Skip to content

Commit

Permalink
feat: user onboarding (#204)
Browse files Browse the repository at this point in the history 
* chore: fix graphql user for boarding (#180)

* chore: fix graphql user for boarding

* chore: remove additional info

* feat: config imagekit

* chore: use image kit

* feat: add deletebyid datasource

* fix: update user details

* chore: remove add store path

* feat: add update user profile pic mutation

* feat: add update user profile picture resolver

* feat: add condition check

* chore: change type to int

* fix: update user profile picture

* chore: change data type

* feat: remove add store path

* feat: webmail authentication userflow (#183)

* fix: media datasources

* fix: media resolver

* fix: remove imageKitFileID

* feat: user webmail authentication

* fix: set bounded cache for apollo server

* fix:(eslint): remove unused variables

* feat: link migrated user

* feat: checkNITRMail query and resolver

* fix: add load to find by email (#186)

* fix: add load to find by email

* feat: add nodemon

* chore: merge changes from main branch (#188)

* fix: revert package upgrades due to bug

* chore: formatting fixes in package.json

* fix: missing keyword in article resolver

* feat: server API key access (#190)

* refactor: jwt to authToken and x-api-key

* fix(user-resolver): incorrect function params

* chore: update cors and firebase config

* refactor(auth): authorization and permission system (#199)

* chore: update roles and permissions documentation

* chore: add admin field to permissions

* chore: comment out poll system as TODO

* refactor(user): new permission logic

* refactor(squiggle): new permission logic

* refactor(tag): new permission system

* refactor(media): new permission system

* refactor(issue): new permission system

* refactor(article): new permission system

* fix(user): logic in read write check utils

* fix(auth): superadmin roles and bug fixes

* feat(roles): update on user create, link and verify

* feat(env): configure dotenv vault

* chore: add jsconfig

* fix(user): typo in user roles

* chore(issue): add typename in public fields (#201)

* chore(issue): add typename in public fields

* chore: format code

* feat(cors): convert to env variable

* fix(user): update list all user permission (#202)

* chore: rebase onboarding with main (#203)

* fix: revert package upgrades due to bug

* fix(admin): graphql article schema (#182)

* chore: use category number

* fix: create article datasource

* fix: update user datasource

* feat: add update cover mutation

* feat: set new issue publish status true

* fix: handle edge case in create update object

---------

Co-authored-by: Rutaj Dash <33367546+rutajdash@users.noreply.github.com>

---------

Co-authored-by: Rutaj Dash <33367546+rutajdash@users.noreply.github.com>
Co-authored-by: Ashish Padhy <100484401+Shurtu-gal@users.noreply.github.com>
  • Loading branch information
@120EE0692 @rutajdash @Shurtu-gal
3 people committed Sep 26, 2023
1 parent 443d7bc commit 477d759
Show file tree
Hide file tree
Showing 29 changed files with 1,309 additions and 817 deletions.
14 changes: 14 additions & 0 deletions jsconfig.json
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,14 @@
{
"compilerOptions": {
"module": "ESNext",
"moduleResolution": "Node",
"target": "ES2020",
"jsx": "react",
"strictNullChecks": true,
"strictFunctionTypes": true
},
"exclude": [
"node_modules",
"**/node_modules/*"
]
}
219 changes: 219 additions & 0 deletions planning/v1/PERMISSIONS.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,219 @@
# Permissions

## User Section

| Permission Name | Description | Admin |
| ----------------- | ------------------------------- | ----- |
| user.read.private | Can read non-public users' data | false |
| user.read.admin | Can read users' admin fields | true |
| user.write.self | Can update own account | false |
| user.write.all | Can update all user data | true |

---

## Article Section

| Permission Name | Description | Admin |
| ------------------------ | -------------------------------------------------- | ----- |
| article.read.restricted | Can read institute restricted articles | false |
| article.read.unpublished | Can read unpublished, archived or trashed articles | true |
| article.read.admin | Can read admin fields of an article | true |
| article.write.new | Can write a new article | true |
| article.write.self | Can update own articles | true |
| article.write.all | Can update all articles | true |
| article.approve.all | Can approve all articles | true |

---

## Reactions Section

| Permission Name | Description | Admin |
| -------------------- | ---------------------------- | ----- |
| reactions.write.self | Can add/remove a reaction | false |
| reactions.write.all | Can add/remove all reactions | true |

---

## Comment Section

| Permission Name | Description | Admin |
| ----------------------- | ------------------------------ | ----- |
| comment.read.public | Can read public comments | false |
| comment.read.unapproved | Can read unapproved comments | true |
| comment.write.new | Can write a new comment | false |
| comment.write.approved | Can write pre-appoved comments | false |
| comment.write.self | Can update/delete own comments | false |
| comment.write.delete | Can delete all comments | true |
| comment.approve.all | Can approve all comments | true |

---

## Issue Section

| Permission Name | Description | Admin |
| ---------------------- | --------------------------------- | ----- |
| issue.read.unpublished | Can read unpublished issues | true |
| issue.read.admin | Can read admin fields of an issue | true |
| issue.write.new | Can create a new issue | true |
| issue.write.all | Can update all issues | true |
| issue.write.delete | Can delete all issues | true |

