larryh/corso
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

move permissions into metadata (#3216)

Browse Source 
Moves the UserPermissions struct into onedrive/metadata as
the Permission struct, for better shared support across onedrive,
sharepoint, and any other packages that reference it.

---

#### Does this PR need a docs update or release note?

- [x]  No

#### Type of change

- [x] 🧹 Tech Debt/Cleanup

#### Issue(s)

* #3135

#### Test Plan

- [x]  Unit test
- [x] 💚 E2E
This commit is contained in:
Keepers 2023-05-03 12:52:25 -06:00 committed by GitHub
parent b2054a630d
commit d067a79483
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
16 changed files with 424 additions and 388 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
src/cmd/factory/impl/common.go
View File

@ -20,7 +20,6 @@ import (
"github.com/alcionai/corso/src/internal/common/ptr" "github.com/alcionai/corso/src/internal/common/ptr"
"github.com/alcionai/corso/src/internal/connector" "github.com/alcionai/corso/src/internal/connector"
exchMock "github.com/alcionai/corso/src/internal/connector/exchange/mock" exchMock "github.com/alcionai/corso/src/internal/connector/exchange/mock"
"github.com/alcionai/corso/src/internal/connector/onedrive"
"github.com/alcionai/corso/src/internal/connector/onedrive/metadata" "github.com/alcionai/corso/src/internal/connector/onedrive/metadata"
"github.com/alcionai/corso/src/internal/data" "github.com/alcionai/corso/src/internal/data"
"github.com/alcionai/corso/src/internal/tester" "github.com/alcionai/corso/src/internal/tester"
@ -204,7 +203,7 @@ type permData struct {
user string // user is only for older versions user string // user is only for older versions
entityID string entityID string
roles []string roles []string
sharingMode onedrive.SharingMode sharingMode metadata.SharingMode
} }
type itemData struct { type itemData struct {
@ -672,10 +671,10 @@ func onedriveMetadata(
} }
} }
func getMetadata(fileName string, perm permData, permUseID bool) onedrive.Metadata { func getMetadata(fileName string, perm permData, permUseID bool) metadata.Metadata {
if len(perm.user) == 0 || len(perm.roles) == 0 || if len(perm.user) == 0 || len(perm.roles) == 0 ||
perm.sharingMode != onedrive.SharingModeCustom { perm.sharingMode != metadata.SharingModeCustom {
return onedrive.Metadata{ return metadata.Metadata{
FileName: fileName, FileName: fileName,
SharingMode: perm.sharingMode, SharingMode: perm.sharingMode,
} }
@ -685,7 +684,7 @@ func getMetadata(fileName string, perm permData, permUseID bool) onedrive.Metada
// user/role combo unless deleted and readded, but we have to do // user/role combo unless deleted and readded, but we have to do
// this as we only have two users of which one is already taken. // this as we only have two users of which one is already taken.
id := uuid.NewString() id := uuid.NewString()
uperm := onedrive.UserPermission{ID: id, Roles: perm.roles} uperm := metadata.Permission{ID: id, Roles: perm.roles}
if permUseID { if permUseID {
uperm.EntityID = perm.entityID uperm.EntityID = perm.entityID
@ -693,9 +692,9 @@ func getMetadata(fileName string, perm permData, permUseID bool) onedrive.Metada
uperm.Email = perm.user uperm.Email = perm.user
} }
meta := onedrive.Metadata{ meta := metadata.Metadata{
FileName: fileName, FileName: fileName,
Permissions: []onedrive.UserPermission{uperm}, Permissions: []metadata.Permission{uperm},
} }
return meta return meta

1
src/internal/connector/graph/metadata/metadata.go
View File

@ -12,6 +12,7 @@ func IsMetadataFile(p path.Path) bool {
case path.SharePointService: case path.SharePointService:
return p.Category() == path.LibrariesCategory && metadata.HasMetaSuffix(p.Item()) return p.Category() == path.LibrariesCategory && metadata.HasMetaSuffix(p.Item())
default: default:
return false return false
} }

8
src/internal/connector/graph_connector_helper_test.go
View File

@ -693,7 +693,7 @@ func compareExchangeEvent(
checkEvent(t, expectedEvent, itemEvent) checkEvent(t, expectedEvent, itemEvent)
} }
func permissionEqual(expected onedrive.UserPermission, got onedrive.UserPermission) bool { func permissionEqual(expected metadata.Permission, got metadata.Permission) bool {
if !strings.EqualFold(expected.Email, got.Email) { if !strings.EqualFold(expected.Email, got.Email) {
return false return false
} }
@ -769,8 +769,8 @@ func compareOneDriveItem(
if isMeta { if isMeta {
var ( var (
itemMeta onedrive.Metadata itemMeta metadata.Metadata
expectedMeta onedrive.Metadata expectedMeta metadata.Metadata
) )
err = json.Unmarshal(buf, &itemMeta) err = json.Unmarshal(buf, &itemMeta)
@ -812,7 +812,7 @@ func compareOneDriveItem(
} }
// We cannot restore owner permissions, so skip checking them // We cannot restore owner permissions, so skip checking them
itemPerms := []onedrive.UserPermission{} itemPerms := []metadata.Permission{}
for _, p := range itemMeta.Permissions { for _, p := range itemMeta.Permissions {
if p.Roles[0] != "owner" { if p.Roles[0] != "owner" {

27
src/internal/connector/graph_connector_onedrive_test.go
View File

@ -16,7 +16,6 @@ import (
"github.com/alcionai/corso/src/internal/common/ptr" "github.com/alcionai/corso/src/internal/common/ptr"
"github.com/alcionai/corso/src/internal/connector/graph" "github.com/alcionai/corso/src/internal/connector/graph"
"github.com/alcionai/corso/src/internal/connector/onedrive"
"github.com/alcionai/corso/src/internal/connector/onedrive/metadata" "github.com/alcionai/corso/src/internal/connector/onedrive/metadata"
"github.com/alcionai/corso/src/internal/tester" "github.com/alcionai/corso/src/internal/tester"
"github.com/alcionai/corso/src/internal/version" "github.com/alcionai/corso/src/internal/version"
@ -29,10 +28,10 @@ import (
// permission instead of email // permission instead of email
const versionPermissionSwitchedToID = version.OneDrive4DirIncludesPermissions const versionPermissionSwitchedToID = version.OneDrive4DirIncludesPermissions
func getMetadata(fileName string, perm permData, permUseID bool) onedrive.Metadata { func getMetadata(fileName string, perm permData, permUseID bool) metadata.Metadata {
if len(perm.user) == 0 || len(perm.roles) == 0 || if len(perm.user) == 0 || len(perm.roles) == 0 ||
perm.sharingMode != onedrive.SharingModeCustom { perm.sharingMode != metadata.SharingModeCustom {
return onedrive.Metadata{ return metadata.Metadata{
FileName: fileName, FileName: fileName,
SharingMode: perm.sharingMode, SharingMode: perm.sharingMode,
} }
@ -42,7 +41,7 @@ func getMetadata(fileName string, perm permData, permUseID bool) onedrive.Metada
// user/role combo unless deleted and readded, but we have to do // user/role combo unless deleted and readded, but we have to do
// this as we only have two users of which one is already taken. // this as we only have two users of which one is already taken.
id := uuid.NewString() id := uuid.NewString()
uperm := onedrive.UserPermission{ID: id, Roles: perm.roles} uperm := metadata.Permission{ID: id, Roles: perm.roles}
if permUseID { if permUseID {
uperm.EntityID = perm.entityID uperm.EntityID = perm.entityID
@ -50,9 +49,9 @@ func getMetadata(fileName string, perm permData, permUseID bool) onedrive.Metada
uperm.Email = perm.user uperm.Email = perm.user
} }
testMeta := onedrive.Metadata{ testMeta := metadata.Metadata{
FileName: fileName, FileName: fileName,
Permissions: []onedrive.UserPermission{uperm}, Permissions: []metadata.Permission{uperm},
} }
return testMeta return testMeta
@ -278,7 +277,7 @@ type permData struct {
user string // user is only for older versions user string // user is only for older versions
entityID string entityID string
roles []string roles []string
sharingMode onedrive.SharingMode sharingMode metadata.SharingMode
} }
type itemData struct { type itemData struct {
@ -1114,21 +1113,21 @@ func testPermissionsInheritanceRestoreAndBackup(suite oneDriveSuite, startVersio
user: secondaryUserName, user: secondaryUserName,
entityID: secondaryUserID, entityID: secondaryUserID,
roles: writePerm, roles: writePerm,
sharingMode: onedrive.SharingModeCustom, sharingMode: metadata.SharingModeCustom,
}, },
}, },
{ {
name: "file-inherited", name: "file-inherited",
data: fileAData, data: fileAData,
perms: permData{ perms: permData{
sharingMode: onedrive.SharingModeInherited, sharingMode: metadata.SharingModeInherited,
}, },
}, },
{ {
name: "file-empty", name: "file-empty",
data: fileAData, data: fileAData,
perms: permData{ perms: permData{
sharingMode: onedrive.SharingModeCustom, sharingMode: metadata.SharingModeCustom,
}, },
}, },
} }
@ -1180,21 +1179,21 @@ func testPermissionsInheritanceRestoreAndBackup(suite oneDriveSuite, startVersio
user: tertiaryUserName, user: tertiaryUserName,
entityID: tertiaryUserID, entityID: tertiaryUserID,
roles: writePerm, roles: writePerm,
sharingMode: onedrive.SharingModeCustom, sharingMode: metadata.SharingModeCustom,
}, },
}, },
{ {
pathElements: subfolderABPath, pathElements: subfolderABPath,
files: fileSet, files: fileSet,
perms: permData{ perms: permData{
sharingMode: onedrive.SharingModeInherited, sharingMode: metadata.SharingModeInherited,
}, },
}, },
{ {
pathElements: subfolderACPath, pathElements: subfolderACPath,
files: fileSet, files: fileSet,
perms: permData{ perms: permData{
sharingMode: onedrive.SharingModeCustom, sharingMode: metadata.SharingModeCustom,
}, },
}, },
} }

