mirrors/posthog
0
0
Fork 0
mirror of https://github.com/PostHog/posthog.git synced 2024-11-29 03:04:16 +01:00
Code Issues Releases Activity
7b36e5f3d9
posthog/ee/api/dashboard_collaborator.py

117 lines
4.9 KiB
Python
Raw Normal View History

chore: Add Pyupgrade rules (#21714) * Add Pyupgrade rules * Set correct Python version
2024-04-25 09:22:28 +02:00
from typing import Any, cast
Dashboard privilege API and collaborators UI (#8424) * Add basic `/api/projects/:id/dashboard/:id/collaborators` * Handle more collaboration cases and add base tests * Add some collaborators UI to share modal * Improve Python typing * Improve TS typing * Allow addition and deletion of collaborators from UI * Add upsell prototype * Improve upsell button * Add `effective_restriction_level` to `DashboardSerializer` * Improve `LemonSelect` value handling * Improve `LemonSelect` behavior when selecting existing value * Refactor the way privilege level name is determined * Don't destroy `ShareModal` on close to avoid logic remounting * Split out upsell into own PR * Fix TS * Fix typing * Increase security with more tests * Inline `parents_query_dict` * Dashboard collaborator bubbles (#8450) * Add collaborator bubbles to restricted dashboard headers * Rename `index.tsx` to `ProfilePicture.tsx` for readability * Improve tooltip handling * Create ProfileBubbles.stories.tsx * Make collaborator bubbles tooltip dashboard-level * Always show collaborator bubbles * Dashboard restrictions (#8462) * Add frontend-side restrictions editing restrictions to dashboards * Restrict `InsightCard` * Align info message margin * Disallow locking yourself out of the dashboard * Handle dashboard restrictions in the insight page * Allow disabling `InsightsTable` series checkbox * Fix minor issues * Align .page-title-row height * Fix typing * Fix arg name * Address review feedback * Fix n+1 queries issue
2022-02-08 17:22:09 +01:00
from django.db import IntegrityError
Finalize dashboard restrictions (#8527) * Update test_insight.py * Secure insight endpoint for dashboard restrictions * Prohibit unauthorized deletion of restricted dashboard * Update class name in snapshots * Address feedback
2022-02-14 13:55:16 +01:00
from rest_framework import exceptions, mixins, serializers, viewsets
feat: Simplify standard permissions (#20172)
2024-02-12 14:55:21 +01:00
from rest_framework.permissions import SAFE_METHODS, BasePermission
Finalize dashboard restrictions (#8527) * Update test_insight.py * Secure insight endpoint for dashboard restrictions * Prohibit unauthorized deletion of restricted dashboard * Update class name in snapshots * Address feedback
2022-02-14 13:55:16 +01:00
from rest_framework.request import Request
Dashboard privilege API and collaborators UI (#8424) * Add basic `/api/projects/:id/dashboard/:id/collaborators` * Handle more collaboration cases and add base tests * Add some collaborators UI to share modal * Improve Python typing * Improve TS typing * Allow addition and deletion of collaborators from UI * Add upsell prototype * Improve upsell button * Add `effective_restriction_level` to `DashboardSerializer` * Improve `LemonSelect` value handling * Improve `LemonSelect` behavior when selecting existing value * Refactor the way privilege level name is determined * Don't destroy `ShareModal` on close to avoid logic remounting * Split out upsell into own PR * Fix TS * Fix typing * Increase security with more tests * Inline `parents_query_dict` * Dashboard collaborator bubbles (#8450) * Add collaborator bubbles to restricted dashboard headers * Rename `index.tsx` to `ProfilePicture.tsx` for readability * Improve tooltip handling * Create ProfileBubbles.stories.tsx * Make collaborator bubbles tooltip dashboard-level * Always show collaborator bubbles * Dashboard restrictions (#8462) * Add frontend-side restrictions editing restrictions to dashboards * Restrict `InsightCard` * Align info message margin * Disallow locking yourself out of the dashboard * Handle dashboard restrictions in the insight page * Allow disabling `InsightsTable` series checkbox * Fix minor issues * Align .page-title-row height * Fix typing * Fix arg name * Address review feedback * Fix n+1 queries issue
2022-02-08 17:22:09 +01:00
from ee.models.dashboard_privilege import DashboardPrivilege
feat: Simplify standard permissions (#20172)
2024-02-12 14:55:21 +01:00
from posthog.api.routing import TeamAndOrgViewSetMixin
Dashboard privilege API and collaborators UI (#8424) * Add basic `/api/projects/:id/dashboard/:id/collaborators` * Handle more collaboration cases and add base tests * Add some collaborators UI to share modal * Improve Python typing * Improve TS typing * Allow addition and deletion of collaborators from UI * Add upsell prototype * Improve upsell button * Add `effective_restriction_level` to `DashboardSerializer` * Improve `LemonSelect` value handling * Improve `LemonSelect` behavior when selecting existing value * Refactor the way privilege level name is determined * Don't destroy `ShareModal` on close to avoid logic remounting * Split out upsell into own PR * Fix TS * Fix typing * Increase security with more tests * Inline `parents_query_dict` * Dashboard collaborator bubbles (#8450) * Add collaborator bubbles to restricted dashboard headers * Rename `index.tsx` to `ProfilePicture.tsx` for readability * Improve tooltip handling * Create ProfileBubbles.stories.tsx * Make collaborator bubbles tooltip dashboard-level * Always show collaborator bubbles * Dashboard restrictions (#8462) * Add frontend-side restrictions editing restrictions to dashboards * Restrict `InsightCard` * Align info message margin * Disallow locking yourself out of the dashboard * Handle dashboard restrictions in the insight page * Allow disabling `InsightsTable` series checkbox * Fix minor issues * Align .page-title-row height * Fix typing * Fix arg name * Address review feedback * Fix n+1 queries issue
2022-02-08 17:22:09 +01:00
from posthog.api.shared import UserBasicSerializer
