mirror/php-flarum
1
0
Fork 0
mirror of https://github.com/flarum/core.git synced 2025-01-17 06:08:25 +01:00
Code Issues Releases Wiki Activity

Rename viewDiscussions => viewForum, viewUserList => searchUsers (#2854)

Browse Source 
This naming is clearer as to the intended effect. Changes include:

- A migration to rename all permissions
- Updating the seed migration to use the original naming from the start
- Replacing usage of the old names with new names in code
- Throwing warnings when the old names are used.
This commit is contained in:
Alexander Skvortsov 2021-05-11 15:15:27 -04:00 committed by GitHub
parent 06f63a2087
commit d64750b3eb
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
17 changed files with 82 additions and 37 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
js/src/admin/AdminApplication.js
View File

@ -58,7 +58,7 @@ export default class AdminApplication extends Application {
const required = []; const required = [];
if (permission === 'startDiscussion' || permission.indexOf('discussion.') === 0) { if (permission === 'startDiscussion' || permission.indexOf('discussion.') === 0) {
required.push('viewDiscussions'); required.push('viewForum');
} }
if (permission === 'discussion.delete') { if (permission === 'discussion.delete') {
required.push('discussion.hide'); required.push('discussion.hide');

12
js/src/admin/components/PermissionGrid.js
View File

@ -100,11 +100,11 @@ export default class PermissionGrid extends Component {
const items = new ItemList(); const items = new ItemList();
items.add( items.add(
'viewDiscussions', 'viewForum',
{ {
icon: 'fas fa-eye', icon: 'fas fa-eye',
label: app.translator.trans('core.admin.permissions.view_discussions_label'), label: app.translator.trans('core.admin.permissions.view_forum_label'),
permission: 'viewDiscussions', permission: 'viewForum',
allowGuest: true, allowGuest: true,
}, },
100 100
@ -121,11 +121,11 @@ export default class PermissionGrid extends Component {
); );
items.add( items.add(
'viewUserList', 'searchUsers',
{ {
icon: 'fas fa-users', icon: 'fas fa-users',
label: app.translator.trans('core.admin.permissions.view_user_list_label'), label: app.translator.trans('core.admin.permissions.search_users_label'),
permission: 'viewUserList', permission: 'searchUsers',
allowGuest: true, allowGuest: true,
}, },
100 100

4
locale/core.yml
View File

@ -189,14 +189,14 @@ core:
read_heading: Read read_heading: Read
rename_discussions_label: Rename discussions rename_discussions_label: Rename discussions
reply_to_discussions_label: Reply to discussions reply_to_discussions_label: Reply to discussions
search_users_label: Search users
sign_up_label: Sign up sign_up_label: Sign up
start_discussions_label: Start discussions start_discussions_label: Start discussions
title: Permissions title: Permissions
view_discussions_label: View discussions view_forum_label: View forum (discussions and users)
view_hidden_groups_label: View hidden group badges view_hidden_groups_label: View hidden group badges
view_last_seen_at_label: Always view user last seen time view_last_seen_at_label: Always view user last seen time
view_post_ips_label: View post IP addresses view_post_ips_label: View post IP addresses
view_user_list_label: View user list
# These translations are used in the dropdown menus on the Permissions page. # These translations are used in the dropdown menus on the Permissions page.
permissions_controls: permissions_controls:

6
migrations/2018_07_21_000100_seed_default_group_permissions.php
View File

@ -12,12 +12,12 @@ use Illuminate\Database\Schema\Builder;
$rows = [ $rows = [
// Guests can view the forum // Guests can view the forum
['permission' => 'viewDiscussions', 'group_id' => Group::GUEST_ID], ['permission' => 'viewForum', 'group_id' => Group::GUEST_ID],
// Members can create and reply to discussions, and view the user list // Members can create and reply to discussions, and search users
['permission' => 'startDiscussion', 'group_id' => Group::MEMBER_ID], ['permission' => 'startDiscussion', 'group_id' => Group::MEMBER_ID],
['permission' => 'discussion.reply', 'group_id' => Group::MEMBER_ID], ['permission' => 'discussion.reply', 'group_id' => Group::MEMBER_ID],
['permission' => 'viewUserList', 'group_id' => Group::MEMBER_ID], ['permission' => 'searchUsers', 'group_id' => Group::MEMBER_ID],
// Moderators can edit + delete stuff // Moderators can edit + delete stuff
['permission' => 'discussion.hide', 'group_id' => Group::MODERATOR_ID], ['permission' => 'discussion.hide', 'group_id' => Group::MODERATOR_ID],

