History

Shrikant Kandula 18476432ac Don't invite users if they have any access in an org, not just admin.		2020-06-12 17:48:35 +05:30
..
.editorconfig	ACL Migration Script	2020-06-12 11:54:21 +00:00
main.js	Don't invite users if they have any access in an org, not just admin.	2020-06-12 17:48:35 +05:30
package-lock.json	ACL Migration Script	2020-06-12 11:54:21 +00:00
package.json	ACL Migration Script	2020-06-12 11:54:21 +00:00
README.md	ACL Migration Script	2020-06-12 11:54:21 +00:00

README.md

ACL Migration Steps

Create a super user (with email superuser_acl@appsmith.com), using the sign-up API.
Add manage and read permissions for organizations, applications, pages and actions for this super user, on ALL existing documents (in corresponding collections). Once this is done, the policies field of organizations, for example, should look something like:

{
    "policies": [         
        {
            "permission" : "manage:organizations",
            "users" : [ 
                "superuser_acl@appsmith.com"
            ],
            "groups" : []
        }, 
        {
            "permission" : "read:organizations",
            "users" : [ 
                "superuser_acl@appsmith.com"
            ],
            "groups" : []
        }
    ]
}

Disable emails for invite API actions.
For each user, for each organization in the user's organizationIds list, hit the invite user API for that organization, using session of the super user.
Remove super user from the organization policies, without disturbing other permission values.
Remove super user from users collection.

Running

Assuming you have node (>=v12), use the following command to run the migration:

npm install
node main.js 'https://localhost/api/v1/' 'mongodb://localhost:27017/mobtools'

The first argument should be a running API endpoint, and the second argument should be a URI to the database that this API endpoint is running on.