TAN-852 - Permissions service refactor #7844

jamesspeake · 2024-05-08T07:24:25Z

A refactor from 2 services with too many methods and mixed focus:

PermissionsService
- ParticipationPermissionsService

To 7 services - namespaced in Permissions:::

PermissionsUpdateService - Dedicated to updating permissions
UserRequirementsService - Just the logic for return flexible registration requirements
BasePermissionsService - 2 methods denied_reason_for_action & action_descriptors - all other classes then inherit and extend these methods
- InitiativesPermissionsService
- PhasePermissionsService
  - ProjectPermissionsService
  - IdeaPermissionsService

Action descriptors are now generated via a method on the PermissionsServices instead of directly in the serializer.

Further documentation can be found here - https://www.notion.so/citizenlab/Permissions-service-d0e193dc551949a3bdc60dd0c500d75d

Changelog

Technical

Refactored permissions services to reduce duplication and make denied reasons for actions clearer
Performance improvements to action descriptors, projects and ideas endpoints

notion-workspace · 2024-05-08T07:24:31Z

🗳️ Disable buttons and provide correct info message when voting is disabled (not_in_group)

jamesspeake · 2024-05-08T07:25:29Z

back/app/controllers/web_api/v1/ideas_controller.rb

@@ -48,7 +48,7 @@ def index_mini
    ).find_records
    ideas = paginate SortByParamsService.new.sort_ideas(ideas, params, current_user)

-    render json: linked_json(ideas, WebApi::V1::IdeaMiniSerializer, params: jsonapi_serializer_params(pcs: ParticipationPermissionsService.new))


Moved the permissions service entirely as the mini serializer doesn't use it

jamesspeake · 2024-05-08T07:26:16Z

back/app/controllers/web_api/v1/ideas_controller.rb

        include: include
      }
    else
      {
-        params: jsonapi_serializer_params(pcs: ParticipationPermissionsService.new),
+        params: jsonapi_serializer_params(pcs: IdeaPermissionsService.new),


Not clear if there is any benefit in passing the service in as a param, but have left it for now

cl-dev-bot · 2024-05-08T07:34:30Z

	Warnings
⚠️	The PR title contains no Jira issue key (case-sensitive)
⚠️	The branch name contains no Jira issue key (case-sensitive)

	Messages
📖	Changelog provided 🎉
📖	Run the e2e tests
📖	Check translation progress

Generated by 🚫 dangerJS against bc13dbe

…vice and broke link with parent

…ervice

# Conflicts: # back/app/services/registration_requirements_service.rb # back/spec/services/registration_requirements_service_spec.rb

jamesspeake · 2024-05-08T13:15:48Z

back/spec/rails_helper.rb

@@ -94,3 +94,18 @@
 end

 ActiveJob::Base.queue_adapter = :test
+


Hadn't meant to check this in yet - but this is a method I've added which I was going to use to help analyse where the performance blocks are within the permissions code

Should we delete it now?

back/app/services/permissions/permissions_service.rb

jamesspeake · 2024-05-10T11:19:12Z

back/app/controllers/web_api/v1/comments_controller.rb

@@ -272,7 +272,7 @@ def anonymous_not_allowed?

    case @post_type
    when 'Idea'
-      !ParticipationPermissionsService.new.get_current_phase(@comment.post.project).allow_anonymous_participation
+      !TimelineService.new.current_phase_not_archived(@comment.post.project).allow_anonymous_participation


Moved this method from permissions into the timeline service where it belongs

jamesspeake · 2024-05-10T11:28:50Z

back/app/services/permissions/permissions_service.rb

+
+module Permissions
+  class PermissionsService
+    USER_DENIED_REASONS = {


There was a mix of language between 'denied reason' and 'disabled reason'. Decided to go with 'denied' until the output of the action descriptor - where it changes to disabled as that's what the FE is expecting

…missions-performance

… elsewhere

…nation

…cludes data and eliminate 2 queries per action descriptor

…roject)

…rformance-users-etc TAN-1813 - Permissions performance (2)

…rformance TAN-1813 - Permissions performance improvements (1)

# Conflicts: # back/spec/acceptance/ideas_spec.rb

jamesspeake added 2 commits April 30, 2024 08:11

[TAN-852] Started a refactor of project permissions

d5ba8d3

[TAN-852] Moved action descriptor to new sub services

5332750

jamesspeake commented May 8, 2024

View reviewed changes

[TAN-852] Moved action descriptor to new sub services

286a6e0

jamesspeake added 10 commits May 8, 2024 08:37

[TAN-852] Removed needless wrapper method

33e7c99

[TAN-852] Moved key permission methods to ParticipationPermissionsSer…

e11f332

…vice and broke link with parent

[TAN-852] Moved requirements methods to new RegistrationRequirementsS…

bec8613

…ervice

[TAN-852] Fixed tests

1af0601

[TAN-852] Renamed PermissionsService to PermissionsUpdateService

10ae681

Merge branch 'master' into TAN-852-permissions-service-refactor

5d1b0a4

# Conflicts: # back/app/services/registration_requirements_service.rb # back/spec/services/registration_requirements_service_spec.rb

