Fixes user permissions updates (#4985) (#5123)

* Fixes user permissions updates (#4985) * update alerts * fix relationship mutation * add test for role crud * update test * fix modal delete * fix modal delete * fix global permission delete modal * fix test * fix update global permission * update test * add test id in loader + update test * add fragment
opsmill · Dec 3, 2024 · afc07df · afc07df
1 parent ee01a64
commit afc07df
Show file tree

Hide file tree

Showing 12 changed files with 173 additions and 19 deletions.
diff --git a/changelog/4881.fixed.md b/changelog/4881.fixed.md
@@ -0,0 +1,4 @@
+* Fix Graphql mutations to make user permissions updates work correctly
+* Update the alert message to better reflect the changes (between creation and update)
+* Fix the objects delete modal on the global permission view
+* Fix the global permission update mutation
diff --git a/changelog/4952.fixed.md b/changelog/4952.fixed.md
@@ -0,0 +1,4 @@
+* Fix Graphql mutations to make user permissions updates work correctly
+* Update the alert message to better reflect the changes (between creation and update)
+* Fix the objects delete modal on the global permission view
+* Fix the global permission update mutation
diff --git a/frontend/app/src/components/form/utils/mutations/getCreateMutationFromFormData.ts b/frontend/app/src/components/form/utils/mutations/getCreateMutationFromFormData.ts
@@ -79,7 +79,10 @@ export const getCreateMutationFromFormDataOnly = (
 
       return {
         ...acc,
-        [name]: Array.isArray(fieldValue) ? fieldValue : { value: fieldValue },
+        [name]: Array.isArray(fieldValue)
+          ? // Uses array of ids for relationships
+            fieldValue.map((value) => ({ id: value.id }))
+          : { value: fieldValue },
       };
     }
 

diff --git a/frontend/app/src/components/modals/modal-delete-object.tsx b/frontend/app/src/components/modals/modal-delete-object.tsx
@@ -27,7 +27,11 @@ export default function ModalDeleteObject({ label, rowToDelete, open, close, onD
   const date = useAtomValue(datetimeAtom);
   const { objectKind } = useParams();
 
-  const objectDisplay = rowToDelete?.display_label || rowToDelete?.name?.value || rowToDelete?.name;
+  const objectDisplay =
+    rowToDelete?.display_label?.value ||
+    rowToDelete?.display_label ||
+    rowToDelete?.name?.value ||
+    rowToDelete?.name;
 
   const handleDeleteObject = async () => {
     if (!rowToDelete?.id) {

diff --git a/frontend/app/src/components/ui/search-input.tsx b/frontend/app/src/components/ui/search-input.tsx
@@ -20,7 +20,12 @@ export const SearchInput = forwardRef<HTMLInputElement, SearchInputProps>(
 
         <Input ref={ref} {...props} className={classNames("pl-8 h-auto", className)} />
 
-        {loading && <Spinner className="absolute inset-y-0 right-0 pr-2 flex items-center" />}
+        {loading && (
+          <Spinner
+            className="absolute inset-y-0 right-0 pr-2 flex items-center"
+            data-testid="objects-search-input-loader"
+          />
+        )}
       </div>
     );
   }

diff --git a/frontend/app/src/screens/role-management/account-form.tsx b/frontend/app/src/screens/role-management/account-form.tsx
@@ -90,9 +90,15 @@ export const AccountForm = ({
         },
       });
 
-      toast(<Alert type={ALERT_TYPES.SUCCESS} message={"Account created"} />, {
-        toastId: "alert-success-account-created",
-      });
+      if (currentObject) {
+        toast(<Alert type={ALERT_TYPES.SUCCESS} message={"Account updated!"} />, {
+          toastId: "alert-success-account-updated",
+        });
+      } else {
+        toast(<Alert type={ALERT_TYPES.SUCCESS} message={"Account created!"} />, {
+          toastId: "alert-success-account-created",
+        });
+      }
 
       if (onSuccess) await onSuccess(result?.data?.[`${OBJECT_PERMISSION_OBJECT}Create`]);
       if (onUpdateComplete) await onUpdateComplete();

diff --git a/frontend/app/src/screens/role-management/account-group-form.tsx b/frontend/app/src/screens/role-management/account-group-form.tsx
@@ -102,9 +102,15 @@ export const AccountGroupForm = ({
         },
       });
 
