevelId
|
jwtPayload.accessLevelId
|
||||||
),
|
),
|
||||||
}
|
}
|
||||||
ctx.isAuthenticated = true
|
ctx.isAuthenticated = ctx.user.accessLevelId !== ANON_LEVEL_ID
|
||||||
} catch (err) {
|
} catch (err) {
|
||||||
ctx.throw(err.status || STATUS_CODES.FORBIDDEN, err.text)
|
ctx.throw(err.status || STATUS_CODES.FORBIDDEN, err.text)
|
||||||
}
|
}
|
||||||
|
@ -57,7 +63,9 @@ module.exports = async (ctx, next) => {
|
||||||
const getAccessLevel = async (instanceId, accessLevelId) => {
|
const getAccessLevel = async (instanceId, accessLevelId) => {
|
||||||
if (
|
if (
|
||||||
accessLevelId === POWERUSER_LEVEL_ID ||
|
accessLevelId === POWERUSER_LEVEL_ID ||
|
||||||
accessLevelId === ADMIN_LEVEL_ID
|
accessLevelId === ADMIN_LEVEL_ID ||
|
||||||
|
accessLevelId === BUILDER_LEVEL_ID ||
|
||||||
|
accessLevelId === ANON_LEVEL_ID
|
||||||
) {
|
) {
|
||||||
return {
|
return {
|
||||||
_id: accessLevelId,
|
_id: accessLevelId,
|
||||||
|
@ -69,6 +77,8 @@ const getAccessLevel = async (instanceId, accessLevelId) => {
|
||||||
const findAccessContext = {
|
const findAccessContext = {
|
||||||
params: {
|
params: {
|
||||||
levelId: accessLevelId,
|
levelId: accessLevelId,
|
||||||
|
},
|
||||||
|
user: {
|
||||||
instanceId,
|
instanceId,
|
||||||
},
|
},
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,6 +2,7 @@ const {
|
||||||
adminPermissions,
|
adminPermissions,
|
||||||
ADMIN_LEVEL_ID,
|
ADMIN_LEVEL_ID,
|
||||||
POWERUSER_LEVEL_ID,
|
POWERUSER_LEVEL_ID,
|
||||||
|
BUILDER_LEVEL_ID,
|
||||||
BUILDER,
|
BUILDER,
|
||||||
} = require("../utilities/accessLevels")
|
} = require("../utilities/accessLevels")
|
||||||
|
|
||||||
|
@ -10,7 +11,11 @@ module.exports = (permName, getItemId) => async (ctx, next) => {
|
||||||
ctx.throw(403, "Session not authenticated")
|
ctx.throw(403, "Session not authenticated")
|
||||||
}
|
}
|
||||||
|
|
||||||
if (ctx.isBuilder) {
|
if (!ctx.user) {
|
||||||
|
ctx.throw(403, "User not found")
|
||||||
|
}
|
||||||
|
|
||||||
|
if (ctx.user.accessLevel._id === BUILDER_LEVEL_ID) {
|
||||||
await next()
|
await next()
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
@ -20,10 +25,6 @@ module.exports = (permName, getItemId) => async (ctx, next) => {
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
if (!ctx.user) {
|
|
||||||
ctx.throw(403, "User not found")
|
|
||||||
}
|
|
||||||
|
|
||||||
const permissionId = ({ name, itemId }) => name + (itemId ? `-${itemId}` : "")
|
const permissionId = ({ name, itemId }) => name + (itemId ? `-${itemId}` : "")
|
||||||
|
|
||||||
if (ctx.user.accessLevel._id === ADMIN_LEVEL_ID) {
|
if (ctx.user.accessLevel._id === ADMIN_LEVEL_ID) {
|
||||||
|
|
|
@ -5,6 +5,8 @@ const workflowController = require("../api/controllers/workflow")
|
||||||
// Access Level IDs
|
// Access Level IDs
|
||||||
const ADMIN_LEVEL_ID = "ADMIN"
|
const ADMIN_LEVEL_ID = "ADMIN"
|
||||||
const POWERUSER_LEVEL_ID = "POWER_USER"
|
const POWERUSER_LEVEL_ID = "POWER_USER"
|
||||||
|
const BUILDER_LEVEL_ID = "BUILDER"
|
||||||
|
const ANON_LEVEL_ID = "ANON"
|
||||||
|
|
||||||
// Permissions
|
// Permissions
|
||||||
const READ_MODEL = "read-model"
|
const READ_MODEL = "read-model"
|
||||||
|
@ -28,7 +30,7 @@ const generateAdminPermissions = async instanceId => [
|
||||||
|
|
||||||
