Skip to content

Editor grids permissions refactor, enhancements, and fixes #16653

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 67 commits into
base: 3.x
Choose a base branch
from
Open

Editor grids permissions refactor, enhancements, and fixes #16653

wants to merge 67 commits into from

Conversation

smg6511
Copy link
Collaborator

@smg6511 smg6511 commented Nov 29, 2024
edited
Loading

Related PR

See also #15919. This is a re-packaging of that PR; this new PR seeks to cover all editor grids across the application and separates out some work (for a future PR) that had been begun around internationalizing core names and descriptions within some of the grids.

Related Issues

#14929, #16507

@smg6511 smg6511 changed the title Grids permissions rework Editor grids permissions refactor, enhancements, and fixes Nov 29, 2024
@smg6511 smg6511 marked this pull request as draft November 29, 2024 04:34
@opengeek
Copy link
Member

opengeek commented Dec 6, 2024

@smg6511 Is this close to being ready?

@smg6511
Copy link
Collaborator Author

smg6511 commented Dec 6, 2024

@opengeek Yes, very close - been hammering away at it. It should be ready for review by early next week.

@smg6511 smg6511 force-pushed the 3.x-grids-permissions-rework branch from 3045679 to 7739175 Compare December 7, 2024 03:12
@codecov Codecov
Copy link

codecov bot commented Dec 7, 2024
edited
Loading

Codecov Report

Attention: Patch coverage is 12.29385% with 585 lines in your changes missing coverage. Please review.

Project coverage is 21.38%. Comparing base (b1a02c3) to head (5702f37).
Report is 2 commits behind head on 3.x.

Files with missing lines Patch % Lines
...ion/Processors/System/Dashboard/Widget/GetList.php 0.00% 36 Missing ⚠️
...tion/Processors/Security/Access/Policy/GetList.php 0.00% 33 Missing ⚠️
.../Processors/Workspace/PackageNamespace/GetList.php 0.00% 33 Missing ⚠️
...Revolution/Processors/System/Dashboard/GetList.php 0.00% 28 Missing ⚠️
core/src/Revolution/Sources/modMediaSource.php 0.00% 27 Missing ⚠️
...ssors/Security/Access/UserGroup/Source/GetList.php 0.00% 25 Missing ⚠️
...essors/Security/Access/Policy/Template/GetList.php 0.00% 24 Missing ⚠️
...volution/Processors/System/ContentType/GetList.php 0.00% 24 Missing ⚠️
...ors/Security/Access/UserGroup/Category/GetList.php 0.00% 23 Missing ⚠️
core/src/Revolution/Processors/Source/GetList.php 0.00% 23 Missing ⚠️
... and 27 more
Additional details and impacted files 
@@             Coverage Diff              @@
##                3.x   #16653      +/-   ##
============================================
- Coverage     21.53%   21.38%   -0.15%     
- Complexity    10734    10763      +29     
============================================
  Files           565      566       +1     
  Lines         32540    32906     +366     
============================================
+ Hits           7007     7038      +31     
- Misses        25533    25868     +335

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@smg6511 smg6511 marked this pull request as ready for review December 11, 2024 04:11
@smg6511 smg6511 added the pr/review-needed Pull request requires review and testing. label Dec 11, 2024
@smg6511
Copy link
Collaborator Author

smg6511 commented Dec 11, 2024

@opengeek @theboxer @Mark-H - Alright, I believe this is finally ready. Hope folks can carve out some time to go through it all ;-) !

@smg6511 smg6511 mentioned this pull request Dec 11, 2024
Open
@rthrash rthrash added this to the v3.1.0 milestone Dec 12, 2024
@rthrash
Copy link
Member

rthrash commented Dec 12, 2024

@smg6511 this is a big one—kudos on getting it to this stage! Since it's fresh on your mind and touches so many areas, it will take a while to fully review I suspect (was just discussing this with @jaygilmore and @opengeek).

Any suggestions or checklists of all the various nooks and crannies that should be tested to get this one merged?

@smg6511
Copy link
Collaborator Author

smg6511 commented Dec 12, 2024
edited
Loading

Any suggestions or checklists of all the various nooks and crannies that should be tested to get this one merged?