28
src/internal/connector/onedrive/collection.go
View File

@ -41,13 +41,6 @@ var (
_ data.StreamModTime = &MetadataItem{} _ data.StreamModTime = &MetadataItem{}
) )
type SharingMode int
const (
SharingModeCustom = SharingMode(iota)
SharingModeInherited
)
// Collection represents a set of OneDrive objects retrieved from M365 // Collection represents a set of OneDrive objects retrieved from M365
type Collection struct { type Collection struct {
// configured to handle large item downloads // configured to handle large item downloads
@ -306,27 +299,6 @@ func (oc Collection) DoNotMergeItems() bool {
return oc.doNotMergeItems return oc.doNotMergeItems
} }
// FilePermission is used to store permissions of a specific user to a
// OneDrive item.
type UserPermission struct {
ID string `json:"id,omitempty"`
Roles []string `json:"role,omitempty"`
Email string `json:"email,omitempty"` // DEPRECATED: Replaced with UserID in newer backups
EntityID string `json:"entityId,omitempty"`
Expiration *time.Time `json:"expiration,omitempty"`
}
// ItemMeta contains metadata about the Item. It gets stored in a
// separate file in kopia
type Metadata struct {
FileName string `json:"filename,omitempty"`
// SharingMode denotes what the current mode of sharing is for the object.
// - inherited: permissions same as parent permissions (no "shared" in delta)
// - custom: use Permissions to set correct permissions ("shared" has value in delta)
SharingMode SharingMode `json:"permissionMode,omitempty"`
Permissions []UserPermission `json:"permissions,omitempty"`
}
// Item represents a single item retrieved from OneDrive // Item represents a single item retrieved from OneDrive
type Item struct { type Item struct {
id string id string

12
src/internal/connector/onedrive/collection_test.go
View File

@ -68,14 +68,16 @@ func (suite *CollectionUnitTestSuite) TestCollection() {
testItemName = "itemName" testItemName = "itemName"
testItemData = []byte("testdata") testItemData = []byte("testdata")
now = time.Now() now = time.Now()
testItemMeta = Metadata{Permissions: []UserPermission{ testItemMeta = metadata.Metadata{
Permissions: []metadata.Permission{
{ {
ID: "testMetaID", ID: "testMetaID",
Roles: []string{"read", "write"}, Roles: []string{"read", "write"},
Email: "email@provider.com", Email: "email@provider.com",
Expiration: &now, Expiration: &now,
}, },
}} },
}
) )
type nst struct { type nst struct {
@ -291,7 +293,6 @@ func (suite *CollectionUnitTestSuite) TestCollection() {
assert.Equal(t, testItemName, name) assert.Equal(t, testItemName, name)
assert.Equal(t, driveFolderPath, parentPath) assert.Equal(t, driveFolderPath, parentPath)
if test.source == OneDriveSource {
readItemMeta := readItems[1] readItemMeta := readItems[1]
assert.Equal(t, testItemID+metadata.MetaFileSuffix, readItemMeta.UUID()) assert.Equal(t, testItemID+metadata.MetaFileSuffix, readItemMeta.UUID())
@ -305,7 +306,6 @@ func (suite *CollectionUnitTestSuite) TestCollection() {
} }
assert.Equal(t, tm, readMetaData) assert.Equal(t, tm, readMetaData)
}
}) })
} }
} }
@ -516,6 +516,10 @@ func (suite *CollectionUnitTestSuite) TestCollectionPermissionBackupLatestModTim
name: "oneDrive", name: "oneDrive",
source: OneDriveSource, source: OneDriveSource,
}, },
{
name: "sharePoint",
source: SharePointSource,
},
} }
for _, test := range table { for _, test := range table {
suite.Run(test.name, func() { suite.Run(test.name, func() {

