QT/bigcapital
1
0
Fork 0
mirror of https://github.com/bigcapitalhq/bigcapital.git synced 2026-02-13 11:20:31 +00:00
Code Issues Packages Projects Releases Wiki Activity

Compare commits

base: QT:v0.19.1
Branches Tags
QT:develop QT:main QT:20260131-145158-fd0c QT:20260129-204904-4cc3 QT:20260129-203653-75b0 QT:20260128-181425-8b6a QT:feature/20260125222025 QT:feature/20260125215941 QT:feature/20260123174320 QT:darkmode-ui-bugs QT:revert-888-named-imports-hocs QT:bugs-bashing2 QT:patch-3 QT:copilot/sub-pr-837 QT:auth-pages-errors-handler QT:fix-system-tenant-migration QT:api-keys QT:old-arch QT:refactor-landed-cost QT:nestjs-dtos QT:users-module QT:reports-nestjs QT:migrate-server-nestjs QT:fix-total-lines-style QT:fix-renew-expired-subscription QT:add-mail-invoice-receipt-schema QT:invoice-mail-receipt QT:all-contributors/add-nklmantey QT:add-estimate-customer-note QT:fix-pdf-template-addresses-controlling QT:translations_63aa27c39c9f4c3a8da2e401e68c68a1_fr_FR QT:upload-company-logo QT:swagger QT:revert-664-swagger QT:fix-getting-sheet-columns QT:date-format-import-control QT:debounce-scheduling-item-cost QT:listen-payment-webhooks QT:change-banking-service-language QT:publish-journal-from-drawer QT:all-contributors/add-Champetaman QT:multi-lines-transactions-statements QT:billing-subscription-page QT:all-contributors/add-oleynikd QT:excessed-payments-as-credit QT:advanced-payments QT:fix-plaid-transactions-syncing QT:fix-cashflow-transactions-type QT:reconcile-matching-transactions QT:BIG-213 QT:BIG-195 QT:fix-payment-receive-attachments QT:BIG-198 QT:organize-plaid-env-vars QT:plaid-env-vars QT:dependabot/npm_and_yarn/mysql2-3.9.8 QT:print-resources QT:dependabot/npm_and_yarn/pug-3.0.3 QT:attachments QT:all-contributors/add-ccantrell72 QT:big-163-user-email-verification-after-signing-up QT:new-relic-tracking QT:new-relic-tracking-new QT:backup-script QT:all-contributors/add-cloudsbird QT:all-contributors/add-benpsnyder QT:feat/upgrade-to-latest-lerna QT:auto-subscribe-free QT:import-fields-hints QT:clean-up-templ-import-files QT:accounts-bank-transactions-demo-sheet QT:release/v0.15.2 QT:big-152-uncategorize-the-cashflow-transaction QT:big-150-categorized-the-bank-synced-transactions QT:big-129-universal-search-should-auto-focus-when-it-opens QT:big-144-fix-transactions-by-vendors-broken QT:big-105-convert-invoice-status-after-sending-mail-notification QT:big-126-invalid-bill-payment-amount-on-editing-bill-payment QT:big-138-revert-the-paid-amount-to-bill-transaction-after-editing QT:all-contributors/add-xprnio QT:big-120-get-cashflow-transaction-broken-cause-transaction-type QT:hotfix-pdf-printing QT:all-contributors/add-cschuijt QT:big-80-entering-decimal-amount-in-salepurchase-transactions QT:gitpod QT:dependabot/npm_and_yarn/packages/server/browserify-sign-4.2.2 QT:all-contributors/add-kochie QT:dev/tax-number QT:style-financial-reports-rows QT:abouhuolia/big-62-running-tenants-dbs-migration-on-migration-docker-container QT:tax-compliance QT:fix-filter-transactions-date-format QT:abouhuolia/big-60-fromto-date-is-not-showing-up-on-inventory-items-details QT:abouhuolia/big-45-receivablepayable-again-report-issue QT:fix-spelling-a-char QT:abouhuolia/big-59-transaction-type-of-credit-note-and-vendor-credit-are-not QT:abouhuolia/big-54-specific-items-filter-on-purchasessells-by-items-reports QT:all-contributors/add-KalliopiPliogka QT:abouhuolia/big-43-create-quick-item-is-broken QT:#149-restart-crashed-docker-containers QT:198 QT:fix-loading-status-on-financial-reports QT:api-rate-env-vars QT:split-components-in-seprate-files QT:abouhuolia/big-24-adjustment-type-options-do-not-show-up QT:abouhuolia/big-23-payment-made-details-drawer-does-not-show-up-3 QT:abouhuolia/big-23-payment-made-details-drawer-does-not-show-up-2 QT:abouhuolia/big-23-payment-made-details-drawer-does-not-show-up QT:change-onboarding-footer-links QT:fix-make-journal-with-different-accounts QT:filter-ledger-entries-ar-ap QT:docker-compose-env-variables QT:BIG-428-clean-up-the-preferences-pages QT:signup-restrictions QT:BIG-427-fix-sending-invite-email QT:BIG-409-some-flag-icons-are-missing QT:contributing QT:avoid-delete-base-currency QT:BIG-419-delete-invited-user QT:docker-compose-user-permissions QT:agpl QT:docekrnize-server QT:fix-vercel-build QT:docker-dev-prod QT:BIG-422-deprecated-the-subscription-module QT:vercel-ignore QT:BIG-411-no-icon-on-the-duplicate-item-menu QT:vercel-test QT:bigcapital-cli QT:vercel QT:lerna QT:monorepo QT:CV-779-add-credit-balance-beside-cart-and-order-details-total-and-subtotal QT:BIG-386-listing-the-time-entries-of-the-projects QT:BIG-378-add-localize-to-invoice QT:BIG-359-replace-inventory-radio-button-option-to-checkbox-option QT:BIG-163-manual-journals-types-and-allow-user-to-select-journal-type-from-the-list QT:BIG-237-validate-invoice-due-date-should-be-equal-or-bigger-than-invoice-date QT:BIG-336-item-entries-select-warehouse QT:easysms-integrate
QT:V0.24.7 QT:v0.24.6 QT:v0.24.5 QT:v0.24.4 QT:v0.24.3 QT:v0.24.2 QT:v0.24.1 QT:v0.24.0 QT:v0.23.0-rc.3 QT:v0.23.0-rc.2 QT:v0.23.0-rc.1 QT:v0.22.0 QT:v0.21.2 QT:v0.21.1 QT:v0.21.0 QT:v0.20.6 QT:v0.20.5 QT:v0.20.4 QT:v0.20.3 QT:v0.20.2 QT:v0.20.1 QT:v0.20.0 QT:v0.19.17 QT:v0.19.16 QT:v0.19.15 QT:v0.19.14 QT:v0.19.13 QT:v0.19.12 QT:v0.19.11 QT:v0.19.10 QT:v0.19.9 QT:v0.19.8 QT:v0.19.7 QT:v0.19.6 QT:v0.19.5 QT:v0.19.4 QT:v0.19.3 QT:v0.19.2 QT:v0.19.1 QT:v0.19.0 QT:v0.18.11 QT:v0.18.10 QT:v0.18.9 QT:v0.18.8 QT:v0.18.7 QT:v0.18.6 QT:v0.18.5 QT:v0.18.4 QT:v0.18.2 QT:v0.18.1 QT:v0.18.0 QT:v0.17.7 QT:v0.17.6 QT:v0.17.5 QT:v0.17.4 QT:v0.17.3 QT:v0.17.2 QT:v0.17.1 QT:v0.17.0 QT:v0.16.16 QT:v0.16.15 QT:v0.16.14 QT:v0.16.13 QT:v0.16.11 QT:v0.16.10 QT:v0.16.9 QT:v0.16.8 QT:v0.16.7 QT:v0.16.6 QT:v0.16.5 QT:v0.16.4 QT:v0.16.3 QT:v0.16.2 QT:v0.16.1 QT:v0.16.0 QT:v0.15.2 QT:v0.15.1 QT:v0.15.0 QT:v0.14.1 QT:v0.14.0 QT:v0.13.3 QT:v0.13.2 QT:v0.13.1 QT:v0.13.0 QT:v0.12.1 QT:v0.12.0 QT:v0.11.0 QT:@bigcapital/webapp@0.10.2 QT:@bigcapital/server@0.10.1 QT:v0.10.2 QT:v0.10.1 QT:v0.10.0 QT:v0.9.12 QT:v0.9.11 QT:v0.9.10 QT:v0.9.9 QT:v0.9.8 QT:v0.9.7 QT:v0.9.6 QT:v0.9.5 QT:v0.9.4 QT:v0.9.3 QT:v0.9.2 QT:v0.9.1 QT:v0.9.0 QT:v0.8.4 QT:v0.8.3 QT:v0.8.2 QT:v0.8.1 QT:v0.8.0 QT:v0.7.6 QT:v0.7.5 QT:v0.7.4 QT:v0.7.3 QT:v0.7.2 QT:v0.7.1 QT:v0.7.0 QT:v0.6.3 QT:v0.6.1 QT:v0.6.0 QT:v0.5.8 QT:v0.5.7 QT:1.5.7 QT:v0.5.6 QT:v0.5.5 QT:v0.5.4 QT:v0.5.3 QT:v0.5.1 QT:v0.5.0 QT:v0.4.3 QT:v0.4.2 QT:v0.4.1 QT:v0.4.0 QT:v0.3.3 QT:v0.3.2 QT:v0.3.1 QT:v0.3.0 QT:v0.2.3 QT:v0.2.1
