PyPI - cumulusci-plus - Versions diffs - 5.0.21__py3-none-any.whl → 5.0.35__py3-none-any.whl - Mend

cumulusci-plus 5.0.21py3-none-any.whl → 5.0.35py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (121) hide show

cumulusci/__about__.py +1 -1
cumulusci/cli/logger.py +2 -2
cumulusci/cli/service.py +20 -0
cumulusci/cli/task.py +17 -0
cumulusci/cli/tests/test_error.py +3 -1
cumulusci/cli/tests/test_flow.py +279 -2
cumulusci/cli/tests/test_service.py +15 -12
cumulusci/cli/tests/test_task.py +88 -2
cumulusci/cli/tests/utils.py +1 -4
cumulusci/core/config/base_task_flow_config.py +26 -1
cumulusci/core/config/project_config.py +2 -20
cumulusci/core/config/tests/test_config_expensive.py +9 -3
cumulusci/core/config/universal_config.py +3 -4
cumulusci/core/dependencies/base.py +1 -1
cumulusci/core/dependencies/dependencies.py +1 -1
cumulusci/core/dependencies/github.py +1 -2
cumulusci/core/dependencies/resolvers.py +1 -1
cumulusci/core/dependencies/tests/test_dependencies.py +1 -1
cumulusci/core/dependencies/tests/test_resolvers.py +1 -1
cumulusci/core/flowrunner.py +90 -6
cumulusci/core/github.py +1 -1
cumulusci/core/sfdx.py +3 -1
cumulusci/core/source_transforms/tests/test_transforms.py +1 -1
cumulusci/core/source_transforms/transforms.py +1 -1
cumulusci/core/tasks.py +13 -2
cumulusci/core/tests/test_flowrunner.py +100 -0
cumulusci/core/tests/test_tasks.py +65 -0
cumulusci/core/utils.py +3 -1
cumulusci/core/versions.py +1 -1
cumulusci/cumulusci.yml +55 -0
cumulusci/oauth/client.py +1 -1
cumulusci/plugins/plugin_base.py +5 -3
cumulusci/robotframework/pageobjects/ObjectManagerPageObject.py +1 -1
cumulusci/salesforce_api/rest_deploy.py +1 -1
cumulusci/schema/cumulusci.jsonschema.json +64 -0
cumulusci/tasks/apex/anon.py +1 -1
cumulusci/tasks/apex/testrunner.py +416 -142
cumulusci/tasks/apex/tests/test_apex_tasks.py +917 -1
cumulusci/tasks/bulkdata/extract.py +0 -1
cumulusci/tasks/bulkdata/extract_dataset_utils/extract_yml.py +1 -1
cumulusci/tasks/bulkdata/extract_dataset_utils/synthesize_extract_declarations.py +1 -1
cumulusci/tasks/bulkdata/extract_dataset_utils/tests/test_extract_yml.py +1 -1
cumulusci/tasks/bulkdata/generate_and_load_data.py +136 -12
cumulusci/tasks/bulkdata/mapping_parser.py +139 -44
cumulusci/tasks/bulkdata/select_utils.py +1 -1
cumulusci/tasks/bulkdata/snowfakery.py +100 -25
cumulusci/tasks/bulkdata/tests/test_generate_and_load.py +159 -0
cumulusci/tasks/bulkdata/tests/test_load.py +0 -2
cumulusci/tasks/bulkdata/tests/test_mapping_parser.py +763 -1
cumulusci/tasks/bulkdata/tests/test_select_utils.py +26 -0
cumulusci/tasks/bulkdata/tests/test_snowfakery.py +133 -0
cumulusci/tasks/create_package_version.py +190 -16
cumulusci/tasks/datadictionary.py +1 -1
cumulusci/tasks/metadata_etl/base.py +7 -3
cumulusci/tasks/metadata_etl/layouts.py +1 -1
cumulusci/tasks/metadata_etl/permissions.py +1 -1
cumulusci/tasks/metadata_etl/remote_site_settings.py +2 -2
cumulusci/tasks/push/README.md +15 -17
cumulusci/tasks/release_notes/README.md +13 -13
cumulusci/tasks/release_notes/generator.py +13 -8
cumulusci/tasks/robotframework/tests/test_robotframework.py +6 -1
cumulusci/tasks/salesforce/Deploy.py +53 -2
cumulusci/tasks/salesforce/SfPackageCommands.py +363 -0
