github-mirror/n8n
1
0
Fork 0
mirror of https://github.com/n8n-io/n8n.git synced 2026-06-02 17:57:06 +02:00
Code Issues Actions 29 Packages Projects Releases Wiki Activity Graph
14,073 Commits 3,614 Branches 2,005 Tags 2.1 GiB
9f44f40745
Commit Graph

55 Commits

Author SHA1 Message Date
Ricardo Espinoza
2a35c19ef9
feat(core): Invalidate all sessions when MFA is enabled/disabled (#15524) 2025-05-21 08:59:22 +02:00
Iván Ovejero
e122b3f0f9
refactor(core): Move UserRepository and subscribers to @n8n/db (#15352) 2025-05-13 15:24:26 +02:00
Iván Ovejero
32b72011e6
refactor(core): Move second batch of repositories to @n8n/db (#15137) 2025-05-06 16:40:34 +02:00
कारतोफ्फेलस्क्रिप्ट™
2bb190349b
refactor(core): Move more code into @n8n/permissions. Add aditional tests and docs (no-changelog) (#15062) 
Co-authored-by: Danny Martini <danny@n8n.io>
 2025-05-06 15:11:05 +02:00
Iván Ovejero
20834abb56
refactor(core): Move interrelated entities to @n8n/db (#15050) 2025-05-02 12:19:32 +02:00
Marcus
17fc5c148b
feat(core): Allow customizing auth cookie samesite attribute and CSP headers (#13855) 
Co-authored-by: कारतोफ्फेलस्क्रिप्ट™ <aditya@netroy.in>
 2025-03-19 12:55:58 +01:00
कारतोफ्फेलस्क्रिप्ट™
39d5e0ff87
refactor(core): Replace typedi with our custom DI system (no-changelog) (#12389) 
Co-authored-by: Iván Ovejero <ivov.src@gmail.com>
 2025-01-06 10:21:24 +01:00
Iván Ovejero
f754b22a3f
refactor(core): Mark all backend Enterprise Edition files and dirs (#12350) 2024-12-24 13:02:05 +01:00
कारतोफ्फेलस्क्रिप्ट™
471d7b9420
refactor(core): Move Logger to core (no-changelog) (#12310) 2024-12-23 13:46:13 +01:00
कारतोफ्फेलस्क्रिप्ट™
274fcf45d3
fix(core): Improve the security on OAuth callback endpoints (#11593) 2024-11-19 16:17:20 +01:00
Iván Ovejero
3a9c65e1cb
refactor(core): Modernize logger service (#11031) 2024-10-01 12:16:09 +02:00
Tomi Turtiainen
5156313074
refactor(core): Enable import/order eslint rule (#10794) 2024-09-12 19:07:18 +03:00
Iván Ovejero
6485ca0a4b
refactor(core): Enforce filename casing in cli package (no-changelog) (#10594) 2024-08-28 17:57:46 +02:00
कारतोफ्फेलस्क्रिप्ट™
ab9835126e
refactor(core): Use @/databases/ instead of @db/ (no-changelog) (#10573) 2024-08-27 17:24:20 +02:00
Iván Ovejero
fd58a272e1
refactor(core): Standardize filename casing for controllers and databases (no-changelog) (#10564) 2024-08-27 16:44:32 +02:00
Iván Ovejero
f667b384c9
refactor(core): Standardize filenames in cli (no-changelog) (#10484) 
Co-authored-by: कारतोफ्फेलस्क्रिप्ट™ <aditya@netroy.in>
 2024-08-22 11:10:37 +02:00
कारतोफ्फेलस्क्रिप्ट™
9fe6a71690
feat(core): Logout should invalidate the auth token (no-changelog) (#10335) 2024-08-22 09:33:06 +02:00
Iván Ovejero
c0f3693e8a
refactor(core): Decouple user events from internal hooks (no-changelog) (#10292) 2024-08-05 12:07:42 +02:00
Tomi Turtiainen
afa43e75f6
test(core): Move unit tests closer to testable components (no-changelog) (#10287) 2024-08-05 12:12:25 +03:00
Iván Ovejero
aa0a470dce
refactor(core): Clean up event relays (no-changelog) (#10284) 2024-08-02 16:52:49 +02:00
Iván Ovejero
1608d2527b
refactor(core): Port endpoints config (no-changelog) (#10268) 2024-07-31 17:45:11 +02:00
कारतोफ्फेलस्क्रिप्ट™
a8e2774f53
fix(core): Make OAuth1/OAuth2 callback not require auth (#10263) 2024-07-31 15:03:37 +02:00
Tomi Turtiainen
d6770b5fca
fix(core): Flush instance stopped event immediately (#10238) 2024-07-30 14:49:41 +03:00
Iván Ovejero
dea212659a
