[feature/crud-context] final corrections.

- added missing route permission checks for views.
- eslint fixes.

Author: frknbasaran

api/parts/mgmt/users.js

@@ -9,12 +9,11 @@ var usersApi = {},
     mail = require('./mail.js'),
     countlyConfig = require('./../../../frontend/express/config.js'),
     plugins = require('../../../plugins/pluginManager.js'),
-    { hasUpdateRight, hasDeleteRight, hasAdminAccess, getUserApps, getAdminApps } = require('./../../utils/rights.js');
+    { hasAdminAccess, getUserApps, getAdminApps } = require('./../../utils/rights.js');
 
 const countlyCommon = require('../../lib/countly.common.js');
 const log = require('../../utils/log.js')('core:mgmt.users');
 const _ = require('lodash');
-const FEATURE_NAME = 'global_users';
 
 //for password checking when deleting own account. Could be removed after merging with next
 var argon2 = require('argon2');

api/utils/requestProcessor.js

@@ -1954,7 +1954,6 @@ const processRequest = (params) => {
                         }
                         else {
                             params.truncateEventValuesList = true;
-                            
                             validateRead(params, 'core', countlyApi.data.fetch.prefetchEventData, params.qstring.method);
                         }
                     }

api/utils/rights.js

@@ -870,7 +870,7 @@ exports.hasCreateRight = function(feature, app_id, member) {
 };
 
 exports.hasReadRight = function(feature, app_id, member) {
-    return member.global_admin || member.permission.r[app_id].allowed[feature] || member.permission.r[app_id].all;
+    return member.global_admin || member.permission.r[app_id].allowed[feature] || member.permission.r[app_id].all;
 };
 
 exports.hasUpdateRight = function(feature, app_id, member) {

extend/mail.example.js

@@ -35,7 +35,7 @@
         var fa = featureName.split('_');
         var ret = '';
         for (var i = 0; i < fa.length; i++) {
-            ret += fa[i].substr(0, 1).toUpperCase() + fa[i].substr(1, fa[i].length -1) + ' ';
+            ret += fa[i].substr(0, 1).toUpperCase() + fa[i].substr(1, fa[i].length - 1) + ' ';
         }
         return ret;
     }
@@ -225,7 +225,9 @@
     countlyAuth.updatePermissionByType = function(permissionType, permissionObject, processFlag) {
         permissionObject[permissionType].all = processFlag;
         for (var i = 0; i < countlyAuth.features.length; i++) {
-            if (permissionType === 'r' && countlyAuth.features[i] === 'core') continue;
+            if (permissionType === 'r' && countlyAuth.features[i] === 'core') {
+                continue;
+            }
             if (processFlag) {
                 permissionObject[permissionType].allowed[countlyAuth.features[i]] = processFlag;
             }
@@ -239,8 +241,12 @@
     countlyAuth.giveFeaturePermission = function(permissionType, feature, permissionObject) {
         var allCheck = true;
         for (var i = 0; i < countlyAuth.features.length; i++) {
-            if (permissionType === 'r' && countlyAuth.features[i] === 'core') continue;
-            if (!permissionObject[permissionType].allowed[countlyAuth.features[i]]) allCheck = false;
+            if (permissionType === 'r' && countlyAuth.features[i] === 'core') {
+                continue;
+            }
+            if (!permissionObject[permissionType].allowed[countlyAuth.features[i]]) {
+                allCheck = false;
+            }
         }
         permissionObject[permissionType].all = allCheck;
         permissionObject[permissionType].allowed[feature] = true;
@@ -279,38 +285,38 @@
 
         $('#manage-users-admin-app-selector')[0].selectize.setValue(checked_admin_apps);
 
-        for (var i = 0; i < user_apps.length; i++) {
+        for (var i0 = 0; i0 < user_apps.length; i0++) {
             checked_user_apps = [];
-            for (var j = 0; j < user_apps[i].length; j++) {
-                if (countlyGlobal.apps[user_apps[i][j]]) {
-                    checked_user_apps.push(user_apps[i][j]);
+            for (var j0 = 0; j0 < user_apps[i0].length; j0++) {
+                if (countlyGlobal.apps[user_apps[i0][j0]]) {
+                    checked_user_apps.push(user_apps[i0][j0]);
                 }
             }
 
-            $(parent_el + ' #user-app-selector-' + i)[0].selectize.setValue(checked_user_apps);
+            $(parent_el + ' #user-app-selector-' + i0)[0].selectize.setValue(checked_user_apps);
 
