-
Notifications
You must be signed in to change notification settings - Fork 39
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge pull request #947 from openkfw/944-unavailable-workflowitem-doc…
…uments-appear Add workflowitem.viewDetails endpoint
- Loading branch information
Showing
22 changed files
with
754 additions
and
239 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
125 changes: 125 additions & 0 deletions
125
api/src/service/domain/workflow/workflowitem_get_details.spec.ts
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,125 @@ | ||
import { assert } from "chai"; | ||
|
||
import { Ctx } from "../../../lib/ctx"; | ||
import * as Result from "../../../result"; | ||
import { NotAuthorized } from "../errors/not_authorized"; | ||
import { NotFound } from "../errors/not_found"; | ||
import { ServiceUser } from "../organization/service_user"; | ||
import { Permissions } from "../permissions"; | ||
import { Workflowitem } from "./workflowitem"; | ||
import { getWorkflowitemDetails } from "./workflowitem_get_details"; | ||
import { StoredDocument, UploadedDocument } from "../document/document"; | ||
|
||
const ctx: Ctx = { requestId: "", source: "test" }; | ||
const root: ServiceUser = { id: "root", groups: [] }; | ||
const alice: ServiceUser = { id: "alice", groups: [] }; | ||
const subprojectId = "dummy-subproject"; | ||
const workflowitemId = "dummy-workflowitem"; | ||
|
||
const permissions: Permissions = { | ||
"workflowitem.view": ["alice"], | ||
}; | ||
|
||
const baseWorkflowitem: Workflowitem = { | ||
isRedacted: false, | ||
id: workflowitemId, | ||
subprojectId, | ||
createdAt: new Date().toISOString(), | ||
dueDate: new Date().toISOString(), | ||
status: "open", | ||
assignee: alice.id, | ||
displayName: "dummy", | ||
description: "dummy", | ||
amountType: "N/A", | ||
documents: [], | ||
permissions, | ||
log: [], | ||
additionalData: {}, | ||
workflowitemType: "general", | ||
}; | ||
|
||
const documentStoredInWorkflowitem: StoredDocument = { | ||
id: "documentIdOffchain", | ||
hash: "lakjflaksdjf", | ||
fileName: "offchainFile", | ||
}; | ||
const uploadedDocument: UploadedDocument = { | ||
id: "documentIdStorage", | ||
base64: "lakjflaksdjf", | ||
fileName: "storageFile", | ||
}; | ||
|
||
const baseRepository = { | ||
getWorkflowitem: async () => baseWorkflowitem, | ||
downloadDocument: async (docId: string) => uploadedDocument, | ||
}; | ||
|
||
describe("get workflowitems: authorization", () => { | ||
it("Without the required permissions, a user cannot get a workflowitem's details.", async () => { | ||
const notPermittedWorkflowitem: Workflowitem = { | ||
...baseWorkflowitem, | ||
permissions: {}, | ||
}; | ||
const result = await getWorkflowitemDetails(ctx, alice, workflowitemId, { | ||
...baseRepository, | ||
getWorkflowitem: async () => notPermittedWorkflowitem, | ||
}); | ||
|
||
assert.instanceOf(result, NotAuthorized); | ||
}); | ||
|
||
it("With the required permissions, a user can get the workflowitem details.", async () => { | ||
const result = await getWorkflowitemDetails(ctx, alice, workflowitemId, baseRepository); | ||
|
||
assert.isTrue(Result.isOk(result), (result as Error).message); | ||
assert.equal(Result.unwrap(result).id, workflowitemId); | ||
}); | ||
|
||
it("The root user doesn't need permission to get the workflowitem details.", async () => { | ||
const result = await getWorkflowitemDetails(ctx, root, workflowitemId, baseRepository); | ||
|
||
// No errors, despite the missing permissions: | ||
assert.isTrue(Result.isOk(result), (result as Error).message); | ||
assert.equal(Result.unwrap(result).id, workflowitemId); | ||
}); | ||
}); | ||
describe("get workflowitem details: preconditions", () => { | ||
it("Getting a workflowitem fails if the workflowitem cannot be found", async () => { | ||
const result = await getWorkflowitemDetails(ctx, alice, workflowitemId, { | ||
...baseRepository, | ||
getWorkflowitem: async () => new Error("some error"), | ||
}); | ||
assert.isTrue(Result.isErr(result)); | ||
assert.instanceOf(result, NotFound); | ||
}); | ||
}); | ||
describe("get workflowitem details: test correct availability", () => { | ||
it("Unavailable documents are marked as unavailable", async () => { | ||
const workflowitemWithDocs: Workflowitem = { | ||
...baseWorkflowitem, | ||
documents: [documentStoredInWorkflowitem], | ||
}; | ||
const result = await getWorkflowitemDetails(ctx, alice, workflowitemId, { | ||
getWorkflowitem: async () => workflowitemWithDocs, | ||
downloadDocument: async () => new Error("some error"), | ||
}); | ||
assert.isTrue(Result.isOk(result)); | ||
const documents = Result.unwrap(result).documents; | ||
assert.isNotEmpty(documents); | ||
assert.isFalse(documents[0].available); | ||
}); | ||
