SEBSERV-86 fixed and test fixes

This commit is contained in:
anhefti 2019-08-22 15:38:19 +02:00
parent 0c2c592d79
commit 1a3aac4802
9 changed files with 112 additions and 122 deletions

View file

@ -18,7 +18,7 @@ import ch.ethz.seb.sebserver.gbl.model.Entity;
public class UserActivityLog implements Entity { public class UserActivityLog implements Entity {
public static final String ATTR_USER_NAME = "username"; public static final String ATTR_USER_NAME = "username";
public static final String FILTER_ATTR_USER = "user"; public static final String FILTER_ATTR_USER_NAME = ATTR_USER_NAME;
public static final String FILTER_ATTR_FROM = "from"; public static final String FILTER_ATTR_FROM = "from";
public static final String FILTER_ATTR_TO = "to"; public static final String FILTER_ATTR_TO = "to";
public static final String FILTER_ATTR_FROM_TO = "from_to"; public static final String FILTER_ATTR_FROM_TO = "from_to";

View file

@ -9,7 +9,6 @@
package ch.ethz.seb.sebserver.gui.content; package ch.ethz.seb.sebserver.gui.content;
import java.util.Map; import java.util.Map;
import java.util.function.BooleanSupplier;
import java.util.function.Function; import java.util.function.Function;
import org.eclipse.swt.widgets.Composite; import org.eclipse.swt.widgets.Composite;
@ -27,7 +26,6 @@ import ch.ethz.seb.sebserver.gbl.model.exam.QuizData;
import ch.ethz.seb.sebserver.gbl.model.session.ClientConnection; import ch.ethz.seb.sebserver.gbl.model.session.ClientConnection;
import ch.ethz.seb.sebserver.gbl.model.session.ClientEvent; import ch.ethz.seb.sebserver.gbl.model.session.ClientEvent;
import ch.ethz.seb.sebserver.gbl.model.session.ExtendedClientEvent; import ch.ethz.seb.sebserver.gbl.model.session.ExtendedClientEvent;
import ch.ethz.seb.sebserver.gbl.model.user.UserRole;
import ch.ethz.seb.sebserver.gbl.profile.GuiProfile; import ch.ethz.seb.sebserver.gbl.profile.GuiProfile;
import ch.ethz.seb.sebserver.gbl.util.Utils; import ch.ethz.seb.sebserver.gbl.util.Utils;
import ch.ethz.seb.sebserver.gui.content.action.ActionDefinition; import ch.ethz.seb.sebserver.gui.content.action.ActionDefinition;
@ -45,7 +43,6 @@ import ch.ethz.seb.sebserver.gui.service.remote.webservice.api.RestService;
import ch.ethz.seb.sebserver.gui.service.remote.webservice.api.exam.GetExam; import ch.ethz.seb.sebserver.gui.service.remote.webservice.api.exam.GetExam;
import ch.ethz.seb.sebserver.gui.service.remote.webservice.api.logs.GetExtendedClientEventPage; import ch.ethz.seb.sebserver.gui.service.remote.webservice.api.logs.GetExtendedClientEventPage;
import ch.ethz.seb.sebserver.gui.service.remote.webservice.api.session.GetClientConnection; import ch.ethz.seb.sebserver.gui.service.remote.webservice.api.session.GetClientConnection;
import ch.ethz.seb.sebserver.gui.service.remote.webservice.auth.CurrentUser;
import ch.ethz.seb.sebserver.gui.table.ColumnDefinition; import ch.ethz.seb.sebserver.gui.table.ColumnDefinition;
