Skip to content

Commit

Permalink
Merge pull request #464 from TheRestartProject/RES-1627_unapproved_ev…
Browse files Browse the repository at this point in the history 
…ents_display

RES-1627 unapproved events display
  • Loading branch information
@edwh
edwh committed Mar 14, 2022
2 parents 113bb18 + 845058d commit 73000d9
Show file tree
Hide file tree
Showing 10 changed files with 153 additions and 23 deletions.
44 changes: 44 additions & 0 deletions app/Helpers/Fixometer.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -82,6 +82,50 @@ public static function dateFormat($timestamp)
return date('D, j M Y, H:i', $timestamp);
}

public static function userHasViewPartyPermission($partyId, $userId = null)
{
$party = Party::findOrFail($partyId);
$group = $party->theGroup;

if ($group->approved) {
// Events on approved groups are always visible, whether or not the event has been approved.
return true;
}

// The group is not approved. Events are only visible to:
// - administrators
// - (relevant) network coordinators
// - hosts of the relevant group
if (is_null($userId)) {
if (empty(Auth::user())) {
return false;
} else {
$userId = Auth::user()->id;
}
}

$user = User::findOrFail($userId);

if (self::hasRole($user, 'Administrator')) {
return true;
}

if (self::hasRole($user, 'NetworkCoordinator')) {
$group = $party->theGroup;
foreach ($group->networks as $network) {
if ($network->coordinators->contains($user)) {
return true;
}
}
}

if (self::hasRole($user, 'Host') && self::userIsHostOfGroup($group->idgroups, $userId)) {
return true;
}

return false;
}

public static function userHasEditPartyPermission($partyId, $userId = null)
{
$party = Party::findOrFail($partyId);
Expand Down
27 changes: 16 additions & 11 deletions app/Http/Controllers/PartyController.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -125,21 +125,26 @@ public function index($group_id = null)
->get();

foreach ($upcoming_events_in_area as $event) {
$e = self::expandEvent($event, NULL);
$e['nearby'] = TRUE;
$e['all'] = TRUE;
$events[] = $e;
if (Fixometer::userHasViewPartyPermission($event->idevents)) {
$e = self::expandEvent($event, null);
$e['nearby'] = true;
$e['all'] = true;
$events[] = $e;
}
}
}

// ...and any other upcoming events
// ...and any other upcoming approved events
$other_upcoming_events = Party::future()->
whereNotIn('idevents', \Illuminate\Support\Arr::pluck($events, 'idevents'))->get();
whereNotIn('idevents', \Illuminate\Support\Arr::pluck($events, 'idevents'))->
get();

foreach ($other_upcoming_events as $event) {
$e = self::expandEvent($event, NULL);
$e['all'] = TRUE;
$events[] = $e;
if (Fixometer::userHasViewPartyPermission($event->idevents)) {
$e = self::expandEvent($event, NULL);
$e['all'] = TRUE;
$events[] = $e;
}
}

$group = null;
Expand Down Expand Up @@ -563,8 +568,8 @@ public function view($id)
$Party = new Party;
$event = Party::find($id);

// If event no longer exists
if (empty($event)) {
// If event no longer exists or is not visible
if (empty($event) || !Fixometer::userHasViewPartyPermission($id)) {
abort(404);
}

Expand Down
9 changes: 6 additions & 3 deletions app/Party.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -525,14 +525,17 @@ public function scopeUpcomingEventsInUserArea($query, $user)
{
// We want to exclude groups which we are a member of, but include ones where we have been invited but
// not yet joined.
$user_group_ids = UserGroups::where('user', $user->id)->where('status', 1)->pluck('group')->toArray();
$exclude_group_ids = UserGroups::where('user', $user->id)->where('status', 1)->pluck('group')->toArray();