19
src/internal/connector/onedrive/item.go
View File

@ -15,6 +15,7 @@ import (
"github.com/alcionai/corso/src/internal/common/ptr" "github.com/alcionai/corso/src/internal/common/ptr"
"github.com/alcionai/corso/src/internal/connector/graph" "github.com/alcionai/corso/src/internal/connector/graph"
"github.com/alcionai/corso/src/internal/connector/onedrive/api" "github.com/alcionai/corso/src/internal/connector/onedrive/api"
"github.com/alcionai/corso/src/internal/connector/onedrive/metadata"
"github.com/alcionai/corso/src/internal/connector/uploadsession" "github.com/alcionai/corso/src/internal/connector/uploadsession"
"github.com/alcionai/corso/src/pkg/backup/details" "github.com/alcionai/corso/src/pkg/backup/details"
"github.com/alcionai/corso/src/pkg/logger" "github.com/alcionai/corso/src/pkg/logger"
@ -73,18 +74,18 @@ func baseItemMetaReader(
item models.DriveItemable, item models.DriveItemable,
) (io.ReadCloser, int, error) { ) (io.ReadCloser, int, error) {
var ( var (
perms []UserPermission perms []metadata.Permission
err error err error
meta = Metadata{FileName: ptr.Val(item.GetName())} meta = metadata.Metadata{FileName: ptr.Val(item.GetName())}
) )
if item.GetShared() == nil { if item.GetShared() == nil {
meta.SharingMode = SharingModeInherited meta.SharingMode = metadata.SharingModeInherited
} else { } else {
meta.SharingMode = SharingModeCustom meta.SharingMode = metadata.SharingModeCustom
} }
if meta.SharingMode == SharingModeCustom { if meta.SharingMode == metadata.SharingModeCustom {
perms, err = driveItemPermissionInfo(ctx, service, driveID, ptr.Val(item.GetId())) perms, err = driveItemPermissionInfo(ctx, service, driveID, ptr.Val(item.GetId()))
if err != nil { if err != nil {
return nil, 0, err return nil, 0, err
@ -211,7 +212,7 @@ func driveItemPermissionInfo(
service graph.Servicer, service graph.Servicer,
driveID string, driveID string,
itemID string, itemID string,
) ([]UserPermission, error) { ) ([]metadata.Permission, error) {
perm, err := api.GetItemPermission(ctx, service, driveID, itemID) perm, err := api.GetItemPermission(ctx, service, driveID, itemID)
if err != nil { if err != nil {
return nil, err return nil, err
@ -222,8 +223,8 @@ func driveItemPermissionInfo(
return uperms, nil return uperms, nil
} }
func filterUserPermissions(ctx context.Context, perms []models.Permissionable) []UserPermission { func filterUserPermissions(ctx context.Context, perms []models.Permissionable) []metadata.Permission {
up := []UserPermission{} up := []metadata.Permission{}
for _, p := range perms { for _, p := range perms {
if p.GetGrantedToV2() == nil { if p.GetGrantedToV2() == nil {
@ -268,7 +269,7 @@ func filterUserPermissions(ctx context.Context, perms []models.Permissionable) [
continue continue
} }
up = append(up, UserPermission{ up = append(up, metadata.Permission{
ID: ptr.Val(p.GetId()), ID: ptr.Val(p.GetId()),
Roles: roles, Roles: roles,
EntityID: entityID, EntityID: entityID,

25
src/internal/connector/onedrive/item_test.go
View File

@ -16,6 +16,7 @@ import (
"github.com/alcionai/corso/src/internal/common/ptr" "github.com/alcionai/corso/src/internal/common/ptr"
"github.com/alcionai/corso/src/internal/connector/graph" "github.com/alcionai/corso/src/internal/connector/graph"
"github.com/alcionai/corso/src/internal/connector/onedrive/api" "github.com/alcionai/corso/src/internal/connector/onedrive/api"
"github.com/alcionai/corso/src/internal/connector/onedrive/metadata"
"github.com/alcionai/corso/src/internal/tester" "github.com/alcionai/corso/src/internal/tester"
"github.com/alcionai/corso/src/pkg/fault" "github.com/alcionai/corso/src/pkg/fault"
) )
@ -247,7 +248,7 @@ func (suite *ItemIntegrationSuite) TestDriveGetFolder() {
} }
} }
func getPermsUperms(permID, userID, entity string, scopes []string) (models.Permissionable, UserPermission) { func getPermsUperms(permID, userID, entity string, scopes []string) (models.Permissionable, metadata.Permission) {
identity := models.NewIdentity() identity := models.NewIdentity()
identity.SetId(&userID) identity.SetId(&userID)
identity.SetAdditionalData(map[string]any{"email": &userID}) identity.SetAdditionalData(map[string]any{"email": &userID})
@ -270,7 +271,7 @@ func getPermsUperms(permID, userID, entity string, scopes []string) (models.Perm
perm.SetRoles([]string{"read"}) perm.SetRoles([]string{"read"})
perm.SetGrantedToV2(sharepointIdentity) perm.SetGrantedToV2(sharepointIdentity)
uperm := UserPermission{ uperm := metadata.Permission{
ID: permID, ID: permID,
Roles: []string{"read"}, Roles: []string{"read"},
EntityID: userID, EntityID: userID,
@ -305,56 +306,56 @@ func (suite *ItemUnitTestSuite) TestOneDrivePermissionsFilter() {
cases := []struct { cases := []struct {
name string name string
graphPermissions []models.Permissionable graphPermissions []models.Permissionable
parsedPermissions []UserPermission parsedPermissions []metadata.Permission
}{ }{
{ {
name: "no perms", name: "no perms",
graphPermissions: []models.Permissionable{}, graphPermissions: []models.Permissionable{},
parsedPermissions: []UserPermission{}, parsedPermissions: []metadata.Permission{},
}, },
{ {
name: "no user bound to perms", name: "no user bound to perms",
graphPermissions: []models.Permissionable{noPerm}, graphPermissions: []models.Permissionable{noPerm},
parsedPermissions: []UserPermission{}, parsedPermissions: []metadata.Permission{},
}, },
// user // user
{ {
name: "user with read permissions", name: "user with read permissions",
graphPermissions: []models.Permissionable{userReadPerm}, graphPermissions: []models.Permissionable{userReadPerm},
parsedPermissions: []UserPermission{userReadUperm}, parsedPermissions: []metadata.Permission{userReadUperm},
}, },
{ {
name: "user with owner permissions", name: "user with owner permissions",
graphPermissions: []models.Permissionable{userOwnerPerm}, graphPermissions: []models.Permissionable{userOwnerPerm},
parsedPermissions: []UserPermission{userOwnerUperm}, parsedPermissions: []metadata.Permission{userOwnerUperm},
}, },
{ {
name: "user with read and write permissions", name: "user with read and write permissions",
graphPermissions: []models.Permissionable{userReadWritePerm}, graphPermissions: []models.Permissionable{userReadWritePerm},
parsedPermissions: []UserPermission{userReadWriteUperm}, parsedPermissions: []metadata.Permission{userReadWriteUperm},
}, },
{ {
name: "multiple users with separate permissions", name: "multiple users with separate permissions",
graphPermissions: []models.Permissionable{userReadPerm, userReadWritePerm}, graphPermissions: []models.Permissionable{userReadPerm, userReadWritePerm},
parsedPermissions: []UserPermission{userReadUperm, userReadWriteUperm}, parsedPermissions: []metadata.Permission{userReadUperm, userReadWriteUperm},
}, },
// group // group
{ {
name: "group with read permissions", name: "group with read permissions",
graphPermissions: []models.Permissionable{groupReadPerm}, graphPermissions: []models.Permissionable{groupReadPerm},
parsedPermissions: []UserPermission{groupReadUperm}, parsedPermissions: []metadata.Permission{groupReadUperm},
}, },
{ {
name: "group with read and write permissions", name: "group with read and write permissions",
graphPermissions: []models.Permissionable{groupReadWritePerm}, graphPermissions: []models.Permissionable{groupReadWritePerm},
parsedPermissions: []UserPermission{groupReadWriteUperm}, parsedPermissions: []metadata.Permission{groupReadWriteUperm},
}, },
{ {
name: "multiple groups with separate permissions", name: "multiple groups with separate permissions",
graphPermissions: []models.Permissionable{groupReadPerm, groupReadWritePerm}, graphPermissions: []models.Permissionable{groupReadPerm, groupReadWritePerm},
parsedPermissions: []UserPermission{groupReadUperm, groupReadWriteUperm}, parsedPermissions: []metadata.Permission{groupReadUperm, groupReadWriteUperm},
}, },
} }
for _, tc := range cases { for _, tc := range cases {

12
src/internal/connector/onedrive/metadata/metadata.go Normal file
View File

@ -0,0 +1,12 @@
package metadata
// ItemMeta contains metadata about the Item. It gets stored in a
// separate file in kopia
type Metadata struct {
FileName string `json:"filename,omitempty"`
// SharingMode denotes what the current mode of sharing is for the object.
// - inherited: permissions same as parent permissions (no "shared" in delta)
// - custom: use Permissions to set correct permissions ("shared" has value in delta)
SharingMode SharingMode `json:"permissionMode,omitempty"`
Permissions []Permission `json:"permissions,omitempty"`
}

