mobile: widgets page, AI panel, sidebar polish + quick-filter chips

backend/src/entities/company-info/company-info.controller.ts

@@ -81,8 +81,8 @@ import {
 	IRemoveUserFromCompany,
 	IRevokeUserInvitationInCompany,
 	ISuspendUsersInCompany,
-	IUnsuspendUsersInCompany,
 	IToggleCompanyTestConnectionsMode,
+	IUnsuspendUsersInCompany,
 	IUpdateCompanyName,
 	IUpdateUsers2faStatusInCompany,
 	IUpdateUsersCompanyRoles,
@@ -173,6 +173,7 @@ export class CompanyInfoController {
 		description: 'Get company name by id.',
 		type: FoundCompanyNameDs,
 	})
+	@Throttle({ default: { limit: isTest() ? 200 : 10, ttl: 60000 } })
 	@Get('name/:companyId')
 	async getCompanyNameById(@Param('companyId') companyId: string): Promise<FoundCompanyNameDs> {
 		return await this.getCompanyNameUseCase.execute(companyId);

backend/src/entities/email/email-verification.entity.ts

@@ -9,6 +9,9 @@ export class EmailVerificationEntity {
 	@Column({ default: null })
 	verification_string: string;
 
+	@Column({ type: 'timestamp', default: () => 'CURRENT_TIMESTAMP' })
+	createdAt: Date;
+
 	@OneToOne(
 		() => UserEntity,
 		(user) => user.email_verification,

backend/src/entities/email/repository/email-verification-custom-repository-extension.ts

@@ -1,3 +1,4 @@
+import { Constants } from '../../../helpers/constants/constants.js';
 import { Encryptor } from '../../../helpers/encryption/encryptor.js';
 import { UserEntity } from '../../user/user.entity.js';
 import { EmailVerificationEntity } from '../email-verification.entity.js';
@@ -8,6 +9,9 @@ export const emailVerificationRepositoryExtension = {
 			.leftJoinAndSelect('email_verification.user', 'user')
 			.where('email_verification.verification_string = :ver_string', {
 				ver_string: verificationString,
+			})
+			.andWhere('email_verification.createdAt >= :valid_after', {
+				valid_after: Constants.ONE_DAY_AGO(),
 			});
 		return await qb.getOne();
 	},

backend/src/entities/user/user-password/password-reset.entity.ts

@@ -9,6 +9,9 @@ export class PasswordResetEntity {
 	@Column({ default: null })
 	verification_string: string;
 
+	@Column({ type: 'timestamp', default: () => 'CURRENT_TIMESTAMP' })
+	createdAt: Date;
+
 	@OneToOne(
 		() => UserEntity,
 		(user) => user.password_reset,

backend/src/entities/user/user-password/repository/user-password-custom-repository-extension.ts

@@ -1,3 +1,4 @@
+import { Constants } from '../../../../helpers/constants/constants.js';
 import { Encryptor } from '../../../../helpers/encryption/encryptor.js';
 import { UserEntity } from '../../user.entity.js';
 import { PasswordResetEntity } from '../password-reset.entity.js';
@@ -8,6 +9,9 @@ export const userPasswordResetCustomRepositoryExtension = {
 			.leftJoinAndSelect('password_reset.user', 'user')
 			.where('password_reset.verification_string = :ver_string', {
 				ver_string: verificationString,
+			})
+			.andWhere('password_reset.createdAt >= :valid_after', {
+				valid_after: Constants.ONE_DAY_AGO(),
 			});
 		return await qb.getOne();
 	},

backend/src/entities/visualizations/panel/utils/check-query-is-safe.util.ts

@@ -1,5 +1,6 @@
 import { BadRequestException } from '@nestjs/common';
 import { ConnectionTypesEnum } from '@rocketadmin/shared-code/dist/src/shared/enums/connection-types-enum.js';
+import { isReadOnlyMongoAggregationPipeline } from '../../../../ai-core/tools/query-validators.js';
 import { slackPostMessage } from '../../../../helpers/slack/slack-post-message.js';
 
 const FORBIDDEN_SQL_KEYWORDS = [
@@ -175,6 +176,14 @@ export function checkMongoQueryIsSafe(query: string): QuerySafetyResult {
 		}
 	}
 
+	if (!isReadOnlyMongoAggregationPipeline(query)) {
+		return {
+			isSafe: false,
+			reason:
+				'Query must be a read-only aggregation pipeline (write stages or server-side JavaScript operators such as $out, $merge, $function, $accumulator, $where are not allowed)',
+		};
+	}
+
 	return { isSafe: true };
 }
 

backend/src/migrations/1780411916141-AddCreatedAtColumnsIntoPasswordResetAndEmailVerificationEntities.ts

