Skip to content

feat(summary-tab): use manage summary permission to allow editing documentation and links #14688

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 2 commits into from
Sep 17, 2025
Merged

feat(summary-tab): use manage summary permission to allow editing documentation and links #14688

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
3e23d95
use manage summary permission to allow editing documentation and links
purnimagarg1 Sep 5, 2025
c41d2b1
feat(summary-tab): use manage summary permission for editing document…
purnimagarg1 Sep 9, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
17 changes: 3 additions & 14 deletions ...ql-core/src/main/java/com/linkedin/datahub/graphql/resolvers/mutate/DescriptionUtils.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -340,19 +340,6 @@ public static boolean isAuthorizedToUpdateFieldDescription(
context, targetUrn.getEntityType(), targetUrn.toString(), orPrivilegeGroups);
}

public static boolean isAuthorizedToUpdateDomainDescription(
@Nonnull QueryContext context, Urn targetUrn) {
final DisjunctivePrivilegeGroup orPrivilegeGroups =
new DisjunctivePrivilegeGroup(
ImmutableList.of(
ALL_PRIVILEGES_GROUP,
new ConjunctivePrivilegeGroup(
ImmutableList.of(PoliciesConfig.EDIT_ENTITY_DOCS_PRIVILEGE.getType()))));

return AuthorizationUtils.isAuthorized(
context, targetUrn.getEntityType(), targetUrn.toString(), orPrivilegeGroups);
}

public static boolean isAuthorizedToUpdateContainerDescription(
@Nonnull QueryContext context, Urn targetUrn) {
final DisjunctivePrivilegeGroup orPrivilegeGroups =
Expand All @@ -373,7 +360,9 @@ public static boolean isAuthorizedToUpdateDescription(
ImmutableList.of(
ALL_PRIVILEGES_GROUP,
new ConjunctivePrivilegeGroup(
ImmutableList.of(PoliciesConfig.EDIT_ENTITY_DOCS_PRIVILEGE.getType()))));
ImmutableList.of(PoliciesConfig.EDIT_ENTITY_DOCS_PRIVILEGE.getType())),
new ConjunctivePrivilegeGroup(
ImmutableList.of(PoliciesConfig.MANAGE_ASSET_SUMMARY_PRIVILEGE.getType()))));

return AuthorizationUtils.isAuthorized(
context, targetUrn.getEntityType(), targetUrn.toString(), orPrivilegeGroups);
Expand Down
2 changes: 1 addition & 1 deletion ...rc/main/java/com/linkedin/datahub/graphql/resolvers/mutate/UpdateDescriptionResolver.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -111,7 +111,7 @@ private CompletableFuture<Boolean> updateDomainDescription(
Urn targetUrn, DescriptionUpdateInput input, QueryContext context) {
return GraphQLConcurrencyUtils.supplyAsync(
() -> {
if (!DescriptionUtils.isAuthorizedToUpdateDomainDescription(context, targetUrn)) {
if (!DescriptionUtils.isAuthorizedToUpdateDescription(context, targetUrn)) {
throw new AuthorizationException(
"Unauthorized to perform this action. Please contact your DataHub administrator.");
}
Expand Down
33 changes: 24 additions & 9 deletions ...eact/src/app/entityV2/summary/documentation/__tests__/useDocumentationPermissions.test.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -14,7 +14,7 @@ vi.mock('@app/entityV2/summary/shared/useCanUpdateGlossaryEntity', () => ({
useCanUpdateGlossaryEntity: vi.fn(),
}));

describe('useDocumentationPermissions', () => {
describe('useDocumentationPermission', () => {
const setup = (entityDataProps, canUpdateGlossaryEntityMock) => {
(useEntityData as unknown as any).mockReturnValue({
entityData: entityDataProps,
Expand All @@ -27,23 +27,38 @@ describe('useDocumentationPermissions', () => {
vi.resetAllMocks();
});

it('should return true when canEditDescription is true and canUpdateGlossaryEntity is false', () => {
it('should return true when canEditDescription is true', () => {
const { result } = setup({ privileges: { canEditDescription: true } }, false);
expect(result.current).toBe(true);
});

it('should return true when canEditDescription is false and canUpdateGlossaryEntity is true', () => {
const { result } = setup({ privileges: { canEditDescription: false } }, true);
it('should return true when canManageAssetSummary is true', () => {
const { result } = setup({ privileges: { canManageAssetSummary: true } }, false);
expect(result.current).toBe(true);
});

it('should return true when both canEditDescription and canUpdateGlossaryEntity are true', () => {
it('should return true when canUpdateGlossaryEntity is true', () => {
const { result } = setup({ privileges: { canEditDescription: false, canManageAssetSummary: false } }, true);
expect(result.current).toBe(true);
});

it('should return true when all permissions are true', () => {
const { result } = setup({ privileges: { canEditDescription: true, canManageAssetSummary: true } }, true);
expect(result.current).toBe(true);
});

it('should return true when two permissions are true (canEditDescription, canUpdateGlossaryEntity)', () => {
const { result } = setup({ privileges: { canEditDescription: true } }, true);
expect(result.current).toBe(true);
});

it('should return false when both canEditDescription and canUpdateGlossaryEntity are false', () => {
const { result } = setup({ privileges: { canEditDescription: false } }, false);
it('should return true when two permissions are true (canManageAssetSummary, canUpdateGlossaryEntity)', () => {
const { result } = setup({ privileges: { canManageAssetSummary: true } }, true);
expect(result.current).toBe(true);
});

it('should return false when all permissions are false', () => {
const { result } = setup({ privileges: { canEditDescription: false, canManageAssetSummary: false } }, false);
expect(result.current).toBe(false);
});

