[crud-context] various fixes.

- events permissions moved to "events" feature from "core"
- added at least one app validation to user create process.
- added desktop, mobile and web analytics sublinks under "core" feature.
- and other things.

Author: frknbasaran

api/utils/requestProcessor.js

@@ -739,7 +739,7 @@ const processRequest = (params) => {
                         common.returnMessage(params, 400, 'Missing parameter "app_id"');
                         return false;
                     }
-                    validateUpdate(params, 'core', function() {
+                    validateUpdate(params, 'events', function() {
                         common.db.collection('events').findOne({"_id": common.db.ObjectID(params.qstring.app_id)}, function(err, event) {
                             if (err) {
                                 common.returnMessage(params, 400, err);
@@ -1000,7 +1000,7 @@ const processRequest = (params) => {
                 }
                 case 'delete_events':
                 {
-                    validateDelete(params, 'core', function() {
+                    validateDelete(params, 'events', function() {
                         var idss = [];
                         try {
                             idss = JSON.parse(params.qstring.events);
@@ -1122,7 +1122,7 @@ const processRequest = (params) => {
                 }
                 case 'change_visibility':
                 {
-                    validateUpdate(params, 'core', function() {
+                    validateUpdate(params, 'events', function() {
                         common.db.collection('events').findOne({"_id": common.db.ObjectID(params.qstring.app_id)}, function(err, event) {
                             if (err) {
                                 common.returnMessage(params, 400, err);
@@ -1954,6 +1954,7 @@ const processRequest = (params) => {
                         }
                         else {
                             params.truncateEventValuesList = true;
+                            
                             validateRead(params, 'core', countlyApi.data.fetch.prefetchEventData, params.qstring.method);
                         }
                     }

frontend/express/public/javascripts/countly/countly.auth.js

@@ -144,7 +144,6 @@
     };
 
     countlyAuth.renderFeatureTemplate = function(featureName, index) {
-        if (featureName === 'core') return '';
         var odd = countlyAuth.odd;
         countlyAuth.odd = !countlyAuth.odd;
         var beautifiedFeatureName = featureBeautifier(featureName);
@@ -227,7 +226,12 @@
         permissionObject[permissionType].all = processFlag;
         for (var i = 0; i < countlyAuth.features.length; i++) {
             if (countlyAuth.features[i] === 'core') continue;
-            permissionObject[permissionType].allowed[countlyAuth.features[i]] = processFlag;
+            if (processFlag) {
+                permissionObject[permissionType].allowed[countlyAuth.features[i]] = processFlag;
+            }
+            else {
+                delete permissionObject[permissionType].allowed[countlyAuth.features[i]];
+            }
         }
         return permissionObject;
     };
@@ -292,17 +296,21 @@
                         $(parent_el + ' #mark-all-' + countlyAuth.typeNames[j] + '-' + i).countlyCheckbox().set(true);
 
                         for (var k = 0; k < countlyAuth.features.length; k++) {
-                            if (countlyAuth.features[k] === 'core') continue;
                             $(parent_el + ' #' + countlyAuth.types[j] + '-' + countlyAuth.features[k] + '-' + i).countlyCheckbox().set(true);
+                            if (countlyAuth.features[k] === 'core') {
+                                $(parent_el + ' #' + countlyAuth.types[j] + '-' + countlyAuth.features[k] + '-' + i).countlyCheckbox().setDisabled();
+                            }     
                         }
 
                         permission_sets[i][countlyAuth.types[j]].all = true;
                     }
                     else {
                         for (var feature in permission_object[countlyAuth.types[j]][user_apps[i][0]].allowed) {
-                            if (feature === 'core') continue;
                             permission_sets[i] = countlyAuth.giveFeaturePermission(countlyAuth.types[j], feature, permission_sets[i]);
                             $(parent_el + ' #' + countlyAuth.types[j] + '-' + feature + '-' + i).countlyCheckbox().set(true);
+                            if (feature === 'core') {
+                                $(parent_el + ' #' + countlyAuth.types[j] + '-' + feature + '-' + i).countlyCheckbox().setDisabled();
+                            }
                         }
                     }
                 }

