refactor(core, editor): Remove legacy nodesAccess (no-changelog) (#9016)

2025-12-17 18:12:04 +00:00 · 2024-04-05 13:17:34 +02:00
parent ba986fb018
commit b8ab049932
39 changed files with 45 additions and 266 deletions
--- a/packages/cli/src/CredentialsHelper.ts
+++ b/packages/cli/src/CredentialsHelper.ts
@@ -268,7 +268,6 @@ export class CredentialsHelper extends ICredentialsHelper {
 		return new Credentials(
 			{ id: credential.id, name: credential.name },
 			credential.type,
-			credential.nodesAccess,
 			credential.data,
 		);
 	}
@@ -483,9 +482,9 @@ export function createCredentialsFromCredentialsEntity(
 	credential: CredentialsEntity,
 	encrypt = false,
 ): Credentials {
-	const { id, name, type, nodesAccess, data } = credential;
+	const { id, name, type, data } = credential;
 	if (encrypt) {
-		return new Credentials({ id: null, name }, type, nodesAccess);
+		return new Credentials({ id: null, name }, type);
 	}
-	return new Credentials({ id, name }, type, nodesAccess, data);
+	return new Credentials({ id, name }, type, data);
 }
--- a/packages/cli/src/PublicApi/v1/handlers/credentials/credentials.service.ts
+++ b/packages/cli/src/PublicApi/v1/handlers/credentials/credentials.service.ts
@@ -41,20 +41,6 @@ export async function createCredential(

 	Object.assign(newCredential, properties);

-	if (!newCredential.nodesAccess || newCredential.nodesAccess.length === 0) {
-		newCredential.nodesAccess = [
-			{
-				nodeType: `n8n-nodes-base.${properties.type?.toLowerCase() ?? 'unknown'}`,
-				date: new Date(),
-			},
-		];
-	} else {
-		// Add the added date for node access permissions
-		newCredential.nodesAccess.forEach((nodeAccess) => {
-			nodeAccess.date = new Date();
-		});
-	}
-
 	return newCredential;
 }

@@ -91,11 +77,7 @@ export async function removeCredential(credentials: CredentialsEntity): Promise<

 export async function encryptCredential(credential: CredentialsEntity): Promise<ICredentialsDb> {
 	// Encrypt the data
-	const coreCredential = new Credentials(
-		{ id: null, name: credential.name },
-		credential.type,
-		credential.nodesAccess,
-	);
+	const coreCredential = new Credentials({ id: null, name: credential.name }, credential.type);

 	// @ts-ignore
 	coreCredential.setData(credential.data);
@@ -115,7 +97,7 @@ export function sanitizeCredentials(
 	const credentialsList = argIsArray ? credentials : [credentials];

 	const sanitizedCredentials = credentialsList.map((credential) => {
-		const { data, nodesAccess, shared, ...rest } = credential;
+		const { data, shared, ...rest } = credential;
 		return rest;
 	});

--- a/packages/cli/src/commands/export/credentials.ts
+++ b/packages/cli/src/commands/export/credentials.ts
@@ -111,9 +111,9 @@ export class ExportCredentialsCommand extends BaseCommand {

 		if (flags.decrypted) {
 			for (let i = 0; i < credentials.length; i++) {
-				const { name, type, nodesAccess, data } = credentials[i];
+				const { name, type, data } = credentials[i];
 				const id = credentials[i].id;
-				const credential = new Credentials({ id, name }, type, nodesAccess, data);
+				const credential = new Credentials({ id, name }, type, data);
 				const plainData = credential.getData();
 				(credentials[i] as ICredentialsDecryptedDb).data = plainData;
 			}
--- a/packages/cli/src/commands/import/credentials.ts
+++ b/packages/cli/src/commands/import/credentials.ts
@@ -141,9 +141,6 @@ export class ImportCredentialsCommand extends BaseCommand {
 	}