fix(query-performance): Speed up permissioning in API (#13952) * Get #team_effective_membership_level under test * Extract method into class * Refactor team_effective_membership_level to require less lookups * Test and scaffolding for dashboard methods * Move dashboard methods to user_permissions * Optimize dashboard methods * Insights priviledge logic to user_permissions * Make insight priviledge code efficient * Fix bug to improve efficiency * Refactor efficiency tests * Use UserPermissions in some dashboard-related views * Use UserPermissions in some insight-related views * Fix a typo * Remove insight, dashboard model methods * Experiment: make shared dashboards not have effective_priviledge_levels/effective_restriction_level * Remove team#get_effective_membership_level * Simplify TeamBaseSerializer * Update organization API * Update UserViewSet * update team view * Reduce some lookups * Make UserPermissions not dependant on organization being passed * cast-to-user * Test listing with basic as FE calls it * Update dashboard views * JOIN organizations table, dont rely on request.user.organization * Update snapshots * Handle shared dashboards slightly better * Simplify team API * Fix test_team.py * Update middleware tests * Update ee team tests * Fully refactor a problematic call pattern * Solve ee API errors * Solve lint fails * Reset in insights as well * Cast * Update snapshots * Update snapshots * Update snapshots * Update snapshots * Update snapshots * Update snapshots * Remove merge conflict * Update snapshots * Remove items --------- Co-authored-by: github-actions <41898282+github-actions[bot]@users.noreply.github.com>
2023-01-30 10:44:16 +01:00
from posthog.models import Dashboard, User
from posthog.user_permissions import UserPermissions, UserPermissionsSerializerMixin
Dashboard privilege API and collaborators UI (#8424) * Add basic `/api/projects/:id/dashboard/:id/collaborators` * Handle more collaboration cases and add base tests * Add some collaborators UI to share modal * Improve Python typing * Improve TS typing * Allow addition and deletion of collaborators from UI * Add upsell prototype * Improve upsell button * Add `effective_restriction_level` to `DashboardSerializer` * Improve `LemonSelect` value handling * Improve `LemonSelect` behavior when selecting existing value * Refactor the way privilege level name is determined * Don't destroy `ShareModal` on close to avoid logic remounting * Split out upsell into own PR * Fix TS * Fix typing * Increase security with more tests * Inline `parents_query_dict` * Dashboard collaborator bubbles (#8450) * Add collaborator bubbles to restricted dashboard headers * Rename `index.tsx` to `ProfilePicture.tsx` for readability * Improve tooltip handling * Create ProfileBubbles.stories.tsx * Make collaborator bubbles tooltip dashboard-level * Always show collaborator bubbles * Dashboard restrictions (#8462) * Add frontend-side restrictions editing restrictions to dashboards * Restrict `InsightCard` * Align info message margin * Disallow locking yourself out of the dashboard * Handle dashboard restrictions in the insight page * Allow disabling `InsightsTable` series checkbox * Fix minor issues * Align .page-title-row height * Fix typing * Fix arg name * Address review feedback * Fix n+1 queries issue
2022-02-08 17:22:09 +01:00
Finalize dashboard restrictions (#8527) * Update test_insight.py * Secure insight endpoint for dashboard restrictions * Prohibit unauthorized deletion of restricted dashboard * Update class name in snapshots * Address feedback
2022-02-14 13:55:16 +01:00
class CanEditDashboardCollaborator(BasePermission):
message = "You don't have edit permissions for this dashboard."
Dashboard privilege API and collaborators UI (#8424) * Add basic `/api/projects/:id/dashboard/:id/collaborators` * Handle more collaboration cases and add base tests * Add some collaborators UI to share modal * Improve Python typing * Improve TS typing * Allow addition and deletion of collaborators from UI * Add upsell prototype * Improve upsell button * Add `effective_restriction_level` to `DashboardSerializer` * Improve `LemonSelect` value handling * Improve `LemonSelect` behavior when selecting existing value * Refactor the way privilege level name is determined * Don't destroy `ShareModal` on close to avoid logic remounting * Split out upsell into own PR * Fix TS * Fix typing * Increase security with more tests * Inline `parents_query_dict` * Dashboard collaborator bubbles (#8450) * Add collaborator bubbles to restricted dashboard headers * Rename `index.tsx` to `ProfilePicture.tsx` for readability * Improve tooltip handling * Create ProfileBubbles.stories.tsx * Make collaborator bubbles tooltip dashboard-level * Always show collaborator bubbles * Dashboard restrictions (#8462) * Add frontend-side restrictions editing restrictions to dashboards * Restrict `InsightCard` * Align info message margin * Disallow locking yourself out of the dashboard * Handle dashboard restrictions in the insight page * Allow disabling `InsightsTable` series checkbox * Fix minor issues * Align .page-title-row height * Fix typing * Fix arg name * Address review feedback * Fix n+1 queries issue
2022-02-08 17:22:09 +01:00
Finalize dashboard restrictions (#8527) * Update test_insight.py * Secure insight endpoint for dashboard restrictions * Prohibit unauthorized deletion of restricted dashboard * Update class name in snapshots * Address feedback
2022-02-14 13:55:16 +01:00
def has_permission(self, request: Request, view) -> bool:
Dashboard privilege API and collaborators UI (#8424) * Add basic `/api/projects/:id/dashboard/:id/collaborators` * Handle more collaboration cases and add base tests * Add some collaborators UI to share modal * Improve Python typing * Improve TS typing * Allow addition and deletion of collaborators from UI * Add upsell prototype * Improve upsell button * Add `effective_restriction_level` to `DashboardSerializer` * Improve `LemonSelect` value handling * Improve `LemonSelect` behavior when selecting existing value * Refactor the way privilege level name is determined * Don't destroy `ShareModal` on close to avoid logic remounting * Split out upsell into own PR * Fix TS * Fix typing * Increase security with more tests * Inline `parents_query_dict` * Dashboard collaborator bubbles (#8450) * Add collaborator bubbles to restricted dashboard headers * Rename `index.tsx` to `ProfilePicture.tsx` for readability * Improve tooltip handling * Create ProfileBubbles.stories.tsx * Make collaborator bubbles tooltip dashboard-level * Always show collaborator bubbles * Dashboard restrictions (#8462) * Add frontend-side restrictions editing restrictions to dashboards * Restrict `InsightCard` * Align info message margin * Disallow locking yourself out of the dashboard * Handle dashboard restrictions in the insight page * Allow disabling `InsightsTable` series checkbox * Fix minor issues * Align .page-title-row height * Fix typing * Fix arg name * Address review feedback * Fix n+1 queries issue
2022-02-08 17:22:09 +01:00
if request.method in SAFE_METHODS:
return True
try:
dashboard: Dashboard = Dashboard.objects.get(id=view.parents_query_dict["dashboard_id"])
except Dashboard.DoesNotExist:
raise exceptions.NotFound("Dashboard not found.")
