Merge pull request #12 from fleetbase/dev-v0.0.13

Implemented permission based restrictions and controls

addon/components/extension-card.js

@@ -26,6 +26,7 @@ export default class ExtensionCardComponent extends Component {
     @service fetch;
     @service stripe;
     @service urlSearchParams;
+    @service abilities;
     @tracked extension;
 
     constructor(owner, { extension }) {
@@ -45,6 +46,11 @@ export default class ExtensionCardComponent extends Component {
         const isAlreadyPurchased = this.extension.is_purchased === true;
         const isAlreadyInstalled = this.extension.is_installed === true;
         const isPaymentRequired = !isAuthor && this.extension.payment_required === true && isAlreadyPurchased === false;
+        const userCannotPurchase = isPaymentRequired && this.abilities.cannot('registry-bridge purchase extension');
+        let acceptButtonText = isPaymentRequired ? `Purchase for ${formatCurrency(this.extension.price, this.extension.currency)}` : isAlreadyInstalled ? 'Installed' : 'Install';
+        if (this.abilities.cannot('registry-bridge install extension')) {
+            acceptButtonText = 'Unauthorized to Install';
+        }
         const goBack = async (modal) => {
             await modal.done();
             later(
@@ -65,9 +71,9 @@ export default class ExtensionCardComponent extends Component {
             titleComponent: 'extension-modal-title',
             modalClass: 'flb--extension-modal modal-lg',
             modalHeaderClass: 'flb--extension-modal-header',
-            acceptButtonText: isPaymentRequired ? `Purchase for ${formatCurrency(this.extension.price, this.extension.currency)}` : isAlreadyInstalled ? 'Installed' : 'Install',
+            acceptButtonText,
             acceptButtonIcon: isPaymentRequired ? 'credit-card' : isAlreadyInstalled ? 'check' : 'download',
-            acceptButtonDisabled: isAlreadyInstalled,
+            acceptButtonDisabled: this.abilities.cannot('registry-bridge install extension') || isAlreadyInstalled || userCannotPurchase,
             acceptButtonScheme: isPaymentRequired ? 'success' : 'primary',
             declineButtonText: 'Done',
             process: null,

addon/components/modals/extension-details.hbs

@@ -27,11 +27,14 @@
                 </EmberWormhole>
             {{/if}}
         {{/if}}
-        <div>
-            <h3 class="dark:text-white font-semibold mb-1">{{t "registry-bridge.component.extension-details-modal.overview"}}</h3>
-            <div class="space-y-1">
+        <div class="space-y-3">
+            <div>
+                <h3 class="dark:text-white font-semibold mb-1">{{t "registry-bridge.component.extension-details-modal.description"}}</h3>
                 <p class="dark:text-gray-200 text-sm">{{this.extension.description}}</p>
-                <p class="dark:text-gray-200 text-sm">{{html-safe this.extension.promotional_text}}</p>
+            </div>
+            <div>
+                <h3 class="dark:text-white font-semibold mb-1">{{t "registry-bridge.component.extension-details-modal.overview"}}</h3>
+                <div class="extension-details-promo-content dark:text-gray-200 text-sm">{{html-safe this.extension.promotional_text}}</div>
             </div>
         </div>
         <div>

addon/controllers/installed.js

@@ -9,6 +9,7 @@ export default class InstalledController extends Controller {
     @service notifications;
     @service socket;
     @service hostRouter;
+    @service abilities;
 
     @action about(extension) {
         this.modalsManager.show('modals/extension-details', {
@@ -31,6 +32,7 @@ export default class InstalledController extends Controller {
             acceptButtonText: 'Uninstall',
             acceptButtonIcon: 'trash',
             acceptButtonScheme: 'danger',
+            acceptButtonDisabled: this.abilities.cannot('registry-bridge uninstall extension'),
             process: null,
             step: null,
             stepDescription: 'Awaiting uninstall to begin...',

addon/engine.js

@@ -19,7 +19,7 @@ export default class RegistryBridgeEngine extends Engine {
     };
     setupExtension = function (app, engine, universe) {
         // Register menu item in header
-        universe.registerHeaderMenuItem('Extensions', 'console.extensions', { icon: 'shapes', priority: 99 });
+        universe.registerHeaderMenuItem('Extensions', 'console.extensions', { icon: 'shapes', priority: 99, slug: 'registry-bridge' });
         // Register admin controls
         universe.registerAdminMenuPanel(
             'Extensions Registry',

addon/routes/application.js

@@ -3,6 +3,17 @@ import { inject as service } from '@ember/service';
 
 export default class ApplicationRoute extends Route {
     @service fetch;
+    @service notifications;
+    @service hostRouter;
+    @service abilities;
+    @service intl;
+
+    beforeModel() {
+        if (this.abilities.cannot('registry-bridge see extension')) {
+            this.notifications.warning(this.intl.t('common.unauthorized-access'));
+            return this.hostRouter.transitionTo('console');
+        }
+    }
 
     async setupController(controller) {
         super.setupController(...arguments);

addon/routes/developers/analytics.js

@@ -3,6 +3,17 @@ import { inject as service } from '@ember/service';
 
 export default class DevelopersAnalyticsRoute extends Route {
     @service store;
+    @service notifications;
+    @service hostRouter;
+    @service abilities;
+    @service intl;
+
+    beforeModel() {
+        if (this.abilities.cannot('registry-bridge list extension-analytic')) {
+            this.notifications.warning(this.intl.t('common.unauthorized-access'));
+            return this.hostRouter.transitionTo('console');
+        }
+    }
 
     model() {
         return this.store.query('registry-extension', { is_author: 1 });

addon/routes/developers/credentials.js

@@ -3,6 +3,17 @@ import { inject as service } from '@ember/service';
 
 export default class DevelopersCredentialsRoute extends Route {
     @service fetch;
+    @service notifications;
+    @service hostRouter;
+    @service abilities;
+    @service intl;
+
+    beforeModel() {
+        if (this.abilities.cannot('registry-bridge list registry-token')) {
+            this.notifications.warning(this.intl.t('common.unauthorized-access'));
+            return this.hostRouter.transitionTo('console');
+        }
+    }
 
     model() {
         return this.fetch.get('auth/registry-tokens', {}, { namespace: '~registry/v1' });

addon/routes/developers/extensions.js

@@ -1,3 +1,16 @@
 import Route from '@ember/routing/route';
+import { inject as service } from '@ember/service';
 
-export default class DevelopersExtensionsRoute extends Route {}
+export default class DevelopersExtensionsRoute extends Route {
+    @service notifications;
+    @service hostRouter;
+    @service abilities;
+    @service intl;
+
+    beforeModel() {
+        if (this.abilities.cannot('registry-bridge list extension-bundle')) {
+            this.notifications.warning(this.intl.t('common.unauthorized-access'));
+            return this.hostRouter.transitionTo('console');
+        }
+    }
+}

addon/routes/developers/extensions/edit.js

@@ -3,6 +3,17 @@ import { inject as service } from '@ember/service';
 
 export default class DevelopersExtensionsEditRoute extends Route {
     @service store;
+    @service notifications;
+    @service hostRouter;
+    @service abilities;
+    @service intl;
+
+    beforeModel() {
+        if (this.abilities.cannot('registry-bridge update extension-bundle')) {
+            this.notifications.warning(this.intl.t('common.unauthorized-access'));
+            return this.hostRouter.transitionTo('console');
+        }
+    }
 
     model(params) {
         return this.store.queryRecord('registry-extension', { public_id: params.public_id, single: true });

addon/routes/developers/extensions/index.js

@@ -3,6 +3,17 @@ import { inject as service } from '@ember/service';
 
 export default class DevelopersExtensionsIndexRoute extends Route {
     @service store;
+    @service notifications;
+    @service hostRouter;
+    @service abilities;
+    @service intl;
+
+    beforeModel() {
+        if (this.abilities.cannot('registry-bridge list extension-bundle')) {
+            this.notifications.warning(this.intl.t('common.unauthorized-access'));
+            return this.hostRouter.transitionTo('console');
+        }
+    }
 
     model() {
         return this.store.query('registry-extension', { is_author: 1 });

addon/routes/developers/extensions/new.js

@@ -1,3 +1,16 @@
 import Route from '@ember/routing/route';
+import { inject as service } from '@ember/service';
 
-export default class DevelopersExtensionsNewRoute extends Route {}
+export default class DevelopersExtensionsNewRoute extends Route {
+    @service notifications;
+    @service hostRouter;
+    @service abilities;
+    @service intl;
+
+    beforeModel() {
+        if (this.abilities.cannot('registry-bridge create extension-bundle')) {
+            this.notifications.warning(this.intl.t('common.unauthorized-access'));
+            return this.hostRouter.transitionTo('console');
+        }
+    }
+}

addon/routes/developers/payments.js

@@ -1,3 +1,16 @@
 import Route from '@ember/routing/route';
+import { inject as service } from '@ember/service';
 