...
compare: QT:v0.19.2
Branches Tags
QT:develop QT:main QT:20260131-145158-fd0c QT:20260129-204904-4cc3 QT:20260129-203653-75b0 QT:20260128-181425-8b6a QT:feature/20260125222025 QT:feature/20260125215941 QT:feature/20260123174320 QT:darkmode-ui-bugs QT:revert-888-named-imports-hocs QT:bugs-bashing2 QT:patch-3 QT:copilot/sub-pr-837 QT:auth-pages-errors-handler QT:fix-system-tenant-migration QT:api-keys QT:old-arch QT:refactor-landed-cost QT:nestjs-dtos QT:users-module QT:reports-nestjs QT:migrate-server-nestjs QT:fix-total-lines-style QT:fix-renew-expired-subscription QT:add-mail-invoice-receipt-schema QT:invoice-mail-receipt QT:all-contributors/add-nklmantey QT:add-estimate-customer-note QT:fix-pdf-template-addresses-controlling QT:translations_63aa27c39c9f4c3a8da2e401e68c68a1_fr_FR QT:upload-company-logo QT:swagger QT:revert-664-swagger QT:fix-getting-sheet-columns QT:date-format-import-control QT:debounce-scheduling-item-cost QT:listen-payment-webhooks QT:change-banking-service-language QT:publish-journal-from-drawer QT:all-contributors/add-Champetaman QT:multi-lines-transactions-statements QT:billing-subscription-page QT:all-contributors/add-oleynikd QT:excessed-payments-as-credit QT:advanced-payments QT:fix-plaid-transactions-syncing QT:fix-cashflow-transactions-type QT:reconcile-matching-transactions QT:BIG-213 QT:BIG-195 QT:fix-payment-receive-attachments QT:BIG-198 QT:organize-plaid-env-vars QT:plaid-env-vars QT:dependabot/npm_and_yarn/mysql2-3.9.8 QT:print-resources QT:dependabot/npm_and_yarn/pug-3.0.3 QT:attachments QT:all-contributors/add-ccantrell72 QT:big-163-user-email-verification-after-signing-up QT:new-relic-tracking QT:new-relic-tracking-new QT:backup-script QT:all-contributors/add-cloudsbird QT:all-contributors/add-benpsnyder QT:feat/upgrade-to-latest-lerna QT:auto-subscribe-free QT:import-fields-hints QT:clean-up-templ-import-files QT:accounts-bank-transactions-demo-sheet QT:release/v0.15.2 QT:big-152-uncategorize-the-cashflow-transaction QT:big-150-categorized-the-bank-synced-transactions QT:big-129-universal-search-should-auto-focus-when-it-opens QT:big-144-fix-transactions-by-vendors-broken QT:big-105-convert-invoice-status-after-sending-mail-notification QT:big-126-invalid-bill-payment-amount-on-editing-bill-payment QT:big-138-revert-the-paid-amount-to-bill-transaction-after-editing QT:all-contributors/add-xprnio QT:big-120-get-cashflow-transaction-broken-cause-transaction-type QT:hotfix-pdf-printing QT:all-contributors/add-cschuijt QT:big-80-entering-decimal-amount-in-salepurchase-transactions QT:gitpod QT:dependabot/npm_and_yarn/packages/server/browserify-sign-4.2.2 QT:all-contributors/add-kochie QT:dev/tax-number QT:style-financial-reports-rows QT:abouhuolia/big-62-running-tenants-dbs-migration-on-migration-docker-container QT:tax-compliance QT:fix-filter-transactions-date-format QT:abouhuolia/big-60-fromto-date-is-not-showing-up-on-inventory-items-details QT:abouhuolia/big-45-receivablepayable-again-report-issue QT:fix-spelling-a-char QT:abouhuolia/big-59-transaction-type-of-credit-note-and-vendor-credit-are-not QT:abouhuolia/big-54-specific-items-filter-on-purchasessells-by-items-reports QT:all-contributors/add-KalliopiPliogka QT:abouhuolia/big-43-create-quick-item-is-broken QT:#149-restart-crashed-docker-containers QT:198 QT:fix-loading-status-on-financial-reports QT:api-rate-env-vars QT:split-components-in-seprate-files QT:abouhuolia/big-24-adjustment-type-options-do-not-show-up QT:abouhuolia/big-23-payment-made-details-drawer-does-not-show-up-3 QT:abouhuolia/big-23-payment-made-details-drawer-does-not-show-up-2 QT:abouhuolia/big-23-payment-made-details-drawer-does-not-show-up QT:change-onboarding-footer-links QT:fix-make-journal-with-different-accounts QT:filter-ledger-entries-ar-ap QT:docker-compose-env-variables QT:BIG-428-clean-up-the-preferences-pages QT:signup-restrictions QT:BIG-427-fix-sending-invite-email QT:BIG-409-some-flag-icons-are-missing QT:contributing QT:avoid-delete-base-currency QT:BIG-419-delete-invited-user QT:docker-compose-user-permissions QT:agpl QT:docekrnize-server QT:fix-vercel-build QT:docker-dev-prod QT:BIG-422-deprecated-the-subscription-module QT:vercel-ignore QT:BIG-411-no-icon-on-the-duplicate-item-menu QT:vercel-test QT:bigcapital-cli QT:vercel QT:lerna QT:monorepo QT:CV-779-add-credit-balance-beside-cart-and-order-details-total-and-subtotal QT:BIG-386-listing-the-time-entries-of-the-projects QT:BIG-378-add-localize-to-invoice QT:BIG-359-replace-inventory-radio-button-option-to-checkbox-option QT:BIG-163-manual-journals-types-and-allow-user-to-select-journal-type-from-the-list QT:BIG-237-validate-invoice-due-date-should-be-equal-or-bigger-than-invoice-date QT:BIG-336-item-entries-select-warehouse QT:easysms-integrate
QT:V0.24.7 QT:v0.24.6 QT:v0.24.5 QT:v0.24.4 QT:v0.24.3 QT:v0.24.2 QT:v0.24.1 QT:v0.24.0 QT:v0.23.0-rc.3 QT:v0.23.0-rc.2 QT:v0.23.0-rc.1 QT:v0.22.0 QT:v0.21.2 QT:v0.21.1 QT:v0.21.0 QT:v0.20.6 QT:v0.20.5 QT:v0.20.4 QT:v0.20.3 QT:v0.20.2 QT:v0.20.1 QT:v0.20.0 QT:v0.19.17 QT:v0.19.16 QT:v0.19.15 QT:v0.19.14 QT:v0.19.13 QT:v0.19.12 QT:v0.19.11 QT:v0.19.10 QT:v0.19.9 QT:v0.19.8 QT:v0.19.7 QT:v0.19.6 QT:v0.19.5 QT:v0.19.4 QT:v0.19.3 QT:v0.19.2 QT:v0.19.1 QT:v0.19.0 QT:v0.18.11 QT:v0.18.10 QT:v0.18.9 QT:v0.18.8 QT:v0.18.7 QT:v0.18.6 QT:v0.18.5 QT:v0.18.4 QT:v0.18.2 QT:v0.18.1 QT:v0.18.0 QT:v0.17.7 QT:v0.17.6 QT:v0.17.5 QT:v0.17.4 QT:v0.17.3 QT:v0.17.2 QT:v0.17.1 QT:v0.17.0 QT:v0.16.16 QT:v0.16.15 QT:v0.16.14 QT:v0.16.13 QT:v0.16.11 QT:v0.16.10 QT:v0.16.9 QT:v0.16.8 QT:v0.16.7 QT:v0.16.6 QT:v0.16.5 QT:v0.16.4 QT:v0.16.3 QT:v0.16.2 QT:v0.16.1 QT:v0.16.0 QT:v0.15.2 QT:v0.15.1 QT:v0.15.0 QT:v0.14.1 QT:v0.14.0 QT:v0.13.3 QT:v0.13.2 QT:v0.13.1 QT:v0.13.0 QT:v0.12.1 QT:v0.12.0 QT:v0.11.0 QT:@bigcapital/webapp@0.10.2 QT:@bigcapital/server@0.10.1 QT:v0.10.2 QT:v0.10.1 QT:v0.10.0 QT:v0.9.12 QT:v0.9.11 QT:v0.9.10 QT:v0.9.9 QT:v0.9.8 QT:v0.9.7 QT:v0.9.6 QT:v0.9.5 QT:v0.9.4 QT:v0.9.3 QT:v0.9.2 QT:v0.9.1 QT:v0.9.0 QT:v0.8.4 QT:v0.8.3 QT:v0.8.2 QT:v0.8.1 QT:v0.8.0 QT:v0.7.6 QT:v0.7.5 QT:v0.7.4 QT:v0.7.3 QT:v0.7.2 QT:v0.7.1 QT:v0.7.0 QT:v0.6.3 QT:v0.6.1 QT:v0.6.0 QT:v0.5.8 QT:v0.5.7 QT:1.5.7 QT:v0.5.6 QT:v0.5.5 QT:v0.5.4 QT:v0.5.3 QT:v0.5.1 QT:v0.5.0 QT:v0.4.3 QT:v0.4.2 QT:v0.4.1 QT:v0.4.0 QT:v0.3.3 QT:v0.3.2 QT:v0.3.1 QT:v0.3.0 QT:v0.2.3 QT:v0.2.1

