@lightdash/common 0.1342.0 → 0.1343.0

Sign up to get free protection for your applications and to get access to all the features.
Files changed (8) hide show
  1. package/dist/authorization/organizationMemberAbility.js +7 -0
  2. package/dist/authorization/organizationMemberAbility.test.js +35 -1
  3. package/dist/authorization/projectMemberAbility.js +7 -0
  4. package/dist/authorization/projectMemberAbility.test.js +18 -1
  5. package/dist/index.d.ts +2 -2
  6. package/dist/types/organization.d.ts +1 -0
  7. package/dist/types/projects.d.ts +1 -0
  8. package/package.json +1 -1
package/dist/authorization/organizationMemberAbility.js CHANGED
@@ -205,6 +205,10 @@ exports.organizationMemberAbilities = {
205
205
  organizationUuid: member.organizationUuid,
206
206
  type: projects_1.ProjectType.PREVIEW,
207
207
  });
208
+ can('delete', 'Project', {
209
+ organizationUuid: member.organizationUuid,
210
+ type: projects_1.ProjectType.PREVIEW,
211
+ });
208
212
  },
209
213
  admin(member, { can }) {
210
214
  exports.organizationMemberAbilities.developer(member, { can });
@@ -221,6 +225,9 @@ exports.organizationMemberAbilities = {
221
225
  organizationUuid: member.organizationUuid,
222
226
  type: { $in: [projects_1.ProjectType.DEFAULT, projects_1.ProjectType.PREVIEW] },
223
227
  });
228
+ can('delete', 'Project', {
229
+ organizationUuid: member.organizationUuid,
230
+ });
224
231
  can('manage', 'Project', {
225
232
  organizationUuid: member.organizationUuid,
226
233
  });
package/dist/authorization/organizationMemberAbility.test.js CHANGED
@@ -911,33 +911,45 @@ describe('Organization member permissions', () => {
911
911
  membership: organizationMemberAbility_mock_1.ORGANIZATION_ADMIN,
912
912
  canCreateProject: true,
913
913
  canCreatePreview: true,
914
+ canDeleteProject: true,
915
+ canDeletePreview: true,
914
916
  },
915
917
  {
916
918
  membership: organizationMemberAbility_mock_1.ORGANIZATION_DEVELOPER,
917
919
  canCreateProject: false,
918
920
  canCreatePreview: true,
921
+ canDeleteProject: false,
922
+ canDeletePreview: true,
919
923
  },
920
924
  {
921
925
  membership: organizationMemberAbility_mock_1.ORGANIZATION_MEMBER,
922
926
  canCreateProject: false,
923
927
  canCreatePreview: false,
928
+ canDeleteProject: false,
929
+ canDeletePreview: false,
924
930
  },
925
931
  {
926
932
  membership: organizationMemberAbility_mock_1.ORGANIZATION_VIEWER,
927
933
  canCreateProject: false,
928
934
  canCreatePreview: false,
935
+ canDeleteProject: false,
936
+ canDeletePreview: false,
929
937
  },
930
938
  {
931
939
  membership: organizationMemberAbility_mock_1.ORGANIZATION_INTERACTIVE_VIEWER,
932
940
  canCreateProject: false,
933
941
  canCreatePreview: false,
942
+ canDeleteProject: false,
943
+ canDeletePreview: false,
934
944
  },
935
945
  {
936
946
  membership: organizationMemberAbility_mock_1.ORGANIZATION_EDITOR,
937
947
  canCreateProject: false,
938
948
  canCreatePreview: false,
949
+ canDeleteProject: false,
950
+ canDeletePreview: false,
939
951
  },
940
- ].forEach(({ membership, canCreateProject, canCreatePreview }) => {
952
+ ].forEach(({ membership, canCreateProject, canCreatePreview, canDeleteProject, canDeletePreview, }) => {
941
953
  const ability = defineAbilityForOrganizationMember(membership);
942
954
  describe(`user is '${membership.role}' role`, () => {
943
955
  it('checks if users can create project in organization they belong to', () => {
@@ -964,6 +976,28 @@ describe('Organization member permissions', () => {
964
976
  type: projects_1.ProjectType.PREVIEW,
965
977
  }))).toEqual(false);
966
978
  });
979
+ it('checks if users can delete a project in organization they belong to', () => {
980
+ expect(ability.can('delete', (0, ability_1.subject)('Project', {
981
+ organizationUuid: membership.organizationUuid,
982
+ }))).toEqual(canDeleteProject);
983
+ });
984
+ it('checks that users cannot delete a project in another organization', () => {
985
+ expect(ability.can('delete', (0, ability_1.subject)('Project', {
986
+ organizationUuid: '789',
987
+ }))).toEqual(false);
988
+ });
989
+ it('checks if users can delete a PREVIEW project in organization they belong to', () => {
990
+ expect(ability.can('delete', (0, ability_1.subject)('Project', {
991
+ organizationUuid: membership.organizationUuid,
992
+ type: projects_1.ProjectType.PREVIEW,
993
+ }))).toEqual(canDeletePreview);
994
+ });
995
+ it('checks that users cannot delete a PREVIEW project in another organization', () => {
996
+ expect(ability.can('delete', (0, ability_1.subject)('Project', {
997
+ organizationUuid: '789',
998
+ type: projects_1.ProjectType.PREVIEW,
999
+ }))).toEqual(false);
1000
+ });
967
1001
  });
968
1002
  });
969
1003
  });
package/dist/authorization/projectMemberAbility.js CHANGED
@@ -187,6 +187,10 @@ exports.projectMemberAbilities = {
