feat: add integration access settings (#725)

* feat: add integration access settings * fix: typecheck and test issues * fix: test timeout * chore: address pull request feedback * chore: add throw if action forbidden for integration permissions * fix: unable to create new migrations because of duplicate prevId in sqlite snapshots * chore: add sqlite migration for integration permissions * test: add unit tests for integration access * test: add permission checks to integration router tests * test: add unit test for integration permissions * chore: add mysql migration * fix: format issues
2024-07-08 00:00:37 +02:00
parent be711149f7
commit 408cdeb5c3
50 changed files with 4392 additions and 615 deletions
--- a/packages/validation/src/board.ts
+++ b/packages/validation/src/board.ts
@@ -8,6 +8,7 @@ import {
 } from "@homarr/definitions";

 import { zodEnumFromArray } from "./enums";
+import { createSavePermissionsSchema } from "./permissions";
 import { commonItemSchema, createSectionSchema } from "./shared";

 const hexColorSchema = z.string().regex(/^#[0-9A-Fa-f]{6}$/);
@@ -66,11 +67,13 @@ const permissionsSchema = z.object({
  id: z.string(),
 });

-const savePermissionsSchema = z.object({
-  id: z.string(),
+const savePermissionsSchema = createSavePermissionsSchema(zodEnumFromArray(boardPermissions));
+
+z.object({
+  entityId: z.string(),
  permissions: z.array(
    z.object({
-      itemId: z.string(),
+      principalId: z.string(),
      permission: zodEnumFromArray(boardPermissions),
    }),
  ),
--- a/packages/validation/src/integration.ts
+++ b/packages/validation/src/integration.ts
@@ -1,8 +1,9 @@
 import { z } from "zod";

-import { integrationKinds, integrationSecretKinds } from "@homarr/definitions";
+import { integrationKinds, integrationPermissions, integrationSecretKinds } from "@homarr/definitions";

 import { zodEnumFromArray } from "./enums";
+import { createSavePermissionsSchema } from "./permissions";

 const integrationCreateSchema = z.object({
  name: z.string().nonempty().max(127),
@@ -44,10 +45,13 @@ const testConnectionSchema = z.object({
  ),
 });

+const savePermissionsSchema = createSavePermissionsSchema(zodEnumFromArray(integrationPermissions));
+
 export const integrationSchemas = {
  create: integrationCreateSchema,
  update: integrationUpdateSchema,
  delete: idSchema,
  byId: idSchema,
  testConnection: testConnectionSchema,
+  savePermissions: savePermissionsSchema,
 };
--- a/packages/validation/src/permissions.ts
+++ b/packages/validation/src/permissions.ts
@@ -0,0 +1,15 @@
+import { z } from "zod";
+
+export const createSavePermissionsSchema = <const TPermissionSchema extends z.ZodEnum<[string, ...string[]]>>(
+  permissionSchema: TPermissionSchema,
+) => {
+  return z.object({
+    entityId: z.string(),
+    permissions: z.array(
+      z.object({
+        principalId: z.string(),
+        permission: permissionSchema,
+      }),
+    ),
+  });
+};