[SM-581] Adding support for warning dialogs (#2762)

* Adding support for warning dialogs * Swap to repository layer implementation
2025-06-30 23:52:50 -05:00 · 2023-03-06 11:31:56 -06:00
parent f8cbd4ef7d
commit de559e80f4
8 changed files with 80 additions and 31 deletions
--- a/src/Api/SecretsManager/Controllers/AccessPoliciesController.cs
+++ b/src/Api/SecretsManager/Controllers/AccessPoliciesController.cs
@ -73,7 +73,7 @@ public class AccessPoliciesController : Controller
        var (accessClient, userId) = await GetAccessClientTypeAsync(project.OrganizationId);
        var policies = request.ToBaseAccessPoliciesForProject(id);
        await _createAccessPoliciesCommand.CreateManyAsync(policies, userId, accessClient);
-        var results = await _accessPolicyRepository.GetManyByGrantedProjectIdAsync(id);
+        var results = await _accessPolicyRepository.GetManyByGrantedProjectIdAsync(id, userId);
        return new ProjectAccessPoliciesResponseModel(results);
    }

@ -81,9 +81,8 @@ public class AccessPoliciesController : Controller
    public async Task<ProjectAccessPoliciesResponseModel> GetProjectAccessPoliciesAsync([FromRoute] Guid id)
    {
        var project = await _projectRepository.GetByIdAsync(id);
-        await CheckUserHasWriteAccessToProjectAsync(project);
-
-        var results = await _accessPolicyRepository.GetManyByGrantedProjectIdAsync(id);
+        var (_, userId) = await CheckUserHasWriteAccessToProjectAsync(project);
+        var results = await _accessPolicyRepository.GetManyByGrantedProjectIdAsync(id, userId);
        return new ProjectAccessPoliciesResponseModel(results);
    }

@ -106,7 +105,7 @@ public class AccessPoliciesController : Controller
        var (accessClient, userId) = await GetAccessClientTypeAsync(serviceAccount.OrganizationId);
        var policies = request.ToBaseAccessPoliciesForServiceAccount(id);
        await _createAccessPoliciesCommand.CreateManyAsync(policies, userId, accessClient);
-        var results = await _accessPolicyRepository.GetManyByGrantedServiceAccountIdAsync(id);
+        var results = await _accessPolicyRepository.GetManyByGrantedServiceAccountIdAsync(id, userId);
        return new ServiceAccountAccessPoliciesResponseModel(results);
    }

@ -115,9 +114,8 @@ public class AccessPoliciesController : Controller
        [FromRoute] Guid id)
    {
        var serviceAccount = await _serviceAccountRepository.GetByIdAsync(id);
-        await CheckUserHasWriteAccessToServiceAccountAsync(serviceAccount);
-
-        var results = await _accessPolicyRepository.GetManyByGrantedServiceAccountIdAsync(id);
+        var (_, userId) = await CheckUserHasWriteAccessToServiceAccountAsync(serviceAccount);
+        var results = await _accessPolicyRepository.GetManyByGrantedServiceAccountIdAsync(id, userId);
        return new ServiceAccountAccessPoliciesResponseModel(results);
    }

@ -244,7 +242,7 @@ public class AccessPoliciesController : Controller
        return new ListResponseModel<PotentialGranteeResponseModel>(projectResponses);
    }

-    private async Task CheckUserHasWriteAccessToProjectAsync(Project project)
+    private async Task<(AccessClientType AccessClientType, Guid UserId)> CheckUserHasWriteAccessToProjectAsync(Project project)
    {
        if (project == null)
        {
@ -263,9 +261,10 @@ public class AccessPoliciesController : Controller
        {
            throw new NotFoundException();
        }
+        return (accessClient, userId);
    }