// We also want to exclude any groups which are not yet approved.
$exclude_group_ids = array_merge($exclude_group_ids, Group::whereNull('wordpress_post_id')->pluck('idgroups')->toArray());

return $this
->select(DB::raw('`events`.*, ( 6371 * acos( cos( radians('.$user->latitude.') ) * cos( radians( events.latitude ) ) * cos( radians( events.longitude ) - radians('.$user->longitude.') ) + sin( radians('.$user->latitude.') ) * sin( radians( events.latitude ) ) ) ) AS distance'))
->join('groups', 'groups.idgroups', '=', 'events.group')
->join('users_groups', 'users_groups.group', '=', 'groups.idgroups')
->where(function ($query) use ($user_group_ids) {
$query->whereNotIn('events.group', $user_group_ids)
->where(function ($query) use ($exclude_group_ids) {
$query->whereNotIn('events.group', $exclude_group_ids)
->where('event_start_utc', '>=', date('Y-m-d H:i:s'));
})
->having('distance', '<=', User::NEARBY_KM)
Expand Down
3 changes: 3 additions & 0 deletions resources/js/components/EventDescription.vue
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,6 +5,9 @@
</template>
<template slot="content">
<read-more :html="event.free_text" class="mt-2 readmore small" :max-chars="440" :more-str="__('events.read_more')" :less-str="__('events.read_less')" />
<p v-if="!event.approved" class="small text-muted">
{{ __('partials.event_requires_moderation_by_an_admin') }}.
</p>
</template>
</CollapsibleSection>
</template>
Expand Down
4 changes: 3 additions & 1 deletion tests/Feature/Events/CreateEventTest.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -70,7 +70,9 @@ public function a_host_with_a_group_can_create_an_event($data)
$host = factory(User::class)->states('Host')->create();
$this->actingAs($host);

$group = factory(Group::class)->create();
$group = factory(Group::class)->create([
'wordpress_post_id' => '99999'
]);
$group->addVolunteer($host);
$group->makeMemberAHost($host);

Expand Down
4 changes: 3 additions & 1 deletion tests/Feature/Events/DeleteEventTest.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -101,7 +101,9 @@ public function view_edit_deleted_event($role)
$host = factory(User::class)->states($roleToCreate)->create();
$this->actingAs($host);

$group = factory(Group::class)->create();
$group = factory(Group::class)->create([
'wordpress_post_id' => '99999'
]);
$group->addVolunteer($host);
$group->makeMemberAHost($host);

Expand Down
8 changes: 6 additions & 2 deletions tests/Feature/Events/InviteEventTest.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -20,7 +20,9 @@ public function testInvite()

$this->withoutExceptionHandling();

$group = factory(Group::class)->create();
$group = factory(Group::class)->create([
'wordpress_post_id' => '99999'
]);
$event = factory(Party::class)->create([
'group' => $group,
'event_start_utc' => '2130-01-01T12:13:00+00:00',
Expand Down Expand Up @@ -121,7 +123,9 @@ public function testInvitableUserPOV()
{
$this->withoutExceptionHandling();

$group = factory(Group::class)->create();
$group = factory(Group::class)->create([
'wordpress_post_id' => '99999'
]);
$host = factory(User::class)->states('Host')->create();
$event = factory(Party::class)->create([
'group' => $group,
Expand Down
4 changes: 3 additions & 1 deletion tests/Feature/Events/JoinEventTest.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -20,7 +20,9 @@ public function testJoin()
{
$this->withoutExceptionHandling();

$group = factory(Group::class)->create();
$group = factory(Group::class)->create([
'wordpress_post_id' => '99999'
]);
$event = factory(Party::class)->create(['group' => $group->idgroups]);

$user = factory(User::class)->states('Restarter')->create();
Expand Down
62 changes: 62 additions & 0 deletions tests/Feature/Groups/GroupCreateTest.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,9 +3,13 @@
namespace Tests\Feature\Groups;

use App\Group;
use App\Network;
use App\Notifications\GroupConfirmed;
use App\Party;
use App\Role;
use App\User;
use Carbon\Carbon;
use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
use Tests\TestCase;
use Illuminate\Support\Facades\Notification;

