When exporting referenced modules during push, if a ModuleViewer's pinned
module_reference_id came from a cross-workspace import (and doesn't exist in
the current workspace DB), the pinned lookup failed silently. Because the
branch-local resolution was in an `else if` block, it never ran as a fallback.
This caused export() to execute without a version_id filter, serializing ALL
app_versions for the module (including broken stubs from other branches) into
the git commit — violating the one-version-per-branch contract.
Changed `else if (resolvedId && parentBranchId)` to
`if (!versionDbId && resolvedId && parentBranchId)` so branch-local
resolution always runs as a fallback when the pinned lookup doesn't resolve.
* fix: allow pro plan workspace admins to preview apps
Pro plan has multiEnvironment=false. validateVersionEnvironment blocked any
request with environment_name set — including 'development' — causing a 403
that the frontend mapped to the restricted-preview error page.
Backend: allow 'development' env through even when multi-env is disabled;
only block staging/production to prevent URL manipulation.
Frontend: use featureAccess.multiEnvironment flag in isBasicPlan check
instead of hardcoded plan === 'starter', so pro plan also skips env in the
redirect URL.
* fix: align useAppPreviewLink isBasicPlan check with multiEnvironment flag
Same pattern as AppsRoute — was checking plan === 'starter', missing pro
and basic plans. Now uses !featureAccess.multiEnvironment consistently.
* fix: preserve original URL on app-scoped logout redirect
The app-scoped branch in redirectToLoginPage hardcoded
/applications/:slug/login with no redirectTo, dropping the env/version
preview params. After re-login, AppLoginPage fell back to
/applications/:slug (released-app viewer URL), which 501s for unreleased
apps and shows "App URL Unavailable".
Mirror the workspace branch's behavior: honor avoidRedirection and
preserve the original URL as redirectTo when false. Update logoutAction
to pass false so the runtime Logout event returns the user to the same
preview view after sign-in.
Regression introduced in #15716.
* chore: update package-lock files after lts-3.16 merge
* revert: remove frontend isBasicPlan changes, backend fix is sufficient
Stripping env from the URL on the frontend is the wrong approach — for
multi-env plans, an explicit env param (e.g. staging) must be preserved.
The backend fix (allowing development env through when multi-env is
disabled) is the correct and sufficient fix.
* fix: use multiEnvironment flag to gate env param in preview URLs
Plans without multi-env access (basic, pro, starter) should not include
?env= in preview URLs — it is meaningless for them and was causing the
backend to reject the request.
Plans with multi-env (team, enterprise) preserve the env param so
per-env per-version preview links continue to work correctly.
* fix: use strict equality for multiEnvironment check to preserve env when featureAccess is not yet loaded
---------
Co-authored-by: Akshay Sasidharan <akshaysasidharan93@gmail.com>
* feat(external-api): return per-workspace inviteUrl in POST /ext/users response
* test(external-api): expand POST /ext/users coverage — roles, multi-group, and failure conditions
Adds 8 new e2e tests covering role assignment, per-workspace role variance,
multiple custom groups, and all key failure paths (duplicate email, missing
workspace, default group in groups field, nonexistent group, end-user/builder
group conflict). Also seeds the builder default group in maybeCreateDefaultGroupPermissions
to unblock role-assignment tests against test orgs.
* test(external-api): clarify conflicting-permissions error shape in users spec
* feat(external-api): update default status to INVITED in user-related DTOs and add defaultOrganizationId field
* feat(external-api): enhance invited user session guard and expand user creation tests for archived status
* feat(external-api): add tests for org-invite URL behavior based on user and workspace status
* feat(external-api): update user status handling and invite URL logic in tests
* feat(external-api): update invite URL logic and OrganizationUser status handling for active users
* fix: gate JS library loading on license fetch to fix public/released apps
JS libraries were silently skipped on public and released apps because
featureAccess?.appJsLibraries was still undefined when isComponentLayoutReady
fired. Introduces isLicenseFetched flag and handles fetch errors so the
gate is never blocked indefinitely for unauthenticated users.
