prevent auditor from trying changing tasks

abarz722 · abarz722 · commit 549b548bd7c7 · 2025-07-17T15:03:22.000+02:00
diff --git a/roles/lib/files/FWO.Services/WfHandler.cs b/roles/lib/files/FWO.Services/WfHandler.cs
@@ -156,7 +156,7 @@ public async Task<bool> Init(bool fetchData = false, List<int>? ownerIds = null,
                     }
                     ActionHandler = new (apiConnection, this, UserGroups, usedInMwServer);
                     await ActionHandler.Init();
-                    dbAcc = new WfDbAccess(DisplayMessageInUi, userConfig, apiConnection, ActionHandler, AuthUser == null || AuthUser.IsInRole(Roles.Admin)){};
+                    dbAcc = new WfDbAccess(DisplayMessageInUi, userConfig, apiConnection, ActionHandler, AuthUser == null || AuthUser.IsInRole(Roles.Admin) || AuthUser.IsInRole(Roles.Auditor)){};
                     Devices = await apiConnection.SendQueryAsync<List<Device>>(DeviceQueries.getDeviceDetails);
                     AllOwners = await apiConnection.SendQueryAsync<List<FwoOwner>>(OwnerQueries.getOwners);
                     await stateMatrixDict.Init(Phase, apiConnection);
@@ -266,12 +266,12 @@ public void SetContinueEnv(ObjAction action)
 
         // Tickets
 
-        public async Task<WfTicket?> ResolveTicket(long ticketId, bool checkOwner = false)
+        public async Task<WfTicket?> ResolveTicket(long ticketId)
         {
             WfTicket? ticket = null;
             if(dbAcc != null)
             {
-                ticket = await dbAcc.FetchTicket(ticketId, checkOwner ? AllOwners.ConvertAll(x => x.Id) : null);
+                ticket = await dbAcc.FetchTicket(ticketId, userConfig.ReqOwnerBased ? AllOwners.ConvertAll(x => x.Id) : null);
                 if(ticket != null)
                 {
                     SetTicketEnv(ticket);
diff --git a/roles/ui/files/FWO.UI/Pages/NetworkModelling/EditConn.razor b/roles/ui/files/FWO.UI/Pages/NetworkModelling/EditConn.razor
@@ -392,7 +392,7 @@
 					@if(ConnHandler.ActConn.IsRequested)
 					{
 						<button type="button" class="btn btn-sm btn-dark" @onclick="DisplayTicket">@(ConnHandler.DisplayButton("display_ticket", Icons.Display, userConfig.GetText("ticket")))</button>
-						@if(!ConnHandler.ReadOnly)
+						@if(!ConnHandler.ReadOnly && availableModules.Contains(Module.Workflow))
 						{
 							<button type="button" class="btn btn-sm btn-dark" @onclick="GotoTicket">@(ConnHandler.DisplayButton("edit_ticket", Icons.Edit, userConfig.GetText("ticket")))</button>
 						}
@@ -480,12 +480,15 @@
     private bool RejectInterfaceMode = false;
 
     private List<string> availableExtraConfigs = [];
+	private List<Module> availableModules { get; set; } = [];
 
 
     protected override void OnInitialized()
     {
         sidebarLeftWidth = sidebarInitWidth;
         availableExtraConfigs = JsonSerializer.Deserialize<List<string>>(userConfig.ModExtraConfigs) ?? new();
+		availableModules = string.IsNullOrEmpty(userConfig.AvailableModules) ? [.. Enum.GetValues(typeof(Module)).Cast<Module>()]
+            : JsonSerializer.Deserialize<List<Module>>(userConfig.AvailableModules) ?? throw new JsonException("Config data could not be parsed.");
     }
 
     protected override void OnParametersSet()
diff --git a/roles/ui/files/FWO.UI/Pages/Request/DisplayImplementationTask.razor b/roles/ui/files/FWO.UI/Pages/Request/DisplayImplementationTask.razor
@@ -14,6 +14,24 @@
         {
             <form>
                 <div class="form-group row">
+                    <div class="col-sm-2">
+                        <div class="form-group row">
+                            <label class="col-sm-6 col-form-label col-form-label-sm">@(userConfig.GetText("id")):</label>
+                            <div class="col-sm-6">
+                                <label class="col-sm-12 border bg-secondary">@WfHandler.ActImplTask.Id</label>
+                            </div>
+                        </div>
+                    </div>
+                    <div class="col-sm-10">
+                        <div class="form-group row">
+                            <label class="col-sm-1 col-form-label col-form-label-sm">@(userConfig.GetText("title"))*:</label>
+                            <div class="col-sm-11">
+                                <input type="text" class="form-control form-control-sm" readonly="@(!WfHandler.EditImplTaskMode)" @bind="WfHandler.ActImplTask.Title" />
+                            </div>
+                        </div>
+                    </div>
+                </div>
+                <div class="form-group row mt-2">
                     <div class="col-sm-3">
                         <div class="form-group row">
                             <label class="col-sm-4 col-form-label col-form-label-sm">@(userConfig.GetText("state")):</label>
diff --git a/roles/ui/files/FWO.UI/Pages/Request/PromoteObject.razor b/roles/ui/files/FWO.UI/Pages/Request/PromoteObject.razor
@@ -50,6 +50,9 @@
     [CascadingParameter]
     Action<Exception?, string, string, bool> DisplayMessageInUi { get; set; } = DefaultInit.DoNothing;
 
