Fix: store optional Role in Invitation.

fisx · fisx · commit 4125673afbb2 · 2019-01-18T10:08:36.000+01:00
this is essential for backwards-compatibility, thanks @jschaul!
diff --git a/libs/brig-types/src/Brig/Types/Team/Invitation.hs b/libs/brig-types/src/Brig/Types/Team/Invitation.hs
@@ -7,7 +7,7 @@ import Brig.Types.Common
 import Data.Aeson
 import Data.Id
 import Data.Json.Util
-import Galley.Types.Teams (Role, Permissions)
+import Galley.Types.Teams (Role)
 
 data InvitationRequest = InvitationRequest
     { irEmail    :: !Email
@@ -18,7 +18,7 @@ data InvitationRequest = InvitationRequest
 
 data Invitation = Invitation
     { inTeam       :: !TeamId
-    , inPerms      :: !Permissions
+    , inRole       :: !(Maybe Role)
     , inInvitation :: !InvitationId
     , inIdentity   :: !Email
     , inCreatedAt  :: !UTCTimeMillis
@@ -48,7 +48,7 @@ instance ToJSON InvitationRequest where
 instance FromJSON Invitation where
     parseJSON = withObject "invitation" $ \o ->
         Invitation <$> o .: "team"
-                   <*> o .: "perms"
+                   <*> o .: "role"
                    <*> o .: "id"
                    <*> o .: "email"
                    <*> o .: "created_at"
@@ -57,7 +57,7 @@ instance FromJSON Invitation where
 instance ToJSON Invitation where
     toJSON i = object $
         [ "team"       .= inTeam i
-        , "perms"      .= inPerms i
+        , "role"       .= inRole i
         , "id"         .= inInvitation i
         , "email"      .= inIdentity i
         , "created_at" .= inCreatedAt i
diff --git a/libs/galley-types/src/Galley/Types/Teams.hs b/libs/galley-types/src/Galley/Types/Teams.hs
@@ -725,6 +725,22 @@ instance ToJSON TeamDeleteData where
         ]
 
 #ifdef WITH_CQL
+instance Cql.Cql Role where
+    ctype = Cql.Tagged Cql.IntColumn
+
+    toCql RoleOwner        = Cql.CqlInt 1
+    toCql RoleAdmin        = Cql.CqlInt 2
+    toCql RoleMember       = Cql.CqlInt 3
+    toCql RoleCollaborator = Cql.CqlInt 4
+
+    fromCql (Cql.CqlInt i) = case i of
+        1 -> return RoleOwner
+        2 -> return RoleAdmin
+        3 -> return RoleMember
+        4 -> return RoleCollaborator
+        n -> fail $ "Unexpected Role value: " ++ show n
+    fromCql _ = fail "Role value: int expected"
+
 instance Cql.Cql Permissions where
     ctype = Cql.Tagged $ Cql.UdtColumn "permissions" [("self", Cql.BigIntColumn), ("copy", Cql.BigIntColumn)]
 
diff --git a/libs/galley-types/src/Galley/Types/Teams/Swagger.hs b/libs/galley-types/src/Galley/Types/Teams/Swagger.hs
@@ -94,6 +94,8 @@ teamMember = defineModel "TeamMember" $ do
             \ (only visible with permission `GetMemberPermissions`)."
         optional  -- not optional in the type, but in the json instance.  (in
                   -- servant, we could probably just add a helper type for this.)
+                  -- TODO: even without servant, it would be nicer to introduce
+                  -- a type with optional permissions.
 
 permissions :: Model
 permissions = defineModel "Permissions" $ do
diff --git a/services/brig/schema/src/V55.hs b/services/brig/schema/src/V55.hs
@@ -8,7 +8,5 @@ import Cassandra.Schema
 import Text.RawString.QQ
 
