AVSDev/sprinkle-organisations
1
0
Fork 0
Code Issues 2 Pull Requests Projects Releases Wiki Activity

Added capability to merge organisations

Browse Source 
- Added an interface for organisation
- Added beforeDelete and beforeMerge callbacks
- Added hard/soft delete to organisations
This commit is contained in:
Craig Williams
2022-02-07 16:20:30 +00:00
parent b6edcf03e8
commit 28255e315a
11 changed files with 536 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

57
assets/avsdev/js/widgets/organisations.js
View File

@@ -76,6 +76,63 @@ function bindOrganisationButtons(el, options) {
attachOrganisationForm(); attachOrganisationForm();
}); });
// Manage organisation merge button
el.find('.js-organisation-merge').click(function(e) {
e.preventDefault();
var organisation_slug = $(this).data('slug');
$("body").ufModal({
sourceUrl: site.uri.public + "/modals/organisations/merge",
ajaxParams: {
slug: organisation_slug
},
msgTarget: $("#alerts-page")
});
$("body").on('renderSuccess.ufModal', function(data) {
var modal = $(this).ufModal('getModal');
var form = modal.find('.js-form');
var dropdownTemplate = modal.find('#organisation-select-option').html();
// Set up select2 dropdown
var dropdownControl = modal.find('.js-select-new');
_dropdownTemplateCompiled = Handlebars.compile(dropdownTemplate);
var options = {
ajax: {
url: site.uri.public + '/api/organisations',
processResults: function (data) {
var items = data.rows.filter((i) => i.slug != organisation_slug);
return {
results: items.map((i) => { return {
id: i.slug,
text: i.name,
name: i.name,
description: i.description,
slug: i.slug
}})
};
}
},
placeholder: "Select an organisation to merge with",
selectOnClose: true,
templateResult: $.proxy(function(item) {
// Must wrap this in a jQuery selector to render as HTML
return $(_dropdownTemplateCompiled(item));
}, this)
};
dropdownControl.select2(options);
// Set up form for submission
form.ufForm()
.on("submitSuccess.ufForm", function() {
// Reload page on success
window.location.reload();
});
});
});
// Delete organisation button // Delete organisation button
el.find('.js-organisation-delete').click(function(e) { el.find('.js-organisation-delete').click(function(e) {
e.preventDefault(); e.preventDefault();

12
locale/en_US/messages.php
View File

@@ -27,6 +27,10 @@ return [
'EDIT' => 'Edit organistion', 'EDIT' => 'Edit organistion',
'UPDATE' => 'Details updated for organistion <strong>{{name}}</strong>', 'UPDATE' => 'Details updated for organistion <strong>{{name}}</strong>',
'MERGE' => 'Merge organisation',
'MERGE_INFORM' => 'Select an organisation from the list below to merge organisation <strong>{{name}}</strong> into. All users of organisation <strong>{{name}}</strong> will be moved into the chosen organisation.',
'MERGE_SUCCESSFUL' => 'Successfully merged organisation <strong>{{source}}</strong> into organisation <strong>{{target}}</strong>.',
'DELETE' => 'Delete organisation', 'DELETE' => 'Delete organisation',
'DELETE_CONFIRM' => 'Are you sure you want to delete the organisation <strong>{{name}}</strong>?', 'DELETE_CONFIRM' => 'Are you sure you want to delete the organisation <strong>{{name}}</strong>?',
'DELETE_YES' => 'Yes, delete organisation', 'DELETE_YES' => 'Yes, delete organisation',
@@ -55,4 +59,12 @@ return [
1 => 'Administrator', 1 => 'Administrator',
2 => 'Administrators', 2 => 'Administrators',
], ],
'MERGE' => 'Merge',
'MERGE_INTO' => 'Merge into',
'MERGE_CANNOT_UNDONE' => 'This action cannot be undone.',
'SOURCE_SLUG' => 'Source Slug',
'TARGET_SLUG' => 'Target Slug',
'SLUG_NOT_IN_USE' => 'A <strong>{{slug}}</strong> slug does not exist',
]; ];

