Merge pull request #2879 from objectcomputing/release/0.8

Deploy v0.8.14 into Production

Author: mkimberlin

.github/workflows/gradle-build-production.yml

@@ -87,6 +87,7 @@ jobs:
             --set-env-vars "^@^MICRONAUT_ENVIRONMENTS=cloud,google,gcp" \
             --set-env-vars "SLACK_WEBHOOK_URL=${{ secrets.SLACK_WEBHOOK_URL }}" \
             --set-env-vars "SLACK_BOT_TOKEN=${{ secrets.SLACK_BOT_TOKEN }}" \
+            --set-env-vars "SLACK_SIGNING_SECRET=${{ secrets.SLACK_PULSE_SIGNING_SECRET }}" \
             --platform "managed" \
             --max-instances 8 \
             --allow-unauthenticated

.github/workflows/gradle-deploy-develop.yml

@@ -112,6 +112,7 @@ jobs:
             --set-env-vars "^@^MICRONAUT_ENVIRONMENTS=dev,cloud,google,gcp" \
             --set-env-vars "SLACK_WEBHOOK_URL=${{ secrets.SLACK_WEBHOOK_URL }}" \
             --set-env-vars "SLACK_BOT_TOKEN=${{ secrets.SLACK_BOT_TOKEN }}" \
+            --set-env-vars "SLACK_SIGNING_SECRET=${{ secrets.SLACK_PULSE_SIGNING_SECRET }}" \
             --platform "managed" \
             --max-instances 2 \
             --allow-unauthenticated

.github/workflows/gradle-deploy-native-develop.yml

@@ -111,6 +111,7 @@ jobs:
             --set-env-vars "^@^MICRONAUT_ENVIRONMENTS=dev,cloud,google,gcp" \
             --set-env-vars "SLACK_WEBHOOK_URL=${{ secrets.SLACK_WEBHOOK_URL }}" \
             --set-env-vars "SLACK_BOT_TOKEN=${{ secrets.SLACK_BOT_TOKEN }}" \
+            --set-env-vars "SLACK_SIGNING_SECRET=${{ secrets.SLACK_PULSE_SIGNING_SECRET }}" \
             --platform "managed" \
             --max-instances 2 \
             --allow-unauthenticated

docker-compose.yaml

@@ -1,7 +1,7 @@
 version: '3'
 services:
   postgresql:
-    image: postgres:11.6
+    image: postgres:17.2
     environment:
       POSTGRES_DB: checkinsdb
       POSTGRES_USER: postgres

server/build.gradle

@@ -7,7 +7,7 @@ plugins {
     id "jacoco"
 }
 
-version "0.8.13"
+version "0.8.14"
 group "com.objectcomputing.checkins"
 
 repositories {

server/src/main/java/com/objectcomputing/checkins/configuration/CheckInsConfiguration.java

@@ -32,7 +32,7 @@ public static class ApplicationConfig {
         private GoogleApiConfig googleApi;
 
         @NotNull
-        private NotificationsConfig notifications;
+        private SlackConfig slack;
 
         @Getter
         @Setter
@@ -72,22 +72,16 @@ public static class ScopeConfig {
 
         @Getter
         @Setter
-        @ConfigurationProperties("notifications")
-        public static class NotificationsConfig {
-
-            @NotNull
-            private SlackConfig slack;
+        @ConfigurationProperties("slack")
+        public static class SlackConfig {
+            @NotBlank
+            private String webhookUrl;
 
-            @Getter
-            @Setter
-            @ConfigurationProperties("slack")
-            public static class SlackConfig {
-                @NotBlank
-                private String webhookUrl;
+            @NotBlank
+            private String botToken;
 
-                @NotBlank
-                private String botToken;
-            }
+            @NotBlank
+            private String signingSecret;
         }
     }
 }

server/src/main/java/com/objectcomputing/checkins/notifications/social_media/SlackPoster.java

