various small fixes

server/integrationApiServer.ts

@@ -15,7 +15,6 @@ import {
 } from "@server/middlewares";
 import { authenticated, unauthenticated } from "@server/routers/integration";
 import { logIncomingMiddleware } from "./middlewares/logIncoming";
-import { csrfProtectionMiddleware } from "./middlewares/csrfProtection";
 import helmet from "helmet";
 import swaggerUi from "swagger-ui-express";
 import { OpenApiGeneratorV3 } from "@asteasolutions/zod-to-openapi";
@@ -37,7 +36,6 @@ export function createIntegrationApiServer() {
 
     if (!dev) {
         apiServer.use(helmet());
-        apiServer.use(csrfProtectionMiddleware);
     }
 
     apiServer.use(cookieParser());

server/lib/consts.ts

@@ -2,7 +2,7 @@ import path from "path";
 import { fileURLToPath } from "url";
 
 // This is a placeholder value replaced by the build process
-export const APP_VERSION = "1.2.0";
+export const APP_VERSION = "1.3.0";
 
 export const __FILENAME = fileURLToPath(import.meta.url);
 export const __DIRNAME = path.dirname(__FILENAME);

server/routers/idp/validateOidcCallback.ts

@@ -23,7 +23,7 @@ import { oidcAutoProvision } from "./oidcAutoProvision";
 import license from "@server/license/license";
 
 const ensureTrailingSlash = (url: string): string => {
-    return url.endsWith('/') ? url : `${url}/`;
+    return url.endsWith("/") ? url : `${url}/`;
 };
 
 const paramsSchema = z
@@ -228,6 +228,16 @@ export async function validateOidcCallback(
                 req,
                 res
             });
+
+            return response<ValidateOidcUrlCallbackResponse>(res, {
+                data: {
+                    redirectUrl: postAuthRedirectUrl
+                },
+                success: true,
+                error: false,
+                message: "OIDC callback validated successfully",
+                status: HttpCode.CREATED
+            });
         } else {
             if (!existingUser) {
                 return next(

server/routers/org/listOrgs.ts

@@ -27,7 +27,7 @@ const listOrgsSchema = z.object({
 
 registry.registerPath({
     method: "get",
-    path: "/user/:userId/orgs",
+    path: "/orgs",
     description: "List all organizations in the system.",
     tags: [OpenAPITags.Org],
     request: {

server/routers/org/listUserOrgs.ts

@@ -29,16 +29,16 @@ const listOrgsSchema = z.object({
         .pipe(z.number().int().nonnegative())
 });
 
-registry.registerPath({
-    method: "get",
-    path: "/user/{userId}/orgs",
-    description: "List all organizations for a user.",
-    tags: [OpenAPITags.Org, OpenAPITags.User],
-    request: {
-        query: listOrgsSchema
-    },
-    responses: {}
-});
+// registry.registerPath({
+//     method: "get",
+//     path: "/user/{userId}/orgs",
+//     description: "List all organizations for a user.",
+//     tags: [OpenAPITags.Org, OpenAPITags.User],
+//     request: {
+//         query: listOrgsSchema
+//     },
+//     responses: {}
+// });
 
 export type ListUserOrgsResponse = {
     orgs: Org[];

server/routers/resource/updateResource.ts

@@ -81,7 +81,10 @@ const updateHttpResourceBodySchema = z
             }
             return true;
         },
-        { message: "Invalid TLS Server Name. Use domain name format, or save empty to remove the TLS Server Name." }
+        {
+            message:
+                "Invalid TLS Server Name. Use domain name format, or save empty to remove the TLS Server Name."
+        }
     )
     .refine(
         (data) => {
@@ -90,7 +93,10 @@ const updateHttpResourceBodySchema = z
             }
             return true;
         },
-        { message: "Invalid custom Host Header value. Use domain name format, or save empty to unset custom Host Header." }
+        {
+            message:
+                "Invalid custom Host Header value. Use domain name format, or save empty to unset custom Host Header."
+        }
     );
 
 export type UpdateResourceResponse = Resource;
@@ -300,7 +306,22 @@ async function updateHttpResource(
 
     const updatedResource = await db
         .update(resources)
-        .set(updatePayload)
+        .set({
+            name: updatePayload.name,
+            subdomain: updatePayload.subdomain,
+            ssl: updatePayload.ssl,
+            sso: updatePayload.sso,
+            blockAccess: updatePayload.blockAccess,
+            emailWhitelistEnabled: updatePayload.emailWhitelistEnabled,
+            isBaseDomain: updatePayload.isBaseDomain,
+            applyRules: updatePayload.applyRules,
+            domainId: updatePayload.domainId,
+            enabled: updatePayload.enabled,
+            stickySession: updatePayload.stickySession,
+            tlsServerName: updatePayload.tlsServerName || null,
+            setHostHeader: updatePayload.setHostHeader || null,
+            fullDomain: updatePayload.fullDomain
+        })
         .where(eq(resources.resourceId, resource.resourceId))
         .returning();
 

server/routers/user/createOrgUser.ts

@@ -19,7 +19,15 @@ const paramsSchema = z
 
 const bodySchema = z
     .object({
-        email: z.string().email().optional(),
+        email: z
+            .string()
+            .optional()
+            .refine((data) => {
+                if (data) {
+                    return z.string().email().safeParse(data).success;
+                }
+                return true;
+            }),
         username: z.string().nonempty(),
         name: z.string().optional(),
         type: z.enum(["internal", "oidc"]).optional(),

server/setup/scripts/1.3.0.ts

@@ -8,8 +8,6 @@ import { APP_PATH, configFilePath1, configFilePath2 } from "@server/lib/consts";
 const version = "1.3.0";
 const location = path.join(APP_PATH, "db", "db.sqlite");
 
-await migration();
-
 export default async function migration() {
     console.log(`Running setup script ${version}...`);