MirrorSave
/
budibase
mirror of https://github.com/Budibase/budibase.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
22,289 Commits 111 Branches 2,982 Tags 924 MiB
Commit Graph

58 Commits

Author SHA1 Message Date
mike12345567 e073bdb5a4 Fix for #5103 - some templates are built on an older version that stored permissions differently, we can't migrate these as they will keep being added, easiest to just support the old method (apply the old rule and convert to the new format when retrieving roles). 2022-03-28 16:34:50 +01:00
mike12345567 76e24018be Merge branch 'develop' of github.com:Budibase/budibase into lab-day/refactor-app-db 2022-01-31 14:09:07 +00:00
mike12345567 40c6eb2007 Main body of work, refactoring most usages. 2022-01-27 18:18:31 +00:00
Rory Powell 5cb6e19274 Add CSRF Token 2022-01-25 22:54:50 +00:00
mike12345567 836a2f5863 Switching out @budibase/auth to @budibase/backend-core. 2022-01-10 19:33:00 +00:00
mike12345567 831ef53319 Merge branch 'master' of github.com:Budibase/budibase into develop 2021-11-25 12:21:58 +00:00
mike12345567 e0f04abfb1 Updating to allow a list of roles to be retrieved, allowing resources to have multiple levels of role that they can be accessed via. 2021-11-15 15:26:09 +00:00
mike12345567 4268ad6f80 Fixing an issue discovered in #3385 - RBAC roles worked for applying lower levels of roles, but they didn't revoke access correctly, it would always fallback to the base permissions if higher permissions were set. 2021-11-15 13:48:26 +00:00
mike12345567 a0ebe7537d Merge branch 'develop' of github.com:Budibase/budibase into fix/user-metadata 2021-11-08 17:28:32 +00:00
mike12345567 9aa708588a Adding the sync call from the worker for creation, updating and deletion of users. Making sure that production and development apps are always up to date with user metadata. 2021-11-04 14:53:03 +00:00
mike12345567 9ce1866fab Fixing an issue with webhooks, couldn't use them in development (like getting schema) and making sure trigger will always use production app #3143. 2021-11-03 14:08:47 +00:00
Andrew Kingston abb1d33948 Lint with prettier 2021-06-15 19:39:40 +01:00
mike12345567 96ad77b41d Formatting 2021-05-21 14:49:59 +01:00
mike12345567 f56250824c Adding a debounced updated at timestamp to applications. 2021-05-21 13:07:10 +01:00
mike12345567 fba63134d1 Fixing some issues found when testing. 2021-05-20 20:48:24 +01:00
mike12345567 2d0122f7d6 A general re-work of some parts of the auth lib, as well as moving roles/permissions around to make it possible to build an admin API which has role knowledge. 2021-05-14 15:43:41 +01:00
mike12345567 e560390d8a Fixing an issue with portal calls causing the app to be re-locked. 2021-05-13 15:32:03 +01:00
mike12345567 799b3fc138 Updating locks to store the whole global user as well as implementing the locks on dev apps fetch. 2021-05-13 12:16:09 +01:00
mike12345567 2fa7ee5bcb Formatting. 2021-05-12 17:43:29 +01:00
mike12345567 f6fbeb4858 Putting together redis lock system. 2021-05-12 17:37:09 +01:00
mike12345567 8e729f92e1 Some more server-side fixes, updating it so that builders have permissions to do anything for now (means that a builder user doesn't have to be present in app database to work. 2021-04-14 16:00:58 +01:00
mike12345567 8b20fcb573 Getting most of the test auth working, adding in global builder configuration. 2021-04-13 18:12:35 +01:00
mike12345567 2aa26a2302 Some work towards implementing the current app cookie, removing some old dead code and re-working some of the different middlewares involved. 2021-04-12 18:31:58 +01:00
Martin McKeaveney 22a3f1691f in progress - currentapp token 2021-04-12 12:02:28 +01:00
Martin McKeaveney 0548fdc863 self endpoint, simple auth 2021-04-12 11:20:01 +01:00
Martin McKeaveney b5a5df7f60 login page 2021-04-11 11:35:55 +01:00
mike12345567 29787032f0 Fixing an issue with builder auth, adding a temporary endpoint which the server can set builder token on. 2021-04-07 16:08:29 +01:00
mike12345567 18ce4a1e19 Updating authorization test case to remove check for builder security and removing builder security while auth is being worked on - added an option to start stack without server so that user can start it in a debug mode if desired. 2021-04-07 11:54:51 +01:00
mike12345567 62360b1025 Fixing component definition test cases and fixing an issue found by authorized test case. 2021-04-07 11:27:15 +01:00
mike12345567 73e97e50f4 Updating some route middleware security. 2021-04-01 14:38:31 +01:00
Andrew Kingston 583faba9da Add BBUI to monorepo and use vite for builder, client lib and standard components 2021-03-31 16:14:56 +01:00
mike12345567 73cf53d149 Getting rid of the CLOUD environment variable, this makes no sense anymore, now there is isDev() and isProd() which will work out the current state of the cluster. 2021-03-24 18:21:23 +00:00
mike12345567 bf2adb0458 Updating API keys and changing over system to allow use of builder endpoints when running in cloud. 2021-03-22 16:39:11 +00:00
Martin McKeaveney 39f5bdc184
Merge pull request #1266 from Budibase/middleware-tests 
Middleware tests
 2021-03-10 15:28:11 +00:00
Martin McKeaveney 758e964977 tests for authorized middleware 2021-03-09 11:27:12 +00:00
mike12345567 039de61de3 Some fixes after testing webhooks as well as adding test cases for all webhook endpoints. 2021-03-08 15:57:19 +00:00
mike12345567 31d7a7a378 Adding basic permissions test which proves a public user can read from a table, but cannot write. 2021-02-09 17:24:36 +00:00
mike12345567 fee073fcfe Some more fixes after testing permissions a bit further. 2021-02-09 16:01:02 +00:00
mike12345567 c8ef404560 Fixing issues with builtin roles living in the database as well as in code (easier to change in the future this way) - discovered by basic test case. 2021-02-09 13:01:45 +00:00
mike12345567 7d8cdafc60 Making use of the resourceId in the middleware package. 2021-02-08 17:52:22 +00:00
mike12345567 1904ec8bb4 Updating API key controller in self-host mode to return self host API key. 2020-12-09 17:10:53 +00:00
mike12345567 bc5f520a03 Adding in self hosted API key. 2020-12-09 17:04:05 +00:00
mike12345567 65302e1dd9 Changing the role system to have permissions integrated rather than the permissions being per user. 2020-12-02 17:08:25 +00:00
mike12345567 05d5feb9fd Changing the naming of access levels to be roles. 2020-12-02 13:20:56 +00:00
mike12345567 acdc1e9a56 Updating to have proper access control via an accessController and nearly ready to spit out the routing structure. 2020-11-16 18:04:44 +00:00
Michael Drury 63b08e42aa Large update, tests passing, have simplifed access level API, access levels and permissions are now totally separate. 2020-11-13 15:35:20 +00:00
mike12345567 2472168477 Tests failing but starting to progress. 2020-11-12 17:06:55 +00:00
Michael Drury 4852ecf96a WIP - this is working towards the permissions system but stopping here for the night, this is currently not functional. 2020-11-11 17:34:15 +00:00
mike12345567 d587bad363 Renaming instanceId -> appId to reduce confusion through the system, there only is one ID now. 2020-10-29 10:28:27 +00:00
mike12345567 d79be3c854 Initial work into multi-tenancy removal, experiencing issues with test cases at this point. 2020-10-28 20:35:06 +00:00