@@ -21,8 +21,9 @@ public class SlackPoster {
     private CheckInsConfiguration configuration;
 
     public HttpResponse post(String slackBlock) {
-        // See if we can have a webhook URL.
-        String slackWebHook = configuration.getApplication().getNotifications().getSlack().getWebhookUrl();
+        // See if we have a webhook URL.
+        String slackWebHook = configuration.getApplication()
+                                           .getSlack().getWebhookUrl();
         if (slackWebHook != null) {
             // POST it to Slack.
             BlockingHttpClient client = slackClient.toBlocking();

server/src/main/java/com/objectcomputing/checkins/notifications/social_media/SlackSearch.java

@@ -10,6 +10,8 @@
 import com.slack.api.methods.response.conversations.ConversationsListResponse;
 import com.slack.api.methods.request.users.UsersLookupByEmailRequest;
 import com.slack.api.methods.response.users.UsersLookupByEmailResponse;
+import com.slack.api.methods.request.users.UsersInfoRequest;
+import com.slack.api.methods.response.users.UsersInfoResponse;
 
 import jakarta.inject.Singleton;
 import jakarta.inject.Inject;
@@ -32,7 +34,7 @@ public SlackSearch(CheckInsConfiguration checkInsConfiguration) {
     }
 
     public String findChannelId(String channelName) {
-        String token = configuration.getApplication().getNotifications().getSlack().getBotToken();
+        String token = configuration.getApplication().getSlack().getBotToken();
         if (token != null) {
             try {
                 MethodsClient client = Slack.getInstance().methods(token);
@@ -57,7 +59,7 @@ public String findChannelId(String channelName) {
     }
 
     public String findUserId(String userEmail) {
-        String token = configuration.getApplication().getNotifications().getSlack().getBotToken();
+        String token = configuration.getApplication().getSlack().getBotToken();
         if (token != null) {
             try {
                 MethodsClient client = Slack.getInstance().methods(token);
@@ -76,5 +78,26 @@ public String findUserId(String userEmail) {
         }
         return null;
     }
+
+    public String findUserEmail(String userId) {
+        String token = configuration.getApplication().getSlack().getBotToken();
+        if (token != null) {
+            try {
+                MethodsClient client = Slack.getInstance().methods(token);
+                UsersInfoResponse response = client.usersInfo(
+                    UsersInfoRequest.builder().user(userId).build()
+                );
+
+                if (response.isOk()) {
+                    return response.getUser().getProfile().getEmail();
+                }
+            } catch(IOException e) {
+                LOG.error("SlackSearch.findUserEmail: " + e.toString());
+            } catch(SlackApiException e) {
+                LOG.error("SlackSearch.findUserEmail: " + e.toString());
+            }
+        }
+        return null;
+    }
 }
 

server/src/main/java/com/objectcomputing/checkins/services/action_item/ActionItemController.java

@@ -1,7 +1,5 @@
 package com.objectcomputing.checkins.services.action_item;
 