import ch.ethz.seb.sebserver.gui.table.ColumnDefinition.TableFilterAttribute; import ch.ethz.seb.sebserver.gui.table.ColumnDefinition.TableFilterAttribute;
import ch.ethz.seb.sebserver.gui.table.EntityTable; import ch.ethz.seb.sebserver.gui.table.EntityTable;
@ -67,8 +64,6 @@ public class SebClientLogs implements TemplateComposer {
private static final LocTextKey EMPTY_TEXT_KEY = private static final LocTextKey EMPTY_TEXT_KEY =
new LocTextKey("sebserver.seblogs.list.empty"); new LocTextKey("sebserver.seblogs.list.empty");
private static final LocTextKey INSTITUTION_TEXT_KEY =
new LocTextKey("sebserver.seblogs.list.column.institution");
private static final LocTextKey EXAM_TEXT_KEY = private static final LocTextKey EXAM_TEXT_KEY =
new LocTextKey("sebserver.seblogs.list.column.exam"); new LocTextKey("sebserver.seblogs.list.column.exam");
private static final LocTextKey CLIENT_SESSION_TEXT_KEY = private static final LocTextKey CLIENT_SESSION_TEXT_KEY =
@ -160,7 +155,6 @@ public class SebClientLogs implements TemplateComposer {
@Override @Override
public void compose(final PageContext pageContext) { public void compose(final PageContext pageContext) {
final CurrentUser currentUser = this.resourceService.getCurrentUser();
final WidgetFactory widgetFactory = this.pageService.getWidgetFactory(); final WidgetFactory widgetFactory = this.pageService.getWidgetFactory();
final RestService restService = this.resourceService.getRestService(); final RestService restService = this.resourceService.getRestService();
// content page layout with title // content page layout with title
@ -173,35 +167,12 @@ public class SebClientLogs implements TemplateComposer {
.clearEntityKeys() .clearEntityKeys()
.clearAttributes()); .clearAttributes());
final BooleanSupplier isSebAdmin =
() -> currentUser.get().hasRole(UserRole.SEB_SERVER_ADMIN);
final Function<ExtendedClientEvent, String> institutionNameFunction =
this.resourceService.getInstitutionNameFunction()
.compose(log -> {
try {
final ClientConnection connection = restService.getBuilder(GetClientConnection.class)
.withURIVariable(API.PARAM_MODEL_ID, String.valueOf(log.getConnectionId()))
.call().getOrThrow();
return String.valueOf(connection.getInstitutionId());
} catch (final Exception e) {
return Constants.EMPTY_NOTE;
}
});
// table // table
final EntityTable<ExtendedClientEvent> table = this.pageService.entityTableBuilder( final EntityTable<ExtendedClientEvent> table = this.pageService.entityTableBuilder(
restService.getRestCall(GetExtendedClientEventPage.class)) restService.getRestCall(GetExtendedClientEventPage.class))
.withEmptyMessage(EMPTY_TEXT_KEY) .withEmptyMessage(EMPTY_TEXT_KEY)
.withPaging(this.pageSize) .withPaging(this.pageSize)
.withColumnIf(
isSebAdmin,
() -> new ColumnDefinition<>(
Domain.INSTITUTION.ATTR_NAME,
INSTITUTION_TEXT_KEY,
institutionNameFunction)
.widthProportion(2))
.withColumn(new ColumnDefinition<>( .withColumn(new ColumnDefinition<>(
Domain.CLIENT_CONNECTION.ATTR_EXAM_ID, Domain.CLIENT_CONNECTION.ATTR_EXAM_ID,
EXAM_TEXT_KEY, EXAM_TEXT_KEY,