* feat: remove license check for JS libraries loading in frontend and backend
* feat: gate version rename restrictions behind git sync; restore non-git-sync behavior
- Add useGitSyncConfig() hook as shared source of truth for isGitSyncEnabled
and defaultBranch (reads orgGit store, uses correct github_branch field)
- VersionDropdownItem: show branch name as display name for git-sync drafts;
show fixed description "Latest commit to main will appear here" for git-sync
drafts; hide "Edit details" only when git sync is ON (non-git-sync keeps
original cursor/tooltip/disabled behavior for module versions)
- VersionSwitcherButton: header shows "Draft" (not branch name) for git-sync
draft versions
- VersionManagerDropdown: source isGitSyncEnabled from hook; render
EditVersionModal only for non-git-sync workspaces
- CreateDraftVersionModal: show version name input only for non-git-sync;
set fixed draft name (branch name) and description when git sync is ON;
replace appGit-based effect with useGitSyncConfig hook
- CreateVersionModal: blank name/description pre-fill when git sync ON; fix
TDZ by moving effectiveIsBranchingEnabled after useStore block; add git-ref
character validation for git-sync-enabled orgs
- service.ts: block name/description edits on PUBLISHED versions only when
org-level git sync is enabled (non-git-sync orgs retain edit capability)
* feat: add immutability warning banner to Save version modal for git-sync orgs
Adds an inline info banner "Name and description cannot be edited after saving"
below the description field when git sync is enabled, matching the Figma design.
* fix: move immutability warning banner to top of Save version modal body
Figma (node 2091-172093) shows the banner above the version name input,
not below the description field.
* fix: improve error message for invalid version names in CreateVersionModal
* feat: enforce version name validation across modals and DTOs
* feat: add validation for version names to prevent spaces and special characters
* feat: refactor version selection logic in CreateVersionModal for improved clarity
* feat: enhance version name validation and update API request format
* Fixed draft version case
---------
Co-authored-by: Yukti Goyal <yuktigoyal02@gmail.com>
Co-authored-by: YuktiGoyal02 <100783212+YuktiGoyal02@users.noreply.github.com>
* feat: QueryManager - add fx and custom message for query confirmation
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
* Minor fix
* Design update
* Yes button same size as cancel button
---------
Co-authored-by: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
* feat: AppCanvas - hidden widget collapses to 0px per Figma update
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
* fix: AppCanvas - stack overlapping hidden widgets in drop order
* Fallback for collapseOnhide components with top alignment
---------
Co-authored-by: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
* feat: add QuickBooks Online marketplace plugin
Add a QuickBooks Online Accounting API plugin with OAuth2 authentication,
86 API operations via OpenAPI spec, and @spec/ convention for DB-stored
spec files. Includes server-side spec hosting infrastructure and a fix
for duplicate footer rendering on marketplace OAuth2 datasource config pages.
* chore: update submodule pointers
* fix: use parent transaction for spec file DB operations
storeSpecFiles and updateSpecFilesForReload were wrapping each file
insert/update in a separate dbTransactionWrap call, creating independent
transactions instead of participating in the outer install/upgrade
transaction. This could leave orphan File entities if the plugin save
failed. Now uses the parent manager directly.
* fix: use sandbox API URL, remove testConnection, add state param
- Default to sandbox-quickbooks.api.intuit.com (development apps require it)
- Remove testConnection and customTesting (OAuth flow validates connection)
- Add state parameter to auth URL (required by QuickBooks)
- Add access_token validation guard in run()
- Preserve existing refresh_token if provider doesn't reissue
- Remove environment dropdown and company_id from manifest
- Add debug logging for OAuth flow tracing
* feat: add Intercom marketplace plugin and fix path-level param rendering
Add Intercom API v2.15 marketplace plugin with 162 endpoints across 30
resource groups using react-component-api-endpoint with @spec/ convention.
Fix ApiEndpointInput widget to merge path-level OpenAPI parameters into
each operation's parameters per the OpenAPI 3.0 inheritance rule. This
ensures path params declared at the path-item level (used by Intercom,
AWS, Stripe, and many others) are rendered as input fields.
