CASL part 1 #189

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Open

tdresser wants to merge 7 commits into main from casl

Collaborator

tdresser commented Aug 10, 2025

This implements CASL authorization, but doesn't use it, or integrate it at the db level.
The framework for using it with mikroORM is landed, but only used in a test showing off roughly how it works.

Followup patches will integrate this into our repository and baseentitiy classes, and ensure this is used by our services.

tdresser commented

View reviewed changes

grassroots-backend/src/auth/CASLIntegration.ts Outdated Show resolved Hide resolved

tdresser commented

View reviewed changes

grassroots-backend/src/contacts/entities/Contact.entity.ts

    
                phoneNumber!: string;

                @ManyToOne(() => OrganizationEntity)

                @ManyToOne(() => OrganizationEntity, { joinColumn: "organizationId" })

Collaborator Author

tdresser Aug 11, 2025

We make sure the organizationId exists, and is the same name as the DTO property, so this can be used in CASL rules.

tdresser commented

View reviewed changes

grassroots-backend/src/grassroots-shared/Permission.ts Outdated Show resolved Hide resolved

tdresser commented

View reviewed changes

grassroots-backend/src/grassroots-shared/Permission.ts Show resolved Hide resolved

tdresser commented

View reviewed changes

grassroots-backend/src/organizations/Organizations.service.ts Outdated Show resolved Hide resolved

tdresser commented

View reviewed changes

grassroots-frontend/src/routes/Users.tsx

    
                  },

                });

                return <div>{(users?.users ?? []).map((x) => UserRow({ user: x }))}</div>;

                return <div>{users.users.map((x) => UserRow({ user: x }))}</div>;

Collaborator Author

tdresser Aug 11, 2025 •

edited

Loading

Fix an eslint warning I didn't get when landing the search fix.

tdresser requested a review from IanEdington

August 11, 2025 20:05

Collaborator Author

tdresser commented Aug 11, 2025

This is ready for review!

Start here.

tdresser force-pushed the casl branch 6 times, most recently from d8bcbc2 to 728a2a9 Compare

September 4, 2025 16:52

Base automatically changed from user_active_organization to main

September 6, 2025 13:34

tdresser and others added 7 commits

September 6, 2025 11:56


          Rebase

ffa0b4d


          Fix frontend dependencies

6cb4787


          Fix baseurl

e9634f9


          Modified files from CI

7972dd1


          Fix rebase artifacts

4df3586


          Self review

fffe45c


          Modified files from CI

81cdbf6

tdresser force-pushed the casl branch from 728a2a9 to 81cdbf6 Compare

September 6, 2025 15:56

IanEdington removed their request for review

October 6, 2025 14:18

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet