MirrorSave
/
budibase
mirror of https://github.com/Budibase/budibase.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
10,403 Commits 154 Branches 3,067 Tags 984 MiB
Commit Graph

70 Commits

Author SHA1 Message Date
Rory Powell ffcf5354eb Add CSRF Token 2022-01-25 22:54:50 +00:00
mike12345567 1327394784 Switching out @budibase/auth to @budibase/backend-core. 2022-01-10 19:33:00 +00:00
Michael Drury 311fe5f2eb Syncing user metadata when builder opened as well as including all global user props for filtering/searching. 2021-11-03 22:23:00 +00:00
mike12345567 23071993c6 Fixing an issue with user metadata not always being present when user accessing app, causing weird issues. 2021-10-21 17:23:10 +01:00
mike12345567 183b6e7b50 Fixing issue with user's being logged in and trying to access other tenants public apps, this work makes sure that users from other tenants will not be 403'd immediately (too aggressive) but instead they will have all other their RBAC roles revoked. 2021-10-07 15:49:26 +01:00
mike12345567 46ea3f3e9e Revert "Merge pull request from Budibase/revert-2076-feature/multi-tenants" 
This reverts commit 4834b765be, reversing
changes made to 2456e69483.
 2021-08-05 09:59:08 +01:00
Michael Drury b86a6fddc9 Revert "Multi-tenancy/organisations" 2021-08-04 10:02:24 +01:00
mike12345567 912659a8ad First version of multi-tenancy, work still to be done. 2021-07-15 17:57:02 +01:00
mike12345567 fe4fcad77c Fixing issue with builder not always having the correct roles to view an app - global builders are now admins in all apps. 2021-06-04 12:13:29 +01:00
mike12345567 4d6e4475d3 Fixing some issues found when testing. 2021-05-20 20:48:24 +01:00
Andrew Kingston 797e8a8b67 Add explicit prettier options 2021-05-04 11:32:22 +01:00
Keviin Åberg Kultalahti 0afbf1649e lint:fix 2021-05-03 09:31:09 +02:00
mike12345567 eaa89c824e Updating the server to remove use of the email in the user ID. 2021-04-19 16:26:33 +01:00
mike12345567 aacfb6adba Updating worker/server to run in cypress properly. 2021-04-15 16:25:48 +01:00
mike12345567 56552d02ef Removing server 403. 2021-04-14 15:44:18 +01:00
mike12345567 6c58c90a7a Adding some controls around cookies, expiring them when a 403 is hit. 2021-04-14 15:43:34 +01:00
mike12345567 c7c158dd84 Fixing up tests, need to mock most of the worker functionality so that worker doesn't need to run during tests. 2021-04-13 20:25:43 +01:00
mike12345567 a1227c5819 Removing the lookup of _id in usage quota when in dev/self host for performance reasons as part of usage quota, re-writing some bits of fetch self for cleaner implementation, fixing some issues with updating/saving users from within app. 2021-04-13 17:11:55 +01:00
mike12345567 56b4b1583c Fixing some issues with the ctx.user, this was previously filled in by the old auth middleware. 2021-04-13 15:27:47 +01:00
Martin McKeaveney 3226ee90e2 Authentication working on builder homepage, integration with currentapp middleware 2021-04-13 11:56:57 +01:00
mike12345567 0e583eb185 Updating fetch self to get the global user as well as local metadata. 2021-04-12 15:54:14 +01:00
Martin McKeaveney e2ce7098c5 merge 2021-04-12 10:48:27 +01:00
Martin McKeaveney 98576f586e login page 2021-04-11 11:35:55 +01:00
mike12345567 4f71e11c94 Updating some test cases to work with new system. 2021-04-09 17:33:21 +01:00
mike12345567 3214abb89a Global users now working through the server, all requests proxied. 2021-04-09 15:11:49 +01:00
mike12345567 8cde219db9 First pass of global user configuration through existing user API with role mappings. 2021-04-08 16:58:33 +01:00