Expand All @@ -57,12 +72,12 @@ describe('useDocumentationPermissions', () => {
expect(result.current).toBe(true);
});

it('should return false when entityData.privileges is missing and canUpdateGlossaryEntity is false', () => {
it('should return false when privileges is missing and canUpdateGlossaryEntity is false', () => {
const { result } = setup({}, false);
expect(result.current).toBe(false);
});

it('should return true when entityData.privileges is missing but canUpdateGlossaryEntity is true', () => {
it('should return true when privileges is missing but canUpdateGlossaryEntity is true', () => {
const { result } = setup({}, true);
expect(result.current).toBe(true);
});
Expand Down
4 changes: 3 additions & 1 deletion datahub-web-react/src/app/entityV2/summary/documentation/useDocumentationPermission.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,9 @@ export function useDocumentationPermission() {
// Edit description permission
const canEditDescription = !!entityData?.privileges?.canEditDescription;

const hasDocumentationPermissions = canEditDescription || canUpdateGlossaryEntity;
const canManageSummary = !!entityData?.privileges?.canManageAssetSummary;

const hasDocumentationPermissions = canEditDescription || canUpdateGlossaryEntity || canManageSummary;

return hasDocumentationPermissions;
}
34 changes: 27 additions & 7 deletions datahub-web-react/src/app/entityV2/summary/links/__tests__/useLinkPermission.test.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -14,7 +14,7 @@ vi.mock('@app/entityV2/summary/shared/useCanUpdateGlossaryEntity', () => ({
useCanUpdateGlossaryEntity: vi.fn(),
}));

describe('useGetLinkPermissions', () => {
describe('useLinkPermission', () => {
const setup = (entityDataProps, canUpdateGlossaryEntityMock) => {
(useEntityData as unknown as any).mockReturnValue({
entityData: entityDataProps,
Expand All @@ -27,23 +27,43 @@ describe('useGetLinkPermissions', () => {
vi.resetAllMocks();
});

it('should return true when canEditLinks is true and canUpdateGlossaryEntity is false', () => {
it('should return true when canEditLinks is true', () => {
const { result } = setup({ privileges: { canEditLinks: true } }, false);
expect(result.current).toBe(true);
});

it('should return true when canEditLinks is false and canUpdateGlossaryEntity is true', () => {
it('should return true when canUpdateGlossaryEntity is true', () => {
const { result } = setup({ privileges: { canEditLinks: false } }, true);
expect(result.current).toBe(true);
});

it('should return true when canManageAssetSummary is true', () => {
const { result } = setup({ privileges: { canEditLinks: false, canManageAssetSummary: true } }, false);
expect(result.current).toBe(true);
});

it('should return true when both canEditLinks and canUpdateGlossaryEntity are true', () => {
const { result } = setup({ privileges: { canEditLinks: true } }, true);
expect(result.current).toBe(true);
});

it('should return false when both canEditLinks and canUpdateGlossaryEntity are false', () => {
const { result } = setup({ privileges: { canEditLinks: false } }, false);
it('should return true when canEditLinks and canManageAssetSummary are true', () => {
const { result } = setup({ privileges: { canEditLinks: true, canManageAssetSummary: true } }, false);
expect(result.current).toBe(true);
});

it('should return true when canUpdateGlossaryEntity and canManageAssetSummary are true', () => {
const { result } = setup({ privileges: { canEditLinks: false, canManageAssetSummary: true } }, true);
expect(result.current).toBe(true);
});

it('should return true when all permissions are true', () => {
const { result } = setup({ privileges: { canEditLinks: true, canManageAssetSummary: true } }, true);
expect(result.current).toBe(true);
});

it('should return false when all permissions are false', () => {
const { result } = setup({ privileges: { canEditLinks: false, canManageAssetSummary: false } }, false);
expect(result.current).toBe(false);
});

Expand All @@ -57,12 +77,12 @@ describe('useGetLinkPermissions', () => {
expect(result.current).toBe(true);
});

it('should return false when entityData.privileges is missing and canUpdateGlossaryEntity is false', () => {
it('should return false when privileges is missing and canUpdateGlossaryEntity is false', () => {
const { result } = setup({}, false);
expect(result.current).toBe(false);
});

it('should return true when entityData.privileges is missing but canUpdateGlossaryEntity is true', () => {
it('should return true when privileges is missing but canUpdateGlossaryEntity is true', () => {
const { result } = setup({}, true);
expect(result.current).toBe(true);
});
Expand Down
3 changes: 2 additions & 1 deletion datahub-web-react/src/app/entityV2/summary/links/useLinkPermission.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -7,8 +7,9 @@ export function useLinkPermission() {

// Edit links permission
const canEditLinks = !!entityData?.privileges?.canEditLinks;
const canManageSummary = !!entityData?.privileges?.canManageAssetSummary;

const hasLinkPermissions = canEditLinks || canUpdateGlossaryEntity;
const hasLinkPermissions = canEditLinks || canUpdateGlossaryEntity || canManageSummary;

return hasLinkPermissions;
}
Loading