Merge pull request #203 from HFragnaud/master

#201, #168

Author: HFragnaud

model_validation_api/urls.py

@@ -23,7 +23,7 @@
                     IsCollabMemberRest,
                     Results,
                     CollabAppID,
-
+                    IsSuperUserRest,
                     )
 
 # from django.contrib.auth.decorators import login_required
@@ -45,6 +45,10 @@
     url(r'^appidrest/$',
          AppIDRest.as_view(),
         ),
+     url(r'^issuperuser/$',
+         IsSuperUserRest.as_view(),
+        ),
+        
     # url(r'^notificationrest/$',
     #     NotificationRest.as_view(),
     #     ), 

model_validation_api/validation_framework_toolbox/user_auth_functions.py

@@ -18,7 +18,7 @@
 stream_handler.setLevel(logging.DEBUG)
 logger.addHandler(stream_handler)
 
-
+admin_id='13947'
 
 
 def get_authorization_header(request):
@@ -217,11 +217,12 @@ def is_authorised(request, collab_id):
         if request.META.get("HTTP_AUTHORIZATION", None) == None :
             return False
         else: 
-            
-            return _is_collaborator_token(request, collab_id)
+            auth = _is_collaborator_token(request, collab_id)
+            auth = _is_collaborator_token(request, admin_id)
+            return auth
 
     else :       
-        if not _is_collaborator(request, collab_id):
+        if not (_is_collaborator(request, collab_id) or _is_collaborator(request,admin_id)):
             return False
         else: 
             return True 

model_validation_api/views.py

@@ -618,10 +618,12 @@ def put(self, request, format=None):
 
             if param_web_app==True:
                 original_instance = ScientificModelInstance.objects.get(id=instance.get('id'))
-                #check if version is editable
-                if not _are_model_instance_editable(instance):
-                    return Response("This version is no longer editable as there is at least one result associated with it.", status=status.HTTP_400_BAD_REQUEST)
-    
+                #check if version is editable - only if you are not super user
+                if not is_authorised(request,settings.ADMIN_COLLAB_ID):
+                    if not _are_model_instance_editable(instance):
+                        return Response("This version is no longer editable as there is at least one result associated with it.", status=status.HTTP_400_BAD_REQUEST)
+                
+                
                 #check if versions are unique
                 if not _are_model_instance_version_unique(instance) :
                     return Response("Oh no... The specified version name already exists for this model. Please, give me a new name", status=status.HTTP_400_BAD_REQUEST)
@@ -669,8 +671,9 @@ def put(self, request, format=None):
                 return HttpResponseForbidden()
 
             #check if version is editable
-            if not _are_model_instance_editable(instance):
-                return Response("This version is no longer editable as there is at least one result associated with it.", status=status.HTTP_400_BAD_REQUEST)
+            if not is_authorised(request, settings.ADMIN_COLLAB_ID):
+                if not _are_model_instance_editable(instance):
+                    return Response("This version is no longer editable as there is at least one result associated with it.", status=status.HTTP_400_BAD_REQUEST)
 
             #check if versions are unique
             if not _are_model_instance_version_unique(instance) :
@@ -925,16 +928,7 @@ def get(self, request, format=None, **kwargs):
 
                 collab_params = CollabParameters.objects.get(id = app_id )
 
-                collab_ids = list(CollabParameters.objects.all().values_list('collab_id', flat=True).distinct())
-         
-                collab_ids_new = []
-                for collab in collab_ids:
-                    if is_authorised(request, collab):
-                        collab_ids_new.append(collab)
-           
-                all_ctx_from_collab = CollabParameters.objects.filter(collab_id__in=collab_ids_new).distinct()
-                
-              
+               
                 species_filter = collab_params.species.split(",")
                 if species_filter==[u'']:
                     species_filter = list(Param_Species.objects.all().values_list('authorized_value', flat=True))+[u'']
@@ -965,14 +959,24 @@ def get(self, request, format=None, **kwargs):
 
 
                 rq1 = ScientificModel.objects.filter(
-                        private=1,
-                        app__in=all_ctx_from_collab.values("id"), 
+                        private=1, 
                         species__in=species_filter, 
                         brain_region__in=brain_region_filter, 
                         cell_type__in=cell_type_filter, 
                         model_type__in=model_type_filter,
                         organization__in=organization_filter).prefetch_related()
-         
+                
+                ##check permissions for Collabs
+                collab_ids = list(rq1.prefetch_related().values_list('app__collab_id', flat=True).distinct())
+                collab_ids_new = []
+                for collab in collab_ids:
+                    if is_authorised(request, collab):
+                        collab_ids_new.append(collab)
+           
+                all_ctx_from_collab = CollabParameters.objects.filter(collab_id__in=collab_ids_new).distinct()
+                rq1 = rq1.filter(app__in = all_ctx_from_collab.values("id"))
+              
+
                 rq2 = ScientificModel.objects.filter (
                     private=0, 
                     species__in=species_filter, 
@@ -1495,8 +1499,9 @@ def put(self, request, format=None):
                     return Response("To edit a test instance, you need to give an id, or a test_definition_id with a version, or a test_definition_alias with a version ", status=status.HTTP_400_BAD_REQUEST)    
 