const generatePowerUserPermissions = async instanceId => {
|
const generatePowerUserPermissions = async instanceId => {
|
||||||
const fetchModelsCtx = {
|
const fetchModelsCtx = {
|
||||||
params: {
|
user: {
|
||||||
instanceId,
|
instanceId,
|
||||||
},
|
},
|
||||||
}
|
}
|
||||||
|
@ -36,7 +38,7 @@ const generatePowerUserPermissions = async instanceId => {
|
||||||
const models = fetchModelsCtx.body
|
const models = fetchModelsCtx.body
|
||||||
|
|
||||||
const fetchViewsCtx = {
|
const fetchViewsCtx = {
|
||||||
params: {
|
user: {
|
||||||
instanceId,
|
instanceId,
|
||||||
},
|
},
|
||||||
}
|
}
|
||||||
|
@ -44,7 +46,7 @@ const generatePowerUserPermissions = async instanceId => {
|
||||||
const views = fetchViewsCtx.body
|
const views = fetchViewsCtx.body
|
||||||
|
|
||||||
const fetchWorkflowsCtx = {
|
const fetchWorkflowsCtx = {
|
||||||
params: {
|
user: {
|
||||||
instanceId,
|
instanceId,
|
||||||
},
|
},
|
||||||
}
|
}
|
||||||
|
@ -83,6 +85,8 @@ const generatePowerUserPermissions = async instanceId => {
|
||||||
module.exports = {
|
module.exports = {
|
||||||
ADMIN_LEVEL_ID,
|
ADMIN_LEVEL_ID,
|
||||||
POWERUSER_LEVEL_ID,
|
POWERUSER_LEVEL_ID,
|
||||||
|
BUILDER_LEVEL_ID,
|
||||||
|
ANON_LEVEL_ID,
|
||||||
READ_MODEL,
|
READ_MODEL,
|
||||||
WRITE_MODEL,
|
WRITE_MODEL,
|
||||||
READ_VIEW,
|
READ_VIEW,
|
||||||
|
@ -90,6 +94,7 @@ module.exports = {
|
||||||
USER_MANAGEMENT,
|
USER_MANAGEMENT,
|
||||||
BUILDER,
|
BUILDER,
|
||||||
LIST_USERS,
|
LIST_USERS,
|
||||||
|
adminPermissions,
|
||||||
generateAdminPermissions,
|
generateAdminPermissions,
|
||||||
generatePowerUserPermissions,
|
generatePowerUserPermissions,
|
||||||
}
|
}
|
||||||
|
|
|
@ -45,18 +45,16 @@ const copyClientLib = async (appPath, pageName) => {
|
||||||
|
|
||||||
const buildIndexHtml = async (config, appId, pageName, appPath, pkg) => {
|
const buildIndexHtml = async (config, appId, pageName, appPath, pkg) => {
|
||||||
const appPublicPath = publicPath(appPath, pageName)
|
const appPublicPath = publicPath(appPath, pageName)
|
||||||
const appRootPath = rootPath(config, appId)
|
|
||||||
|
|
||||||
const stylesheetUrl = s =>
|
const stylesheetUrl = s =>
|
||||||
s.startsWith("http") ? s : `/${rootPath(config, appId)}/${s}`
|
s.startsWith("http") ? s : `/${rootPath(config, appId)}/${s}`
|
||||||
|
|
||||||
const templateObj = {
|
const templateObj = {
|
||||||
title: pkg.page.title || "Budibase App",
|
title: pkg.page.title || "Budibase App",
|
||||||
favicon: `${appRootPath}/${pkg.page.favicon || "/_shared/favicon.png"}`,
|
favicon: `${pkg.page.favicon || "/_shared/favicon.png"}`,
|
||||||
stylesheets: (pkg.page.stylesheets || []).map(stylesheetUrl),
|
stylesheets: (pkg.page.stylesheets || []).map(stylesheetUrl),
|
||||||
screenStyles: pkg.screens.filter(s => s._css).map(s => s._css),
|
screenStyles: pkg.screens.filter(s => s._css).map(s => s._css),
|
||||||
pageStyle: pkg.page._css,
|
pageStyle: pkg.page._css,
|
||||||
appRootPath,
|
|
||||||
}
|
}
|
||||||
|
|
||||||
const indexHtmlTemplate = await readFile(
|
const indexHtmlTemplate = await readFile(
|
||||||
|
@ -74,7 +72,6 @@ const buildIndexHtml = async (config, appId, pageName, appPath, pkg) => {
|
||||||
const buildFrontendAppDefinition = async (config, appId, pageName, pkg) => {
|
const buildFrontendAppDefinition = async (config, appId, pageName, pkg) => {
