Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
RoleService UpdatePermissions
See original GitHub issueWhat exactly does that method do?
- (lines 186-190) It first deletes all permission claims from the role
- (lines 192-202) then it adds the selectedpermissions as claims to the role again (using an extension method which should probably just be in the service as it’s only used here, or not even be a separate method at al?)
- (lines 204-212) then it goes over all the selected permissions again and checks if they are in the permissions of the role (they all should be as they were just added in the previous step?) and in that case they are saved once more using the roleclaimservice??
Isn’t this last step redundant? This is doing 2 times the same thing, right? Or am I missing something?
@iammukeshm You can hopefully shed some light on this?
Also while we’re at the subject, and also in light of PR #377 … I think the role api should change a bit:
GET api/role/{id}: would return the permissions included inside theRoleDto(we will probably need a new dto for that, or rename the existing one toRoleListDto). Just aList<string>. No need for theEnabledproperty.- UpdatePermissionsRequest would also just contain a
List<string>of permissions.
Side thought: We could even include the updatepermissions (optionally) into the PUT api/role/{id} call maybe?
That together with the static FSHPermissions strings (in the shared project) is enough to build the whole UI for it I think. No need to send “Enabled” properties over the wire… that’s 100% a UI concern, right?
I even think we can eliminate the roleclaimservice. What else is that used for other than adding and removing permissions from roles? I would roll (no pun intended) all that functionality into the roleservice (which practically already is there) and just eliminate the roleclaimservice and -api?
To put it into DDD terms: it would be the “Role aggregate”, which contains the permissions (roleclaims).
Issue Analytics
- State:
- Created 2 years ago
- Comments:8 (8 by maintainers)
Top Results From Across the Web
Top Related Medium Post
Top Related StackOverflow Question
Troubleshoot Live Code
Top Related Reddit Thread
Top Related Hackernoon Post
Top Related Tweet
Top Related Dev.to Post
Top Related Hashnode Post
Ok, I understand that it need to be separate methods… but I would rename the
GetPermissionsmethod toGetByIdWithPermissionsand return the same result but wrapped in aRoleDto… then there’s no need to do 2 calls on the client. And still have the same protection by theFSHPermissions.RoleClaims.Viewpermission…@fretje Yes, is better to have a method only to GetPermissions, and another to GetRole, because in the Basic/Admin role we cant edit, but if we create another roles, we can edit them(name and description), so is better have seperated methods