Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat(dashboards): security perm simplification #12012

Merged
merged 11 commits into from
Dec 17, 2020
Merged

feat(dashboards): security perm simplification #12012

merged 11 commits into from
Dec 17, 2020

Conversation

dpgaspar
Copy link
Member

@dpgaspar dpgaspar commented Dec 11, 2020
edited
Loading

SUMMARY

security permission simplification. Scope Dashboards for API and MVC FAB classes.

Existing permissions:

Permission View
can_add DashboardModelView
can_delete DashboardModelView
can_download_dashboards DashboardModelView
can_edit DashboardModelView
can_favorite_status DashboardModelView
can_list DashboardModelView
can_mulexport DashboardModelView
can_show DashboardModelView
muldelete DashboardModelView
mulexport DashboardModelView
muldelete DashboardModelViewAsync
can_list DashboardModelViewAsync
muldelete DashboardModelViewAsync
mulexport DashboardModelViewAsync
can_new Dashboard

Future permissions:

Permission View
can_read Dashboard
can_write Dashboard

ADDITIONAL INFORMATION

  • Has associated issue:
  • Changes UI
  • Requires DB Migration.
  • Confirm DB Migration upgrade and downgrade tested.
  • Introduces new feature or API
  • Removes existing feature or API

@codecov-io
Copy link

codecov-io commented Dec 11, 2020
edited
Loading

Codecov Report

Merging #12012 (b7ccea4) into master (48fb8c0) will decrease coverage by 3.89%.
The diff coverage is 35.41%.

Impacted file tree graph

@@            Coverage Diff             @@
##           master   #12012      +/-   ##
==========================================
- Coverage   67.56%   63.66%   -3.90%     
==========================================
  Files         959      960       +1     
  Lines       47161    47185      +24     
  Branches     4613     4613              
==========================================
- Hits        31864    30041    -1823     
- Misses      15185    16960    +1775     
- Partials      112      184      +72
Flag Coverage Δ
cypress ?
javascript 62.69% <100.00%> (+0.02%) ⬆️
python 64.25% <24.39%> (-0.06%) ⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

Impacted Files Coverage Δ
superset/constants.py 100.00% <ø> (ø)
...sions/1f6dca87d1a2_security_converge_dashboards.py 0.00% <0.00%> (ø)
superset/views/core.py 75.45% <0.00%> (ø)
...rontend/src/views/CRUD/dashboard/DashboardCard.tsx 75.67% <100.00%> (-13.52%) ⬇️
...rontend/src/views/CRUD/dashboard/DashboardList.tsx 74.31% <100.00%> (-1.84%) ⬇️
superset/dashboards/api.py 86.58% <100.00%> (+0.05%) ⬆️
superset/views/dashboard/views.py 72.97% <100.00%> (+2.38%) ⬆️
superset-frontend/src/SqlLab/App.jsx 0.00% <0.00%> (-100.00%) ⬇️
superset-frontend/src/explore/App.jsx 0.00% <0.00%> (-100.00%) ⬇️
superset-frontend/src/dashboard/App.jsx 0.00% <0.00%> (-100.00%) ⬇️
... and 178 more

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 48fb8c0...b7ccea4. Read the comment docs.

@dpgaspar dpgaspar marked this pull request as ready for review December 14, 2020 10:38
@dpgaspar dpgaspar added the risk:db-migration PRs that require a DB migration label Dec 14, 2020
@dpgaspar dpgaspar merged commit dd5cdb1 into apache:master Dec 17, 2020
@dpgaspar dpgaspar deleted the feat/security-converge-dashboards branch December 17, 2020 09:53
amitmiran137 pushed a commit to simcha90/incubator-superset that referenced this pull request Dec 18, 2020
Merge remote-tracking branch 'upstream/master' into multi-queries
a61c985 
* upstream/master: (55 commits)
  feat(explore): time picker enhancement (apache#11418)
  feat: update alert/report icons and column order (apache#12081)
  feat(explore): metrics and filters controls redesign (apache#12095)
  feat(alerts/reports): add refresh action (apache#12071)
  chore: add latest tag action (apache#11148)
  fix(reports): increase crontab size and alert fixes (apache#12056)
  Small typo fix in Athena connection docs (apache#12099)
  feat(queries): security perm simplification (apache#12072)
  feat(databases): security perm simplification (apache#12036)
  feat(dashboards): security permissions simplification (apache#12012)
  feat(logs): security permissions simplification (apache#12061)
  chore: Remove unused CodeModal (apache#11972)
  Fix typescript error (apache#12074)
  fix: handle context-dependent feature flags in CLI (apache#12088)
  fix: Fix "View in SQLLab" bug (apache#12086)
  feat(alert/report): add 'not null' condition option to modal (apache#12077)
  bumping superset ui to 15.18 and deckgl to 0.3.2 (apache#12078)
  fix: Python dependencies in apache#11499 (apache#12079)
  reset active tab on open (apache#12048)
  fix: improve import flow UI/UX (apache#12070)
  ...
@mistercrunch mistercrunch added 🏷️ bot A label used by `supersetbot` to keep track of which PR where auto-tagged with release labels 🚢 1.0.0 labels Mar 12, 2024
@mistercrunch mistercrunch mentioned this pull request May 7, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@willbarrett willbarrett willbarrett approved these changes

Assignees
No one assigned
Labels
🏷️ bot A label used by `supersetbot` to keep track of which PR where auto-tagged with release labels risk:db-migration PRs that require a DB migration size/L 🚢 1.0.0
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@dpgaspar @codecov-io @willbarrett @mistercrunch