-import com.objectcomputing.checkins.services.permissions.Permission;
-import com.objectcomputing.checkins.services.permissions.RequiredPermission;
 import io.micronaut.core.annotation.Nullable;
 import io.micronaut.http.HttpRequest;
 import io.micronaut.http.HttpResponse;
@@ -35,7 +33,6 @@ public ActionItemController(ActionItemServices actionItemServices) {
      * @return {@link HttpResponse <ActionItem>}
      */
     @Post
-    @RequiredPermission(Permission.CAN_CREATE_CHECKINS)
     public HttpResponse<ActionItem> createActionItem(@Body @Valid ActionItemCreateDTO actionItem,
                                                      HttpRequest<?> request) {
         ActionItem newActionItem = actionItemServices.save(new ActionItem(actionItem.getCheckinid(),
@@ -53,7 +50,6 @@ public HttpResponse<ActionItem> createActionItem(@Body @Valid ActionItemCreateDT
      * @return {@link HttpResponse< ActionItem >}
      */
     @Put
-    @RequiredPermission(Permission.CAN_UPDATE_CHECKINS)
     public HttpResponse<?> updateActionItem(@Body @Valid ActionItem actionItem, HttpRequest<?> request) {
         ActionItem updatedActionItem = actionItemServices.update(actionItem);
         return HttpResponse
@@ -70,7 +66,6 @@ public HttpResponse<?> updateActionItem(@Body @Valid ActionItem actionItem, Http
      * @param id, id of {@link ActionItem} to delete
      */
     @Delete("/{id}")
-    @RequiredPermission(Permission.CAN_UPDATE_CHECKINS)
     public HttpResponse<?> deleteActionItem(UUID id) {
         actionItemServices.delete(id);
         return HttpResponse
@@ -84,7 +79,6 @@ public HttpResponse<?> deleteActionItem(UUID id) {
      * @return {@link ActionItem}
      */
     @Get("/{id}")
-    @RequiredPermission(Permission.CAN_VIEW_CHECKINS)
     public ActionItem readActionItem(UUID id) {
         return actionItemServices.read(id);
     }
@@ -97,7 +91,6 @@ public ActionItem readActionItem(UUID id) {
      * @return {@link List < CheckIn > list of checkins}
      */
     @Get("/{?checkinid,createdbyid}")
-    @RequiredPermission(Permission.CAN_VIEW_CHECKINS)
     public Set<ActionItem> findActionItems(@Nullable UUID checkinid,
                                            @Nullable UUID createdbyid) {
         return actionItemServices.findByFields(checkinid, createdbyid);

server/src/main/java/com/objectcomputing/checkins/services/action_item/ActionItemServicesImpl.java

@@ -1,5 +1,7 @@
 package com.objectcomputing.checkins.services.action_item;
 
+import com.objectcomputing.checkins.services.permissions.Permission;
+import com.objectcomputing.checkins.services.permissions.RequiredPermission;
 import com.objectcomputing.checkins.services.validate.crud.CRUDValidator;
 import jakarta.inject.Named;
 import jakarta.inject.Singleton;
@@ -24,6 +26,7 @@ public ActionItemServicesImpl(ActionItemRepository actionItemRepo,
         this.crudValidator = crudValidator;
     }
 
+    @RequiredPermission(Permission.CAN_CREATE_CHECKINS)
     public ActionItem save(@Valid @NotNull ActionItem actionItem) {
         ActionItem actionItemRet;
 
@@ -45,6 +48,7 @@ public ActionItem save(@Valid @NotNull ActionItem actionItem) {
 
     }
 
+    @RequiredPermission(Permission.CAN_VIEW_CHECKINS)
     public ActionItem read(@NotNull UUID id) {
 
         ActionItem actionItemResult = actionItemRepo.findById(id).orElse(null);
@@ -56,6 +60,7 @@ public ActionItem read(@NotNull UUID id) {
 
     }
 
+    @RequiredPermission(Permission.CAN_UPDATE_CHECKINS)
     public ActionItem update(@Valid @NotNull ActionItem actionItem) {
         ActionItem actionItemRet = null;
 
@@ -68,6 +73,7 @@ public ActionItem update(@Valid @NotNull ActionItem actionItem) {
 
     }
 
+    @RequiredPermission(Permission.CAN_VIEW_CHECKINS)
     public Set<ActionItem> findByFields(UUID checkinid, UUID createdbyid) {
 
         crudValidator.validatePermissionsFindByFields(checkinid, createdbyid);
@@ -79,6 +85,7 @@ public Set<ActionItem> findByFields(UUID checkinid, UUID createdbyid) {
 
     }
 
+    @RequiredPermission(Permission.CAN_UPDATE_CHECKINS)
     public void delete(@NotNull UUID id) {
         ActionItem actionItemResult = actionItemRepo.findById(id).orElse(null);
 

server/src/main/java/com/objectcomputing/checkins/services/agenda_item/AgendaItemController.java