5
routes/organisations.php
View File

@@ -31,6 +31,9 @@ $app->group('/api/organisations', function () {
$this->put('/o/{slug}', 'UserFrosting\Sprinkle\Organisations\Controller\OrganisationController:update'); $this->put('/o/{slug}', 'UserFrosting\Sprinkle\Organisations\Controller\OrganisationController:update');
$this->delete('/o/{slug}', 'UserFrosting\Sprinkle\Organisations\Controller\OrganisationController:delete'); $this->delete('/o/{slug}', 'UserFrosting\Sprinkle\Organisations\Controller\OrganisationController:delete');
$this->post('/merge', 'UserFrosting\Sprinkle\Organisations\Controller\OrganisationController:merge');
})->add('authGuard')->add(new NoCache()); })->add('authGuard')->add(new NoCache());
$app->group('/modals/organisations', function () { $app->group('/modals/organisations', function () {
@@ -38,6 +41,8 @@ $app->group('/modals/organisations', function () {
$this->get('/edit', 'UserFrosting\Sprinkle\Organisations\Controller\OrganisationController:getModalEdit'); $this->get('/edit', 'UserFrosting\Sprinkle\Organisations\Controller\OrganisationController:getModalEdit');
$this->get('/merge', 'UserFrosting\Sprinkle\Organisations\Controller\OrganisationController:getModalMerge');
$this->get('/confirm-delete', 'UserFrosting\Sprinkle\Organisations\Controller\OrganisationController:getModalConfirmDelete'); $this->get('/confirm-delete', 'UserFrosting\Sprinkle\Organisations\Controller\OrganisationController:getModalConfirmDelete');
})->add('authGuard')->add(new NoCache()); })->add('authGuard')->add(new NoCache());

25
schema/requests/organisation/merge.yaml Normal file
View File

@@ -0,0 +1,25 @@
---
source_slug:
validators:
required:
label: "&SOURCE_SLUG"
message: VALIDATE.REQUIRED
length:
label: "&SOURCE_SLUG"
min: 1
max: 255
message: VALIDATE.LENGTH_RANGE
transformations:
- trim
target_slug:
validators:
required:
label: "&TARGET_SLUG"
message: VALIDATE.REQUIRED
length:
label: "&TARGET_SLUG"
min: 1
max: 255
message: VALIDATE.LENGTH_RANGE
transformations:
- trim

