Add session handling for task comments

2020-12-22 22:54:56 +01:00 · 2020-12-22 22:54:56 +01:00 · 19c5ce05f7
parent 6321eeb300
commit 19c5ce05f7
3 changed files with 78 additions and 29 deletions
--- a/pkg/models/task_comment_rights.go
+++ b/pkg/models/task_comment_rights.go
@ -17,28 +17,31 @@

 package models

-import "code.vikunja.io/web"
+import (
+	"code.vikunja.io/web"
+	"xorm.io/xorm"
+)

 // CanRead checks if a user can read a comment
-func (tc *TaskComment) CanRead(a web.Auth) (bool, int, error) {
+func (tc *TaskComment) CanRead(s *xorm.Session, a web.Auth) (bool, int, error) {
 	t := Task{ID: tc.TaskID}
 	return t.CanRead(a)
 }

 // CanDelete checks if a user can delete a comment
-func (tc *TaskComment) CanDelete(a web.Auth) (bool, error) {
+func (tc *TaskComment) CanDelete(s *xorm.Session, a web.Auth) (bool, error) {
 	t := Task{ID: tc.TaskID}
 	return t.CanWrite(a)
 }

 // CanUpdate checks if a user can update a comment
-func (tc *TaskComment) CanUpdate(a web.Auth) (bool, error) {
+func (tc *TaskComment) CanUpdate(s *xorm.Session, a web.Auth) (bool, error) {
 	t := Task{ID: tc.TaskID}
 	return t.CanWrite(a)
 }

 // CanCreate checks if a user can create a new comment
-func (tc *TaskComment) CanCreate(a web.Auth) (bool, error) {
+func (tc *TaskComment) CanCreate(s *xorm.Session, a web.Auth) (bool, error) {
 	t := Task{ID: tc.TaskID}
 	return t.CanWrite(a)
 }
--- a/pkg/models/task_comments.go
+++ b/pkg/models/task_comments.go
@ -19,6 +19,7 @@ package models

 import (
 	"time"
+	"xorm.io/xorm"

 	"code.vikunja.io/api/pkg/user"
 	"code.vikunja.io/web"
@ -57,7 +58,7 @@ func (tc *TaskComment) TableName() string {
 // @Failure 400 {object} web.HTTPError "Invalid task comment object provided."
 // @Failure 500 {object} models.Message "Internal error"
 // @Router /tasks/{taskID}/comments [put]
-func (tc *TaskComment) Create(a web.Auth) (err error) {
+func (tc *TaskComment) Create(s *xorm.Session, a web.Auth) (err error) {
 	// Check if the task exists
 	_, err = GetTaskSimple(&Task{ID: tc.TaskID})
 	if err != nil {
@ -65,7 +66,7 @@ func (tc *TaskComment) Create(a web.Auth) (err error) {
 	}

 	tc.AuthorID = a.GetID()
-	_, err = x.Insert(tc)
+	_, err = s.Insert(tc)
 	if err != nil {
 		return
 	}
@ -87,8 +88,11 @@ func (tc *TaskComment) Create(a web.Auth) (err error) {
 // @Failure 404 {object} web.HTTPError "The task comment was not found."
 // @Failure 500 {object} models.Message "Internal error"
 // @Router /tasks/{taskID}/comments/{commentID} [delete]
-func (tc *TaskComment) Delete() error {
-	deleted, err := x.ID(tc.ID).NoAutoCondition().Delete(tc)
+func (tc *TaskComment) Delete(s *xorm.Session) error {
+	deleted, err := s.
+		ID(tc.ID).
+		NoAutoCondition().
+		Delete(tc)
 	if deleted == 0 {
 		return ErrTaskCommentDoesNotExist{ID: tc.ID}
 	}
@ -109,8 +113,11 @@ func (tc *TaskComment) Delete() error {
 // @Failure 404 {object} web.HTTPError "The task comment was not found."
 // @Failure 500 {object} models.Message "Internal error"
 // @Router /tasks/{taskID}/comments/{commentID} [post]
-func (tc *TaskComment) Update() error {
-	updated, err := x.ID(tc.ID).Cols("comment").Update(tc)
+func (tc *TaskComment) Update(s *xorm.Session) error {
+	updated, err := s.
+		ID(tc.ID).
+		Cols("comment").
+		Update(tc)
 	if updated == 0 {
 		return ErrTaskCommentDoesNotExist{ID: tc.ID}
 	}
@ -131,8 +138,8 @@ func (tc *TaskComment) Update() error {
 // @Failure 404 {object} web.HTTPError "The task comment was not found."
 // @Failure 500 {object} models.Message "Internal error"
 // @Router /tasks/{taskID}/comments/{commentID} [get]
-func (tc *TaskComment) ReadOne() (err error) {
-	exists, err := x.Get(tc)
+func (tc *TaskComment) ReadOne(s *xorm.Session) (err error) {
+	exists, err := s.Get(tc)
 	if err != nil {
 		return
 	}
@ -145,7 +152,7 @@ func (tc *TaskComment) ReadOne() (err error) {