-export default class DevelopersPaymentsRoute extends Route {}
+export default class DevelopersPaymentsRoute extends Route {
+    @service notifications;
+    @service hostRouter;
+    @service abilities;
+    @service intl;
+
+    beforeModel() {
+        if (this.abilities.cannot('registry-bridge list extension-payment')) {
+            this.notifications.warning(this.intl.t('common.unauthorized-access'));
+            return this.hostRouter.transitionTo('console');
+        }
+    }
+}

addon/routes/developers/payments/index.js

@@ -3,6 +3,10 @@ import { inject as service } from '@ember/service';
 
 export default class DevelopersPaymentsIndexRoute extends Route {
     @service fetch;
+    @service notifications;
+    @service hostRouter;
+    @service abilities;
+    @service intl;
 
     queryParams = {
         page: { refreshModel: true },
@@ -11,6 +15,13 @@ export default class DevelopersPaymentsIndexRoute extends Route {
         query: { refreshModel: true },
     };
 
+    beforeModel() {
+        if (this.abilities.cannot('registry-bridge list extension-payment')) {
+            this.notifications.warning(this.intl.t('common.unauthorized-access'));
+            return this.hostRouter.transitionTo('console');
+        }
+    }
+
     model() {
         return this.fetch.get('payments/author-received', {}, { namespace: '~registry/v1' });
     }

addon/routes/developers/payments/onboard.js

@@ -3,10 +3,17 @@ import { inject as service } from '@ember/service';
 
 export default class DevelopersPaymentsOnboardRoute extends Route {
     @service fetch;
-    @service hostRouter;
     @service notifications;
+    @service hostRouter;
+    @service abilities;
+    @service intl;
 
     async beforeModel() {
+        if (this.abilities.cannot('registry-bridge onboard extension-payment')) {
+            this.notifications.warning(this.intl.t('common.unauthorized-access'));
+            return this.hostRouter.transitionTo('console');
+        }
+
         try {
             const { hasStripeConnectAccount } = await this.fetch.get('payments/has-stripe-connect-account', {}, { namespace: '~registry/v1' });
             if (hasStripeConnectAccount) {

addon/routes/explore/category.js

@@ -3,13 +3,24 @@ import { inject as service } from '@ember/service';
 
 export default class ExploreCategoryRoute extends Route {
     @service store;
+    @service notifications;
+    @service hostRouter;
+    @service abilities;
+    @service intl;
 
     queryParams = {
         query: {
             refreshModel: false,
         },
     };
 
+    beforeModel() {
+        if (this.abilities.cannot('registry-bridge list extension')) {
+            this.notifications.warning(this.intl.t('common.unauthorized-access'));
+            return this.hostRouter.transitionTo('console');
+        }
+    }
+
     model({ slug }) {
         return this.store.queryRecord('category', { slug, for: 'extension_category', core_category: 1, single: 1 });
     }

addon/routes/explore/index.js

@@ -3,13 +3,24 @@ import { inject as service } from '@ember/service';
 
 export default class ExploreIndexRoute extends Route {
     @service store;
+    @service notifications;
+    @service hostRouter;
+    @service abilities;
+    @service intl;
 
     queryParams = {
         query: {
             refreshModel: true,
         },
     };
 
+    beforeModel() {
+        if (this.abilities.cannot('registry-bridge list extension')) {
+            this.notifications.warning(this.intl.t('common.unauthorized-access'));
+            return this.hostRouter.transitionTo('console');
+        }
+    }
+
     model(params) {
         const { query } = params;
         return this.store.query('registry-extension', { explore: 1, query });

addon/routes/installed.js

@@ -3,6 +3,17 @@ import { inject as service } from '@ember/service';
 
 export default class InstalledRoute extends Route {
     @service fetch;
+    @service notifications;
+    @service hostRouter;
+    @service abilities;
+    @service intl;
+
+    beforeModel() {
+        if (this.abilities.cannot('registry-bridge list extension-install')) {
+            this.notifications.warning(this.intl.t('common.unauthorized-access'));
+            return this.hostRouter.transitionTo('console');
+        }
+    }
 
     model(params = {}) {
         return this.fetch.get('registry-extensions/installed', params, { namespace: '~registry/v1', normalizeToEmberData: true, modelType: 'registry-extension' });

addon/routes/purchased.js

@@ -3,6 +3,17 @@ import { inject as service } from '@ember/service';
 
 export default class PurchasedRoute extends Route {
     @service fetch;
+    @service notifications;
+    @service hostRouter;
+    @service abilities;
+    @service intl;
+
+    beforeModel() {
+        if (this.abilities.cannot('registry-bridge list extension-purchase')) {
+            this.notifications.warning(this.intl.t('common.unauthorized-access'));
+            return this.hostRouter.transitionTo('console');
+        }
+    }
 
     model(params = {}) {
         return this.fetch.get('registry-extensions/purchased', params, { namespace: '~registry/v1', normalizeToEmberData: true, modelType: 'registry-extension' });