objectcomputing · mkimberlin · Mar 22, 2024 · Dec 5, 2023 · Dec 6, 2023 · Dec 7, 2023
diff --git a/server/src/main/java/com/objectcomputing/checkins/security/permissions/Permissions.java b/server/src/main/java/com/objectcomputing/checkins/security/permissions/Permissions.java
@@ -1,21 +1,37 @@
 package com.objectcomputing.checkins.security.permissions;
 
 public enum Permissions {
-    CAN_VIEW_FEEDBACK_REQUEST,
-    CAN_CREATE_FEEDBACK_REQUEST,
-    CAN_DELETE_FEEDBACK_REQUEST,
-    CAN_VIEW_FEEDBACK_ANSWER,
-    CAN_DELETE_ORGANIZATION_MEMBERS,
-    CAN_CREATE_ORGANIZATION_MEMBERS,
-    CAN_VIEW_ROLE_PERMISSIONS,
-    CAN_ASSIGN_ROLE_PERMISSIONS,
-    CAN_VIEW_PERMISSIONS,
-    CAN_VIEW_SKILLS_REPORT,
-    CAN_VIEW_RETENTION_REPORT,
-    CAN_VIEW_ANNIVERSARY_REPORT,
-    CAN_VIEW_BIRTHDAY_REPORT,
-    CAN_VIEW_PROFILE_REPORT,
-    CAN_CREATE_CHECKINS,
-    CAN_VIEW_CHECKINS,
-    CAN_UPDATE_CHECKINS,
-}
+    CAN_VIEW_FEEDBACK_REQUEST("View feedback requests", "Feedback"),
+    CAN_CREATE_FEEDBACK_REQUEST("Create feedback requests", "Feedback"),
+    CAN_DELETE_FEEDBACK_REQUEST("Delete feedback requests", "Feedback"),
+    CAN_VIEW_FEEDBACK_ANSWER("View feedback answers", "Feedback"),
+    CAN_DELETE_ORGANIZATION_MEMBERS("Delete organization members", "User Management"),
+    CAN_CREATE_ORGANIZATION_MEMBERS("Create organization members", "User Management"),
+    CAN_VIEW_ROLE_PERMISSIONS("View role permissions", "Security"),
+    CAN_ASSIGN_ROLE_PERMISSIONS("Assign role permissions", "Security"),
+    CAN_VIEW_PERMISSIONS("View all permissions", "Security"),
+    CAN_VIEW_SKILLS_REPORT("View skills report", "Reporting"),
+    CAN_VIEW_RETENTION_REPORT("View retention report", "Reporting"),
+    CAN_VIEW_ANNIVERSARY_REPORT("View anniversary report", "Reporting"),
+    CAN_VIEW_BIRTHDAY_REPORT("View birthday report", "Reporting"),
+    CAN_VIEW_PROFILE_REPORT("View profile report", "Reporting"),
+    CAN_CREATE_CHECKINS("Create check-ins", "Check-ins"),
+    CAN_VIEW_CHECKINS("View check-ins", "Check-ins"),
+    CAN_UPDATE_CHECKINS("Update check-ins", "Check-ins");
+
+    private final String description;
+    private final String category;
+
+    Permissions(String description, String category) {
+        this.description = description;
+        this.category = category;
+    }
+
+    public String getDescription() {
+        return description;
+    }
+
+    public String getCategory() {
+        return category;
+    }
+}
diff --git a/server/src/main/java/com/objectcomputing/checkins/services/permissions/Permission.java b/server/src/main/java/com/objectcomputing/checkins/services/permissions/Permission.java
@@ -1,5 +1,6 @@
 package com.objectcomputing.checkins.services.permissions;
 
+import com.objectcomputing.checkins.security.permissions.Permissions;
 import io.micronaut.core.annotation.Introspected;
 import io.micronaut.core.annotation.Nullable;
 import io.micronaut.data.annotation.AutoPopulated;
@@ -11,6 +12,7 @@
 import javax.persistence.Entity;
 import javax.persistence.Id;
 import javax.persistence.Table;
+import javax.persistence.Transient;
 import javax.validation.constraints.NotBlank;
 import java.util.Objects;
 import java.util.UUID;
@@ -59,13 +61,18 @@ public void setPermission(String permission) {
     }
 
     public String getDescription() {
-        return description;
+        return Permissions.valueOf(permission).getDescription(); //ignoring the database for now...
     }
 
     public void setDescription(String description) {
         this.description = description;
     }
 
