Merge pull request #1745 from InformaticsMatters/dev

OliverDudgeon · web-flow · commit b432d7e14fa3 · 2025-12-27T13:04:04.000Z
refactor: improve API for checking project user permissions
diff --git a/src/hooks/projectHooks.ts b/src/hooks/projectHooks.ts
@@ -1,3 +1,4 @@
+import { type ProjectDetail } from "@squonk/data-manager-client";
 import { useGetProjects } from "@squonk/data-manager-client/project";
 
 import { useRouter } from "next/router";
@@ -6,11 +7,114 @@ import { PROJECT_LOCAL_STORAGE_KEY, writeToLocalStorage } from "../utils/next/lo
 import { useDMAuthorizationStatus } from "./useIsAuthorized";
 import { useKeycloakUser } from "./useKeycloakUser";
 
+// --- Composable role-checking API ---
+export type ProjectRole = "administrator" | "creator" | "editor" | "observer";
+
+export const hasProjectRole = (
+  project: ProjectDetail | null,
+  username: string | undefined,
+  roles: ProjectRole | ProjectRole[],
+): boolean => {
+  if (!project || !username) {
+    return false;
+  }
+  const roleList = Array.isArray(roles) ? roles : [roles];
+  return roleList.some((role) => {
+    switch (role) {
+      case "creator":
+        return project.creator === username;
+      case "editor":
+        return Array.isArray(project.editors) && project.editors.includes(username);
+      case "administrator":
+        return Array.isArray(project.administrators) && project.administrators.includes(username);
+      case "observer":
+        return Array.isArray(project.observers) && project.observers.includes(username);
+      default:
+        return false;
+    }
+  });
+};
+
+/**
+ * Hook to check if a user has any of the specified roles on a project by ID.
+ * @param projectId Project ID
+ * @param roles Single role or array of roles
+ * @param username Optional username (defaults to current user)
+ */
+export const useHasProjectRole = (
+  projectId: string | undefined,
+  roles: ProjectRole | ProjectRole[],
+  username?: string,
+): boolean => {
+  const { user } = useKeycloakUser();
+  const project = useProjectFromId(projectId ?? "");
+  const checkUser = username ?? user.username;
+  return hasProjectRole(project, checkUser, roles);
+};
+
+/**
+ * Hook to check if a user has any of the specified roles on the current project.
+ * @param roles Single role or array of roles
+ * @param username Optional username (defaults to current user)
+ */
+export const useHasProjectRoleOnCurrentProject = (
+  roles: ProjectRole | ProjectRole[],
+  username?: string,
+): boolean => {
+  const { user } = useKeycloakUser();
+  const project = useCurrentProject();
+  const checkUser = username ?? user.username;
+  return hasProjectRole(project, checkUser, roles);
+};
+export const isProjectCreator = (
+  project: ProjectDetail | null,
+  username: string | undefined,
+): boolean => {
+  return !!project && !!username && project.creator === username;
+};
+
 export type ProjectId = string | undefined;
 export type ProjectLocalStoragePayload = { projectId: ProjectId; version: number };
 
 export const projectPayload = (projectId: ProjectId) => ({ version: 1, projectId });
 
+// --- Pure role-checking utilities ---
+
+export const isProjectEditor = (
+  project: ProjectDetail | null,
+  username: string | undefined,
+): boolean => {
+  return (
+    !!project && !!username && Array.isArray(project.editors) && project.editors.includes(username)
+  );
+};
+
+export const isProjectAdministrator = (
+  project: ProjectDetail | null,
+  username: string | undefined,
+): boolean => {
+  return (
+    !!project &&
+    !!username &&
+    Array.isArray(project.administrators) &&
+    project.administrators.includes(username)
+  );
+};
+
+export const isProjectObserver = (
+  project: ProjectDetail | null,
+  username: string | undefined,
+): boolean => {
+  return (
+    !!project &&
+    !!username &&
+    Array.isArray(project.observers) &&
+    project.observers.includes(username)
+  );
+};
+
+// --- Hooks for getting current project and project ID ---
+
 /**
  * @returns The selected projectId from the project key of the query parameters
  */
@@ -55,43 +159,96 @@ export const useCurrentProjectId = () => {
 /**
  * @returns The project associated with the project-id in the current url query parameters
  */
-export const useCurrentProject = () => {
+export const useCurrentProject = (): ProjectDetail | null => {
   const isDMAuthorized = useDMAuthorizationStatus();
   const { projectId } = useCurrentProjectId();
   const { data } = useGetProjects(undefined, { query: { enabled: !!isDMAuthorized } });
   const projects = data?.projects;
-
   return projects?.find((project) => project.project_id === projectId) ?? null;
 };
 
