build: release v6.141.0 #7592
Merged
build: release v6.141.0 #7592
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Bumps [type-fest](https://github.com/sindresorhus/type-fest) from 4.23.0 to 4.24.0. - [Release notes](https://github.com/sindresorhus/type-fest/releases) - [Commits](sindresorhus/type-fest@v4.23.0...v4.24.0) --- updated-dependencies: - dependency-name: type-fest dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* fix: add sticky to settings page Box component * fix: change sticky to relative since we dont want the settings page to stay on the screen when scrolled away but still relative to the sibling component * chore: add comments to signpost a workaround --------- Co-authored-by: Ken <[email protected]>
* feat(admin-form): implement drag and drop functionality Admins can now drag and drop their secret key files to activate their forms * remove unneccessary comment * feat(secret-key): set drag and drop handlers on Input * feat(secret-key): update placeholder text * test(e2e): reflect change in upload btn text --------- Co-authored-by: LoneRifle <[email protected]>
Bumps [@babel/preset-env](https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env) from 7.22.5 to 7.25.3. - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.25.3/packages/babel-preset-env) --- updated-dependencies: - dependency-name: "@babel/preset-env" dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* fix: add nonce to script-src directive * test: ensure nonce is generated before usage
* feat(frontend): add whitelist csv attachment field to singpass settings page * feat(frontend): add sample whitelist csv link to go.gov.sg * feat(frontend): add secret key modal when download csv button clicked * feat(frontend): add disable functionality to attachment file info and limit upload type to csv * chore: remove unused csv-parse library * feat(frontend): implement fetch and update logic for whitelist setting * feat: set up preliminary FE BE API communication, add multer for multipart * feat: add BE validation for form, change Web API Readable stream to string payload for simplicity * feat: add FE error rendering when file validation fails * feat: implement upload whitelist and remove whitelist logic * chore: remove console.log in the mutations * feat: implement csv file download * feat: add toast message and close modal once whitelist file downloaded successfully * feat: refactor DTO to support errorCodes instead of per error field * feat: add encrypt string functionality * feat: refactor handle update whitelist controller to remove middleware for business logic, change mongodb whitelist schema to store single nonce and publickey per message * feat: add checking of whitelist when get public form * fix: remove async from getWhitelistSubmitterIds * feat: remove file size indicator * feat: add app-level rate limiting for upload and download * feat: add joi validation to protect handleUpdateWhitelistSetting * feat: make submitterIds case insentive by setting to upper on whitelist save and lookup * feat: update copy and enable validation for csv header * feat: support edge case where admin changes whitelist before re-opening form and user submits, instantiate errors for dd log error code * feat: set up lazy loading for whitelisted submitter ids by splitting into new collection * fix: ensure whitelist download response only contains necessary fields * fix: fix db fail to retrieve whitelist when duplicate * fix: handle rate limit exceed error and reflect failure reason in toast * fix: remove todo * fix: fix PR comments related to syntactic issues for more concise code * fix: remove unused imports * feat: add error message when uploading csv without body * feat: add duplicate test and fix failing tests * feat: make copy changes for additional clarity for users * feat: add storybook UI TC for nric whitelist * feat: add TC for public form get and encrypt form w submit * feat: add TC for ensuring setting for whitelist only includes isWhitelistEnabled flag * feat: add tests for whitelist setting routes, reduce regression failure rate of tc by removing hardcoded strings, ensure uppercase of submitterId during lookup and test for that * feat: update sitewide copy for mistake to further assistance * chore: fix lint errors * fix: update import to shared dir to use relative path so it can be resolved * chore: update err message format for consistency * feat: support last row empty to reduce potential support requests * feat: refactor secret key modals to use same hook and common secret key form modal component for easier drag drop implementation * fix: support mixed newline char in csv * fix: remove optional chaining * fix: justify attachment field content to center * fix: pr comments * chore: add rate limit env config * fix: use optional chaining for isWhitelistEnabled to make it more terse --------- Co-authored-by: Ken <[email protected]>
build: merge release v6.140.0 to develop
kevin9foong
approved these changes
Aug 14, 2024
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
New
#7591#7534#7578#7585#7372#7582#7581#7580Dependencies
#7583Dev-Dependencies
#7586Tests
feat: support nric whitelisting
#7534TC1: Admin can upload a valid whitelisted NRIC list
@KenLSM
TC2: Admin can download whitelist settings
TC3: Admin can whitelist and use single submission enabled
TC4: Admin can remove whitelist
TC5: Admin sees appropriate error messages when uploading invalid CSV files
TC6: Admin can input file with empty last row without reject.
TC7: Admin can whitelist for payment form
TC8: Admin cannot upload whitelist above 20mb
Deploy Notes
New Env:
DOWNLOAD_FORM_WHITELIST_RATE_LIMITUPLOAD_FORM_WHITELIST_RATE_LIMITNew dependencies:
tweetnacl: installed on frontend. used for invoking/shareddirectory decryption method.papaparse: installed onfrontend. used for client csv file processing to string. chosen due to good maintenance effort/docs. fastest parser available with fast mode.multer: installed onbackend. used formultipart/form-datarequest body handling for large csv string streaming. express docs recommended package.New dev dependencies:
@types/papaparse@types/multer