NotificationsYou must be signed in to change notification settings
Fork928
Star10.1k

Commitc05da12

committed

do not show app links to users without workspace update access

1 parentbccde3f commitc05da12Copy full SHA for c05da12

File tree

6 files changed

+137

-35

lines changed

site/src
- components
  - Resources
    - Resources.tsx
  - Workspace
    - Workspace.stories.tsx
    - Workspace.tsx
- pages/WorkspacePage
  - WorkspacePage.tsx
- xServices
  - auth
    - authSelectors.ts
  - workspace
    - workspaceXService.ts

6 files changed

+137

-35

lines changed

`‎site/src/components/Resources/Resources.tsx`

Lines changed: 25 additions & 22 deletions

Original file line number	Diff line number	Diff line change
`@@ -63,9 +63,10 @@ interface ResourcesProps {`
`63`	`63`	`resources?:WorkspaceResource[]`
`64`	`64`	`getResourcesError?:Error`
`65`	`65`	`workspace:Workspace`
	`66`	`+canUpdateWorkspace:boolean`
`66`	`67`	`}`
`67`	`68`
`68`		`-exportconstResources:FC<ResourcesProps>=({ resources, getResourcesError, workspace})=>{`
	`69`	`+exportconstResources:FC<ResourcesProps>=({ resources, getResourcesError, workspace, canUpdateWorkspace})=>{`
`69`	`70`	`conststyles=useStyles()`
`70`	`71`	`consttheme:Theme=useTheme()`
`71`	`72`
`@@ -89,7 +90,7 @@ export const Resources: FC<ResourcesProps> = ({ resources, getResourcesError, wo`
`89`	`90`	`<AgentHelpTooltip/>`
`90`	`91`	`</Stack>`
`91`	`92`	`</TableCell>`
`92`		`-<TableCell>{Language.accessLabel}</TableCell>`
	`93`	`+{canUpdateWorkspace&&<TableCell>{Language.accessLabel}</TableCell>}`
`93`	`94`	`<TableCell>{Language.statusLabel}</TableCell>`
`94`	`95`	`</TableHeaderRow>`
`95`	`96`	`</TableHead>`
`@@ -130,28 +131,30 @@ export const Resources: FC<ResourcesProps> = ({ resources, getResourcesError, wo`
`130`	`131`	`{agent.name}`
`131`	`132`	`<spanclassName={styles.operatingSystem}>{agent.operating_system}</span>`
`132`	`133`	`</TableCell>`
`133`		`-<TableCell>`
`134`		`-<Stack>`
`135`		`-{agent.status==="connected"&&(`
`136`		`-<TerminalLink`
`137`		`-className={styles.accessLink}`
`138`		`-workspaceName={workspace.name}`
`139`		`-agentName={agent.name}`
`140`		`-userName={workspace.owner_name}`
`141`		`-/>`
`142`		`-)}`
`143`		`-{agent.status==="connected"&&`
`144`		`-agent.apps.map((app)=>(`
`145`		`-<AppLink`
`146`		`-key={app.name}`
`147`		`-appIcon={app.icon}`
`148`		`-appName={app.name}`
`149`		`-userName={workspace.owner_name}`
	`134`	`+{canUpdateWorkspace&&(`
	`135`	`+<TableCell>`
	`136`	`+<Stack>`
	`137`	`+{agent.status==="connected"&&(`
	`138`	`+<TerminalLink`
	`139`	`+className={styles.accessLink}`
`150`	`140`	`workspaceName={workspace.name}`
	`141`	`+agentName={agent.name}`
	`142`	`+userName={workspace.owner_name}`
`151`	`143`	`/>`
`152`		`-))}`
`153`		`-</Stack>`
`154`		`-</TableCell>`
	`144`	`+)}`
	`145`	`+{agent.status==="connected"&&`
	`146`	`+agent.apps.map((app)=>(`
	`147`	`+<AppLink`
	`148`	`+key={app.name}`
	`149`	`+appIcon={app.icon}`
	`150`	`+appName={app.name}`
	`151`	`+userName={workspace.owner_name}`
	`152`	`+workspaceName={workspace.name}`
	`153`	`+/>`
	`154`	`+))}`
	`155`	`+</Stack>`
	`156`	`+</TableCell>`
	`157`	`+)}`
`155`	`158`	`<TableCell>`
`156`	`159`	`<spanstyle={{color:getDisplayAgentStatus(theme,agent).color}}>`
`157`	`160`	`{getDisplayAgentStatus(theme,agent).status}`