-    private async Task CheckUserHasWriteAccessToServiceAccountAsync(ServiceAccount serviceAccount)
+    private async Task<(AccessClientType AccessClientType, Guid UserId)> CheckUserHasWriteAccessToServiceAccountAsync(ServiceAccount serviceAccount)
    {
        if (serviceAccount == null)
        {
@ -285,6 +284,7 @@ public class AccessPoliciesController : Controller
        {
            throw new NotFoundException();
        }
+        return (accessClient, userId);
    }

    private async Task<(AccessClientType AccessClientType, Guid UserId)> GetAccessClientTypeAsync(Guid organizationId)
--- a/src/Api/SecretsManager/Models/Response/AccessPolicyResponseModel.cs
+++ b/src/Api/SecretsManager/Models/Response/AccessPolicyResponseModel.cs
@ -37,6 +37,7 @@ public class UserProjectAccessPolicyResponseModel : BaseAccessPolicyResponseMode
        OrganizationUserId = accessPolicy.OrganizationUserId;
        GrantedProjectId = accessPolicy.GrantedProjectId;
        OrganizationUserName = GetUserDisplayName(accessPolicy.User);
+        UserId = accessPolicy.User?.Id;
    }

    public UserProjectAccessPolicyResponseModel() : base(new UserProjectAccessPolicy(), _objectName)
@ -45,6 +46,7 @@ public class UserProjectAccessPolicyResponseModel : BaseAccessPolicyResponseMode

    public Guid? OrganizationUserId { get; set; }
    public string? OrganizationUserName { get; set; }
+    public Guid? UserId { get; set; }
    public Guid? GrantedProjectId { get; set; }
 }

@ -58,6 +60,7 @@ public class UserServiceAccountAccessPolicyResponseModel : BaseAccessPolicyRespo
        OrganizationUserId = accessPolicy.OrganizationUserId;
        GrantedServiceAccountId = accessPolicy.GrantedServiceAccountId;
        OrganizationUserName = GetUserDisplayName(accessPolicy.User);
+        UserId = accessPolicy.User?.Id;
    }

    public UserServiceAccountAccessPolicyResponseModel() : base(new UserServiceAccountAccessPolicy(), _objectName)
@ -66,6 +69,7 @@ public class UserServiceAccountAccessPolicyResponseModel : BaseAccessPolicyRespo

    public Guid? OrganizationUserId { get; set; }
    public string? OrganizationUserName { get; set; }
+    public Guid? UserId { get; set; }
    public Guid? GrantedServiceAccountId { get; set; }
 }

@ -79,6 +83,7 @@ public class GroupProjectAccessPolicyResponseModel : BaseAccessPolicyResponseMod
        GroupId = accessPolicy.GroupId;
        GrantedProjectId = accessPolicy.GrantedProjectId;
        GroupName = accessPolicy.Group?.Name;
+        CurrentUserInGroup = accessPolicy.CurrentUserInGroup;
    }

    public GroupProjectAccessPolicyResponseModel() : base(new GroupProjectAccessPolicy(), _objectName)
@ -87,6 +92,7 @@ public class GroupProjectAccessPolicyResponseModel : BaseAccessPolicyResponseMod

    public Guid? GroupId { get; set; }
    public string? GroupName { get; set; }
+    public bool? CurrentUserInGroup { get; set; }
    public Guid? GrantedProjectId { get; set; }
 }

@ -100,6 +106,7 @@ public class GroupServiceAccountAccessPolicyResponseModel : BaseAccessPolicyResp
        GroupId = accessPolicy.GroupId;
        GroupName = accessPolicy.Group?.Name;
        GrantedServiceAccountId = accessPolicy.GrantedServiceAccountId;
+        CurrentUserInGroup = accessPolicy.CurrentUserInGroup;
    }

    public GroupServiceAccountAccessPolicyResponseModel() : base(new GroupServiceAccountAccessPolicy(), _objectName)
@ -109,6 +116,7 @@ public class GroupServiceAccountAccessPolicyResponseModel : BaseAccessPolicyResp
    public Guid? GroupId { get; set; }
    public string? GroupName { get; set; }
    public Guid? GrantedServiceAccountId { get; set; }
+    public bool? CurrentUserInGroup { get; set; }
 }

 public class ServiceAccountProjectAccessPolicyResponseModel : BaseAccessPolicyResponseModel