Ling0925
/
buster
mirror of https://github.com/buster-so/buster.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
407 Commits 151 Branches 17 Tags 116 MiB
Commit Graph

407 Commits

Author SHA1 Message Date
Nate Kelley f41c4da9ff
thought transitions complete 2025-01-28 14:07:30 -07:00
Nate Kelley 2d8d2baa6f
Update ChatResponseMessage_ThoughtPills.tsx 2025-01-28 13:29:07 -07:00
Nate Kelley e653d3953b
better pill handling 2025-01-28 12:55:53 -07:00
Nate Kelley b850a85199
width 2025-01-28 12:47:14 -07:00
Nate Kelley df3c216b3e
pill click events 2025-01-28 12:24:31 -07:00
Nate Kelley aec79d84a6
thoughts pills 2025-01-28 11:50:11 -07:00
Nate Kelley 52c4521750
pill styles 2025-01-28 10:57:26 -07:00
Nate Kelley b8e1270f36
Update ChatResponseMessage_Thought.tsx 2025-01-28 10:07:37 -07:00
Nate Kelley 975b8dd8d9
add streaming text 2025-01-28 10:04:54 -07:00
Nate Kelley 20c31af9da
started adding responses 2025-01-27 17:08:52 -07:00
Nate Kelley 90d30c93af
add additional context provider for chats 2025-01-27 16:23:08 -07:00
Nate Kelley be050b3521
select file update 2025-01-27 15:48:29 -07:00
Nate Kelley d5ee691de4
add provider for chats 2025-01-27 14:20:26 -07:00
Nate Kelley 604bfbdd6c
create chat interfaces 2025-01-27 13:21:42 -07:00
Nate Kelley 9f4dcb6baa
animation for collapse button 2025-01-25 11:23:19 -07:00
Nate Kelley d7aeb14569
pass down file type to container 2025-01-24 21:21:53 -07:00
Nate Kelley b3af7267ef
default file passthrough 2025-01-24 16:59:38 -07:00
Nate Kelley de0d46bb2e
more chat container info 2025-01-24 16:33:32 -07:00
Nate Kelley 2068cf2046
add scroll indicator 2025-01-24 14:39:15 -07:00
Nate Kelley 8b21e0d50c
chat file headers 2025-01-24 13:36:39 -07:00
Nate Kelley 2fe395b5ea
check if number for chat splitter 2025-01-24 13:05:09 -07:00
Nate Kelley ff81539cb9
Use performance instead of settimeout for splitter animation 2025-01-24 11:14:49 -07:00
Nate Kelley 975f5a1011
Merge branch 'staging' into big-nate/bus-939-create-new-structure-for-chats 2025-01-24 11:12:12 -07:00
Nate Kelley 63c5ba2190
Merge pull request #66 from buster-so/nate/security-remediation 
Nate/security remediation
 2025-01-24 10:05:30 -08:00
Nate Kelley 2208977a87
prevent email param injection 2025-01-24 11:04:34 -07:00
Nate Kelley 62ce1b8c9c
Update cspPolicyMiddleware.ts 2025-01-24 10:50:17 -07:00
Nate Kelley 4a777efab7
Merge pull request #65 from buster-so/nate/security-remediation 
Nate/security remediation
 2025-01-24 09:20:33 -08:00
Nate Kelley 0747edbfb0
Merge branch 'staging' into nate/security-remediation 2025-01-24 10:20:06 -07:00
Nate Kelley 4000bb4e06
add csp policy middleware 2025-01-24 10:19:53 -07:00
dal 87466e8d61
Enhance email functionality by adding HTML escaping 
- Added `html-escape` crate to `Cargo.toml` for HTML escaping.
- Updated email template processing to escape HTML in message and button text, preventing potential XSS vulnerabilities.
- Modified test cases to include HTML content in email parameters, ensuring proper handling and escaping.

