Update permissions in other views (#4630)

* remove permission from branch selector

* check permission for object details and items

* update types

* update mock data

* fix loading state for items

* update test for role-management (will be improved)

* skip anonymous test for now

* use admin auth for artifacts

* fix artifacts details view with object permission

* fix filter test

* add kind for filter in use object items for permission

* fix auth for object list

* fix auth

* skip anonymous profile test

* skip profiles

* use auth in hierarchical view test

* fix search e2e

* fix token.spec.ts

* fix profile

* permission for profile

* add flag for artifact

* remove log

* fix unauth test

* update permissions structure to not provide a message if it's allowed + relationship example

* add permissions for graphql queries

* add message from api on 403

* update message

* update message

* fix properties

* update permissions for groups and ipam

* add error check in details view

* add permission in ipam

* add error in ipam

* add permissions in relationships view

* remove permission from branch selector

* check permission for object details and items

* update types

* update mock data

* fix loading state for items

* update test for role-management (will be improved)

* skip anonymous test for now

* use admin auth for artifacts

* fix artifacts details view with object permission

* fix filter test

* add kind for filter in use object items for permission

* fix auth for object list

* fix auth

* skip anonymous profile test

* skip profiles

* use auth in hierarchical view test

* fix search e2e

* fix token.spec.ts

* fix profile

* permission for profile

* add flag for artifact

* remove log

* fix unauth test

* update permissions structure to not provide a message if it's allowed + relationship example

* add message from api on 403

* update message

* update message

* start update messages and use new logic with current branch

* update types + renaming

* better message

* disable generic selector item when not allowed to create

* moved to permission folder

* enabled skipped tests

* update types

* remove old file

* replace imports

* fix mock data

* use new getPermissions query

* get permissions for proposed change create

* update permissions for conflict

* update permissions for edit proposed changes

* update permissions for proposed changes

* remove permission from branch selector

* check permission for object details and items

* update types

* update mock data

* fix loading state for items

* update test for role-management (will be improved)

* skip anonymous test for now

* use admin auth for artifacts

* fix artifacts details view with object permission

* fix filter test

* add kind for filter in use object items for permission

* fix auth for object list

* fix auth

* skip anonymous profile test

* skip profiles

* use auth in hierarchical view test

* fix search e2e

* fix token.spec.ts

* fix profile

* permission for profile

* add flag for artifact

* remove log

* fix unauth test

* update permissions structure to not provide a message if it's allowed + relationship example

* add message from api on 403

* update message

* update message

* start update messages and use new logic with current branch

* update types + renaming

* better message

* disable generic selector item when not allowed to create

* moved to permission folder

* enabled skipped tests

* fix mock data

* fix number pool

* fix profiles spec

* fix error causing

* clean up old permissions

* fix permissions call for array

* update mock data

* update mock data

* updadte logic for branches

* update permissions for authenticated

* update permissions for threads and comments

* fix tutorial

* start update table for permissions

* cleaning

* update permissions for role management

* update permissions

* update router for artifacts and graphql

* lint

* remove logs

* improve test and fix generate artifacts

* update mock data

* revert use auth role for forms

* fix permission for prefixes list

* fix prefix list permission

* fix ipam title crashing when error

* fix thread permission

* wait for view to be loaded

* update loading message + quick fix for role access (backend issue)

* update mock data

---------

Co-authored-by: bilalabbad <[email protected]>

Author: pa-lem

frontend/app/src/components/conversations/thread.tsx

@@ -9,6 +9,9 @@ import graphqlClient from "@/graphql/graphqlClientApollo";
 import { createObject } from "@/graphql/mutations/objects/createObject";
 import { updateObjectWithId } from "@/graphql/mutations/objects/updateObjectWithId";
 import { useAuth } from "@/hooks/useAuth";
+import useQuery from "@/hooks/useQuery";
+import { getObjectPermissionsQuery } from "@/screens/permission/queries/getObjectPermissions";
+import { getPermission } from "@/screens/permission/utils";
 import { currentBranchAtom } from "@/state/atoms/branches.atom";
 import { datetimeAtom } from "@/state/atoms/time.atom";
 import { classNames } from "@/utils/common";
@@ -48,6 +51,13 @@ export const Thread = (props: tThread) => {
   const [confirmModal, setConfirmModal] = useState(false);
   const [markAsResolved, setMarkAsResolved] = useState(false);
 
