743d6cb00d
Co-authored-by: Arpit Mohan <arpit@appsmith.com> Co-authored-by: Arpit Mohan <mohanarpit@users.noreply.github.com> |
||
|---|---|---|
| .. | ||
| .editorconfig | ||
| acl-migration.js | ||
| dump-examples-org.js | ||
| package-lock.json | ||
| package.json | ||
| README.md | ||
ACL Migration Steps
-
Create a super user (with email superuser_acl@appsmith.com), using the sign-up API.
-
Add
manageandreadpermissions fororganizations,applications,pagesandactionsfor this super user, on ALL existing documents (in corresponding collections). Once this is done, the policies field of organizations, for example, should look something like:
{
"policies": [
{
"permission" : "manage:organizations",
"users" : [
"superuser_acl@appsmith.com"
],
"groups" : []
},
{
"permission" : "read:organizations",
"users" : [
"superuser_acl@appsmith.com"
],
"groups" : []
}
]
}
-
Disable emails for invite API actions.
-
For each user, for each organization in the user's
organizationIdslist, hit the invite user API for that organization, using session of the super user. -
Remove super user from the organization policies, without disturbing other permission values.
-
Remove super user from users collection.
Running
Assuming you have node (>=v12), use the following command to run the migration:
npm install
node acl-migration.js 'https://localhost/api/v1/' 'mongodb://localhost:27017/mobtools'
The first argument should be a running API endpoint, and the second argument should be a URI to the database that this API endpoint is running on.