Add scope validation for service catalog

Author: tharikaGitHub

features/apimgt/org.wso2.carbon.apimgt.publisher.feature/src/main/resources/publisher/source/src/app/components/Apis/Details/LifeCycle/LifeCycleUpdate.jsx

@@ -30,7 +30,9 @@ import { injectIntl, FormattedMessage } from 'react-intl';
 import Typography from '@material-ui/core/Typography';
 import API from 'AppData/api';
 import { CircularProgress } from '@material-ui/core';
-import { ScopeValidation, resourceMethod, resourcePath } from 'AppData/ScopeValidation';
+import {
+    ScopeValidation, resourceMethod, resourcePath, client,
+} from 'AppData/ScopeValidation';
 import Alert from 'AppComponents/Shared/Alert';
 import Banner from 'AppComponents/Shared/Banner';
 import LaunchIcon from '@material-ui/icons/Launch';
@@ -315,7 +317,11 @@ class LifeCycleUpdate extends Component {
                             ))}
                         </FormGroup>
                     )}
-                    <ScopeValidation resourcePath={resourcePath.API_CHANGE_LC} resourceMethod={resourceMethod.POST}>
+                    <ScopeValidation
+                        resourcePath={resourcePath.API_CHANGE_LC}
+                        resourceMethod={resourceMethod.POST}
+                        client={client.API_CLIENT}
+                    >
                         <div className={classes.buttonsWrapper}>
                             {!isWorkflowPending
                                 && lifecycleButtons.map((transitionState) => {

features/apimgt/org.wso2.carbon.apimgt.publisher.feature/src/main/resources/publisher/source/src/app/components/Apis/Details/Subscriptions/SubscriptionsTable.jsx

@@ -44,7 +44,9 @@ import UserIcon from '@material-ui/icons/Person';
 
 import Alert from 'AppComponents/Shared/Alert';
 import API from 'AppData/api';
-import { ScopeValidation, resourceMethod, resourcePath } from 'AppData/ScopeValidation';
+import {
+    ScopeValidation, resourceMethod, resourcePath, client,
+} from 'AppData/ScopeValidation';
 import AuthManager from 'AppData/AuthManager';
 import Invoice from './Invoice';
 
@@ -853,6 +855,7 @@ class SubscriptionsTable extends Component {
                                 <ScopeValidation
                                     resourceMethod={resourceMethod.POST}
                                     resourcePath={resourcePath.BLOCK_SUBSCRIPTION}
+                                    client={client.API_CLIENT}
                                 >
                                     {
                                         this.getSubscriptionBlockingButtons(

features/apimgt/org.wso2.carbon.apimgt.publisher.feature/src/main/resources/publisher/source/src/app/components/Apis/Details/components/CreateNewVersionButton.jsx

@@ -25,7 +25,9 @@ import { withStyles } from '@material-ui/core/styles';
 import Typography from '@material-ui/core/Typography';
 import { FormattedMessage } from 'react-intl';
 
-import { resourceMethod, resourcePath, ScopeValidation } from 'AppData/ScopeValidation';
+import {
+    client, resourceMethod, resourcePath, ScopeValidation,
+} from 'AppData/ScopeValidation';
 import VerticalDivider from 'AppComponents/Shared/VerticalDivider';
 
 const styles = (theme) => ({
@@ -81,7 +83,11 @@ function CreateNewVersionButton(props) {
     return (
         <>
             {/* allowing create new version based on scopes */}
-            <ScopeValidation resourceMethod={resourceMethod.POST} resourcePath={resourcePath.API_COPY}>
+            <ScopeValidation
+                resourceMethod={resourceMethod.POST}
+                resourcePath={resourcePath.API_COPY}
+                client={client.API_CLIENT}
+            >
                 <div className={classes.createNewVersionWrapper}>
                     <VerticalDivider height={70} />
                     <Link

features/apimgt/org.wso2.carbon.apimgt.publisher.feature/src/main/resources/publisher/source/src/app/components/Apis/Details/components/DeleteApiButton.jsx

@@ -10,7 +10,9 @@ import { withRouter } from 'react-router-dom';
 import { withStyles } from '@material-ui/core/styles';
 import IconButton from '@material-ui/core/IconButton';
 import API from 'AppData/api';
-import { resourceMethod, resourcePath, ScopeValidation } from 'AppData/ScopeValidation';
+import {
+    client, resourceMethod, resourcePath, ScopeValidation,
+} from 'AppData/ScopeValidation';
 import Alert from 'AppComponents/Shared/Alert';
 import VerticalDivider from 'AppComponents/Shared/VerticalDivider';
 import { FormattedMessage } from 'react-intl';
@@ -190,7 +192,11 @@ class DeleteApiButton extends React.Component {
         return (
             <>
                 {/* allowing delete based on scopes */}
-                <ScopeValidation resourceMethod={resourceMethod.DELETE} resourcePath={path}>
+                <ScopeValidation
+                    resourceMethod={resourceMethod.DELETE}
+                    resourcePath={path}
+                    client={client.API_CLIENT}
+                >
                     <Box
                         className={classNames({ [classes.inlineBlock]: updateData, [classes.flexBox]: !updateData })}
                     >

features/apimgt/org.wso2.carbon.apimgt.publisher.feature/src/main/resources/publisher/source/src/app/components/ServiceCatalog/Listing/Onboarding.jsx

