Elgato_dark/appwrite
1
0
Fork 0
mirror of https://github.com/appwrite/appwrite synced 2026-05-24 09:28:40 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3

Merge pull request #976 from appwrite/feat-execution-permission

Browse source 
Feat execution permission
This commit is contained in:
Eldad A. Fux 2021-03-17 22:54:46 +02:00 committed by GitHub
commit bade0932cb
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
4 changed files with 20 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
CHANGES.md
View file

@ -1,7 +1,14 @@
# Version 0.8.0 (Not Released Yet) # Version 0.8.0 (Not Released Yet)
## Features
- Anonymous login - Anonymous login
## Breaking Changes
- Only logged in users can execute functions (for guests, use anonymous login)
- Only the user who has triggered the execution get access to the relevant execution logs
# Version 0.7.1 # Version 0.7.1
## Features ## Features

2
app/config/roles.php
View file

@ -60,8 +60,6 @@ return [
'files.read', 'files.read',
'locale.read', 'locale.read',
'avatars.read', 'avatars.read',
'execution.read',
'execution.write',
], ],
], ],
Auth::USER_ROLE_MEMBER => [ Auth::USER_ROLE_MEMBER => [

6
app/controllers/api/functions.php
View file

@ -676,10 +676,12 @@ App::post('/v1/functions/:functionId/executions')
->inject('response') ->inject('response')
->inject('project') ->inject('project')
->inject('projectDB') ->inject('projectDB')
->action(function ($functionId, /*$async,*/ $response, $project, $projectDB) { ->inject('user')
->action(function ($functionId, /*$async,*/ $response, $project, $projectDB, $user) {
/** @var Appwrite\Utopia\Response $response */ /** @var Appwrite\Utopia\Response $response */
/** @var Appwrite\Database\Document $project */ /** @var Appwrite\Database\Document $project */
/** @var Appwrite\Database\Database $projectDB */ /** @var Appwrite\Database\Database $projectDB */
/** @var Appwrite\Database\Document $user */
Authorization::disable(); Authorization::disable();
@ -712,7 +714,7 @@ App::post('/v1/functions/:functionId/executions')
$execution = $projectDB->createDocument([ $execution = $projectDB->createDocument([
'$collection' => Database::SYSTEM_COLLECTION_EXECUTIONS, '$collection' => Database::SYSTEM_COLLECTION_EXECUTIONS,
'$permissions' => [ '$permissions' => [
'read' => $function->getPermissions()['execute'] ?? [], 'read' => (!empty($user->getId())) ? ['user:' . $user->getId()] : [],
'write' => [], 'write' => [],
], ],
'dateCreated' => time(), 'dateCreated' => time(),

9
tests/e2e/Services/Functions/FunctionsCustomClientTest.php
View file

@ -113,6 +113,15 @@ class FunctionsCustomClientTest extends Scope
$this->assertEquals(201, $execution['headers']['status-code']); $this->assertEquals(201, $execution['headers']['status-code']);
$execution = $this->client->call(Client::METHOD_POST, '/functions/'.$function['body']['$id'].'/executions', array_merge([
'content-type' => 'application/json',
'x-appwrite-project' => $this->getProject()['$id'],
]), [
'async' => 1,
]);
$this->assertEquals(401, $execution['headers']['status-code']);
return []; return [];
} }
} }