`‎site/src/components/Workspace/Workspace.stories.tsx`

Lines changed: 7 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -22,6 +22,13 @@ Started.args = {`
`22`	`22`	`handleStop:action("stop"),`
`23`	`23`	`resources:[Mocks.MockWorkspaceResource,Mocks.MockWorkspaceResource2],`
`24`	`24`	`builds:[Mocks.MockWorkspaceBuild],`
	`25`	`+canUpdateWorkspace:true,`
	`26`	`+}`
	`27`	`+`
	`28`	`+exportconstWithoutUpdateAccess=Template.bind({})`
	`29`	`+WithoutUpdateAccess.args={`
	`30`	`+ ...Started.args,`
	`31`	`+canUpdateWorkspace:false,`
`25`	`32`	`}`
`26`	`33`
`27`	`34`	`exportconstStarting=Template.bind({})`

`‎site/src/components/Workspace/Workspace.tsx`

Lines changed: 8 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -26,6 +26,7 @@ export interface WorkspaceProps {`
`26`	`26`	`resources?:TypesGen.WorkspaceResource[]`
`27`	`27`	`getResourcesError?:Error`
`28`	`28`	`builds?:TypesGen.WorkspaceBuild[]`
	`29`	`+canUpdateWorkspace:boolean`
`29`	`30`	`}`
`30`	`31`
`31`	`32`	`/**`
`@@ -42,6 +43,7 @@ export const Workspace: FC<WorkspaceProps> = ({`
`42`	`43`	`resources,`
`43`	`44`	`getResourcesError,`
`44`	`45`	`builds,`
	`46`	`+ canUpdateWorkspace,`
`45`	`47`	`})=>{`
`46`	`48`	`conststyles=useStyles()`
`47`	`49`
`@@ -74,7 +76,12 @@ export const Workspace: FC<WorkspaceProps> = ({`
`74`	`76`
`75`	`77`	`<WorkspaceStatsworkspace={workspace}/>`
`76`	`78`
`77`		`-<Resourcesresources={resources}getResourcesError={getResourcesError}workspace={workspace}/>`
	`79`	`+<Resources`
	`80`	`+resources={resources}`
	`81`	`+getResourcesError={getResourcesError}`
	`82`	`+workspace={workspace}`
	`83`	`+canUpdateWorkspace={canUpdateWorkspace}`
	`84`	`+/>`
`78`	`85`
`79`	`86`	`<WorkspaceSectiontitle="Timeline"contentsProps={{className:styles.timelineContents}}>`
`80`	`87`	`<BuildsTablebuilds={builds}className={styles.timelineTable}/>`

