scinote-web/app/models/concerns/assignable.rb

# frozen_string_literal: true

module Assignable
  extend ActiveSupport::Concern

  included do
    include Canaid::Helpers::PermissionsHelper

    attr_accessor :skip_user_assignments

    has_many :user_assignments, as: :assignable, dependent: :destroy
    has_many :automatic_user_assignments, -> { automatically_assigned },
             as: :assignable,
             class_name: 'UserAssignment',
             inverse_of: :assignable

    scope :readable_by_user, lambda { |user|
      joins(user_assignments: :user_role)
        .where(user_assignments: { user: user })
        .where('? = ANY(user_roles.permissions)', "::#{self.class.to_s.split('::').first}Permissions".constantize::READ)
    }

    scope :managable_by_user, lambda { |user|
      joins(user_assignments: :user_role)
        .where(user_assignments: { user: user })
        .where('? = ANY(user_roles.permissions)', "::#{self.class.to_s.split('::').first}Permissions".constantize::MANAGE)
    }

    scope :with_user_permission, lambda { |user, permission|
      joins(user_assignments: :user_role)
        .where(user_assignments: { user: user })
        .where('? = ANY(user_roles.permissions)', permission)
    }

    after_create :create_users_assignments

    def role_for_user(user)
      user_assignments.find_by(user: user)&.user_role
    end

    def manually_assigned_users
      User.joins(:user_assignments).where(user_assignments: { assigned: :manually, assignable: self })
    end

    def assigned_users
      User.joins(:user_assignments).where(user_assignments: { assignable: self })
    end

    def top_level_assignable?
      self.class.name.in?(Extends::TOP_LEVEL_ASSIGNABLES)
    end

    private

    def after_user_assignment_changed(user_assignment = nil)
      # Optional, redefine in the assignable model.
      # Will be called when an assignment is changed (save/destroy) for the assignable model.
    end

    def create_users_assignments
      return if skip_user_assignments

      role = if top_level_assignable?
               UserRole.find_predefined_owner_role
             else
               permission_parent.user_assignments.find_by(user: created_by).user_role
             end

      UserAssignment.create!(
        user: created_by,
        assignable: self,
        assigned: top_level_assignable? ? :manually : :automatically,
        user_role: role
      )

      UserAssignments::GenerateUserAssignmentsJob.perform_later(self, created_by)
    end
  end
end
create user_assignments for all child objects when the user is attached to the project 2021-06-06 15:54:47 +08:00			`# frozen_string_literal: true`

			`module Assignable`
			`extend ActiveSupport::Concern`

			`included do`
Rework experiment permissions [SCI-6054] (#3538) * Rework experiment permissions [SCI-6054] 2021-09-30 17:32:11 +08:00			`include Canaid::Helpers::PermissionsHelper`

Skip create assignments during team import [SCI-6280] (#3679) Co-authored-by: Anton <anton@scinote.net> 2021-11-22 18:17:39 +08:00			`attr_accessor :skip_user_assignments`

create user_assignments for all child objects when the user is attached to the project 2021-06-06 15:54:47 +08:00			`has_many :user_assignments, as: :assignable, dependent: :destroy`
Add logic for user role updates for team child objects [SCI-7292] 2022-10-10 21:27:42 +08:00			`has_many :automatic_user_assignments, -> { automatically_assigned },`
			`as: :assignable,`
			`class_name: 'UserAssignment',`
			`inverse_of: :assignable`
create user_assignments for all child objects when the user is attached to the project 2021-06-06 15:54:47 +08:00
Rework experiment permissions [SCI-6054] (#3538) * Rework experiment permissions [SCI-6054] 2021-09-30 17:32:11 +08:00			`scope :readable_by_user, lambda { \|user\|`
			`joins(user_assignments: :user_role)`
			`.where(user_assignments: { user: user })`
			`.where('? = ANY(user_roles.permissions)', "::#{self.class.to_s.split('::').first}Permissions".constantize::READ)`
			`}`

Fix project search in quick start controller [SCI-5915] 2021-10-01 18:20:24 +08:00			`scope :managable_by_user, lambda { \|user\|`
			`joins(user_assignments: :user_role)`
			`.where(user_assignments: { user: user })`
			`.where('? = ANY(user_roles.permissions)', "::#{self.class.to_s.split('::').first}Permissions".constantize::MANAGE)`
			`}`