cumulusci/tasks/salesforce/__init__.py +1 -0
cumulusci/tasks/salesforce/assign_ps_psg.py +448 -0
cumulusci/tasks/salesforce/composite.py +1 -1
cumulusci/tasks/salesforce/custom_settings_wait.py +1 -1
cumulusci/tasks/salesforce/enable_prediction.py +5 -1
cumulusci/tasks/salesforce/getPackageVersion.py +89 -0
cumulusci/tasks/salesforce/sourcetracking.py +1 -1
cumulusci/tasks/salesforce/tests/test_Deploy.py +316 -1
cumulusci/tasks/salesforce/tests/test_SfPackageCommands.py +554 -0
cumulusci/tasks/salesforce/tests/test_assign_ps_psg.py +1055 -0
cumulusci/tasks/salesforce/tests/test_getPackageVersion.py +651 -0
cumulusci/tasks/salesforce/tests/test_update_dependencies.py +1 -1
cumulusci/tasks/salesforce/tests/test_update_external_credential.py +912 -0
cumulusci/tasks/salesforce/tests/test_update_named_credential.py +1042 -0
cumulusci/tasks/salesforce/update_dependencies.py +2 -2
cumulusci/tasks/salesforce/update_external_credential.py +562 -0
cumulusci/tasks/salesforce/update_named_credential.py +441 -0
cumulusci/tasks/salesforce/update_profile.py +17 -13
cumulusci/tasks/salesforce/users/permsets.py +62 -5
cumulusci/tasks/salesforce/users/tests/test_permsets.py +237 -11
cumulusci/tasks/sfdmu/__init__.py +0 -0
cumulusci/tasks/sfdmu/sfdmu.py +363 -0
cumulusci/tasks/sfdmu/tests/__init__.py +1 -0
cumulusci/tasks/sfdmu/tests/test_runner.py +212 -0
cumulusci/tasks/sfdmu/tests/test_sfdmu.py +1012 -0
cumulusci/tasks/tests/test_create_package_version.py +716 -1
cumulusci/tasks/tests/test_util.py +42 -0
cumulusci/tasks/util.py +37 -1
cumulusci/tasks/utility/copyContents.py +402 -0
cumulusci/tasks/utility/credentialManager.py +256 -0
cumulusci/tasks/utility/directoryRecreator.py +30 -0
cumulusci/tasks/utility/env_management.py +1 -1
cumulusci/tasks/utility/secretsToEnv.py +135 -0
cumulusci/tasks/utility/tests/test_copyContents.py +1719 -0
cumulusci/tasks/utility/tests/test_credentialManager.py +564 -0
cumulusci/tasks/utility/tests/test_directoryRecreator.py +439 -0
cumulusci/tasks/utility/tests/test_secretsToEnv.py +1091 -0
cumulusci/tests/test_integration_infrastructure.py +3 -1
cumulusci/tests/test_utils.py +70 -6
cumulusci/utils/__init__.py +54 -9
cumulusci/utils/classutils.py +5 -2
cumulusci/utils/http/tests/cassettes/ManualEditTestCompositeParallelSalesforce.test_http_headers.yaml +31 -30
cumulusci/utils/options.py +23 -1
cumulusci/utils/parallel/task_worker_queues/parallel_worker.py +1 -1
cumulusci/utils/yaml/cumulusci_yml.py +7 -3
cumulusci/utils/yaml/model_parser.py +2 -2
cumulusci/utils/yaml/tests/test_cumulusci_yml.py +1 -1
cumulusci/utils/yaml/tests/test_model_parser.py +3 -3
cumulusci/vcs/base.py +23 -15
cumulusci/vcs/bootstrap.py +5 -4
cumulusci/vcs/utils/list_modified_files.py +189 -0
cumulusci/vcs/utils/tests/test_list_modified_files.py +588 -0
{cumulusci_plus-5.0.21.dist-info → cumulusci_plus-5.0.35.dist-info}/METADATA +12 -10
{cumulusci_plus-5.0.21.dist-info → cumulusci_plus-5.0.35.dist-info}/RECORD +121 -96
{cumulusci_plus-5.0.21.dist-info → cumulusci_plus-5.0.35.dist-info}/WHEEL +0 -0
{cumulusci_plus-5.0.21.dist-info → cumulusci_plus-5.0.35.dist-info}/entry_points.txt +0 -0
{cumulusci_plus-5.0.21.dist-info → cumulusci_plus-5.0.35.dist-info}/licenses/AUTHORS.rst +0 -0