@@ -2,8 +2,6 @@
 
 import com.objectcomputing.checkins.exceptions.NotFoundException;
 import com.objectcomputing.checkins.services.checkins.CheckIn;
-import com.objectcomputing.checkins.services.permissions.Permission;
-import com.objectcomputing.checkins.services.permissions.RequiredPermission;
 import io.micronaut.core.annotation.Nullable;
 import io.micronaut.http.HttpResponse;
 import io.micronaut.http.HttpStatus;
@@ -46,7 +44,6 @@ class AgendaItemController {
      * @return {@link HttpResponse <AgendaItem>}
      */
     @Post("/")
-    @RequiredPermission(Permission.CAN_CREATE_CHECKINS)
     HttpResponse<AgendaItem> createAgendaItem(@Body @Valid AgendaItemCreateDTO agendaItem) {
         AgendaItem createAgendaItem = agendaItemServices.save(new AgendaItem(agendaItem.getCheckinid(), agendaItem.getCreatedbyid(), agendaItem.getDescription()));
         URI location = UriBuilder.of(PATH).path(createAgendaItem.getId().toString()).build();
@@ -61,7 +58,6 @@ HttpResponse<AgendaItem> createAgendaItem(@Body @Valid AgendaItemCreateDTO agend
      * @return {@link HttpResponse<AgendaItem>}
      */
     @Put("/")
-    @RequiredPermission(Permission.CAN_UPDATE_CHECKINS)
     HttpResponse<?> updateAgendaItem(@Body @Valid AgendaItem agendaItem) {
         if (agendaItem == null) {
             return HttpResponse.ok();
@@ -81,7 +77,6 @@ HttpResponse<?> updateAgendaItem(@Body @Valid AgendaItem agendaItem) {
      * @return a Set of {@link CheckIn}
      */
     @Get("/{?checkinid,createdbyid}")
-    @RequiredPermission(Permission.CAN_VIEW_CHECKINS)
     Set<AgendaItem> findAgendaItems(@Nullable UUID checkinid, @Nullable UUID createdbyid) {
         return agendaItemServices.findByFields(checkinid, createdbyid);
     }
@@ -93,7 +88,6 @@ Set<AgendaItem> findAgendaItems(@Nullable UUID checkinid, @Nullable UUID created
      * @return {@link AgendaItem}
      */
     @Get("/{id}")
-    @RequiredPermission(Permission.CAN_VIEW_CHECKINS)
     AgendaItem readAgendaItem(UUID id) {
         AgendaItem read = agendaItemServices.read(id);
         if (read == null) {
@@ -112,4 +106,4 @@ AgendaItem readAgendaItem(UUID id) {
     void deleteAgendaItem(UUID id) {
         agendaItemServices.delete(id);
     }
-}
+}

server/src/main/java/com/objectcomputing/checkins/services/agenda_item/AgendaItemServicesImpl.java

@@ -1,5 +1,7 @@
 package com.objectcomputing.checkins.services.agenda_item;
 
+import com.objectcomputing.checkins.services.permissions.Permission;
+import com.objectcomputing.checkins.services.permissions.RequiredPermission;
 import com.objectcomputing.checkins.exceptions.BadArgException;
 import com.objectcomputing.checkins.exceptions.PermissionException;
 import com.objectcomputing.checkins.services.checkins.CheckIn;
@@ -44,6 +46,7 @@ public AgendaItemServicesImpl(CheckInRepository checkinRepo,
     }
     // todo remove manual validations throughout class in favor of jakarta validations at api level.
     @Override
+    @RequiredPermission(Permission.CAN_CREATE_CHECKINS)
     public AgendaItem save(AgendaItem agendaItem) {
         AgendaItem agendaItemRet = null;
         if (agendaItem != null) {
@@ -82,6 +85,7 @@ public AgendaItem save(AgendaItem agendaItem) {
     }
 
