Archives/gristlabs_grist-core
1
0
Fork 0
mirror of https://github.com/gristlabs/grist-core.git synced 2024-10-27 20:44:07 +00:00
Code Issues Projects Releases Wiki Activity
4d3777578e
gristlabs_grist-core/app/server/lib
History
Paul Fitzpatrick a4929bde72 (core) add some row-level access control 
Summary:
This implements a form of row-level access control where for a
given table, you may specify that only owners have access to
rows for which a given column has falsy values.

For simplicity:
 * Only owners may edit that table.
 * Non-owners with the document open will have forced
   reloads whenever the table is modified.

Baby steps...

Test Plan: added tests

Reviewers: dsagal

Reviewed By: dsagal

Differential Revision: https://phab.getgrist.com/D2633
2020-10-12 11:17:37 -04:00
..
ActionHistory.ts (core) When parsing ActionHistory into ActionGroups, avoid keeping many large actions in memory. 2020-09-19 20:45:33 -04:00
ActionHistoryImpl.ts (core) When parsing ActionHistory into ActionGroups, avoid keeping many large actions in memory. 2020-09-19 20:45:33 -04:00
ActionSummary.ts
ActiveDoc.ts (core) add some row-level access control 2020-10-12 11:17:37 -04:00
ActiveDocImport.ts
AppEndpoint.ts (core) back-end support for tables that are accessible only by owners 2020-09-14 18:05:27 -04:00
Authorizer.ts (core) mitigate csrf by requiring custom header for unsafe methods 2020-10-08 14:19:25 -04:00
BrowserSession.ts
checksumFile.ts
Client.ts
Comm.js
dbUtils.ts
DocApi.ts (core) add more detail to /compare endpoint 2020-09-18 16:31:29 -04:00
DocClients.ts (core) add some row-level access control 2020-10-12 11:17:37 -04:00
DocManager.ts (core) remove metrics 2020-09-29 18:57:56 -04:00
DocPluginData.ts
DocPluginManager.ts (core) make user role available in ActiveDoc methods 2020-09-02 14:46:15 -04:00
DocSession.ts (core) back-end support for tables that are accessible only by owners 2020-09-14 18:05:27 -04:00
DocSnapshots.ts
DocStorage.ts
DocStorageManager.ts
docUtils.d.ts
docUtils.js
DocWorker.ts (core) make user role available in ActiveDoc methods 2020-09-02 14:46:15 -04:00
DocWorkerMap.ts
ExpandedQuery.ts
expressWrap.ts
ExternalStorage.ts
extractOrg.ts
FileParserElement.ts
FlexServer.ts (core) mitigate csrf by requiring custom header for unsafe methods 2020-10-08 14:19:25 -04:00
GranularAccess.ts (core) add some row-level access control 2020-10-12 11:17:37 -04:00
GristServer.ts
gristSessions.ts
guessExt.ts
HashUtil.ts (core) add more detail to /compare endpoint 2020-09-18 16:31:29 -04:00
HostedMetadataManager.ts
HostedStorageManager.ts
IBilling.ts
ICreate.ts (core) fix invite links and add tests with APP_HOME_URL set 2020-10-06 21:51:40 -04:00
IDocStorageManager.ts
idUtils.ts
IElectionStore.ts
IInstanceManager.ts
ILoginSession.ts (core) move client code to core 2020-10-02 13:24:21 -04:00
INotifier.ts
ISandbox.ts
IShell.ts
ITestingHooks-ti.ts
ITestingHooks.ts
log.ts
manifest.ts
NSandbox.ts
OnDemandActions.ts
Permit.ts
places.ts
PluginEndpoint.ts
PluginManager.ts
requestUtils.ts (core) back-end support for tables that are accessible only by owners 2020-09-14 18:05:27 -04:00
SafePythonComponent.ts
sandboxUtil.js
sendAppPage.ts
ServerColumnGetters.ts
serverUtils.ts
Sessions.ts
Sharing.ts (core) make user role available in ActiveDoc methods 2020-09-02 14:46:15 -04:00
shortDesc.ts
shutdown.js
SQLiteDB.ts
TagChecker.ts
TestingHooks.ts
Throttle.ts
TimeQuery.ts
UnsafeNodeComponent.ts
uploads.ts (core) mitigate csrf by requiring custom header for unsafe methods 2020-10-08 14:19:25 -04:00
WorkCoordinator.ts