 	private async storeCredential(credential: Partial<CredentialsEntity>, user: User) {
-		if (!credential.nodesAccess) {
-			credential.nodesAccess = [];
-		}
 		const result = await this.transactionManager.upsert(CredentialsEntity, credential, ['id']);
 		await this.transactionManager.upsert(
 			SharedCredentials,
--- a/packages/cli/src/controllers/oauth/abstractOAuth.controller.ts
+++ b/packages/cli/src/controllers/oauth/abstractOAuth.controller.ts
@@ -95,7 +95,7 @@ export abstract class AbstractOAuthController {
 		credential: ICredentialsDb,
 		decryptedData: ICredentialDataDecryptedObject,
 	) {
-		const credentials = new Credentials(credential, credential.type, credential.nodesAccess);
+		const credentials = new Credentials(credential, credential.type);
 		credentials.setData(decryptedData);
 		await this.credentialsRepository.update(credential.id, {
 			...credentials.getDataToSave(),
--- a/packages/cli/src/credentials/credentials.service.ts
+++ b/packages/cli/src/credentials/credentials.service.ts
@@ -109,11 +109,6 @@ export class CredentialsService {

 		await validateEntity(newCredentials);

-		// Add the date for newly added node access permissions
-		for (const nodeAccess of newCredentials.nodesAccess) {
-			nodeAccess.date = new Date();
-		}
-
 		return newCredentials;
 	}

@@ -132,13 +127,6 @@ export class CredentialsService {

 		await validateEntity(updateData);

-		// Add the date for newly added node access permissions
-		for (const nodeAccess of updateData.nodesAccess) {
-			if (!nodeAccess.date) {
-				nodeAccess.date = new Date();
-			}
-		}
-
 		// Do not overwrite the oauth data else data like the access or refresh token would get lost
 		// everytime anybody changes anything on the credentials even if it is just the name.
 		if (decryptedData.oauthTokenData) {
@@ -149,11 +137,7 @@ export class CredentialsService {
 	}

 	createEncryptedData(credentialId: string | null, data: CredentialsEntity): ICredentialsDb {
-		const credentials = new Credentials(
-			{ id: credentialId, name: data.name },
-			data.type,
-			data.nodesAccess,
-		);
+		const credentials = new Credentials({ id: credentialId, name: data.name }, data.type);

 		credentials.setData(data.data as unknown as ICredentialDataDecryptedObject);

--- a/packages/cli/src/databases/entities/CredentialsEntity.ts
+++ b/packages/cli/src/databases/entities/CredentialsEntity.ts
@@ -1,8 +1,7 @@
-import type { ICredentialNodeAccess } from 'n8n-workflow';
 import { Column, Entity, Index, OneToMany } from '@n8n/typeorm';
-import { IsArray, IsObject, IsString, Length } from 'class-validator';
+import { IsObject, IsString, Length } from 'class-validator';
 import type { SharedCredentials } from './SharedCredentials';
-import { WithTimestampsAndStringId, jsonColumnType } from './AbstractEntity';
+import { WithTimestampsAndStringId } from './AbstractEntity';
 import type { ICredentialsDb } from '@/Interfaces';

@Entity()
@@ -27,8 +26,4 @@ export class CredentialsEntity extends WithTimestampsAndStringId implements ICre

 	@OneToMany('SharedCredentials', 'credentials')
 	shared: SharedCredentials[];
-
-	@Column(jsonColumnType)
-	@IsArray()
-	nodesAccess: ICredentialNodeAccess[];
 }
--- a/packages/cli/src/databases/migrations/common/1712044305787-RemoveNodesAccess.ts
+++ b/packages/cli/src/databases/migrations/common/1712044305787-RemoveNodesAccess.ts
@@ -0,0 +1,7 @@
+import type { IrreversibleMigration, MigrationContext } from '@db/types';
+
+export class RemoveNodesAccess1712044305787 implements IrreversibleMigration {
+	async up({ schemaBuilder: { dropColumns } }: MigrationContext) {
+		await dropColumns('credentials_entity', ['nodesAccess']);
+	}
+}
--- a/packages/cli/src/databases/migrations/mysqldb/index.ts
+++ b/packages/cli/src/databases/migrations/mysqldb/index.ts
@@ -54,6 +54,7 @@ import { AddGlobalAdminRole1700571993961 } from '../common/1700571993961-AddGlob
 import { DropRoleMapping1705429061930 } from '../common/1705429061930-DropRoleMapping';
 import { RemoveFailedExecutionStatus1711018413374 } from '../common/1711018413374-RemoveFailedExecutionStatus';
 import { MoveSshKeysToDatabase1711390882123 } from '../common/1711390882123-MoveSshKeysToDatabase';
+import { RemoveNodesAccess1712044305787 } from '../common/1712044305787-RemoveNodesAccess';