frontend/express/public/javascripts/countly/countly.template.js

@@ -1349,11 +1349,12 @@ var AppRouter = Backbone.Router.extend({
             self.addMenu("understand", {code: "engagement", text: "sidebar.engagement", icon: '<div class="logo ion-happy-outline"></div>', priority: 30});
             self.addMenu("understand", {code: "events", text: "sidebar.events", icon: '<div class="logo events"><i class="material-icons">bubble_chart</i></div>', priority: 40});
             self.addSubMenu("events", {code: "events-overview", url: "#/analytics/events/overview", text: "sidebar.events.overview", priority: 10});
-            self.addSubMenu("events", {code: "all-events", url: "#/analytics/events", text: "sidebar.events.all-events", priority: 20});
-            if (countlyAuth.validateUpdate('core') || countlyAuth.validateDelete('core')) {
+            if (countlyAuth.validateRead('events')) {
+                self.addSubMenu("events", {code: "all-events", url: "#/analytics/events", text: "sidebar.events.all-events", priority: 20});
+            }
+            if (countlyAuth.validateUpdate('events') || countlyAuth.validateDelete('events')) {
                 self.addSubMenu("events", {code: "manage-events", url: "#/analytics/manage-events", text: "sidebar.events.blueprint", priority: 100});
             }
-
             self.addMenu("utilities", {
                 code: "management",
                 text: "sidebar.utilities",
@@ -1368,7 +1369,7 @@ var AppRouter = Backbone.Router.extend({
             if (countlyAuth.validateRead('core')) {
                 self.addSubMenu("management", {code: "longtasks", url: "#/manage/tasks", text: "sidebar.management.longtasks", priority: 10});
             }
-
+            
             var jobsIconSvg = '<svg width="20px" height="16px" viewBox="0 0 12 10" version="1.1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"><title>list-24px 2</title><g id="Page-1" stroke="none" stroke-width="1" fill="none" fill-rule="evenodd"><g id="list-24px-2" fill="#9f9f9f" fill-rule="nonzero"><g id="list-24px"><path d="M0,6 L2,6 L2,4 L0,4 L0,6 Z M0,10 L2,10 L2,8 L0,8 L0,10 Z M0,2 L2,2 L2,0 L0,0 L0,2 Z M3,6 L12,6 L12,4 L3,4 L3,6 Z M3,10 L12,10 L12,8 L3,8 L3,10 Z M3,0 L3,2 L12,2 L12,0 L3,0 Z" id="Shape"></path></g></g></g></svg>';
             if (countlyAuth.validateRead('global_applications')) {
                 self.addMenu("management", {code: "applications", url: "#/manage/apps", text: "sidebar.management.applications", icon: '<div class="logo-icon ion-ios-albums"></div>', priority: 10});

frontend/express/public/javascripts/countly/countly.views.js

@@ -2021,6 +2021,7 @@ window.DurationView = countlyView.extend({
 });
 
 window.ManageAppsView = countlyView.extend({
+    featureName: 'global_applications',
     initialize: function() {
         this.template = Handlebars.compile($("#template-management-applications").html());
         this.templatePlugins = Handlebars.compile($("#template-management-plugins").html());
@@ -2047,9 +2048,10 @@ window.ManageAppsView = countlyView.extend({
     renderCommon: function() {
         var appTypes = {}, self = this;
         var adminApps = countlyAuth.getAdminApps();
+        var userApps = countlyAuth.getUserApps();
         var oAdminApps = [];
-        for (var i = 0; i < adminApps.length; i++) {
-            oAdminApps.push(countlyGlobal.apps[adminApps[i]]);
+        for (var j = 0; j < userApps.length; j++) {
+            oAdminApps.push(countlyGlobal.apps[userApps[j]]);
         }
         var j = 0;
         for (j in app.appTypes) {
@@ -2201,22 +2203,14 @@ window.ManageAppsView = countlyView.extend({
         function initAppManagement(app_id) {
             var adminApps = countlyAuth.getAdminApps();
             var userApps = countlyAuth.getUserApps();
+
             if (userApps.length === 0) {
-                showAdd();
                 firstApp();
                 $("body").off("click", "#save-first-app-add").on("click", "#save-first-app-add", function() {
                     saveApp();
                 });
                 return false;
             }
-            else if (countlyAuth.validateCreate('global_applications')) {
-                showAdd();
-                $("body").off("click", "#save-app-add").on("click", "#save-app-add", function() {
-                    saveApp();
-                });
-                store.set('first_app', false);
-                return false;
-            }
             else {
                 $('#content').css({"width": "", "height": "", "margin-left": "", "margin-top": ""});
                 store.set('first_app', false);
@@ -2231,13 +2225,6 @@ window.ManageAppsView = countlyView.extend({
                     });
                 }
 