6 Commits
v0.19.1 ... v0.19.2

Author SHA1 Message Date
Ahmed Bouhuolia
be8352654e Merge pull request #559 from oleynikd/tax-precisions 
Increased tax_amount_withheld decimal precision
 2024-08-08 16:31:43 +02:00
Ahmed Bouhuolia
fb58ab8cc1 Merge pull request #571 from bigcapitalhq/remove-controller-escape 
fix: Remove the request body escape.
 2024-08-08 16:12:31 +02:00
Ahmed Bouhuolia
8da89ebe8b fix: remove the request body escape. 2024-08-08 16:10:42 +02:00
Ahmed Bouhuolia
d43d46ebec Merge pull request #570 from bigcapitalhq/popover2-version 
fix: Update @blueprintjs/popover2 version
 2024-08-08 12:57:48 +02:00
Ahmed Bouhuolia
ac3a514795 fix: update @blueprintjs/popover2 version 2024-08-08 12:57:08 +02:00
Denis
7147e230de Increased tax_amount_withheld decimal precision 
Fixing #547
 2024-08-01 16:31:14 +03:00
33 changed files with 122 additions and 278 deletions
Expand all files Collapse all files

24
packages/server/src/api/controllers/Accounts.ts
View File

@@ -103,24 +103,20 @@ export default class AccountsController extends BaseController {
check('name')
.exists()
.isLength({ min: 3, max: DATATYPES_LENGTH.STRING })
.trim()
.escape(),
.trim(),
check('code')
.optional({ nullable: true })
.isLength({ min: 3, max: 6 })
.trim()
.escape(),
.trim(),
check('currency_code').optional(),
check('account_type')
.exists()
.isLength({ min: 3, max: DATATYPES_LENGTH.STRING })
.trim()
.escape(),
.trim(),
check('description')
.optional({ nullable: true })
.isLength({ max: DATATYPES_LENGTH.TEXT })
.trim()
.escape(),
.trim(),
check('parent_account_id')
.optional({ nullable: true })
.isInt({ min: 0, max: DATATYPES_LENGTH.INT_10 })
@@ -136,23 +132,19 @@ export default class AccountsController extends BaseController {
check('name')
.exists()
.isLength({ min: 3, max: DATATYPES_LENGTH.STRING })
.trim()
.escape(),
.trim(),
check('code')
.optional({ nullable: true })
.isLength({ min: 3, max: 6 })
.trim()
.escape(),
.trim(),
check('account_type')
.exists()
.isLength({ min: 3, max: DATATYPES_LENGTH.STRING })
.trim()
.escape(),
.trim(),
check('description')
.optional({ nullable: true })
.isLength({ max: DATATYPES_LENGTH.TEXT })
.trim()
.escape(),
.trim(),
check('parent_account_id')
.optional({ nullable: true })
.isInt({ min: 0, max: DATATYPES_LENGTH.INT_10 })