{cumulusci_plus-5.0.21.dist-info → cumulusci_plus-5.0.35.dist-info}/licenses/LICENSE +0 -0

cumulusci/tasks/salesforce/update_named_credential.py ADDED Viewed

@@ -0,0 +1,441 @@
+import os
+from typing import Any, Dict, List, Optional
+from pydantic.v1 import root_validator
+from cumulusci.core.exceptions import SalesforceDXException
+from cumulusci.salesforce_api.utils import get_simple_salesforce_connection
+from cumulusci.tasks.salesforce import BaseSalesforceApiTask
+from cumulusci.utils.options import CCIOptions, Field
+class NamedCredentialCalloutOptions(CCIOptions):
+    # Callout options
+    allow_merge_fields_in_body: bool = Field(
+        None,
+        description="Allow merge fields in body. [default to None]",
+    )
+    allow_merge_fields_in_header: bool = Field(
+        None,
+        description="Allow merge fields in header. [default to None]",
+    )
+    generate_authorization_header: bool = Field(
+        None,
+        description="Generate authorization header. [default to None]",
+    )
+class NamedCredentialHttpHeader(CCIOptions):
+    name: str = Field(
+        None,
+        description="Name. [default to None]",
+    )
+    value: str = Field(
+        None,
+        description="Value. [default to None]",
+    )
+    sequence_number: int = Field(
+        None,
+        description="Sequence number. [default to None]",
+    )
+    secret: bool = Field(
+        False,
+        description="Is the value a secret. [default to False]",
+    )
+class NamedCredentialParameter(CCIOptions):
+    allowed_managed_package_namespaces: str = Field(
+        None,
+        description="Allowed managed package namespaces. [default to None]",
+    )
+    url: str = Field(
+        None,
+        description="Url. [default to None]",
+    )
+    authentication: str = Field(
+        None,
+        description="Authentication. [default to None]",
+    )
+    certificate: str = Field(
+        None,
+        description="Certificate. [default to None]",
+    )
+    http_header: List["NamedCredentialHttpHeader"] = Field(
+        [],
+        description="Http header. [default to empty list]",
+    )
+    @root_validator
+    def check_parameters(cls, values):
+        """Check if only one of the parameters is provided"""
+        if (
+            len(
+                ([values.get("url")] if values.get("url") else [])
+                + (
+                    [values.get("allowed_managed_package_namespaces")]
+                    if values.get("allowed_managed_package_namespaces")
+                    else []
+                )
+                + (
+                    [values.get("authentication")]
+                    if values.get("authentication")
+                    else []
+                )
+                + ([values.get("certificate")] if values.get("certificate") else [])
+                + (
+                    [len(values.get("http_header"))]
+                    if values.get("http_header")
+                    else []
+                )
+            )
+            == 1
+        ):
+            return values
+        raise ValueError("Only one of the parameters is required.")