@@ -0,0 +1,17 @@
+import { MigrationInterface, QueryRunner } from 'typeorm';
+
+export class AddCreatedAtColumnsIntoPasswordResetAndEmailVerificationEntities1780411916141
+	implements MigrationInterface
+{
+	name = 'AddCreatedAtColumnsIntoPasswordResetAndEmailVerificationEntities1780411916141';
+
+	public async up(queryRunner: QueryRunner): Promise<void> {
+		await queryRunner.query(`ALTER TABLE "email_verification" ADD "createdAt" TIMESTAMP NOT NULL DEFAULT now()`);
+		await queryRunner.query(`ALTER TABLE "password_reset" ADD "createdAt" TIMESTAMP NOT NULL DEFAULT now()`);
+	}
+
+	public async down(queryRunner: QueryRunner): Promise<void> {
+		await queryRunner.query(`ALTER TABLE "password_reset" DROP COLUMN "createdAt"`);
+		await queryRunner.query(`ALTER TABLE "email_verification" DROP COLUMN "createdAt"`);
+	}
+}

frontend/angular.json

@@ -75,8 +75,8 @@
 								},
 								{
 									"type": "anyComponentStyle",
-									"maximumWarning": "10kb",
-									"maximumError": "20kb"
+									"maximumWarning": "20kb",
+									"maximumError": "32kb"
 								}
 							]
 						},
@@ -129,8 +129,8 @@
 								},
 								{
 									"type": "anyComponentStyle",
-									"maximumWarning": "10kb",
-									"maximumError": "20kb"
+									"maximumWarning": "20kb",
+									"maximumError": "32kb"
 								}
 							]
 						}

frontend/src/app/app.component.css

@@ -22,6 +22,34 @@
 	width: 60vw;
 }
 
+.main-menu-sidenav .account-section-item {
+	--mdc-list-list-item-label-text-size: 13px;
+	--mat-list-list-item-leading-icon-size: 18px;
+	--mdc-list-list-item-one-line-container-height: 40px;
+	--mdc-list-list-item-two-line-container-height: 52px;
+}
+
+.main-menu-sidenav .account-section-item .mat-icon {
+	font-size: 18px;
+	width: 18px;
+	height: 18px;
+}
+
+@media (width <= 600px) {
+	.main-menu-sidenav.mat-drawer {
+		top: 44px !important;
+		height: calc(100vh - 44px) !important;
+	}
+
+	.main-menu-container ::ng-deep .mat-drawer-backdrop.mat-drawer-shown {
+		top: 44px !important;
+	}
+
+	.main-menu-sidenav mat-toolbar {
+		display: none !important;
+	}
+}
+
 .nav-bar {
 	position: sticky;
 	top: 0;
@@ -218,8 +246,6 @@
 		display: flex;
 		flex-direction: column;
 		align-items: flex-start;
-		border-top: var(--mat-table-row-item-outline-width, 1px) solid
-			var(--mat-table-row-item-outline-color, rgba(0, 0, 0, 0.12));
 		border-bottom: var(--mat-table-row-item-outline-width, 1px) solid
 			var(--mat-table-row-item-outline-color, rgba(0, 0, 0, 0.12));
 		margin-left: 8px;
@@ -243,7 +269,7 @@
 	}
 
 	.connection-navigation__upgrade-button {
-		margin-top: 8px;
+		margin-top: -12px;
 		margin-left: 8px;
 		width: calc(100% - 16px);
 	}