`‎site/src/pages/WorkspacePage/WorkspacePage.tsx`

Lines changed: 12 additions & 4 deletions

Original file line number	Diff line number	Diff line change
`@@ -1,5 +1,5 @@`
`1`		`-import{useMachine}from"@xstate/react"`
`2`		`-importReact,{useEffect}from"react"`
	`1`	`+import{useMachine,useSelector}from"@xstate/react"`
	`2`	`+importReact,{useContext,useEffect}from"react"`
`3`	`3`	`import{Helmet}from"react-helmet"`
`4`	`4`	`import{useNavigate,useParams}from"react-router-dom"`
`5`	`5`	`import{DeleteWorkspaceDialog}from"../../components/DeleteWorkspaceDialog/DeleteWorkspaceDialog"`
`@@ -8,6 +8,8 @@ import { FullScreenLoader } from "../../components/Loader/FullScreenLoader"`
`8`	`8`	`import{Workspace}from"../../components/Workspace/Workspace"`
`9`	`9`	`import{firstOrItem}from"../../util/array"`
`10`	`10`	`import{pageTitle}from"../../util/page"`
	`11`	`+import{selectUser}from"../../xServices/auth/authSelectors"`
	`12`	`+import{XServiceContext}from"../../xServices/StateContext"`
`11`	`13`	`import{workspaceMachine}from"../../xServices/workspace/workspaceXService"`
`12`	`14`	`import{workspaceScheduleBannerMachine}from"../../xServices/workspaceSchedule/workspaceScheduleBannerXService"`
`13`	`15`
`@@ -17,8 +19,13 @@ export const WorkspacePage: React.FC = () => {`
`17`	`19`	`constusername=firstOrItem(usernameQueryParam,null)`
`18`	`20`	`constworkspaceName=firstOrItem(workspaceQueryParam,null)`
`19`	`21`
`20`		`-const[workspaceState,workspaceSend]=useMachine(workspaceMachine)`
`21`		`-const{ workspace, resources, getWorkspaceError, getResourcesError, builds}=workspaceState.context`
	`22`	`+constxServices=useContext(XServiceContext)`
	`23`	`+constme=useSelector(xServices.authXService,selectUser)`
	`24`	`+`
	`25`	`+const[workspaceState,workspaceSend]=useMachine(workspaceMachine.withContext({userId:me?.id}))`
	`26`	`+const{ workspace, resources, getWorkspaceError, getResourcesError, builds, permissions}=workspaceState.context`
	`27`	`+`
	`28`	`+constcanUpdateWorkspace=!!permissions?.updateWorkspace`
`22`	`29`
`23`	`30`	`const[bannerState,bannerSend]=useMachine(workspaceScheduleBannerMachine)`
`24`	`31`
`@@ -57,6 +64,7 @@ export const WorkspacePage: React.FC = () => {`
`57`	`64`	`resources={resources}`
`58`	`65`	`getResourcesError={getResourcesErrorinstanceofError ?getResourcesError :undefined}`
`59`	`66`	`builds={builds}`
	`67`	`+canUpdateWorkspace={canUpdateWorkspace}`
`60`	`68`	`/>`
`61`	`69`	`<DeleteWorkspaceDialog`
`62`	`70`	`isOpen={workspaceState.matches({ready:{build:"askingDelete"}})}`

`‎site/src/xServices/auth/authSelectors.ts`

Lines changed: 4 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -10,3 +10,7 @@ export const selectOrgId = (state: AuthState): string \| undefined => {`
`10`	`10`	`exportconstselectPermissions=(state:AuthState):AuthContext["permissions"]=>{`
`11`	`11`	`returnstate.context.permissions`
`12`	`12`	`}`
	`13`	`+`
	`14`	`+exportconstselectUser=(state:AuthState):AuthContext["me"]=>{`
	`15`	`+returnstate.context.me`
	`16`	`+}`

