fix(admin): buttons authz on member pages

Authz of buttons is checked independently of data loading.

Author: sarkapalkovicova

apps/admin-gui/src/app/vos/pages/member-detail-page/member-attributes/member-attributes.component.html

@@ -6,7 +6,7 @@ <h1 class="page-subtitle">{{'MEMBER_DETAIL.SETTINGS.ATTRIBUTES.TITLE' | translat
         {{'MEMBER_DETAIL.ENTITY' | translate}}
       </ng-template>
       <ng-template matTabContent>
-        <app-one-entity-attribute-page [entityId]="this.memberId" [entity]="'member'">
+        <app-one-entity-attribute-page [entityId]="member.id" [entity]="'member'">
         </app-one-entity-attribute-page>
       </ng-template>
     </mat-tab>
@@ -19,7 +19,7 @@ <h1 class="page-subtitle">{{'MEMBER_DETAIL.SETTINGS.ATTRIBUTES.TITLE' | translat
       <ng-template matTabContent>
         <app-two-entity-attribute-page
           [firstEntity]="'member'"
-          [firstEntityId]="memberId"
+          [firstEntityId]="member.id"
           [secondEntity]="'group'"></app-two-entity-attribute-page>
       </ng-template>
     </mat-tab>
@@ -32,7 +32,7 @@ <h1 class="page-subtitle">{{'MEMBER_DETAIL.SETTINGS.ATTRIBUTES.TITLE' | translat
       <ng-template matTabContent>
         <app-two-entity-attribute-page
           [firstEntity]="'member'"
-          [firstEntityId]="memberId"
+          [firstEntityId]="member.id"
           [secondEntity]="'resource'"></app-two-entity-attribute-page>
       </ng-template>
     </mat-tab>

apps/admin-gui/src/app/vos/pages/member-detail-page/member-attributes/member-attributes.component.ts

@@ -1,6 +1,6 @@
 import { Component, HostBinding, OnInit } from '@angular/core';
 import { ActivatedRoute } from '@angular/router';
-import { GuiAuthResolver } from '@perun-web-apps/perun/services';
+import { EntityStorageService, GuiAuthResolver } from '@perun-web-apps/perun/services';
 import { Member, MembersManagerService } from '@perun-web-apps/perun/openapi';
 
 @Component({
@@ -10,7 +10,6 @@ import { Member, MembersManagerService } from '@perun-web-apps/perun/openapi';
 })
 export class MemberAttributesComponent implements OnInit {
   @HostBinding('class.router-component') true;
-  memberId: number;
   member: Member;
   memberResourceAttAuth: boolean;
   memberGroupAttAuth: boolean;
@@ -19,28 +18,22 @@ export class MemberAttributesComponent implements OnInit {
   constructor(
     private route: ActivatedRoute,
     private authResolver: GuiAuthResolver,
-    private memberManager: MembersManagerService
+    private memberManager: MembersManagerService,
+    private entityService: EntityStorageService
   ) {}
 
   ngOnInit(): void {
-    this.route.parent.params.subscribe((params) => {
-      this.memberId = Number(params['memberId']);
+    this.member = this.entityService.getEntity();
 
-      this.memberManager.getMemberById(this.memberId).subscribe((member) => {
-        this.member = member;
-
-        this.memberGroupAttAuth = this.authResolver.isAuthorized('getMemberGroups_Member_policy', [
-          this.member,
-        ]);
-        this.memberResourceAttAuth = this.authResolver.isAuthorized(
-          'getAssignedResourcesWithStatus_Member_policy',
-          [this.member]
-        );
-        this.userFacilityAttAuth = this.authResolver.isAuthorized(
-          'getAssignedFacilities_User_policy',
-          [{ beanName: 'User', id: member.userId }]
-        );
-      });
-    });
+    this.memberGroupAttAuth = this.authResolver.isAuthorized('getMemberGroups_Member_policy', [
+      this.member,
+    ]);
+    this.memberResourceAttAuth = this.authResolver.isAuthorized(
+      'getAssignedResourcesWithStatus_Member_policy',
+      [this.member]
+    );
+    this.userFacilityAttAuth = this.authResolver.isAuthorized('getAssignedFacilities_User_policy', [
+      { beanName: 'User', id: this.member.userId },
+    ]);
   }
 }

apps/admin-gui/src/app/vos/pages/member-detail-page/member-groups/member-groups.component.html

@@ -57,7 +57,7 @@ <h1 class="page-subtitle">{{'MEMBER_DETAIL.GROUPS.TITLE' | translate}}</h1>
       *perunWebAppsLoader="loading; indicator: spinner"
       (refreshTable)="refreshTable()"
       [displayedColumns]="['select', 'id', 'name', 'description', 'expiration', 'groupStatus']"
-      [memberId]="memberId"
+      [memberId]="member.id"
       [disableRouting]="!routeAuth"
       [groups]="groups"
       [filter]="filterValue"

apps/admin-gui/src/app/vos/pages/member-detail-page/member-groups/member-groups.component.ts

@@ -5,15 +5,14 @@ import {
   GroupsManagerService,
   Member,
   MembersManagerService,
-  Vo,
 } from '@perun-web-apps/perun/openapi';
 import { TABLE_MEMBER_DETAIL_GROUPS } from '@perun-web-apps/config/table-config';
 import { SelectionModel } from '@angular/cdk/collections';
 import { getDefaultDialogConfig } from '@perun-web-apps/perun/utils';
 import { MatDialog } from '@angular/material/dialog';
 import { AddMemberGroupDialogComponent } from '../../../../shared/components/dialogs/add-member-group-dialog/add-member-group-dialog.component';
 import { RemoveMemberGroupDialogComponent } from '../../../../shared/components/dialogs/remove-member-group-dialog/remove-member-group-dialog.component';
-import { GuiAuthResolver } from '@perun-web-apps/perun/services';
+import { EntityStorageService, GuiAuthResolver } from '@perun-web-apps/perun/services';
 import { Urns } from '@perun-web-apps/perun/urns';
 import { Observable } from 'rxjs';
 import { map, startWith } from 'rxjs/operators';
@@ -35,7 +34,6 @@ export class MemberGroupsComponent implements OnInit {
   @ViewChild('list') private list: GroupsListComponent;
 
   groups: Group[] = [];
-  memberId: number;
   member: Member;
   allGroups: Group[];
   loading: boolean;
@@ -62,37 +60,39 @@ export class MemberGroupsComponent implements OnInit {
     private route: ActivatedRoute,
     private dialog: MatDialog,
     private authResolver: GuiAuthResolver,
-    private memberService: MembersManagerService
+    private memberService: MembersManagerService,
+    private entityService: EntityStorageService
   ) {}
 
   ngOnInit(): void {
     this.loading = true;
-    this.route.parent.params.subscribe((parentParams) => {
-      this.memberId = Number(parentParams['memberId']);
-      this.memberService.getMemberById(this.memberId).subscribe((member) => {
-        this.member = member;
-        this.groupsService.getAllGroups(this.member.voId).subscribe((allGroups) => {
-          this.allGroups = allGroups;
-          this.refreshTable();
-          if (localStorage.getItem('preferedValue') === 'list') {
-            this.toggle.toggle();
-            this.showGroupList = true;
-          }
+    this.member = this.entityService.getEntity();
+
+    this.groupsService.getAllGroups(this.member.voId).subscribe((allGroups) => {
+      this.allGroups = allGroups;
+      this.addAuth = this.allGroups.reduce(
+        (acc, grp) => acc || this.authResolver.isAuthorized('addMember_Group_Member_policy', [grp]),
+        false
+      );
+
+      this.refreshTable();
+      if (localStorage.getItem('preferedValue') === 'list') {
+        this.toggle.toggle();
+        this.showGroupList = true;
+      }
 
-          this.toggle.change.subscribe(() => {
-            const value = this.toggle.checked ? 'list' : 'tree';
-            localStorage.setItem('preferedValue', value);
-            this.refreshTable();
-          });
-        });
+      this.toggle.change.subscribe(() => {
+        const value = this.toggle.checked ? 'list' : 'tree';
+        localStorage.setItem('preferedValue', value);
+        this.refreshTable();
       });
     });
   }
 
   refreshTable(): void {
     this.loading = true;
     this.groupsService
-      .getMemberRichGroupsWithAttributesByNames(this.memberId, [
+      .getMemberRichGroupsWithAttributesByNames(this.member.id, [
         Urns.MEMBER_DEF_GROUP_EXPIRATION,
         Urns.MEMBER_GROUP_STATUS,
         Urns.MEMBER_GROUP_STATUS_INDIRECT,
@@ -101,7 +101,14 @@ export class MemberGroupsComponent implements OnInit {
         next: (groups) => {
           this.selection.clear();
           this.groups = groups;
-          this.setAuthRights();
+
+          if (this.groups.length !== 0) {
+            this.routeAuth = this.authResolver.isAuthorized('getGroupById_int_policy', [
+              { id: this.member.voId, beanName: 'Vo' },
+              this.groups[0],
+            ]);
+          }
+
           this.loading = false;
         },
         error: () => (this.loading = false),
@@ -112,30 +119,11 @@ export class MemberGroupsComponent implements OnInit {
     this.list.changeExpiration(group);
   }
 