This change improves security by sanitizing user input in email communications.
 2025-01-24 08:57:48 -07:00
Nate Kelley d29e9345ea
Merge pull request #63 from buster-so/nate/security-remediation 
set cookies
 2025-01-23 16:07:19 -08:00
Nate Kelley d39373ac18
Merge branch 'staging' into nate/security-remediation 2025-01-23 17:07:06 -07:00
Nate Kelley 50b9177275
set cookies 2025-01-23 17:06:12 -07:00
Nate Kelley 2bdb2cb6ec
Merge pull request #62 from buster-so/nate/security-remediation 
set cookies
 2025-01-23 16:03:06 -08:00
Nate Kelley 504a3360b6
set cookies 2025-01-23 17:01:52 -07:00
dal ee58c05b54
dashboard permissions fix 2025-01-23 16:54:09 -07:00
Nate Kelley e7f8f8b06d
Merge pull request #61 from buster-so/nate/security-remediation 
Nate/security remediation
 2025-01-23 15:38:12 -08:00
Nate Kelley 02d0f9f2c4
Update supabase server to secure and http only 2025-01-23 16:37:44 -07:00
Nate Kelley 15e515720f
add secure middleware checks 2025-01-23 16:33:33 -07:00
dal af7e969af8
fix permission check on post_dataset rest (#59) 
* fix permission check on post_dataset rest

* refactor: enhance dataset overview access lineage and permission checks

- Updated the `get_dataset_overview` function to conditionally add default access lineage based on user roles and existing access paths.
- Simplified the logic for adding user roles to the lineage, ensuring clarity and maintainability.
- Improved handling for the `RestrictedQuerier` role to include checks for existing access before adding default lineage, enhancing permission accuracy.
- Streamlined code by removing redundant checks and consolidating role handling, optimizing overall readability.

* feat: Enhance permission group handling and data retrieval

- Introduced a new `PermissionGroupInfo` struct to encapsulate detailed information about permission groups, including user and dataset counts.
- Updated the `get_permission_group` and `list_permission_groups` functions to improve data retrieval and error handling.
- Refactored SQL queries in `list_permission_groups` to include additional joins for counting users and datasets associated with permission groups, enhancing the overall functionality and clarity of the API.
- Streamlined code for better readability and maintainability, ensuring consistent handling of user and permission group data.

* refactor: Improve dataset access handling and permission checks

- Enhanced the `get_restricted_user_datasets` and `get_restricted_user_datasets_with_metadata` functions to include additional permission checks for dataset groups and permission groups.
- Consolidated SQL queries to ensure proper filtering of deleted records and improved clarity in dataset retrieval logic.
- Introduced new joins and filters to handle dataset group permissions, ensuring accurate access control for users.
- Streamlined code for better readability and maintainability, enhancing overall functionality in dataset access management.

* fix: Update SQL migration and seed data for user attributes

- Modified the SQL migration to specify the schema for the `users` table, ensuring clarity in the update statement.
- Adjusted the seed data for `users_to_organizations` to change the `organization_id` from 'public' to 'none', reflecting a more accurate state for user roles and organization associations.
- Ensured consistency in the formatting of SQL insert statements for better readability.

* fix: Prevent users from updating their own profiles

- Added a check in the `update_user_handler` to prevent users from updating their own information, returning an error if they attempt to do so.
- This change enhances security by ensuring that users cannot modify their own records, which could lead to unauthorized changes.

* refactor: Simplify dashboard permission queries by removing team-based joins

- Removed left joins with `teams_to_users` table in dashboard permission queries
- Simplified permission checks to only filter by direct user ID
- Updated queries in `get_user_dashboard_permission`, `get_bulk_user_dashboard_permission`, and `list_dashboards_handler`
- Streamlined SQL query logic for more direct and efficient permission checks
 2025-01-23 15:22:07 -08:00
Nate Kelley 77c6f57846
can pass in pixels instead of percentage to app splitter animate 2025-01-23 16:15:42 -07:00
Nate Kelley dbaa3c0b06
add chat splitter pt 1 2025-01-23 16:00:33 -07:00
Nate Kelley f638db2299
reorganize components pt 1 2025-01-23 13:15:10 -07:00
Nate Kelley 31e0477b56
Merge branch 'staging' into big-nate/bus-939-create-new-structure-for-chats 2025-01-23 12:58:08 -07:00
Nate Kelley d315d6f410
update how no datasets is presented 2025-01-23 12:57:57 -07:00
Nate Kelley c91647198d
memoize impertative function 2025-01-23 12:57:37 -07:00
Nate Kelley 16866accbb
Merge branch 'staging' into big-nate/bus-939-create-new-structure-for-chats 2025-01-23 12:44:41 -07:00
Nate Kelley 4a52fa6ddd
Update ShimmerText.tsx 2025-01-23 12:40:13 -07:00
Nate Kelley cb2d3c3235
Merge branch 'staging' of https://github.com/buster-so/buster into staging 2025-01-23 12:39:59 -07:00
Nate Kelley ab8ae7f3d2
Update shimmer text component 2025-01-23 11:56:57 -07:00