fix(query-performance): Speed up permissioning in API (#13952) * Get #team_effective_membership_level under test * Extract method into class * Refactor team_effective_membership_level to require less lookups * Test and scaffolding for dashboard methods * Move dashboard methods to user_permissions * Optimize dashboard methods * Insights priviledge logic to user_permissions * Make insight priviledge code efficient * Fix bug to improve efficiency * Refactor efficiency tests * Use UserPermissions in some dashboard-related views * Use UserPermissions in some insight-related views * Fix a typo * Remove insight, dashboard model methods * Experiment: make shared dashboards not have effective_priviledge_levels/effective_restriction_level * Remove team#get_effective_membership_level * Simplify TeamBaseSerializer * Update organization API * Update UserViewSet * update team view * Reduce some lookups * Make UserPermissions not dependant on organization being passed * cast-to-user * Test listing with basic as FE calls it * Update dashboard views * JOIN organizations table, dont rely on request.user.organization * Update snapshots * Handle shared dashboards slightly better * Simplify team API * Fix test_team.py * Update middleware tests * Update ee team tests * Fully refactor a problematic call pattern * Solve ee API errors * Solve lint fails * Reset in insights as well * Cast * Update snapshots * Update snapshots * Update snapshots * Update snapshots * Update snapshots * Update snapshots * Remove merge conflict * Update snapshots * Remove items --------- Co-authored-by: github-actions <41898282+github-actions[bot]@users.noreply.github.com>
2023-01-30 10:44:16 +01:00
return view.user_permissions.dashboard(dashboard).can_edit
Dashboard privilege API and collaborators UI (#8424) * Add basic `/api/projects/:id/dashboard/:id/collaborators` * Handle more collaboration cases and add base tests * Add some collaborators UI to share modal * Improve Python typing * Improve TS typing * Allow addition and deletion of collaborators from UI * Add upsell prototype * Improve upsell button * Add `effective_restriction_level` to `DashboardSerializer` * Improve `LemonSelect` value handling * Improve `LemonSelect` behavior when selecting existing value * Refactor the way privilege level name is determined * Don't destroy `ShareModal` on close to avoid logic remounting * Split out upsell into own PR * Fix TS * Fix typing * Increase security with more tests * Inline `parents_query_dict` * Dashboard collaborator bubbles (#8450) * Add collaborator bubbles to restricted dashboard headers * Rename `index.tsx` to `ProfilePicture.tsx` for readability * Improve tooltip handling * Create ProfileBubbles.stories.tsx * Make collaborator bubbles tooltip dashboard-level * Always show collaborator bubbles * Dashboard restrictions (#8462) * Add frontend-side restrictions editing restrictions to dashboards * Restrict `InsightCard` * Align info message margin * Disallow locking yourself out of the dashboard * Handle dashboard restrictions in the insight page * Allow disabling `InsightsTable` series checkbox * Fix minor issues * Align .page-title-row height * Fix typing * Fix arg name * Address review feedback * Fix n+1 queries issue
2022-02-08 17:22:09 +01:00
fix(query-performance): Speed up permissioning in API (#13952) * Get #team_effective_membership_level under test * Extract method into class * Refactor team_effective_membership_level to require less lookups * Test and scaffolding for dashboard methods * Move dashboard methods to user_permissions * Optimize dashboard methods * Insights priviledge logic to user_permissions * Make insight priviledge code efficient * Fix bug to improve efficiency * Refactor efficiency tests * Use UserPermissions in some dashboard-related views * Use UserPermissions in some insight-related views * Fix a typo * Remove insight, dashboard model methods * Experiment: make shared dashboards not have effective_priviledge_levels/effective_restriction_level * Remove team#get_effective_membership_level * Simplify TeamBaseSerializer * Update organization API * Update UserViewSet * update team view * Reduce some lookups * Make UserPermissions not dependant on organization being passed * cast-to-user * Test listing with basic as FE calls it * Update dashboard views * JOIN organizations table, dont rely on request.user.organization * Update snapshots * Handle shared dashboards slightly better * Simplify team API * Fix test_team.py * Update middleware tests * Update ee team tests * Fully refactor a problematic call pattern * Solve ee API errors * Solve lint fails * Reset in insights as well * Cast * Update snapshots * Update snapshots * Update snapshots * Update snapshots * Update snapshots * Update snapshots * Remove merge conflict * Update snapshots * Remove items --------- Co-authored-by: github-actions <41898282+github-actions[bot]@users.noreply.github.com>
2023-01-30 10:44:16 +01:00
class DashboardCollaboratorSerializer(serializers.ModelSerializer, UserPermissionsSerializerMixin):