Expand Down Expand Up @@ -95,4 +99,62 @@ function ($notification, $channels, $host) use ($group) {

$this->assertContains('Group updated!', $response->getContent());
}

public function testEventVisibility() {
// Create a network.
$network = factory(Network::class)->create();

// Create an unapproved group in that network.
$admin1 = factory(User::class)->state('Administrator')->create();
$this->actingAs($admin1);
$idgroups = $this->createGroup('Test Group', 'https://therestartproject.org', 'London', 'Some text.', true, false);
$group = Group::find($idgroups);
$network->addGroup($group);

// Create a host for the group.
$host = factory(User::class)->states('Host')->create();
$group->addVolunteer($host);
$group->makeMemberAHost($host);
$this->actingAs($host);

// Create an event on this as yet unapproved group.
$eventAttributes = factory(Party::class)->raw();
$eventAttributes['group'] = $idgroups;
$eventAttributes['link'] = 'https://therestartproject.org/';
$eventAttributes['event_start_utc'] = Carbon::parse('1pm tomorrow')->toIso8601String();
$eventAttributes['event_end_utc'] = Carbon::parse('3pm tomorrow')->toIso8601String();

$this->post('/party/create/', $eventAttributes);
$event = Party::latest()->first();
$this->assertEquals($host->id, $event->user_id);

// The event should be visible to the host.
$this->get('/party/view/'.$event->idevents)->assertSee($eventAttributes['venue']);
$this->get('/party')->assertSee($eventAttributes['venue']);

// And to a network coordinator
$coordinator = factory(User::class)->state('NetworkCoordinator')->create();
$network->addCoordinator($coordinator);
$this->actingAs($coordinator);
$this->get('/party/view/'.$event->idevents)->assertSee($eventAttributes['venue']);
$this->get('/party')->assertSee($eventAttributes['venue']);

// This event should not be visible to a Restarter, as the group is not yet approved.
$restarter = factory(User::class)->states('Restarter')->create();
$this->actingAs($restarter);
try {
$this->get('/party/view/'.$event->idevents)->assertDontSee($eventAttributes['venue']);
$this->assertTrue(false);
} catch (NotFoundHttpException $e) {}

$this->get('/party')->assertDontSee($eventAttributes['venue']);

// Now approve the group.
$group->wordpress_post_id = '99999';
$group->save();

// Should now be visible.
$this->get('/party/view/'.$event->idevents)->assertSee($eventAttributes['venue']);
$this->get('/party')->assertSee($eventAttributes['venue']);
}
}
11 changes: 7 additions & 4 deletions tests/TestCase.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -131,7 +131,7 @@ public function loginAsTestUser($role = Role::RESTARTER)
Auth::user()->role = $role;
}

public function createGroup($name = 'Test Group', $website = 'https://therestartproject.org', $location = 'London', $text = 'Some text.', $assert = true)
public function createGroup($name = 'Test Group', $website = 'https://therestartproject.org', $location = 'London', $text = 'Some text.', $assert = true, $approve = true)
{
$idgroups = null;

Expand All @@ -148,9 +148,12 @@ public function createGroup($name = 'Test Group', $website = 'https://therestart
$this->assertNotFalse(strpos($redirectTo, '/group/edit'));
$p = strrpos($redirectTo, '/');
$idgroups = substr($redirectTo, $p + 1);
$group = Group::find($idgroups);
$group->wordpress_post_id = '99999';
$group->save();

if ($approve) {
$group = Group::find($idgroups);
$group->wordpress_post_id = '99999';
$group->save();
}

// Currently logged in user should be present, with status 1 = approved.
$member = UserGroups::where('group', $idgroups)->first();
Expand Down

0 comments on commit 73000d9

Please sign in to comment.