4776a005a5
Remove redundant client TYPE_*s
2016-06-08 14:09:06 +02:00
3c3de6205e
Add test case for blocking cid-webadmin deletion
2016-06-08 11:27:10 +02:00
16444f775d
Prevent deletion of the built-in clients
2016-06-08 11:24:02 +02:00
62b586e8dd
fix require path
2016-06-07 20:57:39 -07:00
313d98ef70
add a route to check for updates quickly
2016-06-07 20:24:41 -07:00
064d950f87
add new tests for field validation
2016-06-07 16:00:02 -07:00
691803f10b
Allow optional expiresAt to be set on token creation
2016-06-07 15:47:13 +02:00
8e5af17e5d
Add route to delete a single token
2016-06-07 15:34:27 +02:00
96eeb247a1
Add rest api to create a new token for a client
2016-06-07 14:29:37 +02:00
c8b9ae542c
Simply return oauth clients instead of join with tokendb
2016-06-07 12:15:25 +02:00
207e81345f
Log event for external login
2016-06-07 11:59:54 +02:00
d880731351
Support ?all query param for oauth clients get route
2016-06-07 11:18:30 +02:00
1766da9174
update code path now takes appStoreId
2016-06-04 20:05:29 -07:00
dbdcf1ec27
pass data object to update
2016-06-04 19:12:36 -07:00
c916ea2589
fix style
2016-06-04 18:56:53 -07:00
5540b5f545
remove unused require
2016-06-04 18:55:31 -07:00
1e38190e68
setting falsy values for cert/key removes it
2016-06-04 18:30:05 -07:00
8f3553090f
make args optional in configure
2016-06-04 18:07:06 -07:00
cc0f5a1f03
fix configure arg insanity
2016-06-04 16:32:27 -07:00
a1c531d2a8
better type checking in configure and make accessRestriction optional
2016-06-04 16:27:50 -07:00
a49cf98a8d
do not allow appId to be set
...
this is some legacy code
2016-06-04 13:40:43 -07:00
da6cab8dd6
we return 400 now
2016-06-04 13:32:41 -07:00
3b7cfdd7db
better type checking
2016-06-04 13:31:18 -07:00
ee073c91a3
return BAD_FIELD if app was not found
2016-06-04 13:15:38 -07:00
9e8742ca87
download manifest from appstore when appStoreId is provided
2016-06-04 01:07:43 -07:00
e2848d3e08
fix apps.install insane arg list
2016-06-03 23:35:55 -07:00
5ebc29746d
fix failing tests
2016-06-03 19:14:16 -07:00
8fc44e6bc9
remove redundant checks
2016-06-03 19:08:47 -07:00
44f4872134
remove dead comments
2016-06-03 17:55:05 -07:00
c1ded66c1a
make download_url a post route
2016-06-03 09:23:15 -07:00
3ad2a2a5ca
Fixup the unit tests
2016-06-03 15:07:44 +02:00
226537de04
Move client TYPE_* to clients.js
2016-06-03 15:05:00 +02:00
725e1debcc
Provide getByAppIdAndType() by clients.js
2016-06-03 14:47:06 +02:00
201efa70b7
use clients instead of clientdb in oauth2.js
2016-06-03 14:38:58 +02:00
c52d0369fa
Provide better feedback on invalid scopes
2016-06-03 13:53:33 +02:00
b4dfad3aa3
Fixup the unit tests after removing PREFIX_USER
2016-06-03 13:09:26 +02:00
3a9a667890
Make all token grants without PREFIX_USER
2016-06-03 13:01:05 +02:00
f27ba04a00
Add test case for developer tokens
2016-06-03 11:11:11 +02:00
3e0006a327
Allow tokens with SCOPE_ROLE_SDK through without a password
2016-06-03 11:10:59 +02:00
9d8a803185
Handle scope roles in scope checks
2016-06-03 11:09:48 +02:00
e335aa5dee
Check for sdk token instead of token type DEV
2016-06-03 10:17:52 +02:00
10163733db
Separate the scope checking
2016-06-03 10:10:58 +02:00
251fad8514
add test for groupIds in listing api
2016-06-03 00:14:52 -07:00
036740f97b
filter out correct fields in the route code
2016-06-03 00:04:17 -07:00
f4958d936c
return groupIds in get user route
2016-06-03 00:00:11 -07:00
80ca69a128
user.update does not need the user object
2016-06-02 23:53:06 -07:00
097d23c412
move logic to model code
2016-06-02 23:29:43 -07:00
13a1213b0d
make group listing API return member userIds
2016-06-02 21:07:33 -07:00
8d65f93fa4
return error.message
2016-06-02 14:40:29 -07:00
462440bb30
do not check for password in profile route
...
This is already checked by the verifyPassword middleware based on
the token type.
When using dev tokens, this check barfs for lack of password field
even when none is required.
2016-06-02 14:26:01 -07:00
Johannes Zellner