View file

@ -19,6 +19,7 @@ import org.springframework.stereotype.Component;
import ch.ethz.seb.sebserver.gbl.Constants; import ch.ethz.seb.sebserver.gbl.Constants;
import ch.ethz.seb.sebserver.gbl.api.API; import ch.ethz.seb.sebserver.gbl.api.API;
import ch.ethz.seb.sebserver.gbl.model.Domain; import ch.ethz.seb.sebserver.gbl.model.Domain;
import ch.ethz.seb.sebserver.gbl.model.Entity;
import ch.ethz.seb.sebserver.gbl.model.user.UserActivityLog; import ch.ethz.seb.sebserver.gbl.model.user.UserActivityLog;
import ch.ethz.seb.sebserver.gbl.model.user.UserInfo; import ch.ethz.seb.sebserver.gbl.model.user.UserInfo;
import ch.ethz.seb.sebserver.gbl.model.user.UserRole; import ch.ethz.seb.sebserver.gbl.model.user.UserRole;
@ -73,7 +74,9 @@ public class UserActivityLogs implements TemplateComposer {
private final static LocTextKey EMPTY_SELECTION_TEXT = private final static LocTextKey EMPTY_SELECTION_TEXT =
new LocTextKey("sebserver.userlogs.info.pleaseSelect"); new LocTextKey("sebserver.userlogs.info.pleaseSelect");
private final TableFilterAttribute userFilter; private final TableFilterAttribute institutionFilter;
private final TableFilterAttribute userNameFilter =
new TableFilterAttribute(CriteriaType.TEXT, UserActivityLog.FILTER_ATTR_USER_NAME);
private final TableFilterAttribute activityFilter; private final TableFilterAttribute activityFilter;
private final TableFilterAttribute entityFilter; private final TableFilterAttribute entityFilter;
@ -93,10 +96,10 @@ public class UserActivityLogs implements TemplateComposer {
this.widgetFactory = pageService.getWidgetFactory(); this.widgetFactory = pageService.getWidgetFactory();
this.pageSize = pageSize; this.pageSize = pageSize;
this.userFilter = new TableFilterAttribute( this.institutionFilter = new TableFilterAttribute(
CriteriaType.SINGLE_SELECTION, CriteriaType.SINGLE_SELECTION,
UserActivityLog.FILTER_ATTR_USER, Entity.FILTER_ATTR_INSTITUTION,
this.resourceService::userResources); this.resourceService::institutionResource);
this.activityFilter = new TableFilterAttribute( this.activityFilter = new TableFilterAttribute(
CriteriaType.SINGLE_SELECTION, CriteriaType.SINGLE_SELECTION,
@ -151,13 +154,14 @@ public class UserActivityLogs implements TemplateComposer {
() -> new ColumnDefinition<>( () -> new ColumnDefinition<>(
UserActivityLog.FILTER_ATTR_INSTITUTION, UserActivityLog.FILTER_ATTR_INSTITUTION,
INSTITUTION_TEXT_KEY, INSTITUTION_TEXT_KEY,
institutionNameFunction)) institutionNameFunction)
.withFilter(this.institutionFilter))
.withColumn(new ColumnDefinition<>( .withColumn(new ColumnDefinition<>(
UserActivityLog.ATTR_USER_NAME, UserActivityLog.ATTR_USER_NAME,
USER_TEXT_KEY, USER_TEXT_KEY,
UserActivityLog::getUsername) UserActivityLog::getUsername)
.withFilter(this.userFilter)) .withFilter(this.userNameFilter))
.withColumn(new ColumnDefinition<UserActivityLog>( .withColumn(new ColumnDefinition<UserActivityLog>(
Domain.USER_ACTIVITY_LOG.ATTR_ACTIVITY_TYPE, Domain.USER_ACTIVITY_LOG.ATTR_ACTIVITY_TYPE,

View file

@ -77,7 +77,9 @@ public class ClientEventDAOImpl implements ClientEventDAO {
final FilterMap filterMap, final FilterMap filterMap,
final Predicate<ClientEvent> predicate) { final Predicate<ClientEvent> predicate) {
return Result.tryCatch(() -> this.clientEventRecordMapper return Result.tryCatch(() -> {
return this.clientEventRecordMapper
.selectByExample() .selectByExample()
.where( .where(
ClientEventRecordDynamicSqlSupport.connectionId, ClientEventRecordDynamicSqlSupport.connectionId,
@ -109,7 +111,8 @@ public class ClientEventDAOImpl implements ClientEventDAO {
.map(ClientEventDAOImpl::toDomainModel) .map(ClientEventDAOImpl::toDomainModel)
.flatMap(DAOLoggingSupport::logAndSkipOnError) .flatMap(DAOLoggingSupport::logAndSkipOnError)
.filter(predicate) .filter(predicate)
.collect(Collectors.toList())); .collect(Collectors.toList());
});
} }
@Override @Override