* fix: set customTesting to false so framework renders Test Connection button
customTesting: false tells the framework to render its standard Test
Connection button which calls testConnection() on the backend.
customTesting: true (counterintuitively) hides the standard button,
expecting the plugin to provide custom testing UI.
* Chore: Migrate all OpenAPI plugins from external URLs to @spec/ convention (#15904)
* chore: migrate all OpenAPI plugins from external URLs to @spec/ convention
Downloads 78 OpenAPI spec files from external URLs (7 plugins from
adishM98/base-repo-testing personal repo, 2 from official provider repos,
1 from S3) and stores them locally in openapi-specs/ directories. Updates
all operations.json files to use @spec/<kind>/<name> references, which
are resolved to DB-stored specs at install time.
Eliminates runtime dependency on external GitHub repos for spec rendering.
* chore: remove one-time spec migration script
* chore: update package-locks for intercom plugin
Adds @tooljet-marketplace/intercom workspace links and dependency
entries that were missing from the prior commits.
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
* chore: update intercom plugin description
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
---------
Co-authored-by: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
* feat: add QuickBooks Online marketplace plugin
Add a QuickBooks Online Accounting API plugin with OAuth2 authentication,
86 API operations via OpenAPI spec, and @spec/ convention for DB-stored
spec files. Includes server-side spec hosting infrastructure and a fix
for duplicate footer rendering on marketplace OAuth2 datasource config pages.
* chore: update submodule pointers
* fix: use parent transaction for spec file DB operations
storeSpecFiles and updateSpecFilesForReload were wrapping each file
insert/update in a separate dbTransactionWrap call, creating independent
transactions instead of participating in the outer install/upgrade
transaction. This could leave orphan File entities if the plugin save
failed. Now uses the parent manager directly.
* fix: use sandbox API URL, remove testConnection, add state param
- Default to sandbox-quickbooks.api.intuit.com (development apps require it)
- Remove testConnection and customTesting (OAuth flow validates connection)
- Add state parameter to auth URL (required by QuickBooks)
- Add access_token validation guard in run()
- Preserve existing refresh_token if provider doesn't reissue
- Remove environment dropdown and company_id from manifest
- Add debug logging for OAuth flow tracing
* Chore: Migrate all OpenAPI plugins from external URLs to @spec/ convention (#15904)
* chore: migrate all OpenAPI plugins from external URLs to @spec/ convention
Downloads 78 OpenAPI spec files from external URLs (7 plugins from
adishM98/base-repo-testing personal repo, 2 from official provider repos,
1 from S3) and stores them locally in openapi-specs/ directories. Updates
all operations.json files to use @spec/<kind>/<name> references, which
are resolved to DB-stored specs at install time.
Eliminates runtime dependency on external GitHub repos for spec rendering.
* chore: remove one-time spec migration script
* POST string body
---------
Co-authored-by: Rudhra Deep Biswas <rudra21ultra@gmail.com>
Co-authored-by: gsmithun4 <gsmithun4@gmail.com>
* feat: access query exposed values in the same runJS context using `queries.queryName` instead of getter functions like `getData`
* chore: update subproject commits for frontend and server
* chore: bump version to 3.21.31-beta for all components
* fix: update permission key logic in defineAppVersionAbility function
* fix: remove unused 'resource' from UserAllPermissions destructuring in defineAppVersionAbility function
* test: add unit tests for defineAppVersionAbility function
* refactor: formatting changes
* test: add unit tests for different roles in defineAppVersionAbility function
* test: fix review issues in defineAppVersionAbility unit tests
* fix: update defineAppVersionAbility to use correct User type and improve permissions handling
* fix: update user app permissions query to include MODULE type
* fix: enhance app visibility logic for MODULE type in getAppsFor method
* fix: improve environment synchronization and permissions handling in version management
* fix: enhance permission handling for MODULE type apps across various services
* fix: enhance permission checks for module and workflow apps in environment access logic
* fix: enhance permission handling for MODULE apps and add support for end-user abilities
* fix: remove debug logging from ability definition for data query apps
* fix: enhance module folder permissions for builders and improve access checks
* fix: enhance permission checks for folder updates in module context for builder roles