Ok, here's generally how I'd suggest going through this:

Initial Runthrough

I overhauled the base grids classes (in modx.grid.js) to remove duplication of existing methods that could be shared and provide access to the new methods introduced from a new central base class; the original Grid, LocalGrid, and JsonGrid extend from this new base. As such, every grid across the app should be interacted with to ensure all works as expected.

Grids with New "Creator" Column and Protected Records

These are the grids where MODX provides built-in records to start with and/or where an Extra installs a record (which usually should only be removed by un-installing the Extra [such as in Namespaces]):

  • Namespaces
  • Roles
  • Contexts
  • Media Sources
  • Dashboards
  • Content Types
  • ACL Policies
  • ACL Policy Templates

A few notable details:

  • Although System Settings type grids would qualify for the same treatment as the above grids, implementation of it is really not feasible at this juncture due to the current data design. The identification of any given record's creator is largely derived or based on some hard-coded value (in the db or in php), as opposed to there being explicit flags in the db (columns where this type of info is persisted).
  • For the most part, I've set most built-in items to be fully protected (i.e., in addition to being non-removable, certain fields are also set immutable [name and sometimes description, or in Content Types the mime type]). What will be carried through separately (in a follow-up PR) is to implement translation on these immutables fields.
  • Following from the above point, matching field behavior has been implemented for a protected record's editing page (i.e., any field that was immutable on the grid is also immutable in the editing page [e.g., see Media Sources and Contexts]). Additionally, a new note is shown at the top of the panel alerting users re the item being protected and that some built-in fields may not be changed.

All Editor Grids

  • Buttons and button menu items are either hidden or set to disabled when permissions for their action is not granted.
  • Bulk Actions button menu items should, additionally, only be active when selections have been made (this is regardless of permissions on their respective actions).
  • Some grids depend on the permissions of related objects when rendering certain items. A prime example is the Template Variables grid in a Template's editing panel: it renders a link on each TV name leading to that TV's editing page (but now, only if permission to edit & save TVs is granted). The various Access Permissions grids also cross link in this way. Pay attention to these direct-linked items as you review each area.
  • Pencil icon should only show for editable fields (based on permissions)
  • Gear menu should only show when there is at least one action on a row that the user has permission to take; otherwise it is hidden

General Strategy

As I was working through this PR, I kept one browser open with an Admin user with full permissions and another with an alternate user with permissions I'd vary to check my work. I basically systematically went through each nav menu item and completed updates to all relevant grids for one area at a time. I'd suggest the same for reviewing. Remember there are some grids that are a couple hops away, and can be easy to miss:

  • TVs: There are multiple grids within this editing page to review (primarily the links to related objects [Contexts, Templates, User Groups] is what you'll want to pay attention to)
  • Trash Manager
  • User Group > Access Permissions (5 grids with various cross-linked objects)

@opengeek opengeek modified the milestones: v3.1.0, v3.1.1 Dec 18, 2024
@opengeek opengeek modified the milestones: v3.1.1, v3.1.2, v3.2.0 Feb 24, 2025
@rthrash rthrash removed this from the v3.2.0 milestone Mar 13, 2025
This was referenced Mar 14, 2025
Open
Draft
@smg6511 smg6511 force-pushed the 3.x-grids-permissions-rework branch from 49b4b53 to b3dcd12 Compare March 14, 2025 04:39
@opengeek opengeek added this to the v3.2.0 milestone Mar 21, 2025
@opengeek
Copy link
Member

@smg6511 — I am trying to get a collaborative review session together for this PR so we can get it integrated sooner than later. If possible, could you resolve the current small conflict in modx.grid.js?

smg6511 added 3 commits April 24, 2025 15:03
@smg6511
Update utilities.js
e5f9571 
Formatting, style, optimization only
@smg6511
Base updates
ee8234b 
Changes to js, css, and Lexicon common to multiple areas of this PR
@smg6511
ACL Role updates
c1349ed
smg6511 added 10 commits April 24, 2025 15:05
@smg6511
TV Resource Group Access formatting update
02303cf 
Code style changes only
@smg6511
TV panel grids updates
d3282c6 
Apply new permissions methods
@smg6511
Update modx.grid.trash.js
182e064 
Formatting, code style changes only
@smg6511
Trash manager updates
2700a1a 
Apply new permissions methods; includes adjustments to base grid class
@smg6511
Update modx.grid.resource.security.local.js
a5be884 
Formatting, code style changes only
@smg6511
Resource Access updates
0370d93 
Render links and checkboxes according to user permissions
@smg6511
Deprecations
d12505f 
Remove legacy cls references and mark others for removal
@smg6511
FC Profiles & Sets finalization
97660b0 
Tweaks and optimizations; fix issue with fields and tvs grids not showing inactive rows properly
@smg6511
Miscellaneous tweaks
46ceaf3
@smg6511
Update modx.grid.js
8c6a110 
Formatting tweak
@smg6511
Copy link
Collaborator Author