View file

@ -278,7 +278,7 @@ public class UserActivityLogDAOImpl implements UserActivityLogDAO {
return all( return all(
filterMap.getInstitutionId(), filterMap.getInstitutionId(),
filterMap.getString(UserActivityLog.FILTER_ATTR_USER), filterMap.getString(UserActivityLog.FILTER_ATTR_USER_NAME),
filterMap.getUserLogFrom(), filterMap.getUserLogFrom(),
filterMap.getUserLofTo(), filterMap.getUserLofTo(),
filterMap.getString(UserActivityLog.FILTER_ATTR_ACTIVITY_TYPES), filterMap.getString(UserActivityLog.FILTER_ATTR_ACTIVITY_TYPES),
@ -290,7 +290,7 @@ public class UserActivityLogDAOImpl implements UserActivityLogDAO {
@Transactional(readOnly = true) @Transactional(readOnly = true)
public Result<Collection<UserActivityLog>> all( public Result<Collection<UserActivityLog>> all(
final Long institutionId, final Long institutionId,
final String userId, final String userName,
final Long from, final Long from,
final Long to, final Long to,
final String activityTypes, final String activityTypes,
@ -305,23 +305,23 @@ public class UserActivityLogDAOImpl implements UserActivityLogDAO {
? Arrays.asList(StringUtils.split(entityTypes, Constants.LIST_SEPARATOR)) ? Arrays.asList(StringUtils.split(entityTypes, Constants.LIST_SEPARATOR))
: null; : null;
final Predicate<UserActivityLog> _predicate = (predicate != null) Predicate<UserActivityLog> _predicate = (predicate != null)
? predicate ? predicate
: model -> true; : model -> true;
return this.toDomainModel( if (StringUtils.isNotBlank(userName)) {
institutionId, _predicate = _predicate.and(model -> model.getUsername().contains(userName));
this.userLogRecordMapper.selectByExample() }
.join(UserRecordDynamicSqlSupport.userRecord)
final List<UserActivityLogRecord> records = this.userLogRecordMapper
.selectByExample()
.leftJoin(UserRecordDynamicSqlSupport.userRecord)
.on( .on(
UserRecordDynamicSqlSupport.uuid, UserRecordDynamicSqlSupport.uuid,
SqlBuilder.equalTo(UserActivityLogRecordDynamicSqlSupport.userUuid)) SqlBuilder.equalTo(UserActivityLogRecordDynamicSqlSupport.userUuid))
.where( .where(
UserRecordDynamicSqlSupport.institutionId, UserRecordDynamicSqlSupport.institutionId,
SqlBuilder.isEqualToWhenPresent(institutionId)) SqlBuilder.isEqualToWhenPresent(institutionId))
.and(
UserActivityLogRecordDynamicSqlSupport.userUuid,
SqlBuilder.isEqualToWhenPresent(userId))
.and( .and(
UserActivityLogRecordDynamicSqlSupport.timestamp, UserActivityLogRecordDynamicSqlSupport.timestamp,
SqlBuilder.isGreaterThanOrEqualToWhenPresent(from)) SqlBuilder.isGreaterThanOrEqualToWhenPresent(from))
@ -335,7 +335,9 @@ public class UserActivityLogDAOImpl implements UserActivityLogDAO {
UserActivityLogRecordDynamicSqlSupport.entityType, UserActivityLogRecordDynamicSqlSupport.entityType,
SqlBuilder.isInCaseInsensitiveWhenPresent(_entityTypes)) SqlBuilder.isInCaseInsensitiveWhenPresent(_entityTypes))
.build() .build()
.execute()) .execute();
return this.toDomainModel(institutionId, records)
.stream() .stream()
.filter(_predicate) .filter(_predicate)
.collect(Collectors.toList()); .collect(Collectors.toList());

View file

@ -14,8 +14,8 @@ import org.springframework.web.bind.annotation.RestController;
import ch.ethz.seb.sebserver.gbl.api.API; import ch.ethz.seb.sebserver.gbl.api.API;
import ch.ethz.seb.sebserver.gbl.api.EntityType; import ch.ethz.seb.sebserver.gbl.api.EntityType;
import ch.ethz.seb.sebserver.gbl.api.authorization.PrivilegeType;
import ch.ethz.seb.sebserver.gbl.model.user.UserActivityLog; import ch.ethz.seb.sebserver.gbl.model.user.UserActivityLog;
import ch.ethz.seb.sebserver.gbl.model.user.UserRole;
import ch.ethz.seb.sebserver.gbl.profile.WebServiceProfile; import ch.ethz.seb.sebserver.gbl.profile.WebServiceProfile;
import ch.ethz.seb.sebserver.gbl.util.Result; import ch.ethz.seb.sebserver.gbl.util.Result;
import ch.ethz.seb.sebserver.webservice.datalayer.batis.mapper.UserActivityLogRecordDynamicSqlSupport; import ch.ethz.seb.sebserver.webservice.datalayer.batis.mapper.UserActivityLogRecordDynamicSqlSupport;
@ -68,12 +68,11 @@ public class UserActivityLogController extends ReadonlyEntityController<UserActi
return UserActivityLogRecordDynamicSqlSupport.userActivityLogRecord; return UserActivityLogRecordDynamicSqlSupport.userActivityLogRecord;
} }
private void checkRead(final Long institution) { private void checkRead(final Long institutionId) {
this.authorization.checkRole( this.authorization.check(
institution, PrivilegeType.READ,
EntityType.USER_ACTIVITY_LOG, EntityType.USER_ACTIVITY_LOG,
UserRole.SEB_SERVER_ADMIN, institutionId);
UserRole.INSTITUTIONAL_ADMIN);
} }
} }