12
packages/server/src/api/controllers/Authentication.ts
View File

@@ -90,27 +90,23 @@ export default class AuthenticationController extends BaseController {
.exists()
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('last_name')
.exists()
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('email')
.exists()
.isString()
.isEmail()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('password')
.exists()
.isString()
.isLength({ min: 6 })
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
];
}
@@ -150,7 +146,7 @@ export default class AuthenticationController extends BaseController {
* @returns {ValidationChain[]}
*/
private get sendResetPasswordSchema(): ValidationChain[] {
return [check('email').exists().isEmail().trim().escape()];
return [check('email').exists().isEmail().trim()];
}
/**
@@ -158,7 +154,11 @@ export default class AuthenticationController extends BaseController {
* @param {Request} req
* @param {Response} res
*/
private async login(req: Request, res: Response, next: Function): Response {
private async login(
req: Request,
res: Response,
next: Function
): Promise<Response | null> {
const userDTO: ILoginDTO = this.matchedBodyData(req);
try {

5
packages/server/src/api/controllers/Cashflow/NewCashflowTransaction.ts
View File

@@ -112,12 +112,11 @@ export default class NewCashflowTransactionController extends BaseController {
public get newTransactionValidationSchema() {
return [
check('date').exists().isISO8601().toDate(),
check('reference_no').optional({ nullable: true }).trim().escape(),
check('reference_no').optional({ nullable: true }).trim(),
check('description')
.optional({ nullable: true })
.isLength({ min: 3 })
.trim()
.escape(),
.trim(),
check('transaction_type').exists(),
check('amount').exists().isFloat().toFloat(),

26
packages/server/src/api/controllers/Contacts/Contacts.ts
View File

@@ -56,7 +56,7 @@ export default class ContactsController extends BaseController {
*/
get autocompleteQuerySchema() {
return [
query('column_sort_by').optional().trim().escape(),
query('column_sort_by').optional().trim(),
query('sort_order').optional().isIn(['desc', 'asc']),
query('stringified_filter_roles').optional().isJSON(),
@@ -122,32 +122,27 @@ export default class ContactsController extends BaseController {
.optional({ nullable: true })
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('first_name')
.optional({ nullable: true })
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('last_name')
.optional({ nullable: true })
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('company_name')
.optional({ nullable: true })
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('display_name')
.exists()
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('email')
@@ -165,120 +160,101 @@ export default class ContactsController extends BaseController {
.optional({ nullable: true })
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('personal_phone')
.optional({ nullable: true })
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('billing_address_1')
.optional({ nullable: true })
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('billing_address_2')
.optional({ nullable: true })
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('billing_address_city')
.optional({ nullable: true })
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('billing_address_country')
.optional({ nullable: true })
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('billing_address_email')
.optional({ nullable: true })
.isString()
.isEmail()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('billing_address_postcode')
.optional({ nullable: true })
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('billing_address_phone')
.optional({ nullable: true })
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('billing_address_state')
.optional({ nullable: true })
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('shipping_address_1')
.optional({ nullable: true })
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('shipping_address_2')
.optional({ nullable: true })
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('shipping_address_city')
.optional({ nullable: true })
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('shipping_address_country')
.optional({ nullable: true })
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('shipping_address_email')
.optional({ nullable: true })
.isString()
.isEmail()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('shipping_address_postcode')
.optional({ nullable: true })
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('shipping_address_phone')
.optional({ nullable: true })
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('shipping_address_state')
.optional({ nullable: true })
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('note')
.optional({ nullable: true })
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.TEXT }),
check('active').optional().isBoolean().toBoolean(),
];

9
packages/server/src/api/controllers/Contacts/Customers.ts
View File

@@ -106,11 +106,7 @@ export default class CustomersController extends ContactsController {
*/
get customerDTOSchema() {
return [
check('customer_type')
.exists()
.isIn(['business', 'individual'])
.trim()
.escape(),
check('customer_type').exists().isIn(['business', 'individual']).trim(),
];
}
@@ -123,7 +119,6 @@ export default class CustomersController extends ContactsController {
.optional({ nullable: true })
.isString()
.trim()
.escape()
.isLength({ max: 3 }),
];
}
@@ -133,7 +128,7 @@ export default class CustomersController extends ContactsController {
*/
get validateListQuerySchema() {
return [
query('column_sort_by').optional().trim().escape(),
query('column_sort_by').optional().trim(),
query('sort_order').optional().isIn(['desc', 'asc']),
query('page').optional().isNumeric().toInt(),

1
packages/server/src/api/controllers/Contacts/Vendors.ts
View File

@@ -106,7 +106,6 @@ export default class VendorsController extends ContactsController {
.optional({ nullable: true })
.isString()
.trim()
.escape()
.isLength({ min: 3, max: 3 }),
];
}

14
packages/server/src/api/controllers/Currencies.ts
View File

@@ -67,7 +67,7 @@ export default class CurrenciesController extends BaseController {
}
get currencyParamSchema(): ValidationChain[] {
return [param('currency_code').exists().trim().escape()];
return [param('currency_code').exists().trim()];
}
get listSchema(): ValidationChain[] {
@@ -187,11 +187,13 @@ export default class CurrenciesController extends BaseController {
}
if (error.errorType === 'currency_code_exists') {
return res.boom.badRequest(null, {
errors: [{
type: 'CURRENCY_CODE_EXISTS',
message: 'The given currency code is already exists.',
code: 200,
}],
errors: [
{
type: 'CURRENCY_CODE_EXISTS',
message: 'The given currency code is already exists.',
code: 200,
},
],
});
}
if (error.errorType === 'CANNOT_DELETE_BASE_CURRENCY') {

4
packages/server/src/api/controllers/Expenses/Expenses.ts
View File

@@ -89,7 +89,6 @@ export class ExpensesController extends BaseController {
check('reference_no')
.optional({ nullable: true })
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('payment_date').exists().isISO8601().toDate(),
check('payment_account_id')
@@ -123,7 +122,6 @@ export class ExpensesController extends BaseController {
check('categories.*.description')
.optional()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('categories.*.landed_cost').optional().isBoolean().toBoolean(),
check('categories.*.project_id')
@@ -144,7 +142,6 @@ export class ExpensesController extends BaseController {
check('reference_no')
.optional({ nullable: true })
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('payment_date').exists().isISO8601().toDate(),
check('payment_account_id')
@@ -179,7 +176,6 @@ export class ExpensesController extends BaseController {
check('categories.*.description')
.optional()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('categories.*.landed_cost').optional().isBoolean().toBoolean(),
check('categories.*.project_id')

9
packages/server/src/api/controllers/FinancialStatements/BaseFinancialReportController.ts
View File

@@ -1,9 +1,7 @@
import { query } from 'express-validator';
import BaseController from "../BaseController";
import BaseController from '../BaseController';
export default class BaseFinancialReportController extends BaseController {
get sheetNumberFormatValidationSchema() {
return [
query('number_format.precision')
@@ -19,8 +17,7 @@ export default class BaseFinancialReportController extends BaseController {
query('number_format.negative_format')
.optional()
.isIn(['parentheses', 'mines'])
.trim()
.escape(),
.trim(),
];
}
}
}

3
packages/server/src/api/controllers/FinancialStatements/InventoryDetails/index.ts
View File

@@ -51,8 +51,7 @@ export default class InventoryDetailsController extends BaseController {
query('number_format.negative_format')
.optional()
.isIn(['parentheses', 'mines'])
.trim()
.escape(),
.trim(),
query('from_date').optional(),
query('to_date').optional(),