+    def param_type(self):
+        """Get the parameter type"""
+        if self.url:
+            return "Url"
+        if self.authentication:
+            return "Authentication"
+        if self.certificate:
+            return "ClientCertificate"
+        if self.allowed_managed_package_namespaces:
+            return "AllowedManagedPackageNamespaces"
+        if self.http_header:
+            return "HttpHeader"
+        return None
+    def param_value(self, http_header=None):
+        """Get the parameter value"""
+        if self.url:
+            return self.url
+        if self.authentication:
+            return self.authentication
+        if self.certificate:
+            return self.certificate
+        if self.allowed_managed_package_namespaces:
+            return self.allowed_managed_package_namespaces
+        if http_header:
+            http_header_item = next(
+                (item for item in self.http_header if item.name == http_header), None
+            )
+            if http_header_item:
+                return http_header_item.value
+    def get_parameter_to_update(self):
+        """Get the parameter to update"""
+        ret = []
+        if len(self.http_header) > 0:
+            for http_header_item in self.http_header:
+                param_to_update = {}
+                param_to_update["parameterName"] = http_header_item.name
+                param_to_update["parameterType"] = "HttpHeader"
+                param_to_update["parameterValue"] = self.param_value(
+                    http_header=http_header_item.name
+                )
+                param_to_update["secret"] = http_header_item.secret
+                if http_header_item.sequence_number is not None:
+                    param_to_update["sequenceNumber"] = http_header_item.sequence_number
+                ret.append(param_to_update.copy())
+        else:
+            param_to_update = {}
+            param_to_update["parameterType"] = self.param_type()
+            param_to_update["parameterValue"] = self.param_value()
+            if param_to_update["parameterType"] == "ClientCertificate":
+                param_to_update["parameterName"] = "ClientCertificate"
+                param_to_update["certificate"] = param_to_update["parameterValue"]
+            if param_to_update["parameterType"] == "Authentication":
+                param_to_update["parameterName"] = "ExternalCredential"
+                param_to_update["externalCredential"] = param_to_update[
+                    "parameterValue"
+                ]
+            ret.append(param_to_update.copy())
+        return ret
+class TransformNamedCredentialParameter(NamedCredentialParameter):
+    def param_value(self, http_header=None):
+        value = super().param_value(http_header)
+        if value:
+            return os.getenv(value)
+        return None
+NamedCredentialParameter.update_forward_refs()
+TransformNamedCredentialParameter.update_forward_refs()
+class UpdateNamedCredential(BaseSalesforceApiTask):
+    """Custom task to update named credential parameters.
+    This task is based on the managability rules of named credentials.
+    https://developer.salesforce.com/docs/atlas.en-us.pkg2_dev.meta/pkg2_dev/packaging_packageable_components.htm#mdc_named_credential
+    """
+    class Options(CCIOptions):
+        name: str = Field(..., description="Name of the named credential to update.")
+        namespace: str = Field(
+            "",
+            description="Namespace of the named credential to update. [default to empty string]",
+        )
+        # Callout options
+        callout_options: NamedCredentialCalloutOptions = Field(
+            None,
+            description="Callout options. [default to None]",
+        )
+        # Named credential parameters
+        parameters: List[NamedCredentialParameter] = Field(
+            [],
+            description="Parameters to update. [default to empty list]",
+        )
+        # Named credential parameters
+        transform_parameters: List[TransformNamedCredentialParameter] = Field(
+            [],
+            description="Parameters to transform. [default to empty list]",
+        )
+    parsed_options: Options
+    def _init_task(self):
+        self.tooling = get_simple_salesforce_connection(
+            self.project_config,
+            self.org_config,
+            api_version=self.project_config.project__package__api_version,
+            base_url="tooling",
+        )
+    def _run_task(self):
+        # Step 1: Get the named credential id from the named credential name
+        named_credential_id = self._get_named_credential_id()
+        if not named_credential_id:
+            msg = f"Named credential '{self.parsed_options.name}' not found"
+            raise SalesforceDXException(msg)
+        # Step 2: Get the named credential object
+        named_credential = self._get_named_credential_object(named_credential_id)
+        if not named_credential:
+            msg = f"Failed to retrieve named credential object for '{self.parsed_options.name}'"
+            raise SalesforceDXException(msg)
+        if named_credential.get("namedCredentialType") != "SecuredEndpoint":
+            msg = f"Named credential '{self.parsed_options.name}' is not a secured endpoint, Aborting update. Only SecuredEndpoint is supported."
