feat: Add support for product export in UI

[sradevski]

I've keep the PR simple, so it is missing column selection (we should discuss if we event want it now or in the polish stage) and push notifications (similarly, needs discussion if we want to tackle it right away).

One thing we need to improve (outside of the scope here) is to preserve query params on handleSuccess call, so filters and such is not lost if you eg. go to create and go back.

CLOSES CC-234

[changeset-bot]

⚠️ No Changeset found

Latest commit: 0d4099f

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
medusa-dashboard	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Jul 29, 2024 6:31pm

6 Skipped Deployments

Name	Status	Preview	Comments	Updated (UTC)
api-reference	⬜️ Ignored (Inspect)			Jul 29, 2024 6:31pm
api-reference-v2	⬜️ Ignored (Inspect)	Visit Preview		Jul 29, 2024 6:31pm
docs-ui	⬜️ Ignored (Inspect)	Visit Preview		Jul 29, 2024 6:31pm
docs-v2	⬜️ Ignored (Inspect)	Visit Preview		Jul 29, 2024 6:31pm
medusa-docs	⬜️ Ignored (Inspect)	Visit Preview		Jul 29, 2024 6:31pm
resources-docs	⬜️ Ignored (Inspect)	Visit Preview		Jul 29, 2024 6:31pm

[sradevski]

These are just indentation changes, no actual code changed other than the readonly check.

[sradevski]

Question: Can't we rely solely on the query parameters for the activeFilters state? I feel like it should be possible, and we can remove some code around maintaining their state (so basically we have getInitialFilters be the state, and that gets memoized with location.search passed to it)

[olivermrbl]

/snapshot-this

[olivermrbl]

@sradevski, this doesn't seem to work-out-of-the box with the local file provider – did you use S3?

The exported CSV file is put into the /private folder, which is not served by the server as far as I can see. To be downloadable from admin, this should be placed in static no?

Update: Perhaps the issue is also related to the fact that the generated URL of the exported file points to a path on the local file system and not one on the server. Not sure if our Vite application can deal with this?

[sradevski]

@olivermrbl That behavior is intentional actually. The problem with using the local file provider for the exports is that we can't have security controls (so, no support for private files) if we put it in static, as anyone would be able to read the file, so I create a private folder where private files would go (and you would need direct access to the machine to fetch them).

Let me know if you think this should behave differently, it's super easy to change it.

[olivermrbl]

The problem with using the local file provider for the exports is that we can't have security controls (so, no support for private files) if we put it in static, as anyone would be able to read the file

Given the local file provider is only used for development, wouldn't this be OK?

[sradevski]

The problem with using the local file provider for the exports is that we can't have security controls (so, no support for private files) if we put it in static, as anyone would be able to read the file

Given the local file provider is only used for development, wouldn't this be OK?

I've heard people use it in production as well for some small sites, so I thought to err on the safe side. If we are OK with it since people really shouldn't use it in prod, then we can def. put it in static. WDYT?

You can actually configure if you want it in static or private currently (you just need to set privateUploadDir_ to the same URL as uploadDir_), but it defaults to private. Maybe we can default to static instead?

[olivermrbl]

You can actually configure if you want it in static or private currently (you just need to set privateUploadDir_ to the same URL as uploadDir_), but it defaults to private. Maybe we can default to static instead?

Originally (in V1), the provider was supposed to be for development only, and IMO, this should still be the recommendation from our side. With that in mind, I would suggest we optimize for this use case such that we can guarantee a good first experience across all our features.

Then in the rare (my hunch; how often have you heard this being used in prod?) case, we can guide developers to a secure configuration with the local provider.

Wdyt?

[sradevski]

@olivermrbl it should definitely be only for development, but I've seen at least 2 conversations on Discord, and one from a local agency (and I obviously told them to use S3 😄).

Then let me use the same, static directory for private files as well, and leave a comment that if they really wanted to they can change it through the config, WDYT?

[olivermrbl]

Then let me use the same, static directory for private files as well, and leave a comment that if they really wanted to they can change it through the config, WDYT?

Sounds good!

[olivermrbl]

@sradevski, the static folder is correctly used now for the file uploads. However, we still have the issue with the admin dashboard attempting to download from the local file system. This leads to the download containing the index.html because that's the fallback in case the requested file cannot be found.

[olivermrbl]

@kasperkristensen, could you give this a review? 🙏

[sradevski]

@olivermrbl I missed removing one check (see last commit), should be good now.

[olivermrbl]

LGTM!

[olivermrbl]

@sradevski, works nicely – good one 👍