Dashboard privilege API and collaborators UI (#8424) * Add basic `/api/projects/:id/dashboard/:id/collaborators` * Handle more collaboration cases and add base tests * Add some collaborators UI to share modal * Improve Python typing * Improve TS typing * Allow addition and deletion of collaborators from UI * Add upsell prototype * Improve upsell button * Add `effective_restriction_level` to `DashboardSerializer` * Improve `LemonSelect` value handling * Improve `LemonSelect` behavior when selecting existing value * Refactor the way privilege level name is determined * Don't destroy `ShareModal` on close to avoid logic remounting * Split out upsell into own PR * Fix TS * Fix typing * Increase security with more tests * Inline `parents_query_dict` * Dashboard collaborator bubbles (#8450) * Add collaborator bubbles to restricted dashboard headers * Rename `index.tsx` to `ProfilePicture.tsx` for readability * Improve tooltip handling * Create ProfileBubbles.stories.tsx * Make collaborator bubbles tooltip dashboard-level * Always show collaborator bubbles * Dashboard restrictions (#8462) * Add frontend-side restrictions editing restrictions to dashboards * Restrict `InsightCard` * Align info message margin * Disallow locking yourself out of the dashboard * Handle dashboard restrictions in the insight page * Allow disabling `InsightsTable` series checkbox * Fix minor issues * Align .page-title-row height * Fix typing * Fix arg name * Address review feedback * Fix n+1 queries issue
2022-02-08 17:22:09 +01:00
user = UserBasicSerializer(read_only=True)
dashboard_id = serializers.IntegerField(read_only=True)
user_uuid = serializers.UUIDField(required=True, write_only=True)
class Meta:
model = DashboardPrivilege
fields = [
"id",
"dashboard_id",
"user",
"level",
"added_at",
"updated_at",
"user_uuid", # write_only (see above)
]
Duplicate "user" in read_only_fields (#22314) The read_only_fields list contains "user" twice
2024-05-20 12:48:33 +02:00
read_only_fields = ["id", "dashboard_id", "user"]
Dashboard privilege API and collaborators UI (#8424) * Add basic `/api/projects/:id/dashboard/:id/collaborators` * Handle more collaboration cases and add base tests * Add some collaborators UI to share modal * Improve Python typing * Improve TS typing * Allow addition and deletion of collaborators from UI * Add upsell prototype * Improve upsell button * Add `effective_restriction_level` to `DashboardSerializer` * Improve `LemonSelect` value handling * Improve `LemonSelect` behavior when selecting existing value * Refactor the way privilege level name is determined * Don't destroy `ShareModal` on close to avoid logic remounting * Split out upsell into own PR * Fix TS * Fix typing * Increase security with more tests * Inline `parents_query_dict` * Dashboard collaborator bubbles (#8450) * Add collaborator bubbles to restricted dashboard headers * Rename `index.tsx` to `ProfilePicture.tsx` for readability * Improve tooltip handling * Create ProfileBubbles.stories.tsx * Make collaborator bubbles tooltip dashboard-level * Always show collaborator bubbles * Dashboard restrictions (#8462) * Add frontend-side restrictions editing restrictions to dashboards * Restrict `InsightCard` * Align info message margin * Disallow locking yourself out of the dashboard * Handle dashboard restrictions in the insight page * Allow disabling `InsightsTable` series checkbox * Fix minor issues * Align .page-title-row height * Fix typing * Fix arg name * Address review feedback * Fix n+1 queries issue
2022-02-08 17:22:09 +01:00
chore: Add Pyupgrade rules (#21714) * Add Pyupgrade rules * Set correct Python version
2024-04-25 09:22:28 +02:00
def validate(self, attrs: dict[str, Any]) -> dict[str, Any]:
Dashboard privilege API and collaborators UI (#8424) * Add basic `/api/projects/:id/dashboard/:id/collaborators` * Handle more collaboration cases and add base tests * Add some collaborators UI to share modal * Improve Python typing * Improve TS typing * Allow addition and deletion of collaborators from UI * Add upsell prototype * Improve upsell button * Add `effective_restriction_level` to `DashboardSerializer` * Improve `LemonSelect` value handling * Improve `LemonSelect` behavior when selecting existing value * Refactor the way privilege level name is determined * Don't destroy `ShareModal` on close to avoid logic remounting * Split out upsell into own PR * Fix TS * Fix typing * Increase security with more tests * Inline `parents_query_dict` * Dashboard collaborator bubbles (#8450) * Add collaborator bubbles to restricted dashboard headers * Rename `index.tsx` to `ProfilePicture.tsx` for readability * Improve tooltip handling * Create ProfileBubbles.stories.tsx * Make collaborator bubbles tooltip dashboard-level * Always show collaborator bubbles * Dashboard restrictions (#8462) * Add frontend-side restrictions editing restrictions to dashboards * Restrict `InsightCard` * Align info message margin * Disallow locking yourself out of the dashboard * Handle dashboard restrictions in the insight page * Allow disabling `InsightsTable` series checkbox * Fix minor issues * Align .page-title-row height * Fix typing * Fix arg name * Address review feedback * Fix n+1 queries issue
2022-02-08 17:22:09 +01:00
dashboard: Dashboard = self.context["dashboard"]