+            raise SalesforceDXException(msg)
+        # Step 3: Update the named credential parameters
+        self._update_named_credential_parameters(named_credential)
+        updated_named_credential = self._update_named_credential_object(
+            named_credential_id, named_credential
+        )
+        if not updated_named_credential:
+            msg = f"Failed to update named credential object for '{self.parsed_options.name}'"
+            raise SalesforceDXException(msg)
+        self.logger.info(
+            f"Successfully updated named credential '{self.parsed_options.name}'"
+        )
+    def _get_named_credential_id(self) -> Optional[str]:
+        """Get the named credential ID from the named credential name"""
+        query = f"SELECT Id FROM NamedCredential WHERE DeveloperName='{self.parsed_options.name}'"
+        if self.parsed_options.namespace:
+            query += f" AND NamespacePrefix='{self.parsed_options.namespace}'"
+        query += " LIMIT 1"
+        try:
+            res = self.tooling.query(query)
+            if res["size"] == 0:
+                return None
+            return res["records"][0]["Id"]
+        except Exception as e:
+            self.logger.error(f"Error querying named credential: {str(e)}")
+            return None
+    def _get_named_credential_object(
+        self, named_credential_id: str
+    ) -> Optional[Dict[str, Any]]:
+        """Get the named credential object using Metadata API"""
+        try:
+            # Use Tooling API to get the named credential metadata
+            result = self.tooling._call_salesforce(
+                method="GET",
+                url=f"{self.tooling.base_url}sobjects/NamedCredential/{named_credential_id}",
+            )
+            if result.status_code != 200:
+                self.logger.error(
+                    f"Error retrieving named credential object: {result.json()}"
+                )
+                return None
+            return result.json().get("Metadata", None)
+        except Exception as e:
+            self.logger.error(f"Error retrieving named credential object: {str(e)}")
+            return None
+    def _update_named_credential_object(
+        self, named_credential_id: str, named_credential: Dict[str, Any]
+    ) -> Optional[bool]:
+        """Update the named credential object"""
+        try:
+            resultUpdate = self.tooling._call_salesforce(
+                method="PATCH",
+                url=f"{self.tooling.base_url}sobjects/NamedCredential/{named_credential_id}",
+                json={"Metadata": named_credential},
+            )
+            if not resultUpdate.ok:
+                self.logger.error(
+                    f"Error updating named credential object: {resultUpdate.json()}"
+                )
+                return None
+            return resultUpdate.ok
+        except Exception as e:
+            raise SalesforceDXException(
+                f"Failed to update named credential object: {str(e)}"
+            )
+    def _update_named_credential_parameters(self, named_credential: Dict[str, Any]):
+        """Update the named credential parameters"""
+        try:
+            template_param = self._get_named_credential_template_parameter(
+                named_credential
+            )
+            self._update_callout_options(named_credential)
+            self._update_parameters(
+                named_credential, self.parsed_options.parameters, template_param
+            )
+            self._update_parameters(
+                named_credential,
+                self.parsed_options.transform_parameters,
+                template_param,
+            )
+        except Exception as e:
+            raise SalesforceDXException(f"Failed to update parameters: {str(e)}")
+    def _update_callout_options(self, named_credential: Dict[str, Any]):
+        """Update the callout options"""
+        if not self.parsed_options.callout_options:
+            return
+        if self.parsed_options.callout_options.allow_merge_fields_in_body:
+            named_credential[
+                "allowMergeFieldsInBody"
+            ] = self.parsed_options.callout_options.allow_merge_fields_in_body
+        if self.parsed_options.callout_options.allow_merge_fields_in_header:
+            named_credential[
+                "allowMergeFieldsInHeader"
+            ] = self.parsed_options.callout_options.allow_merge_fields_in_header
+        if self.parsed_options.callout_options.generate_authorization_header:
+            named_credential[
+                "generateAuthorizationHeader"
+            ] = self.parsed_options.callout_options.generate_authorization_header
+    def _update_parameters(
+        self,
+        named_credential: Dict[str, Any],
+        named_credential_parameters: List[NamedCredentialParameter],
+        template_param: Dict[str, Any],
+    ):
+        """Update the parameters"""
+        for param_input in named_credential_parameters:
+            params_to_update = param_input.get_parameter_to_update()
+            for param_to_update in params_to_update:
+                secret = param_to_update.pop("secret", False)
+                param_to_update_copy = param_to_update.copy()
+                param_to_update_copy.pop("parameterValue", None)
+                param_to_update_copy.pop("certificate", None)
+                param_to_update_copy.pop("externalCredential", None)
+                cred_param = next(
+                    (
+                        param
+                        for param in named_credential.get(
+                            "namedCredentialParameters", []
+                        )
+                        if param_to_update_copy.items() <= param.items()
+                    ),
+                    None,
+                )
+                if cred_param:
+                    cred_param.update(param_to_update)
+                    self.logger.info(
+                        f"Updated parameter {cred_param['parameterType']}-{cred_param['parameterName']} with new value {param_to_update['parameterValue'] if not secret else '********'}"
+                    )
+                else:
+                    copy_template_param = template_param.copy()
+                    copy_template_param.update(param_to_update)
+                    named_credential["namedCredentialParameters"].append(
+                        copy_template_param
+                    )
+                    self.logger.info(
+                        f"Added parameter {copy_template_param['parameterType']}-{copy_template_param['parameterName']} with new value {param_to_update['parameterValue'] if not secret else '********'}"
+                    )
+    def _update_parameter_value(
+        self, named_credential_parameter: Dict[str, Any], new_value: str
+    ):
+        """Update an existing parameter's value"""
+        update_data = {"parameterValue": new_value}
+        named_credential_parameter.update(update_data)
+    def _get_named_credential_template_parameter(
+        self, named_credential: Dict[str, Any]
+    ) -> Dict[str, Any]:
+        """Get the named credential template parameter"""
+        template_param = [
+            param
+            for param in named_credential.get("namedCredentialParameters", [])
+            if param.get("parameterType") == "Url"
+        ]
+        if len(template_param) == 0:
+            self.logger.warning(
+                f"No template parameter found for named credential '{self.parsed_options.name}', using default template parameter."