-  setAuthRights(): void {
-    const vo: Vo = {
-      id: this.member.voId,
-      beanName: 'Vo',
-    };
-
-    this.addAuth = this.allGroups.reduce(
-      (acc, grp) => acc || this.authResolver.isAuthorized('addMember_Group_Member_policy', [grp]),
-      false
-    );
-
-    if (this.groups.length !== 0) {
-      this.routeAuth = this.authResolver.isAuthorized('getGroupById_int_policy', [
-        vo,
-        this.groups[0],
-      ]);
-    }
-  }
-
   addGroup(): void {
     const config = getDefaultDialogConfig();
     config.width = '850px';
     config.data = {
-      memberId: this.memberId,
+      memberId: this.member.id,
       membersGroups: new Set<number>(this.groups.map((grp) => grp.id)),
       theme: 'member-theme',
     };
@@ -153,7 +141,7 @@ export class MemberGroupsComponent implements OnInit {
     const config = getDefaultDialogConfig();
     config.width = '650px';
     config.data = {
-      memberId: this.memberId,
+      memberId: this.member.id,
       groups: this.selection.selected,
       theme: 'member-theme',
     };

apps/admin-gui/src/app/vos/pages/member-detail-page/member-resources/member-resources.component.ts

@@ -11,7 +11,7 @@ import { TABLE_MEMBER_RESOURCE_LIST } from '@perun-web-apps/config/table-config'
 import { ActivatedRoute } from '@angular/router';
 import { getDefaultDialogConfig } from '@perun-web-apps/perun/utils';
 import { AddMemberToResourceDialogComponent } from '../../../../shared/components/dialogs/add-member-to-resource-dialog/add-member-to-resource-dialog.component';
-import { GuiAuthResolver } from '@perun-web-apps/perun/services';
+import { EntityStorageService, GuiAuthResolver } from '@perun-web-apps/perun/services';
 
 @Component({
   selector: 'app-member-resources',
@@ -27,25 +27,25 @@ export class MemberResourcesComponent implements OnInit {
   tableId = TABLE_MEMBER_RESOURCE_LIST;
   routeAuth: boolean;
   addAuth: boolean;
+  voBean: PerunBean;
 
   constructor(
     private dialog: MatDialog,
     private memberManager: MembersManagerService,
     private resourceManager: ResourcesManagerService,
     private route: ActivatedRoute,
-    private authResolver: GuiAuthResolver
+    private authResolver: GuiAuthResolver,
+    private entityService: EntityStorageService
   ) {}
 
   ngOnInit(): void {
     this.loading = true;
-    this.route.parent.params.subscribe((parentParams) => {
-      const memberId = Number(parentParams['memberId']);
-
-      this.memberManager.getMemberById(memberId).subscribe((member) => {
-        this.member = member;
-        this.refreshTable();
-      });
-    });
+    this.member = this.entityService.getEntity();
+    this.voBean = { id: this.member.voId, beanName: 'Vo' };
+    this.addAuth =
+      this.authResolver.isAuthorized('getRichResources_Vo_policy', [this.voBean]) &&
+      this.authResolver.isAuthorized('addMembers_Group_List<Member>_policy', [this.voBean]);
+    this.refreshTable();
   }
 
   addResource(): void {
@@ -72,29 +72,16 @@ export class MemberResourcesComponent implements OnInit {
       .getAssignedRichResourcesWithMember(this.member.id)
       .subscribe((resources) => {
         this.resources = resources;
-        this.setAuthRights();
+        if (this.resources.length !== 0) {
+          this.routeAuth = this.authResolver.isAuthorized('getResourceById_int_policy', [
+            this.voBean,
+            this.resources[0],
+          ]);
+        }
         this.loading = false;
       });
   }
 
-  setAuthRights(): void {
-    const vo: PerunBean = {
-      id: this.member.voId,
-      beanName: 'Vo',
-    };
-
-    this.addAuth =
-      this.authResolver.isAuthorized('getRichResources_Vo_policy', [vo]) &&
-      this.authResolver.isAuthorized('addMembers_Group_List<Member>_policy', [vo]);
-
-    if (this.resources.length !== 0) {
-      this.routeAuth = this.authResolver.isAuthorized('getResourceById_int_policy', [
-        vo,
-        this.resources[0],
-      ]);
-    }
-  }
-
   applyFilter(filterValue: string): void {
     this.filterValue = filterValue;
   }