From 3a002c404617cf5fabb468b8d1eeb04ecd2b18d2 Mon Sep 17 00:00:00 2001 From: Julian Weng Date: Fri, 1 Nov 2024 19:28:52 -0400 Subject: [PATCH 1/4] Create cron job to re-give superuser to env-defined users (#742) Pending team-sync patch working --- .../management/commands/osa_perms_updates.py | 36 +++++++++++++++++++ backend/pennclubs/settings/base.py | 2 ++ backend/pennclubs/settings/development.py | 2 ++ backend/pennclubs/settings/production.py | 2 ++ backend/tests/clubs/test_commands.py | 28 +++++++++++++++ k8s/main.ts | 7 ++++ 6 files changed, 77 insertions(+) create mode 100644 backend/clubs/management/commands/osa_perms_updates.py diff --git a/backend/clubs/management/commands/osa_perms_updates.py b/backend/clubs/management/commands/osa_perms_updates.py new file mode 100644 index 000000000..d54d3e802 --- /dev/null +++ b/backend/clubs/management/commands/osa_perms_updates.py @@ -0,0 +1,36 @@ +from django.conf import settings +from django.contrib.auth import get_user_model +from django.contrib.auth.models import Group, Permission +from django.contrib.contenttypes.models import ContentType +from django.core.management.base import BaseCommand + +from clubs.models import Club + + +class Command(BaseCommand): + help = "Give superuser to hard-coded user accounts affiliated with OSA." + web_execute = True + + def handle(self, *args, **kwargs): + User = get_user_model() + content_type = ContentType.objects.get_for_model(Club) + approve_perm = Permission.objects.get( + codename="approve_club", content_type=content_type + ) + pending_perm = Permission.objects.get( + codename="see_pending_clubs", content_type=content_type + ) + if not settings.OSA_KEYS: + raise ValueError("OSA_KEYS not set in settings") + if not (approvers := Group.objects.filter(name="Approvers").first()): + raise ValueError("Approvers group not found") + for key in settings.OSA_KEYS: + if not key or not (user := User.objects.get(username=key)): + continue + user.is_superuser = True + user.is_staff = True + user.user_permissions.add(approve_perm) + user.user_permissions.add(pending_perm) + approvers.user_set.add(user) + user.save() + approvers.save() diff --git a/backend/pennclubs/settings/base.py b/backend/pennclubs/settings/base.py index 4c645ea94..d74fa029a 100644 --- a/backend/pennclubs/settings/base.py +++ b/backend/pennclubs/settings/base.py @@ -265,3 +265,5 @@ # Cybersource settings CYBERSOURCE_CLIENT_VERSION = "0.15" + +OSA_KEYS = None diff --git a/backend/pennclubs/settings/development.py b/backend/pennclubs/settings/development.py index 90c2d1504..720e07a23 100644 --- a/backend/pennclubs/settings/development.py +++ b/backend/pennclubs/settings/development.py @@ -42,3 +42,5 @@ "run_environment": "apitest.cybersource.com", } CYBERSOURCE_TARGET_ORIGIN = "https://localhost:3001" + +OSA_KEYS = ["gwashington"] diff --git a/backend/pennclubs/settings/production.py b/backend/pennclubs/settings/production.py index bea022416..ed445fe2b 100644 --- a/backend/pennclubs/settings/production.py +++ b/backend/pennclubs/settings/production.py @@ -89,3 +89,5 @@ "run_environment": "api.cybersource.com", } CYBERSOURCE_TARGET_ORIGIN = "https://pennclubs.com" + +OSA_KEYS = os.getenv("OSA_KEYS", "").split(",") diff --git a/backend/tests/clubs/test_commands.py b/backend/tests/clubs/test_commands.py index 48e3799b3..90ceefda1 100644 --- a/backend/tests/clubs/test_commands.py +++ b/backend/tests/clubs/test_commands.py @@ -777,3 +777,31 @@ def test_graduate_users_output(self): "Updated the membership status of 1 student club relationships!", out.getvalue(), ) + + +class OsaPermsUpdatesTestCase(TestCase): + def setUp(self): + self.user1 = get_user_model().objects.create_user("gwashington") + + def test_osa_perms_updates(self): + # Test error when OSA_KEYS is not set + with mock.patch("django.conf.settings.OSA_KEYS", None): + with self.assertRaises(ValueError): + call_command("osa_perms_updates") + self.assertFalse(self.user1.is_superuser) + + with mock.patch("django.conf.settings.OSA_KEYS", ["gwashington"]): + # Test error when Approvers group is not found + with self.assertRaises(ValueError): + call_command("osa_perms_updates") + self.assertFalse(self.user1.is_superuser) + + # Create Approvers group + Group.objects.create(name="Approvers") + call_command("osa_perms_updates") + self.user1.refresh_from_db() + self.assertTrue(self.user1.groups.filter(name="Approvers").exists()) + self.assertTrue(self.user1.is_staff) + self.assertTrue(self.user1.is_superuser) + self.assertTrue(self.user1.has_perm("approve_club")) + self.assertTrue(self.user1.has_perm("see_pending_clubs")) diff --git a/k8s/main.ts b/k8s/main.ts index dac1f2dd8..fc7198317 100644 --- a/k8s/main.ts +++ b/k8s/main.ts @@ -75,6 +75,13 @@ export class MyChart extends PennLabsChart { cmd: ['python', 'manage.py', 'rank'], }); + new CronJob(this, 'osa-perms-updates', { + schedule: cronTime.every(5).minutes(), + image: backendImage, + secret: clubsSecret, + cmd: ['python', 'manage.py', 'osa_perms_updates'], + }); + new CronJob(this, 'daily-notifications', { schedule: cronTime.onSpecificDaysAt(['monday', 'wednesday', 'friday'], 10, 0), image: backendImage, From d1217155782465ed040791cac52695640cbb9741 Mon Sep 17 00:00:00 2001 From: owlester12 <64493239+owlester12@users.noreply.github.com> Date: Wed, 6 Nov 2024 22:10:15 -0500 Subject: [PATCH 2/4] Modal for emails with upenn.edu on Club Creation (#744) * Add email modal * cosmetic edits * remvoe errors * fix comment * fixed modal * final changes * fixed nits * fixed margin bottom --- .../components/ClubEditPage/ClubEditCard.tsx | 76 ++++++++++++++++++- 1 file changed, 74 insertions(+), 2 deletions(-) diff --git a/frontend/components/ClubEditPage/ClubEditCard.tsx b/frontend/components/ClubEditPage/ClubEditCard.tsx index 679a310ba..3f1c4d7e9 100644 --- a/frontend/components/ClubEditPage/ClubEditCard.tsx +++ b/frontend/components/ClubEditPage/ClubEditCard.tsx @@ -151,6 +151,48 @@ const Card = ({ ) } +interface EmailModalProps { + closeModal: () => void + email: string + setEmail: (inp: string) => void + confirmSubmission: () => void +} + +const EmailModal = ({ + closeModal, + email, + setEmail, + confirmSubmission, +}: EmailModalProps): ReactElement => { + return ( + +
+ + Warning: This email will be shown to the public. We highly recommend + you don't use a personal email, and instead use a club email. Feel + free to ignore this warning if the email is not a personal email. + + setEmail(e.target.value)} + className="input mb-4" + style={{ maxWidth: '350px' }} + > +
+ +
+
+
