Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat(core): Add credential runtime checks and prevent tampering in manual run #4481

Merged
merged 20 commits into from
Nov 11, 2022
Merged

feat(core): Add credential runtime checks and prevent tampering in manual run #4481

merged 20 commits into from
Nov 11, 2022

Conversation

ivov
Copy link
Contributor

@ivov ivov commented Oct 31, 2022

No description provided.

@linear
Copy link

linear bot commented Oct 31, 2022

N8N-5257

@ivov ivov changed the title Implement runtime checks for credentials feat(core): implement runtime checks for credentials Oct 31, 2022
@n8n-assistant n8n-assistant bot added core Enhancement outside /nodes-base and /editor-ui n8n team Authored by the n8n team labels Oct 31, 2022
krynble
krynble suggested changes Nov 4, 2022
View reviewed changes
Copy link
Contributor

@krynble krynble left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Great work. I think the only necessary change was the one I've mentioned in Linear, where we need to make sure the current user did not tamper the request by changing existing nodes with credentials they don't have access to, neither adding credentials they shouldn't access.

@ivov ivov changed the title feat(core): implement runtime checks for credentials feat(core): Implement runtime checks for credentials Nov 7, 2022
@ivov ivov changed the title feat(core): Implement runtime checks for credentials feat(core): Add credential runtime checks and prevent tampering in manual run Nov 7, 2022
krynble
krynble reviewed Nov 9, 2022
View reviewed changes
packages/cli/src/UserManagement/PermissionChecker.ts
});
}

private static mapCredIdsToNodes(workflow: Workflow) {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I loved the creation of this function, this is very useful in so many places.

krynble
krynble previously approved these changes Nov 9, 2022
View reviewed changes
Copy link
Contributor

@krynble krynble left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

krynble
krynble previously approved these changes Nov 10, 2022
View reviewed changes
@ivov ivov merged commit d35d63a into master Nov 11, 2022
@ivov ivov deleted the n8n-5257-implement-runtime-checks-for-credentials branch November 11, 2022 10:14
@n8n-assistant n8n-assistant bot added the Upcoming Release Will be part of the upcoming release label Nov 11, 2022
@janober
Copy link
Member

janober commented Nov 17, 2022

Got released with n8n@0.203.0

@janober janober removed the Upcoming Release Will be part of the upcoming release label Nov 17, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@krynble krynble krynble approved these changes

Assignees
No one assigned
Labels
core Enhancement outside /nodes-base and /editor-ui n8n team Authored by the n8n team User Management
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@ivov @janober @krynble