Update experiment move service [SCI-6149] (#3599) * Update experiment move service [SCI-6149] * Move permission check to helper [SCI-6149] Co-authored-by: Anton <anton@scinote.net> 2021-10-27 19:48:52 +08:00			`scope :with_user_permission, lambda { \|user, permission\|`
			`joins(user_assignments: :user_role)`
			`.where(user_assignments: { user: user })`
			`.where('? = ANY(user_roles.permissions)', permission)`
			`}`

Skip create assignments during team import [SCI-6280] (#3679) Co-authored-by: Anton <anton@scinote.net> 2021-11-22 18:17:39 +08:00			`after_create :create_users_assignments`

			`def role_for_user(user)`
			`user_assignments.find_by(user: user)&.user_role`
			`end`

Implement public user grouping, deletion and updates to manually assigned [SCI-6228] (#3701) * Implement public user grouping, deletion and updates to manually assigned [SCI-6228] * PR fixes [SCI-6228] * Permission check improvement [SCI-6228] 2021-12-01 23:23:24 +08:00			`def manually_assigned_users`
			`User.joins(:user_assignments).where(user_assignments: { assigned: :manually, assignable: self })`
			`end`

Add new access user modal [SCI-7518] 2023-01-03 21:43:03 +08:00			`def assigned_users`
			`User.joins(:user_assignments).where(user_assignments: { assignable: self })`
			`end`

Fix assignable for top level assignables [SCI-7978] 2023-02-22 22:37:39 +08:00			`def top_level_assignable?`
			`self.class.name.in?(Extends::TOP_LEVEL_ASSIGNABLES)`
			`end`

Fix assignment sync to new protocol drafts and deletion [SCI-8060] 2023-03-06 23:06:38 +08:00			`private`

			`def after_user_assignment_changed(user_assignment = nil)`
Ensure user assignments stay in sync with protocol versions [SCI-8060] 2023-03-03 20:20:15 +08:00			`# Optional, redefine in the assignable model.`
Fix assignment sync to new protocol drafts and deletion [SCI-8060] 2023-03-06 23:06:38 +08:00			`# Will be called when an assignment is changed (save/destroy) for the assignable model.`
Ensure user assignments stay in sync with protocol versions [SCI-8060] 2023-03-03 20:20:15 +08:00			`end`

Skip create assignments during team import [SCI-6280] (#3679) Co-authored-by: Anton <anton@scinote.net> 2021-11-22 18:17:39 +08:00			`def create_users_assignments`
			`return if skip_user_assignments`
Setup user assignments relations for team, inventory and protocol [SCI-6818] 2022-05-13 21:45:24 +08:00
Fix assignable for top level assignables [SCI-7978] 2023-02-22 22:37:39 +08:00			`role = if top_level_assignable?`
Fix protocol import in templates [SCI-7325] 2022-10-12 20:27:21 +08:00			`UserRole.find_predefined_owner_role`
Change role assigning role on object creation [SCI-6247] (#3645) Co-authored-by: Anton <anton@scinote.net> 2021-11-09 23:10:43 +08:00			`else`
			`permission_parent.user_assignments.find_by(user: created_by).user_role`
			`end`

Rework experiment permissions [SCI-6054] (#3538) * Rework experiment permissions [SCI-6054] 2021-09-30 17:32:11 +08:00			`UserAssignment.create!(`
add new manage access permission to PET levels 2021-06-19 23:17:57 +08:00			`user: created_by,`
			`assignable: self,`
Fix assignable for top level assignables [SCI-7978] 2023-02-22 22:37:39 +08:00			`assigned: top_level_assignable? ? :manually : :automatically,`
Change role assigning role on object creation [SCI-6247] (#3645) Co-authored-by: Anton <anton@scinote.net> 2021-11-09 23:10:43 +08:00			`user_role: role`
add new manage access permission to PET levels 2021-06-19 23:17:57 +08:00			`)`
Fix project users assignment to newly created experiments [SCI-7336] 2022-10-14 16:23:57 +08:00
			`UserAssignments::GenerateUserAssignmentsJob.perform_later(self, created_by)`
create user_assignments for all child objects when the user is attached to the project 2021-06-06 15:54:47 +08:00			`end`
			`end`
			`end`