Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Adding private issues functionality #17711

Closed
wants to merge 85 commits into from
Closed
Show file tree
Hide file tree
Changes from 6 commits
Commits
Show all changes
85 commits
Select commit Hold shift + click to select a range
05ec3f1
WIP
Nov 18, 2021
5652ea1
Add UI/backend-end handling
Nov 18, 2021
46f1cc7
Add toggle
Nov 18, 2021
0e1e744
Add NumPrivate{Closed,Open,}Issues (BEGIN)
Nov 18, 2021
8e63544
Respect issue's private on API
Nov 18, 2021
14bfc69
Fix issue Right checking
Nov 18, 2021
a810833
Fix issue list on poster
Nov 18, 2021
faadf71
Code review feedback
Nov 18, 2021
f7da3f2
Fix compiling
Nov 19, 2021
ea6a63f
Restrict changing state to poster + admin
Nov 19, 2021
535cec3
Fixing up some permissions
Nov 19, 2021
045374c
Merge branch 'main' into private-comments
Nov 19, 2021
4706958
Add team permission
Nov 19, 2021
cef707a
Merge branch 'main' into private-comments
Nov 19, 2021
b728100
Fix comments
Nov 19, 2021
108ae1f
Add migration
Nov 20, 2021
75c8a34
Fix header calculation
Nov 20, 2021
fe48cfb
Fix showing confidential button.
Nov 20, 2021
de88171
Fix listing issues on other places
Nov 20, 2021
777694a
Add permission checking to api
Nov 20, 2021
aca5ad2
Fix database errors
Nov 20, 2021
cb5ebf6
Fix api not found
Nov 20, 2021
ba762be
Allow API to create confidential issues
Nov 20, 2021
c784db7
Fix copy pasta
Nov 21, 2021
23be89d
Fix notifications checking (I think?)
Nov 21, 2021
9fd110f
Fix permission checking
Nov 21, 2021
8e2b43b
Simplify
Nov 21, 2021
87792d3
Fix mail permission checking
Nov 21, 2021
9c396b8
Disallow private issues on webhooks
Nov 21, 2021
d6edd41
Merge branch 'main' into private-comments
Nov 21, 2021
d4ebb38
Migration: set owner's team to see private issues
Nov 21, 2021
8f58908
Fix unit tests
Nov 21, 2021
1714bf5
Fix migration
Nov 21, 2021
6c1f279
Typo in field
Nov 21, 2021
790975f
Fix issues loading for admins
Nov 21, 2021
44a4b63
Load correct issues on projects
Nov 21, 2021
45dcc98
Actually fixup permissions
Nov 21, 2021
b1a1972
Fix projects with private issues
Nov 21, 2021
8461e94
Make linter happy
Nov 21, 2021
04efd7f
Merge branch 'main' into private-comments
Nov 21, 2021
b1915c0
Load issue on comments on API
Nov 21, 2021
ec998e8
Fix GetCodeCommentsCount
Nov 21, 2021
51ea1a2
Fix tests
Nov 22, 2021
69851a9
More verbose error
Nov 22, 2021
f8feef7
Add some more locks
Nov 22, 2021
312a5b4
More locks!
Nov 22, 2021
1ffb2f3
Simplify
Nov 22, 2021
69abea3
Add a lock
Nov 22, 2021
254c500
Make linter happy
Nov 22, 2021
211804b
PR's are not supported
Nov 22, 2021
58de704
Add tooltip data to sidebars
Nov 22, 2021
82f14ec
Don't leak private issues via activity tab
Nov 22, 2021
1fa3372
Merge branch 'main' into private-comments
Nov 22, 2021
27fe481
Make linter happy
Nov 22, 2021
e9db7ef
Remove redunant space
Nov 22, 2021
9a67e55
Merge branch 'main' into private-comments
Nov 24, 2021
74bc87a
Fix build errors
Nov 24, 2021
51a7ea1
Replac with better icons
Nov 24, 2021
9971830
Add icon into issue list
Nov 25, 2021
bced477
Attract some attention
Nov 25, 2021
cf28438
Best-effort
Nov 25, 2021
29323ce
Fix attachment fixtures
Nov 25, 2021
60a5a3c
Merge branch 'main' into private-comments
Nov 25, 2021
596916f
Simplify migration
Nov 25, 2021
dcdf3c7
Fix attachment fixtures
Nov 25, 2021
69bdec9
Simplify condition
Nov 25, 2021
8cd0fbb
Use private
Nov 25, 2021
6cb1a5d
Use options
Nov 25, 2021
e1db0e5
Merge branch 'main' into private-comments
Nov 25, 2021
eaa5c54
Fixup error
Nov 25, 2021
c082f66
Remove TODO
Nov 30, 2021
a1deafb
Merge branch 'main' into private-comments
Nov 30, 2021
3bfa133
Refactor into `CanSeeIssue` function
Dec 8, 2021
07d252a
Apply code review suggestions
Dec 8, 2021
37f0a21
Merge branch 'main' into private-comments
Dec 8, 2021
7253c73
Merge branch 'main' into private-comments
Dec 15, 2021
0436cd7
Fix errors
Dec 15, 2021
241d735
Apply suggestion from code-Review
Dec 15, 2021
9b93d30
Merge branch 'main' into private-comments
Mar 5, 2022
c560ddb
Merge branch 'main' into private-comments
Mar 15, 2022
52b58b4
Merge branch 'main' into private-comments
May 2, 2022
8a6fb51
Fix panic on projects page
May 2, 2022
d268277
Fix some more problems
May 2, 2022
f581410
Fix projects with confidential Issues
May 3, 2022
0ed31e2
Gofumpt code
May 3, 2022
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
19 changes: 19 additions & 0 deletions models/error.go
Original file line number Diff line number Diff line change
Expand Up @@ -1331,6 +1331,25 @@ func (err ErrReactionAlreadyExist) Error() string {
return fmt.Sprintf("reaction '%s' already exists", err.Reaction)
}