-                if (adminApps.indexOf(app_id) !== -1) {
-                    $("#app-delete-button").addClass("inactive");
-                }
-                else {
-                    $("#app-delete-button").removeClass("inactive");
-                }
-
                 $("body").off("click", "#save-app-add").on("click", "#save-app-add", function() {
                     saveApp();
                 });
@@ -2480,6 +2467,34 @@ window.ManageAppsView = countlyView.extend({
                 });
             });
             app.localize($("#content"));
+
+            var hasDeleteRight = countlyAuth.validateDelete(self.featureName, countlyGlobal.member, app_id);
+            var hasUpdateRight = countlyAuth.validateUpdate(self.featureName, countlyGlobal.member, app_id);
+            
+            if (hasDeleteRight) {
+                $("#app-delete-button").show();
+                $('#app-clear-button').show();
+                $('#app-reset-button').show();
+            }
+            else {
+                $("#app-delete-button").hide();
+                $('#app-clear-button').hide();
+                $('#app-reset-button').hide();
+            }
+
+            if (hasUpdateRight) {
+                $("#app-edit-button").show();
+                $('#app-lock-button').show();
+            }
+            else {
+                $("#app-edit-button").show();
+                $('#app-lock-button').show();
+            }
+
+            if (!hasDeleteRight && !hasUpdateRight) {
+                $('#view-app .cly-button-menu-trigger').hide();
+            }
+
         }
         /** initializes country select
          * @param {object} parent - select parent element
@@ -2861,6 +2876,7 @@ window.ManageAppsView = countlyView.extend({
         }
 
         if (!countlyGlobal.member.global_admin && $.isEmptyObject(countlyGlobal.apps) && $.isEmptyObject(countlyGlobal.admin_apps) && !countlyGlobal.config.autonomous) {
+            console.log('no auth for app manage screen');
             prepareUnauthorizeScreen();
         }
         else {
@@ -3808,6 +3824,7 @@ window.ManageUsersView = countlyView.extend({
         // Events handlers
         $('body').off('click', '.manage-users-options-item .show-edit-menu').on('click', '.manage-users-options-item .show-edit-menu', function() {
             var that = this;
+            $('.edit-menu').hide();
             $('.manage-users-menu-' + $(this).data('id')).show();
             setTimeout(function() {
             	$('.manage-users-menu-' + $(that).data('id')).fadeOut();
@@ -4032,7 +4049,6 @@ window.ManageUsersView = countlyView.extend({
                 for (var i = 0; i < self.features.length; i++) {
                    if (self.features[i] === 'core') continue;
                    $('.create-user-drawer #' + type.substr(0, 1) + '-' + self.features[i] + '-' + index).countlyCheckbox().set(true);
-                   //$('.create-user-drawer #' + type.substr(0, 1) + '-' + self.features[i] + '-' + index).countlyCheckbox().setDisabled();
                 }
 
                 self.permissionSets[index] = countlyAuth.updatePermissionByType(type.substr(0, 1), self.permissionSets[index], true);
@@ -4041,7 +4057,6 @@ window.ManageUsersView = countlyView.extend({
                 for (var j = 0; j < self.features.length; j++) {
                    if (self.features[j] === 'core') continue;
                    $('.create-user-drawer #' + type.substr(0, 1) + '-' + self.features[j] + '-' + index).countlyCheckbox().set(false);
-                   //$('.create-user-drawer #' + type.substr(0, 1) + '-' + self.features[j] + '-' + index).countlyCheckbox().unsetDisabled();
                 }
 
                 self.permissionSets[index] = countlyAuth.updatePermissionByType(type.substr(0, 1), self.permissionSets[index], false);
@@ -4144,6 +4159,16 @@ window.ManageUsersView = countlyView.extend({
                 return;
             }
 
+            if (self.memberModel.permission._.u[0].length === 0 && self.memberModel.permission._.a.length === 0) {
+                CountlyHelpers.notify({
+                    type: 'warning',
+                    delay: 3000,
+                    title: 'Validation error',
+                    message: $.i18n.map['management-users.at-least-one-app-required']
+                });
+                return;
+            }
+
             if (!self.memberModel.global_admin) {
                 //self.memberModel.admin_of = currUserDetails.find(".admin-apps .app-list").val().split(",");
                 //self.memberModel.user_of = currUserDetails.find(".user-apps .app-list").val().split(",");

frontend/express/public/localization/dashboard/dashboard.properties

@@ -738,6 +738,7 @@ management-users.full-name-required = Full name area should be filled
 management-users.username-required = Username area should be filled
 management-users.email-required = E-mail area should be filled
 management-users.email-invalid-format = Please check your email format
+management-users.at-least-one-app-required = User should have permission for at least one app
 
 #user-settings
 user-settings.username = Username

plugins/desktop/frontend/public/javascripts/countly.views.js

@@ -319,7 +319,7 @@ app.addAppType("desktop", DesktopDashboardView);
 app.desktopDashboardView = new DesktopDashboardView();
 