 export const mysqlMigrations: Migration[] = [
 	InitialMigration1588157391238,
@@ -111,4 +112,5 @@ export const mysqlMigrations: Migration[] = [
 	DropRoleMapping1705429061930,
 	RemoveFailedExecutionStatus1711018413374,
 	MoveSshKeysToDatabase1711390882123,
+	RemoveNodesAccess1712044305787,
 ];
--- a/packages/cli/src/databases/migrations/postgresdb/index.ts
+++ b/packages/cli/src/databases/migrations/postgresdb/index.ts
@@ -53,6 +53,7 @@ import { AddGlobalAdminRole1700571993961 } from '../common/1700571993961-AddGlob
 import { DropRoleMapping1705429061930 } from '../common/1705429061930-DropRoleMapping';
 import { RemoveFailedExecutionStatus1711018413374 } from '../common/1711018413374-RemoveFailedExecutionStatus';
 import { MoveSshKeysToDatabase1711390882123 } from '../common/1711390882123-MoveSshKeysToDatabase';
+import { RemoveNodesAccess1712044305787 } from '../common/1712044305787-RemoveNodesAccess';

 export const postgresMigrations: Migration[] = [
 	InitialMigration1587669153312,
@@ -109,4 +110,5 @@ export const postgresMigrations: Migration[] = [
 	DropRoleMapping1705429061930,
 	RemoveFailedExecutionStatus1711018413374,
 	MoveSshKeysToDatabase1711390882123,
+	RemoveNodesAccess1712044305787,
 ];
--- a/packages/cli/src/databases/migrations/sqlite/index.ts
+++ b/packages/cli/src/databases/migrations/sqlite/index.ts
@@ -51,6 +51,7 @@ import { AddGlobalAdminRole1700571993961 } from '../common/1700571993961-AddGlob
 import { DropRoleMapping1705429061930 } from './1705429061930-DropRoleMapping';
 import { RemoveFailedExecutionStatus1711018413374 } from '../common/1711018413374-RemoveFailedExecutionStatus';
 import { MoveSshKeysToDatabase1711390882123 } from '../common/1711390882123-MoveSshKeysToDatabase';
+import { RemoveNodesAccess1712044305787 } from '../common/1712044305787-RemoveNodesAccess';

 const sqliteMigrations: Migration[] = [
 	InitialMigration1588102412422,
@@ -105,6 +106,7 @@ const sqliteMigrations: Migration[] = [
 	DropRoleMapping1705429061930,
 	RemoveFailedExecutionStatus1711018413374,
 	MoveSshKeysToDatabase1711390882123,
+	RemoveNodesAccess1712044305787,
 ];

 export { sqliteMigrations };
--- a/packages/cli/src/databases/repositories/credentials.repository.ts
+++ b/packages/cli/src/databases/repositories/credentials.repository.ts
@@ -46,7 +46,7 @@ export class CredentialsRepository extends Repository<CredentialsEntity> {
 		type Select = Array<keyof CredentialsEntity>;

 		const defaultRelations = ['shared', 'shared.user'];
-		const defaultSelect: Select = ['id', 'name', 'type', 'nodesAccess', 'createdAt', 'updatedAt'];
+		const defaultSelect: Select = ['id', 'name', 'type', 'createdAt', 'updatedAt'];

 		if (!listQueryOptions) return { select: defaultSelect, relations: defaultRelations };

