From 1c821b275d4c7a6ca7bdf80c3d7ab1521aea9a48 Mon Sep 17 00:00:00 2001 From: Raj Joshi Date: Mon, 30 Dec 2024 23:09:44 -0500 Subject: [PATCH 1/2] :bug: fix: fix frontend state & couple bugs --- .../components/dataSecrecy/index.spec.tsx | 34 ++++++++++ .../settings/components/dataSecrecy/index.tsx | 64 ++++++++++++++----- 2 files changed, 82 insertions(+), 16 deletions(-) diff --git a/static/app/views/settings/components/dataSecrecy/index.spec.tsx b/static/app/views/settings/components/dataSecrecy/index.spec.tsx index b44db0d2095751..72e847e5f48ff1 100644 --- a/static/app/views/settings/components/dataSecrecy/index.spec.tsx +++ b/static/app/views/settings/components/dataSecrecy/index.spec.tsx @@ -103,4 +103,38 @@ describe('DataSecrecy', function () { expect(accessMessage).toBeInTheDocument(); }); }); + + it('can update permanent access', async function () { + MockApiClient.addMockResponse({ + url: `/organizations/${organization.slug}/data-secrecy/`, + body: { + accessStart: '2023-08-29T01:05:00+00:00', + accessEnd: '2024-08-29T01:05:00+00:00', + }, + }); + + const mockUpdate = MockApiClient.addMockResponse({ + url: `/organizations/${organization.slug}/`, + method: 'PUT', + }); + + organization.allowSuperuserAccess = false; + render(, {organization}); + + // Toggle permanent access on + const allowAccessToggle = screen.getByRole('checkbox', { + name: /Sentry employees will not have access to your data unless granted permission/, + }); + allowAccessToggle.click(); + + await waitFor(() => { + expect(mockUpdate).toHaveBeenCalledWith( + `/organizations/${organization.slug}/`, + expect.objectContaining({ + method: 'PUT', + data: {allowSuperuserAccess: true}, + }) + ); + }); + }); }); diff --git a/static/app/views/settings/components/dataSecrecy/index.tsx b/static/app/views/settings/components/dataSecrecy/index.tsx index db3d76a8803ea8..aa4fe565380583 100644 --- a/static/app/views/settings/components/dataSecrecy/index.tsx +++ b/static/app/views/settings/components/dataSecrecy/index.tsx @@ -26,8 +26,13 @@ export default function DataSecrecy() { const api = useApi(); const organization = useOrganization(); + // state for the allowSuperuserAccess bit field const [allowAccess, setAllowAccess] = useState(organization.allowSuperuserAccess); - const [allowDate, setAllowDate] = useState(); + + // state of the data secrecy waiver + const [allowData, setAllowDate] = useState(); + + // state for the allowDateFormData field const [allowDateFormData, setAllowDateFormData] = useState(''); const {data, refetch} = useApiQuery( @@ -38,9 +43,6 @@ export default function DataSecrecy() { } ); - const hasValidTempAccess = - allowDate?.accessEnd && moment().toISOString() < allowDate.accessEnd; - useEffect(() => { if (data?.accessEnd) { setAllowDate(data); @@ -57,10 +59,33 @@ export default function DataSecrecy() { data: {allowSuperuserAccess: value}, }); setAllowAccess(value); - addSuccessMessage(t('Successfully updated access.')); + + // if the user has allowed access, we need to remove the temporary access window + // only if there is an existing waiver + if (value && allowData) { + await api.requestPromise(`/organizations/${organization.slug}/data-secrecy/`, { + method: 'DELETE', + }); + setAllowDateFormData(''); + setAllowDate(undefined); + addSuccessMessage( + t('Successfully removed temporary access window and allowed support access.') + ); + // refetch to get the latest waiver data + refetch(); + return; + } + addSuccessMessage( + value + ? t('Successfully allowed support access.') + : t('Successfully removed support access.') + ); } catch (error) { addErrorMessage(t('Unable to save changes.')); } + + // refetch to get the latest waiver data + refetch(); }; const updateTempAccessDate = async () => { @@ -86,13 +111,10 @@ export default function DataSecrecy() { }; try { - await await api.requestPromise( - `/organizations/${organization.slug}/data-secrecy/`, - { - method: 'PUT', - data: nextData, - } - ); + await api.requestPromise(`/organizations/${organization.slug}/data-secrecy/`, { + method: 'PUT', + data: nextData, + }); setAllowDate(nextData); addSuccessMessage(t('Successfully updated temporary access window.')); } catch (error) { @@ -123,10 +145,20 @@ export default function DataSecrecy() { help: t( 'Open a temporary time window for Sentry employees to access your organization' ), - disabled: allowAccess && !organization.access.includes('org:write'), - value: allowAccess ? '' : allowDateFormData, + // disable the field if the user