Added note delete to permissions check and fixed client delete/restor…

…e [SLE-192]
samuelgfeller · Jan 24, 2024 · ab64617 · ab64617
1 parent e212112
commit ab64617
Show file tree

Hide file tree

Showing 12 changed files with 108 additions and 59 deletions.
diff --git a/src/Application/Action/Client/Ajax/FetchDropdownOptionsForClientCreateAction.php b/src/Application/Action/Client/Ajax/FetchDropdownOptionsForClientCreateAction.php
@@ -3,9 +3,7 @@
 namespace App\Application\Action\Client\Ajax;
 
 use App\Application\Renderer\JsonEncoder;
-use App\Domain\Client\Exception\InvalidClientFilterException;
 use App\Domain\Client\Service\ClientUtilFinder;
-use Fig\Http\Message\StatusCodeInterface;
 use Psr\Http\Message\ResponseInterface;
 use Psr\Http\Message\ServerRequestInterface;
 
@@ -31,19 +29,7 @@ public function __invoke(
         ResponseInterface $response,
         array $args
     ): ResponseInterface {
-        try {
-            $dropdownOptions = $this->clientUtilFinder->findClientDropdownValues();
-        } catch (InvalidClientFilterException $invalidClientFilterException) {
-            return $this->jsonEncoder->encodeAndAddToResponse(
-                $response,
-                // Response format tested in PostFilterProvider.php
-                [
-                    'status' => 'error',
-                    'message' => $invalidClientFilterException->getMessage(),
-                ],
-                StatusCodeInterface::STATUS_UNPROCESSABLE_ENTITY
-            );
-        }
+        $dropdownOptions = $this->clientUtilFinder->findClientDropdownValues();
 
         return $this->jsonEncoder->encodeAndAddToResponse($response, $dropdownOptions);
     }

diff --git a/src/Domain/Client/Repository/ClientFinderRepository.php b/src/Domain/Client/Repository/ClientFinderRepository.php
@@ -49,7 +49,6 @@ public function findClientsWithResultAggregate(array $whereArray = ['client.dele
             'client_status_name' => 'client_status.name',
         ])// Multiple joins doc: https://book.cakephp.org/4/en/orm/query-builder.html#adding-joins
         ->join([
-            // `user` is alias and has to be the same as $this->clientListAggregateSelectFields
             'user' => ['table' => 'user', 'type' => 'LEFT', 'conditions' => 'client.user_id = user.id'],
             'client_status' => [
                 'table' => 'client_status',
@@ -69,17 +68,21 @@ public function findClientsWithResultAggregate(array $whereArray = ['client.dele
      * otherwise null.
      *
      * @param string|int $id
+     * @param bool $includeDeleted
      *
      * @return ClientData
      */
-    public function findClientById(string|int $id): ClientData
+    public function findClientById(string|int $id, bool $includeDeleted = false): ClientData
     {
         $query = $this->queryFactory->selectQuery()->select(['*'])->from('client')->where(
-            ['deleted_at IS' => null, 'id' => $id]
+            ['id' => $id]
         );
-        $postRow = $query->execute()->fetch('assoc') ?: [];
+        if ($includeDeleted === false) {
+            $query->andWhere(['deleted_at IS' => null]);
+        }
+        $clientRow = $query->execute()->fetch('assoc') ?: [];
 
-        return new ClientData($postRow);
+        return new ClientData($clientRow);
     }
 
     /**
@@ -123,7 +126,6 @@ public function findClientAggregateByIdIncludingDeleted(int $id): ClientReadResu
             'note_updated_at' => 'note.updated_at',
         ])
             ->join([
-                // `user` is alias and has to be the same as $this->clientListAggregateSelectFields
                 'user' => ['table' => 'user', 'type' => 'LEFT', 'conditions' => 'client.user_id = user.id'],
                 'client_status' => [
                     'table' => 'client_status',
@@ -133,7 +135,9 @@ public function findClientAggregateByIdIncludingDeleted(int $id): ClientReadResu
                 'note' => [
                     'table' => 'note',
                     'type' => 'LEFT',
-                    'conditions' => 'client.id = note.client_id AND note.deleted_at IS NULL AND note.is_main = 1',
+                    // If there is a deleted main note and a non-deleted one, it creates a conflict,
+                    // but this should not happen as there is no way to delete the main note.
+                    'conditions' => 'client.id = note.client_id AND note.is_main = 1',
                 ],
             ])
             ->andWhere(