             #check if version is editable
-            if not _are_test_code_editable(test_code):
-                return Response("This version is no longer editable as there is at least one result associated with it", status=status.HTTP_400_BAD_REQUEST)
+            if not is_authorised(request,settings.ADMIN_COLLAB_ID):
+                if not _are_test_code_editable(test_code):
+                    return Response("This version is no longer editable as there is at least one result associated with it", status=status.HTTP_400_BAD_REQUEST)
 
             #check if versions are unique
             if not _are_test_code_version_unique(test_code) :
@@ -1512,7 +1517,7 @@ def put(self, request, format=None):
                serializer.save() 
                list_updated.append(serializer.data)
 
-        return Response({'uuid':list_updated}, status=status.HTTP_202_ACCEPTED)
+        return Response({'uuid':list_updated.id}, status=status.HTTP_202_ACCEPTED)
 
 
     def get_serializer_class(self): #############not used???? TO delete?
@@ -1977,6 +1982,21 @@ def get(self, request, format=None, **kwargs):
         })
 
 
+class IsSuperUserRest (APIView):
+    """
+    Class to check if user is an admin
+    """
+    def get(self, request, format=None, **kwargs):
+        """
+        :param app_id: id of the application
+        :type app_id: int
+        :return: bool: is_member
+        """
+    
+        is_superuser = is_authorised(request, settings.ADMIN_COLLAB_ID)
+        return Response({
+            'is_superuser':  is_superuser,
+        })
 
 """
 Model of table model_validation_api_validationtestresult
@@ -2149,7 +2169,7 @@ def get(self, request, format=None, **kwargs):
         for result in results:
             if not math.isnan(float(result.score)) and not math.isnan(float(result.normalized_score)) and not math.isinf(float(result.score)) and not math.isinf(float(result.normalized_score)):
                 new_results.append(result)
-                
+
         data_to_return = organise_results_dict(detailed_view, param_order, new_results, serializer_context)
 
         # file = get_storage_file_by_id(request)

tests/karma.conf.js

@@ -178,6 +178,8 @@ module.exports = function(config) {
             '../validation_service/app/static/angular-moment-1.1.0/angular-moment.js',
 
             '../validation_service/app/static/palette.js-master/palette.js',
+
+            '../validation_service/app/static/angularUtils-pagination/dirPagination.js',
             //.js | files
             './environment.js',
             '../validation_service/app/js/*.js',

tests/test_framework/test_services/test_ParametersConfigurationServices.spec.js

@@ -159,15 +159,22 @@ describe('Testing service: Collab Parameters', function() {
         expect(CollabParameters.getParametersByType('model_type')).toEqual([]);
     });
 
+    it('should move an element at the end of an array', function() {
+        var array = ["a", "b", "f", "c", "d", "e"]
+        var res = CollabParameters._move_element_at_the_end_of_array("f", array)
+        expect(res).toEqual(["a", "b", "c", "d", "e", "f"])
+    });
+
     it('should get the parameters if they are set and not the defaults parameters', function() {
+        spyOn(CollabParameters, '_move_element_at_the_end_of_array').and.returnValue(["fMRI", 'electrophysiology', 'Other'])
+
         CollabParameters.initConfiguration();
-        CollabParameters.addParameter('data_modalities', {
-            "id": "4631f734-1661-4e16-94f6-5aeeec8ce5c3",
-            "authorized_value": "electrophysiology"
-        })
-        var res = CollabParameters.getParametersOrDefaultByType('data_modalities');
+        CollabParameters.addParameter('data_modalities', "fMRI")
+        CollabParameters.addParameter('data_modalities', "Other")
+        CollabParameters.addParameter('data_modalities', "electrophysiology")
 