169
src/Controller/OrganisationController.php
View File

@@ -298,6 +298,110 @@ class OrganisationController extends SimpleController
return $response->withJson([], 200); return $response->withJson([], 200);
} }
/**
* Processes the request to merge two organisations.
*
* Processes the request from the merge organisation form, checking that:
* 1. The source organisation slug exists;
* 2. The target organisation slug exists;
* 3. The user has permission to merge organisations;
* 4. The submitted data is valid.
* This route requires authentication (and should generally be limited to admins or the root user).
*
* Request type: POST
*
* @see getModalMerge
*
* @param Request $request
* @param Response $response
* @param array $args
*
* @throws ForbiddenException If user is not authorized to access page
*/
public function merge(Request $request, Response $response, $args)
{
// Get POST parameters
$params = $request->getParsedBody();
// Load the request schema
$schema = new RequestSchema('schema://requests/organisation/merge.yaml');
// Whitelist and set parameter defaults
$transformer = new RequestDataTransformer($schema);
$data = $transformer->transform($params);
// Validate, and throw exception on validation errors.
$validator = new ServerSideValidator($schema, $this->ci->translator);
if (!$validator->validate($data)) {
$e = new BadRequestException();
foreach ($validator->errors() as $idx => $field) {
foreach ($field as $eidx => $error) {
$e->addUserMessage($error);
}
}
throw $e;
}
/** @var \UserFrosting\Sprinkle\Core\Util\ClassMapper $classMapper */
$classMapper = $this->ci->classMapper;
// Get the organisations
$source = $classMapper->getClassMapping('organisation')::where('slug', $data['source_slug'])->first();
$target = $classMapper->getClassMapping('organisation')::where('slug', $data['target_slug'])->first();
// If a organisation doesn't exist, return 404
if (!$source || !$target) {
throw new BadRequestException();
}
/** @var \UserFrosting\Sprinkle\Account\Authorize\AuthorizationManager $authorizer */
$authorizer = $this->ci->authorizer;
/** @var \UserFrosting\Sprinkle\Account\Database\Models\Interfaces\UserInterface $currentUser */
$currentUser = $this->ci->currentUser;
// Access-controlled page
if (!$authorizer->checkAccess($currentUser, 'merge_organisation')) {
throw new ForbiddenException();
}
/** @var \UserFrosting\Support\Repository\Repository $config */
$config = $this->ci->config;
/** @var \UserFrosting\Sprinkle\Core\Util\ClassMapper $classMapper */
$classMapper = $this->ci->classMapper;
$sourceName = $source->name;
// Begin transaction - DB will be rolled back if an exception occurs
Capsule::transaction(function () use ($source, $sourceName, $target, $currentUser) {
$this->ci->get('organisation.beforeMerge')($source, $target);
$source->beforeMerge($target, ['currentUser' => $currentUser]);
$source->delete();
unset($source);
// Create activity record
$this->ci->userActivityLogger->info("User {$currentUser->user_name} merged organisation {$sourceName} into {$target->name}.", [
'type' => 'organisation_merge',
'user_id' => $currentUser->id,
]);
});
/** @var \UserFrosting\Sprinkle\Core\Alert\AlertStream $ms */
$ms = $this->ci->alerts;
$ms->addMessageTranslated('success', 'ORGANISATION.MERGE_SUCCESSFUL', [
'source' => $sourceName,
'target' => $target->name,
]);
return $response->withJson([], 200);
}
/** /**
* Processes the request to delete an existing organisation. * Processes the request to delete an existing organisation.
* *
@@ -589,7 +693,70 @@ class OrganisationController extends SimpleController
], ],
]); ]);
} }
/**
* Renders the modal form for merging two organisations.
*
* This does NOT render a complete page. Instead, it renders the HTML for the modal, which can be embedded in other pages.
* This page requires authentication.
*
* Request type: GET
*
* @param Request $request
* @param Response $response
* @param array $args
*
* @throws ForbiddenException If user is not authorized to access page
*/
public function getModalMerge(Request $request, Response $response, $args)
{
// GET parameters
$params = $request->getQueryParams();
$organisation = $this->getOrganisationFromParams($params);
// If the organisation doesn't exist, return 404
if (!$organisation) {
throw new NotFoundException();
}
/** @var \UserFrosting\Sprinkle\Core\Util\ClassMapper $classMapper */
$classMapper = $this->ci->classMapper;
/** @var \UserFrosting\Sprinkle\Account\Authorize\AuthorizationManager $authorizer */
$authorizer = $this->ci->authorizer;
/** @var \UserFrosting\Sprinkle\Account\Database\Models\Interfaces\UserInterface $currentUser */
$currentUser = $this->ci->currentUser;
/** @var \UserFrosting\I18n\Translator $translator */
$translator = $this->ci->translator;
// Access-controlled resource - check that currentUser has permission to merge organisations.
if (!$authorizer->checkAccess($currentUser, 'organisation_merge')) {
throw new ForbiddenException();
}
// Load validation rules
$schema = new RequestSchema('schema://requests/organisation/merge.yaml');
$validator = new JqueryValidationAdapter($schema, $translator);
$otherOrganisations = $classMapper->getClassMapping('organisation')::where('id', '!=', $organisation->id)->get();
return $this->ci->view->render($response, 'modals/organisation-merge.html.twig', [
'organisation' => $organisation,
'other_organisations' => $otherOrganisations,
'form' => [
'action' => "api/organisations/o/{$organisation->slug}/merge",
'method' => 'POST',
'submit_text' => $translator->translate('MERGE'),
],
'page' => [
'validators' => $validator->rules('json', false),
],
]);
}
/** /**
* Renders a page displaying a organisation's information, in read-only mode. * Renders a page displaying a organisation's information, in read-only mode.