diff --git a/src/Domain/Client/Repository/ClientUpdaterRepository.php b/src/Domain/Client/Repository/ClientUpdaterRepository.php
@@ -25,4 +25,34 @@ public function updateClient(array $data, int $clientId): bool
 
         return $query->execute()->rowCount() > 0;
     }
+
+    /**
+     * Restore all notes from the client with the same most recent deleted_at date.
+     *
+     * @param int $clientId
+     *
+     * @return bool
+     */
+    public function restoreNotesFromClient(int $clientId): bool
+    {
+        // Find the most recent deleted_at date for the notes of the given client
+        $mostRecentDeletedAt = $this->queryFactory->selectQuery()
+            ->select('MAX(deleted_at) as max_deleted_at')
+            ->from('note')
+            ->where(['client_id' => $clientId])
+            ->execute()->fetch('assoc')['max_deleted_at'];
+
+        if (!$mostRecentDeletedAt) {
+            // No notes found for the given client
+            return false;
+        }
+
+        // Restore all notes with the most recent deleted_at date
+        $query = $this->queryFactory->updateQuery()
+            ->update('note')
+            ->set(['deleted_at' => null])
+            ->where(['client_id' => $clientId, 'deleted_at' => $mostRecentDeletedAt]);
+
+        return $query->execute()->rowCount() > 0;
+    }
 }
diff --git a/src/Domain/Client/Service/ClientFinder.php b/src/Domain/Client/Service/ClientFinder.php
@@ -12,9 +12,9 @@
 use App\Domain\Client\Repository\ClientStatus\ClientStatusFinderRepository;
 use App\Domain\Client\Service\Authorization\ClientPermissionVerifier;
 use App\Domain\Client\Service\Authorization\ClientPrivilegeDeterminer;
+use App\Domain\Note\Repository\NoteFinderRepository;
 use App\Domain\Note\Service\Authorization\NotePermissionVerifier;
 use App\Domain\Note\Service\Authorization\NotePrivilegeDeterminer;
-use App\Domain\Note\Service\NoteFinder;
 use App\Domain\User\Repository\UserFinderRepository;
 use App\Domain\User\Service\UserNameAbbreviator;
 
@@ -25,7 +25,7 @@ public function __construct(
         private UserFinderRepository $userFinderRepository,
         private UserNameAbbreviator $userNameAbbreviator,
         private ClientStatusFinderRepository $clientStatusFinderRepository,
-        private NoteFinder $noteFinder,
+        private NoteFinderRepository $noteFinderRepository,
         private ClientPermissionVerifier $clientPermissionVerifier,
         private ClientPrivilegeDeterminer $clientPrivilegeDeterminer,
         private NotePrivilegeDeterminer $notePrivilegeDeterminer,
@@ -91,12 +91,13 @@ private function findClientsWhereWithResultAggregate(array $whereArray = ['clien
      * Find one client in the database.
      *
      * @param int $id
+     * @param mixed $includeDeleted
      *
      * @return ClientData
      */
-    public function findClient(int $id): ClientData
+    public function findClient(int $id, $includeDeleted = false): ClientData
     {
-        return $this->clientFinderRepository->findClientById($id);
+        return $this->clientFinderRepository->findClientById($id, $includeDeleted);
     }
 
     /**
@@ -145,7 +146,7 @@ public function findClientReadAggregate(int $clientId): ClientReadResult
                 false
             ) ? Privilege::CR->name : Privilege::N->name;
 