 /**
  * @param projectId Id of the project
  * @returns The project object matching the ID if it exists
  */
-export const useProjectFromId = (projectId: string) => {
+export const useProjectFromId = (projectId: string): ProjectDetail | null => {
   const { data } = useGetProjects();
-
   const projects = data?.projects;
-
-  return projects?.find((project) => project.project_id === projectId);
+  return projects?.find((project) => project.project_id === projectId) ?? null;
 };
 
-export const useIsUserAdminOrEditorOfCurrentProject = () => {
+// --- Internal shared hook for role checks ---
+const useProjectRoleCheck = (
+  getProject: () => ProjectDetail | null,
+  roleCheck: (project: ProjectDetail | null, username: string | undefined) => boolean,
+  username?: string,
+): boolean => {
   const { user } = useKeycloakUser();
-  const project = useCurrentProject();
+  const project = getProject();
+  const checkUser = username ?? user.username;
+  return roleCheck(project, checkUser);
+};
 
-  return (
-    !!user.username &&
-    (!!project?.editors.includes(user.username) ||
-      !!project?.administrators.includes(user.username))
+// --- Hooks for role checks by project ID ---
+
+/**
+ * Check if a user (or current user) is admin or editor of the project with the given ID
+ */
+export const useIsAdminOrEditorOfProject = (projectId: string | undefined, username?: string) =>
+  useProjectRoleCheck(
+    () => useProjectFromId(projectId ?? ""),
+    (project, user) => isProjectEditor(project, user) || isProjectAdministrator(project, user),
+    username,
   );
-};
 
-export const useIsEditorOfCurrentProject = () => {
-  const currentProject = useCurrentProject();
+/**
+ * Check if a user (or current user) is admin or editor of the current project
+ */
+export const useIsUserAdminOrEditorOfCurrentProject = (username?: string) =>
+  useProjectRoleCheck(
+    useCurrentProject,
+    (project, user) => isProjectEditor(project, user) || isProjectAdministrator(project, user),
+    username,
+  );
 
-  const { user } = useKeycloakUser();
-  const isEditor = !!user.username && currentProject?.editors.includes(user.username);
+/**
+ * Check if a user (or current user) is editor of the current project
+ */
+export const useIsEditorOfCurrentProject = (username?: string) =>
+  useProjectRoleCheck(useCurrentProject, isProjectEditor, username);
 
-  return isEditor;
-};
+/**
+ * Check if a user (or current user) is creator of the project with the given ID
+ */
+export const useIsCreatorOfProject = (projectId: string | undefined, username?: string) =>
+  useProjectRoleCheck(() => useProjectFromId(projectId ?? ""), isProjectCreator, username);
+
+/**
+ * Check if a user (or current user) is observer of the project with the given ID
+ */
+export const useIsObserverOfProject = (projectId: string | undefined, username?: string) =>
+  useProjectRoleCheck(() => useProjectFromId(projectId ?? ""), isProjectObserver, username);
+
+/**
+ * Check if a user (or current user) is administrator of the project with the given ID
+ */
+export const useIsAdministratorOfProject = (projectId: string | undefined, username?: string) =>
+  useProjectRoleCheck(() => useProjectFromId(projectId ?? ""), isProjectAdministrator, username);
+
+/**
+ * Check if a user (or current user) is creator of the current project
+ */
+export const useIsCreatorOfCurrentProject = (username?: string) =>
+  useProjectRoleCheck(useCurrentProject, isProjectCreator, username);
+
+/**
+ * Check if a user (or current user) is observer of the current project
+ */
+export const useIsObserverOfCurrentProject = (username?: string) =>
+  useProjectRoleCheck(useCurrentProject, isProjectObserver, username);
+
+/**
+ * Check if a user (or current user) is administrator of the current project
+ */
+export const useIsAdministratorOfCurrentProject = (username?: string) =>
+  useProjectRoleCheck(useCurrentProject, isProjectAdministrator, username);
