admin/twenty
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity

feat(workspace-resolver): prevent deletion of demo workspaces (#2207) (#3068)

Browse Source 
* feat(workspace-resolver): prevent deletion of demo workspaces (#2207)

* ForbiddenException instead of Error

* Optimize user and workspace deletion checks and clarify exception messages (#2207)

- ForbiddenException messages for attempts to delete users and workspaces associated with demo accounts
This commit is contained in:
Ruslan
2023-12-20 20:52:44 +07:00
committed by GitHub
parent d70cb23f30
commit 351dc6488c
2 changed files with 25 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

17
packages/twenty-server/src/core/user/user.resolver.ts
View File

@ -6,7 +6,7 @@ import {
ResolveField, ResolveField,
Mutation, Mutation,
} from '@nestjs/graphql'; } from '@nestjs/graphql';
import { UseGuards } from '@nestjs/common'; import { ForbiddenException, UseGuards } from '@nestjs/common';
import crypto from 'crypto'; import crypto from 'crypto';
@ -98,7 +98,20 @@ export class UserResolver {
} }
@Mutation(() => User) @Mutation(() => User)
async deleteUser(@AuthUser() { id: userId }: User) { async deleteUser(@AuthUser() { id: userId, defaultWorkspace }: User) {
// Get the list of demo workspace IDs
const demoWorkspaceIds = this.environmentService.getDemoWorkspaceIds();
const currentUserWorkspaceId = defaultWorkspace.id;
// Check if the user's default workspace ID is in the list of demo workspace IDs
if (demoWorkspaceIds.includes(currentUserWorkspaceId)) {
throw new ForbiddenException(
'Deletion of users with a default demo workspace is not allowed.',
);
}
// Proceed with user deletion
return this.userService.deleteUser(userId); return this.userService.deleteUser(userId);
} }
} }

11
packages/twenty-server/src/core/workspace/workspace.resolver.ts
View File

@ -1,5 +1,5 @@
import { Resolver, Query, Args, Mutation } from '@nestjs/graphql'; import { Resolver, Query, Args, Mutation } from '@nestjs/graphql';
import { UseGuards } from '@nestjs/common'; import { ForbiddenException, UseGuards } from '@nestjs/common';
import { FileUpload, GraphQLUpload } from 'graphql-upload'; import { FileUpload, GraphQLUpload } from 'graphql-upload';
@ -11,6 +11,7 @@ import { AuthWorkspace } from 'src/decorators/auth-workspace.decorator';
import { assert } from 'src/utils/assert'; import { assert } from 'src/utils/assert';
import { JwtAuthGuard } from 'src/guards/jwt.auth.guard'; import { JwtAuthGuard } from 'src/guards/jwt.auth.guard';
import { UpdateWorkspaceInput } from 'src/core/workspace/dtos/update-workspace-input'; import { UpdateWorkspaceInput } from 'src/core/workspace/dtos/update-workspace-input';
import { EnvironmentService } from 'src/integrations/environment/environment.service';
import { Workspace } from './workspace.entity'; import { Workspace } from './workspace.entity';
@ -22,6 +23,7 @@ export class WorkspaceResolver {
constructor( constructor(
private readonly workspaceService: WorkspaceService, private readonly workspaceService: WorkspaceService,
private readonly fileUploadService: FileUploadService, private readonly fileUploadService: FileUploadService,
private readonly environmentService: EnvironmentService,
) {} ) {}
@Query(() => Workspace) @Query(() => Workspace)
@ -67,6 +69,13 @@ export class WorkspaceResolver {
@Mutation(() => Workspace) @Mutation(() => Workspace)
async deleteCurrentWorkspace(@AuthWorkspace() { id }: Workspace) { async deleteCurrentWorkspace(@AuthWorkspace() { id }: Workspace) {
const demoWorkspaceIds = this.environmentService.getDemoWorkspaceIds();
// Check if the id is in the list of demo workspaceIds
if (demoWorkspaceIds.includes(id)) {
throw new ForbiddenException('Demo workspaces cannot be deleted.');
}
return this.workspaceService.deleteWorkspace(id); return this.workspaceService.deleteWorkspace(id);
} }
} }