erxes-api
erxes-api copied to clipboard
erxes
prevent leaking private data from configs to all users
The general settings configs now contain fields that should not be exposed to all users in the system such as cloud credentials and mail server logins.
This uses the now-unused showGeneralSettings permissions to match the manageGeneralSettings permission set on config mutations so that data for users without the appropriate level isn't returned.
Congratulations :tada:. DeepCode analyzed your code in 1.108 seconds and we found no issues. Enjoy a moment of no bugs :sunny:.