@@ -30,6 +30,9 @@ import CircularProgress from '@material-ui/core/CircularProgress';
 import OnboardingMenuCard from 'AppComponents/ServiceCatalog/Listing/components/OnboardingMenuCard';
 import Configurations from 'Config';
 import { getSampleServiceMeta, getSampleOpenAPI } from 'AppData/SamplePizzaShack';
+import {
+    ScopeValidation, resourceMethod, resourcePath, client,
+} from 'AppData/ScopeValidation';
 
 const useStyles = makeStyles((theme) => ({
     actionStyle: {
@@ -122,46 +125,53 @@ function Onboarding() {
                     </Button>
                 </OnboardingMenuCard>
                 {/* Deploy Sample Service */}
-                <OnboardingMenuCard
-                    iconSrc={
-                        Configurations.app.context + '/site/public/images/wso2-intg-service-icon.svg'
-                    }
-                    heading={(
-                        <FormattedMessage
-                            id='ServiceCatalog.Listing.Onboarding.sample.heading'
-                            defaultMessage='Add a sample'
-                        />
-                    )}
-                    subHeading={(
-                        <FormattedMessage
-                            id='ServiceCatalog.Listing.Onboarding.sample.heading.sub'
-                            defaultMessage='Integration Service'
-                        />
-                    )}
-                    description={(
-                        <FormattedMessage
-                            id='ServiceCatalog.Listing.Onboarding.sample.heading.text'
-                            defaultMessage={'Deploy the Sample Integration Service'
-                            + ' already available with WSO2 API Manager and get started in one click'}
-                        />
-                    )}
+                {/* allowing create sample service based on scopes */}
+                <ScopeValidation
+                    resourcePath={resourcePath.SERVICES}
+                    resourceMethod={resourceMethod.POST}
+                    client={client.SERVICE_CATALOG_CLIENT}
                 >
-                    <Button
-                        className={classes.actionStyle}
-                        size='large'
-                        id='itest-services-landing-deploy-sample'
-                        variant='outlined'
-                        color='primary'
-                        onClick={handleOnClick}
-                        disabled={deployStatus.inprogress}
+                    <OnboardingMenuCard
+                        iconSrc={
+                            Configurations.app.context + '/site/public/images/wso2-intg-service-icon.svg'
+                        }
+                        heading={(
+                            <FormattedMessage
+                                id='ServiceCatalog.Listing.Onboarding.sample.heading'
+                                defaultMessage='Add a sample'
+                            />
+                        )}
+                        subHeading={(
+                            <FormattedMessage
+                                id='ServiceCatalog.Listing.Onboarding.sample.heading.sub'
+                                defaultMessage='Integration Service'
+                            />
+                        )}
+                        description={(
+                            <FormattedMessage
+                                id='ServiceCatalog.Listing.Onboarding.sample.heading.text'
+                                defaultMessage={'Deploy the Sample Integration Service'
+                                + ' already available with WSO2 API Manager and get started in one click'}
+                            />
+                        )}
                     >
-                        <FormattedMessage
-                            id='ServiceCatalog.Listing.Onboarding.sample.add'
-                            defaultMessage='Add Sample Service'
-                        />
-                        {deployStatus.inprogress && <CircularProgress size={15} />}
-                    </Button>
-                </OnboardingMenuCard>
+                        <Button
+                            className={classes.actionStyle}
+                            size='large'
+                            id='itest-services-landing-deploy-sample'
+                            variant='outlined'
+                            color='primary'
+                            onClick={handleOnClick}
+                            disabled={deployStatus.inprogress}
+                        >
+                            <FormattedMessage
+                                id='ServiceCatalog.Listing.Onboarding.sample.add'
+                                defaultMessage='Add Sample Service'
+                            />
+                            {deployStatus.inprogress && <CircularProgress size={15} />}
+                        </Button>
+                    </OnboardingMenuCard>
+                </ScopeValidation>
             </Grid>
         </Box>
     );

features/apimgt/org.wso2.carbon.apimgt.publisher.feature/src/main/resources/publisher/source/src/app/components/ServiceCatalog/Listing/components/ServiceCard.jsx