fix(query-performance): Speed up permissioning in API (#13952) * Get #team_effective_membership_level under test * Extract method into class * Refactor team_effective_membership_level to require less lookups * Test and scaffolding for dashboard methods * Move dashboard methods to user_permissions * Optimize dashboard methods * Insights priviledge logic to user_permissions * Make insight priviledge code efficient * Fix bug to improve efficiency * Refactor efficiency tests * Use UserPermissions in some dashboard-related views * Use UserPermissions in some insight-related views * Fix a typo * Remove insight, dashboard model methods * Experiment: make shared dashboards not have effective_priviledge_levels/effective_restriction_level * Remove team#get_effective_membership_level * Simplify TeamBaseSerializer * Update organization API * Update UserViewSet * update team view * Reduce some lookups * Make UserPermissions not dependant on organization being passed * cast-to-user * Test listing with basic as FE calls it * Update dashboard views * JOIN organizations table, dont rely on request.user.organization * Update snapshots * Handle shared dashboards slightly better * Simplify team API * Fix test_team.py * Update middleware tests * Update ee team tests * Fully refactor a problematic call pattern * Solve ee API errors * Solve lint fails * Reset in insights as well * Cast * Update snapshots * Update snapshots * Update snapshots * Update snapshots * Update snapshots * Update snapshots * Remove merge conflict * Update snapshots * Remove items --------- Co-authored-by: github-actions <41898282+github-actions[bot]@users.noreply.github.com>
2023-01-30 10:44:16 +01:00
dashboard_permissions = self.user_permissions.dashboard(dashboard)
if dashboard_permissions.effective_restriction_level <= Dashboard.RestrictionLevel.EVERYONE_IN_PROJECT_CAN_EDIT:
Dashboard privilege API and collaborators UI (#8424) * Add basic `/api/projects/:id/dashboard/:id/collaborators` * Handle more collaboration cases and add base tests * Add some collaborators UI to share modal * Improve Python typing * Improve TS typing * Allow addition and deletion of collaborators from UI * Add upsell prototype * Improve upsell button * Add `effective_restriction_level` to `DashboardSerializer` * Improve `LemonSelect` value handling * Improve `LemonSelect` behavior when selecting existing value * Refactor the way privilege level name is determined * Don't destroy `ShareModal` on close to avoid logic remounting * Split out upsell into own PR * Fix TS * Fix typing * Increase security with more tests * Inline `parents_query_dict` * Dashboard collaborator bubbles (#8450) * Add collaborator bubbles to restricted dashboard headers * Rename `index.tsx` to `ProfilePicture.tsx` for readability * Improve tooltip handling * Create ProfileBubbles.stories.tsx * Make collaborator bubbles tooltip dashboard-level * Always show collaborator bubbles * Dashboard restrictions (#8462) * Add frontend-side restrictions editing restrictions to dashboards * Restrict `InsightCard` * Align info message margin * Disallow locking yourself out of the dashboard * Handle dashboard restrictions in the insight page * Allow disabling `InsightsTable` series checkbox * Fix minor issues * Align .page-title-row height * Fix typing * Fix arg name * Address review feedback * Fix n+1 queries issue
2022-02-08 17:22:09 +01:00
raise exceptions.ValidationError("Cannot add collaborators to a dashboard on the lowest restriction level.")
attrs = super().validate(attrs)
level = attrs.get("level")
if level is not None and level != Dashboard.PrivilegeLevel.CAN_EDIT:
raise serializers.ValidationError("Only edit access can be explicitly specified currently.")
return attrs
def create(self, validated_data):
dashboard: Dashboard = self.context["dashboard"]
user_uuid = validated_data.pop("user_uuid")
try:
Fix `is_active` being unused when querying `User` (#8793) * Fix `is_active` being unused when querying `User` * Simplify a `.filter()` * Update test_feature_flag.ambr * Remove `User.is_active` filter from `get_overridden_feature_flags` * Fix exclude in `OrganizationMemberViewSet` queryset * Revert snapshot update * Update test_organization_members.py
2022-03-02 15:27:08 +01:00
validated_data["user"] = User.objects.filter(is_active=True).get(uuid=user_uuid)
Dashboard privilege API and collaborators UI (#8424) * Add basic `/api/projects/:id/dashboard/:id/collaborators` * Handle more collaboration cases and add base tests * Add some collaborators UI to share modal * Improve Python typing * Improve TS typing * Allow addition and deletion of collaborators from UI * Add upsell prototype * Improve upsell button * Add `effective_restriction_level` to `DashboardSerializer` * Improve `LemonSelect` value handling * Improve `LemonSelect` behavior when selecting existing value * Refactor the way privilege level name is determined * Don't destroy `ShareModal` on close to avoid logic remounting * Split out upsell into own PR * Fix TS * Fix typing * Increase security with more tests * Inline `parents_query_dict` * Dashboard collaborator bubbles (#8450) * Add collaborator bubbles to restricted dashboard headers * Rename `index.tsx` to `ProfilePicture.tsx` for readability * Improve tooltip handling * Create ProfileBubbles.stories.tsx * Make collaborator bubbles tooltip dashboard-level * Always show collaborator bubbles * Dashboard restrictions (#8462) * Add frontend-side restrictions editing restrictions to dashboards * Restrict `InsightCard` * Align info message margin * Disallow locking yourself out of the dashboard * Handle dashboard restrictions in the insight page * Allow disabling `InsightsTable` series checkbox * Fix minor issues * Align .page-title-row height * Fix typing * Fix arg name * Address review feedback * Fix n+1 queries issue
2022-02-08 17:22:09 +01:00
except User.DoesNotExist:
raise serializers.ValidationError("User does not exist.")