85
src/Database/Models/Interfaces/OrganisationInterface.php Normal file
View File

@@ -0,0 +1,85 @@
<?php
/*
* AVSDev UF Organisations (https://avsdev.uk)
*
* @link https://git.avsdev.uk/avsdev/sprinkle-organisations
* @license https://git.avsdev.uk/avsdev/sprinkle-organisations/blob/master/LICENSE.md (LGPL-3.0 License)
*/
namespace UserFrosting\Sprinkle\Organisations\Database\Models\Interfaces;
use Illuminate\Database\Eloquent\Builder;
/**
* Organisation Interface.
*
* Represents a Organisation object as stored in the database.
*/
interface OrganisationInterface
{
/**
* Get a count of members within this organisation (includes admins).
*
* @return integer The number of members within the organisation.
*/
public function getMemberCountAttribute();
/**
* Get a count of administrators within this organisation.
*
* @return integer The number of admins within the organisation.
*/
public function getAdminCountAttribute();
/**
* Get a count of members within this organisation (excludes admins).
*
* @return integer The number of members within the organisation.
*/
public function getTotalMemberCountAttribute();
/**
* Delete this organisation from the database, along with any linked objects.
*
* @param bool $hardDelete Set to true to completely remove the organisation and all associated objects.
*
* @return bool true if the deletion was successful, false otherwise.
*/
public function delete($hardDelete = false);
/**
* Return this organisations's members.
*
* @return \Illuminate\Database\Eloquent\Relations\HasMany
*/
public function members();
/**
* Return this organisations's admins.
*
* @return \Illuminate\Database\Eloquent\Relations\HasMany
*/
public function administrators();
/**
* Performs tasks to be done before an organisation is merged
*
* By default, adds a new sign-in activity and updates any legacy hash.
*
* @param OrganisationInterface $target The organisation that will be merged towards.
* @param mixed[] $params Optional array of parameters used for this event handler.
*
* @todo Transition to Laravel Event dispatcher to handle this
*/
public function beforeMerge($target, $params = []);
/**
* Joins the organisation's member count, so we can do things like sort, search, paginate, etc.
*
* @param Builder $query
*
* @return Builder
*/
public function scopeJoinMemberCounts($query);
}

