Merge branch 'main' into feature/gsk-1486-in-catalog-tests-each-test-is-in-2-copies-the-only-diff-is

Author: andreybavt

backend/src/main/java/ai/giskard/security/PermissionEvaluator.java

@@ -26,17 +26,6 @@ public boolean isCurrentUser(String login) {
         return login.equals(SecurityUtils.getCurrentAuthenticatedUserLogin());
     }
 
-    /**
-     * Determine if a user can write a project, i.e. is admin or is project's owner
-     *
-     * @param id id of the project
-     * @return true if the user can write
-     */
-    public boolean canWriteProject(@NotNull Long id) {
-        Project project = this.projectRepository.getMandatoryById(id);
-
-        return isCurrentUser(project.getOwner().getLogin()) || SecurityUtils.isCurrentUserAdmin();
-    }
 
     /**
      * Determine if the current user is a guest of a project and is granted any of the required roles
@@ -51,9 +40,40 @@ public boolean isGuestWithAnyRole(@NotNull Long projectId, @NotBlank String... r
         return SecurityUtils.hasCurrentUserAnyOfAuthorities(roles) && isCurrentUserGuest(project);
     }
 
+    /**
+     * Determine if a user can write a project, i.e. is admin or is project's owner
+     *
+     * @param project project to check
+     * @return true if the user can write
+     */
+    public boolean canWriteProject(@NotNull Project project) {
+        return (isCurrentUserGuest(project) && this.canWrite()) || isCurrentUser(project.getOwner().getLogin()) || SecurityUtils.isCurrentUserAdmin();
+    }
+
+    /**
+     * Determine if a user can write a project, i.e. is admin or is project's owner
+     *
+     * @param id id of the project
+     * @return true if the user can write
+     */
+    public boolean canWriteProjectId(@NotNull Long id) {
+        Project project = this.projectRepository.findById(id)
+            .orElseThrow(() -> new EntityNotFoundException(Entity.PROJECT, id));
+
+        return canWriteProject(project);
+    }
+
+    /**
+     * Determine if a user can write a project, i.e. is admin or is project's owner
+     *
+     * @param projectKey key of the project
+     * @return true if the user can write
+     */
     public boolean canWriteProjectKey(@NotNull String projectKey) {
-        Project project = this.projectRepository.findOneByKey(projectKey).orElseThrow(() -> new EntityNotFoundException(Entity.PROJECT, projectKey));
-        return (isCurrentUser(project.getOwner().getLogin()) || SecurityUtils.isCurrentUserAdmin());
+        Project project = this.projectRepository.findOneByKey(projectKey)
+            .orElseThrow(() -> new EntityNotFoundException(Entity.PROJECT, projectKey));
+
+        return canWriteProject(project);
     }
 
     /**
@@ -87,7 +107,7 @@ public void validateCanReadProject(@NotNull Long id) {
     }
 
     public void validateCanWriteProject(@NotNull Long id) {
-        if (!canWriteProject(id)) {
+        if (!canWriteProjectId(id)) {
             throw new AccessDeniedException("Access denied to project id " + id);
         }
     }

backend/src/main/java/ai/giskard/service/UserDeletionService.java

@@ -99,6 +99,7 @@ public void enableUser(String login) {
             .findOneByLogin(login)
             .ifPresentOrElse(user -> {
                     user.setEnabled(true);
+                    userRepository.save(user);
                     log.info("Enable user : {}", user);
                 },
                 () -> log.warn("Cannot enable user because its login wasn't found : {}", login));