View file

@ -50,7 +50,7 @@ public class QuizDataTest extends AdministrationAPIIntegrationTester {
assertNotNull(lmsSetup2); assertNotNull(lmsSetup2);
assertFalse(lmsSetup2.isActive()); assertFalse(lmsSetup2.isActive());
// for the active LmsSetup we should get the quizzes page but only the quizzes from LmsSetup of seb-admin // for the active LmsSetup we should get the quizzes page
Page<QuizData> quizzes = new RestAPITestHelper() Page<QuizData> quizzes = new RestAPITestHelper()
.withAccessToken(getSebAdminAccess()) .withAccessToken(getSebAdminAccess())
.withPath(API.QUIZ_DISCOVERY_ENDPOINT) .withPath(API.QUIZ_DISCOVERY_ENDPOINT)
@ -81,16 +81,7 @@ public class QuizDataTest extends AdministrationAPIIntegrationTester {
.withExpectedStatus(HttpStatus.OK) .withExpectedStatus(HttpStatus.OK)
.getAsObject(new TypeReference<EntityProcessingReport>() { .getAsObject(new TypeReference<EntityProcessingReport>() {
}); });
new RestAPITestHelper()
.withAccessToken(getAdminInstitution2Access())
.withPath(API.LMS_SETUP_ENDPOINT)
.withPath(String.valueOf(lmsSetup2.id)).withPath("/active")
.withMethod(HttpMethod.POST)
.withExpectedStatus(HttpStatus.OK)
.getAsObject(new TypeReference<EntityProcessingReport>() {
});
// now we should not get any quizzes for the seb-admin
quizzes = new RestAPITestHelper() quizzes = new RestAPITestHelper()
.withAccessToken(getSebAdminAccess()) .withAccessToken(getSebAdminAccess())
.withPath(API.QUIZ_DISCOVERY_ENDPOINT) .withPath(API.QUIZ_DISCOVERY_ENDPOINT)
@ -101,6 +92,25 @@ public class QuizDataTest extends AdministrationAPIIntegrationTester {
assertNotNull(quizzes); assertNotNull(quizzes);
assertTrue(quizzes.content.size() == 0); assertTrue(quizzes.content.size() == 0);
new RestAPITestHelper()
.withAccessToken(getAdminInstitution2Access())
.withPath(API.LMS_SETUP_ENDPOINT)
.withPath(String.valueOf(lmsSetup2.id)).withPath("/active")
.withMethod(HttpMethod.POST)
.withExpectedStatus(HttpStatus.OK)
.getAsObject(new TypeReference<EntityProcessingReport>() {
});
quizzes = new RestAPITestHelper()
.withAccessToken(getSebAdminAccess())
.withPath(API.QUIZ_DISCOVERY_ENDPOINT)
.withExpectedStatus(HttpStatus.OK)
.getAsObject(new TypeReference<Page<QuizData>>() {
});
assertNotNull(quizzes);
assertTrue(quizzes.content.size() == 7);
// but for the now active lmsSetup2 we should get the quizzes // but for the now active lmsSetup2 we should get the quizzes
quizzes = new RestAPITestHelper() quizzes = new RestAPITestHelper()
.withAccessToken(getAdminInstitution2Access()) .withAccessToken(getAdminInstitution2Access())