83
src/Database/Models/Organisation.php
View File

@@ -11,6 +11,7 @@ namespace UserFrosting\Sprinkle\Organisations\Database\Models;
use Illuminate\Database\Capsule\Manager as DB; use Illuminate\Database\Capsule\Manager as DB;
use UserFrosting\Sprinkle\Core\Database\Models\Model; use UserFrosting\Sprinkle\Core\Database\Models\Model;
use UserFrosting\Sprinkle\Organisations\Database\Models\Interfaces\OrganisationInterface;
/** /**
* Organisation Class. * Organisation Class.
@@ -26,7 +27,7 @@ use UserFrosting\Sprinkle\Core\Database\Models\Model;
* @property timestamp $updated_at * @property timestamp $updated_at
* @property timestamp $deleted_at * @property timestamp $deleted_at
*/ */
class Organisation extends Model class Organisation extends Model implements OrganisationInterface
{ {
/** /**
* @var string The name of the table for the current model. * @var string The name of the table for the current model.
@@ -131,6 +132,86 @@ class Organisation extends Model
->withTimestamps(); ->withTimestamps();
} }
/**
* Delete this organisation from the database, along with any linked objects.
*
* @param bool $hardDelete Set to true to completely remove the organisation and all associated objects.
*
* @return bool true if the deletion was successful, false otherwise.
*/
public function delete($hardDelete = false)
{
/** @var \UserFrosting\Sprinkle\Core\Util\ClassMapper $classMapper */
$classMapper = static::$ci->classMapper;
if ($hardDelete) {
static::$ci->get('organisation.beforeDelete')($this);
// Remove all member associations
$this->members()->detach();
// Delete the organisation
$result = $this->forceDelete();
} else {
// Soft delete the organisation, leaving all associated records alone
$result = parent::delete();
}
return $result;
}
/**
* Performs tasks to be done before an organisation is merged
*
* By default, adds a new sign-in activity and updates any legacy hash.
*
* @param mixed[] $params Optional array of parameters used for this event handler.
*
* @todo Transition to Laravel Event dispatcher to handle this
*/
public function beforeMerge($target, $params = [])
{
/** @var \UserFrosting\Sprinkle\Core\Util\ClassMapper $classMapper */
$classMapper = static::$ci->classMapper;
/** @var \UserFrosting\Sprinkle\Account\Database\Models\Interfaces\UserInterface $currentUser */
$currentUser = static::$ci->authenticator->user();
/** @var \UserFrosting\Sprinkle\???? $activityLogger */
$activityLogger = static::$ci->userActivityLogger;
$logEntry = function($activityLogger, $currentUser, $user, $target) {
$activityLogger->info("User {$currentUser->user_name} moved user {$user->user_name} from organisation {$this->name} into {$target->name}.", [
'type' => 'organisation_merge',
'user_id' => $currentUser->id,
]);
$activityLogger->info("User {$user->user_name} was removed from the organisation {$this->name} by {$currentUser->user_name} during an organisation merge.", [
'type' => 'group_leave',
'user_id' => $user->id,
]);
$activityLogger->info("User {$user->user_name} was added to the organisation {$target->name} by {$currentUser->user_name} during an organisation merge.", [
'type' => 'group_join',
'user_id' => $user->id,
]);
};
// Move all the users from this organisation to the target
$this->members()->each(function ($user) use ($target, $activityLogger, $currentUser, $logEntry) {
$this->members()->detach($user); // NOTE: Should this record be retained? Or is the activity log enough of an audit?
$target->members()->attach($user, ['flag_admin' => false]);
$logEntry($activityLogger, $currentUser, $user, $target);
});
$this->administrators()->each(function ($user) use ($target, $activityLogger, $currentUser, $logEntry) {
$this->administrators()->detach($user); // NOTE: Should this record be retained? Or is the activity log enough of an audit?
$target->administrators()->attach($user, ['flag_admin' => true]);
$logEntry($activityLogger, $currentUser, $user, $target);
});
$this->save();
$target->save();
return $this;
}
/** /**
* Joins the organisation's member count, so we can do things like sort, search, paginate, etc. * Joins the organisation's member count, so we can do things like sort, search, paginate, etc.
* *

6
src/Database/Seeds/OrganisationPermissions.php
View File

@@ -61,6 +61,12 @@ class OrganisationPermissions extends BaseSeed
'conditions' => 'always()', 'conditions' => 'always()',
'description' => 'Edit basic properties of any organisation.', 'description' => 'Edit basic properties of any organisation.',
]), ]),
'merge_organisations' => new Permission([
'slug' => 'merge_organisations',
'name' => 'Merge two organisations',
'conditions' => 'always()',
'description' => 'Merge two organisations together, including all the members.',
]),
'delete_organisation' => new Permission([ 'delete_organisation' => new Permission([
'slug' => 'delete_organisation', 'slug' => 'delete_organisation',
'name' => 'Delete organisation', 'name' => 'Delete organisation',

40
src/ServicesProvider/ServicesProvider.php
View File

@@ -12,6 +12,7 @@ namespace UserFrosting\Sprinkle\Organisations\ServicesProvider;
use Psr\Container\ContainerInterface; use Psr\Container\ContainerInterface;
use Psr\Http\Message\ResponseInterface as Response; use Psr\Http\Message\ResponseInterface as Response;
use Psr\Http\Message\ServerRequestInterface as Request; use Psr\Http\Message\ServerRequestInterface as Request;
use UserFrosting\Sprinkle\Organisations\Database\Models\Interfaces\OrganisationInterface as OrganisationInterface;
/** /**
* Registers services for the organisation sprinkle. * Registers services for the organisation sprinkle.
@@ -40,5 +41,44 @@ class ServicesProvider
return $classMapper; return $classMapper;
}); });
/*
* Returns a callback that handles merging any organisation objects.
*
* @return callable
*/
$container['organisation.beforeMerge'] = function ($c) {
/*
* This method is invoked when an organisation is about to be merged
*
* Returns a callback that handles re-owning any organisation objects.
* Throwing exceptions is allowed but not recommended. This method is triggered within a Capsule context.
* @param \UserFrosting\Sprinkle\Organisations\Database\Models\Interfaces\OrganisationInterfaces $source Organisation merging from
* @param \UserFrosting\Sprinkle\Organisations\Database\Models\Interfaces\OrganisationInterfaces $target Organisation merging towards
*/
return function (OrganisationInterface $source, OrganisationInterface $target) use ($c) {
};
};
/*
* Returns a callback that handles hard deleting an organisation (clean up any associated objects).
*
* @return callable
*/
$container['organisation.beforeDelete'] = function ($c) {
/*
* This method is invoked when an organisation is about to be merged
*
* Returns a callback that handles re-owning any organisation objects.
* Throwing exceptions is allowed but not recommended. This method is triggered within a Capsule context.
* @param \UserFrosting\Sprinkle\Organisations\Database\Models\Interfaces\OrganisationInterfaces $organisation Organisation about to be deleted
*/
return function (OrganisationInterface $organisation) use ($c) {
};
};
} }
} }