     @Override
+    @RequiredPermission(Permission.CAN_VIEW_CHECKINS)
     public AgendaItem read(@NotNull UUID id) {
         final UUID currentUserId = currentUserServices.getCurrentUser().getId();
         boolean canViewAllCheckins = checkInServices.canViewAllCheckins(currentUserId);
@@ -102,6 +106,7 @@ public AgendaItem read(@NotNull UUID id) {
 
 
     @Override
+    @RequiredPermission(Permission.CAN_UPDATE_CHECKINS)
     public AgendaItem update(AgendaItem agendaItem) {
         AgendaItem agendaItemRet = null;
 
@@ -138,6 +143,7 @@ public AgendaItem update(AgendaItem agendaItem) {
     }
 
     @Override
+    @RequiredPermission(Permission.CAN_VIEW_CHECKINS)
     public Set<AgendaItem> findByFields(@Nullable UUID checkinId, @Nullable UUID createdById) {
         MemberProfile currentUser = currentUserServices.getCurrentUser();
         if(!checkInServices.doesUserHaveViewAccess(currentUser.getId(), checkinId, createdById)){
@@ -174,4 +180,4 @@ private void validate(boolean isError, String message, Object... args) {
             throw new BadArgException(String.format(message, args));
         }
     }
-}
+}

server/src/main/java/com/objectcomputing/checkins/services/certification/CertificationController.java

@@ -1,7 +1,5 @@
 package com.objectcomputing.checkins.services.certification;
 
-import com.objectcomputing.checkins.services.permissions.Permission;
-import com.objectcomputing.checkins.services.permissions.RequiredPermission;
 import io.micronaut.http.HttpStatus;
 import io.micronaut.http.annotation.Body;
 import io.micronaut.http.annotation.Controller;
@@ -68,7 +66,6 @@ Certification create(@Body @Valid CertificationDTO certification) {
      * @return the updated {@link Certification}
      */
     @Put("/{id}")
-    @RequiredPermission(Permission.CAN_MANAGE_CERTIFICATIONS)
     Certification update(@NotNull UUID id, @Body @Valid CertificationDTO certification) {
         return certificationService.updateCertification(new Certification(
                 id,
@@ -86,7 +83,6 @@ Certification update(@NotNull UUID id, @Body @Valid CertificationDTO certificati
      * @return the merged {@link Certification}
      */
     @Post("/merge")
-    @RequiredPermission(Permission.CAN_MANAGE_CERTIFICATIONS)
     Certification mergeCertifications(@Valid @Body CertificationMergeDTO certificationMergeDTO) {
         return certificationService.mergeCertifications(certificationMergeDTO.getSourceId(), certificationMergeDTO.getTargetId());
     }

server/src/main/java/com/objectcomputing/checkins/services/certification/CertificationServiceImpl.java

@@ -4,6 +4,7 @@
 import com.objectcomputing.checkins.services.memberprofile.MemberProfileRepository;
 import com.objectcomputing.checkins.services.memberprofile.currentuser.CurrentUserServices;
 import com.objectcomputing.checkins.services.permissions.Permission;
+import com.objectcomputing.checkins.services.permissions.RequiredPermission;
 import com.objectcomputing.checkins.services.role.role_permissions.RolePermissionServices;
 import io.micronaut.core.annotation.Nullable;
 import jakarta.transaction.Transactional;
@@ -59,6 +60,7 @@ public Certification saveCertification(Certification certification) {
     }
 
     @Override
+    @RequiredPermission(Permission.CAN_MANAGE_CERTIFICATIONS)
     public Certification updateCertification(Certification certification) {
         // Fail if a certification with the same name already exists (but it's not this one)
         validate(certificationRepository.getByName(certification.getName())
@@ -109,6 +111,7 @@ public void deleteEarnedCertification(UUID id) {
 
     @Override
     @Transactional
+    @RequiredPermission(Permission.CAN_MANAGE_CERTIFICATIONS)
     public Certification mergeCertifications(UUID sourceId, UUID targetId) {
         Optional<Certification> target = certificationRepository.findById(targetId);
         Optional<Certification> source = certificationRepository.findById(sourceId);