+    [CascadingParameter]
+    private Task<AuthenticationState>? authenticationStateTask { get; set; }
+
     [Parameter]
     public bool Promote { get; set; } = false;
 
@@ -91,7 +94,7 @@
         if (Promote)
         {
             possibleStates = StateMatrix.getAllowedTransitions(StatefulObject.StateId);
-            if(possibleStates.Count == 1)
+            if(possibleStates.Count == 1 && !authenticationStateTask!.Result.User.IsInRole(Roles.Auditor))
             {
                 int oldState = StatefulObject.StateId;
                 StatefulObject.StateId = possibleStates[0];
diff --git a/roles/ui/files/FWO.UI/Pages/Request/RequestImplementations.razor b/roles/ui/files/FWO.UI/Pages/Request/RequestImplementations.razor
@@ -51,6 +51,7 @@ else
     private bool DisplayTickets = true;
     private Device selectedDeviceOpt = new ();
     private FwoOwner selectedOwnerOpt = new (){ Id = -1 };
+    private bool JumpedIn = false;
 
 
     protected override async Task OnInitializedAsync()
@@ -69,9 +70,16 @@ else
             await HandleTicketId();
             await Select();
             wfHandler.SetContinueEnv(ObjAction.implement);
-            if(wfHandler.ActTicket.Tasks.Count >= 1 && wfHandler.ActTicket.Tasks.First().ImplementationTasks.Count >= 1)
+            if(wfHandler.ActTicket.Tasks.Count > 0 && wfHandler.ActTicket.Tasks[0].ImplementationTasks.Count > 0)
             {
-                await wfHandler.ContinueImplPhase(wfHandler.ActTicket.Tasks.First().ImplementationTasks.First());
+                if(JumpedIn && authenticationStateTask!.Result.User.IsInRole(Roles.Admin) || authenticationStateTask!.Result.User.IsInRole(Roles.Auditor))
+                {
+                    wfHandler.SelectImplTask(wfHandler.ActTicket.Tasks[0].ImplementationTasks[0], ObjAction.display);
+                }
+                else
+                {
+                    await wfHandler.ContinueImplPhase(wfHandler.ActTicket.Tasks[0].ImplementationTasks[0]);
+                }
             }
             InitComplete = true;
         }
@@ -90,6 +98,10 @@ else
             {
                 NavigationManager.NavigateTo($"/request/{newPhase.ToString()}s/{TicketId}");
             }
+            else
+            {
+                JumpedIn = true;
+            }
         }
     }
 

