CodeMirror/budibase
1
0
Fork 0
mirror of synced 2024-06-26 18:10:51 +12:00
Code Issues Projects Releases Wiki Activity
27484 commits 75 branches 2870 tags 851 MiB
Commit graph

36 commits

Author SHA1 Message Date
Michael Drury 0af56bed25 Exporting roles differently to fix issue raised by test. 2022-11-08 20:01:01 +00:00
Michael Drury 9cfdfc174b Quick fix to not expose the builder ID outside of the role impl. 2022-11-08 19:48:16 +00:00
mike12345567 4dceee33c5 Exporting some functions that were previously exported. 2022-11-08 18:35:21 +00:00
mike12345567 189fb90bb0 Typescript re-write of the roles layer, this is the backbone of a lot of our security features, and I believe the issue was generally to do with a lack of handling of null-ish inputs. 2022-11-08 18:25:37 +00:00
mike12345567 fa8fb88f82 Updating a few core endpoints to better integrate the groups system and make sure users always have the correct role ID updated onto them. 2022-09-22 18:27:43 +01:00
Rory Powell ba211b8490 Day pass middleware 2022-09-06 12:25:57 +01:00
Rory Powell a519eb0cdc update bulk create and bulk delete backend 2022-08-25 19:41:47 +01:00
mike12345567 b920f8cb05 Replacing all plural TS enumerations with singular - this involves a major rename of the DocumentTypes. 2022-08-11 13:50:05 +01:00
Rory Powell 87a7b8b701 Bulk session wipe fix + logging 2022-08-08 09:34:45 +01:00
mike12345567 a24f2157a5 Some various session fixes based on current data. 2022-08-05 21:35:26 +01:00
mike12345567 a2f18e2e44 Updating sessions to TS, adding env var to set the session update length, adding reasons for invalidation, making sure errors are never considered authenticated. 2022-08-05 17:13:03 +01:00
mike12345567 65e8af01f5 Some more logging, moving middlewares to backend-core. 2022-08-04 19:03:50 +01:00
mike12345567 ba7ad93932 Adding logging for session invalidation. 2022-08-04 16:06:59 +01:00
Andrew Kingston bb626ce924 Fix crashing when determining roles when no apps exist 2022-08-02 16:01:38 +01:00
Peter Clement b5ffd995f4 split out id parsing into pro repo 2022-07-15 11:29:20 +01:00
mike12345567 0a9edc48b6 Updating redis to use typescript and adding the option of a writethrough cache which can be used, by passing a DB and a value to be written + a delay for writes. 2022-06-23 20:22:51 +01:00
Martin McKeaveney 543cd8deb1 add better logging on session invalidation 2022-05-25 13:02:15 +01:00
Martin McKeaveney 50c6ad9630 catch block in invalidate sessions 2022-05-24 22:57:32 +01:00
Rory Powell c9b199570a Add execute automation to basic user / write permission set 2022-05-12 17:35:31 +01:00
Martin McKeaveney e01ef9bdfb merge with master 2022-04-26 10:21:45 +01:00
mike12345567 ea6f580501 Initial version of memory leak protection, making sure that PouchDB databases are closed correctly after use, using a combination of closures wrapping DB gets (this replaces the getDB, leaving only a dangerousGetDB function which can be used in very very specific scenarios) and then closing the DB as part of CLS hooked functions finishing. Also moving the GlobalDB init to the tenancy middleware as this is used everywhere in the worker/app services - means that not all getGlobalDB calls require an async closure around them. 2022-04-19 19:42:52 +01:00
Dean cbc3d3b946 Refactored the invalidate session functionality. 2022-04-07 12:32:00 +01:00
Martin McKeaveney d7dbaef8be
Merge pull request #5151 from mslourens/prevent_multiple_sessions 
invalidate sessions before login
 2022-04-06 22:18:17 +01:00
Maurits Lourens 9faaecb57e move invalidation to the creation of a session 2022-03-29 11:59:16 +02:00
mike12345567 e073bdb5a4 Fix for #5103 - some templates are built on an older version that stored permissions differently, we can't migrate these as they will keep being added, easiest to just support the old method (apply the old rule and convert to the new format when retrieving roles). 2022-03-28 16:34:50 +01:00
mike12345567 6a416cad59 Refactoring how endpoints are specified so that the middlewares can be applied in a more generic fashion. 2022-02-22 18:40:09 +00:00
Michael Drury f04a29dfef Using 10K iteration string stretching for encryption. 2022-02-14 21:37:40 +00:00
mike12345567 92d457ac00 Adding basic encrypt/decrypt pathway. 2022-02-14 18:32:09 +00:00
mike12345567 84bf8c3422 Adding tenancy to the API key, making the authenticated middleware aware of new user API keys, using a view to lookup the user by API key. 2022-02-11 22:24:48 +00:00
mike12345567 8f7a8553bb Fix for #4267 - allow admins to access all roles. 2022-02-04 17:34:39 +00:00
mike12345567 9fa10ff02f Refactoring backend-core tenancy to context, splitting out tenancy functionality to its own area. 2022-01-31 17:53:19 +00:00
mike12345567 76e24018be Merge branch 'develop' of github.com:Budibase/budibase into lab-day/refactor-app-db 2022-01-31 14:09:07 +00:00
mike12345567 4b1331450c Fixing some issues discovered by the cypress tests, cleaning up how Couch is used. 2022-01-28 18:52:34 +00:00
mike12345567 40c6eb2007 Main body of work, refactoring most usages. 2022-01-27 18:18:31 +00:00
Rory Powell 5cb6e19274 Add CSRF Token 2022-01-25 22:54:50 +00:00
mike12345567 b4f83fa867 Changing directory. 2022-01-10 19:30:35 +00:00