|
||||||
const appPath = appPackageFolder(config, appId)
|
const appPath = appPackageFolder(config, appId)
|
||||||
const appPublicPath = publicPath(appPath, pageName)
|
const appPublicPath = publicPath(appPath, pageName)
|
||||||
const appRootPath = rootPath(config, appId)
|
|
||||||
|
|
||||||
const filename = join(appPublicPath, "clientFrontendDefinition.js")
|
const filename = join(appPublicPath, "clientFrontendDefinition.js")
|
||||||
|
|
||||||
|
@ -89,7 +86,6 @@ const buildFrontendAppDefinition = async (config, appId, pageName, pkg) => {
|
||||||
}
|
}
|
||||||
|
|
||||||
const clientUiDefinition = JSON.stringify({
|
const clientUiDefinition = JSON.stringify({
|
||||||
appRootPath: appRootPath,
|
|
||||||
page: pkg.page,
|
page: pkg.page,
|
||||||
screens: pkg.screens,
|
screens: pkg.screens,
|
||||||
libraries: [
|
libraries: [
|
||||||
|
|
|
@ -24,15 +24,15 @@
|
||||||
{{ /each }}
|
{{ /each }}
|
||||||
|
|
||||||
{{ each(options.screenStyles) }}
|
{{ each(options.screenStyles) }}
|
||||||
<link rel='stylesheet' href='{{ appRootPath }}{{ @this }}'>
|
<link rel='stylesheet' href='/assets{{ @this }}'>
|
||||||
{{ /each }}
|
{{ /each }}
|
||||||
|
|
||||||
{{ if(options.pageStyle) }}
|
{{ if(options.pageStyle) }}
|
||||||
<link rel='stylesheet' href='{{ appRootPath }}{{ pageStyle }}'>
|
<link rel='stylesheet' href='/assets{{ pageStyle }}'>
|
||||||
{{ /if }}
|
{{ /if }}
|
||||||
|
|
||||||
<script src='{{ appRootPath }}/clientFrontendDefinition.js'></script>
|
<script src='/assets/clientFrontendDefinition.js'></script>
|
||||||
<script src='{{ appRootPath }}/budibase-client.js'></script>
|
<script src='/assets/budibase-client.js'></script>
|
||||||
|
|
||||||
</head>
|
</head>
|
||||||
|
|
||||||
|
|
|
@ -0,0 +1,19 @@
|
||||||
|
const { BUILDER_LEVEL_ID } = require("../accessLevels")
|
||||||
|
const jwt = require("jsonwebtoken")
|
||||||
|
|
||||||
|
module.exports = (ctx, appId, instanceId) => {
|
||||||
|
const builderUser = {
|
||||||
|
userId: "BUILDER",
|
||||||
|
accessLevelId: BUILDER_LEVEL_ID,
|
||||||
|
instanceId,
|
||||||
|
appId,
|
||||||
|
}
|
||||||
|
|
||||||
|
const token = jwt.sign(builderUser, ctx.config.jwtSecret, {
|
||||||
|
expiresIn: "30 days",
|
||||||
|
})
|
||||||
|
|
||||||
|
var expiry = new Date()
|
||||||
|
expiry.setDate(expiry.getDate() + 30)
|
||||||
|
ctx.cookies.set("builder:token", token, { expires: expiry, httpOnly: false })
|
||||||
|
}
|
|
@ -98,6 +98,5 @@ window["##BUDIBASE_APPDEFINITION##"] = {
|
||||||
nodeId: 0,
|
nodeId: 0,
|
||||||
},
|
},
|
||||||
componentLibraries: ["budibase-standard-components"],
|
componentLibraries: ["budibase-standard-components"],
|
||||||
appRootPath: "/testApp2",
|
|
||||||
props: {},
|
props: {},
|
||||||
}
|
}
|
||||||
|
|
|
@ -8,7 +8,6 @@
|
||||||
fcRoot(FusionCharts, Charts, FusionTheme)
|
fcRoot(FusionCharts, Charts, FusionTheme)
|
||||||
|
|
||||||
export let _bb
|
export let _bb
|
||||||
export let _instanceId
|
|
||||||
export let model
|
export let model
|
||||||
export let type = "column2d"
|
export let type = "column2d"
|
||||||
|
|
||||||
|
@ -25,7 +24,7 @@
|
||||||
}
|
}
|
||||||
|
|
||||||
async function fetchData() {
|
async function fetchData() {
|
||||||
const FETCH_RECORDS_URL = `/api/${_instanceId}/views/all_${model}`
|