90
src/internal/connector/onedrive/metadata/permissions.go Normal file
View File

@ -0,0 +1,90 @@
package metadata
import (
"time"
"golang.org/x/exp/slices"
)
type SharingMode int
const (
SharingModeCustom = SharingMode(iota)
SharingModeInherited
)
// FilePermission is used to store permissions of a specific resource owner
// to a drive item.
type Permission struct {
ID string `json:"id,omitempty"`
Roles []string `json:"role,omitempty"`
Email string `json:"email,omitempty"` // DEPRECATED: Replaced with EntityID in newer backups
EntityID string `json:"entityId,omitempty"` // this is the resource owner's ID
Expiration *time.Time `json:"expiration,omitempty"`
}
// isSamePermission checks equality of two UserPermission objects
func (p Permission) Equals(other Permission) bool {
// EntityID can be empty for older backups and Email can be empty
// for newer ones. It is not possible for both to be empty. Also,
// if EntityID/Email for one is not empty then the other will also
// have EntityID/Email as we backup permissions for all the
// parents and children when we have a change in permissions.
if p.EntityID != "" && p.EntityID != other.EntityID {
return false
}
if p.Email != "" && p.Email != other.Email {
return false
}
p1r := p.Roles
p2r := other.Roles
slices.Sort(p1r)
slices.Sort(p2r)
return slices.Equal(p1r, p2r)
}
// DiffPermissions compares the before and after set, returning
// the permissions that were added and removed (in that order)
// in the after set.
func DiffPermissions(before, after []Permission) ([]Permission, []Permission) {
var (
added = []Permission{}
removed = []Permission{}
)
for _, cp := range after {
found := false
for _, pp := range before {
if cp.Equals(pp) {
found = true
break
}
}
if !found {
added = append(added, cp)
}
}
for _, pp := range before {
found := false
for _, cp := range after {
if cp.Equals(pp) {
found = true
break
}
}
if !found {
removed = append(removed, pp)
}
}
return added, removed
}

149
src/internal/connector/onedrive/metadata/permissions_test.go Normal file
View File

@ -0,0 +1,149 @@
package metadata
import (
"testing"
"github.com/stretchr/testify/assert"
"github.com/stretchr/testify/suite"
"github.com/alcionai/corso/src/internal/tester"
)
type PermissionsUnitTestSuite struct {
tester.Suite
}
func TestPermissionsUnitTestSuite(t *testing.T) {
suite.Run(t, &PermissionsUnitTestSuite{Suite: tester.NewUnitSuite(t)})
}
func (suite *PermissionsUnitTestSuite) TestDiffPermissions() {
perm1 := Permission{
ID: "id1",
Roles: []string{"read"},
EntityID: "user-id1",
}
perm2 := Permission{
ID: "id2",
Roles: []string{"write"},
EntityID: "user-id2",
}
perm3 := Permission{
ID: "id3",
Roles: []string{"write"},
EntityID: "user-id3",
}
// The following two permissions have same id and user but
// different roles, this is a valid scenario for permissions.
sameidperm1 := Permission{
ID: "id0",
Roles: []string{"write"},
EntityID: "user-id0",
}
sameidperm2 := Permission{
ID: "id0",
Roles: []string{"read"},
EntityID: "user-id0",
}
emailperm1 := Permission{
ID: "id1",
Roles: []string{"read"},
Email: "email1@provider.com",
}
emailperm2 := Permission{
ID: "id1",
Roles: []string{"read"},
Email: "email2@provider.com",
}
table := []struct {
name string
before []Permission
after []Permission
added []Permission
removed []Permission
}{
{
name: "single permission added",
before: []Permission{},
after: []Permission{perm1},
added: []Permission{perm1},
removed: []Permission{},
},
{
name: "single permission removed",
before: []Permission{perm1},
after: []Permission{},
added: []Permission{},
removed: []Permission{perm1},
},
{
name: "multiple permission added",
before: []Permission{},
after: []Permission{perm1, perm2},
added: []Permission{perm1, perm2},
removed: []Permission{},
},
{
name: "single permission removed",
before: []Permission{perm1, perm2},
after: []Permission{},
added: []Permission{},
removed: []Permission{perm1, perm2},
},
{
name: "extra permissions",
before: []Permission{perm1, perm2},
after: []Permission{perm1, perm2, perm3},
added: []Permission{perm3},
removed: []Permission{},
},
{
name: "less permissions",
before: []Permission{perm1, perm2, perm3},
after: []Permission{perm1, perm2},
added: []Permission{},
removed: []Permission{perm3},
},
{
name: "same id different role",
before: []Permission{sameidperm1},
after: []Permission{sameidperm2},
added: []Permission{sameidperm2},
removed: []Permission{sameidperm1},
},
{
name: "email based extra permissions",
before: []Permission{emailperm1},
after: []Permission{emailperm1, emailperm2},
added: []Permission{emailperm2},
removed: []Permission{},
},
{
name: "email based less permissions",
before: []Permission{emailperm1, emailperm2},
after: []Permission{emailperm1},
added: []Permission{},
removed: []Permission{emailperm2},
},
}
for _, test := range table {
suite.Run(test.name, func() {
_, flush := tester.NewContext()
defer flush()
t := suite.T()
added, removed := DiffPermissions(test.before, test.after)
assert.Equal(t, added, test.added, "added permissions")
assert.Equal(t, removed, test.removed, "removed permissions")
})
}
}