2
packages/server/src/api/controllers/FinancialStatements/JournalSheet.ts
View File

@@ -36,7 +36,7 @@ export default class JournalSheetController extends BaseFinancialReportControlle
return [
query('from_date').optional().isISO8601(),
query('to_date').optional().isISO8601(),
query('transaction_type').optional().trim().escape(),
query('transaction_type').optional().trim(),
query('transaction_id').optional().isInt().toInt(),
oneOf(
[

3
packages/server/src/api/controllers/FinancialStatements/TransactionsByReference/index.ts
View File

@@ -40,8 +40,7 @@ export default class TransactionsByReferenceController extends BaseController {
query('number_format.negative_format')
.optional()
.isIn(['parentheses', 'mines'])
.trim()
.escape(),
.trim(),
];
}

2
packages/server/src/api/controllers/Inventory/InventoryAdjustments.ts
View File

@@ -86,7 +86,7 @@ export default class InventoryAdjustmentsController extends BaseController {
*/
get validateListQuerySchema() {
return [
query('column_sort_by').optional().trim().escape(),
query('column_sort_by').optional().trim(),
query('sort_order').optional().isIn(['desc', 'asc']),
query('page').optional().isNumeric().toInt(),

12
packages/server/src/api/controllers/InviteUsers.ts
View File

@@ -25,7 +25,7 @@ export default class InviteUsersController extends BaseController {
router.post(
'/send',
[
body('email').exists().trim().escape(),
body('email').exists().trim(),
body('role_id').exists().isNumeric().toInt(),
],
this.validationResult,
@@ -57,7 +57,7 @@ export default class InviteUsersController extends BaseController {
);
router.get(
'/invited/:token',
[param('token').exists().trim().escape()],
[param('token').exists().trim()],
this.validationResult,
asyncMiddleware(this.invited.bind(this)),
this.handleServicesError
@@ -72,10 +72,10 @@ export default class InviteUsersController extends BaseController {
*/
private get inviteUserDTO() {
return [
check('first_name').exists().trim().escape(),
check('last_name').exists().trim().escape(),
check('password').exists().trim().escape().isLength({ min: 5 }),
param('token').exists().trim().escape(),
check('first_name').exists().trim(),
check('last_name').exists().trim(),
check('password').exists().trim().isLength({ min: 5 }),
param('token').exists().trim(),
];
}

21
packages/server/src/api/controllers/ItemCategories.ts
View File

@@ -73,13 +73,11 @@ export default class ItemsCategoriesController extends BaseController {
check('name')
.exists()
.trim()
.escape()
.isLength({ min: 0, max: DATATYPES_LENGTH.STRING }),
check('description')
.optional({ nullable: true })
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.TEXT }),
check('sell_account_id')
.optional({ nullable: true })
@@ -101,9 +99,8 @@ export default class ItemsCategoriesController extends BaseController {
*/
get categoriesListValidationSchema() {
return [
query('column_sort_by').optional().trim().escape(),
query('sort_order').optional().trim().escape().isIn(['desc', 'asc']),
query('column_sort_by').optional().trim(),
query('sort_order').optional().trim().isIn(['desc', 'asc']),
query('stringified_filter_roles').optional().isJSON(),
];
}
@@ -207,14 +204,12 @@ export default class ItemsCategoriesController extends BaseController {
};
try {
const {
itemCategories,
filterMeta,
} = await this.itemCategoriesService.getItemCategoriesList(
tenantId,
itemCategoriesFilter,
user
);
const { itemCategories, filterMeta } =
await this.itemCategoriesService.getItemCategoriesList(
tenantId,
itemCategoriesFilter,
user
);
return res.status(200).send({
item_categories: itemCategories,
filter_meta: this.transfromToResponse(filterMeta),

7
packages/server/src/api/controllers/Items/Items.ts
View File

@@ -96,13 +96,11 @@ export default class ItemsController extends BaseController {
.exists()
.isString()
.trim()
.escape()
.isIn(['service', 'non-inventory', 'inventory']),
check('code')
.optional({ nullable: true })
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
// Purchase attributes.
check('purchasable').optional().isBoolean().toBoolean(),
@@ -141,13 +139,11 @@ export default class ItemsController extends BaseController {
.optional({ nullable: true })
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.TEXT }),
check('purchase_description')
.optional({ nullable: true })
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.TEXT }),
check('sell_tax_rate_id').optional({ nullable: true }).isInt().toInt(),
check('purchase_tax_rate_id')
@@ -162,7 +158,6 @@ export default class ItemsController extends BaseController {
.optional()
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.TEXT }),
check('active').optional().isBoolean().toBoolean(),
@@ -184,7 +179,7 @@ export default class ItemsController extends BaseController {
*/
private get validateListQuerySchema() {
return [
query('column_sort_by').optional().trim().escape(),
query('column_sort_by').optional().trim(),
query('sort_order').optional().isIn(['desc', 'asc']),
query('page').optional().isNumeric().toInt(),

6
packages/server/src/api/controllers/ManualJournals.ts
View File

@@ -94,25 +94,21 @@ export default class ManualJournalsController extends BaseController {
.optional()
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('journal_type')
.optional({ nullable: true })
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('reference')
.optional({ nullable: true })
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.STRING }),
check('description')
.optional({ nullable: true })
.isString()
.trim()
.escape()
.isLength({ max: DATATYPES_LENGTH.TEXT }),
check('branch_id').optional({ nullable: true }).isNumeric().toInt(),
check('publish').optional().isBoolean().toBoolean(),
@@ -163,7 +159,7 @@ export default class ManualJournalsController extends BaseController {
query('page_size').optional().isNumeric().toInt(),
query('custom_view_id').optional().isNumeric().toInt(),
query('column_sort_by').optional().trim().escape(),
query('column_sort_by').optional().trim(),
query('sort_order').optional().isIn(['desc', 'asc']),
query('stringified_filter_roles').optional().isJSON(),

7
packages/server/src/api/controllers/Media.ts
View File

@@ -61,15 +61,14 @@ export default class MediaController extends BaseController {
get uploadValidationSchema() {
return [
// check('attachment'),
check('model_name').optional().trim().escape(),
check('model_id').optional().isNumeric().toInt(),
check('model_name').optional().trim(),
check('model_id').optional().isNumeric(),
];
}
get linkValidationSchema() {
return [
check('model_name').exists().trim().escape(),
check('model_name').exists().trim(),
check('model_id').exists().isNumeric().toInt(),
]
}

8
packages/server/src/api/controllers/Organization.ts
View File

@@ -62,7 +62,7 @@ export default class OrganizationController extends BaseController {
private get commonOrganizationValidationSchema(): ValidationChain[] {
return [
check('name').exists().trim(),
check('industry').optional({ nullable: true }).isString().trim().escape(),
check('industry').optional({ nullable: true }).isString().trim(),
check('location').exists().isString().isISO31661Alpha2(),
check('base_currency').exists().isISO4217(),
check('timezone').exists().isIn(moment.tz.names()),
@@ -87,11 +87,7 @@ export default class OrganizationController extends BaseController {
private get updateOrganizationValidationSchema(): ValidationChain[] {
return [
...this.commonOrganizationValidationSchema,
check('tax_number')
.optional({ nullable: true })
.isString()
.trim()
.escape(),
check('tax_number').optional({ nullable: true }).isString().trim(),
];
}