-        var expected_answer = [Object({ id: '4631f734-1661-4e16-94f6-5aeeec8ce5c3', authorized_value: 'electrophysiology' })];
+        var res = CollabParameters.getParametersOrDefaultByType('data_modalities');
+        var expected_answer = ['fMRI', 'electrophysiology', 'Other'];
         expect(res).toEqual(expected_answer)
     });
 

validation_service/app/css/Model_catalog.css

@@ -30,6 +30,30 @@
         background-color: #e1ebf0;
     }
 
+    .superuser-button {
+        white-space: nowrap;
+        padding: 2px 10px;
+        cursor: pointer;
+        background-color: #c43427;
+        border: 2px solid #c43427;
+        color: white;
+        text-align: center;
+        text-decoration: none;
+        font-weight: bold;
+        outline: none;
+        border-radius: 6px;
+    }
+    
+    .superuser-button:hover {
+        background-color: #c43427;
+        color: white;
+    }
+    
+    .superuser-button:active {
+        background-color: #c43427;
+        transform: translateY(1px);
+    }
+    
     .button-MC {
         white-space: nowrap;
         padding: 2px 10px;

validation_service/app/css/app.css

@@ -55,6 +55,12 @@
     overflow: auto;
 }
 
+#VF-model-table-all-data,
+table {
+    min-width: 50%;
+    max-width: 90%;
+}
+
 #VF-model-table-all-results-not-more-than-three {
     display: block;
     margin-left: auto;
@@ -319,6 +325,10 @@
     overflow: auto;
 }
 
+.th-td-limited-size {
+    width: 8%;
+}
+
 
 /* Preloader */
 
@@ -332,6 +342,26 @@
     z-index: 99;
 }
 
+#preloader-models {
+    position: fixed;
+    top: 70%;
+    left: 0;
+    right: 50%;
+    bottom: 0;
+    background-color: #fff;
+    z-index: 99;
+}
+
+#preloader-tests {
+    position: fixed;
+    top: 70%;
+    left: 50%;
+    right: 0;
+    bottom: 0;
+    background-color: #fff;
+    z-index: 99;
+}
+
 #status {
     width: 200px;
     height: 200px;

validation_service/app/js/controller.js

@@ -55,12 +55,21 @@ testApp.controller('HomeCtrl', ['$scope', '$rootScope', '$http', '$location', "S
                         $scope.models = data;
                         $scope.$apply();
 
+                        $('#status').fadeOut(); // will first fade out the loading animation 
+                        $('#preloader-models').delay(350).fadeOut('slow'); // will fade out the white DIV that covers the website. 
+                        $('#models-panel').delay(350).css({ 'overflow': 'visible' });
+
                         $scope._load_other_models();
                     });
 
                     DataHandler.loadTests({ app_id: $scope.app_id }).then(function(data) {
                         $scope.tests = data;
                         $scope.$apply()
+
+                        $('#status-tests').fadeOut(); // will first fade out the loading animation 
+                        $('#preloader-tests').delay(350).fadeOut('slow'); // will fade out the white DIV that covers the website. 
+                        $('#tests-panel').delay(350).css({ 'overflow': 'visible' });
+
                     });
                 });
             } else {
@@ -117,10 +126,6 @@ testApp.controller('ValTestCtrl', ['$scope', '$rootScope', '$http', '$location',
                     $scope.is_collab_member = $scope.is_collab_member.is_member;
                 });
 
-                // $scope.test_list = ValidationTestDefinitionRest.get({ app_id: app_id }, function(data) {});
-
-                // $scope.tests = ValidationTestDefinitionRest.get({ app_id: app_id }, function(data) {});
-
             });
         });
 
@@ -234,7 +239,6 @@ testApp.controller('ValModelDetailCtrl', ['$scope', '$rootScope', '$http', '$loc
                                     $scope.$apply();
                                 });
                                 $scope.init_graph = init_graph.values;
-                                console.log("init graph", $scope.init_graph, $scope.init_graph.length)
                             });
 
                             DataHandler.loadModels({ app_id: $scope.app_id }).then(function(data) {
@@ -301,9 +305,9 @@ testApp.directive("precision", function() {
     };
 });
 
-testApp.controller('ValTestDetailCtrl', ['$scope', '$rootScope', '$http', '$location', '$stateParams', '$state', 'ValidationTestDefinitionRest', 'ValidationTestCodeRest', 'CollabParameters', 'TestCommentRest', "IsCollabMemberRest", "Graphics", "Context", 'TestTicketRest', 'AuthorizedCollabParameterRest', 'ValidationTestAliasRest', 'NotificationRest', 'AreVersionsEditableRest', 'DataHandler',
+testApp.controller('ValTestDetailCtrl', ['$scope', '$rootScope', '$http', '$location', '$stateParams', '$state', 'ValidationTestDefinitionRest', 'ValidationTestCodeRest', 'CollabParameters', 'TestCommentRest', "IsCollabMemberRest", "Graphics", "Context", 'TestTicketRest', 'AuthorizedCollabParameterRest', 'ValidationTestAliasRest', 'NotificationRest', 'AreVersionsEditableRest', 'DataHandler', 'IsSuperUserRest',
 