51
templates/modals/organisation-merge.html.twig Normal file
View File

@@ -0,0 +1,51 @@
{% extends "modals/modal.html.twig" %}
{% block modal_title %}{{translate("ORGANISATION.MERGE")}}{% endblock %}
{% block modal_body %}
<form class="js-form" method="POST" action="{{site.uri.public}}/api/organisations/merge">
{% include "forms/csrf.html.twig" %}
<input type="hidden" name="source_slug" value="{{organisation.slug}}">
<div class="js-form-alerts">
</div>
<div class="js-form-organisations">
<h4>{{translate("ORGANISATION.MERGE_INFORM", {name: organisation.name})}}<br><small>{{translate("MERGE_CANNOT_UNDONE")}}</small></h4>
<div class="padding-bottom">
<label>{{translate("MERGE_INTO")}}:</label>
<select class="form-control js-select-new" type="text" name="target_slug"></select>
</div>
</div>
<br>
<div class="row">
<div class="col-xs-8 col-sm-4">
<button type="submit" class="btn btn-block btn-lg btn-success">{{translate("MERGE")}}</button>
</div>
<div class="col-xs-4 col-sm-3 pull-right">
<button type="button" class="btn btn-block btn-lg btn-link" data-dismiss="modal">{{translate('CANCEL')}}</button>
</div>
</div>
</form>
{# This contains a series of <script> blocks, each of which is a client-side Handlebars template.
# Note that these are NOT Twig templates, although the syntax is similar. We wrap them in the `verbatim` tag,
# so that Twig will output them directly into the DOM instead of trying to treat them like Twig templates.
#
# These templates require handlebars-helpers.js, moment.js
#}
{% verbatim %}
<script id="organisation-select-option" type="text/x-handlebars-template">
<div>
<strong>
{{name}}
</strong>
<br>
{{description}}
</div>
</script>
{% endverbatim %}
<!-- Include validation rules -->
<script>
{% include "pages/partials/page.js.twig" %}
</script>
{% endblock %}

5
templates/tables/organisations.html.twig
View File

@@ -70,6 +70,11 @@
<i class="fas fa-edit"></i> {% endverbatim %}{{translate("ORGANISATION.EDIT")}}{% verbatim %} <i class="fas fa-edit"></i> {% endverbatim %}{{translate("ORGANISATION.EDIT")}}{% verbatim %}
</a> </a>
</li> </li>
<li>
<a href="#" data-slug="{{row.slug}}" class="js-organisation-merge">
<i class="fas fa-object-group"></i> {% endverbatim %}{{translate("ORGANISATION.MERGE")}}{% verbatim %}
</a>
</li>
<li> <li>
<a href="#" data-slug="{{row.slug}}" class="js-organisation-delete"> <a href="#" data-slug="{{row.slug}}" class="js-organisation-delete">
<i class="fas fa-trash-alt"></i> {% endverbatim %}{{translate("ORGANISATION.DELETE")}}{% verbatim %} <i class="fas fa-trash-alt"></i> {% endverbatim %}{{translate("ORGANISATION.DELETE")}}{% verbatim %}