 	// Get the author
 	author := &user.User{}
-	_, err = x.
+	_, err = s.
 		Where("id = ?", tc.AuthorID).
 		Get(author)
 	tc.Author = author
@ -163,10 +170,10 @@ func (tc *TaskComment) ReadOne() (err error) {
 // @Success 200 {array} models.TaskComment "The array with all task comments"
 // @Failure 500 {object} models.Message "Internal error"
 // @Router /tasks/{taskID}/comments [get]
-func (tc *TaskComment) ReadAll(auth web.Auth, search string, page int, perPage int) (result interface{}, resultCount int, numberOfTotalItems int64, err error) {
+func (tc *TaskComment) ReadAll(s *xorm.Session, auth web.Auth, search string, page int, perPage int) (result interface{}, resultCount int, numberOfTotalItems int64, err error) {

 	// Check if the user has access to the task
-	canRead, _, err := tc.CanRead(auth)
+	canRead, _, err := tc.CanRead(s, auth)
 	if err != nil {
 		return nil, 0, 0, err
 	}
@ -184,7 +191,7 @@ func (tc *TaskComment) ReadAll(auth web.Auth, search string, page int, perPage i
 	limit, start := getLimitFromPageIndex(page, perPage)

 	comments := []*TaskComment{}
-	query := x.
+	query := s.
 		Where("task_id = ? AND comment like ?", tc.TaskID, "%"+search+"%").
 		Join("LEFT", "users", "users.id = task_comments.author_id")
 	if limit > 0 {
@ -197,7 +204,7 @@ func (tc *TaskComment) ReadAll(auth web.Auth, search string, page int, perPage i

 	// Get all authors
 	authors := make(map[int64]*user.User)
-	err = x.
+	err = s.
 		Select("users.*").
 		Table("task_comments").
 		Where("task_id = ? AND comment like ?", tc.TaskID, "%"+search+"%").
@ -211,7 +218,7 @@ func (tc *TaskComment) ReadAll(auth web.Auth, search string, page int, perPage i
 		comment.Author = authors[comment.AuthorID]
 	}

