🔍 Strapi Permission Validator

Validate API tokens and user role permissions for Strapi instance

Configuration

Strapi Instance URL * Enter strapi url

✓ Using admin credentials from .env file

Admin Email *

Admin Password *

Restricted Permissions Enter one permission per line (default: delete, deleteAccount, destroy)

Role-Specific Permissions (JSON)

{
  "Public": {
    "allowed": [
      "plugin::stb-users.auth.callback",
      "plugin::stb-users.auth.connect",
      "plugin::stb-users.stb-users.googleOneTabLogin",
      "plugin::stb-users.stb-users.googleOneTabCallback",
      "plugin::users-permissions.auth.callback",
      "plugin::users-permissions.auth.connect"
    ],
    "restricted": []
  },
  "Authenticated": {
    "allowed": [
      "me",
      "create",
      "count",
      "find",
      "findOne",
      "changePassword"
    ],
    "restricted": []
  }
}

Optional: Define allowed/restricted permissions for specific roles in JSON format

Running validation...

Validation Results

Built with ❤️ for Strapi developers