-    function($scope, $rootScope, $http, $location, $stateParams, $state, ValidationTestDefinitionRest, ValidationTestCodeRest, CollabParameters, TestCommentRest, IsCollabMemberRest, Graphics, Context, TestTicketRest, AuthorizedCollabParameterRest, ValidationTestAliasRest, NotificationRest, AreVersionsEditableRest, DataHandler) {
+    function($scope, $rootScope, $http, $location, $stateParams, $state, ValidationTestDefinitionRest, ValidationTestCodeRest, CollabParameters, TestCommentRest, IsCollabMemberRest, Graphics, Context, TestTicketRest, AuthorizedCollabParameterRest, ValidationTestAliasRest, NotificationRest, AreVersionsEditableRest, DataHandler, IsSuperUserRest) {
 
         $scope.init_graph, $scope.graphic_data, $scope.init_checkbox, $scope.graphic_options;
         $scope.data_for_table;
@@ -640,6 +644,8 @@ testApp.controller('ValTestDetailCtrl', ['$scope', '$rootScope', '$http', '$loca
             $scope.ctx = Context.getCtx();
             $scope.app_id = Context.getAppID();
 
+            $scope.isSuperUser = IsSuperUserRest.get({ app_id: $scope.app_id })
+
             CollabParameters.setService($scope.ctx).then(function() {
 
                 $scope.detail_test = ValidationTestDefinitionRest.get({ app_id: $scope.app_id, id: $stateParams.uuid });
@@ -1411,9 +1417,10 @@ ModelCatalogApp.controller('ModelCatalogDetailCtrl', ['$scope', '$rootScope', '$
     }
 ]);
 
-ModelCatalogApp.controller('ModelCatalogEditCtrl', ['$scope', '$rootScope', '$http', '$location', '$state', '$stateParams', 'ScientificModelRest', 'ScientificModelInstanceRest', 'ScientificModelImageRest', 'CollabParameters', 'Context', 'ScientificModelAliasRest', 'AreVersionsEditableRest', 'DataHandler', 'clbStorage',
+ModelCatalogApp.controller('ModelCatalogEditCtrl', ['$scope', '$rootScope', '$http', '$location', '$state', '$stateParams', 'ScientificModelRest', 'ScientificModelInstanceRest', 'ScientificModelImageRest', 'CollabParameters', 'Context', 'ScientificModelAliasRest', 'AreVersionsEditableRest', 'DataHandler', 'clbStorage', 'IsSuperUserRest',
+
+    function($scope, $rootScope, $http, $location, $state, $stateParams, ScientificModelRest, ScientificModelInstanceRest, ScientificModelImageRest, CollabParameters, Context, ScientificModelAliasRest, AreVersionsEditableRest, DataHandler, clbStorage, IsSuperUserRest) {
 
-    function($scope, $rootScope, $http, $location, $state, $stateParams, ScientificModelRest, ScientificModelInstanceRest, ScientificModelImageRest, CollabParameters, Context, ScientificModelAliasRest, AreVersionsEditableRest, DataHandler, clbStorage) {
 
         $scope.change_collab_url_to_real_url = function() {
             //COULD BE IN A SERVICE
@@ -1519,7 +1526,6 @@ ModelCatalogApp.controller('ModelCatalogEditCtrl', ['$scope', '$rootScope', '$ht
             return array.indexOf(value) > -1;
         }
 
-
         Context.setService().then(function() {
 
             $scope.Context = Context;
@@ -1530,6 +1536,8 @@ ModelCatalogApp.controller('ModelCatalogEditCtrl', ['$scope', '$rootScope', '$ht
             //     $scope.models = data
             //     $scope.$apply()
             // });
+            $scope.isSuperUser = IsSuperUserRest.get({ app_id: $scope.app_id })
+
 
             CollabParameters.setService($scope.ctx).then(function() {
 
@@ -1543,7 +1551,7 @@ ModelCatalogApp.controller('ModelCatalogEditCtrl', ['$scope', '$rootScope', '$ht
 
                 $scope.version_is_editable = [];
                 $scope.model = ScientificModelRest.get({ app_id: $scope.app_id, id: $stateParams.uuid });
-                console.log("model", $scope.model)
+
                 $scope.model.$promise.then(function(model) {
                     $scope.change_collab_url_to_real_url();
                 });