Use "RELEASED" scope for non-curator users, "IN_PROGRESS" for curators

Author: apdavison

apps/nar-v3/src/auth.js

@@ -31,7 +31,7 @@ const keycloak = new Keycloak({
 });
 const YOUR_APP_SCOPES = "team email profile"; // full list at https://iam.ebrains.eu/auth/realms/hbp/.well-known/openid-configuration
 
-export default function initAuth(main) {
+function initAuth(main) {
   console.log("DOM content is loaded, initialising Keycloak client...");
   keycloak
     .init({ flow: "implicit" })
@@ -129,3 +129,40 @@ function verifyMessage(event) {
   // Login otherwise
   return login(YOUR_APP_SCOPES);
 }
+
+function checkPermissions(auth) {
+  const config = {
+    headers: {
+      Authorization: "Bearer " + auth.token,
+    },
+  };
+
+  const corsProxyUrl = "https://corsproxy.apps.tc.humanbrainproject.eu/";
+  const userInfoUrl =
+    corsProxyUrl +
+    "https://iam.ebrains.eu/auth/realms/hbp/protocol/openid-connect/userinfo";
+  return fetch(userInfoUrl, config)
+    .then(response => response.json())
+    .then((userInfo) => {
+      //return auth.loadUserInfo().then((userInfo) => {
+
+
+      console.log(userInfo);
+      if (
+        userInfo.roles.group.includes(
+          "group-dataset-curators"
+        ) &&
+        userInfo.roles.group.includes(
+          "group-in-depth-curators"
+        )
+      ) {
+        console.log("User is a curator");
+        auth.isCurator = true;
+      } else {
+        console.log("User is not a curator");
+        auth.isCurator = false;
+      }
+    });
+}
+
+export { initAuth, checkPermissions }

apps/nar-v3/src/main.jsx

@@ -29,7 +29,7 @@ import { green } from "@mui/material/colors";
 
 import Home, { getLoader as statsLoader } from "./routes/home";
 import ErrorPage from "./error-page";
-import initAuth from "./auth";
+import { initAuth, checkPermissions } from "./auth";
 import Datasets, { getLoader as datasetsLoader } from "./routes/datasets";
 import Dataset, { getLoader as datasetLoader } from "./routes/dataset";
 import PatchClampIndex, { getLoader as patchClampIndexLoader } from "./routes/patchClampRecordings";
@@ -120,6 +120,7 @@ export default function App(props) {
 }
 
 function renderApp(auth) {
+  checkPermissions(auth);
   ReactDOM.createRoot(document.getElementById("root")).render(
     <App auth={auth} />
   );

apps/nar-v3/src/routes/dataset.jsx

@@ -31,11 +31,16 @@ import { basicDatasetQuery, patchClampDatasetQuery, techniquesQuery } from "./qu
 
 export function getLoader(auth) {
   const loader = async ({ params }) => {
+    let stage = "RELEASED";
+    if (auth.isCurator) {
+      stage = "IN_PROGRESS";
+    }
     const techniques = await getKGItem(
       "datasets techniques",
       techniquesQuery,
       params.datasetId,
-      auth
+      auth,
+      stage
     );
     console.log(techniques.technique);
     let query = basicDatasetQuery;
@@ -45,7 +50,7 @@ export function getLoader(auth) {
     } else {
       console.log("Using basic dataset query");
     }
-    const datasetPromise = getKGItem("datasets detail", query, params.datasetId, auth);
+    const datasetPromise = getKGItem("datasets detail", query, params.datasetId, auth, stage);
     console.log(datasetPromise);
     return defer({ dataset: datasetPromise });
   };

apps/nar-v3/src/routes/datasets.jsx

@@ -30,7 +30,11 @@ import { ephysDatasetsQuery } from "./queryLibrary";
 
 export function getLoader(auth) {
   const loader = async () => {
-    const datasetsPromise = getKGData("datasets summary", ephysDatasetsQuery, auth);
+    let stage = "RELEASED";
+    if (auth.isCurator) {
+      stage = "IN_PROGRESS";
+    }
+    const datasetsPromise = getKGData("datasets summary", ephysDatasetsQuery, auth, {}, stage);
     console.log(datasetsPromise);
     return defer({ datasets: datasetsPromise });
   };

apps/nar-v3/src/routes/home.jsx

@@ -38,9 +38,13 @@ import ProgressIndicator from "../components/ProgressIndicator";
 
 export function getLoader(auth) {
   const loader = async () => {
+    let stage = "RELEASED";
+    if (auth.isCurator) {
+      stage = "IN_PROGRESS";
+    }
     const statisticsPromise = Promise.all([
-      count(patchClampRecordingsQuery, auth),
-      count(ephysDatasetsQuery, auth),
+      count(patchClampRecordingsQuery, auth, {}, stage),
+      count(ephysDatasetsQuery, auth, {}, stage),
     ]);
     console.log(statisticsPromise);
     return defer({ counts: statisticsPromise });

apps/nar-v3/src/routes/patchClampRecording.jsx

@@ -91,11 +91,16 @@ const query = buildKGQuery("core/TissueSample", [
 
 export function getLoader(auth) {
   const loader = async ({ params }) => {
+    let stage = "RELEASED";
+    if (auth.isCurator) {
+      stage = "IN_PROGRESS";
+    }
     const tissueSamplePromise = getKGItem(
       "patch clamp recordings detail",
       query,
       params.expId,
-      auth
+      auth,
+      stage
     );
     console.log(tissueSamplePromise);
     return defer({ tissueSample: tissueSamplePromise });

apps/nar-v3/src/routes/patchClampRecordings.jsx

@@ -48,7 +48,11 @@ export const query = buildKGQuery("core/TissueSample", [
 
 export function getLoader(auth) {
   const loader = async () => {
-    const tissueSamplesPromise = getKGData("patch clamp recordings summary", query, auth);
+    let stage = "RELEASED";
+    if (auth.isCurator) {
+      stage = "IN_PROGRESS";
+    }
+    const tissueSamplesPromise = getKGData("patch clamp recordings summary", query, auth, stage);
 
     console.log(tissueSamplesPromise);
     return defer({ tissueSamples: tissueSamplesPromise });