// ErrCannotSeePrivateIssue is used when a user tries to view a issue
// which they don't have permission for.
type ErrCannotSeePrivateIssue struct {
UserID int64
ID int64
RepoID int64
Index int64
}

// IsErrCannotSeePrivateIssue checks if an error is a ErrCannotSeePrivateIssue.
func IsErrCannotSeePrivateIssue(err error) bool {
_, ok := err.(ErrCannotSeePrivateIssue)
return ok
}

func (err ErrCannotSeePrivateIssue) Error() string {
return fmt.Sprintf("issue is private but user hasn't permission to view it [id: %d, repo_id: %d, index: %d, user_id: %d]", err.ID, err.RepoID, err.Index, err.UserID)
Gusted marked this conversation as resolved.
Show resolved Hide resolved
}

// __________ .__ .__ __________ __
// \______ \__ __| | | |\______ \ ____ ________ __ ____ _______/ |_
// | ___/ | \ | | | | _// __ \/ ____/ | \_/ __ \ / ___/\ __\
Expand Down
87 changes: 80 additions & 7 deletions models/issue.go
Original file line number Diff line number Diff line change
Expand Up @@ -69,6 +69,8 @@ type Issue struct {
// IsLocked limits commenting abilities to users on an issue
// with write access
IsLocked bool `xorm:"NOT NULL DEFAULT false"`
// IsPrivate limits who can see the issue.
IsPrivate bool `xorm:"NOT NULL DEFAULT false"`
Gusted marked this conversation as resolved.
Show resolved Hide resolved

// For view issue page.
ShowRole RoleDescriptor `xorm:"-"`
Expand Down Expand Up @@ -190,6 +192,15 @@ func (issue *Issue) loadPoster(e db.Engine) (err error) {
return
}

func (issue *Issue) loadIsPrivate(e db.Engine) (err error) {
var isPrivate bool
if _, err = e.Table("issue").Where("id=?", issue.ID).Cols("is_private").Get(&isPrivate); err != nil {
return
}
issue.IsPrivate = isPrivate
return
}

func (issue *Issue) loadPullRequest(e db.Engine) (err error) {
if issue.IsPull && issue.PullRequest == nil {
issue.PullRequest, err = getPullRequestByIssueID(e, issue.ID)
Expand Down Expand Up @@ -323,6 +334,10 @@ func (issue *Issue) loadAttributes(e db.Engine) (err error) {
}
}

if err = issue.loadIsPrivate(e); err != nil {
return err
}

return issue.loadReactions(e)
}

Expand Down Expand Up @@ -741,6 +756,40 @@ func (issue *Issue) ChangeTitle(doer *User, oldTitle string) (err error) {
return committer.Commit()
}