36
migrations/2021_05_10_000000_rename_permissions.php Normal file
View File

@ -0,0 +1,36 @@
<?php
/*
* This file is part of Flarum.
*
* For detailed copyright and license information, please view the
* LICENSE file that was distributed with this source code.
*/
use Illuminate\Database\Schema\Builder;
return [
'up' => function (Builder $schema) {
$db = $schema->getConnection();
$db->table('group_permission')
->where('permission', 'LIKE', 'viewDiscussions')
->update(['permission' => $db->raw("REPLACE(permission, 'viewDiscussions', 'viewForum')")]);
$db->table('group_permission')
->where('permission', 'LIKE', 'viewUserList')
->update(['permission' => $db->raw("REPLACE(permission, 'viewUserList', 'searchUsers')")]);
},
'down' => function (Builder $schema) {
$db = $schema->getConnection();
$db->table('group_permission')
->where('permission', 'LIKE', 'viewForum')
->update(['permission' => $db->raw("REPLACE(permission, 'viewForum', 'viewDiscussions')")]);
$db->table('group_permission')
->where('permission', 'LIKE', 'searchUsers')
->update(['permission' => $db->raw("REPLACE(permission, 'searchUsers', 'viewUserList')")]);
}
];

2
src/Api/Controller/ListUsersController.php
View File

@ -75,7 +75,7 @@ class ListUsersController extends AbstractListController
{ {
$actor = RequestUtil::getActor($request); $actor = RequestUtil::getActor($request);
$actor->assertCan('viewUserList'); $actor->assertCan('searchUsers');
if (! $actor->hasPermission('user.viewLastSeenAt')) { if (! $actor->hasPermission('user.viewLastSeenAt')) {
// If a user cannot see everyone's last online date, we prevent them from sorting by it // If a user cannot see everyone's last online date, we prevent them from sorting by it

4
src/Api/Serializer/ForumSerializer.php
View File

@ -88,9 +88,9 @@ class ForumSerializer extends AbstractSerializer
'footerHtml' => $this->settings->get('custom_footer'), 'footerHtml' => $this->settings->get('custom_footer'),
'allowSignUp' => (bool) $this->settings->get('allow_sign_up'), 'allowSignUp' => (bool) $this->settings->get('allow_sign_up'),
'defaultRoute' => $this->settings->get('default_route'), 'defaultRoute' => $this->settings->get('default_route'),
'canViewDiscussions' => $this->actor->can('viewDiscussions'), 'canViewForum' => $this->actor->can('viewForum'),
'canStartDiscussion' => $this->actor->can('startDiscussion'), 'canStartDiscussion' => $this->actor->can('startDiscussion'),
'canViewUserList' => $this->actor->can('viewUserList') 'canSearchUsers' => $this->actor->can('searchUsers')
]; ];
if ($this->actor->can('administrate')) { if ($this->actor->can('administrate')) {

2
src/Discussion/Access/ScopeDiscussionVisibility.php
View File

@ -20,7 +20,7 @@ class ScopeDiscussionVisibility
*/ */
public function __invoke(User $actor, $query) public function __invoke(User $actor, $query)
{ {
if ($actor->cannot('viewDiscussions')) { if ($actor->cannot('viewForum')) {
$query->whereRaw('FALSE'); $query->whereRaw('FALSE');
return; return;

2
src/User/Access/ScopeUserVisibility.php
View File

@ -20,7 +20,7 @@ class ScopeUserVisibility
*/ */
public function __invoke(User $actor, $query) public function __invoke(User $actor, $query)
{ {
if ($actor->cannot('viewDiscussions')) { if ($actor->cannot('viewForum')) {
if ($actor->isGuest()) { if ($actor->isGuest()) {
$query->whereRaw('FALSE'); $query->whereRaw('FALSE');
} else { } else {

9
src/User/User.php
View File

@ -404,6 +404,15 @@ class User extends AbstractModel
return false; return false;
} }
private function checkForDeprecatedPermissions($permission)
{
foreach (['viewDiscussions', 'viewUserList'] as $deprecated) {
if (strpos($permission, $deprecated) !== false) {
trigger_error('The `viewDiscussions` and `viewUserList` permissions have been renamed to `viewForum` and `searchUsers` respectively. Please use those instead.', E_USER_DEPRECATED);
}
}
}
/** /**
* Get the notification types that should be alerted to this user, according * Get the notification types that should be alerted to this user, according
* to their preferences. * to their preferences.

