Lint

2024-04-24 09:50:54 +02:00 · 2024-04-24 09:50:54 +02:00 · e0216bb00c
parent 53badf9263
commit e0216bb00c
2 changed files with 19 additions and 10 deletions
--- a/packages/backend-core/src/middleware/authenticated.ts
+++ b/packages/backend-core/src/middleware/authenticated.ts
@ -13,7 +13,7 @@ import { getGlobalDB, doInTenant } from "../context"
 import { decrypt } from "../security/encryption"
 import * as identity from "../context/identity"
 import env from "../environment"
-import { Ctx, EndpointMatcher, SessionCookie } from "@budibase/types"
+import { Ctx, EndpointMatcher, SessionCookie, User } from "@budibase/types"
 import { InvalidAPIKeyError, ErrorCode } from "../errors"
 import tracer from "dd-trace"

@ -41,7 +41,10 @@ function finalise(ctx: any, opts: FinaliseOpts = {}) {
  ctx.version = opts.version
 }

-async function checkApiKey(apiKey: string, populateUser?: Function) {
+async function checkApiKey(
+  apiKey: string,
+  populateUser?: (userId: string, tenantId: string) => Promise<User>
+) {
  // check both the primary and the fallback internal api keys
  // this allows for rotation
  if (isValidInternalAPIKey(apiKey)) {
@ -128,7 +131,7 @@ export default function (
          } else {
            user = await getUser(userId, session.tenantId)
          }
-          user.csrfToken = session.csrfToken
+          ;(user as any).csrfToken = session.csrfToken

          if (session?.lastAccessedAt < timeMinusOneMinute()) {
            // make sure we denote that the session is still in use
@ -167,19 +170,25 @@ export default function (
        authenticated = false
      }

-      if (user) {
+      const isUser = (
+        user: any
+      ): user is User & { budibaseAccess?: string } => {
+        return user && user.email
+      }
+
+      if (isUser(user)) {
        tracer.setUser({
-          id: user?._id,
-          tenantId: user?.tenantId,
-          budibaseAccess: user?.budibaseAccess,
-          status: user?.status,
+          id: user._id!,
+          tenantId: user.tenantId,
+          budibaseAccess: user.budibaseAccess,
+          status: user.status,
        })
      }

      // isAuthenticated is a function, so use a variable to be able to check authed state
      finalise(ctx, { authenticated, user, internal, version, publicEndpoint })

-      if (user && user.email) {
+      if (isUser(user)) {
        return identity.doInUserContext(user, ctx, next)
      } else {
        return next()
--- a/packages/builder/src/components/backend/DataTable/modals/CreateEditColumn.svelte
+++ b/packages/builder/src/components/backend/DataTable/modals/CreateEditColumn.svelte
@ -29,7 +29,7 @@
  import ModalBindableInput from "components/common/bindings/ModalBindableInput.svelte"
  import { getBindings } from "components/backend/DataTable/formula"
  import JSONSchemaModal from "./JSONSchemaModal.svelte"
-  import { FieldType, FieldSubtype, SourceName } from "@budibase/types"
+  import { FieldType, SourceName } from "@budibase/types"
  import RelationshipSelector from "components/common/RelationshipSelector.svelte"
  import { RowUtils } from "@budibase/frontend-core"
  import ServerBindingPanel from "components/common/bindings/ServerBindingPanel.svelte"