+            )
+            return {
+                "certificate": None,
+                "description": None,
+                "externalCredential": None,
+                "globalNamedPrincipalCredential": None,
+                "managedFeatureEnabledCallout": None,
+                "outboundNetworkConnection": None,
+                "parameterName": None,
+                "parameterType": None,
+                "parameterValue": None,
+                "readOnlyNamedCredential": None,
+                "sequenceNumber": None,
+                "systemUserNamedCredential": None,
+            }
+        ret = template_param[0].copy()
+        ret.update(
+            {
+                "parameterName": None,
+                "parameterType": None,
+                "parameterValue": None,
+                "sequenceNumber": None,
+            }
+        )
+        return ret

cumulusci/tasks/salesforce/update_profile.py CHANGED Viewed

@@ -231,28 +231,28 @@ class ProfileGrantAllAccess(MetadataSingleEntityTransformTask, BaseSalesforceApi
     def _strip_namespace_from_record_type(self, record_type):
         """Strip namespace prefix from record type string.
         Converts 'namespace__Object__c.namespace__RecordType' to 'Object__c.RecordType'
         """
         if not self.options.get("namespace_inject"):
             return record_type
         namespace = self.options["namespace_inject"]
         namespace_prefix = f"{namespace}__"
         # Split on the dot to handle object and record type separately
         parts = record_type.split(".", 1)
         if len(parts) != 2:
             return record_type
         object_name, record_type_name = parts
         # Strip namespace prefix from both object and record type if present
         if object_name.startswith(namespace_prefix):
-            object_name = object_name[len(namespace_prefix):]
+            object_name = object_name[len(namespace_prefix) :]
         if record_type_name.startswith(namespace_prefix):
-            record_type_name = record_type_name[len(namespace_prefix):]
+            record_type_name = record_type_name[len(namespace_prefix) :]
         return f"{object_name}.{record_type_name}"
     def _set_record_types(self, tree, api_name):
@@ -287,13 +287,17 @@ class ProfileGrantAllAccess(MetadataSingleEntityTransformTask, BaseSalesforceApi
             # Look for the recordTypeVisibilities element
             # First try with the original record type
             elem = tree.find("recordTypeVisibilities", recordType=rt["record_type"])
-            # If not found and we're in a namespaced org, try with namespace stripped
+            # If not found and we're in a namespaced org, try with namespace stripped
             # (since Salesforce may return without namespace in namespaced orgs)
             if elem is None and self.options.get("namespaced_org"):
-                record_type_without_namespace = self._strip_namespace_from_record_type(rt["record_type"])
-                elem = tree.find("recordTypeVisibilities", recordType=record_type_without_namespace)
+                record_type_without_namespace = self._strip_namespace_from_record_type(
+                    rt["record_type"]
+                )
+                elem = tree.find(
+                    "recordTypeVisibilities", recordType=record_type_without_namespace
+                )
                 if elem is None:
                     raise TaskOptionsError(
                         f"Record Type {rt['record_type']} (or {record_type_without_namespace}) not found in retrieved {api_name}.profile"

cumulusci/tasks/salesforce/users/permsets.py CHANGED Viewed

@@ -2,23 +2,43 @@ import json
 from cumulusci.cli.ui import CliTable
 from cumulusci.core.exceptions import CumulusCIException
-from cumulusci.core.utils import process_list_arg
+from cumulusci.core.utils import (
+    determine_managed_mode,
+    process_bool_arg,
+    process_list_arg,
+)
 from cumulusci.tasks.salesforce import BaseSalesforceApiTask
+from cumulusci.tasks.salesforce.assign_ps_psg import build_name_conditions
+from cumulusci.utils import inject_namespace
 class AssignPermissionSets(BaseSalesforceApiTask):
     task_docs = """
 Assigns Permission Sets whose Names are in ``api_names`` to either the default org user or the user whose Alias is ``user_alias``. This task skips assigning Permission Sets that are already assigned.