+ ) +} /** * Remove fields in an object that are not part of a whitelist. @@ -229,6 +271,8 @@ export default function ClubEditCard({ ), ) + const [emailModal, showEmailModal] = useState(false) + const submit = (data, { setSubmitting, setStatus }): Promise => { const photo = data.image if (photo !== null) { @@ -850,6 +894,7 @@ export default function ClubEditCard({ const creationDefaults = { subtitle: '', + email: '', email_public: true, accepting_members: false, size: CLUB_SIZES[0].value, @@ -871,9 +916,36 @@ export default function ClubEditCard({ : creationDefaults return ( - - {({ dirty, isSubmitting }) => ( + + submit({ ...values, emailOverride: false }, actions) + } + enableReinitialize + validate={(values) => { + const errors: { email?: string } = {} + if (values.email.includes('upenn.edu') && !emailModal) { + showEmailModal(true) + errors.email = 'Please confirm your email' + } + return errors + }} + validateOnChange={false} + validateOnBlur={false} + > + {({ dirty, isSubmitting, setFieldValue, submitForm, values }) => (
+ {emailModal && ( + showEmailModal(false)} + email={values.email} + setEmail={(newEmail) => setFieldValue('email', newEmail)} + confirmSubmission={() => { + showEmailModal(false) + submitForm() + }} + /> + )} {!REAPPROVAL_QUEUE_ENABLED && ( Queue Closed for Summer Break From 60a59e7edc47b0129e092dfbf375f4ff87e29502 Mon Sep 17 00:00:00 2001 From: Julian Weng Date: Fri, 8 Nov 2024 17:39:59 -0500 Subject: [PATCH 3/4] Fix lint, styling, wording for public email warning --- frontend/components/ClubEditPage/ClubEditCard.tsx | 13 +++++++------ frontend/package.json | 3 ++- 2 files changed, 9 insertions(+), 7 deletions(-) diff --git a/frontend/components/ClubEditPage/ClubEditCard.tsx b/frontend/components/ClubEditPage/ClubEditCard.tsx index 3f1c4d7e9..58e380d88 100644 --- a/frontend/components/ClubEditPage/ClubEditCard.tsx +++ b/frontend/components/ClubEditPage/ClubEditCard.tsx @@ -171,17 +171,18 @@ const EmailModal = ({ closeModal={closeModal} marginBottom={false} > -
- - Warning: This email will be shown to the public. We highly recommend - you don't use a personal email, and instead use a club email. Feel - free to ignore this warning if the email is not a personal email. +
+ + This email will be visible to the public. +
+ We recommend that you don’t use a personal email, and instead use a + club email.
setEmail(e.target.value)} - className="input mb-4" + className="input mb-5" style={{ maxWidth: '350px' }} >
diff --git a/frontend/package.json b/frontend/package.json index 6f45e3275..cf0928e1a 100644 --- a/frontend/package.json +++ b/frontend/package.json @@ -118,5 +118,6 @@ }, "engines": { "node": "^20.0.0" - } + }, + "packageManager": "yarn@1.22.22+sha512.a6b2f7906b721bba3d67d4aff083df04dad64c399707841b7acf00f6b133b7ac24255f2652fa22ae3534329dc6180534e98d17432037ff6fd140556e2bb3137e" } From 618b65c95df7c4a2851cff908f89b6398ef16107 Mon Sep 17 00:00:00 2001 From: Julian Weng Date: Fri, 8 Nov 2024 17:53:44 -0500 Subject: [PATCH 4/4] =?UTF-8?q?Add=20cron=20job=20to=20update=20membership?= =?UTF-8?q?=5Fcount=20and=20favorite=5Fcount=20=F0=9F=98=AD?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- k8s/main.ts | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/k8s/main.ts b/k8s/main.ts index fc7198317..8276c0b29 100644 --- a/k8s/main.ts +++ b/k8s/main.ts @@ -75,6 +75,13 @@ export class MyChart extends PennLabsChart { cmd: ['python', 'manage.py', 'rank'], }); + new CronJob(this, 'update-club-counts', { + schedule: cronTime.everyDayAt(0, 12), + image: backendImage, + secret: clubsSecret, + cmd: ['python', 'manage.py', 'update_club_counts'], + }) + new CronJob(this, 'osa-perms-updates', { schedule: cronTime.every(5).minutes(), image: backendImage,