`‎site/src/xServices/workspace/workspaceXService.ts`

Lines changed: 81 additions & 8 deletions

Original file line number	Diff line number	Diff line change
`@@ -17,6 +17,8 @@ const Language = {`
`17`	`17`	`buildError:"Workspace action failed.",`
`18`	`18`	`}`
`19`	`19`
	`20`	`+typePermissions=Record<keyofReturnType<typeofpermissionsToCheck>,boolean>`
	`21`	`+`
`20`	`22`	`exportinterfaceWorkspaceContext{`
`21`	`23`	`workspace?:TypesGen.Workspace`
`22`	`24`	`template?:TypesGen.Template`
`@@ -26,14 +28,18 @@ export interface WorkspaceContext {`
`26`	`28`	`// error creating a new WorkspaceBuild`
`27`	`29`	`buildError?:Error\|unknown`
`28`	`30`	`// these are separate from getX errors because they don't make the page unusable`
`29`		`-refreshWorkspaceError:Error\|unknown`
`30`		`-refreshTemplateError:Error\|unknown`
`31`		`-getResourcesError:Error\|unknown`
	`31`	`+refreshWorkspaceError?:Error\|unknown`
	`32`	`+refreshTemplateError?:Error\|unknown`
	`33`	`+getResourcesError?:Error\|unknown`
`32`	`34`	`// Builds`
`33`	`35`	`builds?:TypesGen.WorkspaceBuild[]`
`34`	`36`	`getBuildsError?:Error\|unknown`
`35`	`37`	`loadMoreBuildsError?:Error\|unknown`
`36`		`-cancellationMessage:string`
	`38`	`+cancellationMessage?:string`
	`39`	`+// permissions`
	`40`	`+permissions?:Permissions`
	`41`	`+checkPermissionsError?:Error\|unknown`
	`42`	`+userId?:string`
`37`	`43`	`}`
`38`	`44`
`39`	`45`	`exporttypeWorkspaceEvent=`
`@@ -48,6 +54,30 @@ export type WorkspaceEvent =`
`48`	`54`	`\|{type:"LOAD_MORE_BUILDS"}`
`49`	`55`	`\|{type:"REFRESH_TIMELINE"}`
`50`	`56`
	`57`	`+exportconstchecks={`
	`58`	`+readWorkspace:"readWorkspace",`
	`59`	`+updateWorkspace:"updateWorkspace",`
	`60`	`+}asconst`
	`61`	`+`
	`62`	`+constpermissionsToCheck=(workspace:TypesGen.Workspace)=>({`
	`63`	`+[checks.readWorkspace]:{`
	`64`	`+object:{`
	`65`	`+resource_type:"workspace",`
	`66`	`+resource_id:workspace.id,`
	`67`	`+owner_id:workspace.owner_id,`
	`68`	`+},`
	`69`	`+action:"read",`
	`70`	`+},`
	`71`	`+[checks.updateWorkspace]:{`
	`72`	`+object:{`
	`73`	`+resource_type:"workspace",`
	`74`	`+resource_id:workspace.id,`
	`75`	`+owner_id:workspace.owner_id,`
	`76`	`+},`
	`77`	`+action:"update",`
	`78`	`+},`
	`79`	`+})`
	`80`	`+`
`51`	`81`	`exportconstworkspaceMachine=createMachine(`
`52`	`82`	`{`
`53`	`83`	`tsTypes:{}asimport("./workspaceXService.typegen").Typegen0,`
`@@ -82,6 +112,9 @@ export const workspaceMachine = createMachine(`
`82`	`112`	`loadMoreBuilds:{`
`83`	`113`	`data:TypesGen.WorkspaceBuild[]`
`84`	`114`	`}`
	`115`	`+checkPermissions:{`
	`116`	`+data:TypesGen.UserAuthorizationResponse`
	`117`	`+}`
`85`	`118`	`},`
`86`	`119`	`},`
`87`	`120`	`id:"workspaceState",`
`@@ -99,7 +132,7 @@ export const workspaceMachine = createMachine(`
`99`	`132`	`src:"getWorkspace",`
`100`	`133`	`id:"getWorkspace",`
`101`	`134`	`onDone:{`
`102`		`-target:"ready",`
	`135`	`+target:"gettingPermissions",`
`103`	`136`	`actions:["assignWorkspace"],`
`104`	`137`	`},`
`105`	`138`	`onError:{`
`@@ -109,6 +142,25 @@ export const workspaceMachine = createMachine(`
`109`	`142`	`},`
`110`	`143`	`tags:"loading",`
`111`	`144`	`},`
	`145`	`+gettingPermissions:{`
	`146`	`+entry:"clearGetPermissionsError",`
	`147`	`+invoke:{`
	`148`	`+src:"checkPermissions",`
	`149`	`+id:"checkPermissions",`