-      toast(<Alert type={ALERT_TYPES.SUCCESS} message={"Group created"} />, {
-        toastId: "alert-success-group-created",
-      });
+      if (currentObject) {
+        toast(<Alert type={ALERT_TYPES.SUCCESS} message={"Group updated!"} />, {
+          toastId: "alert-success-group-updated",
+        });
+      } else {
+        toast(<Alert type={ALERT_TYPES.SUCCESS} message={"Group created!"} />, {
+          toastId: "alert-success-group-created",
+        });
+      }
 
       if (onSuccess) await onSuccess(result?.data?.[`${OBJECT_PERMISSION_OBJECT}Create`]);
       if (onUpdateComplete) await onUpdateComplete();

diff --git a/frontend/app/src/screens/role-management/account-role-form.tsx b/frontend/app/src/screens/role-management/account-role-form.tsx
@@ -95,9 +95,15 @@ export const AccountRoleForm = ({
         },
       });
 
-      toast(<Alert type={ALERT_TYPES.SUCCESS} message={"Role created"} />, {
-        toastId: "alert-success-role-created",
-      });
+      if (currentObject) {
+        toast(<Alert type={ALERT_TYPES.SUCCESS} message={"Role updated!"} />, {
+          toastId: "alert-success-role-updated",
+        });
+      } else {
+        toast(<Alert type={ALERT_TYPES.SUCCESS} message={"Role created!"} />, {
+          toastId: "alert-success-role-created",
+        });
+      }
 
       if (onSuccess) await onSuccess(result?.data?.[`${ACCOUNT_ROLE_OBJECT}Create`]);
       if (onUpdateComplete) await onUpdateComplete();

diff --git a/frontend/app/src/screens/role-management/global-permissions-form.tsx b/frontend/app/src/screens/role-management/global-permissions-form.tsx
@@ -101,9 +101,15 @@ export const GlobalPermissionForm = ({
         },
       });
 
-      toast(<Alert type={ALERT_TYPES.SUCCESS} message={"Object permission created"} />, {
-        toastId: "alert-success-object-permission-created",
-      });
+      if (currentObject) {
+        toast(<Alert type={ALERT_TYPES.SUCCESS} message={"Global permission updated!"} />, {
+          toastId: "alert-success-global-permission-updated",
+        });
+      } else {
+        toast(<Alert type={ALERT_TYPES.SUCCESS} message={"Global permission created!"} />, {
+          toastId: "alert-success-global-permission-created",
+        });
+      }
 
       if (onSuccess) await onSuccess(result?.data?.[`${GLOBAL_PERMISSION_OBJECT}Create`]);
       if (onUpdateComplete) await onUpdateComplete();

diff --git a/frontend/app/src/screens/role-management/global-permissions.tsx b/frontend/app/src/screens/role-management/global-permissions.tsx
@@ -76,7 +76,7 @@ function GlobalPermissions() {
     data[GLOBAL_PERMISSION_OBJECT]?.edges.map((edge) => {
       return {
         values: {
-          id: { value: edge?.node?.id },
+          id: edge?.node?.id,
           display_label: { value: edge?.node?.display_label },
           action: { value: edge?.node?.action?.value },
           decision: {
@@ -94,6 +94,7 @@ function GlobalPermissions() {
             value: { edges: edge?.node?.roles?.edges },
           },
           identifier: { display: <BadgeCopy value={edge?.node?.identifier?.value} /> },
+          __typename: edge.node.__typename,
         },
       };
     });

diff --git a/frontend/app/src/screens/role-management/object-permissions-form.tsx b/frontend/app/src/screens/role-management/object-permissions-form.tsx
@@ -118,9 +118,15 @@ export const ObjectPermissionForm = ({
         },
       });
 