 migration :: Migration
-migration = Migration 55 "Add perms to team invitations" $ do
-    schema' [r| CREATE TYPE permissions (self bigint, copy bigint); |]
-
-    schema' [r| alter table team_invitation add perms frozen<permissions>; |]
+migration = Migration 55 "Add optional role to team invitations" $ do
+    schema' [r| alter table team_invitation add role int; |]
diff --git a/services/brig/src/Brig/API/User.hs b/services/brig/src/Brig/API/User.hs
@@ -257,8 +257,8 @@ createUser new@NewUser{..} = do
         ok <- lift $ Data.claimKey uk uid
         unless ok $
             throwE $ DuplicateUserKey uk
-        let minvmeta :: (Maybe (UserId, UTCTimeMillis), Team.Permissions)
-            minvmeta = ((, inCreatedAt inv) <$> inCreatedBy inv, Team.inPerms inv)
+        let minvmeta :: (Maybe (UserId, UTCTimeMillis), Maybe Team.Role)
+            minvmeta = ((, inCreatedAt inv) <$> inCreatedBy inv, Team.inRole inv)
         added <- lift $ Intra.addTeamMember uid (Team.iiTeam ii) minvmeta
         unless added $
             throwE TooManyTeamMembers
@@ -273,7 +273,7 @@ createUser new@NewUser{..} = do
     addUserToTeamSSO :: UserAccount -> TeamId -> UserIdentity -> ExceptT CreateUserError AppIO CreateUserTeam
     addUserToTeamSSO account tid ident = do
         let uid = userId (accountUser account)
-        added <- lift $ Intra.addTeamMember uid tid (Nothing, Team.rolePermissions Team.RoleMember)
+        added <- lift $ Intra.addTeamMember uid tid (Nothing, Nothing)
         unless added $
             throwE TooManyTeamMembers
         lift $ do
diff --git a/services/brig/src/Brig/IO/Intra.hs b/services/brig/src/Brig/IO/Intra.hs
@@ -529,21 +529,22 @@ rmClient u c = do
 -------------------------------------------------------------------------------
 -- Team Management
 
-addTeamMember :: UserId -> TeamId -> (Maybe (UserId, UTCTimeMillis), Team.Permissions) -> AppIO Bool
-addTeamMember u tid (minvmeta, permissions) = do
+addTeamMember :: UserId -> TeamId -> (Maybe (UserId, UTCTimeMillis), Maybe Team.Role) -> AppIO Bool
+addTeamMember u tid (minvmeta, mrole) = do
     debug $ remote "galley"
             . msg (val "Adding member to team")
-    rs <- galleyRequest POST (req permissions)
+    rs <- galleyRequest POST req
     return $ case Bilge.statusCode rs of
         200 -> True
         _   -> False
   where
-    t prm = Team.newNewTeamMember $ Team.newTeamMember u prm minvmeta
-    req p = paths ["i", "teams", toByteString' tid, "members"]
+    prm   = Team.rolePermissions $ fromMaybe Team.RoleMember mrole
+    bdy   = Team.newNewTeamMember $ Team.newTeamMember u prm minvmeta
+    req   = paths ["i", "teams", toByteString' tid, "members"]
           . header "Content-Type" "application/json"
           . zUser u
           . expect [status200, status403]
-          . lbytes (encode $ t p)
+          . lbytes (encode bdy)
 
 createTeam :: UserId -> Team.BindingNewTeam -> TeamId -> AppIO CreateUserTeam
 createTeam u t@(Team.BindingNewTeam bt) teamid = do
diff --git a/services/brig/src/Brig/Team/API.hs b/services/brig/src/Brig/Team/API.hs
@@ -180,12 +180,12 @@ createInvitation (_ ::: uid ::: tid ::: req) = do
     user <- lift $ Data.lookupKey uk
     case user of
         Just _  -> throwStd emailExists
-        Nothing -> doInvite inviteePerms email from (irLocale body)
+        Nothing -> doInvite (irRole body) email from (irLocale body)
   where
-    doInvite perms to from lc = lift $ do
+    doInvite role to from lc = lift $ do
         now     <- liftIO =<< view currentTime
         timeout <- setTeamInvitationTimeout <$> view settings
-        (newInv, code) <- DB.insertInvitation tid perms to now (Just uid) timeout
+        (newInv, code) <- DB.insertInvitation tid role to now (Just uid) timeout
         void $ sendInvitationMail to tid from code lc
         return . setStatus status201 . loc (inInvitation newInv) $ json newInv
 
diff --git a/services/brig/src/Brig/Team/DB.hs b/services/brig/src/Brig/Team/DB.hs
@@ -30,7 +30,7 @@ import Brig.Options
 import Brig.Types.Common
 import Brig.Types.User
 import Brig.Types.Team.Invitation
-import Galley.Types.Teams (Permissions)
+import Galley.Types.Teams (Role)
 import Cassandra
 import UnliftIO.Async (pooledMapConcurrentlyN_)
 import Data.Id
@@ -58,35 +58,35 @@ data InvitationInfo = InvitationInfo
 
 insertInvitation :: MonadClient m
                  => TeamId
-                 -> Permissions
+                 -> Maybe Role
                  -> Email
                  -> UTCTime
                  -> Maybe UserId
                  -> Timeout -- ^ The timeout for the invitation code.
                  -> m (Invitation, InvitationCode)
-insertInvitation t perms email (toUTCTimeMillis -> now) minviter timeout = do
+insertInvitation t role email (toUTCTimeMillis -> now) minviter timeout = do
     iid  <- liftIO mkInvitationId
     code <- liftIO mkInvitationCode
-    let inv = Invitation t perms iid email now minviter
+    let inv = Invitation t role iid email now minviter
     retry x5 $ batch $ do
         setType BatchLogged
         setConsistency Quorum
-        addPrepQuery cqlInvitation (t, perms, iid, code, email, now, minviter, round timeout)
+        addPrepQuery cqlInvitation (t, role, iid, code, email, now, minviter, round timeout)
         addPrepQuery cqlInvitationInfo (code, t, iid, round timeout)
     return (inv, code)
   where
     cqlInvitationInfo :: PrepQuery W (InvitationCode, TeamId, InvitationId, Int32) ()
     cqlInvitationInfo = "INSERT INTO team_invitation_info (code, team, id) VALUES (?, ?, ?) USING TTL ?"
 