187
187
  can('manage', 'CompileProject', {
188
188
  projectUuid: member.projectUuid,
189
189
  });
190
+ can('delete', 'Project', {
191
+ type: projects_1.ProjectType.PREVIEW,
192
+ createdByUserUuid: member.userUuid,
193
+ });
190
194
  can('create', 'Project', {
191
195
  upstreamProjectUuid: member.projectUuid,
192
196
  type: projects_1.ProjectType.PREVIEW,
@@ -194,6 +198,9 @@ exports.projectMemberAbilities = {
194
198
  },
195
199
  admin(member, { can }) {
196
200
  exports.projectMemberAbilities.developer(member, { can });
201
+ can('delete', 'Project', {
202
+ projectUuid: member.projectUuid,
203
+ });
197
204
  can('manage', 'Project', {
198
205
  projectUuid: member.projectUuid,
199
206
  });
package/dist/authorization/projectMemberAbility.test.js CHANGED
@@ -737,24 +737,29 @@ describe('Project member permissions', () => {
737
737
  {
738
738
  membership: projectMemberAbility_mock_1.PROJECT_ADMIN,
739
739
  canCreatePreview: true,
740
+ canDeleteTheirOwnPreview: true,
740
741
  },
741
742
  {
742
743
  membership: projectMemberAbility_mock_1.PROJECT_DEVELOPER,
743
744
  canCreatePreview: true,
745
+ canDeleteTheirOwnPreview: true,
744
746
  },
745
747
  {
746
748
  membership: projectMemberAbility_mock_1.PROJECT_EDITOR,
747
749
  canCreatePreview: false,
750
+ canDeleteTheirOwnPreview: false,
748
751
  },
749
752
  {
750
753
  membership: projectMemberAbility_mock_1.PROJECT_INTERACTIVE_VIEWER,
751
754
  canCreatePreview: false,
755
+ canDeleteTheirOwnPreview: false,
752
756
  },
753
757
  {
754
758
  membership: projectMemberAbility_mock_1.PROJECT_VIEWER,
755
759
  canCreatePreview: false,
760
+ canDeleteTheirOwnPreview: false,
756
761
  },
757
- ].forEach(({ membership, canCreatePreview }) => {
762
+ ].forEach(({ membership, canCreatePreview, canDeleteTheirOwnPreview }) => {
758
763
  describe('test project preview permissions', () => {
759
764
  const ability = defineAbilityForProjectMember(membership);
760
765
  it('checks if user can create PREVIEW projects', () => {
@@ -769,6 +774,18 @@ describe('Project member permissions', () => {
769
774
  type: projects_1.ProjectType.DEFAULT,
770
775
  }))).toEqual(false);
771
776
  });
777
+ it('checks if user can delete their own PREVIEW projects', () => {
778
+ expect(ability.can('delete', (0, ability_1.subject)('Project', {
779
+ createdByUserUuid: membership.userUuid,
780
+ type: projects_1.ProjectType.PREVIEW,
781
+ }))).toEqual(canDeleteTheirOwnPreview);
782
+ });
783
+ it('checks that users cannot delete other users PREVIEW projects', () => {
784
+ expect(ability.can('delete', (0, ability_1.subject)('Project', {
785
+ createdByUserUuid: '1234',
786
+ type: projects_1.ProjectType.PREVIEW,
787
+ }))).toEqual(false);
788
+ });
772
789
  });
773
790
  });
774
791
  });
package/dist/index.d.ts CHANGED
@@ -502,10 +502,10 @@ export declare enum DBFieldTypes {
502
502
  }
503
503
  export declare const sensitiveDbtCredentialsFieldNames: readonly ["personal_access_token", "api_key"];
504
504
  export declare const DbtProjectTypeLabels: Record<DbtProjectType, string>;
505
- export type CreateProject = Omit<Project, 'projectUuid' | 'organizationUuid' | 'schedulerTimezone'> & {
505
+ export type CreateProject = Omit<Project, 'projectUuid' | 'organizationUuid' | 'schedulerTimezone' | 'createdByUserUuid'> & {
506
506
  warehouseConnection: CreateWarehouseCredentials;
507
507
  };
508
- export type UpdateProject = Omit<Project, 'projectUuid' | 'organizationUuid' | 'type' | 'schedulerTimezone'> & {
508
+ export type UpdateProject = Omit<Project, 'projectUuid' | 'organizationUuid' | 'type' | 'schedulerTimezone' | 'createdByUserUuid'> & {
509
509
  warehouseConnection: CreateWarehouseCredentials;
510
510
  };
511
511
  export declare const getResultValueArray: (rows: ResultRow[], preferRaw?: boolean, calculateMinAndMax?: boolean) => {
package/dist/types/organization.d.ts CHANGED
@@ -44,6 +44,7 @@ export type OrganizationProject = {
44
44
  projectUuid: string;
45
45
  name: string;
46
46
  type: ProjectType;
47
+ createdByUserUuid: string | null;
47
48
  warehouseType: WarehouseTypes;
48
49
  requireUserCredentials: boolean;
49
50
  };
package/dist/types/projects.d.ts CHANGED
@@ -231,6 +231,7 @@ export type Project = {
231
231
  dbtVersion: SupportedDbtVersions;
232
232
  semanticLayerConnection?: SemanticLayerConnection;
233
233
  schedulerTimezone: string;
234
+ createdByUserUuid: string | null;
234
235
  };
235
236
  export type ProjectSummary = Pick<Project, 'name' | 'projectUuid' | 'organizationUuid' | 'type' | 'upstreamProjectUuid'>;
236
237
  export type ApiProjectResponse = {
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@lightdash/common",
3
- "version": "0.1342.0",
3
+ "version": "0.1343.0",
4
4
  "main": "dist/index.js",
5
5
  "types": "dist/index.d.ts",
6
6
  "files": [