110
src/internal/connector/onedrive/permission.go
View File

@ -6,7 +6,6 @@ import (
"github.com/alcionai/clues" "github.com/alcionai/clues"
msdrive "github.com/microsoftgraph/msgraph-sdk-go/drive" msdrive "github.com/microsoftgraph/msgraph-sdk-go/drive"
"github.com/microsoftgraph/msgraph-sdk-go/models" "github.com/microsoftgraph/msgraph-sdk-go/models"
"golang.org/x/exp/slices"
"github.com/alcionai/corso/src/internal/common/ptr" "github.com/alcionai/corso/src/internal/common/ptr"
"github.com/alcionai/corso/src/internal/connector/graph" "github.com/alcionai/corso/src/internal/connector/graph"
@ -19,20 +18,20 @@ import (
func getParentMetadata( func getParentMetadata(
parentPath path.Path, parentPath path.Path,
metas map[string]Metadata, metas map[string]metadata.Metadata,
) (Metadata, error) { ) (metadata.Metadata, error) {
parentMeta, ok := metas[parentPath.String()] parentMeta, ok := metas[parentPath.String()]
if !ok { if !ok {
onedrivePath, err := path.ToOneDrivePath(parentPath) onedrivePath, err := path.ToOneDrivePath(parentPath)
if err != nil { if err != nil {
return Metadata{}, clues.Wrap(err, "invalid restore path") return metadata.Metadata{}, clues.Wrap(err, "invalid restore path")
} }
if len(onedrivePath.Folders) != 0 { if len(onedrivePath.Folders) != 0 {
return Metadata{}, clues.Wrap(err, "computing item permissions") return metadata.Metadata{}, clues.Wrap(err, "computing item permissions")
} }
parentMeta = Metadata{} parentMeta = metadata.Metadata{}
} }
return parentMeta, nil return parentMeta, nil
@ -42,12 +41,12 @@ func getCollectionMetadata(
ctx context.Context, ctx context.Context,
drivePath *path.DrivePath, drivePath *path.DrivePath,
dc data.RestoreCollection, dc data.RestoreCollection,
metas map[string]Metadata, metas map[string]metadata.Metadata,
backupVersion int, backupVersion int,
restorePerms bool, restorePerms bool,
) (Metadata, error) { ) (metadata.Metadata, error) {
if !restorePerms || backupVersion < version.OneDrive1DataAndMetaFiles { if !restorePerms || backupVersion < version.OneDrive1DataAndMetaFiles {
return Metadata{}, nil return metadata.Metadata{}, nil
} }
var ( var (
@ -57,13 +56,13 @@ func getCollectionMetadata(
if len(drivePath.Folders) == 0 { if len(drivePath.Folders) == 0 {
// No permissions for root folder // No permissions for root folder
return Metadata{}, nil return metadata.Metadata{}, nil
} }
if backupVersion < version.OneDrive4DirIncludesPermissions { if backupVersion < version.OneDrive4DirIncludesPermissions {
colMeta, err := getParentMetadata(collectionPath, metas) colMeta, err := getParentMetadata(collectionPath, metas)
if err != nil { if err != nil {
return Metadata{}, clues.Wrap(err, "collection metadata") return metadata.Metadata{}, clues.Wrap(err, "collection metadata")
} }
return colMeta, nil return colMeta, nil
@ -79,83 +78,20 @@ func getCollectionMetadata(
meta, err := fetchAndReadMetadata(ctx, dc, metaName) meta, err := fetchAndReadMetadata(ctx, dc, metaName)
if err != nil { if err != nil {
return Metadata{}, clues.Wrap(err, "collection metadata") return metadata.Metadata{}, clues.Wrap(err, "collection metadata")
} }
return meta, nil return meta, nil
} }
// isSamePermission checks equality of two UserPermission objects
func isSamePermission(p1, p2 UserPermission) bool {
// EntityID can be empty for older backups and Email can be empty
// for newer ones. It is not possible for both to be empty. Also,
// if EntityID/Email for one is not empty then the other will also
// have EntityID/Email as we backup permissions for all the
// parents and children when we have a change in permissions.
if p1.EntityID != "" && p1.EntityID != p2.EntityID {
return false
}
if p1.Email != "" && p1.Email != p2.Email {
return false
}
p1r := p1.Roles
p2r := p2.Roles
slices.Sort(p1r)
slices.Sort(p2r)
return slices.Equal(p1r, p2r)
}
func diffPermissions(before, after []UserPermission) ([]UserPermission, []UserPermission) {
var (
added = []UserPermission{}
removed = []UserPermission{}
)
for _, cp := range after {
found := false
for _, pp := range before {
if isSamePermission(cp, pp) {
found = true
break
}
}
if !found {
added = append(added, cp)
}
}
for _, pp := range before {
found := false
for _, cp := range after {
if isSamePermission(cp, pp) {
found = true
break
}
}
if !found {
removed = append(removed, pp)
}
}
return added, removed
}
// computeParentPermissions computes the parent permissions by // computeParentPermissions computes the parent permissions by
// traversing folderMetas and finding the first item with custom // traversing folderMetas and finding the first item with custom
// permissions. folderMetas is expected to have all the parent // permissions. folderMetas is expected to have all the parent
// directory metas for this to work. // directory metas for this to work.
func computeParentPermissions(itemPath path.Path, folderMetas map[string]Metadata) (Metadata, error) { func computeParentPermissions(itemPath path.Path, folderMetas map[string]metadata.Metadata) (metadata.Metadata, error) {
var ( var (
parent path.Path parent path.Path
meta Metadata meta metadata.Metadata
err error err error
ok bool ok bool
@ -166,24 +102,24 @@ func computeParentPermissions(itemPath path.Path, folderMetas map[string]Metadat
for { for {
parent, err = parent.Dir() parent, err = parent.Dir()
if err != nil { if err != nil {
return Metadata{}, clues.New("getting parent") return metadata.Metadata{}, clues.New("getting parent")
} }
onedrivePath, err := path.ToOneDrivePath(parent) onedrivePath, err := path.ToOneDrivePath(parent)
if err != nil { if err != nil {
return Metadata{}, clues.New("get parent path") return metadata.Metadata{}, clues.New("get parent path")
} }
if len(onedrivePath.Folders) == 0 { if len(onedrivePath.Folders) == 0 {
return Metadata{}, nil return metadata.Metadata{}, nil
} }
meta, ok = folderMetas[parent.String()] meta, ok = folderMetas[parent.String()]
if !ok { if !ok {
return Metadata{}, clues.New("no parent meta") return metadata.Metadata{}, clues.New("no parent meta")
} }
if meta.SharingMode == SharingModeCustom { if meta.SharingMode == metadata.SharingModeCustom {
return meta, nil return meta, nil
} }
} }
@ -197,7 +133,7 @@ func UpdatePermissions(
service graph.Servicer, service graph.Servicer,
driveID string, driveID string,
itemID string, itemID string,
permAdded, permRemoved []UserPermission, permAdded, permRemoved []metadata.Permission,
permissionIDMappings map[string]string, permissionIDMappings map[string]string,
) error { ) error {
// The ordering of the operations is important here. We first // The ordering of the operations is important here. We first
@ -290,11 +226,11 @@ func RestorePermissions(
driveID string, driveID string,
itemID string, itemID string,
itemPath path.Path, itemPath path.Path,
meta Metadata, meta metadata.Metadata,
folderMetas map[string]Metadata, folderMetas map[string]metadata.Metadata,
permissionIDMappings map[string]string, permissionIDMappings map[string]string,
) error { ) error {
if meta.SharingMode == SharingModeInherited { if meta.SharingMode == metadata.SharingModeInherited {
return nil return nil
} }
@ -305,7 +241,7 @@ func RestorePermissions(
return clues.Wrap(err, "parent permissions").WithClues(ctx) return clues.Wrap(err, "parent permissions").WithClues(ctx)
} }
permAdded, permRemoved := diffPermissions(parentPermissions.Permissions, meta.Permissions) permAdded, permRemoved := metadata.DiffPermissions(parentPermissions.Permissions, meta.Permissions)
return UpdatePermissions(ctx, creds, service, driveID, itemID, permAdded, permRemoved, permissionIDMappings) return UpdatePermissions(ctx, creds, service, driveID, itemID, permAdded, permRemoved, permissionIDMappings)
} }

