mirror of
https://github.com/grafana/grafana.git
synced 2025-01-13 09:32:12 -06:00
e399fe6d09
* Add folder store to dashboard permissions * Include folder store in annotation scope resolver * Add folder store when initialising library elements * Include folder store in search v2 service initialisation * Include folder store in GetInheritedScopes * Add folder store to folder permissions provider * Include cfg, folder permissions in folder service * Move setting of folder permissions for folder service create method
70 lines
2.2 KiB
Go
70 lines
2.2 KiB
Go
package libraryelements
|
|
|
|
import (
|
|
"context"
|
|
"errors"
|
|
"strings"
|
|
|
|
"github.com/grafana/grafana/pkg/apimachinery/identity"
|
|
ac "github.com/grafana/grafana/pkg/services/accesscontrol"
|
|
"github.com/grafana/grafana/pkg/services/dashboards"
|
|
"github.com/grafana/grafana/pkg/services/folder"
|
|
"github.com/grafana/grafana/pkg/services/libraryelements/model"
|
|
)
|
|
|
|
const (
|
|
ScopeLibraryPanelsRoot = "library.panels"
|
|
ScopeLibraryPanelsPrefix = "library.panels:uid:"
|
|
|
|
ActionLibraryPanelsCreate = "library.panels:create"
|
|
ActionLibraryPanelsRead = "library.panels:read"
|
|
ActionLibraryPanelsWrite = "library.panels:write"
|
|
ActionLibraryPanelsDelete = "library.panels:delete"
|
|
)
|
|
|
|
var (
|
|
ScopeLibraryPanelsProvider = ac.NewScopeProvider(ScopeLibraryPanelsRoot)
|
|
|
|
ScopeLibraryPanelsAll = ScopeLibraryPanelsProvider.GetResourceAllScope()
|
|
)
|
|
|
|
var (
|
|
ErrNoElementsFound = errors.New("library element not found")
|
|
ErrElementNameNotUnique = errors.New("several library elements with the same name were found")
|
|
)
|
|
|
|
// LibraryPanelUIDScopeResolver provides a ScopeAttributeResolver that is able to convert a scope prefixed with "library.panels:uid:"
|
|
// into uid based scopes for a library panel and its associated folder hierarchy
|
|
func LibraryPanelUIDScopeResolver(l *LibraryElementService, folderStore folder.Store) (string, ac.ScopeAttributeResolver) {
|
|
prefix := ScopeLibraryPanelsProvider.GetResourceScopeUID("")
|
|
return prefix, ac.ScopeAttributeResolverFunc(func(ctx context.Context, orgID int64, scope string) ([]string, error) {
|
|
if !strings.HasPrefix(scope, prefix) {
|
|
return nil, ac.ErrInvalidScope
|
|
}
|
|
|
|
uid, err := ac.ParseScopeUID(scope)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
user, err := identity.GetRequester(ctx)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
libElDTO, err := l.getLibraryElementByUid(ctx, user, model.GetLibraryElementCommand{
|
|
UID: uid,
|
|
FolderName: dashboards.RootFolderName,
|
|
})
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
inheritedScopes, err := dashboards.GetInheritedScopes(ctx, orgID, libElDTO.FolderUID, folderStore)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return append(inheritedScopes, dashboards.ScopeFoldersProvider.GetResourceScopeUID(libElDTO.FolderUID), ScopeLibraryPanelsProvider.GetResourceScopeUID(uid)), nil
|
|
})
|
|
}
|