backend/src/main/java/ai/giskard/web/rest/controllers/ProjectController.java

@@ -54,7 +54,7 @@ public List<ProjectDTO> list() throws NotInDatabaseException {
      * @param id         id of the existing project
      * @return updated project
      */
-    @PreAuthorize("@permissionEvaluator.canWriteProject( #id)")
+    @PreAuthorize("@permissionEvaluator.canWriteProjectId( #id)")
     @PutMapping(value = "/project/{id}")
     public ProjectDTO updateProject(@RequestBody ProjectPostDTO projectDTO, @PathVariable("id") Long id) {
         Project updatedProject = this.projectService.update(id, projectDTO);
@@ -102,7 +102,7 @@ public ProjectDTO getProject(@RequestParam(value = "id", required = false) Long
      * @return msg Deleted if deleted
      */
     @DeleteMapping(value = "/project/{id}")
-    @PreAuthorize("@permissionEvaluator.canWriteProject( #id)")
+    @PreAuthorize("@permissionEvaluator.canWriteProjectId( #id)")
     public void delete(@PathVariable("id") Long id) {
         this.projectService.delete(id);
     }
@@ -115,7 +115,7 @@ public void delete(@PathVariable("id") Long id) {
      * @return updated project
      */
     @DeleteMapping(value = "/project/{id}/guests/{userId}")
-    @PreAuthorize("@permissionEvaluator.canWriteProject( #id)")
+    @PreAuthorize("@permissionEvaluator.canWriteProjectId( #id)")
     public ProjectDTO uninvite(@PathVariable("id") Long id, @PathVariable("userId") Long userId) {
         Project project = this.projectService.uninvite(id, userId);
         return giskardMapper.projectToProjectDTO(project);
@@ -128,7 +128,7 @@ public ProjectDTO uninvite(@PathVariable("id") Long id, @PathVariable("userId")
      * @param userId user's id
      * @return project updated
      */
-    @PreAuthorize("@permissionEvaluator.canWriteProject( #id)")
+    @PreAuthorize("@permissionEvaluator.canWriteProjectId( #id)")
     @PutMapping(value = "/project/{id}/guests/{userId}")
     @Transactional
     public ProjectDTO invite(@PathVariable("id") Long id, @PathVariable("userId") Long userId) {

backend/src/main/java/ai/giskard/web/rest/controllers/TestFunctionController.java

@@ -21,13 +21,13 @@ public class TestFunctionController {
     private final TestFunctionRepository testFunctionRepository;
     private final TestFunctionService testFunctionService;
 
-    @GetMapping("/tests/{testUuid}")
+    @GetMapping({"/tests/{testUuid}", "/project/{projectKey}/tests/{testUuid}"})
     @Transactional(readOnly = true)
     public TestFunctionDTO getTestFunction(@PathVariable("testUuid") @NotNull UUID testUuid) {
         return giskardMapper.toDTO(testFunctionRepository.getMandatoryById(testUuid));
     }
 
-    @PutMapping("/tests/{testUuid}")
+    @PutMapping({"/tests/{testUuid}", "/project/{projectKey}/tests/{testUuid}"})
     @Transactional
     public TestFunctionDTO updateTestFunction(@PathVariable("testUuid") @NotNull UUID testUuid,
                                               @Valid @RequestBody TestFunctionDTO testFunction) {

backend/src/main/java/ai/giskard/web/rest/controllers/testing/TestSuiteController.java

@@ -97,7 +97,7 @@ public TestSuiteCompleteDTO listTestSuite(@PathVariable("projectId") @NotNull Lo
     }
 
     @PostMapping("project/{projectId}/suite/{suiteId}/test")
-    @PreAuthorize("@permissionEvaluator.canWriteProject(#projectId)")
+    @PreAuthorize("@permissionEvaluator.canWriteProjectId(#projectId)")
     @Transactional
     public TestSuiteDTO addTestToSuite(@PathVariable("projectId") long projectId,
                                        @PathVariable("suiteId") long suiteId,
@@ -128,7 +128,7 @@ public TestSuiteExecutionDTO tryTestSuite(@PathVariable("projectId") @NotNull Lo
 
