Fixing an issue with redirect loop in auth,
This commit is contained in:
parent
4c5bcb11a2
commit
c311bae7b9
|
@ -17,6 +17,7 @@ const PermissionTypes = {
|
|||
BUILDER: "builder",
|
||||
VIEW: "view",
|
||||
QUERY: "query",
|
||||
APP: "app",
|
||||
}
|
||||
|
||||
function Permission(type, level) {
|
||||
|
@ -86,6 +87,7 @@ const BUILTIN_PERMISSIONS = {
|
|||
new Permission(PermissionTypes.QUERY, PermissionLevels.READ),
|
||||
new Permission(PermissionTypes.TABLE, PermissionLevels.READ),
|
||||
new Permission(PermissionTypes.VIEW, PermissionLevels.READ),
|
||||
new Permission(PermissionTypes.APP, PermissionLevels.READ),
|
||||
],
|
||||
},
|
||||
WRITE: {
|
||||
|
@ -118,6 +120,7 @@ const BUILTIN_PERMISSIONS = {
|
|||
new Permission(PermissionTypes.VIEW, PermissionLevels.ADMIN),
|
||||
new Permission(PermissionTypes.WEBHOOK, PermissionLevels.READ),
|
||||
new Permission(PermissionTypes.QUERY, PermissionLevels.ADMIN),
|
||||
new Permission(PermissionTypes.APP, PermissionLevels.ADMIN),
|
||||
],
|
||||
},
|
||||
}
|
||||
|
|
|
@ -7,12 +7,12 @@
|
|||
// Check this onMount rather than a reactive statement to avoid trumping
|
||||
// the login return URL functionality.
|
||||
onMount(() => {
|
||||
if ($auth.user) {
|
||||
if ($auth.user && !$auth.user.forceResetPassword) {
|
||||
$redirect("../")
|
||||
}
|
||||
})
|
||||
</script>
|
||||
|
||||
{#if !$auth.user}
|
||||
{#if !$auth.user || $auth.user.forceResetPassword}
|
||||
<slot />
|
||||
{/if}
|
||||
|
|
|
@ -5,6 +5,6 @@ const { BUILDER } = require("@budibase/auth/permissions")
|
|||
|
||||
const router = Router()
|
||||
|
||||
router.get("/api/analytics", authorized(BUILDER), controller.isEnabled)
|
||||
router.get("/api/analytics", controller.isEnabled)
|
||||
|
||||
module.exports = router
|
||||
|
|
|
@ -1,16 +1,16 @@
|
|||
const Router = require("@koa/router")
|
||||
const controller = require("../controllers/application")
|
||||
const authorized = require("../../middleware/authorized")
|
||||
const { BUILDER } = require("@budibase/auth/permissions")
|
||||
const { BUILDER, PermissionTypes, PermissionLevels } = require("@budibase/auth/permissions")
|
||||
|
||||
const router = Router()
|
||||
|
||||
router
|
||||
.get("/api/applications/:appId/definition", controller.fetchAppDefinition)
|
||||
.get("/api/applications", authorized(BUILDER), controller.fetch)
|
||||
.get("/api/applications", authorized(PermissionTypes.APP, PermissionLevels.READ), controller.fetch)
|
||||
.get(
|
||||
"/api/applications/:appId/appPackage",
|
||||
authorized(BUILDER),
|
||||
authorized(PermissionTypes.APP, PermissionLevels.READ),
|
||||
controller.fetchAppPackage
|
||||
)
|
||||
.put("/api/applications/:appId", authorized(BUILDER), controller.update)
|
||||
|
|
Loading…
Reference in New Issue