	`150`	`+onDone:[`
	`151`	`+{`
	`152`	`+actions:["assignPermissions"],`
	`153`	`+target:"ready",`
	`154`	`+},`
	`155`	`+],`
	`156`	`+onError:[`
	`157`	`+{`
	`158`	`+actions:"assignGetPermissionsError",`
	`159`	`+target:"error",`
	`160`	`+},`
	`161`	`+],`
	`162`	`+},`
	`163`	`+},`
`112`	`164`	`ready:{`
`113`	`165`	`type:"parallel",`
`114`	`166`	`states:{`
`@@ -312,6 +364,7 @@ export const workspaceMachine = createMachine(`
`312`	`364`	`workspace:undefined,`
`313`	`365`	`template:undefined,`
`314`	`366`	`build:undefined,`
	`367`	`+permissions:undefined,`
`315`	`368`	`}),`
`316`	`369`	`assignWorkspace:assign({`
`317`	`370`	`workspace:(_,event)=>event.data,`
`@@ -323,6 +376,17 @@ export const workspaceMachine = createMachine(`
`323`	`376`	`assignTemplate:assign({`
`324`	`377`	`template:(_,event)=>event.data,`
`325`	`378`	`}),`
	`379`	`+assignPermissions:assign({`
	`380`	`+// Setting event.data as Permissions to be more stricted. So we know`
	`381`	`+// what permissions we asked for.`
	`382`	`+permissions:(_,event)=>event.dataasPermissions,`
	`383`	`+}),`
	`384`	`+assignGetPermissionsError:assign({`
	`385`	`+checkPermissionsError:(_,event)=>event.data,`
	`386`	`+}),`
	`387`	`+clearGetPermissionsError:assign({`
	`388`	`+checkPermissionsError:(_)=>undefined,`
	`389`	`+}),`
`326`	`390`	`assignBuild:(_,event)=>`
`327`	`391`	`assign({`
`328`	`392`	`build:event.data,`
`@@ -347,7 +411,7 @@ export const workspaceMachine = createMachine(`
`347`	`411`	`cancellationMessage:undefined,`
`348`	`412`	`}),`
`349`	`413`	`displayCancellationError:(context)=>{`
`350`		`-displayError(context.cancellationMessage)`
	`414`	`+displayError(context.cancellationMessage\|\|"Cancellation failed")`
`351`	`415`	`},`
`352`	`416`	`assignRefreshWorkspaceError:(_,event)=>`
`353`	`417`	`assign({`
`@@ -487,14 +551,23 @@ export const workspaceMachine = createMachine(`
`487`	`551`	`if(context.workspace){`
`488`	`552`	`returnawaitAPI.getWorkspaceBuilds(context.workspace.id)`
`489`	`553`	`}else{`
`490`		`-throwError("Cannotrefresh workspace without id")`
	`554`	`+throwError("Cannotget builds without id")`
`491`	`555`	`}`
`492`	`556`	`},`
`493`	`557`	`loadMoreBuilds:async(context)=>{`
`494`	`558`	`if(context.workspace){`
`495`	`559`	`returnawaitAPI.getWorkspaceBuilds(context.workspace.id)`
`496`	`560`	`}else{`
`497`		`-throwError("Cannot refresh workspace without id")`
	`561`	`+throwError("Cannot load more builds without id")`
	`562`	`+}`
	`563`	`+},`
	`564`	`+checkPermissions:async(context)=>{`
	`565`	`+if(context.workspace&&context.userId){`
	`566`	`+returnawaitAPI.checkUserPermissions(context.userId,{`
	`567`	`+checks:permissionsToCheck(context.workspace),`
	`568`	`+})`
	`569`	`+}else{`
	`570`	`+throwError("Cannot check permissions without both workspace and user id")`
`498`	`571`	`}`
`499`	`572`	`},`
`500`	`573`	`},`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commitc05da12

File tree

6 files changed

6 files changed

`‎site/src/components/Resources/Resources.tsx`

`‎site/src/components/Workspace/Workspace.stories.tsx`

`‎site/src/components/Workspace/Workspace.tsx`

`‎site/src/pages/WorkspacePage/WorkspacePage.tsx`

`‎site/src/xServices/auth/authSelectors.ts`

`‎site/src/xServices/workspace/workspaceXService.ts`

0 commit comments