-            for (var j = 0; j < countlyAuth.types.length; j++) {
-                if (user_apps[i].length > 0) {
-                    if (permission_object[countlyAuth.types[j]][user_apps[i][0]].all) {
+            for (var j1 = 0; j1 < countlyAuth.types.length; j1++) {
+                if (user_apps[i0].length > 0) {
+                    if (permission_object[countlyAuth.types[j1]][user_apps[i0][0]].all) {
 
-                        $(parent_el + ' #mark-all-' + countlyAuth.typeNames[j] + '-' + i).countlyCheckbox().set(true);
+                        $(parent_el + ' #mark-all-' + countlyAuth.typeNames[j1] + '-' + i0).countlyCheckbox().set(true);
 
                         for (var k = 0; k < countlyAuth.features.length; k++) {
-                            $(parent_el + ' #' + countlyAuth.types[j] + '-' + countlyAuth.features[k] + '-' + i).countlyCheckbox().set(true);
-                            if (countlyAuth.types[j] === "r" && countlyAuth.features[k] === 'core') {
-                                $(parent_el + ' #' + countlyAuth.types[j] + '-' + countlyAuth.features[k] + '-' + i).countlyCheckbox().setDisabled();
+                            $(parent_el + ' #' + countlyAuth.types[j1] + '-' + countlyAuth.features[k] + '-' + i0).countlyCheckbox().set(true);
+                            if (countlyAuth.types[j1] === "r" && countlyAuth.features[k] === 'core') {
+                                $(parent_el + ' #' + countlyAuth.types[j1] + '-' + countlyAuth.features[k] + '-' + i0).countlyCheckbox().setDisabled();
                             }
                         }
 
-                        permission_sets[i][countlyAuth.types[j]].all = true;
-                        permission_sets[i][countlyAuth.types[j]].allowed = permission_object[countlyAuth.types[j]][user_apps[i][0]].allowed;
+                        permission_sets[i0][countlyAuth.types[j1]].all = true;
+                        permission_sets[i0][countlyAuth.types[j1]].allowed = permission_object[countlyAuth.types[j1]][user_apps[i0][0]].allowed;
                     }
                     else {
-                        for (var feature in permission_object[countlyAuth.types[j]][user_apps[i][0]].allowed) {
-                            permission_sets[i] = countlyAuth.giveFeaturePermission(countlyAuth.types[j], feature, permission_sets[i]);
-                            $(parent_el + ' #' + countlyAuth.types[j] + '-' + feature + '-' + i).countlyCheckbox().set(true);
-                            if (countlyAuth.types[j] === "r" && feature === 'core') {
-                                $(parent_el + ' #' + countlyAuth.types[j] + '-' + feature + '-' + i).countlyCheckbox().setDisabled();
+                        for (var feature in permission_object[countlyAuth.types[j1]][user_apps[i0][0]].allowed) {
+                            permission_sets[i0] = countlyAuth.giveFeaturePermission(countlyAuth.types[j1], feature, permission_sets[i0]);
+                            $(parent_el + ' #' + countlyAuth.types[j1] + '-' + feature + '-' + i0).countlyCheckbox().set(true);
+                            if (countlyAuth.types[j1] === "r" && feature === 'core') {
+                                $(parent_el + ' #' + countlyAuth.types[j1] + '-' + feature + '-' + i0).countlyCheckbox().setDisabled();
                             }
                         }
                     }

frontend/express/public/javascripts/countly/countly.auth.js

@@ -1369,7 +1369,7 @@ var AppRouter = Backbone.Router.extend({
             if (countlyAuth.validateRead('core')) {
                 self.addSubMenu("management", {code: "longtasks", url: "#/manage/tasks", text: "sidebar.management.longtasks", priority: 10});
             }
-            
+
             var jobsIconSvg = '<svg width="20px" height="16px" viewBox="0 0 12 10" version="1.1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"><title>list-24px 2</title><g id="Page-1" stroke="none" stroke-width="1" fill="none" fill-rule="evenodd"><g id="list-24px-2" fill="#9f9f9f" fill-rule="nonzero"><g id="list-24px"><path d="M0,6 L2,6 L2,4 L0,4 L0,6 Z M0,10 L2,10 L2,8 L0,8 L0,10 Z M0,2 L2,2 L2,0 L0,0 L0,2 Z M3,6 L12,6 L12,4 L3,4 L3,6 Z M3,10 L12,10 L12,8 L3,8 L3,10 Z M3,0 L3,2 L12,2 L12,0 L3,0 Z" id="Shape"></path></g></g></g></svg>';
             if (countlyAuth.validateRead('global_applications')) {
                 self.addMenu("management", {code: "applications", url: "#/manage/apps", text: "sidebar.management.applications", icon: '<div class="logo-icon ion-ios-albums"></div>', priority: 10});