[TAN-852] Merged from master

f5e403f

[TAN-852] Name spaced PermissionUpdateService

2501399

[TAN-852] Name spaced other permissions services

481b8f3

[TAN-852] Rubocop fix

cc35ef8

jamesspeake commented May 8, 2024

View reviewed changes

jamesspeake added this to the Permissions & Auth milestone May 8, 2024

alexander-cit reviewed May 9, 2024

View reviewed changes

back/app/services/permissions/permissions_service.rb Outdated Show resolved Hide resolved

jamesspeake added 7 commits May 9, 2024 12:14

[TAN-852] Refactored all project based permissions

45806b3

[TAN-852] Fixed tests & policies

5de06ef

[TAN-852] Started idea refactor

94ad58b

[TAN-852] Permission refactor tests passing

1db3346

[TAN-852] Test fixes

b3e0a47

[TAN-852] Refactoring of method names

e3e4495

[TAN-852] Changed action descriptors to their own service

745c632

jamesspeake commented May 10, 2024

View reviewed changes

[TAN-852] Changed report builder for consistency

0805988

jamesspeake and others added 29 commits May 16, 2024 09:51

[TAN-852] Removed test helper & simplified a method

523824b

Merge branch 'master' into TAN-852-permissions-service-refactor

60c75e4

Merge branch 'TAN-852-permissions-service-refactor' into TAN-1813-per…

f83970f

…missions-performance

[TAN-1813] Added performance test for group based permissions

03f4d2c

[TAN-1813] Altered user model for groups to improve performance

a69d290

[TAN-1813] Memoized only in in_any_groups?

1dd1be7

[TAN-1813] Removed commented code

66f9138

[TAN-1813] Added acceptance query test

523cf17

[TAN-1813] Removed acceptance query test

b335b01

[TAN-1813] Removed unneeded pcs parameter & tidied up pcs param names…

10165ef

… elsewhere

[TAN-1813] More efficient queries by only loading includes AFTER pagi…

d6c39ed

…nation

[TAN-1813] Small fix

48fc8c0

[TAN-1813] Moved includes in controllers to the end of the call stack

d2cc1f8

[TAN-1813] Made including idea imports dependent on being a moderator

27586d5

[TAN-1813] More moving of includes to after pagination

3b2fb2d

[TAN-1813] Spelling mistake

76c67ec

[TAN-1813] Passed through project to base service to enable use of in…

6f2a3ee

…cludes data and eliminate 2 queries per action descriptor

[TAN-1813] Changed the way ideas includes permissions (nested under p…

dd98eaa

…roject)

[TAN-1813] Rubocop fix

4273ca6

[TAN-1813] Memoized permissions service in ideas serializer

67b2c6c

[TAN-1813] Added clearer comment

dae52be

[TAN-1187] Changed text in the e2e test and it fixed the problem

6db4672

[TAN-1187] Removed pry

bf1c0e8

[TAN-1813] Stopped persisting of PermissionsService between sessions

2b69cb7

[TAN-1813] Rubocop fix

59f8486

Merge pull request #7926 from CitizenLabDotCo/TAN-1813-permissions-pe…

e321ee7

…rformance-users-etc TAN-1813 - Permissions performance (2)

Merge pull request #7898 from CitizenLabDotCo/TAN-1813-permissions-pe…

6f362d7

…rformance TAN-1813 - Permissions performance improvements (1)

Merge branch 'master' into TAN-852-permissions-service-refactor

919c413

# Conflicts: # back/spec/acceptance/ideas_spec.rb

[TAN-852] Test fixes

bc13dbe

jamesspeake merged commit 10d46fb into master May 22, 2024
10 checks passed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

TAN-852 - Permissions service refactor #7844

TAN-852 - Permissions service refactor #7844

jamesspeake commented May 8, 2024 •

edited

notion-workspace bot commented May 8, 2024

jamesspeake May 8, 2024 •

edited

jamesspeake May 8, 2024

cl-dev-bot commented May 8, 2024 •

edited

jamesspeake May 8, 2024

alexander-cit May 14, 2024

jamesspeake May 10, 2024

jamesspeake May 10, 2024

TAN-852 - Permissions service refactor #7844

TAN-852 - Permissions service refactor #7844

Conversation

jamesspeake commented May 8, 2024 • edited

Changelog

Technical

notion-workspace bot commented May 8, 2024

jamesspeake May 8, 2024 • edited

Choose a reason for hiding this comment

jamesspeake May 8, 2024

Choose a reason for hiding this comment

cl-dev-bot commented May 8, 2024 • edited

jamesspeake May 8, 2024

Choose a reason for hiding this comment

alexander-cit May 14, 2024

Choose a reason for hiding this comment

jamesspeake May 10, 2024

Choose a reason for hiding this comment

jamesspeake May 10, 2024

Choose a reason for hiding this comment

jamesspeake commented May 8, 2024 •

edited

jamesspeake May 8, 2024 •

edited

cl-dev-bot commented May 8, 2024 •

edited