-      toast(<Alert type={ALERT_TYPES.SUCCESS} message={"Object permission created"} />, {
-        toastId: "alert-success-object-permission-created",
-      });
+      if (currentObject) {
+        toast(<Alert type={ALERT_TYPES.SUCCESS} message={"Object permission updated!"} />, {
+          toastId: "alert-success-object-permission-updated",
+        });
+      } else {
+        toast(<Alert type={ALERT_TYPES.SUCCESS} message={"Object permission created!"} />, {
+          toastId: "alert-success-object-permission-created",
+        });
+      }
 
       if (onSuccess) await onSuccess(result?.data?.[`${OBJECT_PERMISSION_OBJECT}Create`]);
       if (onUpdateComplete) await onUpdateComplete();

diff --git a/frontend/app/tests/e2e/role-management/roles-crud.spec.ts b/frontend/app/tests/e2e/role-management/roles-crud.spec.ts
@@ -0,0 +1,103 @@
+import { expect, test } from "@playwright/test";
+import { ACCOUNT_STATE_PATH } from "../../constants";
+
+test.describe("Role management - Roles CRUD", () => {
+  test.use({ storageState: ACCOUNT_STATE_PATH.ADMIN });
+  test.describe.configure({ mode: "serial" });
+
+  test("should create a role ", async ({ page }) => {
+    await test.step("access main view", async () => {
+      await page.goto("/role-management/roles");
+    });
+
+    await test.step("create role", async () => {
+      await expect(page.getByText("Retrieving roles...")).not.toBeVisible();
+      await page.getByRole("button", { name: "Create Account role" }).click();
+      await page.getByLabel("Name *").click();
+      await page.getByLabel("Name *").fill("test role");
+      await page.getByLabel("Groups").click();
+      await page.getByTestId("side-panel-container").getByText("Infrahub Users").click();
+      await page.getByLabel("Groups").click();
+      await page.getByTestId("side-panel-container").getByLabel("Permissions").click();
+      await page
+        .getByTestId("side-panel-container")
+        .getByText("global:super_admin:allow_all")
+        .first()
+        .click();
+      await page
+        .getByTestId("side-panel-container")
+        .getByText("global:manage_repositories:")
+        .click();
+      await page.getByTestId("side-panel-container").getByLabel("Permissions").click();
+      await page.getByRole("button", { name: "Create" }).click();
+      await expect(page.getByText("Role created!")).toBeVisible();
+    });
+
+    await test.step("verify role creation", async () => {
+      await expect(page.getByRole("cell", { name: "test role" })).toBeVisible();
+      await expect(
+        page
+          .getByRole("cell", {
+            name: "global:super_admin:allow_all global:manage_repositories:allow_all",
+          })
+          .locator("div")
+          .first()
+      ).toBeVisible();
+    });
+  });
+
+  test("should update a role ", async ({ page }) => {
+    await test.step("access main view", async () => {
+      await page.goto("/role-management/roles");
+    });
+
+    await test.step("update role", async () => {
+      await page
+        .getByRole("row", { name: "test role Infrahub Users" })
+        .getByTestId("actions-row-button")
+        .click();
+      await page.getByTestId("update-row-button").click();
+      await page.getByLabel("Name *").click();
+      await page.getByLabel("Name *").fill("test role 2");
+      await page.getByLabel("Groups").click();
+      await page.getByLabel("", { exact: true }).getByText("Infrahub Users").click();
+      await page.getByTestId("side-panel-container").getByText("Super Administrators").click();
+      await page.getByLabel("Groups").click();
+      await page.getByTestId("side-panel-container").getByLabel("Permissions").click();
+      await page
+        .getByTestId("side-panel-container")
+        .getByText("global:manage_schema:allow_all")
+        .click();
+      await page.getByTestId("side-panel-container").getByLabel("Permissions").click();
+      await page.getByRole("button", { name: "Update" }).click();
+      await expect(page.getByText("Role updated!")).toBeVisible();
+    });
+
+    await test.step("verify role update", async () => {
+      await expect(page.getByText("test role 2")).toBeVisible();
+      await expect(page.getByText("Super Administrators").nth(1)).toBeVisible();
+    });
+  });
+
+  test("should delete a role ", async ({ page }) => {
+    await test.step("access main view", async () => {
+      await page.goto("/role-management/roles");
+    });
+
+    await test.step("delete role", async () => {
+      await page
+        .getByRole("row", { name: "test role 2" })
+        .getByTestId("actions-row-button")
+        .click();
+      await page.getByTestId("delete-row-button").click();
+      await page.getByTestId("modal-delete-confirm").click();
+      await expect(page.getByText("Are you sure you want to remove")).not.toBeVisible();
+      await expect(page.getByText("Object test role 2 deleted")).toBeVisible();
+    });
+
+    await test.step("verify role delete", async () => {
+      await expect(page.getByTestId("objects-search-input-loader")).not.toBeVisible();
+      await expect(page.getByText("test role 2")).not.toBeVisible();
+    });
+  });
+});