---

## Session Section

| Permission Name | Description | Admin |
| -------------------- | --------------------------- | ----- |
| session.write.new | Can create a new session | true |
| session.write.all | Can edit all session data | true |
| session.write.delete | Can delete all session data | true |

---

## Squiggle Section

| Permission Name | Description | Admin |
| --------------------- | ------------------------ | ----- |
| squiggle.read.all | Can read all squiggles | true |
| squiggle.write.new | Can add new squiggles | true |
| squiggle.write.all | Can update all squiggles | true |
| squiggle.write.delete | Can delete all squiggles | true |

---

## Poll Section

| Permission Name | Description | Admin |
| --------------------- | ----------------------------------------- | ----- |
| poll.write.restricted | Can respond to institute restricted polls | false |
| poll.write.all | Can add/edit all polls | true |
| poll.write.delete | Can delete all polls | true |

---

## Media Section

| Permission Name | Description | Admin |
| ------------------ | ----------------------------- | ----- |
| media.write.all | Can add/update all media data | true |
| media.write.delete | Can delete all media data | true |

---

## Album Section

| Permission Name | Description | Admin |
| --------------- | ------------------------------------ | ----- |
| album.write.all | Can add/update/delete all album data | true |

---

## Tag Section

| Permission Name | Description | Admin |
| ---------------- | ----------------------------- | ----- |
| tag.read.admin | Can read admin tags | true |
| tag.write.public | Can create/update public tags | true |
| tag.write.admin | Can create/update admin tags | true |
| tag.write.delete | Can delete all tags | true |

---

## Category Map Section

| Permission Name | Description | Admin |
| ------------------ | --------------------------------------- | ----- |
| category.write.all | Can add/update/delete all category data | true |

---

## Role Section

| Permission Name | Description | Admin |
| --------------- | ----------------------------------- | ----- |
| role.write.all | Can add/update/delete all role data | true |

---

## Club Section

| Permission Name | Description | Admin |
| ----------------- | ---------------------------- | ----- |
| club.write.all | Can add/update all club data | true |
| club.write.delete | Can delete all club data | true |

---

## Event Section

| Permission Name | Description | Admin |
| --------------- | ------------------------------------ | ----- |
| event.write.all | Can add/update/delete all event data | true |

---

## Company Section

| Permission Name | Description | Admin |
| ----------------------- | ------------------------------------------ | ----- |
| company.read.public | Can read public company data | false |
| company.read.restricted | Can read institute restricted company data | false |
| company.read.private | Can read private company data | true |
| company.write.new | Can add new company data | true |
| company.write.all | Can add/update all company data | true |
| company.write.delete | Can delete all company data | true |

---

## Live Section

| Permission Name | Description | Admin |
| -------------------- | --------------------------------------- | ----- |
| live.read.public | Can read public live data | false |
| live.read.restricted | Can read institute restricted live data | false |
| live.read.private | Can read private live data | true |
| live.write.new | Can add new live data | true |
| live.write.all | Can add/update/delete all live data | true |

---

## Share Internship Section

| Permission Name | Description | Admin |
| ------------------------------- | -------------------------------------------------- | ----- |
| shareInternship.read.public | Can read public shareInternship data | false |
| shareInternship.read.restricted | Can read institute restricted shareInternship data | false |
| shareInternship.read.unapproved | Can read unapproved shareInternship data | true |
| shareInternship.write.new | Can add new shareInternship data | false |
| shareInternship.write.all | Can add/update/delete all shareInternship data | true |
| shareInternship.approve.all | Can approve all shareInternship data | true |

---

## Forum Thread Section

| Permission Name | Description | Admin |
| --------------------------- | ------------------------------------------- | ----- |
| forumThread.read.public | Can read public forum threads | false |
| forumThread.read.restricted | Can read institute restricted forum threads | false |
| forumThread.read.unapproved | Can read unapproved forum threads | true |
| forumThread.write.new | Can create a new forum thread | false |
| forumThread.write.approved | Can create pre-approved forum threads | false |
| forumThread.write.self | Can update own forum threads | false |
| forumThread.write.all | Can update all forum threads | true |
| forumThread.write.delete | Can delete all forum threads | true |
| forumThread.approve.all | Can approve all forum threads | true |

---

## Forum Message Section

| Permission Name | Description | Admin |
| ---------------------------- | -------------------------------------- | ----- |
| forumMessage.read.public | Can read public forum messages | false |
| forumMessage.read.unapproved | Can read unapproved forum messages | true |
| forumMessage.write.new | Can create a new forum message | false |
| forumMessage.write.approved | Can create pre-approved forum messages | false |
| forumMessage.write.self | Can update own forum messages | false |
| forumMessage.write.delete | Can delete all forum messages | true |
| forumMessage.approve.all | Can approve all forum messages | true |
Loading

0 comments on commit 477d759

Please sign in to comment.