+  const { loading, data } = useQuery(
+    gql(getObjectPermissionsQuery(PROPOSED_CHANGES_THREAD_COMMENT_OBJECT))
+  );
+
+  const permission =
+    data && getPermission(data?.[PROPOSED_CHANGES_THREAD_COMMENT_OBJECT]?.permissions?.edges);
+
   const handleSubmit = async ({ comment }: { comment: string }) => {
     try {
       setIsLoading(true);
@@ -201,7 +211,10 @@ export const Thread = (props: tThread) => {
         <div className="flex justify-between">
           {MarkAsResolved}
 
-          <Button onClick={() => setDisplayAddComment(true)} disabled={!auth?.permissions?.write}>
+          <Button
+            onClick={() => setDisplayAddComment(true)}
+            disabled={loading || !permission?.create?.isAllowed}
+          >
             Reply
           </Button>
         </div>

frontend/app/src/components/display/properties-popover.tsx

@@ -1,6 +1,6 @@
 import { ButtonWithTooltip } from "@/components/buttons/button-primitive";
-import { usePermission } from "@/hooks/usePermission";
 import ObjectItemMetaEdit from "@/screens/object-item-meta-edit/object-item-meta-edit";
+import { Permission } from "@/screens/permission/types";
 import { metaEditFieldDetailsState } from "@/state/atoms/showMetaEdit.atom copy";
 import { Icon } from "@iconify-icon/react";
 import { useAtom } from "jotai/index";
@@ -16,6 +16,7 @@ interface PropertiesEditTriggerProps {
   data: any;
   schema: any;
   hideHeader?: boolean;
+  permission: Permission;
 }
 
 const PropertiesPopover = ({
@@ -26,8 +27,8 @@ const PropertiesPopover = ({
   data,
   schema,
   hideHeader,
+  permission,
 }: PropertiesEditTriggerProps) => {
-  const permission = usePermission();
   const [showMetaEditModal, setShowMetaEditModal] = useState(false);
   const [metaEditFieldDetails, setMetaEditFieldDetails] = useAtom(metaEditFieldDetailsState);
 
@@ -56,9 +57,9 @@ const PropertiesPopover = ({
                   });
                   setShowMetaEditModal(true);
                 }}
-                disabled={!permission.write.allow}
-                tooltipEnabled={!permission.write.allow}
-                tooltipContent={permission.write.message ?? undefined}
+                disabled={!permission.update.isAllowed}
+                tooltipEnabled={!permission.update.isAllowed}
+                tooltipContent={permission.update.message ?? undefined}
                 data-testid="properties-edit-button"
               >
                 <Icon icon="mdi:pencil" className="text-custom-blue-500" />

frontend/app/src/components/form/object-edit-slide-over-trigger.tsx

@@ -1,24 +1,26 @@
 import { ButtonProps, ButtonWithTooltip } from "@/components/buttons/button-primitive";
 import SlideOver, { SlideOverTitle } from "@/components/display/slide-over";
-import { usePermission } from "@/hooks/usePermission";
 import ObjectItemEditComponent from "@/screens/object-item-edit/object-item-edit-paginated";
+import { Permission } from "@/screens/permission/types";
 import { IModelSchema } from "@/state/atoms/schema.atom";
+
 import { Icon } from "@iconify-icon/react";
 import { useState } from "react";
 
 interface ObjectEditSlideOverTriggerProps extends ButtonProps {
   data: any;
   schema: IModelSchema;
   onUpdateComplete?: () => void;
+  permission: Permission;
 }
 
 const ObjectEditSlideOverTrigger = ({
   data,
   schema,
   onUpdateComplete,
+  permission,
   ...props
 }: ObjectEditSlideOverTriggerProps) => {
-  const permission = usePermission();
   const [isEditDrawerOpen, setIsEditDrawerOpen] = useState(false);
 
   return (
@@ -28,9 +30,9 @@ const ObjectEditSlideOverTrigger = ({
         variant="outline"
         size="icon"
         onClick={() => setIsEditDrawerOpen(true)}
-        disabled={!permission.write.allow}
-        tooltipEnabled={!permission.write.allow}
-        tooltipContent={permission.write.message ?? undefined}
+        disabled={!permission.create.isAllowed}
+        tooltipEnabled={!permission.create.isAllowed}
+        tooltipContent={permission.create.message ?? undefined}
         data-testid="edit-button"
         {...props}
       >

frontend/app/src/components/table/table.tsx

@@ -5,6 +5,7 @@ import { classNames } from "@/utils/common";
 import { Icon } from "@iconify-icon/react";
 import { Link } from "react-router-dom";
 