27
packages/server/src/api/controllers/Purchases/Bills.ts
View File

@@ -100,8 +100,8 @@ export default class BillsController extends BaseController {
*/
private get billValidationSchema() {
return [
check('bill_number').exists().trim().escape(),
check('reference_no').optional().trim().escape(),
check('bill_number').exists().trim(),
check('reference_no').optional().trim(),
check('bill_date').exists().isISO8601(),
check('due_date').optional().isISO8601(),
@@ -112,7 +112,7 @@ export default class BillsController extends BaseController {
check('branch_id').optional({ nullable: true }).isNumeric().toInt(),
check('project_id').optional({ nullable: true }).isNumeric().toInt(),
check('note').optional().trim().escape(),
check('note').optional().trim(),
check('open').default(false).isBoolean().toBoolean(),
check('is_inclusive_tax').default(false).isBoolean().toBoolean(),
@@ -126,10 +126,7 @@ export default class BillsController extends BaseController {
.optional({ nullable: true })
.isNumeric()
.toFloat(),
check('entries.*.description')
.optional({ nullable: true })
.trim()
.escape(),
check('entries.*.description').optional({ nullable: true }).trim(),
check('entries.*.landed_cost')
.optional({ nullable: true })
.isBoolean()
@@ -141,7 +138,6 @@ export default class BillsController extends BaseController {
check('entries.*.tax_code')
.optional({ nullable: true })
.trim()
.escape()
.isString(),
check('entries.*.tax_rate_id')
.optional({ nullable: true })
@@ -158,8 +154,8 @@ export default class BillsController extends BaseController {
*/
private get billEditValidationSchema() {
return [
check('bill_number').optional().trim().escape(),
check('reference_no').optional().trim().escape(),
check('bill_number').optional().trim(),
check('reference_no').optional().trim(),
check('bill_date').exists().isISO8601(),
check('due_date').optional().isISO8601(),
@@ -170,7 +166,7 @@ export default class BillsController extends BaseController {
check('branch_id').optional({ nullable: true }).isNumeric().toInt(),
check('project_id').optional({ nullable: true }).isNumeric().toInt(),
check('note').optional().trim().escape(),
check('note').optional().trim(),
check('open').default(false).isBoolean().toBoolean(),
check('entries').isArray({ min: 1 }),
@@ -184,10 +180,7 @@ export default class BillsController extends BaseController {
.optional({ nullable: true })
.isNumeric()
.toFloat(),
check('entries.*.description')
.optional({ nullable: true })
.trim()
.escape(),
check('entries.*.description').optional({ nullable: true }).trim(),
check('entries.*.landed_cost')
.optional({ nullable: true })
.isBoolean()
@@ -222,8 +215,8 @@ export default class BillsController extends BaseController {
private get dueBillsListingValidationSchema() {
return [
query('vendor_id').optional().trim().escape(),
query('payment_made_id').optional().trim().escape(),
query('vendor_id').optional().trim(),
query('payment_made_id').optional().trim(),
];
}

6
packages/server/src/api/controllers/Purchases/BillsPayments.ts
View File

@@ -113,10 +113,10 @@ export default class BillsPayments extends BaseController {
check('amount').exists().isNumeric().toFloat(),
check('payment_account_id').exists().isNumeric().toInt(),
check('payment_number').optional({ nullable: true }).trim().escape(),
check('payment_number').optional({ nullable: true }).trim(),
check('payment_date').exists(),
check('statement').optional().trim().escape(),
check('reference').optional().trim().escape(),
check('statement').optional().trim(),
check('reference').optional().trim(),
check('branch_id').optional({ nullable: true }).isNumeric().toInt(),
check('entries').exists().isArray(),

28
packages/server/src/api/controllers/Purchases/VendorCredit.ts
View File

@@ -156,13 +156,10 @@ export default class VendorCreditController extends BaseController {
check('vendor_id').exists().isNumeric().toInt(),
check('exchange_rate').optional().isFloat({ gt: 0 }).toFloat(),
check('vendor_credit_number')
.optional({ nullable: true })
.trim()
.escape(),
check('reference_no').optional().trim().escape(),
check('vendor_credit_number').optional({ nullable: true }).trim(),
check('reference_no').optional().trim(),
check('vendor_credit_date').exists().isISO8601().toDate(),
check('note').optional().trim().escape(),
check('note').optional().trim(),
check('open').default(false).isBoolean().toBoolean(),
check('warehouse_id').optional({ nullable: true }).isNumeric().toInt(),
@@ -178,10 +175,7 @@ export default class VendorCreditController extends BaseController {
.optional({ nullable: true })
.isNumeric()
.toFloat(),
check('entries.*.description')
.optional({ nullable: true })
.trim()
.escape(),
check('entries.*.description').optional({ nullable: true }).trim(),
check('entries.*.warehouse_id')
.optional({ nullable: true })
.isNumeric()
@@ -202,13 +196,10 @@ export default class VendorCreditController extends BaseController {
check('vendor_id').exists().isNumeric().toInt(),
check('exchange_rate').optional().isFloat({ gt: 0 }).toFloat(),
check('vendor_credit_number')
.optional({ nullable: true })
.trim()
.escape(),
check('reference_no').optional().trim().escape(),
check('vendor_credit_number').optional({ nullable: true }).trim(),
check('reference_no').optional().trim(),
check('vendor_credit_date').exists().isISO8601().toDate(),
check('note').optional().trim().escape(),
check('note').optional().trim(),
check('warehouse_id').optional({ nullable: true }).isNumeric().toInt(),
check('branch_id').optional({ nullable: true }).isNumeric().toInt(),
@@ -223,10 +214,7 @@ export default class VendorCreditController extends BaseController {
.optional({ nullable: true })
.isNumeric()
.toFloat(),
check('entries.*.description')
.optional({ nullable: true })
.trim()
.escape(),
check('entries.*.description').optional({ nullable: true }).trim(),
check('entries.*.warehouse_id')
.optional({ nullable: true })
.isNumeric()

8
packages/server/src/api/controllers/Resources.ts
View File

@@ -18,9 +18,7 @@ export default class ResourceController extends BaseController {
router.get(
'/:resource_model/meta',
[
param('resource_model').exists().trim().escape()
],
[param('resource_model').exists().trim()],
this.asyncMiddleware(this.resourceMeta.bind(this)),
this.handleServiceErrors
);
@@ -48,9 +46,7 @@ export default class ResourceController extends BaseController {
resourceModel
);
return res.status(200).send({
resource_meta: this.transfromToResponse(
resourceMeta,
),
resource_meta: this.transfromToResponse(resourceMeta),
});
} catch (error) {
next(error);

11
packages/server/src/api/controllers/Sales/CreditNotes.ts
View File

@@ -210,9 +210,9 @@ export default class PaymentReceivesController extends BaseController {
check('credit_note_date').exists().isISO8601().toDate(),
check('reference_no').optional(),
check('credit_note_number').optional({ nullable: true }).trim().escape(),
check('note').optional().trim().escape(),
check('terms_conditions').optional().trim().escape(),
check('credit_note_number').optional({ nullable: true }).trim(),
check('note').optional().trim(),
check('terms_conditions').optional().trim(),
check('open').default(false).isBoolean().toBoolean(),
check('warehouse_id').optional({ nullable: true }).isNumeric().toInt(),
@@ -228,10 +228,7 @@ export default class PaymentReceivesController extends BaseController {
.optional({ nullable: true })
.isNumeric()
.toFloat(),
check('entries.*.description')
.optional({ nullable: true })
.trim()
.escape(),
check('entries.*.description').optional({ nullable: true }).trim(),
check('entries.*.warehouse_id')
.optional({ nullable: true })
.isNumeric()