@@ -18,6 +18,9 @@ import Chip from '@material-ui/core/Chip';
 import CreateAPIButton from 'AppComponents/ServiceCatalog/CreateApi';
 import DeleteServiceButton from 'AppComponents/ServiceCatalog/Listing/Delete';
 import LetterGenerator from 'AppComponents/Apis/Listing/components/ImageGenerator/LetterGenerator';
+import {
+    ScopeValidation, resourceMethod, resourcePath, client,
+} from 'AppData/ScopeValidation';
 
 
 const useStyles = makeStyles((theme) => ({
@@ -202,13 +205,20 @@ export default function ServiceCard(props) {
                                     serviceUrl={service.serviceUrl}
                                     usage={service.usage}
                                 />
-                                <DeleteServiceButton
-                                    id='itest-service-card-delete'
-                                    serviceDisplayName={service.name}
-                                    serviceId={service.id}
-                                    onDelete={onDelete}
-                                    isIconButton
-                                />
+                                {/* allowing delete service based on scopes */}
+                                <ScopeValidation
+                                    resourcePath={resourcePath.SINGLE_SERVICE}
+                                    resourceMethod={resourceMethod.DELETE}
+                                    client={client.SERVICE_CATALOG_CLIENT}
+                                >
+                                    <DeleteServiceButton
+                                        id='itest-service-card-delete'
+                                        serviceDisplayName={service.name}
+                                        serviceId={service.id}
+                                        onDelete={onDelete}
+                                        isIconButton
+                                    />
+                                </ScopeValidation>
                             </Grid>
                         )}
                     </Grid>

features/apimgt/org.wso2.carbon.apimgt.publisher.feature/src/main/resources/publisher/source/src/app/components/ServiceCatalog/Listing/components/ServicesTableView.jsx

@@ -29,6 +29,9 @@ import { isRestricted } from 'AppData/AuthManager';
 import MUIDataTable from 'mui-datatables';
 import moment from 'moment';
 import { FormattedMessage } from 'react-intl';
+import {
+    ScopeValidation, resourceMethod, resourcePath, client,
+} from 'AppData/ScopeValidation';
 
 const useStyles = makeStyles((theme) => ({
     contentInside: {
@@ -289,11 +292,18 @@ function ServicesTableView(props) {
                                             serviceUrl={serviceUrl}
                                             usage={usage}
                                         />
-                                        <Delete
-                                            serviceDisplayName={name}
-                                            serviceId={id}
-                                            onDelete={onDelete}
-                                        />
+                                        {/* allowing delete service based on scopes */}
+                                        <ScopeValidation
+                                            resourcePath={resourcePath.SINGLE_SERVICE}
+                                            resourceMethod={resourceMethod.DELETE}
+                                            client={client.SERVICE_CATALOG_CLIENT}
+                                        >
+                                            <Delete
+                                                serviceDisplayName={name}
+                                                serviceId={id}
+                                                onDelete={onDelete}
+                                            />
+                                        </ScopeValidation>
                                     </Box>
                                 )}
                             </>

features/apimgt/org.wso2.carbon.apimgt.publisher.feature/src/main/resources/publisher/source/src/app/data/ScopeValidation.jsx

@@ -19,6 +19,7 @@
 import React from 'react';
 import PropTypes from 'prop-types';
 import APIClient from 'AppData/APIClient';
+import ServiceCatalogClient from 'AppData/ServiceCatalogClient';
 import AuthManager from 'AppData/AuthManager';
 
 const resourcePath = {
@@ -68,6 +69,11 @@ const resourceMethod = {
     HEAD: 'head',
 };
 
+const client = {
+    API_CLIENT: APIClient,
+    SERVICE_CATALOG_CLIENT: ServiceCatalogClient,
+};
+
 /**
  * Show element iff user has proper scope for the view/action
  * @class ScopeValidation
@@ -83,9 +89,9 @@ export default class ScopeValidation extends React.Component {
      * @returns Boolean
      * @memberof AuthManager
      */
-    static hasScopes(currentResourcePath, currentResourceMethod) {
+    static hasScopes(currentResourcePath, currentResourceMethod, currentClient) {
         const userScopes = AuthManager.getUser().scopes;
-        const validScope = APIClient.getScopeForResource(currentResourcePath, currentResourceMethod);
+        const validScope = currentClient.getScopeForResource(currentResourcePath, currentResourceMethod);
         return validScope.then((scopes) => {
             for (const scope of scopes) {
                 if (userScopes.includes(scope)) {
@@ -111,8 +117,12 @@ export default class ScopeValidation extends React.Component {
      * @memberof ScopeValidation
      */
     componentDidMount() {
-        const { resourcePath: currentResourcePath, resourceMethod: currentResourceMethod } = this.props;
-        const hasScope = ScopeValidation.hasScopes(currentResourcePath, currentResourceMethod);
+        const {
+            resourcePath: currentResourcePath,
+            resourceMethod: currentResourceMethod,
+            client: currentClient,
+        } = this.props;
+        const hasScope = ScopeValidation.hasScopes(currentResourcePath, currentResourceMethod, currentClient);
         hasScope.then((haveScope) => {
             this.setState({ haveScope });
         });
@@ -137,6 +147,9 @@ ScopeValidation.propTypes = {
     children: PropTypes.node.isRequired,
     resourcePath: PropTypes.string.isRequired,
     resourceMethod: PropTypes.string.isRequired,
+    client: PropTypes.shape({}).isRequired,
 };
 
-export { ScopeValidation, resourceMethod, resourcePath };
+export {
+    ScopeValidation, resourceMethod, resourcePath, client,
+};