-    cqlInvitation :: PrepQuery W (TeamId, Permissions, InvitationId, InvitationCode, Email, UTCTimeMillis, Maybe UserId, Int32) ()
-    cqlInvitation = "INSERT INTO team_invitation (team, perms, id, code, email, created_at, created_by) VALUES (?, ?, ?, ?, ?, ?, ?) USING TTL ?"
+    cqlInvitation :: PrepQuery W (TeamId, Maybe Role, InvitationId, InvitationCode, Email, UTCTimeMillis, Maybe UserId, Int32) ()
+    cqlInvitation = "INSERT INTO team_invitation (team, role, id, code, email, created_at, created_by) VALUES (?, ?, ?, ?, ?, ?, ?) USING TTL ?"
 
 lookupInvitation :: MonadClient m => TeamId -> InvitationId -> m (Maybe Invitation)
 lookupInvitation t r = fmap toInvitation <$>
     retry x1 (query1 cqlInvitation (params Quorum (t, r)))
   where
-    cqlInvitation :: PrepQuery R (TeamId, InvitationId) (TeamId, Permissions, InvitationId, Email, UTCTimeMillis, Maybe UserId)
-    cqlInvitation = "SELECT team, perms, id, email, created_at, created_by FROM team_invitation WHERE team = ? AND id = ?"
+    cqlInvitation :: PrepQuery R (TeamId, InvitationId) (TeamId, Maybe Role, InvitationId, Email, UTCTimeMillis, Maybe UserId)
+    cqlInvitation = "SELECT team, role, id, email, created_at, created_by FROM team_invitation WHERE team = ? AND id = ?"
 
 lookupInvitationByCode :: MonadClient m => InvitationCode -> m (Maybe Invitation)
 lookupInvitationByCode i = lookupInvitationInfo i >>= \case
@@ -111,11 +111,11 @@ lookupInvitations team start (fromRange -> size) = do
     toResult more invs = cassandraResultPage $ emptyPage { result  = invs
                                                          , hasMore = more
                                                          }
-    cqlSelect :: PrepQuery R (Identity TeamId) (TeamId, Permissions, InvitationId, Email, UTCTimeMillis, Maybe UserId)
-    cqlSelect = "SELECT team, perms, id, email, created_at, created_by FROM team_invitation WHERE team = ? ORDER BY id ASC"
+    cqlSelect :: PrepQuery R (Identity TeamId) (TeamId, Maybe Role, InvitationId, Email, UTCTimeMillis, Maybe UserId)
+    cqlSelect = "SELECT team, role, id, email, created_at, created_by FROM team_invitation WHERE team = ? ORDER BY id ASC"
 
-    cqlSelectFrom :: PrepQuery R (TeamId, InvitationId) (TeamId, Permissions, InvitationId, Email, UTCTimeMillis, Maybe UserId)
-    cqlSelectFrom = "SELECT team, perms, id, email, created_at, created_by FROM team_invitation WHERE team = ? AND id > ? ORDER BY id ASC"
+    cqlSelectFrom :: PrepQuery R (TeamId, InvitationId) (TeamId, Maybe Role, InvitationId, Email, UTCTimeMillis, Maybe UserId)
+    cqlSelectFrom = "SELECT team, role, id, email, created_at, created_by FROM team_invitation WHERE team = ? AND id > ? ORDER BY id ASC"
 
 deleteInvitation :: MonadClient m => TeamId -> InvitationId -> m ()
 deleteInvitation t i = do
@@ -162,5 +162,5 @@ countInvitations t = fromMaybe 0 . fmap runIdentity <$>
     cqlSelect :: PrepQuery R (Identity TeamId) (Identity Int64)
     cqlSelect = "SELECT count(*) FROM team_invitation WHERE team = ?"
 
-toInvitation :: (TeamId, Permissions, InvitationId, Email, UTCTimeMillis, Maybe UserId) -> Invitation
-toInvitation (t, p, i, e, tm, minviter) = Invitation t p i e tm minviter
+toInvitation :: (TeamId, Maybe Role, InvitationId, Email, UTCTimeMillis, Maybe UserId) -> Invitation
+toInvitation (t, r, i, e, tm, minviter) = Invitation t r i e tm minviter