5
packages/server/src/api/controllers/Sales/PaymentReceives.ts
View File

@@ -154,8 +154,8 @@ export default class PaymentReceivesController extends BaseController {
check('payment_date').exists(),
check('reference_no').optional(),
check('deposit_account_id').exists().isNumeric().toInt(),
check('payment_receive_no').optional({ nullable: true }).trim().escape(),
check('statement').optional().trim().escape(),
check('payment_receive_no').optional({ nullable: true }).trim(),
check('statement').optional().trim(),
check('branch_id').optional({ nullable: true }).isNumeric().toInt(),
@@ -176,7 +176,6 @@ export default class PaymentReceivesController extends BaseController {
private get validatePaymentReceiveList(): ValidationChain[] {
return [
query('stringified_filter_roles').optional().isJSON(),
query('view_slug').optional({ nullable: true }).isString().trim(),
query('column_sort_by').optional(),

11
packages/server/src/api/controllers/Sales/SalesEstimates.ts
View File

@@ -155,7 +155,7 @@ export default class SalesEstimatesController extends BaseController {
check('estimate_date').exists().isISO8601().toDate(),
check('expiration_date').exists().isISO8601().toDate(),
check('reference').optional(),
check('estimate_number').optional().trim().escape(),
check('estimate_number').optional().trim(),
check('delivered').default(false).isBoolean().toBoolean(),
check('exchange_rate').optional().isFloat({ gt: 0 }).toFloat(),
@@ -170,8 +170,7 @@ export default class SalesEstimatesController extends BaseController {
check('entries.*.rate').exists().isNumeric().toFloat(),
check('entries.*.description')
.optional({ nullable: true })
.trim()
.escape(),
.trim(),
check('entries.*.discount')
.optional({ nullable: true })
.isNumeric()
@@ -181,9 +180,9 @@ export default class SalesEstimatesController extends BaseController {
.isNumeric()
.toInt(),
check('note').optional().trim().escape(),
check('terms_conditions').optional().trim().escape(),
check('send_to_email').optional().trim().escape(),
check('note').optional().trim(),
check('terms_conditions').optional().trim(),
check('send_to_email').optional().trim(),
check('attachments').isArray().optional(),
check('attachments.*.key').exists().isString(),

12
packages/server/src/api/controllers/Sales/SalesInvoices.ts
View File

@@ -200,12 +200,12 @@ export default class SaleInvoicesController extends BaseController {
check('customer_id').exists().isNumeric().toInt(),
check('invoice_date').exists().isISO8601().toDate(),
check('due_date').exists().isISO8601().toDate(),
check('invoice_no').optional().trim().escape(),
check('reference_no').optional().trim().escape(),
check('invoice_no').optional().trim(),
check('reference_no').optional().trim(),
check('delivered').default(false).isBoolean().toBoolean(),
check('invoice_message').optional().trim().escape(),
check('terms_conditions').optional().trim().escape(),
check('invoice_message').optional().trim(),
check('terms_conditions').optional().trim(),
check('exchange_rate').optional().isFloat({ gt: 0 }).toFloat(),
@@ -226,12 +226,10 @@ export default class SaleInvoicesController extends BaseController {
.toFloat(),
check('entries.*.description')
.optional({ nullable: true })
.trim()
.escape(),
.trim(),
check('entries.*.tax_code')
.optional({ nullable: true })
.trim()
.escape()
.isString(),
check('entries.*.tax_rate_id')
.optional({ nullable: true })

11
packages/server/src/api/controllers/Sales/SalesReceipts.ts
View File

@@ -130,8 +130,8 @@ export default class SalesReceiptsController extends BaseController {
check('deposit_account_id').exists().isNumeric().toInt(),
check('receipt_date').exists().isISO8601(),
check('receipt_number').optional().trim().escape(),
check('reference_no').optional().trim().escape(),
check('receipt_number').optional().trim(),
check('reference_no').optional().trim(),
check('closed').default(false).isBoolean().toBoolean(),
check('warehouse_id').optional({ nullable: true }).isNumeric().toInt(),
@@ -150,14 +150,13 @@ export default class SalesReceiptsController extends BaseController {
.toInt(),
check('entries.*.description')
.optional({ nullable: true })
.trim()
.escape(),
.trim(),
check('entries.*.warehouse_id')
.optional({ nullable: true })
.isNumeric()
.toInt(),
check('receipt_message').optional().trim().escape(),
check('statement').optional().trim().escape(),
check('receipt_message').optional().trim(),
check('statement').optional().trim(),
check('attachments').isArray().optional(),
check('attachments.*.key').exists().isString(),
];

5
packages/server/src/api/controllers/Settings/Settings.ts
View File

@@ -52,10 +52,7 @@ export default class SettingsController extends BaseController {
* Retrieve the application options from the storage.
*/
private get getSettingsSchema() {
return [
query('key').optional().trim().escape(),
query('group').optional().trim().escape(),
];
return [query('key').optional().trim(), query('group').optional().trim()];
}
/**

2
packages/server/src/api/controllers/Views.ts
View File

@@ -32,7 +32,7 @@ export default class ViewsController extends BaseController {
* Custom views list validation schema.
*/
get viewsListSchemaValidation() {
return [param('resource_model').exists().trim().escape()];
return [param('resource_model').exists().trim()];
}
/**

18
packages/server/src/database/migrations/20240801130829_change_tax_amount_withheld_column_precision_in_bills_and_sales_invoices_tables.js Normal file
View File

@@ -0,0 +1,18 @@
// This migration changes the precision of the tax_amount_withheld column in the bills and sales_invoices tables from 8, 2 to 13, 2.
// This migration is necessary to allow tax_amount_withheld filed to store values bigger than 999,999.99.
exports.up = function(knex) {
return knex.schema.alterTable('bills', function (table) {
table.decimal('tax_amount_withheld', 13, 2).alter();
}).alterTable('sales_invoices', function (table) {
table.decimal('tax_amount_withheld', 13, 2).alter();
});
};
exports.down = function(knex) {
return knex.schema.alterTable('bills', function (table) {
table.decimal('tax_amount_withheld', 8, 2).alter();
}).alterTable('sales_invoices', function (table) {
table.decimal('tax_amount_withheld', 8, 2).alter();
});
};

2
packages/webapp/package.json
View File

@@ -9,7 +9,7 @@
"@blueprintjs/colors": "4.1.19",
"@blueprintjs/core": "^4.20.2",
"@blueprintjs/datetime": "^4.4.37",
"@blueprintjs/popover2": "^0.11.1",
"@blueprintjs/popover2": "^1.14.11",
"@blueprintjs/select": "^4.9.24",
"@blueprintjs/table": "^4.10.12",
"@blueprintjs/timezone": "^4.5.43",

