huanld/speckle-server
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
Files
0d2af686f95450a49d42c8dcd57fd2a7bcdfaade
speckle-server/packages/server/modules/comments/services/management.ts
T
Gergő Jedlicska 73cc7e67d3 gergo/webhookRegions (#3459) 
* feat(webhooks): multi region webhook resolver

* feat(webhooks): multi region webhook cleanup

* fix(webhooks): DI fixes

* feat(activitystream): region aware save activity

* feat(accessrequests): multi region

* feat(cli): allow multi region project and commit download

* feat(postgres): make docker postgres 0 day multi region ready

* feat(cli): allow multi region project and commit download properly

* fix(cross-server-sync): di fix

* feat(activitystream): non region aware activities, they are not project data

* fix(webhooks): triggers need to be included

* feat(stream/projectCreate): activity save is not needed any more, its all event based

* feat(multiRegion): get all registered db clients

* fix(regions): test equal in any order

* fix(projectDownload): need to await
2024-11-08 10:45:39 +01:00

328 lines
9.8 KiB
TypeScript
Raw Blame History

import { ensureError, Roles, SpeckleViewer } from '@speckle/shared'
import { AuthContext } from '@/modules/shared/authz'
import { ForbiddenError } from '@/modules/shared/errors'
import { StreamInvalidAccessError } from '@/modules/core/errors/stream'
import {
CreateCommentInput,
CreateCommentReplyInput,
EditCommentInput
} from '@/modules/core/graph/generated/graphql'
import { CommentCreateError, CommentUpdateError } from '@/modules/comments/errors'
import { buildCommentTextFromInput } from '@/modules/comments/services/commentTextService'
import {
CommentLinkRecord,
CommentLinkResourceType,
CommentRecord
} from '@/modules/comments/helpers/types'
import { CommentsEvents, CommentsEventsEmit } from '@/modules/comments/events/emitter'
import {
formatSerializedViewerState,
inputToDataStruct
} from '@/modules/comments/services/data'
import { adminOverrideEnabled } from '@/modules/shared/helpers/envHelper'
import {
ArchiveCommentAndNotify,
CreateCommentReplyAndNotify,
CreateCommentThreadAndNotify,
EditCommentAndNotify,
GetComment,
GetViewerResourceItemsUngrouped,
InsertCommentLinks,
InsertCommentPayload,
InsertComments,
MarkCommentUpdated,
MarkCommentViewed,
UpdateComment,
ValidateInputAttachments
} from '@/modules/comments/domain/operations'
import { GetStream } from '@/modules/core/domain/streams/operations'
import {
AddCommentArchivedActivity,
AddCommentCreatedActivity,
AddReplyAddedActivity
} from '@/modules/activitystream/domain/operations'
type AuthorizeProjectCommentsAccessDeps = {
getStream: GetStream
adminOverrideEnabled: typeof adminOverrideEnabled
}
export const authorizeProjectCommentsAccessFactory =
(deps: AuthorizeProjectCommentsAccessDeps) =>
async (params: {
projectId: string
authCtx: AuthContext
requireProjectRole?: boolean
}) => {
const { projectId, authCtx, requireProjectRole } = params
if (authCtx.role === Roles.Server.ArchivedUser) {
throw new ForbiddenError('You are not authorized')
}
const project = await deps.getStream({
streamId: projectId,
userId: authCtx.userId
})
if (!project) {
throw new StreamInvalidAccessError('Stream not found')
}
let success = true
if (!project.isPublic && !authCtx.auth) success = false
if (!project.isPublic && !project.role) success = false
if (requireProjectRole && !project.role && !project.allowPublicComments)
success = false
if (deps.adminOverrideEnabled() && authCtx.role === Roles.Server.Admin)
success = true
if (!success) {
throw new StreamInvalidAccessError('You are not authorized')
}
return project
}
export const authorizeCommentAccessFactory =
(
deps: {
getComment: GetComment
} & AuthorizeProjectCommentsAccessDeps
) =>
async (params: {
authCtx: AuthContext
commentId: string
requireProjectRole?: boolean
}) => {
const { authCtx, commentId, requireProjectRole } = params
const comment = await deps.getComment({
id: commentId,
userId: authCtx.userId
})
if (!comment) {
throw new StreamInvalidAccessError('Attempting to access a nonexistant comment')
}
return authorizeProjectCommentsAccessFactory(deps)({
projectId: comment.streamId,
authCtx,
requireProjectRole
})
}
export const createCommentThreadAndNotifyFactory =
(deps: {
getViewerResourceItemsUngrouped: GetViewerResourceItemsUngrouped
validateInputAttachments: ValidateInputAttachments
insertComments: InsertComments
insertCommentLinks: InsertCommentLinks
markCommentViewed: MarkCommentViewed
commentsEventsEmit: CommentsEventsEmit
addCommentCreatedActivity: AddCommentCreatedActivity
}): CreateCommentThreadAndNotify =>
async (input: CreateCommentInput, userId: string) => {
const [resources] = await Promise.all([
deps.getViewerResourceItemsUngrouped({ ...input, loadedVersionsOnly: true }),
deps.validateInputAttachments(input.projectId, input.content.blobIds || [])
])
if (!resources.length) {
throw new CommentCreateError(
"Resource ID string doesn't resolve to any valid resources for the specified project/stream"
