Add permission for protocol draft management [SCI-7718]

app/controllers/protocols_controller.rb

@@ -1038,13 +1038,13 @@ class ProtocolsController < ApplicationController
   end
 
   def permissions
-    #if stale?(@protocol)
+    if stale?(@protocol)
       render json: {
         copyable: can_clone_protocol_in_repository?(@protocol),
         archivable: can_manage_protocol_in_repository?(@protocol),
         restorable: can_restore_protocol_in_repository?(@protocol)
       }
-    #end
+    end
   end
 
   private

app/permissions/team.rb

@@ -90,6 +90,10 @@ Canaid::Permissions.register_for(Protocol) do
     protocol.permission_granted?(user, ProtocolPermissions::MANAGE)
   end
 
+  can :manage_protocol_draft_in_repository do |user, protocol|
+    protocol.permission_granted?(user, ProtocolPermissions::MANAGE_DRAFT)
+  end
+
   can :manage_protocol_users do |user, protocol|
     protocol.permission_granted?(user, ProtocolPermissions::USERS_MANAGE) ||
       protocol.team.permission_granted?(user, TeamPermissions::MANAGE)
@@ -104,6 +108,10 @@ Canaid::Permissions.register_for(Protocol) do
   can :clone_protocol_in_repository do |user, protocol|
     can_read_protocol_in_repository?(user, protocol) && can_create_protocols_in_repository?(user, protocol.team)
   end
+
+  can :publish_protocol_in_repository do |user, protocol|
+    protocol.permission_granted?(user, ProtocolPermissions::MANAGE)
+  end
 end
 
 Canaid::Permissions.register_for(Report) do

config/initializers/extends/permission_extends.rb

@@ -20,6 +20,7 @@ module PermissionExtends
       READ
       MANAGE
       USERS_MANAGE
+      MANAGE_DRAFT
     ).each { |permission| const_set(permission, "protocol_#{permission.underscore}") }
   end
 

db/migrate/20230120141017_add_protocol_versioning_permissions.rb

@@ -0,0 +1,33 @@
+# frozen_string_literal: true
+
+class AddProtocolVersioningPermissions < ActiveRecord::Migration[6.1]
+  OWNER_PERMISSIONS = [
+    ProtocolPermissions::MANAGE_DRAFT
+  ].freeze
+
+  NORMAL_USER_PERMISSIONS = [
+    ProtocolPermissions::MANAGE_DRAFT
+  ].freeze
+
+  def change
+    reversible do |dir|
+      dir.up do
+        @owner_role = UserRole.find_predefined_owner_role
+        @normal_user_role = UserRole.find_predefined_normal_user_role
+        @owner_role.permissions = @owner_role.permissions | OWNER_PERMISSIONS
+        @normal_user_role.permissions = @normal_user_role.permissions | NORMAL_USER_PERMISSIONS
+        @owner_role.save(validate: false)
+        @normal_user_role.save(validate: false)
+      end
+
+      dir.down do
+        @owner_role = UserRole.find_predefined_owner_role
+        @normal_user_role = UserRole.find_predefined_normal_user_role
+        @owner_role.permissions = @owner_role.permissions - OWNER_PERMISSIONS
+        @normal_user_role.permissions = @normal_user_role.permissions - NORMAL_USER_PERMISSIONS
+        @owner_role.save(validate: false)
+        @normal_user_role.save(validate: false)
+      end
+    end
+  end
+end

db/structure.sql

@@ -8624,6 +8624,7 @@ INSERT INTO "schema_migrations" (version) VALUES
 ('20220818094636'),
 ('20220914124900'),
 ('20221007113010'),
-('20221125133611');
+('20221125133611'),
+('20230120141017');