PAMv3 implementation

[kleewho]

feat: Method grant_token has been added

grant_token allows generation of signed token with permissions for channels, channel groups and uuids

[kleewho]

@parfeon few questions:

• Can we drop ruby 2.4.10? It's not maintained anymore since April 2020.
• Event class treats channels and channel_groups specially but it's not how they should be handled in GrantToken. How do you think I should resolve that? Currently I'm just changing the name of the fields for internal usage in GrantToken and assign empty arrays to the special fields.
• How to handle the cbor + jruby problem?

[parfeon]

PAMv3 looks good, but we need to be sure to keep compatibility with PAMv2

[parfeon]

@kleewho it will be great to add new instance variables into create_variables_from_options method variables words list.

[kleewho]

yeah, sure, I'll add it. Although I'm wondering what's the advantage? Could you elaborate?

[parfeon]

@kleewho it is basically "built-in" in event automated variable assignment from passed list of options:

variables.each { |variable| instance_variable_set('@' + variable, options[variable.to_sym]) unless variable.nil? }

You can see, that instance_variable_set maps variables to values in options.

[kleewho]

Yeaaaaaah. How it will work with my name change though? I had to change it because event expect something else from channels than we have in grant_token

[parfeon]

@kleewho I've totally forgot about formatter, which tries to pull out list of channels from array or string with comma-separated channel / groups names.

With this in mind it makes sense to clear those lists before super class will try to process them.
Other option can be use different names for arguments. Let user pass values under channel_perms - but not necessary.

[kleewho]

FYI Plugging in acceptance tests is not yet finished

[kleewho]

@parfeon I've run the acceptance tests against pubnub servers and against the mock. There's also better implementation of validation.

[budgetpreneur]

LGTM. I will let @parfeon approve the PR, if his comments were addressed.

[parfeon]

Mostly looks good.

Just two places maybe require some attention :)

[parfeon]

@kleewho it will be better to upload two files as part of single artifact to reduce amount of customisations, which will be required for each repository to process reports.
Dart fo example upload both reports as acceptance-test-reports.

Maybe we can make it easier by modification of Combine test results task:

      - name: Combine test results
         if: always()
         run: |
           mkdir ./reports
           sudo npm install -g junit-report-merger &&
           jrm ./reports/main.xml "./main/**/*.xml" &&
           jrm ./reports/beta.xml "./beta/**/*.xml"

and then create single task to upload both reports:

      - name: Upload acceptance tests reports
          uses: actions/upload-artifact@v2
          if: always()
          with:
            name: acceptance-test-reports
            path: ./reports/*.xml
            retention-days: 7

With retention-days we also limit for how long reports will be stored. As soon as analyser will pull them out, there will be no use from the. With this configuration artifacts will be invalidated in 7 days.

[kleewho]

Sure. Not a problem for me. I wasn't sure what's the expected way to do it

[parfeon]

@kleewho all these can be much smaller:

sum |= 1 if @read
sum |= 2 if @write
sum |= 4 if @manage
sum |= 8 if @delete
sum |= 16 if @create
sum |= 32 if @get
sum |= 64 if @update
sum |= 128 if @join

And pretty easy to read :)

[kleewho]

definitely better

[parfeon]

LGTM!

[kleewho]

@client-engineering-bot release

[parfeon]

LGTM!