// ChangeConfidential changes the confidential of this issue, as the given user.
func (issue *Issue) ChangeConfidential(doer *User) (err error) {
ctx, committer, err := db.TxContext()
if err != nil {
return err
}
defer committer.Close()

if err = updateIssueCols(db.GetEngine(ctx), issue, "is_private"); err != nil {
return fmt.Errorf("updateIssueCols: %v", err)
}

if err = issue.loadRepo(db.GetEngine(ctx)); err != nil {
return fmt.Errorf("loadRepo: %v", err)
}

opts := &CreateCommentOptions{
Type: CommenTypeConfidentialChanged,
Gusted marked this conversation as resolved.
Show resolved Hide resolved
Doer: doer,
Repo: issue.Repo,
Issue: issue,
OldConfidential: !issue.IsPrivate,
NewConfidential: issue.IsPrivate,
}
if _, err = createComment(db.GetEngine(ctx), opts); err != nil {
return fmt.Errorf("createComment: %v", err)
}
if err = issue.addCrossReferences(db.GetEngine(ctx), doer, true); err != nil {
return err
}

return committer.Commit()
}

// ChangeRef changes the branch of this issue, as the given user.
func (issue *Issue) ChangeRef(doer *User, oldRef string) (err error) {
ctx, committer, err := db.TxContext()
Expand Down Expand Up @@ -939,7 +988,11 @@ func newIssue(e db.Engine, doer *User, opts NewIssueOptions) (err error) {
if opts.IsPull {
_, err = e.Exec("UPDATE `repository` SET num_pulls = num_pulls + 1 WHERE id = ?", opts.Issue.RepoID)
} else {
_, err = e.Exec("UPDATE `repository` SET num_issues = num_issues + 1 WHERE id = ?", opts.Issue.RepoID)
if opts.Issue.IsPrivate {
_, err = e.Exec("UPDATE `repository` SET num_private_issues = num_private_issues + 1 WHERE id = ?", opts.Issue.RepoID)
Gusted marked this conversation as resolved.
Show resolved Hide resolved
} else {
_, err = e.Exec("UPDATE `repository` SET num_issues = num_issues + 1 WHERE id = ?", opts.Issue.RepoID)
Gusted marked this conversation as resolved.
Show resolved Hide resolved
}
}
if err != nil {
return err
Expand Down Expand Up @@ -1154,6 +1207,7 @@ type IssuesOptions struct {
// prioritize issues from this repo
PriorityRepoID int64
IsArchived util.OptionalBool
CanSeePrivate bool
}

// sortIssuesSession sort an issues-related session based on the provided
Expand Down Expand Up @@ -1259,6 +1313,10 @@ func (opts *IssuesOptions) setupSession(sess *xorm.Session) {
}
}

if !opts.CanSeePrivate {
sess.And("issue.is_private=?", false)
}

switch opts.IsPull {
case util.OptionalBoolTrue:
sess.And("issue.is_pull=?", true)
Expand Down Expand Up @@ -1496,6 +1554,7 @@ type IssueStatsOptions struct {
ReviewRequestedID int64
IsPull util.OptionalBool
IssueIDs []int64
CanSeePrivate bool
}

const (
Expand Down Expand Up @@ -1583,6 +1642,10 @@ func getIssueStatsChunk(opts *IssueStatsOptions, issueIDs []int64) (*IssueStats,
applyReviewRequestedCondition(sess, opts.ReviewRequestedID)
}

if !opts.CanSeePrivate {
sess.And("issue.is_private=?", false)
}

switch opts.IsPull {
case util.OptionalBoolTrue:
sess.And("issue.is_pull=?", true)
Expand Down Expand Up @@ -1981,12 +2044,22 @@ func (issue *Issue) updateClosedNum(e db.Engine) (err error) {
issue.RepoID,
)
} else {
_, err = e.Exec("UPDATE `repository` SET num_closed_issues=(SELECT count(*) FROM issue WHERE repo_id=? AND is_pull=? AND is_closed=?) WHERE id=?",
issue.RepoID,
false,
true,
issue.RepoID,
)
if issue.IsPrivate {
_, err = e.Exec("UPDATE `repository` SET num_closed_private_issues=(SELECT count(*) FROM issue WHERE repo_id=? AND is_pull=? AND is_closed=? AND is_private=?) WHERE id=?",
issue.RepoID,
false,
true,
true,
issue.RepoID,
)
} else {
_, err = e.Exec("UPDATE `repository` SET num_closed_issues=(SELECT count(*) FROM issue WHERE repo_id=? AND is_pull=? AND is_closed=?) WHERE id=?",
issue.RepoID,
false,
true,
issue.RepoID,
)
}
}
return
}
Expand Down
6 changes: 5 additions & 1 deletion models/issue_comment.go
Original file line number Diff line number Diff line change
Expand Up @@ -101,8 +101,10 @@ const (
CommentTypeProject
// 31 Project board changed
CommentTypeProjectBoard
// Dismiss Review
// 32 Dismiss Review
CommentTypeDismissReview
// 33 Change confidential
CommenTypeConfidentialChanged
Gusted marked this conversation as resolved.
Show resolved Hide resolved
)