)
}
const state = SpeckleViewer.ViewerState.isSerializedViewerState(input.viewerState)
? formatSerializedViewerState(input.viewerState)
: null
const dataStruct = inputToDataStruct(state)
const commentPayload: InsertCommentPayload = {
streamId: input.projectId,
authorId: userId,
text: buildCommentTextFromInput({
doc: input.content.doc,
blobIds: input.content.blobIds || undefined
}),
screenshot: input.screenshot,
data: dataStruct
}
let comment: CommentRecord
try {
// i know we're loosing transactional consistency...
// it can be added back with the commandFactory on top of a service
const [insertedComment] = await deps.insertComments([commentPayload])
const links: CommentLinkRecord[] = resources.map((r) => {
let resourceId = r.objectId
let resourceType: CommentLinkResourceType = 'object'
if (r.versionId) {
resourceId = r.versionId
resourceType = 'commit'
}
return {
commentId: insertedComment.id,
resourceId,
resourceType
}
})
await deps.insertCommentLinks(links)
comment = insertedComment
} catch (e) {
throw new CommentCreateError('Comment creation failed', { cause: ensureError(e) })
}
// Mark as viewed and emit events
await Promise.all([
deps.markCommentViewed(comment.id, userId),
deps.commentsEventsEmit(CommentsEvents.Created, {
comment
}),
deps.addCommentCreatedActivity({
streamId: input.projectId,
userId,
input: {
...input,
resolvedResourceItems: resources
},
comment
})
])
return comment
}
export const createCommentReplyAndNotifyFactory =
(deps: {
getComment: GetComment
validateInputAttachments: ValidateInputAttachments
insertComments: InsertComments
insertCommentLinks: InsertCommentLinks
markCommentUpdated: MarkCommentUpdated
commentsEventsEmit: CommentsEventsEmit
addReplyAddedActivity: AddReplyAddedActivity
}): CreateCommentReplyAndNotify =>
async (input: CreateCommentReplyInput, userId: string) => {
const thread = await deps.getComment({ id: input.threadId, userId })
if (!thread) {
throw new CommentCreateError('Reply creation failed due to nonexistant thread')
}
await deps.validateInputAttachments(thread.streamId, input.content.blobIds || [])
const commentPayload: InsertCommentPayload = {
streamId: thread.streamId,
authorId: userId,
text: buildCommentTextFromInput({
doc: input.content.doc,
blobIds: input.content.blobIds || undefined
}),
parentComment: thread.id,
data: null
}
let reply: CommentRecord
try {
const [insertedReply] = await deps.insertComments([commentPayload])
const links: CommentLinkRecord[] = [
{ resourceType: 'comment', resourceId: thread.id, commentId: insertedReply.id }
]
await deps.insertCommentLinks(links)
reply = insertedReply
} catch (e) {
throw new CommentCreateError('Reply creation failed', { cause: ensureError(e) })
}
// Mark parent comment updated and emit events
await Promise.all([
deps.markCommentUpdated(thread.id),
deps.commentsEventsEmit(CommentsEvents.Created, {
comment: reply
}),
deps.addReplyAddedActivity({
streamId: thread.streamId,
input,
reply,
userId
})
])
return reply
}
export const editCommentAndNotifyFactory =
(deps: {
getComment: GetComment
validateInputAttachments: ValidateInputAttachments
updateComment: UpdateComment
commentsEventsEmit: CommentsEventsEmit
}): EditCommentAndNotify =>
async (input: EditCommentInput, userId: string) => {
const comment = await deps.getComment({ id: input.commentId, userId })
if (!comment) {
throw new CommentUpdateError('Comment update failed due to nonexistant comment')
}
if (comment.authorId !== userId) {
throw new CommentUpdateError("You cannot edit someone else's comments")
}
await deps.validateInputAttachments(comment.streamId, input.content.blobIds || [])
const updatedComment = await deps.updateComment(comment.id, {
text: buildCommentTextFromInput({
doc: input.content.doc,
blobIds: input.content.blobIds || undefined
})
})
await deps.commentsEventsEmit(CommentsEvents.Updated, {
previousComment: comment,
newComment: updatedComment!
})
return updatedComment
}
export const archiveCommentAndNotifyFactory =
(deps: {
getComment: GetComment
getStream: GetStream
updateComment: UpdateComment
addCommentArchivedActivity: AddCommentArchivedActivity
}): ArchiveCommentAndNotify =>
async (commentId: string, userId: string, archived = true) => {
const comment = await deps.getComment({ id: commentId, userId })
if (!comment) {
throw new CommentUpdateError(
"Specified comment doesn't exist and thus it's archival status can't be changed"
)
}
const stream = await deps.getStream({ streamId: comment.streamId, userId })
if (
!stream ||
(comment.authorId !== userId && stream.role !== Roles.Stream.Owner)
) {
throw new CommentUpdateError(
'You do not have permissions to archive this comment'
)
}
const updatedComment = await deps.updateComment(comment.id, {
archived
})
await deps.addCommentArchivedActivity({
streamId: stream.id,
commentId,
userId,
input: {
archived,
streamId: stream.id,
commentId
},
comment: updatedComment!
})
return updatedComment
}
Reference in New Issue View Git Blame Copy Permalink