Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add new config option allowVisibleSource #1599

Closed
wants to merge 33 commits into from
Closed

Add new config option allowVisibleSource #1599

wants to merge 33 commits into from

Conversation

roman-yatsenko
Copy link

Add new config option allowVisibleSource to the project. The default value for this option is true. The false value will block Edit and Both editor modes for users that have no rights to edit a note.

Pull request adds:

  • new config option allowVisibleSource with default value true;
  • new environment variable CMD_VISIBLE_SOURCE;
  • disable Edit and Both modes for users without edit note permission;
  • redirect form Edit and Both modes to View mode by direct URL with mode parameter.

@roman-yatsenko roman-yatsenko changed the title Add new config option allowVisibleSource WIP: Add new config option allowVisibleSource Sep 18, 2020
JamesHow1ett and others added 20 commits September 18, 2020 15:34
@JamesHow1ett
добавил allowSourceView в конфиг по умолчанию; сделал кнопки не актив…
e2b5239 
…ными

Signed-off-by: JamesHow1ett <[email protected]>
@JamesHow1ett
добавил переменную CMD_VISIBLE_SOURCE в среду
1c63768 
Signed-off-by: JamesHow1ett <[email protected]>
@JamesHow1ett
did add locales support for mode btn titles
7eec6ca 
Signed-off-by: JamesHow1ett <[email protected]>
@JamesHow1ett
block use hotkeys to see source code without rights
01daf2c 
Signed-off-by: JamesHow1ett <[email protected]>
@JamesHow1ett
block use hotkeys to see source code without rights
7ece907 
Signed-off-by: JamesHow1ett <[email protected]>
@JamesHow1ett
block use hotkeys to see source code without rights
0d531c9 
Signed-off-by: JamesHow1ett <[email protected]>
@JamesHow1ett
block use hotkeys to see source code without rights
1d2410f 
Signed-off-by: JamesHow1ett <[email protected]>
@JamesHow1ett
implement feature to disable veiw source code without rights
919a5a4 
Signed-off-by: JamesHow1ett <[email protected]>
@JamesHow1ett
minor fix
6bb4d3a 
Signed-off-by: JamesHow1ett <[email protected]>
@JamesHow1ett
disabled change mode view for logout users
7b35425 
Signed-off-by: JamesHow1ett <[email protected]>
@JamesHow1ett
realese feature
dc40648 
Signed-off-by: JamesHow1ett <[email protected]>
@JamesHow1ett
remove timeout for call fn; update condition for call replaceUrl fn; …
4471804 
…create disable\enabel fn's

Signed-off-by: JamesHow1ett <[email protected]>
@JamesHow1ett
clean code
296b29a 
Signed-off-by: JamesHow1ett <[email protected]>
@JamesHow1ett
add function to check paramets for allowVisibleSource fn
2fe4d76 
Signed-off-by: JamesHow1ett <[email protected]>
@JamesHow1ett
grouped switch cases
2f0b724 
Signed-off-by: JamesHow1ett <[email protected]>
@JamesHow1ett
clean code
bcabc1f 
Signed-off-by: JamesHow1ett <[email protected]>
@JamesHow1ett
clean code
4e414db 
Signed-off-by: JamesHow1ett <[email protected]>
@JamesHow1ett
clean code
b309457 
Signed-off-by: JamesHow1ett <[email protected]>
@JamesHow1ett
clean code
88fb734 
Signed-off-by: JamesHow1ett <[email protected]>
@roman-yatsenko @JamesHow1ett
Reset locales
b7bc124 
Signed-off-by: JamesHow1ett <[email protected]>
@JamesHow1ett JamesHow1ett force-pushed the feat/allowVisibleSource branch from b918582 to b7bc124 Compare September 18, 2020 12:35
@JamesHow1ett
clean code for tests
0af9e41 
Signed-off-by: JamesHow1ett <[email protected]>
@roman-yatsenko roman-yatsenko changed the title WIP: Add new config option allowVisibleSource Add new config option allowVisibleSource Sep 18, 2020
@Yukaii Yukaii temporarily deployed to codimd-feat-allowvisibl-khdvhq September 29, 2020 06:08 Inactive
a60814billy
a60814billy reviewed Oct 23, 2020
View reviewed changes
lib/config/default.js Outdated
@@ -33,6 +33,7 @@ module.exports = {
allowAnonymousEdits: true,
allowAnonymousViews: true,
allowFreeURL: false,
allowVisibleSource: true,
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

