Skip to content

/ Rocket.Chat

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[NEW] GDPR - Right to access and Data Portability #9906

Merged
merged 26 commits into from Apr 21, 2018
Merged

[NEW] GDPR - Right to access and Data Portability #9906

merged 26 commits into from Apr 21, 2018

Conversation

@Hudell
Copy link
Contributor

@Hudell Hudell commented Feb 26, 2018
edited by rodrigok

@RocketChat/core

Closes #9767
Closes #9768

This PR adds an option for users to download all their data stored in the servers, in either JSON or HTML format. This funcionality can be enabled by an admin through a new page on the administration center.

Administration Center

Once enabled, two new buttons will be added to the user's account page:
My Account

When the user clicks on one of those new buttons, the system will register the request on the new exportOperations collection. The server will then automatically export all the messages and attachments from every channel that the user has access to. When this operation is complete, the server will generate a zip file and send an email to the user with a download link.

Each button can only be used once per day. The download button will generate HTML files and the export button will generate JSON files.
Hudell added 13 commits Feb 20, 2018
@Hudell
Implemented basic JSON generation
4726593
@Hudell
Added new data to message json
0945340
@Hudell
Merge branch 'develop' into right-to-access
6759890
@Hudell
Changed export operation structure
5ad3755
@Hudell
Changed code to use forEach instead of fetch
e3c8f0a
@Hudell
Split the operation into two independent commands
cdec24a
@Hudell
File download, zip generation, admin settings
b41d67c
@Hudell
Merge branch 'develop' into right-to-access
3c45bad
@Hudell
Merge branch 'develop' into right-to-access
0b73219
@Hudell
Use syncedcron to process data downloads
41fa0db
@Hudell
Added download URL
e8e006e
@Hudell
Sending emails when the download file is ready
a726286
@Hudell
Merge branch 'develop' into right-to-access
Loading status checks…
500e00e
@Hudell Hudell requested a review from rodrigok Feb 26, 2018
@Hudell Hudell added this to the 0.63.0 milestone Feb 26, 2018
@geekgonecrazy
geekgonecrazy reviewed Feb 27, 2018
View changes
packages/rocketchat-user-data-download/server/lib/requests.js Outdated
return res.end();
}

const filePath = operation.generatedFile;

This comment has been minimized.

Sign in to view
@geekgonecrazy

geekgonecrazy Feb 27, 2018
Member

We are making a lot of assumptions about long term storage being available on the disk. Could we store the file on the file store provider already setup on the server?

Let's just imagine that this is in a docker container. If you write the file and then the container is restarted the file is gone. Mounting a directory is possible... But in some setups this is pretty difficult

This comment has been minimized.

Sign in to view
@Hudell

Hudell Feb 28, 2018
Author Contributor

I've added GridFS, Amazon and Google Storage as options for the location of the generated file.
Hudell added 4 commits Feb 27, 2018
@Hudell
Merge branch 'develop' into right-to-access
Loading status checks…
2a04ef7
@Hudell
Allow usage of GridFS as storage for the finished file.
649f1ac
@Hudell
Merge branch 'develop' into right-to-access
Loading status checks…
8122ab1
@Hudell
Lint
Loading status checks…
b013ff1
@RocketChat RocketChat deleted a comment Feb 27, 2018
@RocketChat RocketChat deleted a comment Feb 27, 2018
@RocketChat RocketChat deleted a comment Feb 27, 2018
@RocketChat RocketChat deleted a comment Feb 27, 2018
@RocketChat RocketChat deleted a comment Feb 27, 2018
@RocketChat RocketChat deleted a comment Feb 27, 2018
@RocketChat RocketChat deleted a comment Feb 27, 2018
@RocketChat RocketChat deleted a comment Feb 27, 2018
@RocketChat RocketChat deleted a comment Feb 27, 2018
@RocketChat RocketChat deleted a comment Feb 27, 2018
Hudell added 4 commits Mar 5, 2018
@Hudell
Split the options to download and export data
4f10a4f
@Hudell
Merge branch 'develop' into right-to-access
Loading status checks…
3883fcf
@Hudell
Merge branch 'develop' into data-portability
3b76b64
@Hudell
Merge branch 'data-portability' into right-to-access
Loading status checks…
dd2cccc
@Hudell Hudell changed the title [NEW] GDPR - Right to access [NEW] GDPR - Right to access and Data Portability Mar 5, 2018
@Hudell
Removed commented code
Loading status checks…
79743a8
@rodrigok rodrigok added this to Desireable in 0.63.0 via automation Mar 26, 2018
@theorenck theorenck modified the milestones: 0.63.0, 0.64.0 Apr 9, 2018
@theorenck theorenck added this to Desireable in 0.64.0 via automation Apr 9, 2018
@theorenck theorenck moved this from Desireable to Review/QA in 0.64.0 Apr 9, 2018
@Hudell Hudell removed the request for review from rodrigok Apr 17, 2018
@Hudell Hudell dismissed geekgonecrazy’s stale review Apr 17, 2018