+Permission Set names can include namespace tokens that will be replaced based on the context:
+- ``%%%NAMESPACE%%%`` is replaced with the package's namespace in managed contexts (e.g., when the package is installed)
+- ``%%%NAMESPACED_ORG%%%`` is replaced with the package's namespace in namespaced orgs only (e.g., packaging orgs)
+- ``%%%NAMESPACE_OR_C%%%`` is replaced with the namespace in managed contexts, or 'c' otherwise
+- ``%%%NAMESPACED_ORG_OR_C%%%`` is replaced with the namespace in namespaced orgs, or 'c' otherwise
+The managed mode and namespaced org detection is automatic based on the org context.
     """
     task_options = {
         "api_names": {
-            "description": "API Names of desired Permission Sets, separated by commas.",
+            "description": "API Names of desired Permission Sets, separated by commas. Can include namespace tokens like %%%NAMESPACE%%%.",
             "required": True,
         },
         "user_alias": {
             "description": "Target user aliases, separated by commas. Defaults to the current running user."
         },
+        "namespace_inject": {
+            "description": "Namespace to use for Permission Set names. If not provided, the namespace from the project config will be used.",
+        },
+        "managed": {
+            "description": "Whether the deployment is managed. If not provided, the managed mode will be determined based on the org config.",
+        },
     }
     permission_name = "PermissionSet"
@@ -35,6 +55,38 @@ Assigns Permission Sets whose Names are in ``api_names`` to either the default o
         self.options["user_alias"] = process_list_arg(
             self.options.get("user_alias") or []
         )
+        self._init_namespace_injection()
+    def _init_namespace_injection(self):
+        self.options["namespace_inject"] = (
+            self.options.get("namespace_inject")
+            or self.project_config.project__package__namespace
+        )
+        self.options["managed"] = self.options.get("managed") or determine_managed_mode(
+            self.options, self.project_config, self.org_config
+        )
+        self.options["namespaced_org"] = process_bool_arg(
+            True
+            if self.options["namespace_inject"] is not None
+            and self.options["namespace_inject"]
+            == getattr(self.org_config, "namespace", None)
+            else False
+        )
+        self.options["api_names"] = [
+            self._inject_namespace(api_name) for api_name in self.options["api_names"]
+        ]
+    def _inject_namespace(self, text):
+        """Inject the namespace into the given text if running in managed mode."""
+        _, name_processed = inject_namespace(
+            "",
+            text,
+            namespace=self.options.get("namespace_inject"),
+            managed=self.options.get("managed"),
+            namespaced_org=self.options.get("namespaced_org"),
+            logger=self.logger,
+        )
+        return name_processed
     def _run_task(self):
         users = self._query_existing_assignments()
@@ -84,12 +136,17 @@ Assigns Permission Sets whose Names are in ``api_names`` to either the default o
         return assigned_perms
     def _get_perm_ids(self):
-        api_names = "', '".join(self.options["api_names"])
+        name_conditions, _ = build_name_conditions(
+            self.options["api_names"], field_name=self.permission_name_field
+        )
         perms = self.sf.query(
-            f"SELECT Id,{self.permission_name_field} FROM {self.permission_name} WHERE {self.permission_name_field} IN ('{api_names}')"
+            f"SELECT Id, NamespacePrefix, {self.permission_name_field} FROM {self.permission_name} WHERE ({' OR '.join(name_conditions)})"
         )
         perms_by_ids = {
-            p["Id"]: p[self.permission_name_field] for p in perms["records"]
+            p["Id"]: f"{p['NamespacePrefix']}__{p[self.permission_name_field]}"
+            if p["NamespacePrefix"]
+            else p[self.permission_name_field]
+            for p in perms["records"]
         }
         missing_perms = [

cumulusci-plus 5.0.21__py3-none-any.whl → 5.0.35__py3-none-any.whl

cumulusci-plus 5.0.21py3-none-any.whl → 5.0.35py3-none-any.whl