fix(query-performance): Speed up permissioning in API (#13952) * Get #team_effective_membership_level under test * Extract method into class * Refactor team_effective_membership_level to require less lookups * Test and scaffolding for dashboard methods * Move dashboard methods to user_permissions * Optimize dashboard methods * Insights priviledge logic to user_permissions * Make insight priviledge code efficient * Fix bug to improve efficiency * Refactor efficiency tests * Use UserPermissions in some dashboard-related views * Use UserPermissions in some insight-related views * Fix a typo * Remove insight, dashboard model methods * Experiment: make shared dashboards not have effective_priviledge_levels/effective_restriction_level * Remove team#get_effective_membership_level * Simplify TeamBaseSerializer * Update organization API * Update UserViewSet * update team view * Reduce some lookups * Make UserPermissions not dependant on organization being passed * cast-to-user * Test listing with basic as FE calls it * Update dashboard views * JOIN organizations table, dont rely on request.user.organization * Update snapshots * Handle shared dashboards slightly better * Simplify team API * Fix test_team.py * Update middleware tests * Update ee team tests * Fully refactor a problematic call pattern * Solve ee API errors * Solve lint fails * Reset in insights as well * Cast * Update snapshots * Update snapshots * Update snapshots * Update snapshots * Update snapshots * Update snapshots * Remove merge conflict * Update snapshots * Remove items --------- Co-authored-by: github-actions <41898282+github-actions[bot]@users.noreply.github.com>
2023-01-30 10:44:16 +01:00
modified_user_permissions = UserPermissions(
user=validated_data["user"],
team=self.context["view"].team,
)
if modified_user_permissions.current_team.effective_membership_level is None:
Dashboard privilege API and collaborators UI (#8424) * Add basic `/api/projects/:id/dashboard/:id/collaborators` * Handle more collaboration cases and add base tests * Add some collaborators UI to share modal * Improve Python typing * Improve TS typing * Allow addition and deletion of collaborators from UI * Add upsell prototype * Improve upsell button * Add `effective_restriction_level` to `DashboardSerializer` * Improve `LemonSelect` value handling * Improve `LemonSelect` behavior when selecting existing value * Refactor the way privilege level name is determined * Don't destroy `ShareModal` on close to avoid logic remounting * Split out upsell into own PR * Fix TS * Fix typing * Increase security with more tests * Inline `parents_query_dict` * Dashboard collaborator bubbles (#8450) * Add collaborator bubbles to restricted dashboard headers * Rename `index.tsx` to `ProfilePicture.tsx` for readability * Improve tooltip handling * Create ProfileBubbles.stories.tsx * Make collaborator bubbles tooltip dashboard-level * Always show collaborator bubbles * Dashboard restrictions (#8462) * Add frontend-side restrictions editing restrictions to dashboards * Restrict `InsightCard` * Align info message margin * Disallow locking yourself out of the dashboard * Handle dashboard restrictions in the insight page * Allow disabling `InsightsTable` series checkbox * Fix minor issues * Align .page-title-row height * Fix typing * Fix arg name * Address review feedback * Fix n+1 queries issue
2022-02-08 17:22:09 +01:00
raise exceptions.ValidationError("Cannot add collaborators that have no access to the project.")
fix(query-performance): Speed up permissioning in API (#13952) * Get #team_effective_membership_level under test * Extract method into class * Refactor team_effective_membership_level to require less lookups * Test and scaffolding for dashboard methods * Move dashboard methods to user_permissions * Optimize dashboard methods * Insights priviledge logic to user_permissions * Make insight priviledge code efficient * Fix bug to improve efficiency * Refactor efficiency tests * Use UserPermissions in some dashboard-related views * Use UserPermissions in some insight-related views * Fix a typo * Remove insight, dashboard model methods * Experiment: make shared dashboards not have effective_priviledge_levels/effective_restriction_level * Remove team#get_effective_membership_level * Simplify TeamBaseSerializer * Update organization API * Update UserViewSet * update team view * Reduce some lookups * Make UserPermissions not dependant on organization being passed * cast-to-user * Test listing with basic as FE calls it * Update dashboard views * JOIN organizations table, dont rely on request.user.organization * Update snapshots * Handle shared dashboards slightly better * Simplify team API * Fix test_team.py * Update middleware tests * Update ee team tests * Fully refactor a problematic call pattern * Solve ee API errors * Solve lint fails * Reset in insights as well * Cast * Update snapshots * Update snapshots * Update snapshots * Update snapshots * Update snapshots * Update snapshots * Remove merge conflict * Update snapshots * Remove items --------- Co-authored-by: github-actions <41898282+github-actions[bot]@users.noreply.github.com>
2023-01-30 10:44:16 +01:00
if modified_user_permissions.dashboard(dashboard).can_restrict:
Dashboard privilege API and collaborators UI (#8424) * Add basic `/api/projects/:id/dashboard/:id/collaborators` * Handle more collaboration cases and add base tests * Add some collaborators UI to share modal * Improve Python typing * Improve TS typing * Allow addition and deletion of collaborators from UI * Add upsell prototype * Improve upsell button * Add `effective_restriction_level` to `DashboardSerializer` * Improve `LemonSelect` value handling * Improve `LemonSelect` behavior when selecting existing value * Refactor the way privilege level name is determined * Don't destroy `ShareModal` on close to avoid logic remounting * Split out upsell into own PR * Fix TS * Fix typing * Increase security with more tests * Inline `parents_query_dict` * Dashboard collaborator bubbles (#8450) * Add collaborator bubbles to restricted dashboard headers * Rename `index.tsx` to `ProfilePicture.tsx` for readability * Improve tooltip handling * Create ProfileBubbles.stories.tsx * Make collaborator bubbles tooltip dashboard-level * Always show collaborator bubbles * Dashboard restrictions (#8462) * Add frontend-side restrictions editing restrictions to dashboards * Restrict `InsightCard` * Align info message margin * Disallow locking yourself out of the dashboard * Handle dashboard restrictions in the insight page * Allow disabling `InsightsTable` series checkbox * Fix minor issues * Align .page-title-row height * Fix typing * Fix arg name * Address review feedback * Fix n+1 queries issue
2022-02-08 17:22:09 +01:00
raise exceptions.ValidationError(
"Cannot add collaborators that already have inherent access (the dashboard owner or a project admins)."
)
validated_data["dashboard_id"] = self.context["dashboard_id"]
try:
return super().create(validated_data)
except IntegrityError:
raise serializers.ValidationError("User already is a collaborator.")
