github/infisical
1
1
Fork 0
mirror of https://github.com/Infisical/infisical.git synced 2026-05-02 03:02:03 -04:00
Code Issues Packages Projects Releases Wiki Activity

Extra

Browse Source
This commit is contained in:
Daniel Hougaard
2024-02-21 04:09:46 +01:00
parent ec6ec8813e
commit ed353d3263
2 changed files with 21 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
backend/src/services/org/org-service.ts
View File

@@ -132,7 +132,7 @@ export const orgServiceFactory = ({
};
const addGhostUser = async (orgId: string, tx?: Knex) => {
const email = `ghost-${alphaNumericNanoId(16)}-${orgId}@infisical.com`; // We add a nanoid because the email is unique. And we have to create a new ghost user each time, so we can have access to the private key.
const email = `sudo-${alphaNumericNanoId(16)}-${orgId}@infisical.com`; // We add a nanoid because the email is unique. And we have to create a new ghost user each time, so we can have access to the private key.
const password = crypto.randomBytes(128).toString("hex");
const user = await userDAL.create(

22
backend/src/services/project-membership/project-membership-service.ts
View File

@@ -4,6 +4,7 @@ import { ForbiddenError } from "@casl/ability";
import {
OrgMembershipStatus,
ProjectMembershipRole,
ProjectVersion,
SecretKeyEncoding,
TableName,
TProjectMemberships,
@@ -226,6 +227,10 @@ export const projectMembershipServiceFactory = ({
const project = await projectDAL.findById(projectId);
if (!project) throw new BadRequestError({ message: "Project not found" });
if (project.version === ProjectVersion.V1) {
throw new BadRequestError({ message: "Please upgrade your project on your dashboard" });
}
const { permission } = await permissionService.getProjectPermission(actor, actorId, projectId);
ForbiddenError.from(permission).throwUnlessCan(ProjectPermissionActions.Create, ProjectPermissionSub.Member);
@@ -243,7 +248,7 @@ export const projectMembershipServiceFactory = ({
if (!ghostUser) {
throw new BadRequestError({
message: "Failed to find top-level user"
message: "Failed to find sudo user"
});
}
@@ -251,7 +256,7 @@ export const projectMembershipServiceFactory = ({
if (!ghostUserLatestKey) {
throw new BadRequestError({
message: "Failed to find top-level latest key"
message: "Failed to find sudo user latest key"
});
}
@@ -405,6 +410,19 @@ export const projectMembershipServiceFactory = ({
const { permission } = await permissionService.getProjectPermission(actor, actorId, projectId, actorOrgId);
ForbiddenError.from(permission).throwUnlessCan(ProjectPermissionActions.Delete, ProjectPermissionSub.Member);
const project = await projectDAL.findById(projectId);
if (!project) {
throw new BadRequestError({
message: "Project not found",
name: "Delete project membership"
});
}
if (project.version === ProjectVersion.V1) {
throw new BadRequestError({ message: "Please upgrade your project on your dashboard" });
}
const projectMembers = await projectMembershipDAL.findMembershipsByEmail(projectId, emails);
if (projectMembers.length !== emails.length) {