const FETCH_RECORDS_URL = `/api/views/all_${model}`
|
||||||
const response = await _bb.api.get(FETCH_RECORDS_URL)
|
const response = await _bb.api.get(FETCH_RECORDS_URL)
|
||||||
if (response.status === 200) {
|
if (response.status === 200) {
|
||||||
const json = await response.json()
|
const json = await response.json()
|
||||||
|
|
|
@ -2,7 +2,6 @@
|
||||||
import { onMount } from "svelte"
|
import { onMount } from "svelte"
|
||||||
|
|
||||||
export let _bb
|
export let _bb
|
||||||
export let _instanceId
|
|
||||||
export let model
|
export let model
|
||||||
|
|
||||||
let username
|
let username
|
||||||
|
@ -21,19 +20,19 @@
|
||||||
$: fields = Object.keys(schema)
|
$: fields = Object.keys(schema)
|
||||||
|
|
||||||
async function fetchModel() {
|
async function fetchModel() {
|
||||||
const FETCH_MODEL_URL = `/api/${_instanceId}/models/${model}`
|
const FETCH_MODEL_URL = `/api/models/${model}`
|
||||||
const response = await _bb.api.get(FETCH_MODEL_URL)
|
const response = await _bb.api.get(FETCH_MODEL_URL)
|
||||||
modelDef = await response.json()
|
modelDef = await response.json()
|
||||||
schema = modelDef.schema
|
schema = modelDef.schema
|
||||||
}
|
}
|
||||||
|
|
||||||
async function save() {
|
async function save() {
|
||||||
const SAVE_RECORD_URL = `/api/${_instanceId}/${model}/records`
|
const SAVE_RECORD_URL = `/api/${model}/records`
|
||||||
const response = await _bb.api.post(SAVE_RECORD_URL, newModel)
|
const response = await _bb.api.post(SAVE_RECORD_URL, newModel)
|
||||||
const json = await response.json()
|
const json = await response.json()
|
||||||
|
|
||||||
store.update(state => {
|
store.update(state => {
|
||||||
state[model._id] = [...state[model], json]
|
state[model] = state[model] ? [...state[model], json] : [json]
|
||||||
return state
|
return state
|
||||||
})
|
})
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,7 +2,6 @@
|
||||||
import { onMount } from "svelte"
|
import { onMount } from "svelte"
|
||||||
|
|
||||||
export let _bb
|
export let _bb
|
||||||
export let _instanceId
|
|
||||||
export let model
|
export let model
|
||||||
export let layout = "list"
|
export let layout = "list"
|
||||||
|
|
||||||
|
@ -12,7 +11,7 @@
|
||||||
async function fetchData() {
|
async function fetchData() {
|
||||||
if (!model || !model.length) return
|
if (!model || !model.length) return
|
||||||
|
|
||||||
const FETCH_RECORDS_URL = `/api/${_instanceId}/views/all_${model}`
|
const FETCH_RECORDS_URL = `/api/views/all_${model}`
|
||||||
const response = await _bb.api.get(FETCH_RECORDS_URL)
|
const response = await _bb.api.get(FETCH_RECORDS_URL)
|
||||||
if (response.status === 200) {
|
if (response.status === 200) {
|
||||||
const json = await response.json()
|
const json = await response.json()
|
||||||
|
|
|
@ -3,14 +3,13 @@
|
||||||
|
|
||||||
export let _bb
|
export let _bb
|
||||||
export let onLoad
|
export let onLoad
|
||||||
export let _instanceId
|
|
||||||
export let model
|
export let model
|
||||||
|
|
||||||
let headers = []
|
let headers = []
|
||||||
let store = _bb.store
|
let store = _bb.store
|
||||||
|
|
||||||
async function fetchData() {
|
async function fetchData() {
|
||||||
const FETCH_RECORDS_URL = `/api/${_instanceId}/views/all_${model}`
|
const FETCH_RECORDS_URL = `/api/views/all_${model}`