184
src/internal/connector/onedrive/permission_test.go
View File

@ -9,6 +9,7 @@ import (
"github.com/stretchr/testify/require" "github.com/stretchr/testify/require"
"github.com/stretchr/testify/suite" "github.com/stretchr/testify/suite"
"github.com/alcionai/corso/src/internal/connector/onedrive/metadata"
"github.com/alcionai/corso/src/internal/tester" "github.com/alcionai/corso/src/internal/tester"
"github.com/alcionai/corso/src/pkg/path" "github.com/alcionai/corso/src/pkg/path"
) )
@ -54,9 +55,9 @@ func (suite *PermissionsUnitTestSuite) TestComputeParentPermissions() {
level0, err := level1.Dir() level0, err := level1.Dir()
require.NoError(suite.T(), err, "level0 path") require.NoError(suite.T(), err, "level0 path")
metadata := Metadata{ md := metadata.Metadata{
SharingMode: SharingModeCustom, SharingMode: metadata.SharingModeCustom,
Permissions: []UserPermission{ Permissions: []metadata.Permission{
{ {
Roles: []string{"write"}, Roles: []string{"write"},
EntityID: "user-id", EntityID: "user-id",
@ -64,9 +65,9 @@ func (suite *PermissionsUnitTestSuite) TestComputeParentPermissions() {
}, },
} }
metadata2 := Metadata{ metadata2 := metadata.Metadata{
SharingMode: SharingModeCustom, SharingMode: metadata.SharingModeCustom,
Permissions: []UserPermission{ Permissions: []metadata.Permission{
{ {
Roles: []string{"read"}, Roles: []string{"read"},
EntityID: "user-id", EntityID: "user-id",
@ -74,52 +75,52 @@ func (suite *PermissionsUnitTestSuite) TestComputeParentPermissions() {
}, },
} }
inherited := Metadata{ inherited := metadata.Metadata{
SharingMode: SharingModeInherited, SharingMode: metadata.SharingModeInherited,
Permissions: []UserPermission{}, Permissions: []metadata.Permission{},
} }
table := []struct { table := []struct {
name string name string
item path.Path item path.Path
meta Metadata meta metadata.Metadata
parentPerms map[string]Metadata parentPerms map[string]metadata.Metadata
}{ }{
{ {
name: "root level entry", name: "root level entry",
item: rootEntry, item: rootEntry,
meta: Metadata{}, meta: metadata.Metadata{},
parentPerms: map[string]Metadata{}, parentPerms: map[string]metadata.Metadata{},
}, },
{ {
name: "root level directory", name: "root level directory",
item: level0, item: level0,
meta: Metadata{}, meta: metadata.Metadata{},
parentPerms: map[string]Metadata{}, parentPerms: map[string]metadata.Metadata{},
}, },
{ {
name: "direct parent perms", name: "direct parent perms",
item: entry, item: entry,
meta: metadata, meta: md,
parentPerms: map[string]Metadata{ parentPerms: map[string]metadata.Metadata{
level2.String(): metadata, level2.String(): md,
}, },
}, },
{ {
name: "top level parent perms", name: "top level parent perms",
item: entry, item: entry,
meta: metadata, meta: md,
parentPerms: map[string]Metadata{ parentPerms: map[string]metadata.Metadata{
level2.String(): inherited, level2.String(): inherited,
level1.String(): inherited, level1.String(): inherited,
level0.String(): metadata, level0.String(): md,
}, },
}, },
{ {
name: "all inherited", name: "all inherited",
item: entry, item: entry,
meta: Metadata{}, meta: metadata.Metadata{},
parentPerms: map[string]Metadata{ parentPerms: map[string]metadata.Metadata{
level2.String(): inherited, level2.String(): inherited,
level1.String(): inherited, level1.String(): inherited,
level0.String(): inherited, level0.String(): inherited,
@ -128,10 +129,10 @@ func (suite *PermissionsUnitTestSuite) TestComputeParentPermissions() {
{ {
name: "multiple custom permission", name: "multiple custom permission",
item: entry, item: entry,
meta: metadata, meta: md,
parentPerms: map[string]Metadata{ parentPerms: map[string]metadata.Metadata{
level2.String(): inherited, level2.String(): inherited,
level1.String(): metadata, level1.String(): md,
level0.String(): metadata2, level0.String(): metadata2,
}, },
}, },
@ -151,134 +152,3 @@ func (suite *PermissionsUnitTestSuite) TestComputeParentPermissions() {
}) })
} }
} }
func (suite *PermissionsUnitTestSuite) TestDiffPermissions() {
perm1 := UserPermission{
ID: "id1",
Roles: []string{"read"},
EntityID: "user-id1",
}
perm2 := UserPermission{
ID: "id2",
Roles: []string{"write"},
EntityID: "user-id2",
}
perm3 := UserPermission{
ID: "id3",
Roles: []string{"write"},
EntityID: "user-id3",
}
// The following two permissions have same id and user but
// different roles, this is a valid scenario for permissions.
sameidperm1 := UserPermission{
ID: "id0",
Roles: []string{"write"},
EntityID: "user-id0",
}
sameidperm2 := UserPermission{
ID: "id0",
Roles: []string{"read"},
EntityID: "user-id0",
}
emailperm1 := UserPermission{
ID: "id1",
Roles: []string{"read"},
Email: "email1@provider.com",
}
emailperm2 := UserPermission{
ID: "id1",
Roles: []string{"read"},
Email: "email2@provider.com",
}
table := []struct {
name string
before []UserPermission
after []UserPermission
added []UserPermission
removed []UserPermission
}{
{
name: "single permission added",
before: []UserPermission{},
after: []UserPermission{perm1},
added: []UserPermission{perm1},
removed: []UserPermission{},
},
{
name: "single permission removed",
before: []UserPermission{perm1},
after: []UserPermission{},
added: []UserPermission{},
removed: []UserPermission{perm1},
},
{
name: "multiple permission added",
before: []UserPermission{},
after: []UserPermission{perm1, perm2},
added: []UserPermission{perm1, perm2},
removed: []UserPermission{},
},
{
name: "single permission removed",
before: []UserPermission{perm1, perm2},
after: []UserPermission{},
added: []UserPermission{},
removed: []UserPermission{perm1, perm2},
},
{
name: "extra permissions",
before: []UserPermission{perm1, perm2},
after: []UserPermission{perm1, perm2, perm3},
added: []UserPermission{perm3},
removed: []UserPermission{},
},
{
name: "less permissions",
before: []UserPermission{perm1, perm2, perm3},
after: []UserPermission{perm1, perm2},
added: []UserPermission{},
removed: []UserPermission{perm3},
},
{
name: "same id different role",
before: []UserPermission{sameidperm1},
after: []UserPermission{sameidperm2},
added: []UserPermission{sameidperm2},
removed: []UserPermission{sameidperm1},
},
{
name: "email based extra permissions",
before: []UserPermission{emailperm1},
after: []UserPermission{emailperm1, emailperm2},
added: []UserPermission{emailperm2},
removed: []UserPermission{},
},
{
name: "email based less permissions",
before: []UserPermission{emailperm1, emailperm2},
after: []UserPermission{emailperm1},
added: []UserPermission{},
removed: []UserPermission{emailperm2},
},
}
for _, test := range table {
suite.Run(test.name, func() {
_, flush := tester.NewContext()
defer flush()
t := suite.T()
added, removed := diffPermissions(test.before, test.after)
assert.Equal(t, added, test.added, "added permissions")
assert.Equal(t, removed, test.removed, "removed permissions")
})
}
}

