Revert "Patches for compliance" (#1847)

Author: Joan Reyero

backend/src/api/tenant/index.ts

@@ -15,7 +15,6 @@ export default (app) => {
   app.get(`/tenant`, safeWrap(require('./tenantList').default))
   app.get(`/tenant/url`, safeWrap(require('./tenantFind').default))
   app.get(`/tenant/:id`, safeWrap(require('./tenantFind').default))
-  app.get(`/tenant/:id/name`, safeWrap(require('./tenantFindName').default))
   app.get(`/tenant/:tenantId/membersToMerge`, safeWrap(require('./tenantMembersToMerge').default))
   app.get(
     `/tenant/:tenantId/organizationsToMerge`,

backend/src/api/tenant/tenantFind.ts

@@ -1,13 +1,10 @@
 import identifyTenant from '../../segment/identifyTenant'
 import TenantService from '../../services/tenantService'
 import Error404 from '../../errors/Error404'
-import PermissionChecker from '../../services/user/permissionChecker'
-import Permissions from '../../security/permissions'
 
 export default async (req, res) => {
-  req.currentTenant = { id: req.params.id }
-  new PermissionChecker(req).validateHas(Permissions.values.memberRead)
   let payload
+
   if (req.params.id) {
     payload = await new TenantService(req).findById(req.params.id)
   } else {

backend/src/api/tenant/tenantFindName.ts

@@ -547,22 +547,12 @@ export default class UserRepository {
         status: 'active',
       },
     })
-
     record = {
       ...record,
       ...record.json,
     }
     delete record.json
 
-    // Remove sensitive fields
-    delete record.password
-    delete record.emailVerificationToken
-    delete record.emailVerificationTokenExpiresAt
-    delete record.providerId
-    delete record.passwordResetToken
-    delete record.passwordResetTokenExpiresAt
-    delete record.jwtTokenInvalidBefore
-
     if (!record) {
       throw new Error404()
     }

backend/src/database/repositories/userRepository.ts

@@ -45,8 +45,6 @@ const en = {
       invalidToken: 'Invalid or expired password reset link',
       error: `Invalid email`,
     },
-    passwordInvalid:
-      'Passwords must have at least one letter, one number, one symbol, and be at least 8 characters long.',
     emailAddressVerificationEmail: {
       invalidToken: 'Invalid or expired email verification link.',
       error: `Email not recognized.`,

backend/src/i18n/en.ts

@@ -99,7 +99,7 @@ class Permissions {
       },
       userRead: {
         id: 'userRead',
-        allowedRoles: [roles.admin],
+        allowedRoles: [roles.admin, roles.readonly],
         allowedPlans: [
           plans.essential,
           plans.growth,
@@ -110,7 +110,7 @@ class Permissions {
       },
       userAutocomplete: {
         id: 'userAutocomplete',
-        allowedRoles: [roles.admin],
+        allowedRoles: [roles.admin, roles.readonly],
         allowedPlans: [
           plans.essential,
           plans.growth,

backend/src/security/permissions.ts

@@ -38,12 +38,6 @@ class AuthService {
 
       const existingUser = await UserRepository.findByEmail(email, options)
 
-      const passwordRegex = /^(?=.*[A-Za-z])(?=.*\d)(?=.*[@$!%*#?&])[A-Za-z\d@$!%*#?&]{8,}$/
-
-      if (!passwordRegex.test(password)) {
-        throw new Error400(options.language, 'auth.passwordInvalid')
-      }
-
       // Generates a hashed password to hide the original one.
       const hashedPassword = await bcrypt.hash(password, BCRYPT_SALT_ROUNDS)
 

backend/src/services/auth/authService.ts

@@ -813,7 +813,7 @@ const en = {
   /* eslint-disable */
   validation: {
     mixed: {
-      default: '{path} is invalid',
+      default: 'path} is invalid',
       required: 'This field is required',
       oneOf:
         '{path} must be one of the following values: ${values}',

frontend/src/i18n/en.js

@@ -72,11 +72,6 @@
                 class="h-4 flex items-center ri-error-warning-line text-base text-red-500"
               />
               <span
-                v-if="error === 'Password is invalid'"
-                class="pl-1 text-2xs text-red-500 leading-4.5"
-              >Passwords must have at least one letter, one number, one symbol, and be at least 8 characters long.</span>
-              <span
-                v-else
                 class="pl-1 text-2xs text-red-500 leading-4.5"
               >{{ error }}</span>
             </div>

frontend/src/modules/auth/pages/signin-page.vue

@@ -129,11 +129,6 @@
                 class="h-4 flex items-center ri-error-warning-line text-base text-red-500"
               />
               <span
-                v-if="error === 'Password is invalid'"
-                class="pl-1 text-2xs text-red-500 leading-4.5"
-              >Passwords must have at least one letter, one number, one symbol, and be at least 8 characters long.</span>
-              <span
-                v-else
                 class="pl-1 text-2xs text-red-500 leading-4.5"
               >{{ error }}</span>
             </div>