Commit Graph

161 Commits

Author SHA1 Message Date
mike12345567 31d7a7a378 Adding basic permissions test which proves a public user can read from a table, but cannot write. 2021-02-09 17:24:36 +00:00
mike12345567 fee073fcfe Some more fixes after testing permissions a bit further. 2021-02-09 16:01:02 +00:00
mike12345567 c8ef404560 Fixing issues with builtin roles living in the database as well as in code (easier to change in the future this way) - discovered by basic test case. 2021-02-09 13:01:45 +00:00
mike12345567 7d8cdafc60 Making use of the resourceId in the middleware package. 2021-02-08 17:52:22 +00:00
mike12345567 cd729192ea Adding in resource IDs everywhere they should be accessible. 2021-02-08 17:22:07 +00:00
mike12345567 918a95071d Fixing a bug found by tests in auth. 2021-01-29 13:14:36 +00:00
mike12345567 4d1ad5e726 This commit includes some fixes for a few auth issues I found when I was working on this and a static page which shows the self hosting info to get the user going (if they end up there). 2021-01-28 18:30:59 +00:00
mike12345567 0c66d9fca4 When self hosting it is now possible to use a pretty URL to access the app rather than the normal appId. 2021-01-14 17:01:31 +00:00
mike12345567 1904ec8bb4 Updating API key controller in self-host mode to return self host API key. 2020-12-09 17:10:53 +00:00
mike12345567 bc5f520a03 Adding in self hosted API key. 2020-12-09 17:04:05 +00:00
mike12345567 65302e1dd9 Changing the role system to have permissions integrated rather than the permissions being per user. 2020-12-02 17:08:25 +00:00
mike12345567 05d5feb9fd Changing the naming of access levels to be roles. 2020-12-02 13:20:56 +00:00
Michael Drury b75bf13edc Another quick fix for apps to work again. 2020-11-19 20:42:49 +00:00
Michael Drury 7f3f11c68b Fixing issues thrown up by PR. 2020-11-19 20:31:11 +00:00
Michael Drury a6e9500be9 Linting. 2020-11-19 20:19:18 +00:00
Michael Drury c03923360b Minor update to make use of new client header to state the request is from the client, not the builder. 2020-11-19 20:18:28 +00:00
mike12345567 48f0608c74 Fixing some bugs with previous commit and updating to add the functionality of the api/routing/client. 2020-11-18 15:12:42 +00:00
mike12345567 acdc1e9a56 Updating to have proper access control via an accessController and nearly ready to spit out the routing structure. 2020-11-16 18:04:44 +00:00
Michael Drury 63b08e42aa Large update, tests passing, have simplifed access level API, access levels and permissions are now totally separate. 2020-11-13 15:35:20 +00:00
Michael Drury e35817f5f3 Linting. 2020-11-12 17:43:17 +00:00
mike12345567 2472168477 Tests failing but starting to progress. 2020-11-12 17:06:55 +00:00
Michael Drury 4852ecf96a WIP - this is working towards the permissions system but stopping here for the night, this is currently not functional. 2020-11-11 17:34:15 +00:00
mike12345567 7600710125 The API that the components library would use was not always consistent with the API client library would use and this would sometimes break things. 2020-11-09 09:42:35 +00:00
Michael Drury 0cc837b220 Updating server test cases with the header for appId. 2020-11-03 15:00:39 +00:00
Michael Drury a35b6a57f9 Further work towards the re-implementation of auth, changing how the appId is determined, now it mainly will use a header, and a cookie which will be written to store the current status of appId. 2020-11-03 13:45:49 +00:00
mike12345567 0c81516662 Some more re-work, more testing needed to auth stuff. 2020-11-02 20:14:10 +00:00
mike12345567 d587bad363 Renaming instanceId -> appId to reduce confusion through the system, there only is one ID now. 2020-10-29 10:28:27 +00:00