28
src/internal/connector/onedrive/restore.go
View File

@ -48,7 +48,7 @@ func RestoreCollections(
var ( var (
restoreMetrics support.CollectionMetrics restoreMetrics support.CollectionMetrics
metrics support.CollectionMetrics metrics support.CollectionMetrics
folderMetas = map[string]Metadata{} folderMetas = map[string]metadata.Metadata{}
// permissionIDMappings is used to map between old and new id // permissionIDMappings is used to map between old and new id
// of permissions as we restore them // of permissions as we restore them
@ -132,7 +132,7 @@ func RestoreCollection(
backupVersion int, backupVersion int,
service graph.Servicer, service graph.Servicer,
dc data.RestoreCollection, dc data.RestoreCollection,
folderMetas map[string]Metadata, folderMetas map[string]metadata.Metadata,
permissionIDMappings map[string]string, permissionIDMappings map[string]string,
fc *folderCache, fc *folderCache,
rootIDCache map[string]string, // map of drive id -> root folder ID rootIDCache map[string]string, // map of drive id -> root folder ID
@ -298,7 +298,7 @@ func restoreItem(
drivePath *path.DrivePath, drivePath *path.DrivePath,
restoreFolderID string, restoreFolderID string,
copyBuffer []byte, copyBuffer []byte,
folderMetas map[string]Metadata, folderMetas map[string]metadata.Metadata,
permissionIDMappings map[string]string, permissionIDMappings map[string]string,
restorePerms bool, restorePerms bool,
itemData data.Stream, itemData data.Stream,
@ -439,7 +439,7 @@ func restoreV1File(
restoreFolderID string, restoreFolderID string,
copyBuffer []byte, copyBuffer []byte,
restorePerms bool, restorePerms bool,
folderMetas map[string]Metadata, folderMetas map[string]metadata.Metadata,
permissionIDMappings map[string]string, permissionIDMappings map[string]string,
itemPath path.Path, itemPath path.Path,
itemData data.Stream, itemData data.Stream,
@ -500,7 +500,7 @@ func restoreV6File(
restoreFolderID string, restoreFolderID string,
copyBuffer []byte, copyBuffer []byte,
restorePerms bool, restorePerms bool,
folderMetas map[string]Metadata, folderMetas map[string]metadata.Metadata,
permissionIDMappings map[string]string, permissionIDMappings map[string]string,
itemPath path.Path, itemPath path.Path,
itemData data.Stream, itemData data.Stream,
@ -575,8 +575,8 @@ func createRestoreFoldersWithPermissions(
driveRootID string, driveRootID string,
restoreFolders *path.Builder, restoreFolders *path.Builder,
folderPath path.Path, folderPath path.Path,
folderMetadata Metadata, folderMetadata metadata.Metadata,
folderMetas map[string]Metadata, folderMetas map[string]metadata.Metadata,
fc *folderCache, fc *folderCache,
permissionIDMappings map[string]string, permissionIDMappings map[string]string,
restorePerms bool, restorePerms bool,
@ -741,11 +741,11 @@ func fetchAndReadMetadata(
ctx context.Context, ctx context.Context,
fetcher fileFetcher, fetcher fileFetcher,
metaName string, metaName string,
) (Metadata, error) { ) (metadata.Metadata, error) {
metaFile, err := fetcher.Fetch(ctx, metaName) metaFile, err := fetcher.Fetch(ctx, metaName)
if err != nil { if err != nil {
err = clues.Wrap(err, "getting item metadata").With("meta_file_name", metaName) err = clues.Wrap(err, "getting item metadata").With("meta_file_name", metaName)
return Metadata{}, err return metadata.Metadata{}, err
} }
metaReader := metaFile.ToReader() metaReader := metaFile.ToReader()
@ -754,25 +754,25 @@ func fetchAndReadMetadata(
meta, err := getMetadata(metaReader) meta, err := getMetadata(metaReader)
if err != nil { if err != nil {
err = clues.Wrap(err, "deserializing item metadata").With("meta_file_name", metaName) err = clues.Wrap(err, "deserializing item metadata").With("meta_file_name", metaName)
return Metadata{}, err return metadata.Metadata{}, err
} }
return meta, nil return meta, nil
} }
// getMetadata read and parses the metadata info for an item // getMetadata read and parses the metadata info for an item
func getMetadata(metar io.ReadCloser) (Metadata, error) { func getMetadata(metar io.ReadCloser) (metadata.Metadata, error) {
var meta Metadata var meta metadata.Metadata
// `metar` will be nil for the top level container folder // `metar` will be nil for the top level container folder
if metar != nil { if metar != nil {
metaraw, err := io.ReadAll(metar) metaraw, err := io.ReadAll(metar)
if err != nil { if err != nil {
return Metadata{}, err return metadata.Metadata{}, err
} }
err = json.Unmarshal(metaraw, &meta) err = json.Unmarshal(metaraw, &meta)
if err != nil { if err != nil {
return Metadata{}, err return metadata.Metadata{}, err
} }
} }

3
src/internal/connector/sharepoint/restore.go
View File

@ -12,6 +12,7 @@ import (
"github.com/alcionai/corso/src/internal/common/ptr" "github.com/alcionai/corso/src/internal/common/ptr"
"github.com/alcionai/corso/src/internal/connector/graph" "github.com/alcionai/corso/src/internal/connector/graph"
"github.com/alcionai/corso/src/internal/connector/onedrive" "github.com/alcionai/corso/src/internal/connector/onedrive"
"github.com/alcionai/corso/src/internal/connector/onedrive/metadata"
"github.com/alcionai/corso/src/internal/connector/sharepoint/api" "github.com/alcionai/corso/src/internal/connector/sharepoint/api"
"github.com/alcionai/corso/src/internal/connector/support" "github.com/alcionai/corso/src/internal/connector/support"
"github.com/alcionai/corso/src/internal/data" "github.com/alcionai/corso/src/internal/data"
@ -74,7 +75,7 @@ func RestoreCollections(
backupVersion, backupVersion,
service, service,
dc, dc,
map[string]onedrive.Metadata{}, // Currently permission data is not stored for sharepoint map[string]metadata.Metadata{}, // Currently permission data is not stored for sharepoint
map[string]string{}, map[string]string{},
driveFolderCache, driveFolderCache,
nil, nil,

