public-offering
/
cal.pub0.org
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
760 Commits
797 Branches
196 Tags
353 MiB
Commit Graph

27 Commits (59c25d41fd3cda82fc3d52ee6aa3a8ccdce2755c)

Author SHA1 Message Date
zomars 42eb7041d4 New linting rules 2023-02-16 14:01:40 -07:00
Hariom Balhara 9c23a8e5ab
Security Fixes (#224) 
Fixes - 2,3,4 security vulnerabilities reported in this message.
https://calendso.slack.com/archives/C03127U5S5Q/p1671922033089329

More Fixes
- Dont't allow a user to add a random attendee to a booking not owned by
him
- Don't allow a user to add a random cal user as an organizer of the
booking.
- Membership deletion should be as per the Privileges of
Owner,Admin,Member
 2023-01-04 15:17:47 -07:00
zomars 604d937661 Linting 2022-12-20 11:58:30 -07:00
Carina Wollendorfer 161ebacfef
Don't allow team admins to give owner permissions (#221) 
Throw an error if a user of a team with ADMIN permission tries to change
permission to OWNER (Bug#3)

Co-authored-by: CarinaWolli <wollencarina@gmail.com>
 2022-12-20 10:45:24 -07:00
zomars c129586336 Linting 2022-12-08 16:34:09 -07:00
zomars 055699f612 Various import and type fixes 2022-11-25 06:58:21 -07:00
Omar López d1bbaef5c6
Refactor membership endpoints (#204) 
refs #175

Co-authored-by: Alex van Andel <me@alexvanandel.com>
 2022-10-21 13:54:28 -06:00
Agusti Fernandez Pardo e407a16766 feat: dynamic prisma 2022-06-06 18:17:10 +02:00
Agusti Fernandez Pardo 0ca9748674 fix: dont throw err on bad query 2022-05-18 14:27:30 +02:00
Agusti Fernandez Pardo 5aa0b37443 fix build and pass lint 2022-05-17 19:33:18 +02:00
Agusti Fernandez Pardo 9bb0f82075 fix: improve comments, no anys 2022-04-29 17:29:57 +02:00
Agusti Fernandez Pardo d6c34a8e51 fix: remove empty lines 2022-04-29 01:54:21 +02:00
Agusti Fernandez Pardo bb28680413 fixes all openapi spect issues, removes json-schema auto-generated moving to manual examples 2022-04-29 01:38:40 +02:00
Agusti Fernandez Pardo e52af0bbef fix: post / patch attendees docs w examples 2022-04-27 19:25:36 +02:00
Agusti Fernandez Pardo fa30b52988 remove v1 from specs 2022-04-26 21:56:59 +02:00
Agusti Fernandez Pardo 8d5605dc7b fix: move 401 to throw early in all endpoints 2022-04-23 02:17:06 +02:00
zomars be3bcf2bf0 Refactoring and fixes 2022-04-21 19:42:53 -06:00
Agusti Fernandez Pardo b0c0e9fb4c feat: memberships hardened mode 2022-04-21 00:55:22 +02:00
Agusti Fernandez Pardo 25a2a405da feat: adds apikeyAuth in swagger ui for all endpoints 2022-04-17 16:39:38 +02:00
Agusti Fernandez Pardo 0bda988676 feat: all resources endpoints for get all and new unified 2022-04-11 15:10:16 +02:00
Agusti Fernandez Pardo d95325c06c payments safe, unify endpoints for remindermails schedules 2022-04-10 02:10:34 +02:00
Agusti Fernandez Pardo 89dfa2efe1 feat all endpoints one id file 2022-04-04 21:39:30 +02:00
Agusti Fernandez Pardo 61819772bc fix all swagger docs, dont build templates 2022-04-03 17:47:18 +02:00
Agusti Fernandez Pardo 12de89294d swagger docs add params, memberships handle compoundId 2022-03-31 22:14:37 +02:00
Agusti Fernandez Pardo 1de7bc4146 prettier 2022-03-30 14:17:55 +02:00
Agusti Fernandez Pardo 20a93a13c9 feat: update users/teams/apiKeys to use middleware 2022-03-29 03:59:57 +02:00
Agusti Fernandez Pardo 8165977ec3 Adds basic CRUD endpoints for bookingReferences, Crendentials, DailyEventReferences, DestinationCalendars, EventTypeCustomInputs, Memberships, Schedules, and SelectedCalendars 2022-03-29 00:27:14 +02:00