+    @Transient
+    public String getCategory() {
+        return Permissions.valueOf(permission).getCategory();
+    }
+
     @Override
     public boolean equals(Object o) {
         if (this == o) return true;

diff --git a/server/src/test/java/com/objectcomputing/checkins/services/fixture/PermissionFixture.java b/server/src/test/java/com/objectcomputing/checkins/services/fixture/PermissionFixture.java
@@ -55,12 +55,12 @@ public interface PermissionFixture extends RepositoryFixture, RolePermissionFixt
     );
 
     default Permission createACustomPermission(Permissions perm) {
-        return getPermissionRepository().save(new Permission(null, perm.name(), null));
+        return getPermissionRepository().save(new Permission(null, perm.name(), perm.getDescription()));
     }
 
     default void saveAllPermissions() {
         for(Permissions permissions : Permissions.values()) {
-            getPermissionRepository().save(new Permission(null, permissions.name(), null));
+            getPermissionRepository().save(new Permission(null, permissions.name(), permissions.getDescription()));
         }
     }
 

diff --git a/web-ui/src/api/memberroles.js b/web-ui/src/api/memberroles.js
@@ -0,0 +1,11 @@
+import { resolve } from "./api.js";
+
+const memberRolesUrl = "/services/roles/members"
+
+export const getMemberRolesList = async (cookie) => {
+    return resolve({
+      url: memberRolesUrl,
+      responseType: "json",
+      headers: { "X-CSRF-Header": cookie },
+    });
+  };
diff --git a/web-ui/src/api/permissions.js b/web-ui/src/api/permissions.js
@@ -0,0 +1,11 @@
+import { resolve } from "./api.js";
+
+const permissionsListUrl = "/services/permissions"
+
+export const getPermissionsList = async (cookie) => {
+    return resolve({
+      url: permissionsListUrl,
+      responseType: "json",
+      headers: { "X-CSRF-Header": cookie },
+    });
+  };
diff --git a/web-ui/src/api/rolepermissions.js b/web-ui/src/api/rolepermissions.js
@@ -0,0 +1,31 @@
+import { resolve } from "./api.js";
+
+const rolePermissionsListUrl = "/services/roles/role-permissions";
+
+export const getRolePermissionsList = async (cookie) => {
+  return resolve({
+    url: rolePermissionsListUrl,
+    responseType: "json",
+    headers: { "X-CSRF-Header": cookie },
+  });
+};
+
+export const postRolePermissionsList = async (roleData, cookie) => {
+  return resolve({
+    method: "post",
+    url: rolePermissionsListUrl,
+    responseType: "json",
+    data: roleData,
+    headers: { "X-CSRF-Header": cookie },
+  });
+};
+
+export const deleteRolePermissionsList = async (roleData, cookie) => {
+  return resolve({
+    method: "delete",
+    url: rolePermissionsListUrl,
+    responseType: "json",
+    data: roleData,
+    headers: { "X-CSRF-Header": cookie },
+  });
+};
diff --git a/web-ui/src/api/roles.js b/web-ui/src/api/roles.js
@@ -19,6 +19,14 @@ export const getAllUserRoles = async (cookie) => {
   });
 };
 
+export const getCurrentUserRole = async (memberId, cookie) => {
+  return resolve({
+    url: `${roleURL}/${memberId}`,
+    responseType: "json",
+    headers: { "X-CSRF-Header": cookie },
+  });
+};
+
 export const removeUserFromRole = async (roleId, memberId, cookie) => {
   return resolve({
     method: "delete",

diff --git a/web-ui/src/components/menu/Menu.jsx b/web-ui/src/components/menu/Menu.jsx
@@ -96,6 +96,7 @@ const Root = styled('div')(({theme}) => ({
 
 const adminLinks = [
   // ["/admin/permissions", "Permissions"],
+  ["/admin/edit-permissions", "Permissions Roles"],
   ["/admin/roles", "Roles"],
   ["/admin/users", "Users"],
   ["/admin/email", "Send Email"],

diff --git a/web-ui/src/components/routes/Routes.jsx b/web-ui/src/components/routes/Routes.jsx
@@ -7,6 +7,7 @@ import BirthdayAnniversaryReportPage from "../../pages/BirthdayAnniversaryReport
 import CheckinsPage from "../../pages/CheckinsPage";
 import CheckinsReportPage from "../../pages/CheckinsReportPage";
 import EditSkillsPage from "../../pages/EditSkillsPage";
+import EditPermissionsPage from "../../pages/EditPermissionsPage";
 import GroupIcon from "@mui/icons-material/Group";
 import GuildsPage from "../../pages/GuildsPage";
 import Header from "../header/Header";
@@ -101,6 +102,10 @@ export default function Routes() {
             <Header title="Skills" />
             <EditSkillsPage />
           </Route>
+          <Route path="/admin/edit-permissions">
+            <Header title="Permissions Roles" />
+            <EditPermissionsPage />
+          </Route>
           <Route path="/checkins-reports">
             <Header title="Check-in Report" />
             <CheckinsReportPage />