 $(document).ready(function() {
-    if (countlyAuth.validateRead(app.desktopDashboardView.featureName)) {
+    if (countlyAuth.validateRead('core')) {
         app.addSubMenuForType("desktop", "analytics", {code: "analytics-platforms", url: "#/analytics/platforms", text: "sidebar.analytics.platforms", priority: 80});
         app.addSubMenuForType("desktop", "analytics", {code: "analytics-versions", url: "#/analytics/versions", text: "sidebar.analytics.app-versions", priority: 60});
         app.addSubMenuForType("desktop", "analytics", {code: "analytics-resolutions", url: "#/analytics/resolutions", text: "sidebar.analytics.resolutions", priority: 50});

plugins/mobile/frontend/public/javascripts/countly.views.js

@@ -334,7 +334,7 @@ app.addAppManagementSwitchCallback(function(appId, type) {
 });
 
 $(document).ready(function() {
-    if (countlyAuth.validateRead(app.mobileDashboardView.featureName)) {
+    if (countlyAuth.validateRead('core')) {
         app.addSubMenuForType("mobile", "analytics", {code: "analytics-platforms", url: "#/analytics/platforms", text: "sidebar.analytics.platforms", priority: 80});
         app.addSubMenuForType("mobile", "analytics", {code: "analytics-carriers", url: "#/analytics/carriers", text: "sidebar.analytics.carriers", priority: 70});
         app.addSubMenuForType("mobile", "analytics", {code: "analytics-versions", url: "#/analytics/versions", text: "sidebar.analytics.app-versions", priority: 60});

plugins/plugins/frontend/public/javascripts/countly.views.js

@@ -1694,35 +1694,35 @@ if (countlyAuth.validateRead(app.configurationsView.featureName)) {
             this.renderWhenReady(this.configurationsView);
         }
     });
-}
-
-app.route('/manage/user-settings', 'user-settings', function() {
-    this.configurationsView.namespace = null;
-    this.configurationsView.reset = false;
-    this.configurationsView.userConfig = true;
-    this.configurationsView.success = false;
-    this.renderWhenReady(this.configurationsView);
-});
 
-app.route('/manage/user-settings/:namespace', 'user-settings_namespace', function(namespace) {
-    if (namespace === "reset") {
-        this.configurationsView.reset = true;
-        this.configurationsView.success = false;
+    app.route('/manage/user-settings', 'user-settings', function() {
         this.configurationsView.namespace = null;
-    }
-    else if (namespace === "success") {
-        this.configurationsView.reset = false;
-        this.configurationsView.success = true;
-        this.configurationsView.namespace = null;
-    }
-    else {
         this.configurationsView.reset = false;
+        this.configurationsView.userConfig = true;
         this.configurationsView.success = false;
-        this.configurationsView.namespace = namespace;
-    }
-    this.configurationsView.userConfig = true;
-    this.renderWhenReady(this.configurationsView);
-});
+        this.renderWhenReady(this.configurationsView);
+    });
+
+    app.route('/manage/user-settings/:namespace', 'user-settings_namespace', function(namespace) {
+        if (namespace === "reset") {
+            this.configurationsView.reset = true;
+            this.configurationsView.success = false;
+            this.configurationsView.namespace = null;
+        }
+        else if (namespace === "success") {
+            this.configurationsView.reset = false;
+            this.configurationsView.success = true;
+            this.configurationsView.namespace = null;
+        }
+        else {
+            this.configurationsView.reset = false;
+            this.configurationsView.success = false;
+            this.configurationsView.namespace = namespace;
+        }
+        this.configurationsView.userConfig = true;
+        this.renderWhenReady(this.configurationsView);
+    });
+}
 
 $(document).ready(function() {
     if (countlyGlobal.member && countlyGlobal.member.global_admin || countlyAuth.validateRead(app.pluginsView.featureName)) {

plugins/web/frontend/public/javascripts/countly.views.js

@@ -508,7 +508,7 @@ app.addAppManagementSwitchCallback(function(appId, type) {
 app.webDashboardView = new WebDashboardView();
 
 $(document).ready(function() {
-    if (countlyAuth.validateRead(app.webDashboardView.featureName)) {
+    if (countlyAuth.validateRead('core')) {
         app.addSubMenuForType("web", "analytics", {code: "analytics-platforms", url: "#/analytics/platforms", text: "sidebar.analytics.platforms", priority: 80});
         app.addSubMenuForType("web", "analytics", {code: "analytics-versions", url: "#/analytics/versions", text: "sidebar.analytics.app-versions", priority: 60});
         app.addSubMenuForType("web", "analytics", {code: "analytics-resolutions", url: "#/analytics/resolutions", text: "sidebar.analytics.resolutions", priority: 50});