-            $clientResultAggregate->notesAmount = $this->noteFinder->findClientNotesAmount($clientId);
+            $clientResultAggregate->notesAmount = $this->noteFinderRepository->findClientNotesAmount($clientId);
 
             return $clientResultAggregate;
         }

diff --git a/src/Domain/Client/Service/ClientUpdater.php b/src/Domain/Client/Service/ClientUpdater.php
@@ -79,9 +79,15 @@ public function updateClient(int $clientId, array $clientValues): array
             if (isset($updateData['user_id'])) {
                 $updateData['assigned_at'] = date('Y-m-d H:i:s');
             }
+
             // Update client
             $updated = $this->clientUpdaterRepository->updateClient($updateData, $clientId);
             if ($updated) {
+                // If client is undeleted, the notes should also be restored
+                if (array_key_exists('deleted_at', $updateData) && $updateData['deleted_at'] === null) {
+                    $this->clientUpdaterRepository->restoreNotesFromClient($clientId);
+                }
+
                 $this->userActivityLogger->logUserActivity(
                     UserActivity::UPDATED,
                     'client',

diff --git a/src/Domain/Client/Service/ClientUtilFinder.php b/src/Domain/Client/Service/ClientUtilFinder.php
@@ -28,14 +28,14 @@ public function __construct(
     public function findClientDropdownValues(?int $alreadyAssignedUserId = null): ClientDropdownValuesData
     {
         $allUsers = $this->userFinderRepository->findAllUsers();
-        // Filter users that authenticated user is authorized to assign to the client that is being created.
+        // Filter users, which the authenticated user is authorized to assign to a client.
         // Available user roles for dropdown and privilege
         $grantedAssignableUsers = [];
         foreach ($allUsers as $userData) {
-            if (// If the user is already assigned to client the value is added so that it's displayed in the dropdown
-                // for it to be visible in GUI even if select is greyed out
+            if (// If the user is already assigned to the client, the value is added so that it's displayed in the
+                // dropdown for it to be visible in the user interface, even if the <select> is greyed out
                 ($alreadyAssignedUserId !== null && $userData->id === $alreadyAssignedUserId)
-                // Check if authenticated user is allowed to assign the currently iterating user to a client
+                // Check if the authenticated user is allowed to assign the currently iterating user to a client
                 || $this->clientPermissionVerifier->isGrantedToAssignUserToClient($userData->id)
             ) {
                 $grantedAssignableUsers[] = $userData;

diff --git a/src/Domain/Note/Repository/NoteDeleterRepository.php b/src/Domain/Note/Repository/NoteDeleterRepository.php
@@ -34,7 +34,8 @@ public function deleteNote(int $id): bool
      */
     public function deleteNotesFromClient(int $clientId): bool
     {
-        $query = $this->queryFactory->softDeleteQuery('note')->where(['client_id' => $clientId]);
+        $query = $this->queryFactory->softDeleteQuery('note')
+            ->where(['client_id' => $clientId, 'deleted_at IS' => null]);
 
         return $query->execute()->rowCount() > 0;
     }

diff --git a/src/Domain/Note/Repository/NoteFinderRepository.php b/src/Domain/Note/Repository/NoteFinderRepository.php
@@ -17,6 +17,7 @@ class NoteFinderRepository
         'hidden' => 'note.hidden',
         'updated_at' => 'note.updated_at',
         'created_at' => 'note.created_at',
+        'deleted_at' => 'note.deleted_at',
         'user_id' => 'note.user_id',
     ];
 
@@ -133,12 +134,16 @@ public function findAllNotesExceptMainWithUserByClientId(int $clientId): array
 