mike12345567 d79be3c854 Initial work into multi-tenancy removal, experiencing issues with test cases at this point. 2020-10-28 20:35:06 +00:00
mike12345567 a967645a21 Some initial work towards webhooks, that generates schema similar to integromat. 2020-10-22 17:48:32 +01:00
Martin McKeaveney fab9f8f1c8 merge from master 2020-10-15 14:41:29 +01:00
Martin McKeaveney 8a936e0927 more auth bugfixes 2020-10-15 14:26:33 +01:00
mike12345567 bbe085f734 Some changes for authentication and getting rid of allScreens component of store as it was causing confusion and breakages. 2020-10-15 13:52:56 +01:00
Martin McKeaveney 3abf7daa73 frontend bug fixes, remove bindable prop, add not equals filter 2020-10-14 21:43:36 +01:00
Martin McKeaveney c329063f61 fix for appid referer split 2020-10-14 17:30:00 +01:00
Martin McKeaveney a8dfb34112 don't show login component on logged in page, fix auth for app assets 2020-10-14 16:47:53 +01:00
Martin McKeaveney e95af51cde simplify user authentication, remove anon user, fix login cookie issues 2020-10-13 21:33:56 +01:00
mike12345567 2e49221ebc Merge branch 'master' of github.com:Budibase/budibase into endpoint-renaming 2020-10-12 13:54:34 +01:00
Martin McKeaveney 7f7594895b adding auth object to context rather than separate booleans 2020-10-12 13:32:52 +01:00
Martin McKeaveney dd2a84d58a support for external webhooks 2020-10-12 11:57:37 +01:00
mike12345567 3f0d205846 Merge branch 'master' of github.com:Budibase/budibase into endpoint-renaming 2020-10-12 09:41:42 +01:00
Martin McKeaveney 3f81757faa deployment API usage complete 2020-10-09 21:42:20 +01:00
mike12345567 d90c1e3dd3 Changing record -> row in this update, completing the update of renaming in the builder, this release needs further testing. 2020-10-09 19:10:28 +01:00
mike12345567 b400a06027 Updates for API usage after testing against local Dynamo. 2020-10-08 17:34:41 +01:00
mike12345567 f2b7d85b6e Fixing up middleware to handle uploads, views, records, automation runs and users. 2020-10-07 17:56:47 +01:00
mike12345567 fc2e2a8804 First work towards implementing Dynamo usage in the server when running in the cloud; this is for tracking usage against API keys. 2020-10-06 19:13:41 +01:00
mike12345567 0e4748003e Updates as per review comments. 2020-09-21 23:19:45 +01:00
mike12345567 ec265f6821 Update to improve test cases and get JOI to work as expected. 2020-09-16 19:25:52 +01:00
mike12345567 ad48b9fdd2 Adding joi validation to the workflow update and create to make sure structure is adhered to, this is built through a curried middleware, to validate on headers, body etc add multiple different validator middlewares to your endpoint. 2020-09-10 17:46:34 +01:00
Martin McKeaveney 3122334c35 lint 2020-07-07 21:29:20 +01:00
Martin McKeaveney 59c2f247a7 upload assets to s3 2020-06-29 19:15:43 +01:00
Michael Shanks d7b09f5b65 removed x-user-agent 2020-06-19 16:59:46 +01:00
Michael Shanks 11e56467b8 fixing broken tests 2020-06-18 20:41:37 +01:00
Michael Shanks bf952f8677 instanceid removal 2020-06-18 16:59:31 +01:00
Martin McKeaveney 07cf98b0de use custom user agent header 2020-06-03 19:35:04 +01:00
Michael Shanks 47162d806b logic to not use builder:token for apps running in dev 2020-06-03 17:05:36 +01:00
Michael Shanks 3bfe7840e4 access levels 2020-05-27 17:23:01 +01:00
Michael Shanks 52a3b4786f removing Authorization header 2020-05-18 11:53:04 +01:00
Michael Shanks b62449bf96 removing clientId from frontend, fixing invalid database name 2020-05-18 06:40:29 +01:00
Michael Shanks 18375a6d19 server tests in-memory and passing 2020-05-14 15:12:30 +01:00
Martin McKeaveney 2ad007fce0 further simplification of server code 2020-05-07 14:04:32 +01:00
Martin McKeaveney 94b2e0f134 further tidy up and removal 2020-05-07 13:52:24 +01:00