#Directus
Viewer called Locness noticed a potential security flaw on our sign up form. In this episode we are going to fix that.
Namely if somebody gets a hold of the Admin Role ID he or she can easily then signup as an administrator to our app, and the do as they please in the admin area.
In this quick episode we are going to fix that.
You can support my work on Patreon
/ watchlearn
Follow me on Social Media
Github: github.com/ivandoric
Twitter: / ivan_doric
Пікірлер: 21
Soo cool thanks 👍🏻👍🏻 Do you have a video about making a new layout in the CMS from fields of a content type
@WatchandLearnTutorials
2 жыл бұрын
Nope. Does that option exist even? If it does please send a link.
Aaaawesome thanks 🔥
@WatchandLearnTutorials
2 жыл бұрын
Thanks for watching 😀
Greetings, We have just build an app following this tutorial, where do we deploy the app, where we can also have access to directus admin panel? [ is it just a simple vercel deploy, ] or is directus going to be deployed somewhere else?
@WatchandLearnTutorials
11 ай бұрын
I don't think you can deploy Directus to Vercel, you can deploy your frontend there but not Directus since it requires a database. I think the easiest way is to use Digital Ocean since they have One click install of Directus. But you can also deploy it to any other cloud provider where you can set up a database.
I think it could be improved by using the "Field presets" in the role permissions to set the default role, so you don't have to hardcode the id on the frontend
@WatchandLearnTutorials
2 жыл бұрын
Not sure I follow. I think role is mandatory when sending auth request. Or maybe I'm wrong?
@mattd5419
2 жыл бұрын
@@WatchandLearnTutorials no, the role is not mandatory.
@armen.danielyan
Жыл бұрын
You will also need to uncheck the role field in fields permissions so that public users cannot assign a role to themselves when creating a user account.
@WatchandLearnTutorials
Жыл бұрын
@@armen.danielyan Good catch! Thnx.
@noahperez9631
2 ай бұрын
Amazing tutorial, are you planning to do tutorial about Directus 10.10, maybe multilanguage blog or a digital agency website?
Hi Ivan. Thank you for your great series. I learnt a lot from you. Will be there any tutorial how to deploy directus app to cloud platform like Heroku?
@WatchandLearnTutorials
2 жыл бұрын
Yeah, I will probably make a video about deployment. However it will be to Digital Ocean.
Hello Ivan. I would like to complete your tutorial with performing CRUD operations. What should I setup ? Thanks !
@WatchandLearnTutorials
2 жыл бұрын
Not sure what you mean. Can you elaborate a bit? What are you trying to achieve?
@mediacreatif
2 жыл бұрын
@@WatchandLearnTutorials I mean mutations : edit, create and delete database. As I could check, I have to setup Apollo client right ?
@mediacreatif
2 жыл бұрын
I saw that you used mutation to create Directus system's users. What would be the graphql API endpoint to create a blog post by example ? do we have to use /system like you did or something else ? thank you.
@WatchandLearnTutorials
2 жыл бұрын
@@mediacreatif Well, no. System is only for users and other system stuff that is already integrated in Directus. Endpoint for graphql is /graphql like all the other examples in the series. Your mutation would be called something like create__item(data: create__input): . docs.directus.io/reference/items/#create-an-item
@mediacreatif
2 жыл бұрын
@@WatchandLearnTutorials thank you. Finally I used useQuery from Apollo Client with Prisma, it's great! 👍