Skip to content

Code Quality: Refactored code for security settings #11471

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 34 commits into from
Mar 5, 2023
Merged

Code Quality: Refactored code for security settings #11471

merged 34 commits into from
Mar 5, 2023

Conversation

0x5bfa
Copy link
Member

@0x5bfa 0x5bfa commented Feb 26, 2023
edited
Loading

Description

I'm working on refactoring security codes.

Motivation and Context

The storage object security codes were noticeably unmaintable; it was way too difficult to understand what the class represents from the class name.

Tasks

  • Force to be one class per file.
  • Rename all security related classes with more Win32API-like naming convention.
  • Rename variables and methods too.
  • Add xml comments to all classes to describe that what the class represents.
  • Integrate classes that don't need to be separated.

Changes

  • Rename Files.App.Filesystem.Permissions with Files.App.Filesystem.Security.
  • Rename the classes in Files.App.Filesystem.Security to improve ease of understanding what the class represents.
  • Refactor the classes in Files.App.Filesystem.Security.
  • Add xml comments in all classes in Files.App.Filesystem.Security.
  • Refactor Files.App.ViewModels.Properties.SecurityViewModel.
  • Refactor code-behinds of Files.App.Views.Properties.SecurityPage and Files.App.Views.Properties.SecurityAdvancedPage.

My changes validation

Preferable terms

Name Description Rationale Instead of
AccessControlList Represents a storage object's access control list ACL
Used in Win32API		 None
AccessControlEntry Represents an entry of access control list ACE
ACCESS_ALLOWED_ACE
ACCESS_DENIED_ACE
Used in Win32API		 None
AccessMask Represents access control flags(enum) of an ACE ACCESS_MASK
Used in Win32API		 None
Principal Represents an owner of ACL or ACE Used in File Explorer UI of security advanced page None
Allow[ed] Literally Used in Win32API Grant[ed|s]
Deny[ed] Literally Used in Win32API None

Unpreferable terms

Name Description Rationale Instead,
Grant[ed|s] Literally This term is not used in Win32API Allow[ed]
Permission[s] Literally This term is not used in Win32API Security or something else

Classes

Name Previous name Rationale
App.Filesystem.Permissions App.Filesystem.Security that was unpreferable term. Security is used in File Explorer UI
AccessControlEntry FileSystemAccessRule Used as ACE of Win32API for SecurityPage UI
Removed FileSystemAccessRuleForUI Used as ACE of Win32API for SecurityAdvancedPage UI
Removed FileSystemAccessRule No references
AccessControlEntryPrimitiveMapping FileSystemAccessRule2 Apparently
AccessControlList FilePermissions Used as ACL of Win32API
Removed FilePermissionsManager This class was the same as AccessControlList
AccessControlType AccessControlType None
AccessMaskFlags FileSystemRights FileSystemRights is not familiar for Win32API devs. Equivalent to ACCESS_MASK of Win32API.
AccessMaskItem GrantedPermission Represents details of one flag of AccessMaskFlags.
InheritanceFlags InheritanceFlags None
Principal UserGroup This class can be either User or Group(UserGroup isn't accurate). Principal is used in File Explorer UI
PrincipalType SecurityType Apparently
PropagationFlags PropagationFlags None

Validation

  • Built and ran the app
  • Tested the changes for accessibility

Test

  • Display ACL and all ACEs
  • Add an ACE
  • Remove an ACE

Screenshots

image

yaira2
yaira2 reviewed Feb 26, 2023
View reviewed changes
yaira2
yaira2 reviewed Feb 26, 2023
View reviewed changes
yaira2
yaira2 reviewed Feb 26, 2023
View reviewed changes
ferrariofilippo
ferrariofilippo suggested changes Feb 27, 2023
View reviewed changes
Copy link
Contributor

@ferrariofilippo ferrariofilippo left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I left some comments regarding code style. If I have any time, I'll try to make a second code-review and test this out

@0x5bfa
Copy link
Member Author

0x5bfa commented Feb 27, 2023

region-endregion will be removed when I finish. so please ignore them:)

@ferrariofilippo
Copy link
Contributor

region-endregion will be removed when I finish. so please ignore them:)

I think half the comments are about regions, I'll close them

@0x5bfa
Copy link
Member Author

0x5bfa commented Feb 27, 2023

So sorry about that 😢

@ferrariofilippo
Copy link
Contributor

So sorry about that 😢

Don't worry

@0x5bfa
Copy link
Member Author

0x5bfa commented Feb 27, 2023

/azp run

@azure-pipelines
Copy link

Commenter does not have sufficient privileges for PR 11471 in repo files-community/Files

@0x5bfa 0x5bfa requested review from yaira2 and removed request for ferrariofilippo March 1, 2023 03:47
@yaira2 yaira2 changed the title Code Quality: Refactor security codes Code Quality: Refactored code for security settings Mar 1, 2023
yaira2
yaira2 reviewed Mar 1, 2023
View reviewed changes
@yaira2 yaira2 requested review from ferrariofilippo and QuaintMako and removed request for ferrariofilippo March 1, 2023 15:16
@yaira2
Copy link
Member

yaira2 commented Mar 1, 2023

I found some issues

  • Even though you change ACE's type, Files won't change (there's no functionality)
  • Even though you change access mask flags, Files won't change (there's no functionality)
  • Even though you change inheritance flags, Files won't change (there's no functionality)

Those issues were not created by my refactoring; it means originally existed. So I think I should not fix(I will probably open a PR for those).

Can you open separate issues to track these?

@0x5bfa
Copy link
Member Author

0x5bfa commented Mar 2, 2023

Each of the three?

@yaira2
Copy link
Member

yaira2 commented Mar 2, 2023

Yes

This was referenced Mar 4, 2023
Open
Open
Open
QuaintMako
QuaintMako reviewed Mar 4, 2023
View reviewed changes
QuaintMako
QuaintMako reviewed Mar 5, 2023
View reviewed changes
Copy link
Contributor

@QuaintMako QuaintMako left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I won't give my approval for the PR because I am not versed enough in the security to be sure at 100%, but alongside the two other reviews, I believe it's good!

Thanks for the huge refactoring and cleaning @onein528 ! (And for the others you've done as well)

@yaira2 yaira2 added ready to merge Pull requests that are approved and ready to merge and removed needs - code review labels Mar 5, 2023
@yaira2 yaira2 merged commit 26794cb into files-community:main Mar 5, 2023
@0x5bfa 0x5bfa deleted the 5bfa/update-securityclasses branch March 5, 2023 16:32
@0x5bfa 0x5bfa mentioned this pull request May 3, 2023
Merged
8 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@yaira2 yaira2 yaira2 left review comments

@ferrariofilippo ferrariofilippo ferrariofilippo requested changes

@QuaintMako QuaintMako QuaintMako approved these changes

Assignees
No one assigned
Labels
ready to merge Pull requests that are approved and ready to merge
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@0x5bfa @ferrariofilippo @yaira2 @QuaintMako