frontend/src/app/app.component.html

@@ -5,8 +5,8 @@
         class="main-menu-sidenav"
         >
         <mat-toolbar>Rocketadmin</mat-toolbar>
-        <mat-nav-list *ngIf="userLoggedIn === true">
-            <a mat-list-item routerLink="/connections-list"
+        <mat-nav-list *ngIf="userLoggedIn === true" (click)="drawer.close()">
+            <a *ngIf="!connectionID" mat-list-item routerLink="/connections-list"
                 routerLinkActive="nav-bar__button_active"
                 aria-label="List of connections">
                 <mat-icon matListItemIcon class="connection-navigation__icon">
@@ -21,7 +21,7 @@
                     {{navigationTabs[tab].caption}}
                 </a>
             </mat-nav-list>
-            <a mat-list-item routerLink="/user-settings" class="connection-navigation__item_user" data-testid="account-link-account-menu">
+            <a mat-list-item routerLink="/user-settings" class="connection-navigation__item_user account-section-item" data-testid="account-link-account-menu">
                 <mat-icon matListItemIcon class="connection-navigation__icon connection-navigation__icon_account"
                     matBadge="1" [matBadgeHidden]="currentUser.isActive"
                     matBadgeColor="accent" matBadgeSize="small">
@@ -30,35 +30,44 @@
                 <div matListItemTitle>Account</div>
                 <div matListItemLine>{{currentUser.email}}</div>
             </a>
-            <a mat-list-item routerLink="/company" data-testid="company-link-account-menu">
+            <a mat-list-item routerLink="/company" class="account-section-item" data-testid="company-link-account-menu">
                 <mat-icon matListItemIcon class="connection-navigation__icon">
                     apartment
                 </mat-icon>
                 <div matListItemTitle>Company</div>
             </a>
-            <a mat-list-item routerLink="/secrets" data-testid="secrets-link-account-menu">
+            <a mat-list-item routerLink="/hosted-databases"
+                routerLinkActive="nav-bar__button_active"
+                aria-label="Hosted databases">
+                <mat-icon matListItemIcon fontSet="material-symbols-outlined" class="connection-navigation__icon">
+                    database
+                </mat-icon>
+                <div matListItemTitle>Hosted databases</div>
+            </a>
+            <a mat-list-item routerLink="/secrets" class="account-section-item" data-testid="secrets-link-account-menu">
                 <mat-icon matListItemIcon class="connection-navigation__icon">
                     key
                 </mat-icon>
                 <div matListItemTitle>Secrets</div>
             </a>
-            <a mat-list-item *ngIf="isSaas" routerLink="/zapier" data-testid="zapier-link-account-menu">
+            <a mat-list-item *ngIf="isSaas" routerLink="/zapier" class="account-section-item" data-testid="zapier-link-account-menu">
                 <mat-icon matListItemIcon class="connection-navigation__icon">
                     electric_bolt
                 </mat-icon>
                 <div matListItemTitle>Zapier</div>
             </a>
-            <a mat-list-item href="https://docs.rocketadmin.com/" target="_blank">
+            <a mat-list-item class="account-section-item" href="https://docs.rocketadmin.com/" target="_blank">
                 <mat-icon matListItemIcon class="connection-navigation__icon" fontSet="material-symbols-outlined">help</mat-icon>
                 <div matListItemTitle>Help center</div>
             </a>
-            <mat-list-item (click)="logOut()" data-testid="logout-button-account-menu">
+            <mat-list-item class="account-section-item" (click)="logOut()" data-testid="logout-button-account-menu">
                 <mat-icon matListItemIcon class="connection-navigation__icon">logout</mat-icon>
                 <div matListItemTitle>Log out</div>
             </mat-list-item>
         </mat-nav-list>
         <a mat-flat-button color="accent" *ngIf="isSaas && currentUser && currentUser.role === 'ADMIN'" class="connection-navigation__upgrade-button" routerLink="/upgrade"
-            routerLinkActive="nav-bar__button_active">
+            routerLinkActive="nav-bar__button_active"
+            (click)="drawer.close()">
             Upgrade
         </a>
     </mat-sidenav>
@@ -88,7 +97,7 @@
                             class="logo__image">
                         <ng-template #defaultRocketLogo>
                             <picture>
-                                <source media="(max-width: 600px)" srcset="../assets/rocketadmin_logo_white-short.svg">
+                                <source *ngIf="connectionID" media="(max-width: 600px)" srcset="../assets/rocketadmin_logo_white-short.svg">
                                 <img src="../assets/rocketadmin_logo_white.svg" alt="Rocketadmin logo" class="logo__image">
                             </picture>
                         </ng-template>
@@ -125,6 +134,11 @@
                             [ngClass]="{'connection_active': connectionID === connection.connection.id}">
                             {{connection.displayTitle}}
                         </a>
+                        <mat-divider></mat-divider>
+                        <a mat-menu-item routerLink="/hosted-databases">
+                            <mat-icon class="nav-menu__list-link-icon" fontSet="material-symbols-outlined">database</mat-icon>
+                            <span>Hosted databases</span>
+                        </a>
                     </ng-template>
                 </mat-menu>
                 <span *ngIf="isDemo" class="logo__demo-mark">demo</span>

frontend/src/app/app.component.ts

@@ -2,6 +2,7 @@ import { CommonModule } from '@angular/common';
 import { ChangeDetectorRef, Component } from '@angular/core';
 import { MatBadgeModule } from '@angular/material/badge';
 import { MatButtonModule } from '@angular/material/button';
+import { MatDividerModule } from '@angular/material/divider';
 import { MatIconModule, MatIconRegistry } from '@angular/material/icon';
 import { MatListModule } from '@angular/material/list';
 import { MatMenuModule } from '@angular/material/menu';
@@ -50,6 +51,7 @@ amplitude.getInstance().init('9afd282be91f94da735c11418d5ff4f5');
 		MatButtonModule,
 		MatBadgeModule,
 		MatMenuModule,
+		MatDividerModule,
 		MatTooltipModule,
 		Angulartics2OnModule,
 		FeatureNotificationComponent,