         $query->select(array_merge($this->noteResultFields, ['user_full_name' => $concatName]))
             ->join(['user' => ['table' => 'user', 'type' => 'LEFT', 'conditions' => 'note.user_id = user.id']])
+            ->join(['client' => ['table' => 'client', 'type' => 'LEFT', 'conditions' => 'note.client_id = client.id']])
             ->where(
                 [
                     // Not unsafe as it's not an expression and thus escaped by querybuilder
                     'note.client_id' => $clientId,
                     'note.is_main' => 0,
-                    'note.deleted_at IS' => null,
+                    'OR' => [
+                        'note.deleted_at IS' => null,
+                        'note.deleted_at' => $query->identifier('client.deleted_at'),
+                    ],
                 ]
             )->orderByDesc('note.created_at');
         $resultRows = $query->execute()->fetchAll('assoc') ?: [];

diff --git a/src/Domain/Note/Service/Authorization/NotePermissionVerifier.php b/src/Domain/Note/Service/Authorization/NotePermissionVerifier.php
@@ -21,8 +21,9 @@ public function __construct(
      *
      * @param int $isMain
      * @param int|null $noteOwnerId optional owner id when main note
-     * @param int|null $clientOwnerId client owner might become relevant
+     * @param int|null $clientOwnerId client owner user id might become relevant
      * @param int|null $isHidden when note message is hidden
+     * @param bool $isDeleted note is deleted
      * @param bool $log
      *
      * @return bool
@@ -32,6 +33,7 @@ public function isGrantedToRead(
         ?int $noteOwnerId = null,
         ?int $clientOwnerId = null,
         ?int $isHidden = null,
+        bool $isDeleted = false,
         bool $log = true
     ): bool {
         if (($loggedInUserId = (int)$this->session->get('user_id')) !== 0) {
@@ -41,8 +43,12 @@ public function isGrantedToRead(
             // Returns array with role name as key and hierarchy as value ['role_name' => hierarchy_int]
             // * Lower hierarchy number means higher privileged role
             $userRoleHierarchies = $this->userRoleFinderRepository->getUserRolesHierarchies();
-            // newcomers may see all notes and main notes
+            // newcomers may see all notes and main notes except deleted ones that only managing advisors can see
             if (($authenticatedUserRoleHierarchy <= $userRoleHierarchies[UserRole::NEWCOMER->value])
+                && ( // If the note is deleted, authenticated user must be managing advisors or higher
+                    $isDeleted === false
+                    || $authenticatedUserRoleHierarchy <= $userRoleHierarchies[UserRole::MANAGING_ADVISOR->value]
+                )
                 && ( // When hidden is not null or 0, user has to be advisor to read note
                     in_array($isHidden, [null, 0, false], true)
                     || $authenticatedUserRoleHierarchy <= $userRoleHierarchies[UserRole::ADVISOR->value]

diff --git a/src/Domain/Note/Service/Authorization/NotePrivilegeDeterminer.php b/src/Domain/Note/Service/Authorization/NotePrivilegeDeterminer.php
@@ -46,11 +46,16 @@ public function getMainNotePrivilege(?int $noteOwnerId, ?int $clientOwnerId): st
      * @param int $noteOwnerId
      * @param int|null $clientOwnerId
      * @param ?int $hidden
+     * @param bool $noteDeleted
      *
      * @return string
      */
-    public function getNotePrivilege(int $noteOwnerId, ?int $clientOwnerId = null, ?int $hidden = null): string
-    {
+    public function getNotePrivilege(
+        int $noteOwnerId,
+        ?int $clientOwnerId = null,
+        ?int $hidden = null,
+        bool $noteDeleted = false,
+    ): string {
         // Check first against the highest privilege, if allowed, directly return otherwise continue down the chain
         if ($this->notePermissionVerifier->isGrantedToDelete($noteOwnerId, $clientOwnerId, false)) {
             return Privilege::CRUD->name;
@@ -60,7 +65,14 @@ public function getNotePrivilege(int $noteOwnerId, ?int $clientOwnerId = null, ?
         }
         // Create must NOT be included here as it's irrelevant on specific notes and has an impact on "READ" privilege as
         // read is lower than create in the hierarchy.
-        if ($this->notePermissionVerifier->isGrantedToRead(0, $noteOwnerId, $clientOwnerId, $hidden, false)) {
+        if ($this->notePermissionVerifier->isGrantedToRead(
+            0,
+            $noteOwnerId,
+            $clientOwnerId,
+            $hidden,
+            $noteDeleted,
+            false
+        )) {
             return Privilege::R->name;
         }
 

