From 1d9fe79ef691510d883b78dff56536bbb8efcfdf Mon Sep 17 00:00:00 2001 From: Thomas Rittson <31796059+eliykat@users.noreply.github.com> Date: Mon, 12 Feb 2024 08:50:41 +1000 Subject: [PATCH] Give creating owner Manage permissions for default collection (#3776) --- .../Implementations/OrganizationService.cs | 45 +++++++++++++------ .../Services/OrganizationServiceTests.cs | 20 ++++++++- 2 files changed, 51 insertions(+), 14 deletions(-) diff --git a/src/Core/AdminConsole/Services/Implementations/OrganizationService.cs b/src/Core/AdminConsole/Services/Implementations/OrganizationService.cs index 128486f8b0..7d0907b0ba 100644 --- a/src/Core/AdminConsole/Services/Implementations/OrganizationService.cs +++ b/src/Core/AdminConsole/Services/Implementations/OrganizationService.cs @@ -655,18 +655,6 @@ public class OrganizationService : IOrganizationService }); await _applicationCacheService.UpsertOrganizationAbilityAsync(organization); - if (!string.IsNullOrWhiteSpace(collectionName)) - { - var defaultCollection = new Collection - { - Name = collectionName, - OrganizationId = organization.Id, - CreationDate = organization.CreationDate, - RevisionDate = organization.CreationDate - }; - await _collectionRepository.CreateAsync(defaultCollection); - } - OrganizationUser orgUser = null; if (ownerId != default) { @@ -685,6 +673,7 @@ public class OrganizationService : IOrganizationService CreationDate = organization.CreationDate, RevisionDate = organization.CreationDate }; + orgUser.SetNewId(); await _organizationUserRepository.CreateAsync(orgUser); @@ -694,6 +683,27 @@ public class OrganizationService : IOrganizationService await _pushNotificationService.PushSyncOrgKeysAsync(ownerId); } + if (!string.IsNullOrWhiteSpace(collectionName)) + { + var defaultCollection = new Collection + { + Name = collectionName, + OrganizationId = organization.Id, + CreationDate = organization.CreationDate, + RevisionDate = organization.CreationDate + }; + + // If using Flexible Collections, give the owner Can Manage access over the default collection + List defaultOwnerAccess = null; + if (organization.FlexibleCollections) + { + defaultOwnerAccess = + [new CollectionAccessSelection { Id = orgUser.Id, HidePasswords = false, ReadOnly = false, Manage = true }]; + } + + await _collectionRepository.CreateAsync(defaultCollection, null, defaultOwnerAccess); + } + return new Tuple(organization, orgUser); } catch @@ -2548,12 +2558,21 @@ public class OrganizationService : IOrganizationService if (!string.IsNullOrWhiteSpace(collectionName)) { + // If using Flexible Collections, give the owner Can Manage access over the default collection + List defaultOwnerAccess = null; + if (org.FlexibleCollections) + { + var orgUser = await _organizationUserRepository.GetByOrganizationAsync(org.Id, userId); + defaultOwnerAccess = + [new CollectionAccessSelection { Id = orgUser.Id, HidePasswords = false, ReadOnly = false, Manage = true }]; + } + var defaultCollection = new Collection { Name = collectionName, OrganizationId = org.Id }; - await _collectionRepository.CreateAsync(defaultCollection); + await _collectionRepository.CreateAsync(defaultCollection, null, defaultOwnerAccess); } } } diff --git a/test/Core.Test/AdminConsole/Services/OrganizationServiceTests.cs b/test/Core.Test/AdminConsole/Services/OrganizationServiceTests.cs index 86f11a278b..4ad13d8fd6 100644 --- a/test/Core.Test/AdminConsole/Services/OrganizationServiceTests.cs +++ b/test/Core.Test/AdminConsole/Services/OrganizationServiceTests.cs @@ -259,7 +259,6 @@ public class OrganizationServiceTests (PlanType planType, OrganizationSignup signup, SutProvider sutProvider) { signup.Plan = planType; - var plan = StaticStore.GetPlan(signup.Plan); signup.AdditionalSeats = 0; signup.PaymentMethodType = PaymentMethodType.Card; signup.PremiumAccessAddon = false; @@ -269,13 +268,32 @@ public class OrganizationServiceTests .IsEnabled(FeatureFlagKeys.FlexibleCollectionsSignup) .Returns(true); + // Extract orgUserId when created + Guid? orgUserId = null; + await sutProvider.GetDependency() + .CreateAsync(Arg.Do(ou => orgUserId = ou.Id)); + var result = await sutProvider.Sut.SignUpAsync(signup); + // Assert: AccessAll is not used await sutProvider.GetDependency().Received(1).CreateAsync( Arg.Is(o => o.UserId == signup.Owner.Id && o.AccessAll == false)); + // Assert: created a Can Manage association for the default collection instead + Assert.NotNull(orgUserId); + await sutProvider.GetDependency().Received(1).CreateAsync( + Arg.Any(), + Arg.Is>(cas => cas == null), + Arg.Is>(cas => + cas.Count() == 1 && + cas.All(c => + c.Id == orgUserId && + !c.ReadOnly && + !c.HidePasswords && + c.Manage))); + Assert.NotNull(result); Assert.NotNull(result.Item1); Assert.NotNull(result.Item2);