class DashboardCollaboratorViewSet(
feat: Simplify standard permissions (#20172)
2024-02-12 14:55:21 +01:00
TeamAndOrgViewSetMixin,
Dashboard privilege API and collaborators UI (#8424) * Add basic `/api/projects/:id/dashboard/:id/collaborators` * Handle more collaboration cases and add base tests * Add some collaborators UI to share modal * Improve Python typing * Improve TS typing * Allow addition and deletion of collaborators from UI * Add upsell prototype * Improve upsell button * Add `effective_restriction_level` to `DashboardSerializer` * Improve `LemonSelect` value handling * Improve `LemonSelect` behavior when selecting existing value * Refactor the way privilege level name is determined * Don't destroy `ShareModal` on close to avoid logic remounting * Split out upsell into own PR * Fix TS * Fix typing * Increase security with more tests * Inline `parents_query_dict` * Dashboard collaborator bubbles (#8450) * Add collaborator bubbles to restricted dashboard headers * Rename `index.tsx` to `ProfilePicture.tsx` for readability * Improve tooltip handling * Create ProfileBubbles.stories.tsx * Make collaborator bubbles tooltip dashboard-level * Always show collaborator bubbles * Dashboard restrictions (#8462) * Add frontend-side restrictions editing restrictions to dashboards * Restrict `InsightCard` * Align info message margin * Disallow locking yourself out of the dashboard * Handle dashboard restrictions in the insight page * Allow disabling `InsightsTable` series checkbox * Fix minor issues * Align .page-title-row height * Fix typing * Fix arg name * Address review feedback * Fix n+1 queries issue
2022-02-08 17:22:09 +01:00
mixins.ListModelMixin,
mixins.CreateModelMixin,
mixins.DestroyModelMixin,
viewsets.GenericViewSet,
):
chore(api): Expose dashboard collaborator and org invite endpoints (#20874) * chore(api): Make dashboard collaborator and org invite endpoints public * Update query snapshots --------- Co-authored-by: github-actions <41898282+github-actions[bot]@users.noreply.github.com>
2024-03-15 18:51:21 +01:00
scope_object = "dashboard"
feat: Simplify standard permissions (#20172)
2024-02-12 14:55:21 +01:00
permission_classes = [CanEditDashboardCollaborator]
Dashboard privilege API and collaborators UI (#8424) * Add basic `/api/projects/:id/dashboard/:id/collaborators` * Handle more collaboration cases and add base tests * Add some collaborators UI to share modal * Improve Python typing * Improve TS typing * Allow addition and deletion of collaborators from UI * Add upsell prototype * Improve upsell button * Add `effective_restriction_level` to `DashboardSerializer` * Improve `LemonSelect` value handling * Improve `LemonSelect` behavior when selecting existing value * Refactor the way privilege level name is determined * Don't destroy `ShareModal` on close to avoid logic remounting * Split out upsell into own PR * Fix TS * Fix typing * Increase security with more tests * Inline `parents_query_dict` * Dashboard collaborator bubbles (#8450) * Add collaborator bubbles to restricted dashboard headers * Rename `index.tsx` to `ProfilePicture.tsx` for readability * Improve tooltip handling * Create ProfileBubbles.stories.tsx * Make collaborator bubbles tooltip dashboard-level * Always show collaborator bubbles * Dashboard restrictions (#8462) * Add frontend-side restrictions editing restrictions to dashboards * Restrict `InsightCard` * Align info message margin * Disallow locking yourself out of the dashboard * Handle dashboard restrictions in the insight page * Allow disabling `InsightsTable` series checkbox * Fix minor issues * Align .page-title-row height * Fix typing * Fix arg name * Address review feedback * Fix n+1 queries issue
2022-02-08 17:22:09 +01:00
pagination_class = None
Fix `is_active` being unused when querying `User` (#8793) * Fix `is_active` being unused when querying `User` * Simplify a `.filter()` * Update test_feature_flag.ambr * Remove `User.is_active` filter from `get_overridden_feature_flags` * Fix exclude in `OrganizationMemberViewSet` queryset * Revert snapshot update * Update test_organization_members.py
2022-03-02 15:27:08 +01:00
queryset = DashboardPrivilege.objects.select_related("dashboard").filter(user__is_active=True)
Dashboard privilege API and collaborators UI (#8424) * Add basic `/api/projects/:id/dashboard/:id/collaborators` * Handle more collaboration cases and add base tests * Add some collaborators UI to share modal * Improve Python typing * Improve TS typing * Allow addition and deletion of collaborators from UI * Add upsell prototype * Improve upsell button * Add `effective_restriction_level` to `DashboardSerializer` * Improve `LemonSelect` value handling * Improve `LemonSelect` behavior when selecting existing value * Refactor the way privilege level name is determined * Don't destroy `ShareModal` on close to avoid logic remounting * Split out upsell into own PR * Fix TS * Fix typing * Increase security with more tests * Inline `parents_query_dict` * Dashboard collaborator bubbles (#8450) * Add collaborator bubbles to restricted dashboard headers * Rename `index.tsx` to `ProfilePicture.tsx` for readability * Improve tooltip handling * Create ProfileBubbles.stories.tsx * Make collaborator bubbles tooltip dashboard-level * Always show collaborator bubbles * Dashboard restrictions (#8462) * Add frontend-side restrictions editing restrictions to dashboards * Restrict `InsightCard` * Align info message margin * Disallow locking yourself out of the dashboard * Handle dashboard restrictions in the insight page * Allow disabling `InsightsTable` series checkbox * Fix minor issues * Align .page-title-row height * Fix typing * Fix arg name * Address review feedback * Fix n+1 queries issue
2022-02-08 17:22:09 +01:00
lookup_field = "user__uuid"
serializer_class = DashboardCollaboratorSerializer
chore(environments): Add `project_id`-based filtering to API (#23246) Co-authored-by: github-actions <41898282+github-actions[bot]@users.noreply.github.com>
2024-08-19 17:56:47 +02:00
filter_rewrite_rules = {"project_id": "dashboard__team__project_id"}
