Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

FINERACT-1977: 4-eye-principle, maker-checker permission #3649

Merged
merged 1 commit into from
Jan 11, 2024
Merged

FINERACT-1977: 4-eye-principle, maker-checker permission #3649

merged 1 commit into from
Jan 11, 2024

Conversation

marta-jankovics
Copy link
Contributor

Description

Describe the changes made and why they were made.

Ignore if these details are present on the associated Apache Fineract JIRA ticket.

Checklist

Please make sure these boxes are checked before submitting your pull request - thanks!

  • Write the commit message as per https://github.com/apache/fineract/#pull-requests

  • Acknowledge that we will not review PRs that are not passing the build ("green") - it is your responsibility to get a proposed PR to pass the build, not primarily the project's maintainers.

  • Create/update unit or integration tests for verifying the changes made.

  • Follow coding conventions at https://cwiki.apache.org/confluence/display/FINERACT/Coding+Conventions.

  • Add required Swagger annotation and update API documentation at fineract-provider/src/main/resources/static/legacy-docs/apiLive.htm with details of any API changes

  • Submission is not a "code dump". (Large changes can be made "in repository" via a branch. Ask on the developer mailing list for guidance, if required.)

FYI our guidelines for code reviews are at https://cwiki.apache.org/confluence/display/FINERACT/Code+Review+Guide.

@IOhacker
Copy link
Contributor

I have reviewed the code and it is Ok for the create client maker-checker action.

Is there a way to include in the integration test case some coverage for Loan, Savings, Transaction (disbursement, withdrawal/deposit)?

This is because I think that this is an important feature enhancement.

@marta-jankovics marta-jankovics mentioned this pull request Jan 2, 2024
Closed
6 tasks
@marta-jankovics
Copy link
Contributor Author

I have reviewed the code and it is Ok for the create client maker-checker action.

Is there a way to include in the integration test case some coverage for Loan, Savings, Transaction (disbursement, withdrawal/deposit)?

This is because I think that this is an important feature enhancement.

Thank you for your review.
I chose CREATE_CLIENT because it is one of the most complicated cases. The request and the command is made for CREATE_CLIENT which is not maker-checker, but ACTIVATE_CLIENT, which runs hidden as a side-action, is maker-checker. So when you try to approve the maker CREATE_CLIENT command request, it should be successful, even if the main action is not 'maker'.
For your request I've added now one more test case, which is more simpler: WITHDRAWAL_SAVINGSACCOUNT. It is a real maker-checker transaction level action, on Savings Account main entity.
If 4 eye is working for both of these cases then I do not think that any more tests are required, because the concept is the same for all other entities/actions.

@marta-jankovics marta-jankovics force-pushed the FINERACT-1977 branch 7 times, most recently from 67d089e to 0c985d2 Compare January 9, 2024 00:07
adamsaghy
adamsaghy reviewed Jan 10, 2024
View reviewed changes
.../src/main/java/org/apache/fineract/commands/service/SynchronousCommandProcessingService.java
if (sameTransaction) {
commandSource = commandSourceService.getInitialCommandSource(wrapper, command, user, idempotencyKey);
} else {
commandSource = commandSourceService.saveInitialNewTransaction(wrapper, command, user, idempotencyKey);
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This seems not correct to me. If we are not storing the initial command, anyone can call it again without any error... Am i missing something?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Any other call would fail, because the idempotency key is unique, but not with 'Too early' error, which would be the correct error code in this case.

@adamsaghy adamsaghy merged commit 16eac93 into apache:develop Jan 11, 2024
8 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@adamsaghy adamsaghy adamsaghy left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
3 participants
@marta-jankovics @IOhacker @adamsaghy