mirror of
https://github.com/gristlabs/grist-core.git
synced 2024-10-27 20:44:07 +00:00
ab3cdb62ac
Summary: This makes two small tweaks based on a user's questions about sharing sites publicly for a self-managed installation: * The support user `support@getgrist.com` is made configurable with `GRIST_SUPPORT_EMAIL`. This came up because only the support user can share material with the special "everyone" user. This restriction was added to avoid spam. * Regardless of public sharing settings, for our SaaS we had decided not to list public sites to anonymous users. That is somewhat a question of taste, so a `GRIST_LIST_PUBLIC_SITES` flag is added to override this choice. Public sharing isn't in a well polished state, and this diff doesn't advance that, in fact it adds a new wrinkle :-/ Test Plan: existing tests pass; manual testing Reviewers: jarek Reviewed By: jarek Subscribers: jarek Differential Revision: https://phab.getgrist.com/D3663
94 lines
2.9 KiB
TypeScript
94 lines
2.9 KiB
TypeScript
import { isTeamPlan, Product } from 'app/common/Features';
|
|
import { normalizeEmail } from 'app/common/emails';
|
|
import { PermissionData, PermissionDelta } from 'app/common/UserAPI';
|
|
|
|
/**
|
|
* Mark that the share is share number #at of a maximum of #top. The #at values
|
|
* start at 1.
|
|
*/
|
|
export interface ShareLimitAnnotation {
|
|
at: number;
|
|
top?: number;
|
|
}
|
|
|
|
/**
|
|
* Some facts about a share.
|
|
*/
|
|
export interface ShareAnnotation {
|
|
isMember?: boolean; // Is the share for a team member.
|
|
isSupport?: boolean; // Is the share for a support user.
|
|
collaboratorLimit?: ShareLimitAnnotation; // Does the share count towards a collaborator limit.
|
|
}
|
|
|
|
/**
|
|
* Facts about all shares for a resource.
|
|
*/
|
|
export interface ShareAnnotations {
|
|
hasTeam?: boolean; // Is the resource in a team site?
|
|
users: Map<string, ShareAnnotation>; // Annotations keyed by normalized user email.
|
|
}
|
|
|
|
/**
|
|
* Helper for annotating users mentioned in a proposed change of shares, given the
|
|
* current shares in place.
|
|
*/
|
|
export class ShareAnnotator {
|
|
private _features = this._product?.features ?? {};
|
|
|
|
constructor(private _product: Product|null, private _state: PermissionData) {
|
|
}
|
|
|
|
public updateState(state: PermissionData) {
|
|
this._state = state;
|
|
}
|
|
|
|
public annotateChanges(change: PermissionDelta): ShareAnnotations {
|
|
const features = this._features;
|
|
const annotations: ShareAnnotations = {
|
|
hasTeam: !this._product || isTeamPlan(this._product.name),
|
|
users: new Map(),
|
|
};
|
|
if (features.maxSharesPerDocPerRole || features.maxSharesPerWorkspace) {
|
|
// For simplicity, don't try to annotate if limits not used at the time of writing
|
|
// are in place.
|
|
return annotations;
|
|
}
|
|
const top = features.maxSharesPerDoc;
|
|
let at = 0;
|
|
const makeAnnotation = (user: {email: string, isMember?: boolean, isSupport?: boolean, access: string|null}) => {
|
|
const annotation: ShareAnnotation = {
|
|
isMember: user.isMember,
|
|
};
|
|
if (user.isSupport) {
|
|
return { isSupport: true };
|
|
}
|
|
if (!annotation.isMember && user.access) {
|
|
at++;
|
|
annotation.collaboratorLimit = {
|
|
at,
|
|
top
|
|
};
|
|
}
|
|
return annotation;
|
|
};
|
|
const removed = new Set(
|
|
Object.entries(change?.users||{}).filter(([, v]) => v === null)
|
|
.map(([k, ]) => normalizeEmail(k)));
|
|
for (const user of this._state.users) {
|
|
if (removed.has(user.email)) { continue; }
|
|
if (!user.isMember && !user.access) { continue; }
|
|
annotations.users.set(user.email, makeAnnotation(user));
|
|
}
|
|
const tweaks = new Set(
|
|
Object.entries(change?.users||{}).filter(([, v]) => v !== null)
|
|
.map(([k, ]) => normalizeEmail(k)));
|
|
for (const email of tweaks) {
|
|
const annotation = annotations.users.get(email) || makeAnnotation({
|
|
email, isMember: false, access: '<set>',
|
|
});
|
|
annotations.users.set(email, annotation);
|
|
}
|
|
return annotations;
|
|
}
|
|
}
|