[spalenque] - #13200 * add a security group to access survey free text tagging

santipalenque · santipalenque · commit b9e0ef459db5 · 2017-08-28T19:49:07.000-03:00
diff --git a/migrations/migrations.yml b/migrations/migrations.yml
@@ -83,3 +83,4 @@ migrations:
   - AddUniqueIndexMemberScheduleFavorites
   - AddONDELETECascadeFKOnInheritanceMappingMigration
   - SurveyDoubleEntryTableQuestionTemplateDataFixMigration
+  - CreateFreeTextTaggingGroupMigration
diff --git a/sangria/code/SangriaPage.php b/sangria/code/SangriaPage.php
@@ -39,9 +39,17 @@ final class SangriaPage_Controller extends AdminController implements Permission
 
     function init()
     {
-        if (!Permission::check("SANGRIA_ACCESS")) {
-            Security::permissionFailure();
+
+        if ($this->request->param('Action') == 'ViewSurveyFreeAnswersList') {
+            if (!Permission::check("FREE_TEXT_TAGGING_ACCESS")) {
+                return Security::permissionFailure();
+            }
+        } else {
+            if (!Permission::check("SANGRIA_ACCESS")) {
+                Security::permissionFailure();
+            }
         }
+
         parent::init();
 
         Requirements::css('fonts.googleapis.com/css?family=PT+Sans&subset=latin');
@@ -77,6 +85,12 @@ function providePermissions()
                 'help'     => '',
                 'sort'     => 0
             ),
+            'FREE_TEXT_TAGGING_ACCESS' => array(
+                'name'     => 'Access the free text tagging page',
+                'category' => 'Sangria',
+                'help'     => '',
+                'sort'     => 1
+            ),
         );
     }
 
diff --git a/sangria/code/interfaces/restfull_api/SangriaApi.php b/sangria/code/interfaces/restfull_api/SangriaApi.php
@@ -22,8 +22,14 @@ class SangriaApi extends AbstractRestfulJsonApi
     protected function authorize()
     {
         //check permissions
-        if(!Permission::check("SANGRIA_ACCESS"))
-            return false;
+        if ($this->request->param('SUBROUTE') == SangriaSurveyBuilderRouterApiExtension::SubRouteSurveyTemplates) {
+            if(!Permission::check("FREE_TEXT_TAGGING_ACCESS"))
+                return false;
+        } else {
+            if(!Permission::check("SANGRIA_ACCESS"))
+                return false;
+        }
+
         return true;
     }
 
diff --git a/survey_builder/code/interfaces/restfull_api/SangriaSurveyTemplateApi.php b/survey_builder/code/interfaces/restfull_api/SangriaSurveyTemplateApi.php
@@ -71,8 +71,10 @@ public function __construct(ISurveyFreeTextAnswerManager $manager,  ISurveyTempl
     protected function authorize()
     {
         //check permissions
-        if(!Permission::check("SANGRIA_ACCESS"))
+        if(!Permission::check("FREE_TEXT_TAGGING_ACCESS")) {
             return false;
+        }
+
         return true;
     }
 
diff --git a/survey_builder/code/migrations/CreateFreeTextTaggingGroupMigration.php b/survey_builder/code/migrations/CreateFreeTextTaggingGroupMigration.php
@@ -0,0 +1,46 @@
+<?php
+
+/**
+ * Copyright 2017 OpenStack Foundation
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ * http://www.apache.org/licenses/LICENSE-2.0
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ **/
+final class CreateFreeTextTaggingGroupMigration extends AbstractDBMigrationTask
+{
+    protected $title = "Create Survey Free Text Tagging Group";
+
+    protected $description = "creates group survey-free-text-tagging.";
+
+    function doUp()
+    {
+        global $database;
+        //$members = array(93000); // members to add
+
+        $group = new Group();
+        $group->setTitle('Free Text Tagging');
+        $group->setDescription('Allows access to sangria survey free text tagging page.');
+        $group->setSlug('survey-free-text-tagging');
+        $group->write();
+
+        //$group->Members()->setByIDList($members);
+
+        Permission::grant($group->getIdentifier(), 'FREE_TEXT_TAGGING_ACCESS');
+
+        // update sangria group
+        $sangria_group = Group::get()->filter('Code','sangria')->first();
+        Permission::grant($sangria_group->getIdentifier(), 'FREE_TEXT_TAGGING_ACCESS');
+
+    }
+
+    function doDown()
+    {
+
+    }
+}

Original file line number	Diff line number	Diff line change
`@@ -71,8 +71,10 @@ public function __construct(ISurveyFreeTextAnswerManager $manager, ISurveyTempl`
`71`	`71`	`protected function authorize()`
`72`	`72`	`{`
`73`	`73`	`//check permissions`
`74`		`- if(!Permission::check("SANGRIA_ACCESS"))`
	`74`	`+ if(!Permission::check("FREE_TEXT_TAGGING_ACCESS")) {`
`75`	`75`	`return false;`
	`76`	`+ }`
	`77`	`+`
`76`	`78`	`return true;`
`77`	`79`	`}`
`78`	`80`