Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Collection upload/deprecate - fix permission checks #4015

Merged
merged 17 commits into from
Dec 4, 2023
+427 −451
Merged

Collection upload/deprecate - fix permission checks #4015

Changes from all commits
Commits
Show all changes
17 commits
Select commit Hold shift + click to select a range
2f53307
Collection upload/deprecate - fix permission checks
himdel Jul 21, 2023
de6b1d7
CollectionHeader - move actions & permissions to CollectionDropdown
himdel Nov 21, 2023
f305acd
Search,NamespaceDetail - use CollectionDropdown
himdel Nov 21, 2023
03738b5
namespace detail respect namespace permissions
himdel Nov 21, 2023
b5227e0
fix delete collectio/ns disabled message, use description
himdel Nov 29, 2023
83b2a6f
inline tryOpenDeleteModalWithConfirm
himdel Nov 29, 2023
f31f54b
deleteFn in all 3 dropdowns
himdel Nov 29, 2023
68015dc
linter fix
himdel Nov 29, 2023
9880f91
namespace detail - use object permissions for upload,delete,edit
himdel Nov 29, 2023
b71c1d8
tests - constistent kebab-toggle click
himdel Nov 29, 2023
4247795
cy.openHeaderKebab - and scroll to top first
himdel Nov 30, 2023
6603e46
Ratings: don't load scores outside community mode
himdel Nov 30, 2023
4d861d8
collection-kebab - switch to data-cy
himdel Dec 1, 2023
5da4968
scrollTo fix
himdel Dec 1, 2023
6e51890
aargh, is it a timing bug?
himdel Dec 1, 2023
a381ce5
upload new version is no longer available without permissions
himdel Dec 1, 2023
5d882eb
openHeaderKebab: add comment about the wait
himdel Dec 1, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1 change: 1 addition & 0 deletions CHANGES/2439.bug
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
Collection upload/deprecate - fix permission checks
1 change: 1 addition & 0 deletions CHANGES/2853.bug
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
Collection upload/deprecate - fix permission checks
189 changes: 189 additions & 0 deletions src/components/collection-detail/collection-dropdown.tsx
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,189 @@
import { t } from '@lingui/macro';
import { DropdownItem } from '@patternfly/react-core';
import React from 'react';
import { StatefulDropdown } from 'src/components';
import { useContext } from 'src/loaders/app-context';
import { DeleteCollectionUtils } from 'src/utilities';

interface IProps {
collection;
'data-cy'?: string;
deletionBlocked?: boolean;
namespace?;
onCopyVersion?;
onDelete?;
onDeleteVersion?;
onDeprecate?;
onRemove?;
onRemoveVersion?;
onSign?;
onSignVersion?;
onUploadVersion?;
version?: string;
wrapper?;
}

export const CollectionDropdown = ({
collection,
'data-cy': dataCy,
deletionBlocked,
namespace,
onCopyVersion,
onDelete,
onDeleteVersion,
onDeprecate,
onRemove,
onRemoveVersion,
onSign,
onSignVersion,
onUploadVersion,
version,
wrapper,
}: IProps) => {
const {
featureFlags: {
can_create_signatures,
can_upload_signatures,
display_repositories,
},
hasPermission,
user: { is_anonymous, is_superuser },
} = useContext();

const hasObjectPermission = (permission) =>
namespace?.related_fields?.my_permissions?.includes?.(permission);

const hasPerm = (permission) =>
hasPermission(permission) ||
hasObjectPermission(permission) ||
is_superuser;

const canCopy = display_repositories && !is_anonymous;
const canDelete =
hasPerm('ansible.delete_collection') || hasPerm('galaxy.change_namespace');
const canDeprecate = hasPerm('galaxy.change_namespace');
const canRemove = canDelete && display_repositories;
const canSign =
can_create_signatures &&
!can_upload_signatures &&
hasPerm('galaxy.change_namespace') &&
hasPerm('galaxy.upload_to_namespace');
const canUpload = hasPerm('galaxy.upload_to_namespace');

const Wrapper =
wrapper || (({ any, children }) => (any ? <>{children}</> : null));

const DeleteWrapper = ({
addAlert,
caption,
collection,
'data-cy': dataCy,
openModal,
skipCheck,
}: {
addAlert?;
caption: string;
collection?;
'data-cy'?: string;
openModal;
skipCheck?;
}) =>
deletionBlocked ? (
<DropdownItem
isDisabled
description={t`Cannot delete until collections that depend on this collection have been deleted.`}
>
{caption}
</DropdownItem>
) : (
<DropdownItem
data-cy={dataCy}
onClick={() =>
skipCheck
? openModal()
: DeleteCollectionUtils.countUsedbyDependencies(collection)
.then((count) => {
if (count) {
addAlert({
title: t`Cannot delete until collections that depend on this collection have been deleted.`,
variant: 'warning',
});
return;
}

openModal();
})
.catch(addAlert)
}
>
{caption}
</DropdownItem>
);

const dropdownItems = [
canDelete && onDelete && (
<DeleteWrapper
caption={t`Delete collection from system`}
data-cy='delete-collection'
key='delete-collection'
{...onDelete}
/>
),
canRemove && onRemove && (
<DeleteWrapper
caption={t`Remove collection from repository`}
key='remove-collection'
{...onRemove}
/>
),
canDelete && onDeleteVersion && (
<DropdownItem
data-cy='delete-collection-version'
key='delete-collection-version'
onClick={onDeleteVersion}
>
{t`Delete version ${version} from system`}
</DropdownItem>
),
canRemove && onRemoveVersion && (
<DropdownItem key='remove-collection-version' onClick={onRemoveVersion}>
{t`Remove version ${version} from repository`}
</DropdownItem>
),
canSign && onSign && (
<DropdownItem key='sign-collection' onClick={onSign}>
{t`Sign collection`}
</DropdownItem>
),
canSign && onSignVersion && (
<DropdownItem key='sign-collection-version' onClick={onSignVersion}>
{t`Sign version ${version}`}
</DropdownItem>
),
canDeprecate && onDeprecate && (
<DropdownItem onClick={onDeprecate} key='deprecate-collection'>
{collection.is_deprecated ? t`Undeprecate` : t`Deprecate`}
</DropdownItem>
),
canUpload && onUploadVersion && (
<DropdownItem key='upload-collection-version' onClick={onUploadVersion}>
{t`Upload new version`}
</DropdownItem>
),
canCopy && onCopyVersion && (
<DropdownItem
key='copy-collection-version-to-repository-dropdown'
onClick={onCopyVersion}
data-cy='copy-collection-version-to-repository-dropdown'
>
{t`Copy version ${version} to repositories`}
</DropdownItem>
),
].filter(Boolean);

return (
<Wrapper any={dropdownItems.length}>
<StatefulDropdown data-cy={dataCy} items={dropdownItems} />
</Wrapper>
);
};
Loading