6
tests/integration/api/access_tokens/RemembererTest.php
View File

@ -50,7 +50,7 @@ class RemembererTest extends TestCase
Carbon::setTestNow(); Carbon::setTestNow();
$data = json_decode($response->getBody(), true); $data = json_decode($response->getBody(), true);
$this->assertFalse($data['data']['attributes']['canViewUserList']); $this->assertFalse($data['data']['attributes']['canSearchUsers']);
} }
/** /**
@ -71,7 +71,7 @@ class RemembererTest extends TestCase
Carbon::setTestNow(); Carbon::setTestNow();
$data = json_decode($response->getBody(), true); $data = json_decode($response->getBody(), true);
$this->assertFalse($data['data']['attributes']['canViewUserList']); $this->assertFalse($data['data']['attributes']['canSearchUsers']);
} }
/** /**
@ -92,6 +92,6 @@ class RemembererTest extends TestCase
Carbon::setTestNow(); Carbon::setTestNow();
$data = json_decode($response->getBody(), true); $data = json_decode($response->getBody(), true);
$this->assertTrue($data['data']['attributes']['canViewUserList']); $this->assertTrue($data['data']['attributes']['canSearchUsers']);
} }
} }

8
tests/integration/api/authentication/WithApiKeyTest.php
View File

@ -46,7 +46,7 @@ class WithApiKeyTest extends TestCase
); );
$data = json_decode($response->getBody()->getContents(), true); $data = json_decode($response->getBody()->getContents(), true);
$this->assertFalse($data['data']['attributes']['canViewUserList']); $this->assertFalse($data['data']['attributes']['canSearchUsers']);
} }
/** /**
@ -60,7 +60,7 @@ class WithApiKeyTest extends TestCase
); );
$data = json_decode($response->getBody()->getContents(), true); $data = json_decode($response->getBody()->getContents(), true);
$this->assertTrue($data['data']['attributes']['canViewUserList']); $this->assertTrue($data['data']['attributes']['canSearchUsers']);
$this->assertArrayHasKey('adminUrl', $data['data']['attributes']); $this->assertArrayHasKey('adminUrl', $data['data']['attributes']);
$key = ApiKey::where('key', 'mastertoken')->first(); $key = ApiKey::where('key', 'mastertoken')->first();
@ -79,7 +79,7 @@ class WithApiKeyTest extends TestCase
); );
$data = json_decode($response->getBody()->getContents(), true); $data = json_decode($response->getBody()->getContents(), true);
$this->assertTrue($data['data']['attributes']['canViewUserList']); $this->assertTrue($data['data']['attributes']['canSearchUsers']);
$this->assertArrayNotHasKey('adminUrl', $data['data']['attributes']); $this->assertArrayNotHasKey('adminUrl', $data['data']['attributes']);
$key = ApiKey::where('key', 'personaltoken')->first(); $key = ApiKey::where('key', 'personaltoken')->first();
@ -98,7 +98,7 @@ class WithApiKeyTest extends TestCase
); );
$data = json_decode($response->getBody()->getContents(), true); $data = json_decode($response->getBody()->getContents(), true);
$this->assertTrue($data['data']['attributes']['canViewUserList']); $this->assertTrue($data['data']['attributes']['canSearchUsers']);
$this->assertArrayNotHasKey('adminUrl', $data['data']['attributes']); $this->assertArrayNotHasKey('adminUrl', $data['data']['attributes']);
$key = ApiKey::where('key', 'personaltoken')->first(); $key = ApiKey::where('key', 'personaltoken')->first();

2
tests/integration/api/posts/ListTest.php
View File

@ -42,7 +42,7 @@ class ListTests extends TestCase
private function forbidGuestsFromSeeingForum() private function forbidGuestsFromSeeingForum()
{ {
$this->database()->table('group_permission')->where('permission', 'viewDiscussions')->where('group_id', 2)->delete(); $this->database()->table('group_permission')->where('permission', 'viewForum')->where('group_id', 2)->delete();
} }
/** /**