Code was changed

@Hudell
Merge branch 'develop' into right-to-access
Verified
This commit was created on GitHub.com and signed with a verified signature using GitHub’s key.
GPG key ID: 4AEE18F83AFDEB23 Learn about signing commits
Loading status checks…
a1086d7
@theorenck theorenck moved this from Review/QA to Ready to merge in 0.64.0 Apr 18, 2018
@theorenck theorenck moved this from Ready to merge to Review/QA in 0.64.0 Apr 18, 2018
@Hudell @rodrigok
Merge branch 'develop' into right-to-access
Verified
This commit was signed with a verified signature.
rodrigok Rodrigo Nascimento
GPG key ID: CFCE33B7B01AC335 Learn about signing commits
Loading status checks…
30fca01
@rodrigok rodrigok force-pushed the Hudell:right-to-access branch to 30fca01 Apr 21, 2018
@rodrigok
rodrigok approved these changes Apr 21, 2018
View changes
@rodrigok rodrigok merged commit fee30ad into RocketChat:develop Apr 21, 2018
4 checks passed
4 checks passed
ci/circleci: build Your tests passed on CircleCI!
Details
ci/circleci: test-with-oplog Your tests passed on CircleCI!
Details
ci/circleci: test-without-oplog Your tests passed on CircleCI!
Details
license/cla Contributor License Agreement is signed.
Details
0.64.0 automation moved this from Review/QA to Done Apr 21, 2018
engelgabriel added a commit that referenced this pull request Apr 21, 2018
@engelgabriel
Merge branch 'develop' of github.com:RocketChat/Rocket.Chat into develop
Loading status checks…
d7e5c1e 
* 'develop' of github.com:RocketChat/Rocket.Chat:
  [NEW] Option to mute group mentions (@ALL and @here) (#10502)
  [NEW] GDPR - Right to access and Data Portability (#9906)
@rodrigok rodrigok mentioned this pull request Apr 28, 2018
Merged
@ghost
Copy link

@ghost ghost commented Apr 30, 2018

Just tried that but I get internal server error +

Exception while invoking method 'requestDataDownload' Error: ENOENT: no such file or directory, mkdir '/tmp/userData/HxSazvfL5T6vRHP8K'
    at Object.fs.mkdirSync (fs.js:885:18)
    at MethodInvocation.requestDataDownload (/opt/rocketchat-0.64.0/programs/server/app/app.js:10356:10)
    at MethodInvocation.methodMap.(anonymous function) (packages/rocketchat_monitoring.js:2731:30)
    at MethodInvocation.methodsMap.(anonymous function) (/opt/rocketchat-0.64.0/programs/server/packages/rocketchat_lib.js:2186:28)
    at maybeAuditArgumentChecks (/opt/rocketchat-0.64.0/programs/server/packages/ddp-server.js:1877:12)
    at DDP._CurrentMethodInvocation.withValue (/opt/rocketchat-0.64.0/programs/server/packages/ddp-server.js:902:126)
    at Meteor.EnvironmentVariable.EVp.withValue (packages/meteor.js:1186:12)
    at DDPServer._CurrentWriteFence.withValue (/opt/rocketchat-0.64.0/programs/server/packages/ddp-server.js:902:98)
    at Meteor.EnvironmentVariable.EVp.withValue (packages/meteor.js:1186:12)
    at Promise (/opt/rocketchat-0.64.0/programs/server/packages/ddp-server.js:902:46)
    at new Promise (<anonymous>:null:null)
    at Session.method (/opt/rocketchat-0.64.0/programs/server/packages/ddp-server.js:875:23)
    at /opt/rocketchat-0.64.0/programs/server/packages/ddp-server.js:754:85
@ghost
Copy link

@ghost ghost commented Apr 30, 2018

Creating /tmp/userData solves that. Hm.
@photoninger
Copy link

@photoninger photoninger commented Apr 30, 2018

mkdir -p would avoid such errors
@Elvinra
Copy link

@Elvinra Elvinra commented May 17, 2018

On docker same problem, the user rocketchat don't have the permissions on tmp folder

  • little fix: Mount a volume on /tmp/userData, put chmod 777 on the host system

Real fix: update the dockerfile to create that folder and put the permissions to rocketchat user
@marceloschmidt marceloschmidt mentioned this pull request May 20, 2018
Open
@photoninger
Copy link

@photoninger photoninger commented May 28, 2018

When are the exported files and zip files deleted?
Or do you depend on deleting everything in /tmp on reboot?
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@rodrigok rodrigok

@geekgonecrazy geekgonecrazy

Assignees
No one assigned
Labels
None yet
Projects
0.63.0
  
Desireable
0.64.0
  
Done
Milestone
0.64.0
Linked issues

Successfully merging this pull request may close these issues.

None yet

6 participants
@Hudell @photoninger @Elvinra @geekgonecrazy @rodrigok @theorenck