refactor(core): Decouple LDAP from internal hooks (no-changelog) (#10157) 
Co-authored-by: Ricardo Espinoza <ricardo@n8n.io>
 2024-07-24 09:49:06 +02:00
Iván Ovejero
aba1c64500
refactor(core): Rename EventRelay to EventService (no-changelog) (#10110) 2024-07-19 12:55:38 +02:00
Val
1d5b9836ca
fix: Rename LDAP files to include .ee (no-changelog) (#9943) 2024-07-05 09:51:16 +02:00
Iván Ovejero
199dff4fb3
refactor(core): Decouple event bus from internal hooks (no-changelog) (#9724) 2024-06-20 12:32:22 +02:00
Csaba Tuncsik
596c472ecc
feat: RBAC (#8922) 
Signed-off-by: Oleg Ivaniv <me@olegivaniv.com>
Co-authored-by: Val <68596159+valya@users.noreply.github.com>
Co-authored-by: कारतोफ्फेलस्क्रिप्ट™ <aditya@netroy.in>
Co-authored-by: Valya Bullions <valya@n8n.io>
Co-authored-by: Danny Martini <danny@n8n.io>
Co-authored-by: Danny Martini <despair.blue@gmail.com>
Co-authored-by: Iván Ovejero <ivov.src@gmail.com>
Co-authored-by: Omar Ajoue <krynble@gmail.com>
Co-authored-by: oleg <me@olegivaniv.com>
Co-authored-by: Michael Kret <michael.k@radency.com>
Co-authored-by: Michael Kret <88898367+michael-radency@users.noreply.github.com>
Co-authored-by: Elias Meire <elias@meire.dev>
Co-authored-by: Giulio Andreini <andreini@netseven.it>
Co-authored-by: Giulio Andreini <g.andreini@gmail.com>
Co-authored-by: Ayato Hayashi <go12limchangyong@gmail.com>
 2024-05-17 10:53:15 +02:00
Danny Martini
1efeeccc5b
fix(core): Fix browser session refreshes not working (#9212) 
Co-authored-by: कारतोफ्फेलस्क्रिप्ट™ <aditya@netroy.in>
 2024-04-24 18:28:19 +02:00
कारतोफ्फेलस्क्रिप्ट™
ff9ae549fd
fix(core): Improve browserId checks, and add logging (#9161) 2024-04-18 15:53:19 +02:00
कारतोफ्फेलस्क्रिप्ट™
46e432b177
fix(core): Exclude oAuth callback urls from browser-id checks (#9158) 2024-04-17 19:20:51 +02:00
कारतोफ्फेलस्क्रिप्ट™
a7108d14f9
fix(core): Some more browser-id related fixes (no-changelog) (#9102) 2024-04-10 10:37:23 +02:00
कारतोफ्फेलस्क्रिप्ट™
28261047c3
feat(core): Prevent session hijacking (#9057) 2024-04-09 11:20:35 +02:00
कारतोफ्फेलस्क्रिप्ट™
0818824a72
feat(core)!: Set the secure flag on issued cookies (#8812) 2024-03-05 18:57:41 +01:00
कारतोफ्फेलस्क्रिप्ट™
cdec7c9334
feat(core): Update hashing strategy for JWTs (#8810) 2024-03-05 15:06:29 +01:00
कारतोफ्फेलस्क्रिप्ट™
db4a419c8d
refactor(core): Enforce authorization by default on all routes (no-changelog) (#8762) 2024-02-28 17:02:18 +01:00
कारतोफ्फेलस्क्रिप्ट™
56c8791aff
refactor(core): Remove all legacy auth middleware code (no-changelog) (#8755) 2024-02-28 13:12:28 +01:00
कारतोफ्फेलस्क्रिप्ट™
d6deceacde
refactor(core): Remove roleId indirection (no-changelog) (#8413) 2024-01-24 13:38:57 +01:00
Danny Martini
07e6705256
feat(core): Custom session timeout and refresh configuration (#8342) 2024-01-22 09:54:13 +01:00
Tomi Turtiainen
9a1cc56806
fix: Set '@typescript-eslint/return-await' rule to 'always' for node code (no-changelog) (#8363) 
Co-authored-by: कारतोफ्फेलस्क्रिप्ट™ <aditya@netroy.in>
 2024-01-17 17:08:50 +02:00
Ricardo Espinoza
3c2a4000ae
refactor(core): Use DI for LDAP code (no-changelog) (#8248) 
Co-authored-by: कारतोफ्फेलस्क्रिप्ट™ <aditya@netroy.in>
 2024-01-15 09:01:48 -05:00
Iván Ovejero
c378f60a25
refactor(core): Introduce password utility (no-changelog) (#7979) 
## Summary
Provide details about your pull request and what it adds, fixes, or
changes. Photos and videos are recommended.
Continue breaking down `UserManagementHelper.ts`
...