diff --git a/web-ui/src/context/actions.js b/web-ui/src/context/actions.js
@@ -2,10 +2,12 @@ export const ADD_CHECKIN = "@@check-ins/add_checkin";
 export const ADD_GUILD = "@@check-ins/add_guild";
 export const ADD_MEMBER_SKILL = "@@check-ins/add_member_skill";
 export const ADD_SKILL = "@@check-ins/add-skill";
+export const ADD_PERMISSION = "@@check-ins/add-permission";
 export const ADD_TEAM = "@@check-ins/add_team";
 export const DELETE_MEMBER_PROFILE = "@@check-ins/delete_member_profile";
 export const DELETE_MEMBER_SKILL = "@@check-ins/delete_member_skill";
 export const DELETE_SKILL = "@@check-ins/delete-skill";
+export const DELETE_PERMISSION = "@@check-ins/delete-permission";
 export const DELETE_ROLE = "@@check-ins/delete-role";
 export const MY_PROFILE_UPDATE = "@@check-ins/update_profile";
 export const SET_CSRF = "@@check-ins/update_csrf";
@@ -21,6 +23,7 @@ export const UPDATE_MEMBER_SKILLS = "@@check-ins/update_member_skills";
 export const UPDATE_ROLES = "@@check-ins/update_roles";
 export const UPDATE_SKILL = "@@check-ins/update_skill";
 export const UPDATE_SKILLS = "@@check-ins/update_skills";
+export const UPDATE_PERMISSION = "@@check-ins/update-permission";
 export const UPDATE_TEAM_MEMBERS = "@@check-ins/update_team_members";
 export const UPDATE_TEAMS = "@@check-ins/update_teams";
 export const UPDATE_TERMINATED_MEMBERS =

diff --git a/web-ui/src/context/selectors.js b/web-ui/src/context/selectors.js
@@ -14,6 +14,7 @@ export const selectTeams = (state) => state.teams;
 export const selectGuilds = (state) => state.guilds;
 export const selectLoading = (state) => state.loading;
 export const selectReviewPeriods = (state) => state.reviewPeriods;
+export const selectPermissions = (state) => state.permissions;
 
 export const selectTeamsLoading = createSelector (
   selectLoading,
@@ -434,6 +435,15 @@ export const selectMyGuilds = createSelector(
     )
 );
 
+export const selectMyPermissions = createSelector(
+  selectCurrentUserId,
+  selectPermissions,
+  (id, permissions) =>
+  permissions?.filter((permission) =>
+    permission.permissions?.some((member) => member.memberId === id)
+    )
+);
+
 export const selectMyTeams = createSelector(
   selectCurrentUserId,
   selectTeams,

diff --git a/web-ui/src/helpers/checks.js b/web-ui/src/helpers/checks.js
@@ -0,0 +1,32 @@
+/**
+ * Full check for whether an array actually exists or is empty, etc
+ * @param arr - an array
+ * @returns a boolean
+ */
+
+export const isArrayPresent = (arr) => Array.isArray(arr) && arr.length;
+
+/**
+ * Check for whether unique object is already in an array and return a boolean.
+ * @param arr - an array
+ * @returns a boolean
+ */
+export const isObjectInArray = (arr, obj) => {
+  return arr.includes(obj);
+};
+
+/**
+ * If a parameter is found in an object within an array, return the array with just that object.
+ * @param arr - an array
+ * @param value - a value
+ * @param key - an optional key with which to search
+ * @returns an array
+ */
+
+export function filterObjectByValOrKey(arr, value, key) {
+  return arr.filter(
+    key
+      ? (a) => a[key].indexOf(value) > -1
+      : (a) => Object.keys(a).some((k) => a[k] === value)
+  );
+}
diff --git a/web-ui/src/pages/EditPermissionsPage.css b/web-ui/src/pages/EditPermissionsPage.css
@@ -0,0 +1,7 @@
+.edit-permissions-page {
+  margin: 2rem;
+}
+
+.edit-permissions-list {
+  margin: 1rem;
+}