diff --git a/src/Domain/Note/Service/NoteFinder.php b/src/Domain/Note/Service/NoteFinder.php
@@ -3,7 +3,8 @@
 namespace App\Domain\Note\Service;
 
 use App\Domain\Authorization\Privilege;
-use App\Domain\Client\Repository\ClientFinderRepository;
+use App\Domain\Client\Service\Authorization\ClientPermissionVerifier;
+use App\Domain\Client\Service\ClientFinder;
 use App\Domain\Note\Data\NoteData;
 use App\Domain\Note\Data\NoteResultData;
 use App\Domain\Note\Repository\NoteFinderRepository;
@@ -14,7 +15,8 @@
     public function __construct(
         private NoteFinderRepository $noteFinderRepository,
         private NotePrivilegeDeterminer $notePrivilegeDeterminer,
-        private ClientFinderRepository $clientFinderRepository,
+        private ClientFinder $clientFinder,
+        private ClientPermissionVerifier $clientPermissionVerifier,
     ) {
     }
 
@@ -70,22 +72,25 @@ private function setNotePrivilegeAndRemoveMessageOfHidden(
 
         // Get client owner id if not given
         if ($clientOwnerId === null && $clientId !== null) {
-            $clientOwnerId = $this->clientFinderRepository->findClientById($clientId)->userId;
+            $clientOwnerId = $this->clientFinder->findClient($clientId)->userId;
         }
 
         foreach ($notes as $noteResultData) {
-            // Privilege only create possible if user may not see the note but may create one
+            // Privilege "only create" possible if user may not see the note but may create one
             $noteResultData->privilege = $this->notePrivilegeDeterminer->getNotePrivilege(
                 (int)$noteResultData->userId,
                 $clientOwnerId,
                 $noteResultData->hidden,
+                (bool)$noteResultData->deletedAt
             );
             // If not allowed to read
             if (!str_contains($noteResultData->privilege, 'R')) {
                 // Change message of note to lorem ipsum
                 $noteResultData->message = substr($randomText, 0, strlen($noteResultData->message ?? ''));
                 // Remove line breaks and extra spaces from string
                 $noteResultData->message = preg_replace('/\s\s+/', ' ', $noteResultData->message);
+                // If user has no read right, set note to hidden
+                $noteResultData->hidden = 1;
             }
         }
     }
@@ -119,9 +124,14 @@ public function findAllNotesFromClientExceptMain(int $clientId): array
         // meaning the reference is passed and changes are made on the original reference that can be used further
         // https://www.php.net/manual/en/language.oop5.references.php; https://stackoverflow.com/a/65805372/9013718
         $this->setNotePrivilegeAndRemoveMessageOfHidden($allNotes, null, $clientId);
-        // Add client message as last note (it's always the "oldest" as it's the same age as the client  entry itself)
-        $clientData = $this->clientFinderRepository->findClientById($clientId);
-        if (!empty($clientData->clientMessage)) {
+
+        // Add client message as last note (it's always the "oldest" as it's the same age as the client entry itself)
+        $clientData = $this->clientFinder->findClient($clientId, true);
+        // The authorization for each note is verified, but the client message is added to the request
+        // separately
+        if (!empty($clientData->clientMessage)
+            && $this->clientPermissionVerifier->isGrantedToRead($clientData->userId, $clientData->deletedAt)
+        ) {
             $clientMessageNote = new NoteResultData();
             $clientMessageNote->message = $clientData->clientMessage;
             // The "userFullName" has to be the client itself as it's his client_message that is being displayed as note
@@ -135,16 +145,4 @@ public function findAllNotesFromClientExceptMain(int $clientId): array
 
         return $allNotes;
     }
-
-    /**
-     * Return the number of notes attached to a client.
-     *
-     * @param int $clientId
-     *
-     * @return int
-     */
-    public function findClientNotesAmount(int $clientId): int
-    {
-        return $this->noteFinderRepository->findClientNotesAmount($clientId);
-    }
 }