has allowed access or if the user does not have org:write access + disabled: allowAccess || !organization.access.includes('org:write'), + disabledReason: allowAccess + ? t('Disable permanent access first to set temporary access') + : !organization.access.includes('org:write') + ? t('You do not have permission to modify access settings') + : undefined, + value: allowDateFormData, onBlur: updateTempAccessDate, onChange: v => { + // Don't allow the user to set the date if they have allowed access + if (allowAccess) { + return; + } // the picker doesn't like having a datetime string with seconds+ and a timezone, // so we remove it -- we will add it back when we save the date const formattedDate = v ? moment(v).format('YYYY-MM-DDTHH:mm') : ''; @@ -140,9 +172,9 @@ export default function DataSecrecy() { {!allowAccess && ( - {hasValidTempAccess + {allowData?.accessEnd && moment().isBefore(moment(allowData.accessEnd)) ? tct(`Sentry employees has access to your organization until [date]`, { - date: formatDateTime(allowDate?.accessEnd as string), + date: formatDateTime(allowData?.accessEnd as string), }) : t('Sentry employees do not have access to your organization')} From b5f12c6e45812efdcb0b948950ad837d4c8143fc Mon Sep 17 00:00:00 2001 From: Raj Joshi Date: Tue, 31 Dec 2024 12:15:39 -0500 Subject: [PATCH 2/2] :bug: fix: pr feedback --- .../settings/components/dataSecrecy/index.tsx | 28 +++++++++---------- 1 file changed, 13 insertions(+), 15 deletions(-) diff --git a/static/app/views/settings/components/dataSecrecy/index.tsx b/static/app/views/settings/components/dataSecrecy/index.tsx index aa4fe565380583..3165dba78e8e7d 100644 --- a/static/app/views/settings/components/dataSecrecy/index.tsx +++ b/static/app/views/settings/components/dataSecrecy/index.tsx @@ -30,7 +30,7 @@ export default function DataSecrecy() { const [allowAccess, setAllowAccess] = useState(organization.allowSuperuserAccess); // state of the data secrecy waiver - const [allowData, setAllowDate] = useState(); + const [waiver, setWaiver] = useState(); // state for the allowDateFormData field const [allowDateFormData, setAllowDateFormData] = useState(''); @@ -45,7 +45,7 @@ export default function DataSecrecy() { useEffect(() => { if (data?.accessEnd) { - setAllowDate(data); + setWaiver(data); // slice it to yyyy-MM-ddThh:mm format (be aware of the timezone) const localDate = moment(data.accessEnd).local(); setAllowDateFormData(localDate.format('YYYY-MM-DDTHH:mm')); @@ -62,22 +62,20 @@ export default function DataSecrecy() { // if the user has allowed access, we need to remove the temporary access window // only if there is an existing waiver - if (value && allowData) { + if (value && waiver) { await api.requestPromise(`/organizations/${organization.slug}/data-secrecy/`, { method: 'DELETE', }); setAllowDateFormData(''); - setAllowDate(undefined); - addSuccessMessage( - t('Successfully removed temporary access window and allowed support access.') - ); - // refetch to get the latest waiver data - refetch(); - return; + setWaiver(undefined); } addSuccessMessage( value - ? t('Successfully allowed support access.') + ? waiver + ? t( + 'Successfully removed temporary access window and allowed support access.' + ) + : t('Successfully allowed support access.') : t('Successfully removed support access.') ); } catch (error) { @@ -94,7 +92,7 @@ export default function DataSecrecy() { await api.requestPromise(`/organizations/${organization.slug}/data-secrecy/`, { method: 'DELETE', }); - setAllowDate({accessStart: '', accessEnd: ''}); + setWaiver({accessStart: '', accessEnd: ''}); addSuccessMessage(t('Successfully removed temporary access window.')); } catch (error) { addErrorMessage(t('Unable to remove temporary access window.')); @@ -115,7 +113,7 @@ export default function DataSecrecy() { method: 'PUT', data: nextData, }); - setAllowDate(nextData); + setWaiver(nextData); addSuccessMessage(t('Successfully updated temporary access window.')); } catch (error) { addErrorMessage(t('Unable to save changes.')); @@ -172,9 +170,9 @@ export default function DataSecrecy() { {!allowAccess && ( - {allowData?.accessEnd && moment().isBefore(moment(allowData.accessEnd)) + {waiver?.accessEnd && moment().isBefore(moment(waiver.accessEnd)) ? tct(`Sentry employees has access to your organization until [date]`, { - date: formatDateTime(allowData?.accessEnd as string), + date: formatDateTime(waiver?.accessEnd as string), }) : t('Sentry employees do not have access to your organization')}