Dashboard privilege API and collaborators UI (#8424) * Add basic `/api/projects/:id/dashboard/:id/collaborators` * Handle more collaboration cases and add base tests * Add some collaborators UI to share modal * Improve Python typing * Improve TS typing * Allow addition and deletion of collaborators from UI * Add upsell prototype * Improve upsell button * Add `effective_restriction_level` to `DashboardSerializer` * Improve `LemonSelect` value handling * Improve `LemonSelect` behavior when selecting existing value * Refactor the way privilege level name is determined * Don't destroy `ShareModal` on close to avoid logic remounting * Split out upsell into own PR * Fix TS * Fix typing * Increase security with more tests * Inline `parents_query_dict` * Dashboard collaborator bubbles (#8450) * Add collaborator bubbles to restricted dashboard headers * Rename `index.tsx` to `ProfilePicture.tsx` for readability * Improve tooltip handling * Create ProfileBubbles.stories.tsx * Make collaborator bubbles tooltip dashboard-level * Always show collaborator bubbles * Dashboard restrictions (#8462) * Add frontend-side restrictions editing restrictions to dashboards * Restrict `InsightCard` * Align info message margin * Disallow locking yourself out of the dashboard * Handle dashboard restrictions in the insight page * Allow disabling `InsightsTable` series checkbox * Fix minor issues * Align .page-title-row height * Fix typing * Fix arg name * Address review feedback * Fix n+1 queries issue
2022-02-08 17:22:09 +01:00
chore: Add Pyupgrade rules (#21714) * Add Pyupgrade rules * Set correct Python version
2024-04-25 09:22:28 +02:00
def get_serializer_context(self) -> dict[str, Any]:
Dashboard privilege API and collaborators UI (#8424) * Add basic `/api/projects/:id/dashboard/:id/collaborators` * Handle more collaboration cases and add base tests * Add some collaborators UI to share modal * Improve Python typing * Improve TS typing * Allow addition and deletion of collaborators from UI * Add upsell prototype * Improve upsell button * Add `effective_restriction_level` to `DashboardSerializer` * Improve `LemonSelect` value handling * Improve `LemonSelect` behavior when selecting existing value * Refactor the way privilege level name is determined * Don't destroy `ShareModal` on close to avoid logic remounting * Split out upsell into own PR * Fix TS * Fix typing * Increase security with more tests * Inline `parents_query_dict` * Dashboard collaborator bubbles (#8450) * Add collaborator bubbles to restricted dashboard headers * Rename `index.tsx` to `ProfilePicture.tsx` for readability * Improve tooltip handling * Create ProfileBubbles.stories.tsx * Make collaborator bubbles tooltip dashboard-level * Always show collaborator bubbles * Dashboard restrictions (#8462) * Add frontend-side restrictions editing restrictions to dashboards * Restrict `InsightCard` * Align info message margin * Disallow locking yourself out of the dashboard * Handle dashboard restrictions in the insight page * Allow disabling `InsightsTable` series checkbox * Fix minor issues * Align .page-title-row height * Fix typing * Fix arg name * Address review feedback * Fix n+1 queries issue
2022-02-08 17:22:09 +01:00
context = super().get_serializer_context()
try:
context["dashboard"] = Dashboard.objects.get(id=context["dashboard_id"])
except Dashboard.DoesNotExist:
raise exceptions.NotFound("Dashboard not found.")
return context
def perform_destroy(self, instance) -> None:
dashboard = cast(Dashboard, instance.dashboard)
fix(query-performance): Speed up permissioning in API (#13952) * Get #team_effective_membership_level under test * Extract method into class * Refactor team_effective_membership_level to require less lookups * Test and scaffolding for dashboard methods * Move dashboard methods to user_permissions * Optimize dashboard methods * Insights priviledge logic to user_permissions * Make insight priviledge code efficient * Fix bug to improve efficiency * Refactor efficiency tests * Use UserPermissions in some dashboard-related views * Use UserPermissions in some insight-related views * Fix a typo * Remove insight, dashboard model methods * Experiment: make shared dashboards not have effective_priviledge_levels/effective_restriction_level * Remove team#get_effective_membership_level * Simplify TeamBaseSerializer * Update organization API * Update UserViewSet * update team view * Reduce some lookups * Make UserPermissions not dependant on organization being passed * cast-to-user * Test listing with basic as FE calls it * Update dashboard views * JOIN organizations table, dont rely on request.user.organization * Update snapshots * Handle shared dashboards slightly better * Simplify team API * Fix test_team.py * Update middleware tests * Update ee team tests * Fully refactor a problematic call pattern * Solve ee API errors * Solve lint fails * Reset in insights as well * Cast * Update snapshots * Update snapshots * Update snapshots * Update snapshots * Update snapshots * Update snapshots * Remove merge conflict * Update snapshots * Remove items --------- Co-authored-by: github-actions <41898282+github-actions[bot]@users.noreply.github.com>
2023-01-30 10:44:16 +01:00
if (
self.user_permissions.dashboard(dashboard).effective_restriction_level
<= Dashboard.RestrictionLevel.EVERYONE_IN_PROJECT_CAN_EDIT
):
Dashboard privilege API and collaborators UI (#8424) * Add basic `/api/projects/:id/dashboard/:id/collaborators` * Handle more collaboration cases and add base tests * Add some collaborators UI to share modal * Improve Python typing * Improve TS typing * Allow addition and deletion of collaborators from UI * Add upsell prototype * Improve upsell button * Add `effective_restriction_level` to `DashboardSerializer` * Improve `LemonSelect` value handling * Improve `LemonSelect` behavior when selecting existing value * Refactor the way privilege level name is determined * Don't destroy `ShareModal` on close to avoid logic remounting * Split out upsell into own PR * Fix TS * Fix typing * Increase security with more tests * Inline `parents_query_dict` * Dashboard collaborator bubbles (#8450) * Add collaborator bubbles to restricted dashboard headers * Rename `index.tsx` to `ProfilePicture.tsx` for readability * Improve tooltip handling * Create ProfileBubbles.stories.tsx * Make collaborator bubbles tooltip dashboard-level * Always show collaborator bubbles * Dashboard restrictions (#8462) * Add frontend-side restrictions editing restrictions to dashboards * Restrict `InsightCard` * Align info message margin * Disallow locking yourself out of the dashboard * Handle dashboard restrictions in the insight page * Allow disabling `InsightsTable` series checkbox * Fix minor issues * Align .page-title-row height * Fix typing * Fix arg name * Address review feedback * Fix n+1 queries issue
2022-02-08 17:22:09 +01:00
raise exceptions.ValidationError(
"Cannot remove collaborators from a dashboard on the lowest restriction level."
)
return super().perform_destroy(instance)
Copy Permalink