Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Make Send SMS permission independent of Edit Contact permission #12067

Merged
merged 1 commit into from
Jun 8, 2018
Merged

Make Send SMS permission independent of Edit Contact permission #12067

merged 1 commit into from
Jun 8, 2018

Conversation

michaelmcandrew
Copy link
Contributor

Overview

A (presumably fairly trivial) follow on from #11590.

Most of the tasks listed in CRM_Contact_Task::tasks() also require the edit contact permission but a few do not. The ones that do not are mentioned in the final else of ::permissionedTaskTitles().

We want people to be able to Send SMS without having the edit contacts permission. Therefore, we need to mention it in this final else clause.

Before

You needed an Edit contact permission AND the send SMS permission to send SMS

After

You only need the send SMS permission to send SMS.

@eileenmcnaughton
Copy link
Contributor

@mattwire @JKingsnorth are either of you able to review this one?

monishdeb
monishdeb reviewed May 8, 2018
View reviewed changes
CRM/Contact/Task.php Outdated
!empty(self::$_tasks[self::TASK_SMS]['title'])
) {
$tasks[self::TASK_SMS] = self::$_tasks[self::TASK_SMS]['title'];
}
Copy link
Member

@monishdeb monishdeb May 8, 2018
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Here's a scope for code improvement:

// lets declare a array of tasks we should be looking, to be included in final list of permitted $tasks
foreach ([
 self::MAP_CONTACTS,
 ...
 self::CREATE_MAILING,
 self::TASK_SMS,
] as $taskID) {
  if (isset(self::$_tasks[$taskID]) && !empty(self::$_tasks[$taskID]['title']) {
    $tasks[$taskID] = self::$_tasks[$taskID]['title'];
  }
}

@michaelmcandrew what do you think?

@mattwire
Copy link
Contributor

mattwire commented May 8, 2018

So we have a number of functions in play here:

  • CRM_Contact_Task::tasks(); (and then CRM_Core_Task::tasks()) returns an array of ALL available tasks for the Contact entity which should be independent of permissions (but currently many permissions are defined in that function).

  • CRM_Contact_Task::permissionedTaskTitles(); (and then CRM_Core_Task::corePermissionedTaskTitles()`) should return an array of tasks which the current user has permission to access.

  • CRM_Contact_Task::taskTitles(); (and then CRM_Core_Task::taskTitles()) should really be deprecated and merged into the permissionedTaskTitles() function (there was only so much refactoring I could do at the time!).

As a step forwards I think it would be better to:

  1. Remove the permission check from tasks():
    $providersCount = CRM_SMS_BAO_Provider::activeProviderCount(); if ($providersCount && CRM_Core_Permission::check('send SMS')) {

  2. Move the initial SMS task declaration into the main self::$_tasks = array( declaration.

  3. Add that check after the final "else" in permissionedTaskTitles(), or if it may apply to multiple entities in corePermissionedTaskTitles(). So you would have:

if ($providersCount && CRM_Core_Permission::check('send SMS')) {
  $tasks[self::TASK_SMS] = self::$_tasks[self::TASK_SMS]['title'];
} else {
  unset($tasks[self::TASK_SMS]);
}

@michaelmcandrew
Copy link
Contributor Author

Thanks for the feedback @monishdeb and @mattwire - I'll take a look ASAP.

@michaelmcandrew
Copy link
Contributor Author

@mattwire - I've thought about this for a while, and although I get the motivation, I can't see a sensible way to do what you said. When I try, the code ends up more complex.

If I add it unconditionally in tasks() then when it comes to permissionedTaskTitles() I have to do two things

  1. if the person has edit all contacts, but does not have send SMS, I have to remove the permission from $tasks

  2. If the person does not have edit all contacts, but does have send SMS I have to add it (which is what I am currently doing).

So it seems simpler to keep it as it is.

I can make the change if you prefer but wanted to check first. Or if I am missing something, feel free to let me know / have a go yourself.

@Monish - if we end up keeping it this way, I will add your refactoring

@mattwire
Copy link
Contributor

@michaelmcandrew Ok let's keep it simple for now and just change it as @monishdeb suggested. Is there a unit test we could add at the same time?

@michaelmcandrew
Copy link
Contributor Author

@mattwire - ok sounds good. give me a shout if you ever want to discuss further clean up on this area of the code base. re: tests, I did add a permissions test in #11590 which this PR also passes. Might that be good enough? Else, are there any unit tests specifically for CRM/Contact/Task.php that I could copy?

@monishdeb - I've implemented the code cleanup that you suggested.

@eileenmcnaughton
Copy link
Contributor

Merging - I think the change has been adequately reviewed (and I also checked the code myself).

We don't have tests on this function yet (the permissioned tiles) and it would be good to add but I also think this change could slip through without one as it is pretty trivial

@eileenmcnaughton eileenmcnaughton merged commit f118320 into civicrm:master Jun 8, 2018
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@monishdeb monishdeb monishdeb left review comments

Assignees
No one assigned
Labels
master sig:permission nuancing
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@michaelmcandrew @eileenmcnaughton @mattwire @monishdeb @civicrm-builder