To prevent broken current behavior, set the default value to false

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

With the default value true user can see note source (edit and both modes are enabled for view to user without edit rights). The true value is an usual CodiMD behavior for now.
P.S. But we've refactored as you wish :-)

lib/config/environment.js Outdated
@@ -29,6 +29,7 @@ module.exports = {
allowAnonymousEdits: toBooleanConfig(process.env.CMD_ALLOW_ANONYMOUS_EDITS),
allowAnonymousViews: toBooleanConfig(process.env.CMD_ALLOW_ANONYMOUS_VIEWS),
allowFreeURL: toBooleanConfig(process.env.CMD_ALLOW_FREEURL),
allowVisibleSource: toBooleanConfig(process.env.CMD_VISIBLE_SOURCE),
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

following coding convention,
change the environment variable name to CMD_ALLOW_VISIBLE_SOURCE

a60814billy
a60814billy reviewed Oct 23, 2020
View reviewed changes
public/js/index.js Outdated
@@ -499,6 +505,71 @@ $(window).on('error', function () {
// setNeedRefresh();
})

function checkParametr (isLogin, permission) {
if (typeof isLogin !== 'boolean' || !permission) {
throw new Error('one or more parametr is incorrect')
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
throw new Error('one or more parametr is incorrect')
throw new Error('one or more parameter is incorrect')

public/js/index.js Outdated
function checkParametr (isLogin, permission) {
if (typeof isLogin !== 'boolean' || !permission) {
throw new Error('one or more parametr is incorrect')
} else return allowVisibleSource(isLogin, permission)
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
} else return allowVisibleSource(isLogin, permission)
}
return allowVisibleSource(isLogin, permission)

public/js/index.js Outdated
}
}

function disableControls () {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Using more precise function name here.
Maybe can change disableControlsto disableModeChangeControls and
enableControls to enableModeChangeControls

public/js/index.js Outdated
@@ -499,6 +505,71 @@ $(window).on('error', function () {
// setNeedRefresh();
})

function checkParametr (isLogin, permission) {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
function checkParametr (isLogin, permission) {
function checkParameter (isLogin, permission) {

public/js/index.js Outdated
} else return allowVisibleSource(isLogin, permission)
}

function replaceUrl (url) {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

replaceUrl -> replaceUrlToViewMode

public/js/index.js Outdated
}

function userIsLogin (userPersonalInfo) {
if (Object.prototype.hasOwnProperty.call(userPersonalInfo, 'login')) {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more. 

function userIsLogin (userPersonalInfo) {
  return !!userPersonalInfo && !!userPersonalInfo.login
}

public/js/index.js
@@ -1567,10 +1638,14 @@ function importFromUrl (url) {

// mode
ui.toolbar.mode.click(function () {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

introduce a function isAllowUserChangeMode

function isAllowUserChangeMode () {
  const isOwner = personalInfo.userid && window.owner && personalInfo.userid === window.owner
  return isOwner || !blockSourceView
}

and mode select logic would be

if (isAllowUserChangeMode()) {
    return toggleMode()
}

a60814billy
a60814billy requested changes Oct 23, 2020
View reviewed changes
Copy link
Member

@a60814billy a60814billy left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hi @roman-yatsenko, thanks for your contribution, It's a good feature.
But we need some refactoring to meet project coding conventions before merge.

@a60814billy
Copy link
Member

By the way, please sign DCO

@Yukaii Yukaii temporarily deployed to codimd-feat-allowvisibl-khdvhq October 26, 2020 12:52 Inactive
@roman-yatsenko
Copy link
Author

By the way, please sign DCO

We have a git problems with DCO commit signs (Can't sign done commits). Can we accept the pull request without DCO? Or we can create a new pull request with one signed commit with all code.
What we need to do?

@a60814billy
Copy link
Member

Hi, @roman-yatsenko
Due to AGPL licesne, we can't accept any code without DCO sign. Please open a new pull request to do it!

@roman-yatsenko
Copy link
Author

Recreated at #1621

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@a60814billy a60814billy a60814billy requested changes

@JamesHow1ett JamesHow1ett JamesHow1ett approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@roman-yatsenko @a60814billy @JamesHow1ett @Yukaii