Martin McKeaveney 57b3a28708 Merge branch 'dev-experience' of https://github.com/Budibase/budibase into feature/global-user-management 2021-04-07 17:17:00 +01:00
mike12345567 30b7678c78 Fixing an issue with builder auth, adding a temporary endpoint which the server can set builder token on. 2021-04-07 16:08:29 +01:00
mike12345567 ae8dd1ec78 Removing use of the , replacing to ctx.appId to make it clear appId not part of the auth. 2021-03-29 17:32:05 +01:00
mike12345567 d66af9f151 Getting rid of the CLOUD environment variable, this makes no sense anymore, now there is isDev() and isProd() which will work out the current state of the cluster. 2021-03-24 18:21:23 +00:00
mike12345567 a48f1c72f2 Adding auth tests. 2021-03-10 12:20:07 +00:00
mike12345567 d9aa1a4890 Switching user activity state to an options field rather than boolean (more extensible). 2021-02-22 12:29:49 +00:00
mike12345567 c801203dc5 Adding the ability to set whether a user is active or not rather than deleting them, stops them from being able to log in to the system. 2021-02-22 11:39:58 +00:00
mike12345567 fa6d3e5e63 Updating the self auth endpoint to use the row processor. 2021-02-19 10:32:24 +00:00
Michael Drury 4a8bc72888 Merge pull request from Budibase/feature/selfhosting-info 
Quick update to self hosting to make next steps clear
 2021-02-01 13:24:50 +00:00
mike12345567 13fe937e67 This commit includes some fixes for a few auth issues I found when I was working on this and a static page which shows the self hosting info to get the user going (if they end up there). 2021-01-28 18:30:59 +00:00
Andrew Kingston 9d870dbccc Add current user bindings, and current user relationships as data sources 2021-01-28 14:29:35 +00:00
mike12345567 31bc45985f Update after testing, it is now possible to make a deployment to a self hosted environment. Some work still required, better authentication around MINIO deployment, currently the bucket is set to public read and there is no signing/verification to the upload process, also right now four different URLs are needed for the builder to connect correctly, ideally this shouldn't be the case. 2020-12-18 12:54:20 +00:00
mike12345567 74f5197865 Merge branch 'username-email' of github.com:Budibase/budibase into feature/security-update 2020-12-07 18:08:20 +00:00
Martin McKeaveney f05d696ef7 email as default user identifier 2020-12-04 12:22:45 +00:00
mike12345567 19faffff83 Changing the role system to have permissions integrated rather than the permissions being per user. 2020-12-02 17:08:25 +00:00
mike12345567 05225f7787 Changing the naming of access levels to be roles. 2020-12-02 13:20:56 +00:00
mike12345567 6148128554 Tests failing but starting to progress. 2020-11-12 17:06:55 +00:00
Michael Drury 19bcecf9f3 Linting and fixing client test case, have to mock getAppId as the location will never be set during testing. 2020-11-03 14:30:20 +00:00
Michael Drury d8da28502e Removing appIds from tokens to reduce confusion. 2020-11-03 13:58:17 +00:00
Michael Drury ac73b5c4aa Further work towards the re-implementation of auth, changing how the appId is determined, now it mainly will use a header, and a cookie which will be written to store the current status of appId. 2020-11-03 13:45:49 +00:00
mike12345567 a1fd261af6 Some more re-work, more testing needed to auth stuff. 2020-11-02 20:14:10 +00:00
Michael Drury c89f73efc0 Some updates, still WIP. 2020-11-02 15:46:08 +00:00
mike12345567 5b2be03bc3 Renaming instanceId -> appId to reduce confusion through the system, there only is one ID now. 2020-10-29 10:28:27 +00:00
mike12345567 ea03d099b3 Initial work into multi-tenancy removal, experiencing issues with test cases at this point. 2020-10-28 20:35:06 +00:00