+import { Permission } from "@/screens/permission/types";
 import { ReactNode, isValidElement } from "react";
 import {
   DropdownMenu,
@@ -35,9 +36,10 @@ type TableProps = {
   onDelete?: (row: tRow) => void;
   onUpdate?: (row: tRow) => void;
   className?: string;
+  permission?: Permission;
 };
 
-export const Table = ({ columns, rows, onDelete, onUpdate, className }: TableProps) => {
+export const Table = ({ columns, rows, onDelete, onUpdate, className, permission }: TableProps) => {
   const auth = useAuth();
 
   return (
@@ -110,7 +112,7 @@ export const Table = ({ columns, rows, onDelete, onUpdate, className }: TablePro
                       {onUpdate && (
                         <DropdownMenuItem
                           onClick={() => onUpdate(row)}
-                          disabled={!auth?.permissions?.write}
+                          disabled={!permission?.update?.isAllowed}
                           data-testid="update-row-button"
                         >
                           <Icon icon="mdi:pencil" className="text-custom-blue-500" />
@@ -121,7 +123,7 @@ export const Table = ({ columns, rows, onDelete, onUpdate, className }: TablePro
                       {onDelete && (
                         <DropdownMenuItem
                           onClick={() => onDelete(row)}
-                          disabled={!auth?.permissions?.write}
+                          disabled={!permission?.delete?.isAllowed}
                           data-testid="delete-row-button"
                         >
                           <Icon icon="mdi:trash-outline" className="text-red-500" />

frontend/app/src/graphql/queries/groups/getGroups.ts

@@ -25,6 +25,17 @@ query GET_GROUPS {
         }
       }
     }
+    permissions {
+      edges {
+        node {
+          kind
+          view
+          create
+          update
+          delete
+        }
+      }
+    }
   }
 }
 `);

frontend/app/src/graphql/queries/ipam/ip-address.ts

@@ -52,6 +52,17 @@ export const GET_IP_ADDRESSES = gql`
           }
         }
       }
+      permissions {
+        edges {
+          node {
+            kind
+            view
+            create
+            update
+            delete
+          }
+        }
+      }
     }
   }
 `;

frontend/app/src/graphql/queries/ipam/prefixes.ts

@@ -88,6 +88,17 @@ export const GET_PREFIXES = gql`
           }
         }
       }
+      permissions {
+        edges {
+          node {
+            kind
+            view
+            create
+            update
+            delete
+          }
+        }
+      }
     }
   }
 `;
@@ -156,6 +167,17 @@ export const GET_PREFIX = gql`
           }
         }
       }
+      permissions {
+        edges {
+          node {
+            kind
+            view
+            create
+            update
+            delete
+          }
+        }
+      }
     }
   }
 `;

frontend/app/src/graphql/queries/proposed-changes/getProposedChanges.ts

@@ -69,6 +69,17 @@ export const GET_PROPOSED_CHANGES = gql`
         }
         __typename
       }
+      permissions {
+        edges {
+          node {
+            kind
+            view
+            create
+            update
+            delete
+          }
+        }
+      }
       __typename
     }
     CoreProposedChangeVisible: CoreProposedChange(state__values: $statesVisible) {

frontend/app/src/graphql/queries/proposed-changes/getProposedChangesObjectThreads.ts

@@ -16,6 +16,17 @@ query getProposedChangesThreadsFor{{kind}} {
         }
       }
     }
+    permissions {
+      edges {
+        node {
+          kind
+          view
+          create
+          update
+          delete
+        }
+      }
+    }
   }
 }
 `);

frontend/app/src/graphql/queries/role-management/getAccounts.ts

@@ -32,6 +32,17 @@ export const GET_ROLE_MANAGEMENT_ACCOUNTS = gql`
           }
         }
       }
+      permissions {
+        edges {
+          node {
+            kind
+            view
+            create
+            update
+            delete
+          }
+        }
+      }
     }
   }
 `;