enh: warn about table use in app during manager demotion

Signed-off-by: Cleopatra Enjeck M <[email protected]>
nextcloud · Oct 29, 2024 · 8cf9e5c · 8cf9e5c
1 parent 9bf572c
commit 8cf9e5c
Show file tree

Hide file tree

Showing 6 changed files with 73 additions and 1 deletion.
diff --git a/appinfo/routes.php b/appinfo/routes.php
@@ -132,6 +132,7 @@
 		['name' => 'ApiTables#update', 'url' => '/api/2/tables/{id}', 'verb' => 'PUT'],
 		['name' => 'ApiTables#destroy', 'url' => '/api/2/tables/{id}', 'verb' => 'DELETE'],
 		['name' => 'ApiTables#transfer', 'url' => '/api/2/tables/{id}/transfer', 'verb' => 'PUT'],
+		['name' => 'ApiTables#indexContext', 'url' => '/api/2/tables/{id}/index-context', 'verb' => 'GET'],
 
 		['name' => 'ApiColumns#index', 'url' => '/api/2/columns/{nodeType}/{nodeId}', 'verb' => 'GET'],
 		['name' => 'ApiColumns#show', 'url' => '/api/2/columns/{id}', 'verb' => 'GET'],

diff --git a/lib/Controller/ApiTablesController.php b/lib/Controller/ApiTablesController.php
@@ -288,4 +288,31 @@ public function transfer(int $id, string $newOwnerUserId): DataResponse {
 			return $this->handleNotFoundError($e);
 		}
 	}
+
+
+	/**
+	 * [api v2] Index contexts
+	 *
+	 * Index contexts used in a table
+	 *
+	 * @param int $id Table ID
+	 *
+	 * @return DataResponse<Http::STATUS_OK, TablesTable, array{}>|DataResponse<Http::STATUS_FORBIDDEN|Http::STATUS_INTERNAL_SERVER_ERROR|Http::STATUS_NOT_FOUND, array{message: string}, array{}>
+	 *
+	 * 200: Contexts listed
+	 * 403: No permissions
+	 * 404: Table not found
+	 */
+	#[NoAdminRequired]
+	public function indexContext(int $id): DataResponse {
+		try {
+			return new DataResponse(['contexts' => $this->service->listContextsByTable($id, $this->userId)]);
+		} catch (PermissionError $e) {
+			return $this->handlePermissionError($e);
+		} catch (InternalError $e) {
+			return $this->handleError($e);
+		} catch (NotFoundError $e) {
+			return $this->handleNotFoundError($e);
+		}
+	}
 }
diff --git a/lib/Service/ContextService.php b/lib/Service/ContextService.php
@@ -111,6 +111,25 @@ public function findById(int $id, ?string $userId): Context {
 		return $this->contextMapper->findById($id, $userId);
 	}
 
+
+		/**
+	 * @throws Exception
+	 * @throws InternalError
+	 * @throws NotFoundError
+	 */
+	public function findByTableId(int $tableId, ?string $userId): array {
+		if ($userId !== null && trim($userId) === '') {
+			$userId = null;
+		}
+		if ($userId === null && !$this->isCLI) {
+			$error = 'Try to set no user in context, but request is not allowed.';
+			$this->logger->warning($error);
+			throw new InternalError($error);
+		}
+
+		return $this->contextMapper->findAllContainingNode(Application::NODE_TYPE_TABLE, $tableId, $userId);
+	}
+
 	/**
 	 * @psalm-param list<array{id: int, type: int, permissions?: int, order?: int}> $nodes
 	 * @throws Exception|PermissionError|InvalidArgumentException

diff --git a/lib/Service/TableService.php b/lib/Service/TableService.php
@@ -562,6 +562,18 @@ public function getScheme(int $id): TableScheme {
 		return new TableScheme($table->getTitle(), $table->getEmoji(), $columns, $table->getViews(), $table->getDescription(), $this->appManager->getAppVersion("tables"));
 	}
 
+
+	/**
+	 * @throws PermissionError
+	 * @throws NotFoundError
+	 * @throws InternalError
+	 */
+	public function listContextsByTable(int $id, ?string $userId = null): array {
+		$contexts = $this->contextService->findByTableId($id, $userId);
+		return $contexts;
+	}
+
+
 	// PRIVATE FUNCTIONS ---------------------------------------------------------------
 
 	/**

diff --git a/src/modules/sidebar/partials/ShareList.vue b/src/modules/sidebar/partials/ShareList.vue
@@ -127,6 +127,8 @@ import Crown from 'vue-material-design-icons/Crown.vue'
 import Information from 'vue-material-design-icons/Information.vue'
 import Account from 'vue-material-design-icons/Account.vue'
 import moment from '@nextcloud/moment'
+import { showWarning } from '@nextcloud/dialogs'
+import '@nextcloud/dialogs/style.css'
 
 export default {
 	components: {
@@ -208,7 +210,13 @@ export default {
 		promoteToManager(share) {
 			this.$emit('update', { id: share.id, permission: 'manage', value: true })
 		},
-		demoteManager(share) {
+		async demoteManager(share) {
+			// TODO: might need to pass in the share receiver when fetching the contexts
+			// it seems like we only get the contexts for the currently logged in user
+			const contexts = await this.$store.dispatch('loadContextsForTable', { tableId: this.activeElement.id })
+			if (Array.isArray(contexts.contexts) && contexts.contexts.length && contexts.contexts.find(context => context.owner === share.receiver)) {
+				showWarning(t('tables', 'The account has created an application based on this table which will continue to consume its data'))
+			}
 			this.$emit('update', { id: share.id, permission: 'manage', value: false })
 		},
 		personHasTableManagePermission(userId) {

diff --git a/src/store/store.js b/src/store/store.js
@@ -508,6 +508,11 @@ export default new Vuex.Store({
 			return res?.data
 		},
 
+		async loadContextsForTable({ commit, state, getters }, { tableId }) {
+			const res = await axios.get(generateOcsUrl('/apps/tables/api/2/tables/' + tableId + '/index-context'))
+			return res?.data.ocs.data
+		},
+
 		async transferContext({ state, commit, dispatch }, { id, data }) {
 			try {
 				await axios.put(generateOcsUrl('/apps/tables/api/2/contexts/' + id + '/transfer'), data)