 
     @PutMapping("project/{projectId}/suite/{suiteId}/test/{testId}/inputs")
-    @PreAuthorize("@permissionEvaluator.canWriteProject(#projectId)")
+    @PreAuthorize("@permissionEvaluator.canWriteProjectId(#projectId)")
     @Transactional
     public TestSuiteDTO updateTestInputs(@PathVariable("projectId") long projectId,
                                          @PathVariable("suiteId") long suiteId,

backend/src/test/java/ai/giskard/service/PermissionUT.java

@@ -100,7 +100,7 @@ void canWriteAITESTER() {
     @WithMockUser(username = ADMIN_KEY, authorities = AuthoritiesConstants.ADMIN)
     void canWriteProjectADMIN() {
         Project project = projectRepository.getOneByName(initService.getProjectByCreatorLogin(ADMIN_KEY));
-        assertThat(permissionEvaluator.canWriteProject(project.getId())).isTrue();
+        assertThat(permissionEvaluator.canWriteProjectId(project.getId())).isTrue();
     }
 
     /**
@@ -110,7 +110,7 @@ void canWriteProjectADMIN() {
     @WithMockUser(username = AI_TESTER_KEY, authorities = AuthoritiesConstants.AITESTER)
     void canWriteProjectAITESTER() {
         Project project = projectRepository.getOneByName(initService.getProjectByCreatorLogin(AI_TESTER_KEY));
-        assertThat(permissionEvaluator.canWriteProject(project.getId())).isTrue();
+        assertThat(permissionEvaluator.canWriteProjectId(project.getId())).isTrue();
     }
 
     /**
@@ -120,7 +120,7 @@ void canWriteProjectAITESTER() {
     @WithMockUser(username = AI_CREATOR_KEY, authorities = AuthoritiesConstants.AICREATOR)
     void canWriteProjectAICREATOR() {
         Project project = projectRepository.getOneByName(initService.getProjectByCreatorLogin(AI_CREATOR_KEY));
-        assertThat(permissionEvaluator.canWriteProject(project.getId())).isTrue();
+        assertThat(permissionEvaluator.canWriteProjectId(project.getId())).isTrue();
     }
 
 
@@ -131,7 +131,7 @@ void canWriteProjectAICREATOR() {
     @WithMockUser(username = ADMIN_KEY, authorities = AuthoritiesConstants.ADMIN)
     void canWriteOtherProjectADMIN() {
         Project project = projectRepository.getOneByName(initService.getProjectByCreatorLogin(AI_TESTER_KEY));
-        assertThat(permissionEvaluator.canWriteProject(project.getId())).isTrue();
+        assertThat(permissionEvaluator.canWriteProjectId(project.getId())).isTrue();
     }
 
     /**
@@ -141,7 +141,7 @@ void canWriteOtherProjectADMIN() {
     @WithMockUser(username = AI_TESTER_KEY, authorities = AuthoritiesConstants.AITESTER)
     void canWriteOtherProjectAITESTER() {
         Project project = projectRepository.getOneByName(initService.getProjectByCreatorLogin(AI_CREATOR_KEY));
-        assertThat(permissionEvaluator.canWriteProject(project.getId())).isFalse();
+        assertThat(permissionEvaluator.canWriteProjectId(project.getId())).isFalse();
     }
 
     /**
@@ -151,7 +151,7 @@ void canWriteOtherProjectAITESTER() {
     @WithMockUser(username = AI_CREATOR_KEY, authorities = AuthoritiesConstants.AICREATOR)
     void canWriteOtherProjectAICREATOR() {
         Project project = projectRepository.getOneByName(initService.getProjectByCreatorLogin(AI_TESTER_KEY));
-        assertThat(permissionEvaluator.canWriteProject(project.getId())).isFalse();
+        assertThat(permissionEvaluator.canWriteProjectId(project.getId())).isFalse();
     }
 
 
@@ -172,7 +172,7 @@ void canReadProjectADMIN() {
     @WithMockUser(username = AI_CREATOR_KEY, authorities = AuthoritiesConstants.AICREATOR)
     void canReadProjectAICREATOR() {
         Project project = projectRepository.getOneByName(initService.getProjectByCreatorLogin(AI_CREATOR_KEY));
-        assertThat(permissionEvaluator.canWriteProject(project.getId())).isTrue();
+        assertThat(permissionEvaluator.canWriteProjectId(project.getId())).isTrue();
     }
 
