Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Security review PR - Collection of all "team project" feature related changes #89

Closed
wants to merge 31 commits into from
Closed

Security review PR - Collection of all "team project" feature related changes #89

wants to merge 31 commits into from

Conversation

pieterlukasse
Copy link
Contributor

@pieterlukasse pieterlukasse commented Jan 30, 2024
edited by jira bot
Loading

Main Jira Ticket: VADC-618

New Features

  • Addition of "team project" access control to relevant cohort-middleware endpoints

@pieterlukasse
feat: add sec_ tables + view and test data
c90591b
@pieterlukasse
feat: added "team project" to /cohortdefinition-stats/by-source-id/ e…
d009aa7 
…ndpoint
@pieterlukasse
feat: integrate extra 'team project' validation for concept endpoints
8c3ee95
@pieterlukasse
fix: fix PrepareNewArboristRequest tests
fb06d28
@pieterlukasse
feat: move "team project" checks to TeamProjectAuthzI
317e132 
...and add both real and mock implementations. This makes this
part easier to test.
@pieterlukasse
feat: add tests for TeamProjectAuthz
522afa0
@pieterlukasse
fix: fix the usage of TeamProjectValidation
e76c6bc 
...and add respective tests
@pieterlukasse
fix: fix minor code issues
cc06ba8
@pieterlukasse
feat: simplify filtering on allowedCohortDefinitionIds
88c2289
@pieterlukasse
Merge pull request #81 from uc-cdis/feat/integrate_team_project_checks
6751594 
Feat: add "team project" filtering to /cohortdefinition-stats endpoint
@pieterlukasse
Merge branch 'feat/team_project_feature' into feat/integrate_arborist…
e783f33 
…_validation_for_team_project
@pieterlukasse
feat: improve variable name to reflect its real nature
faed7c2 
...which is cohort_definition_id...there is no such thing as "cohort id"
@pieterlukasse
Merge pull request #82 from uc-cdis/feat/integrate_arborist_validatio…
198efbf 
…n_for_team_project

Feat: integrate extra 'team project' validation for concept endpoints
@pieterlukasse
feat: adding "team project" check to cohortdata methods
8e04f96
@pieterlukasse
feat: remove unused endpoints
c38cfad 
Important: these can only be added back with proper changes to ensure
the correct "team project" filtering takes place
@pieterlukasse
fix: add query parameter by-team-project?team-project= to stats endpoint
8b40f1c 
...to support team projects that start with "/"
@pieterlukasse
fix: prefer method TeamProjectValidation
6852e94 
...over the other variation of this method (TeamProjectValidationForCohortIdsList)
@pieterlukasse
fix: fix tests after by-team-project?team-project= to stats endpoint …
f7b7fc7 
…change
@pieterlukasse
Merge pull request #83 from uc-cdis/feat/integrate_arborist_validatio…
30fb6b4 
…n_for_team_project_for_cohort_data_endpoints

Feat: integrate Arborist validation for team project for cohort data endpoints AND remove unused endpoints
@pieterlukasse
Revert "feat: remove unused endpoints"
1836c2b 
This reverts (part of) commit c38cfad.
@pieterlukasse
wip: add validation TODOs
9ac8935
@pieterlukasse
Merge pull request #86 from uc-cdis/feat/team_project_feature
ecb2237 
Feat: team project feature
@pieterlukasse
feat: add missing arborist checks
75e4b48
@pieterlukasse
fix: return StatusForbidden instead of StatusBadRequest
45b3110 
...for cases where authorization failed
@pieterlukasse
feat: add new test for RetriveById
d4f3520 
...to ensure 403 is returned when TeamProjectValidationForCohort returns false
@pieterlukasse
feat: add new test for RetriveStatsBySourceIdAndTeamProject
91a922d 
...to ensure 403 is returned when HasAccessToTeamProject returns false
@pieterlukasse
feat: extra tests to cover some blind spots in teamprojectauthz
9b451e7
@pieterlukasse
fix: better test name
aa75cb3
@pieterlukasse
Merge pull request #87 from uc-cdis/feat/add_missing_arborist_checks
5e1839b 
Feat/add missing arborist checks
@pieterlukasse pieterlukasse mentioned this pull request Jan 30, 2024
Closed
k-burt-uch
k-burt-uch reviewed Feb 6, 2024
View reviewed changes
models/cohortdefinition.go Show resolved Hide resolved
server/router.go Show resolved Hide resolved
@pieterlukasse
Copy link
Contributor Author

pieterlukasse commented Feb 7, 2024
edited
Loading

thanks for the approval @k-burt-uch . I'll move just the new commits to a separate PR to master. Closing this one and keeping it for the record.
See #90

@pieterlukasse pieterlukasse mentioned this pull request Feb 7, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@k-burt-uch k-burt-uch k-burt-uch approved these changes

Assignees
No one assigned
Labels
test-portal-homepageTest
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@pieterlukasse @k-burt-uch