79
pnpm-lock.yaml generated
View File

@@ -481,8 +481,8 @@ importers:
specifier: ^4.4.37
version: 4.4.37(@types/react@16.14.60)(react-dom@18.3.1)(react@18.3.1)
'@blueprintjs/popover2':
specifier: ^0.11.1
version: 0.11.4(react-dom@18.3.1)(react@18.3.1)
specifier: ^1.14.11
version: 1.14.11(@types/react@16.14.60)(react-dom@18.3.1)(react@18.3.1)
'@blueprintjs/select':
specifier: ^4.9.24
version: 4.9.24(@types/react@16.14.60)(react-dom@18.3.1)(react@18.3.1)
@@ -3136,29 +3136,6 @@ packages:
tslib: 2.5.3
dev: false
/@blueprintjs/core@3.54.0(react-dom@18.3.1)(react@18.3.1):
resolution: {integrity: sha512-u2c1s6MNn0ocxhnC6CuiG5g3KV6b4cKUvSobznepA9SC3/AL1s3XOvT7DLWoHRv2B/vBOHFYEDzLw2/vlcGGZg==}
hasBin: true
peerDependencies:
react: ^15.3.0 || 16 || 17
react-dom: ^15.3.0 || 16 || 17
dependencies:
'@blueprintjs/colors': 4.1.19
'@blueprintjs/icons': 3.33.0
'@juggle/resize-observer': 3.4.0
'@types/dom4': 2.0.4
classnames: 2.5.1
dom4: 2.1.6
normalize.css: 8.0.1
popper.js: 1.16.1
react: 18.3.1
react-dom: 18.3.1(react@18.3.1)
react-lifecycles-compat: 3.0.4
react-popper: 1.3.11(react@18.3.1)
react-transition-group: 2.9.0(react-dom@18.3.1)(react@18.3.1)
tslib: 2.3.1
dev: false
/@blueprintjs/core@4.20.2(@types/react@16.14.60)(react-dom@18.3.1)(react@18.3.1):
resolution: {integrity: sha512-5v4Nr0jozfAjiOkjY4zvt1XSpt4ldnrSaxtwo506S2cxJYfwFeMTmDshXNPFcc8L1fjZMxi0IWI2WABXzZXS6w==}
hasBin: true
@@ -3205,13 +3182,6 @@ packages:
tslib: 2.5.3
dev: false
/@blueprintjs/icons@3.33.0:
resolution: {integrity: sha512-Q6qoSDIm0kRYQZISm59UUcDCpV3oeHulkLuh3bSlw0HhcSjvEQh2PSYbtaifM60Q4aK4PCd6bwJHg7lvF1x5fQ==}
dependencies:
classnames: 2.5.1
tslib: 2.3.1
dev: false
/@blueprintjs/icons@4.16.0:
resolution: {integrity: sha512-cyfgjUZcZCtQrXWUV8FwqYTFEzduV4a0N7yhOU38jY+cBRCLu/sDrD0Osvfk4DGRvNe4YjY7pohVLFSxpg68Uw==}
dependencies:
@@ -3220,23 +3190,6 @@ packages:
tslib: 2.5.3
dev: false
/@blueprintjs/popover2@0.11.4(react-dom@18.3.1)(react@18.3.1):
resolution: {integrity: sha512-KTietd+thBzeen9yP0WWzHJDAaqoey1H3AXvjaF94ypQQKdUaIzSmIop9Z3lJK44ynlYiI+dSzFYQbRdbpd0/w==}
peerDependencies:
react: ^16.8.0 || ^17
dependencies:
'@blueprintjs/core': 3.54.0(react-dom@18.3.1)(react@18.3.1)
'@popperjs/core': 2.11.8
classnames: 2.5.1
dom4: 2.1.6
react: 18.3.1
react-popper: 2.3.0(@popperjs/core@2.11.8)(react-dom@18.3.1)(react@18.3.1)
resize-observer-polyfill: 1.5.1
tslib: 1.13.0
transitivePeerDependencies:
- react-dom
dev: false
/@blueprintjs/popover2@1.14.11(@types/react@16.14.60)(react-dom@18.3.1)(react@18.3.1):
resolution: {integrity: sha512-5XAjeb2mlWjYXC0pqrNDLzHSsX85Zaiv8jixxUN9abarMUUFKGATgGF8MRsWTLAW94Gli6CB1lzVkrYkRHHf6Q==}
peerDependencies:
@@ -10982,12 +10935,6 @@ packages:
utila: 0.4.0
dev: false
/dom-helpers@3.4.0:
resolution: {integrity: sha512-LnuPJ+dwqKDIyotW1VzmOZ5TONUN7CwkCR5hrgawTUbkBGYdeoNLZo6nNfGkCrjtE1nXXaj7iMMpDa8/d9WoIA==}
dependencies:
'@babel/runtime': 7.24.5
dev: false
/dom-helpers@5.2.1:
resolution: {integrity: sha512-nRCa7CK3VTrM2NmGkIy4cbK7IZlgBE/PYMn55rrXefr5xXDP0LdtfPnblFDoVdcAfslJ7or6iqAUnx0CCGIWQA==}
dependencies:
@@ -21862,20 +21809,6 @@ packages:
react: 18.3.1
dev: false
/react-transition-group@2.9.0(react-dom@18.3.1)(react@18.3.1):
resolution: {integrity: sha512-+HzNTCHpeQyl4MJ/bdE0u6XRMe9+XG/+aL4mCxVN4DnPBQ0/5bfHWPDuOZUzYdMj94daZaZdCCc1Dzt9R/xSSg==}
peerDependencies:
react: '>=15.0.0'
react-dom: '>=15.0.0'
dependencies:
dom-helpers: 3.4.0
loose-envify: 1.4.0
prop-types: 15.8.1
react: 18.3.1
react-dom: 18.3.1(react@18.3.1)
react-lifecycles-compat: 3.0.4
dev: false
/react-transition-group@4.4.5(react-dom@18.3.1)(react@18.3.1):
resolution: {integrity: sha512-pZcd1MCJoiKiBR2NRxeCRg13uCXbydPnmB4EOeRrY7480qNWO8IIgQG6zlDkm6uRMsURXPuKq0GWtiM59a5Q6g==}
peerDependencies:
@@ -24785,17 +24718,9 @@ packages:
strip-bom: 3.0.0
dev: true
/tslib@1.13.0:
resolution: {integrity: sha512-i/6DQjL8Xf3be4K/E6Wgpekn5Qasl1usyw++dAA35Ue5orEn65VIxOA+YvNNl9HV3qv70T7CNwjODHZrLwvd1Q==}
dev: false
/tslib@1.14.1:
resolution: {integrity: sha512-Xni35NKzjgMrwevysHTCArtLDpPvye8zV/0E4EyYn43P7/7qvQwPh9BGkHewbMulVntbigmcT7rdX3BNo9wRJg==}
/tslib@2.3.1:
resolution: {integrity: sha512-77EbyPPpMz+FRFRuAFlWMtmgUWGe9UOG2Z25NqCwiIjRhOf5iKGuzSe5P2w1laq+FkRy4p+PCuVkJSGkzTEKVw==}
dev: false
/tslib@2.5.3:
resolution: {integrity: sha512-mSxlJJwl3BMEQCUNnxXBU9jP4JBktcEGhURcPR6VQVlnP0FdDEsIaz0C35dXNGLyRfrATNofF0F5p2KPxQgB+w==}
dev: false