     /**
@@ -182,7 +182,7 @@ void canReadProjectAICREATOR() {
     @WithMockUser(username = AI_TESTER_KEY, authorities = AuthoritiesConstants.AITESTER)
     void canReadProjectAITESTER() {
         Project project = projectRepository.getOneByName(initService.getProjectByCreatorLogin(AI_TESTER_KEY));
-        assertThat(permissionEvaluator.canWriteProject(project.getId())).isTrue();
+        assertThat(permissionEvaluator.canWriteProjectId(project.getId())).isTrue();
     }
 
     /**
@@ -202,7 +202,7 @@ void canReadAnotherProjectADMIN() {
     @WithMockUser(username = AI_CREATOR_KEY, authorities = AuthoritiesConstants.AICREATOR)
     void canReadAnotherProjectAICREATOR() {
         Project project = projectRepository.getOneByName(initService.getProjectByCreatorLogin(AI_CREATOR_KEY));
-        assertThat(permissionEvaluator.canWriteProject(project.getId())).isTrue();
+        assertThat(permissionEvaluator.canWriteProjectId(project.getId())).isTrue();
     }
 
     /**
@@ -212,7 +212,7 @@ void canReadAnotherProjectAICREATOR() {
     @WithMockUser(username = AI_TESTER_KEY, authorities = AuthoritiesConstants.AITESTER)
     void canReadAnotherProjectAITESTER() {
         Project project = projectRepository.getOneByName(initService.getProjectByCreatorLogin(ADMIN_KEY));
-        assertThat(permissionEvaluator.canWriteProject(project.getId())).isFalse();
+        assertThat(permissionEvaluator.canWriteProjectId(project.getId())).isFalse();
     }
 
     /**

frontend/src/socket.ts

@@ -1,38 +1,38 @@
-import {reactive} from 'vue';
-import {Client, Frame} from '@stomp/stompjs';
-import {apiURL} from './env';
-import {getLocalToken, httpUrlToWsUrl} from './utils';
-import {useMainStore} from './stores/main';
-import {TYPE} from 'vue-toastification';
+import { reactive } from 'vue';
+import { Client, Frame } from '@stomp/stompjs';
+import { apiURL } from './env';
+import { getLocalToken, httpUrlToWsUrl } from './utils';
+import { useMainStore } from './stores/main';
+import { TYPE } from 'vue-toastification';
 
 export const state = reactive({
   workerStatus: {
-    connected: false,
+    connected: undefined,
   },
 });
-let jwtToken = getLocalToken() || "";
+let jwtToken = getLocalToken() || '';
 export const client = new Client({
   onStompError: async (frame: Frame) => {
     if (frame.headers.message.includes('AccessDeniedException')) {
-      await client.deactivate()
-      useMainStore().addNotification({content: "Failed to establish websocket connection.", color: TYPE.ERROR});
-      console.error(`Failed to establish websocket connection: ${frame.headers.message}`)
+      await client.deactivate();
+      useMainStore().addNotification({ content: 'Failed to establish websocket connection.', color: TYPE.ERROR });
+      console.error(`Failed to establish websocket connection: ${frame.headers.message}`);
     }
   },
-  connectHeaders: {jwt: jwtToken},
+  connectHeaders: { jwt: jwtToken },
   brokerURL: httpUrlToWsUrl(apiURL) + '/websocket',
   onConnect: () => {
     client.subscribe('/topic/worker-status', message => {
       const data = JSON.parse(message.body);
 
-      if (!state.workerStatus.connected && data.connected) {
+      if (state.workerStatus.connected === false && data.connected === true) {
         useMainStore().addNotification({
           content: 'ML Worker is connected!',
           color: TYPE.SUCCESS,
         });
       }
 
-      if (state.workerStatus.connected && !data.connected) {
+      if (state.workerStatus.connected === true && data.connected === false) {
         useMainStore().addNotification({
           content: 'ML Worker is disconnected!',
           color: TYPE.ERROR,