smg6511 commented Apr 24, 2025
edited
Loading

@opengeek - I fixed the conflict but, dagonit, unintentionally ended up merging instead of force pushing because I was trying to fix a minor format error at the same time as resolving the conflict ... grrr. Hopefully this'll be ok.

@opengeek
Copy link
Member

@opengeek - I fixed the conflict but, dagonit, unintentionally ended up merging not force pushing because I was trying to fix a minor format error at the same time as resolving the conflict ... grrr. Hopefully this'll be ok.

Unfortunately, that merge commit is problematic as it now shows completely unrelated changes in the diff.

@smg6511
Copy link
Collaborator Author

smg6511 commented Apr 24, 2025
edited
Loading

How to back out of that is the question then :-/ Maybe I can revert the merge?

@opengeek
Copy link
Member

I think you should be able to go back to 8c6a110 and then rebase the the work on the latest 3.x. I'm not sure exactly the situation, but maybe you could git reset --hard HEAD~2 as it is two commits back?

smg6511 added 10 commits April 24, 2025 20:50
@smg6511
Update utilities.js
49fdbf0 
Formatting, style, optimization only
@smg6511
Base updates
f072afa 
Changes to js, css, and Lexicon common to multiple areas of this PR
@smg6511
Media Source updates
2644434
@smg6511
Update modx.grid.element.properties.js
2cdaafd 
Formatting, code style & optimization changes only
@smg6511
Update modx.grid.local.property.js
dbe9f8f 
Formatting, code style & optimization changes only
@smg6511
Property Sets updates
1e061bf 
Updates display of and ability to select row actions (gear icon), as well as display of various action buttons. Also adjustments made to base grid class.
@smg6511
Base/utilities tweaks
bdb62a7 
A few new fixes and additions
@smg6511
Batch updates
90bb627 
Tweaks, clean up, and application of new create button method to various grids
@smg6511
Update .eslintrc.js
2e61415 
A few rule additions and updates...
@smg6511
Revert "Update .eslintrc.js"
9f90ff3 
This reverts commit b5a9743.
@smg6511 smg6511 force-pushed the 3.x-grids-permissions-rework branch from 1faa3c1 to 9f90ff3 Compare April 25, 2025 00:56
@smg6511
Update .eslintrc.js
bcfe93f 
Just a few additions/updates
@smg6511
Copy link
Collaborator Author

smg6511 commented Apr 25, 2025

@opengeek Ok, I think I got it squared away (I hope). Don't know why the compile assets step is choking.

@smg6511
Update index.scss
3bf42df 
Fix small type (really just to force the CI to compile assets)
@modxcommunity
Copy link
Collaborator

This pull request has been mentioned on MODX Community. There might be relevant details there:

https://community.modx.com/t/help-wanted-testing-a-pr-for-upcoming-revo-release/8528/1

Mark-H
Mark-H reviewed May 2, 2025
View reviewed changes
core/src/Revolution/modNamespace.php
$c->select([
'name' => 'DISTINCT SUBSTRING_INDEX(`signature`,"-",1)'
]);
$namespaces = $modx->getIterator(modTransportPackage::class, $c);
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Shouldn't this be fetching from modNamespace instead of modTransportPackage? 🤔

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I don't think so, as the purpose of this method is to just get the Extras-related namespaces (and not others, like custom ones).

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think @Mark-H is correct. MODX namespaces are namespaces, regardless if they are part of an extra or the core. There's no such thing as an Extras-related namespace based on the signature of a transport package.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Mark-H Mark-H Mark-H left review comments

@opengeek opengeek Awaiting requested review from opengeek opengeek is a code owner

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
pr/review-needed Pull request requires review and testing.
Projects
None yet
Milestone
v3.2.0
Development

Successfully merging this pull request may close these issues.
5 participants
@smg6511 @opengeek @rthrash @modxcommunity @Mark-H