forest_liana 6.3.4 → 6.3.5

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 0d8c0675fe5c776a7168baf4e5375ead76bd8319b75c29c620e6888bbd9bfaec
-  data.tar.gz: 5d20db5792e2b1a637545cfe4a024df625db72004671fb47fa3eb15c68801736
+  metadata.gz: 834c9124265c1aee37c5dfcb4bf61bf47f9e874b7491fc746d77f4a8ce2844e2
+  data.tar.gz: 469622daee20e8211a8808a2a1c6c574f130c9035c6d45cd1b4e6b462696e7f8
 SHA512:
-  metadata.gz: 8de8c18b1b18b60f8d7096734e16a187a4e0d87cd9d5e00ef6fa70e7a8efb042bcbc08c084c33102c810c11da56402a8f77f554e4bbfbe4e9de60e3b3b90fdcf
-  data.tar.gz: 9959a3a3a53996d7cfcf638f82c24b93a471a01cb6f7eb75e20c459711235e68ea3077c9d44a0d606f5e4a396a5739649945d26d617d1e16da58234e6e03454f
+  metadata.gz: 5b1530018ef75a9621156626e13af9b7f0b41b0b555a9dbb6c4e7bafa2cdab1abe6641bc51e45f9c13fc29fe11ba6007f6d2f697f9f9763fe11c5e7120e4db05
+  data.tar.gz: 3c4e5fcce7f49d40e4e0ca18b385bf152df88675408add741acca22180c773e446730107fc5c1adf09cc70db5da98f978068267fbeddef1ff8b8627c18c36346

data/app/controllers/forest_liana/stats_controller.rb

@@ -89,6 +89,11 @@ module ForestLiana
       parameters.delete('controller');
       parameters.delete('action');
 
+      # NOTICE: Remove the field information from group_by_field => collection:id
+      if parameters['group_by_field']
+        parameters['group_by_field'] = parameters['group_by_field'].split(':').first
+      end
+
       return parameters;
     end
 

data/app/services/forest_liana/permissions_checker.rb

@@ -177,13 +177,12 @@ module ForestLiana
       return false unless pool_permissions
 
       # NOTICE: equivalent to Object.values in js & removes nil values
-      array_query_request_info = @query_request_info.values.filter_map{ |x| x unless x.nil? }
+      array_permission_infos = @query_request_info.values.filter_map{ |x| x unless x.nil? }
 
-      # NOTICE: pool_permissions contains the @query_request_info
-      #   we use the intersection between statPermission and @query_request_info
+      # NOTICE: Is there any pool_permissions containing the array_permission_infos
       return pool_permissions.any? {
         |statPermission|
-          (array_query_request_info & statPermission.values) == array_query_request_info;
+          (array_permission_infos.all? { |info| statPermission.values.include?(info) });
       }
     end
 

data/lib/forest_liana/version.rb

@@ -1,3 +1,3 @@
 module ForestLiana
-  VERSION = "6.3.4"
+  VERSION = "6.3.5"
 end

data/spec/requests/stats_spec.rb

@@ -72,12 +72,14 @@ describe "Stats", type: :request do
       expect(response.status).to eq(404)
     end
 
-    # it 'should respond 403 Forbidden' do
-    #   allow_any_instance_of(ForestLiana::PermissionsChecker).to receive(:is_authorized?) { false }
+    it 'should respond 403 Forbidden' do
+      allow_any_instance_of(ForestLiana::PermissionsChecker).to receive(:is_authorized?) { false }
+      # NOTICE: bypass : find_resource error
+      allow_any_instance_of(ForestLiana::StatsController).to receive(:find_resource) { true }
 
-    #   post '/forest/stats/Products', params: JSON.dump(params), headers: headers
-    #   expect(response.status).to eq(403)
-    # end
+      post '/forest/stats/Products', params: JSON.dump(params), headers: headers
+      expect(response.status).to eq(403)
+    end
   end
   
   describe 'POST /stats' do

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: forest_liana
 version: !ruby/object:Gem::Version
-  version: 6.3.4
+  version: 6.3.5
 platform: ruby
 authors:
 - Sandro Munda