Original file line number	Diff line number	Diff line change
`@@ -156,7 +156,7 @@ public async Task<bool> Init(bool fetchData = false, List<int>? ownerIds = null,`
`156`	`156`	`}`
`157`	`157`	`ActionHandler = new (apiConnection, this, UserGroups, usedInMwServer);`
`158`	`158`	`await ActionHandler.Init();`
`159`		`- dbAcc = new WfDbAccess(DisplayMessageInUi, userConfig, apiConnection, ActionHandler, AuthUser == null \|\| AuthUser.IsInRole(Roles.Admin)){};`
	`159`	`+ dbAcc = new WfDbAccess(DisplayMessageInUi, userConfig, apiConnection, ActionHandler, AuthUser == null \|\| AuthUser.IsInRole(Roles.Admin) \|\| AuthUser.IsInRole(Roles.Auditor)){};`
`160`	`160`	`Devices = await apiConnection.SendQueryAsync<List<Device>>(DeviceQueries.getDeviceDetails);`
`161`	`161`	`AllOwners = await apiConnection.SendQueryAsync<List<FwoOwner>>(OwnerQueries.getOwners);`
`162`	`162`	`await stateMatrixDict.Init(Phase, apiConnection);`
`@@ -266,12 +266,12 @@ public void SetContinueEnv(ObjAction action)`
`266`	`266`
`267`	`267`	`// Tickets`
`268`	`268`
`269`		`- public async Task<WfTicket?> ResolveTicket(long ticketId, bool checkOwner = false)`
	`269`	`+ public async Task<WfTicket?> ResolveTicket(long ticketId)`
`270`	`270`	`{`
`271`	`271`	`WfTicket? ticket = null;`
`272`	`272`	`if(dbAcc != null)`
`273`	`273`	`{`
`274`		`- ticket = await dbAcc.FetchTicket(ticketId, checkOwner ? AllOwners.ConvertAll(x => x.Id) : null);`
	`274`	`+ ticket = await dbAcc.FetchTicket(ticketId, userConfig.ReqOwnerBased ? AllOwners.ConvertAll(x => x.Id) : null);`
`275`	`275`	`if(ticket != null)`
`276`	`276`	`{`
`277`	`277`	`SetTicketEnv(ticket);`
Original file line number	Diff line number	Diff line change
`@@ -392,7 +392,7 @@`
`392`	`392`	`@if(ConnHandler.ActConn.IsRequested)`
`393`	`393`	`{`
`394`	`394`	`<button type="button" class="btn btn-sm btn-dark" @onclick="DisplayTicket">@(ConnHandler.DisplayButton("display_ticket", Icons.Display, userConfig.GetText("ticket")))</button>`
`395`		`- @if(!ConnHandler.ReadOnly)`
	`395`	`+ @if(!ConnHandler.ReadOnly && availableModules.Contains(Module.Workflow))`
`396`	`396`	`{`
`397`	`397`	`<button type="button" class="btn btn-sm btn-dark" @onclick="GotoTicket">@(ConnHandler.DisplayButton("edit_ticket", Icons.Edit, userConfig.GetText("ticket")))</button>`
`398`	`398`	`}`
`@@ -480,12 +480,15 @@`
`480`	`480`	`private bool RejectInterfaceMode = false;`
`481`	`481`
`482`	`482`	`private List<string> availableExtraConfigs = [];`
	`483`	`+ private List<Module> availableModules { get; set; } = [];`
`483`	`484`
`484`	`485`
`485`	`486`	`protected override void OnInitialized()`
`486`	`487`	`{`
`487`	`488`	`sidebarLeftWidth = sidebarInitWidth;`
`488`	`489`	`availableExtraConfigs = JsonSerializer.Deserialize<List<string>>(userConfig.ModExtraConfigs) ?? new();`
	`490`	`+ availableModules = string.IsNullOrEmpty(userConfig.AvailableModules) ? [.. Enum.GetValues(typeof(Module)).Cast<Module>()]`
	`491`	`+ : JsonSerializer.Deserialize<List<Module>>(userConfig.AvailableModules) ?? throw new JsonException("Config data could not be parsed.");`
`489`	`492`	`}`
`490`	`493`
`491`	`494`	`protected override void OnParametersSet()`
Original file line number	Diff line number	Diff line change
`@@ -51,6 +51,7 @@ else`
`51`	`51`	`private bool DisplayTickets = true;`
`52`	`52`	`private Device selectedDeviceOpt = new ();`
`53`	`53`	`private FwoOwner selectedOwnerOpt = new (){ Id = -1 };`
	`54`	`+ private bool JumpedIn = false;`
`54`	`55`
`55`	`56`
`56`	`57`	`protected override async Task OnInitializedAsync()`
`@@ -69,9 +70,16 @@ else`
`69`	`70`	`await HandleTicketId();`
`70`	`71`	`await Select();`
`71`	`72`	`wfHandler.SetContinueEnv(ObjAction.implement);`
`72`		`- if(wfHandler.ActTicket.Tasks.Count >= 1 && wfHandler.ActTicket.Tasks.First().ImplementationTasks.Count >= 1)`
	`73`	`+ if(wfHandler.ActTicket.Tasks.Count > 0 && wfHandler.ActTicket.Tasks[0].ImplementationTasks.Count > 0)`
`73`	`74`	`{`
`74`		`- await wfHandler.ContinueImplPhase(wfHandler.ActTicket.Tasks.First().ImplementationTasks.First());`
	`75`	`+ if(JumpedIn && authenticationStateTask!.Result.User.IsInRole(Roles.Admin) \|\| authenticationStateTask!.Result.User.IsInRole(Roles.Auditor))`
	`76`	`+ {`
	`77`	`+ wfHandler.SelectImplTask(wfHandler.ActTicket.Tasks[0].ImplementationTasks[0], ObjAction.display);`
	`78`	`+ }`
	`79`	`+ else`
	`80`	`+ {`
	`81`	`+ await wfHandler.ContinueImplPhase(wfHandler.ActTicket.Tasks[0].ImplementationTasks[0]);`
	`82`	`+ }`
`75`	`83`	`}`
`76`	`84`	`InitComplete = true;`
`77`	`85`	`}`
`@@ -90,6 +98,10 @@ else`
`90`	`98`	`{`
`91`	`99`	`NavigationManager.NavigateTo($"/request/{newPhase.ToString()}s/{TicketId}");`
`92`	`100`	`}`
	`101`	`+ else`
	`102`	`+ {`
	`103`	`+ JumpedIn = true;`
	`104`	`+ }`
`93`	`105`	`}`
`94`	`106`	`}`
`95`	`107`