#### How to test the change:
1. ...


## Issues fixed
Include links to Github issue or Community forum post or **Linear
ticket**:
> Important in order to close automatically and provide context to
reviewers

...


## Review / Merge checklist
- [ ] PR title and summary are descriptive. **Remember, the title
automatically goes into the changelog. Use `(no-changelog)` otherwise.**
([conventions](https://github.com/n8n-io/n8n/blob/master/.github/pull_request_title_conventions.md))
- [ ] [Docs updated](https://github.com/n8n-io/n8n-docs) or follow-up
ticket created.
- [ ] Tests included.
> A bug is not considered fixed, unless a test is added to prevent it
from happening again. A feature is not complete without tests.
  >
> *(internal)* You can use Slack commands to trigger [e2e
tests](https://www.notion.so/n8n/How-to-use-Test-Instances-d65f49dfc51f441ea44367fb6f67eb0a?pvs=4#a39f9e5ba64a48b58a71d81c837e8227)
or [deploy test
instance](https://www.notion.so/n8n/How-to-use-Test-Instances-d65f49dfc51f441ea44367fb6f67eb0a?pvs=4#f6a177d32bde4b57ae2da0b8e454bfce)
or [deploy early access version on
Cloud](https://www.notion.so/n8n/Cloudbot-3dbe779836004972b7057bc989526998?pvs=4#fef2d36ab02247e1a0f65a74f6fb534e).
 2023-12-11 18:23:42 +01:00
Iván Ovejero
c08c5cc37b
refactor(core): Switch plain errors in cli to ApplicationError (#7857) 
Ensure all errors in `cli` are `ApplicationError` or children of it and
contain no variables in the message, to continue normalizing all the
errors we report to Sentry

Follow-up to: https://github.com/n8n-io/n8n/pull/7839
 2023-11-29 12:25:10 +01:00
Iván Ovejero
1c6178759c
refactor(core): Reorganize error hierarchy in cli package (no-changelog) (#7839) 
Ensure all errors in `cli` inherit from `ApplicationError` to continue
normalizing all the errors we report to Sentry

Follow-up to: https://github.com/n8n-io/n8n/pull/7820
 2023-11-28 10:19:27 +01:00
कारतोफ्फेलस्क्रिप्ट™
3460eb5eeb
fix(core): Initialize JWT Secret before it's used anywhere (#7707) 
HELP-394
 2023-11-15 12:17:18 +01:00
कारतोफ्फेलस्क्रिप्ट™
000e76e3b4
ci(core): Reduce memory usage in tests (part-2) (no-changelog) (#7671) 
This also gets rid of `Db.collection`, which was another source of
circular dependencies.
 2023-11-10 15:04:26 +01:00
कारतोफ्फेलस्क्रिप्ट™
60314248f4
fix(core): Make password-reset urls valid only for single-use (#7622) 2023-11-07 15:35:43 +01:00
Jon
479f90231d
fix(core): Fix issue that prevents owner logging in when using ldap (#7408) 
This PR prioritises the internal email account over LDAP for the Owner.

---------

Co-authored-by: ricardo <ricardoespinoza105@gmail.com>
 2023-11-01 23:02:49 -04:00
Iván Ovejero
72523462ea
refactor: Clear unused ESLint directives from BE packages (no-changelog) (#6798) 2023-07-31 11:00:48 +02:00
Ricardo Espinoza
89f44021b9
fix(core): Use JWT as reset password token (#6714) 
* use jwt to reset password

* increase expiration time to 1d

* drop user id query string

* refactor

* use service instead of package in tests

* sqlite migration

* postgres migration

* mysql migration

* remove unused properties

* remove userId from FE

* fix test for users.api

* move migration to the common folder

* move type assertion to the jwt.service

* Add jwt secret as a readonly property

* use signData instead of sign in user.controller

* remove base class

* remove base class

* add tests
 2023-07-24 17:40:17 -04:00