--- a/packages/cli/src/environments/sourceControl/sourceControl.service.ee.ts
+++ b/packages/cli/src/environments/sourceControl/sourceControl.service.ee.ts
@@ -25,7 +25,6 @@ import { SourceControlPreferencesService } from './sourceControlPreferences.serv
 import { writeFileSync } from 'fs';
 import { SourceControlImportService } from './sourceControlImport.service.ee';
 import type { User } from '@db/entities/User';
-import isEqual from 'lodash/isEqual';
 import type { SourceControlGetStatus } from './types/sourceControlGetStatus';
 import type { TagEntity } from '@db/entities/TagEntity';
 import type { Variables } from '@db/entities/Variables';
@@ -384,7 +383,7 @@ export class SourceControlService {
 	 * Does a comparison between the local and remote workfolder based on NOT the git status,
 	 * but certain parameters within the items being synced.
 	 * For workflows, it compares the versionIds
-	 * For credentials, it compares the name, type and nodeAccess
+	 * For credentials, it compares the name and type
 	 * For variables, it compares the name
 	 * For tags, it compares the name and mapping
 	 * @returns either SourceControlledFile[] if verbose is false,
@@ -565,12 +564,7 @@ export class SourceControlService {
 		> = [];
 		credLocalIds.forEach((local) => {
 			const mismatchingCreds = credRemoteIds.find((remote) => {
-				return (
-					remote.id === local.id &&
-					(remote.name !== local.name ||
-						remote.type !== local.type ||
-						!isEqual(remote.nodesAccess, local.nodesAccess))
-				);
+				return remote.id === local.id && (remote.name !== local.name || remote.type !== local.type);
 			});
 			if (mismatchingCreds) {
 				credModifiedInEither.push({
--- a/packages/cli/src/environments/sourceControl/sourceControlExport.service.ee.ts
+++ b/packages/cli/src/environments/sourceControl/sourceControlExport.service.ee.ts
@@ -240,15 +240,14 @@ export class SourceControlExportService {
 			}
 			await Promise.all(
 				credentialsToBeExported.map(async (sharing) => {
-					const { name, type, nodesAccess, data, id } = sharing.credentials;
-					const credentials = new Credentials({ id, name }, type, nodesAccess, data);
+					const { name, type, data, id } = sharing.credentials;
+					const credentials = new Credentials({ id, name }, type, data);

 					const stub: ExportableCredential = {
 						id,
 						name,
 						type,
 						data: this.replaceCredentialData(credentials.getData()),
-						nodesAccess,
 						ownedBy: sharing.user.email,
 					};

--- a/packages/cli/src/environments/sourceControl/sourceControlImport.service.ee.ts
+++ b/packages/cli/src/environments/sourceControl/sourceControlImport.service.ee.ts
@@ -142,13 +142,12 @@ export class SourceControlImportService {
 		Array<ExportableCredential & { filename: string }>
 	> {
 		const localCredentials = await Container.get(CredentialsRepository).find({
-			select: ['id', 'name', 'type', 'nodesAccess'],
+			select: ['id', 'name', 'type'],
 		});
 		return localCredentials.map((local) => ({
 			id: local.id,
 			name: local.name,
 			type: local.type,
-			nodesAccess: local.nodesAccess,
 			filename: getCredentialExportPath(local.id, this.credentialExportFolder),
 		})) as Array<ExportableCredential & { filename: string }>;
 	}
@@ -339,14 +338,13 @@ export class SourceControlImportService {
 					(e) => e.id === credential.id && e.type === credential.type,
 				);

-				const { name, type, data, id, nodesAccess } = credential;
-				const newCredentialObject = new Credentials({ id, name }, type, []);
+				const { name, type, data, id } = credential;
+				const newCredentialObject = new Credentials({ id, name }, type);
 				if (existingCredential?.data) {
 					newCredentialObject.data = existingCredential.data;
 				} else {
 					newCredentialObject.setData(data);
 				}
-				newCredentialObject.nodesAccess = nodesAccess || existingCredential?.nodesAccess || [];

 				this.logger.debug(`Updating credential id ${newCredentialObject.id as string}`);
 				await Container.get(CredentialsRepository).upsert(newCredentialObject, ['id']);
--- a/packages/cli/src/environments/sourceControl/types/exportableCredential.ts
+++ b/packages/cli/src/environments/sourceControl/types/exportableCredential.ts
@@ -1,11 +1,10 @@
-import type { ICredentialDataDecryptedObject, ICredentialNodeAccess } from 'n8n-workflow';
+import type { ICredentialDataDecryptedObject } from 'n8n-workflow';

 export interface ExportableCredential {
 	id: string;
 	name: string;
 	type: string;
 	data: ICredentialDataDecryptedObject;
-	nodesAccess: ICredentialNodeAccess[];

 	/**
 	 * Email of the user who owns this credential at the source instance.
--- a/packages/cli/src/requests.ts
+++ b/packages/cli/src/requests.ts
@@ -2,7 +2,6 @@ import type express from 'express';
 import type {
 	BannerName,
 	ICredentialDataDecryptedObject,
-	ICredentialNodeAccess,
 	IDataObject,
 	INodeCredentialTestRequest,
 	INodeCredentials,
@@ -158,7 +157,6 @@ export declare namespace CredentialRequest {
 		id: string; // delete if sent
 		name: string;
 		type: string;
-		nodesAccess: ICredentialNodeAccess[];
 		data: ICredentialDataDecryptedObject;
 	}>;