it("Available documents are marked as available", async () => { | ||
const workflowitemWithDocs: Workflowitem = { | ||
...baseWorkflowitem, | ||
documents: [documentStoredInWorkflowitem], | ||
}; | ||
const result = await getWorkflowitemDetails(ctx, alice, workflowitemId, { | ||
getWorkflowitem: async () => workflowitemWithDocs, | ||
downloadDocument: async () => uploadedDocument, | ||
}); | ||
assert.isTrue(Result.isOk(result)); | ||
const documents = Result.unwrap(result).documents; | ||
assert.isNotEmpty(documents); | ||
assert.isTrue(documents[0].available); | ||
}); | ||
}); |
53 changes: 53 additions & 0 deletions
53
api/src/service/domain/workflow/workflowitem_get_details.ts
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,53 @@ | ||
import Intent from "../../../authz/intents"; | ||
import { Ctx } from "../../../lib/ctx"; | ||
import * as Result from "../../../result"; | ||
import { NotAuthorized } from "../errors/not_authorized"; | ||
import { NotFound } from "../errors/not_found"; | ||
import { ServiceUser } from "../organization/service_user"; | ||
import * as Workflowitem from "./workflowitem"; | ||
import * as WorkflowitemDocument from "../document/document"; | ||
|
||
interface Repository { | ||
getWorkflowitem(): Promise<Result.Type<Workflowitem.Workflowitem>>; | ||
downloadDocument(docId: string): Promise<Result.Type<WorkflowitemDocument.UploadedDocument>>; | ||
} | ||
|
||
export async function getWorkflowitemDetails( | ||
ctx: Ctx, | ||
user: ServiceUser, | ||
workflowitemId: string, | ||
repository: Repository, | ||
): Promise<Result.Type<Workflowitem.Workflowitem>> { | ||
const workflowitem = await repository.getWorkflowitem(); | ||
|
||
if (Result.isErr(workflowitem)) { | ||
return new NotFound(ctx, "workflowitem", workflowitemId); | ||
} | ||
|
||
if (user.id !== "root") { | ||
const intent = "workflowitem.view"; | ||
if (!Workflowitem.permits(workflowitem, user, [intent])) { | ||
return new NotAuthorized({ ctx, userId: user.id, intent, target: workflowitem }); | ||
} | ||
} | ||
|
||
const documentsWithAvailability = await setDocumentAvailability( | ||
workflowitem.documents, | ||
repository, | ||
); | ||
return { ...workflowitem, documents: documentsWithAvailability }; | ||
} | ||
|
||
async function setDocumentAvailability( | ||
documents: WorkflowitemDocument.StoredDocument[], | ||
repository: Repository, | ||
): Promise<WorkflowitemDocument.StoredDocument[]> { | ||
const docsWithAvailability: WorkflowitemDocument.StoredDocument[] = []; | ||
|
||
for (const doc of documents) { | ||
const result = await repository.downloadDocument(doc.id); | ||
docsWithAvailability.push({ ...doc, available: Result.isOk(result) }); | ||
} | ||
|
||
return docsWithAvailability; | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,51 @@ | ||
import { VError } from "verror"; | ||
import { Ctx } from "../lib/ctx"; | ||
import * as Result from "../result"; | ||
import * as Cache from "./cache2"; | ||
import { ConnToken } from "./conn"; | ||
import { ServiceUser } from "./domain/organization/service_user"; | ||
import * as Project from "./domain/workflow/project"; | ||
import * as Subproject from "./domain/workflow/subproject"; | ||
import * as Workflowitem from "./domain/workflow/workflowitem"; | ||
import * as WorkflowitemGetDetails from "./domain/workflow/workflowitem_get_details"; | ||
import * as WorkflowitemGet from "./domain/workflow/workflowitem_get"; | ||
import * as WorkflowitemDocumentDownloadService from "./workflowitem_document_download"; | ||
import { StorageServiceClientI } from "./Client_storage_service.h"; | ||
|
||
export async function getWorkflowitemDetails( | ||
conn: ConnToken, | ||
storageServiceClient: StorageServiceClientI, | ||
ctx: Ctx, | ||
serviceUser: ServiceUser, | ||
projectId: Project.Id, | ||
subprojectId: Subproject.Id, | ||
workflowitemId: Workflowitem.Id, | ||
): Promise<Result.Type<Workflowitem.Workflowitem>> { | ||
const workflowitemResult = await Cache.withCache(conn, ctx, async (cache) => | ||
WorkflowitemGetDetails.getWorkflowitemDetails(ctx, serviceUser, workflowitemId, { | ||
getWorkflowitem: async () => { | ||
return WorkflowitemGet.getWorkflowitem(ctx, serviceUser, workflowitemId, { | ||
getWorkflowitem: async () => { | ||
return cache.getWorkflowitem(projectId, subprojectId, workflowitemId); | ||
}, | ||
}); | ||
}, | ||
downloadDocument: async (docId) => { | ||
return WorkflowitemDocumentDownloadService.getDocument( | ||
conn, | ||
storageServiceClient, | ||
ctx, | ||
serviceUser, | ||
projectId, | ||
subprojectId, | ||
workflowitemId, | ||
docId, | ||
); | ||
}, | ||
}), | ||
); | ||
return Result.mapErr( | ||
workflowitemResult, | ||
(err) => new VError(err, `could not fetch workflowitem ${workflowitemId}`), | ||
); | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.