-	numberOfTotalItems, err = x.
+	numberOfTotalItems, err = s.
 		Where("task_id = ? AND comment like ?", tc.TaskID, "%"+search+"%").
 		Count(&TaskCommentWithAuthor{})
 	return comments, len(comments), numberOfTotalItems, err
--- a/pkg/models/task_comments_test.go
+++ b/pkg/models/task_comments_test.go
@ -28,14 +28,20 @@ func TestTaskComment_Create(t *testing.T) {
 	u := &user.User{ID: 1}
 	t.Run("normal", func(t *testing.T) {
 		db.LoadAndAssertFixtures(t)
+		s := x.NewSession()
+		defer s.Close()
+
 		tc := &TaskComment{
 			Comment: "test",
 			TaskID:  1,
 		}
-		err := tc.Create(u)
+		err := tc.Create(s, u)
 		assert.NoError(t, err)
 		assert.Equal(t, "test", tc.Comment)
 		assert.Equal(t, int64(1), tc.Author.ID)
+		err = s.Commit()
+		assert.NoError(t, err)
+
 		db.AssertExists(t, "task_comments", map[string]interface{}{
 			"id":        tc.ID,
 			"author_id": u.ID,
@ -45,11 +51,14 @@ func TestTaskComment_Create(t *testing.T) {
 	})
 	t.Run("nonexisting task", func(t *testing.T) {
 		db.LoadAndAssertFixtures(t)
+		s := x.NewSession()
+		defer s.Close()
+
 		tc := &TaskComment{
 			Comment: "test",
 			TaskID:  99999,
 		}
-		err := tc.Create(u)
+		err := tc.Create(s, u)
 		assert.Error(t, err)
 		assert.True(t, IsErrTaskDoesNotExist(err))
 	})
@ -58,17 +67,26 @@ func TestTaskComment_Create(t *testing.T) {
 func TestTaskComment_Delete(t *testing.T) {
 	t.Run("normal", func(t *testing.T) {
 		db.LoadAndAssertFixtures(t)
+		s := x.NewSession()
+		defer s.Close()
+
 		tc := &TaskComment{ID: 1}
-		err := tc.Delete()
+		err := tc.Delete(s)
 		assert.NoError(t, err)
+		err = s.Commit()
+		assert.NoError(t, err)
+
 		db.AssertMissing(t, "task_comments", map[string]interface{}{
 			"id": 1,
 		})
 	})
 	t.Run("nonexisting comment", func(t *testing.T) {
 		db.LoadAndAssertFixtures(t)
+		s := x.NewSession()
+		defer s.Close()
+
 		tc := &TaskComment{ID: 9999}
-		err := tc.Delete()
+		err := tc.Delete(s)
 		assert.Error(t, err)
 		assert.True(t, IsErrTaskCommentDoesNotExist(err))
 	})
@ -77,12 +95,18 @@ func TestTaskComment_Delete(t *testing.T) {
 func TestTaskComment_Update(t *testing.T) {
 	t.Run("normal", func(t *testing.T) {
 		db.LoadAndAssertFixtures(t)
+		s := x.NewSession()
+		defer s.Close()
+
 		tc := &TaskComment{
 			ID:      1,
 			Comment: "testing",
 		}
-		err := tc.Update()
+		err := tc.Update(s)
 		assert.NoError(t, err)
+		err = s.Commit()
+		assert.NoError(t, err)
+
 		db.AssertExists(t, "task_comments", map[string]interface{}{
 			"id":      1,
 			"comment": "testing",
@ -90,10 +114,13 @@ func TestTaskComment_Update(t *testing.T) {
 	})
 	t.Run("nonexisting comment", func(t *testing.T) {
 		db.LoadAndAssertFixtures(t)
+		s := x.NewSession()
+		defer s.Close()
+
 		tc := &TaskComment{
 			ID: 9999,
 		}
-		err := tc.Update()
+		err := tc.Update(s)
 		assert.Error(t, err)
 		assert.True(t, IsErrTaskCommentDoesNotExist(err))
 	})
@ -102,16 +129,22 @@ func TestTaskComment_Update(t *testing.T) {
 func TestTaskComment_ReadOne(t *testing.T) {
 	t.Run("normal", func(t *testing.T) {
 		db.LoadAndAssertFixtures(t)
+		s := x.NewSession()
+		defer s.Close()
+
 		tc := &TaskComment{ID: 1}
-		err := tc.ReadOne()
+		err := tc.ReadOne(s)
 		assert.NoError(t, err)
 		assert.Equal(t, "Lorem Ipsum Dolor Sit Amet", tc.Comment)
 		assert.NotEmpty(t, tc.Author.ID)
 	})
 	t.Run("nonexisting", func(t *testing.T) {
 		db.LoadAndAssertFixtures(t)
+		s := x.NewSession()
+		defer s.Close()
+
 		tc := &TaskComment{ID: 9999}
-		err := tc.ReadOne()
+		err := tc.ReadOne(s)
 		assert.Error(t, err)
 		assert.True(t, IsErrTaskCommentDoesNotExist(err))
 	})
@ -120,9 +153,12 @@ func TestTaskComment_ReadOne(t *testing.T) {
 func TestTaskComment_ReadAll(t *testing.T) {
 	t.Run("normal", func(t *testing.T) {
 		db.LoadAndAssertFixtures(t)
+		s := x.NewSession()
+		defer s.Close()
+
 		tc := &TaskComment{TaskID: 1}
 		u := &user.User{ID: 1}
-		result, resultCount, total, err := tc.ReadAll(u, "", 0, -1)
+		result, resultCount, total, err := tc.ReadAll(s, u, "", 0, -1)
 		resultComment := result.([]*TaskComment)
 		assert.NoError(t, err)
 		assert.Equal(t, 1, resultCount)
@ -133,9 +169,12 @@ func TestTaskComment_ReadAll(t *testing.T) {
 	})
 	t.Run("no access to task", func(t *testing.T) {
 		db.LoadAndAssertFixtures(t)
+		s := x.NewSession()
+		defer s.Close()
+
 		tc := &TaskComment{TaskID: 14}
 		u := &user.User{ID: 1}
-		_, _, _, err := tc.ReadAll(u, "", 0, -1)
+		_, _, _, err := tc.ReadAll(s, u, "", 0, -1)
 		assert.Error(t, err)
 		assert.True(t, IsErrGenericForbidden(err))
 	})