View file

@ -483,7 +483,7 @@ public class UserAPITest extends AdministrationAPIIntegrationTester {
this.mockMvc this.mockMvc
.perform( .perform(
get(this.endpoint + API.USER_ACTIVITY_LOG_ENDPOINT get(this.endpoint + API.USER_ACTIVITY_LOG_ENDPOINT
+ "?user=user1&activity_types=CREATE") + "?username=admin&activity_types=CREATE")
.header("Authorization", "Bearer " + token) .header("Authorization", "Bearer " + token)
.header(HttpHeaders.CONTENT_TYPE, .header(HttpHeaders.CONTENT_TYPE,
MediaType.APPLICATION_FORM_URLENCODED_VALUE)) MediaType.APPLICATION_FORM_URLENCODED_VALUE))

View file

@ -50,7 +50,8 @@ public class UserActivityLogAPITest extends AdministrationAPIIntegrationTester {
// for a user in another institution, the institution has to be defined // for a user in another institution, the institution has to be defined
Page<UserActivityLog> logs = this.jsonMapper.readValue( Page<UserActivityLog> logs = this.jsonMapper.readValue(
this.mockMvc this.mockMvc
.perform(get(this.endpoint + API.USER_ACTIVITY_LOG_ENDPOINT + "?user=user4&institutionId=2") .perform(get(
this.endpoint + API.USER_ACTIVITY_LOG_ENDPOINT + "?username=examAdmin1&institutionId=2")
.header("Authorization", "Bearer " + token) .header("Authorization", "Bearer " + token)
.header(HttpHeaders.CONTENT_TYPE, MediaType.APPLICATION_FORM_URLENCODED_VALUE)) .header(HttpHeaders.CONTENT_TYPE, MediaType.APPLICATION_FORM_URLENCODED_VALUE))
.andExpect(status().isOk()) .andExpect(status().isOk())
@ -63,7 +64,7 @@ public class UserActivityLogAPITest extends AdministrationAPIIntegrationTester {
// for a user in the same institution no institution is needed // for a user in the same institution no institution is needed
logs = this.jsonMapper.readValue( logs = this.jsonMapper.readValue(
this.mockMvc.perform(get(this.endpoint + API.USER_ACTIVITY_LOG_ENDPOINT + "?user=user3") this.mockMvc.perform(get(this.endpoint + API.USER_ACTIVITY_LOG_ENDPOINT + "?username=inst2Admin")
.header("Authorization", "Bearer " + token) .header("Authorization", "Bearer " + token)
.header(HttpHeaders.CONTENT_TYPE, MediaType.APPLICATION_FORM_URLENCODED_VALUE)) .header(HttpHeaders.CONTENT_TYPE, MediaType.APPLICATION_FORM_URLENCODED_VALUE))
.andExpect(status().isOk()) .andExpect(status().isOk())
@ -291,10 +292,10 @@ public class UserActivityLogAPITest extends AdministrationAPIIntegrationTester {
.header(HttpHeaders.CONTENT_TYPE, MediaType.APPLICATION_FORM_URLENCODED_VALUE)) .header(HttpHeaders.CONTENT_TYPE, MediaType.APPLICATION_FORM_URLENCODED_VALUE))
.andExpect(status().isForbidden()); .andExpect(status().isForbidden());
// no privilege to query logs of users of other institution // no privilege to query logs of users of other institution for institutional admin
token = getAdminInstitution1Access(); token = getAdminInstitution1Access();
final Page<UserActivityLog> logs = this.jsonMapper.readValue( final Page<UserActivityLog> logs = this.jsonMapper.readValue(
this.mockMvc.perform(get(this.endpoint + API.USER_ACTIVITY_LOG_ENDPOINT + "?user=user4") this.mockMvc.perform(get(this.endpoint + API.USER_ACTIVITY_LOG_ENDPOINT + "?username=examAdmin1")
.header("Authorization", "Bearer " + token) .header("Authorization", "Bearer " + token)
.header(HttpHeaders.CONTENT_TYPE, MediaType.APPLICATION_FORM_URLENCODED_VALUE)) .header(HttpHeaders.CONTENT_TYPE, MediaType.APPLICATION_FORM_URLENCODED_VALUE))
.andExpect(status().isOk()) .andExpect(status().isOk())