73
src/internal/operations/backup_integration_test.go
View File

@ -27,6 +27,7 @@ import (
"github.com/alcionai/corso/src/internal/connector/graph" "github.com/alcionai/corso/src/internal/connector/graph"
"github.com/alcionai/corso/src/internal/connector/mock" "github.com/alcionai/corso/src/internal/connector/mock"
"github.com/alcionai/corso/src/internal/connector/onedrive" "github.com/alcionai/corso/src/internal/connector/onedrive"
"github.com/alcionai/corso/src/internal/connector/onedrive/metadata"
"github.com/alcionai/corso/src/internal/connector/support" "github.com/alcionai/corso/src/internal/connector/support"
"github.com/alcionai/corso/src/internal/data" "github.com/alcionai/corso/src/internal/data"
"github.com/alcionai/corso/src/internal/events" "github.com/alcionai/corso/src/internal/events"
@ -1168,11 +1169,13 @@ func (suite *BackupOpIntegrationSuite) TestBackup_Run_oneDriveIncrementals() {
runDriveIncrementalTest( runDriveIncrementalTest(
suite, suite,
suite.user, suite.user,
suite.user,
connector.Users, connector.Users,
path.OneDriveService, path.OneDriveService,
path.FilesCategory, path.FilesCategory,
ic, ic,
gtdi) gtdi,
false)
} }
func (suite *BackupOpIntegrationSuite) TestBackup_Run_sharePointIncrementals() { func (suite *BackupOpIntegrationSuite) TestBackup_Run_sharePointIncrementals() {
@ -1205,21 +1208,24 @@ func (suite *BackupOpIntegrationSuite) TestBackup_Run_sharePointIncrementals() {
runDriveIncrementalTest( runDriveIncrementalTest(
suite, suite,
suite.site, suite.site,
suite.user,
connector.Sites, connector.Sites,
path.SharePointService, path.SharePointService,
path.LibrariesCategory, path.LibrariesCategory,
ic, ic,
gtdi) gtdi,
true)
} }
func runDriveIncrementalTest( func runDriveIncrementalTest(
suite *BackupOpIntegrationSuite, suite *BackupOpIntegrationSuite,
owner string, owner, permissionsUser string,
resource connector.Resource, resource connector.Resource,
service path.ServiceType, service path.ServiceType,
category path.CategoryType, category path.CategoryType,
includeContainers func([]string) selectors.Selector, includeContainers func([]string) selectors.Selector,
getTestDriveID func(*testing.T, context.Context, graph.Servicer) string, getTestDriveID func(*testing.T, context.Context, graph.Servicer) string,
skipPermissionsTests bool,
) { ) {
ctx, flush := tester.NewContext() ctx, flush := tester.NewContext()
defer flush() defer flush()
@ -1310,10 +1316,10 @@ func runDriveIncrementalTest(
newFileName = "new_file.txt" newFileName = "new_file.txt"
permissionIDMappings = map[string]string{} permissionIDMappings = map[string]string{}
writePerm = onedrive.UserPermission{ writePerm = metadata.Permission{
ID: "perm-id", ID: "perm-id",
Roles: []string{"write"}, Roles: []string{"write"},
EntityID: owner, EntityID: permissionsUser,
} }
) )
@ -1348,14 +1354,14 @@ func runDriveIncrementalTest(
driveID, driveID,
targetContainer, targetContainer,
driveItem) driveItem)
require.NoError(t, err, "creating new file", clues.ToCore(err)) require.NoErrorf(t, err, "creating new file %v", clues.ToCore(err))
}, },
itemsRead: 1, // .data file for newitem itemsRead: 1, // .data file for newitem
itemsWritten: 3, // .data and .meta for newitem, .dirmeta for parent itemsWritten: 3, // .data and .meta for newitem, .dirmeta for parent
}, },
{ {
name: "add permission to new file", name: "add permission to new file",
skip: service == path.SharePointService, skip: skipPermissionsTests,
updateFiles: func(t *testing.T) { updateFiles: func(t *testing.T) {
driveItem := models.NewDriveItem() driveItem := models.NewDriveItem()
driveItem.SetName(&newFileName) driveItem.SetName(&newFileName)
@ -1366,18 +1372,17 @@ func runDriveIncrementalTest(
gc.Service, gc.Service,
driveID, driveID,
*newFile.GetId(), *newFile.GetId(),
[]onedrive.UserPermission{writePerm}, []metadata.Permission{writePerm},
[]onedrive.UserPermission{}, []metadata.Permission{},
permissionIDMappings, permissionIDMappings)
) require.NoErrorf(t, err, "adding permission to file %v", clues.ToCore(err))
require.NoErrorf(t, err, "add permission to file %v", clues.ToCore(err))
}, },
itemsRead: 1, // .data file for newitem itemsRead: 1, // .data file for newitem
itemsWritten: 2, // .meta for newitem, .dirmeta for parent (.data is not written as it is not updated) itemsWritten: 2, // .meta for newitem, .dirmeta for parent (.data is not written as it is not updated)
}, },
{ {
name: "remove permission from new file", name: "remove permission from new file",
skip: service == path.SharePointService, skip: skipPermissionsTests,
updateFiles: func(t *testing.T) { updateFiles: func(t *testing.T) {
driveItem := models.NewDriveItem() driveItem := models.NewDriveItem()
driveItem.SetName(&newFileName) driveItem.SetName(&newFileName)
@ -1388,18 +1393,17 @@ func runDriveIncrementalTest(
gc.Service, gc.Service,
driveID, driveID,
*newFile.GetId(), *newFile.GetId(),
[]onedrive.UserPermission{}, []metadata.Permission{},
[]onedrive.UserPermission{writePerm}, []metadata.Permission{writePerm},
permissionIDMappings, permissionIDMappings)
) require.NoErrorf(t, err, "adding permission to file %v", clues.ToCore(err))
require.NoError(t, err, "add permission to file", clues.ToCore(err))
}, },
itemsRead: 1, // .data file for newitem itemsRead: 1, // .data file for newitem
itemsWritten: 2, // .meta for newitem, .dirmeta for parent (.data is not written as it is not updated) itemsWritten: 2, // .meta for newitem, .dirmeta for parent (.data is not written as it is not updated)
}, },
{ {
name: "add permission to container", name: "add permission to container",
skip: service == path.SharePointService, skip: skipPermissionsTests,
updateFiles: func(t *testing.T) { updateFiles: func(t *testing.T) {
targetContainer := containerIDs[container1] targetContainer := containerIDs[container1]
driveItem := models.NewDriveItem() driveItem := models.NewDriveItem()
@ -1411,18 +1415,17 @@ func runDriveIncrementalTest(
gc.Service, gc.Service,
driveID, driveID,
targetContainer, targetContainer,
[]onedrive.UserPermission{writePerm}, []metadata.Permission{writePerm},
[]onedrive.UserPermission{}, []metadata.Permission{},
permissionIDMappings, permissionIDMappings)
) require.NoErrorf(t, err, "adding permission to file %v", clues.ToCore(err))
require.NoError(t, err, "add permission to file", clues.ToCore(err))
}, },
itemsRead: 0, itemsRead: 0,
itemsWritten: 1, // .dirmeta for collection itemsWritten: 1, // .dirmeta for collection
}, },
{ {
name: "remove permission from container", name: "remove permission from container",
skip: service == path.SharePointService, skip: skipPermissionsTests,
updateFiles: func(t *testing.T) { updateFiles: func(t *testing.T) {
targetContainer := containerIDs[container1] targetContainer := containerIDs[container1]
driveItem := models.NewDriveItem() driveItem := models.NewDriveItem()
@ -1434,11 +1437,10 @@ func runDriveIncrementalTest(
gc.Service, gc.Service,
driveID, driveID,
targetContainer, targetContainer,
[]onedrive.UserPermission{}, []metadata.Permission{},
[]onedrive.UserPermission{writePerm}, []metadata.Permission{writePerm},
permissionIDMappings, permissionIDMappings)
) require.NoErrorf(t, err, "adding permission to file %v", clues.ToCore(err))
require.NoError(t, err, "add permission to file", clues.ToCore(err))
}, },
itemsRead: 0, itemsRead: 0,
itemsWritten: 1, // .dirmeta for collection itemsWritten: 1, // .dirmeta for collection
@ -1452,7 +1454,7 @@ func runDriveIncrementalTest(
ItemsById(ptr.Val(newFile.GetId())). ItemsById(ptr.Val(newFile.GetId())).
Content(). Content().
Put(ctx, []byte("new content"), nil) Put(ctx, []byte("new content"), nil)
require.NoError(t, err, "updating file content") require.NoErrorf(t, err, "updating file contents: %v", clues.ToCore(err))
}, },
itemsRead: 1, // .data file for newitem itemsRead: 1, // .data file for newitem
itemsWritten: 3, // .data and .meta for newitem, .dirmeta for parent itemsWritten: 3, // .data and .meta for newitem, .dirmeta for parent
@ -1474,7 +1476,7 @@ func runDriveIncrementalTest(
DrivesById(driveID). DrivesById(driveID).
ItemsById(ptr.Val(newFile.GetId())). ItemsById(ptr.Val(newFile.GetId())).
Patch(ctx, driveItem, nil) Patch(ctx, driveItem, nil)
require.NoError(t, err, "renaming file", clues.ToCore(err)) require.NoError(t, err, "renaming file %v", clues.ToCore(err))
}, },
itemsRead: 1, // .data file for newitem itemsRead: 1, // .data file for newitem
itemsWritten: 3, // .data and .meta for newitem, .dirmeta for parent itemsWritten: 3, // .data and .meta for newitem, .dirmeta for parent
@ -1495,7 +1497,7 @@ func runDriveIncrementalTest(
DrivesById(driveID). DrivesById(driveID).
ItemsById(ptr.Val(newFile.GetId())). ItemsById(ptr.Val(newFile.GetId())).
Patch(ctx, driveItem, nil) Patch(ctx, driveItem, nil)
require.NoError(t, err, "moving file between folders", clues.ToCore(err)) require.NoErrorf(t, err, "moving file between folders %v", clues.ToCore(err))
}, },
itemsRead: 1, // .data file for newitem itemsRead: 1, // .data file for newitem
itemsWritten: 3, // .data and .meta for newitem, .dirmeta for parent itemsWritten: 3, // .data and .meta for newitem, .dirmeta for parent
@ -1510,7 +1512,7 @@ func runDriveIncrementalTest(
DrivesById(driveID). DrivesById(driveID).
ItemsById(ptr.Val(newFile.GetId())). ItemsById(ptr.Val(newFile.GetId())).
Delete(ctx, nil) Delete(ctx, nil)
require.NoError(t, err, "deleting file", clues.ToCore(err)) require.NoErrorf(t, err, "deleting file %v", clues.ToCore(err))
}, },
itemsRead: 0, itemsRead: 0,
itemsWritten: 0, itemsWritten: 0,
@ -1609,9 +1611,8 @@ func runDriveIncrementalTest(
} }
for _, test := range table { for _, test := range table {
suite.Run(test.name, func() { suite.Run(test.name, func() {
// TODO(rkeepers): remove when sharepoint supports permission.
if test.skip { if test.skip {
return suite.T().Skip("flagged to skip")
} }
cleanGC, err := connector.NewGraphConnector(ctx, acct, resource) cleanGC, err := connector.NewGraphConnector(ctx, acct, resource)