// RoleDescriptor defines comment tag type
Expand Down Expand Up @@ -907,6 +909,8 @@ type CreateCommentOptions struct {
NewTitle string
OldRef string
NewRef string
OldConfidential bool
NewConfidential bool
CommitID int64
CommitSHA string
Patch string
Expand Down
34 changes: 19 additions & 15 deletions models/repo.go
Original file line number Diff line number Diff line change
Expand Up @@ -202,21 +202,24 @@ type Repository struct {
OriginalURL string `xorm:"VARCHAR(2048)"`
DefaultBranch string

NumWatches int
NumStars int
NumForks int
NumIssues int
NumClosedIssues int
NumOpenIssues int `xorm:"-"`
NumPulls int
NumClosedPulls int
NumOpenPulls int `xorm:"-"`
NumMilestones int `xorm:"NOT NULL DEFAULT 0"`
NumClosedMilestones int `xorm:"NOT NULL DEFAULT 0"`
NumOpenMilestones int `xorm:"-"`
NumProjects int `xorm:"NOT NULL DEFAULT 0"`
NumClosedProjects int `xorm:"NOT NULL DEFAULT 0"`
NumOpenProjects int `xorm:"-"`
NumWatches int
NumStars int
NumForks int
NumIssues int
NumClosedIssues int
NumOpenIssues int `xorm:"-"`
NumPrivateIssues int
NumOpenPrivateIssues int `xorm:"-"`
NumClosedPrivateIssues int
NumPulls int
NumClosedPulls int
NumOpenPulls int `xorm:"-"`
NumMilestones int `xorm:"NOT NULL DEFAULT 0"`
NumClosedMilestones int `xorm:"NOT NULL DEFAULT 0"`
NumOpenMilestones int `xorm:"-"`
NumProjects int `xorm:"NOT NULL DEFAULT 0"`
NumClosedProjects int `xorm:"NOT NULL DEFAULT 0"`
NumOpenProjects int `xorm:"-"`

IsPrivate bool `xorm:"INDEX"`
IsEmpty bool `xorm:"INDEX"`
Expand Down Expand Up @@ -296,6 +299,7 @@ func (repo *Repository) AfterLoad() {
}

repo.NumOpenIssues = repo.NumIssues - repo.NumClosedIssues
repo.NumOpenPrivateIssues = repo.NumPrivateIssues - repo.NumClosedPrivateIssues
repo.NumOpenPulls = repo.NumPulls - repo.NumClosedPulls
repo.NumOpenMilestones = repo.NumMilestones - repo.NumClosedMilestones
repo.NumOpenProjects = repo.NumProjects - repo.NumClosedProjects
Expand Down
5 changes: 5 additions & 0 deletions models/repo_permission.go
Original file line number Diff line number Diff line change
Expand Up @@ -98,6 +98,11 @@ func (p *Permission) CanWriteIssuesOrPulls(isPull bool) bool {
return p.CanWrite(unit.TypeIssues)
}

// CanSeePrivateIssues returns true if the user is allowed to see private issues on the repo.
func (p *Permission) CanSeePrivateIssues() bool {
return p.CanWrite(unit.TypeIssues)
Gusted marked this conversation as resolved.
Show resolved Hide resolved
}

// ColorFormat writes a colored string for these Permissions
func (p *Permission) ColorFormat(s fmt.State) {
noColor := log.ColorBytes(log.Reset)
Expand Down
3 changes: 3 additions & 0 deletions options/locale/locale_en-US.ini
Original file line number Diff line number Diff line change
Expand Up @@ -1395,6 +1395,9 @@ issues.content_history.created = created
issues.content_history.delete_from_history = Delete from history
issues.content_history.delete_from_history_confirm = Delete from history?
issues.content_history.options = Options
issues.confidential = Confidential
issues.confidential.off = Make issue public
issues.confidential.on = Make issue confidential

compare.compare_base = base
compare.compare_head = compare
Expand Down
5 changes: 5 additions & 0 deletions routers/api/v1/repo/issue.go
Original file line number Diff line number Diff line change
Expand Up @@ -545,6 +545,11 @@ func GetIssue(ctx *context.APIContext) {
}
return
}

if issue.IsPrivate && !ctx.Repo.CanSeePrivateIssues() {
Gusted marked this conversation as resolved.
Show resolved Hide resolved
ctx.NotFound()
}

ctx.JSON(http.StatusOK, convert.ToAPIIssue(issue))
}

Expand Down
Loading