mirror of
https://github.com/n8n-io/n8n.git
synced 2025-03-05 20:50:17 -08:00
7400c35a48
* 🚀 Release 0.216.1 * fix(core): Do not allow arbitrary path traversal in the credential-translation endpoint (#5522) * fix(core): Do not allow arbitrary path traversal in BinaryDataManager (#5523) * fix(core): User update endpoint should only allow updating email, firstName, and lastName (#5526) * fix(core): Do not explicitly bypass auth on urls containing `.svg` (#5525) * 📚 Update CHANGELOG.md --------- Co-authored-by: janober <janober@users.noreply.github.com> Co-authored-by: कारतोफ्फेलस्क्रिप्ट™ <netroy@users.noreply.github.com> Co-authored-by: Jan Oberhauser <jan.oberhauser@gmail.com>
120 lines
2.9 KiB
TypeScript
120 lines
2.9 KiB
TypeScript
import {
|
|
AfterLoad,
|
|
AfterUpdate,
|
|
BeforeUpdate,
|
|
Column,
|
|
Entity,
|
|
Index,
|
|
OneToMany,
|
|
ManyToOne,
|
|
PrimaryGeneratedColumn,
|
|
BeforeInsert,
|
|
} from 'typeorm';
|
|
import { IsEmail, IsString, Length } from 'class-validator';
|
|
import type { IUser } from 'n8n-workflow';
|
|
import { Role } from './Role';
|
|
import type { SharedWorkflow } from './SharedWorkflow';
|
|
import type { SharedCredentials } from './SharedCredentials';
|
|
import { NoXss } from '../utils/customValidators';
|
|
import { objectRetriever, lowerCaser } from '../utils/transformers';
|
|
import { AbstractEntity, jsonColumnType } from './AbstractEntity';
|
|
import type { IPersonalizationSurveyAnswers, IUserSettings } from '@/Interfaces';
|
|
import type { AuthIdentity } from './AuthIdentity';
|
|
|
|
export const MIN_PASSWORD_LENGTH = 8;
|
|
|
|
export const MAX_PASSWORD_LENGTH = 64;
|
|
|
|
@Entity()
|
|
export class User extends AbstractEntity implements IUser {
|
|
@PrimaryGeneratedColumn('uuid')
|
|
id: string;
|
|
|
|
@Column({
|
|
length: 254,
|
|
nullable: true,
|
|
transformer: lowerCaser,
|
|
})
|
|
@Index({ unique: true })
|
|
@IsEmail()
|
|
email: string;
|
|
|
|
@Column({ length: 32, nullable: true })
|
|
@NoXss()
|
|
@IsString({ message: 'First name must be of type string.' })
|
|
@Length(1, 32, { message: 'First name must be $constraint1 to $constraint2 characters long.' })
|
|
firstName: string;
|
|
|
|
@Column({ length: 32, nullable: true })
|
|
@NoXss()
|
|
@IsString({ message: 'Last name must be of type string.' })
|
|
@Length(1, 32, { message: 'Last name must be $constraint1 to $constraint2 characters long.' })
|
|
lastName: string;
|
|
|
|
@Column({ nullable: true })
|
|
@IsString({ message: 'Password must be of type string.' })
|
|
password: string;
|
|
|
|
@Column({ type: String, nullable: true })
|
|
resetPasswordToken?: string | null;
|
|
|
|
// Expiration timestamp saved in seconds
|
|
@Column({ type: Number, nullable: true })
|
|
resetPasswordTokenExpiration?: number | null;
|
|
|
|
@Column({
|
|
type: jsonColumnType,
|
|
nullable: true,
|
|
transformer: objectRetriever,
|
|
})
|
|
personalizationAnswers: IPersonalizationSurveyAnswers | null;
|
|
|
|
@Column({
|
|
type: jsonColumnType,
|
|
nullable: true,
|
|
})
|
|
settings: IUserSettings | null;
|
|
|
|
@ManyToOne('Role', 'globalForUsers', { nullable: false })
|
|
globalRole: Role;
|
|
|
|
@Column()
|
|
globalRoleId: string;
|
|
|
|
@OneToMany('AuthIdentity', 'user')
|
|
authIdentities: AuthIdentity[];
|
|
|
|
@OneToMany('SharedWorkflow', 'user')
|
|
sharedWorkflows: SharedWorkflow[];
|
|
|
|
@OneToMany('SharedCredentials', 'user')
|
|
sharedCredentials: SharedCredentials[];
|
|
|
|
@Column({ type: Boolean, default: false })
|
|
disabled: boolean;
|
|
|
|
@BeforeInsert()
|
|
@BeforeUpdate()
|
|
preUpsertHook(): void {
|
|
this.email = this.email?.toLowerCase() ?? null;
|
|
}
|
|
|
|
@Column({ type: String, nullable: true })
|
|
@Index({ unique: true })
|
|
apiKey?: string | null;
|
|
|
|
/**
|
|
* Whether the user is pending setup completion.
|
|
*/
|
|
isPending: boolean;
|
|
|
|
@AfterLoad()
|
|
@AfterUpdate()
|
|
computeIsPending(): void {
|
|
this.isPending =
|
|
this.globalRole?.name === 'owner' && this.globalRole.scope === 'global'
|
|
? false
|
|
: this.password === null;
|
|
}
|
|
}
|