|
||||||
|
|
||||||
const response = await _bb.api.get(FETCH_RECORDS_URL)
|
const response = await _bb.api.get(FETCH_RECORDS_URL)
|
||||||
if (response.status === 200) {
|
if (response.status === 200) {
|
||||||
|
|
|
@ -2,7 +2,6 @@
|
||||||
import { onMount } from "svelte"
|
import { onMount } from "svelte"
|
||||||
|
|
||||||
export let _bb
|
export let _bb
|
||||||
export let _instanceId
|
|
||||||
export let model
|
export let model
|
||||||
export let layout = "list"
|
export let layout = "list"
|
||||||
|
|
||||||
|
@ -13,7 +12,7 @@
|
||||||
async function fetchData() {
|
async function fetchData() {
|
||||||
if (!model || !model.length) return
|
if (!model || !model.length) return
|
||||||
|
|
||||||
const FETCH_RECORDS_URL = `/api/${_instanceId}/views/all_${model}`
|
const FETCH_RECORDS_URL = `/api/views/all_${model}`
|
||||||
const response = await _bb.api.get(FETCH_RECORDS_URL)
|
const response = await _bb.api.get(FETCH_RECORDS_URL)
|
||||||
if (response.status === 200) {
|
if (response.status === 200) {
|
||||||
const json = await response.json()
|
const json = await response.json()
|
||||||
|
|
|
@ -13,30 +13,17 @@
|
||||||
let password = ""
|
let password = ""
|
||||||
let loading = false
|
let loading = false
|
||||||
let error = false
|
let error = false
|
||||||
let _logo = ""
|
|
||||||
let _buttonClass = ""
|
let _buttonClass = ""
|
||||||
let _inputClass = ""
|
let _inputClass = ""
|
||||||
|
|
||||||
$: {
|
$: {
|
||||||
_logo = _bb.relativeUrl(logo)
|
|
||||||
_buttonClass = buttonClass || "default-button"
|
_buttonClass = buttonClass || "default-button"
|
||||||
_inputClass = inputClass || "default-input"
|
_inputClass = inputClass || "default-input"
|
||||||
}
|
}
|
||||||
|
|
||||||
const login = async () => {
|
const login = async () => {
|
||||||
loading = true
|
loading = true
|
||||||
const response = await fetch(_bb.relativeUrl("/api/authenticate"), {
|
const response = await _bb.api.post("/api/authenticate", { username, password })
|
||||||
body: JSON.stringify({
|
|
||||||
username,
|
|
||||||
password,
|
|
||||||
}),
|
|
||||||
headers: {
|
|
||||||
"Content-Type": "application/json",
|
|
||||||
"x-user-agent": "Budibase Builder",
|
|
||||||
},
|
|
||||||
method: "POST",
|
|
||||||
})
|
|
||||||
|
|
||||||
if (response.status === 200) {
|
if (response.status === 200) {
|
||||||
const json = await response.json()
|
const json = await response.json()
|
||||||
localStorage.setItem("budibase:token", json.token)
|
localStorage.setItem("budibase:token", json.token)
|
||||||
|
@ -51,9 +38,9 @@
|
||||||
|
|
||||||
<div class="root">
|
<div class="root">
|
||||||
<div class="content">
|
<div class="content">
|
||||||
{#if _logo}
|
{#if logo}
|
||||||
<div class="logo-container">
|
<div class="logo-container">
|
||||||
<img src={_logo} alt="logo" />
|
<img src={logo} alt="logo" />
|
||||||
</div>
|
</div>
|
||||||
{/if}
|
{/if}
|
||||||
|
|
||||||
|
|
|
@ -15,7 +15,7 @@ export default async () => {
|
||||||
const { initialisePage } = createApp(
|
const { initialisePage } = createApp(
|
||||||
window.document,
|
window.document,
|
||||||
componentLibraries,
|
componentLibraries,
|
||||||
{ appRootPath: "" },
|
{},
|
||||||
appDef,
|
appDef,
|
||||||
user,
|
user,
|
||||||
{},
|
{},
|
||||||
|
|
Loading…
Reference in New Issue