Details
-
Type:
Task
-
Status: Closed (View Workflow)
-
Priority:
Major
-
Resolution: Done
-
Affects Version/s: None
-
Fix Version/s: None
-
Labels:None
-
Story Points:2
-
Epic Link:
-
Sprint:Fall 7 2021 Nov 8 - Nov 24
Description
Situation: There are several issues surrounding the user-permissions endpoint in Terrain.
The user-permissions endpoint only allows a user to check permissions on files they own. If a user does not own a file (i.e. if it is a community or shared file), then we cannot use the user-permissions endpoint to determine if the file is public.
The workaround to the user-permissions endpoint issue above was to use the search endpoint, which returns the user permissions for a file. We use the search endpoint for community/shared data, as they contain data not owned by the user.
Unfortunately, the CyVerse data store takes a significant amount of time (up to several days) to index new files that have been added or created by a user. This means these new files do not immediately appear in the search endpoint results.
Altogether, this creates an edge case where a community/shared file that was recently made public may not appear public in the search endpoint results, confusing users and preventing the file from loading correctly in IGB.
Task: Investigate how to better ascertain whether a file has been made public. Public files are those that have been shared with the user "anonymous". When this occurs the file becomes available through the dav-anon url:
https://data.cyverse.org/dav-anon/iplant/home/nowlanf/S_SARS-CoV-2_Wuhan-Hu-1_Jan_2020.fa
An idea would be to avoid using the user-permission and search endpoints to determine if a file has been made public, and instead attempt to see if the file is available through dav-anon. If the server returns 200 the file is public, if not then it is private.
Attachments
Issue Links
- relates to
-
-
- To-Do
-
Activity
| Field | Original Value | New Value |
|---|---|---|
| Epic Link | IGBF-2376 [ 18533 ] |
| Status | To-Do [ 10305 ] | In Progress [ 3 ] |
| Status | In Progress [ 3 ] | To-Do [ 10305 ] |
| Sprint | Fall 6 2021 Oct 25 - Nov 5 [ 132 ] | Fall 7 2021 Nov 8 - Nov 19 [ 133 ] |
| Rank | Ranked higher |
| Status | To-Do [ 10305 ] | In Progress [ 3 ] |
| Status | In Progress [ 3 ] | To-Do [ 10305 ] |
| Status | To-Do [ 10305 ] | In Progress [ 3 ] |
The last sentence in the description seems like a good solution to the issue:
"An idea would be to avoid using the user-permission and search endpoints to determine if a file has been made public, and instead attempt to see if the file is available through dav-anon. If the server returns 200 the file is public, if not then it is private."
| Status | In Progress [ 3 ] | Needs 1st Level Review [ 10005 ] |
| Assignee | Karthik Raveendran [ karthik ] |
| Assignee | Ann Loraine [ aloraine ] |
| Status | Needs 1st Level Review [ 10005 ] | First Level Review in Progress [ 10301 ] |
The above treatment investigates the issue and proposes a solution. Moving to closed.
| Status | First Level Review in Progress [ 10301 ] | Ready for Pull Request [ 10304 ] |
| Status | Ready for Pull Request [ 10304 ] | Pull Request Submitted [ 10101 ] |
| Status | Pull Request Submitted [ 10101 ] | Reviewing Pull Request [ 10303 ] |
| Status | Reviewing Pull Request [ 10303 ] | Merged Needs Testing [ 10002 ] |
| Status | Merged Needs Testing [ 10002 ] | Post-merge Testing In Progress [ 10003 ] |
| Resolution | Done [ 10000 ] | |
| Status | Post-merge Testing In Progress [ 10003 ] | Closed [ 6 ] |
It sounds like the investigation has already been done. What question remains to be investigated?