8
tests/integration/api/users/GroupSearchTest.php
View File

@ -54,7 +54,7 @@ class GroupSearchTest extends TestCase
{ {
$this->prepareDatabase([ $this->prepareDatabase([
'group_permission' => [ 'group_permission' => [
['permission' => 'viewUserList', 'group_id' => 2], ['permission' => 'searchUsers', 'group_id' => 2],
], ],
]); ]);
$response = $this->createRequest(['admin'], 2); $response = $this->createRequest(['admin'], 2);
@ -69,7 +69,7 @@ class GroupSearchTest extends TestCase
{ {
$this->prepareDatabase([ $this->prepareDatabase([
'group_permission' => [ 'group_permission' => [
['permission' => 'viewUserList', 'group_id' => 2], ['permission' => 'searchUsers', 'group_id' => 2],
], ],
]); ]);
@ -120,7 +120,7 @@ class GroupSearchTest extends TestCase
{ {
$this->prepareDatabase([ $this->prepareDatabase([
'group_permission' => [ 'group_permission' => [
['permission' => 'viewUserList', 'group_id' => 2], ['permission' => 'searchUsers', 'group_id' => 2],
], ],
]); ]);
@ -139,7 +139,7 @@ class GroupSearchTest extends TestCase
{ {
$this->prepareDatabase([ $this->prepareDatabase([
'group_permission' => [ 'group_permission' => [
['permission' => 'viewUserList', 'group_id' => 2], ['permission' => 'searchUsers', 'group_id' => 2],
], ],
]); ]);
$this->createMultipleUsersAndGroups(); $this->createMultipleUsersAndGroups();

6
tests/integration/api/users/ListTest.php
View File

@ -50,7 +50,7 @@ class ListTest extends TestCase
{ {
$this->prepareDatabase([ $this->prepareDatabase([
'group_permission' => [ 'group_permission' => [
['permission' => 'viewUserList', 'group_id' => 2], ['permission' => 'searchUsers', 'group_id' => 2],
], ],
]); ]);
@ -98,7 +98,7 @@ class ListTest extends TestCase
{ {
$this->prepareDatabase([ $this->prepareDatabase([
'group_permission' => [ 'group_permission' => [
['permission' => 'viewUserList', 'group_id' => 2], ['permission' => 'searchUsers', 'group_id' => 2],
['permission' => 'user.viewLastSeenAt', 'group_id' => 2], ['permission' => 'user.viewLastSeenAt', 'group_id' => 2],
], ],
]); ]);
@ -120,7 +120,7 @@ class ListTest extends TestCase
{ {
$this->prepareDatabase([ $this->prepareDatabase([
'group_permission' => [ 'group_permission' => [
['permission' => 'viewUserList', 'group_id' => 2], ['permission' => 'searchUsers', 'group_id' => 2],
], ],
]); ]);

4
tests/integration/api/users/ShowTest.php
View File

@ -32,12 +32,12 @@ class ShowTest extends TestCase
private function forbidGuestsFromSeeingForum() private function forbidGuestsFromSeeingForum()
{ {
$this->database()->table('group_permission')->where('permission', 'viewDiscussions')->where('group_id', 2)->delete(); $this->database()->table('group_permission')->where('permission', 'viewForum')->where('group_id', 2)->delete();
} }
private function forbidMembersFromSearchingUsers() private function forbidMembersFromSearchingUsers()
{ {
$this->database()->table('group_permission')->where('permission', 'viewUserList')->where('group_id', 3)->delete(); $this->database()->table('group_permission')->where('permission', 'searchUsers')->where('group_id', 3)->delete();
} }
/** /**

6
tests/integration/extenders/UserTest.php
View File

@ -82,7 +82,7 @@ class UserTest extends TestCase
$user = User::find(2); $user = User::find(2);
$this->assertContains('viewUserList', $user->getPermissions()); $this->assertContains('searchUsers', $user->getPermissions());
} }
/** /**
@ -100,7 +100,7 @@ class UserTest extends TestCase
$user = User::find(2); $user = User::find(2);
$this->assertNotContains('viewUserList', $user->getPermissions()); $this->assertNotContains('searchUsers', $user->getPermissions());
} }
/** /**
@ -114,7 +114,7 @@ class UserTest extends TestCase
$user = User::find(2); $user = User::find(2);
$this->assertNotContains('viewUserList', $user->getPermissions()); $this->assertNotContains('searchUsers', $user->getPermissions());
} }
/** /**