feat(examples): finalize acl package #2987
Conversation
0xtekgrinder
requested review from
sw360cab and
petar-dambovaliev
and removed request for
a team
github-actions
bot
added
the
🧾 package/realm
notJoon
added
the
review/triage-pending
🛠 PR Checks SummaryAll Automated Checks passed. ✅ Manual Checks (for Reviewers):
Read More🤖 This bot helps streamline PR reviews by verifying automated checks and providing guidance for contributors and reviewers. ✅ Automated Checks (for Contributors):🟢 Maintainers must be able to edit this pull request (more info) ☑️ Contributor Actions:
☑️ Reviewer Actions:
📚 Resources:Debug
|
| bucket := "u:" + addr.String() | ||
| p := perm{ | ||
| verbs: []string{verb}, | ||
| resources: []string{resource}, | ||
| } | ||
| d.addPermToBucket(bucket, p) | ||
| d.addPermsToBucket(bucket, []perm{p}) | ||
| return true |
| } | ||
|
|
||
| func (d *Directory) AddGroupPerm(name string, verb, resource string) { | ||
| func (d *Directory) AddUserPerms(addr std.Address, verbs []string, resource string) bool { |
There was a problem hiding this comment.
this helper should take multiple verbs AND resources, or multiple structs, not just multiple verbs.
| func (d *Directory) ResetUserPerms(addr std.Address) bool { | ||
| bucket := "u:" + addr.String() | ||
| d.permBuckets.Remove(bucket) | ||
| return true |
| return true | ||
| } | ||
|
|
||
| func (d *Directory) ResetUserGroups(addr std.Address) bool { |
There was a problem hiding this comment.
invalid function name, the code isn't resetting a user group,but removing a specific address from a group
Gno2D2
removed
the
review/triage-pending
| for _, pd := range newPerms { | ||
| if !p.Contains(pd) { |
| package acl | ||
|
|
||
| // Helper function to append without duplicates | ||
| func appendGroupsWithoutDuplicates(slice []string, items []string) []string { |
There was a problem hiding this comment.
this is a generic strings helper, do not create a groups.gno file with this function containing group in the title as it's generic enough to keep the code lighter.
| return d.removePermsFromBucket(bucket, []perm{p}) | ||
| } | ||
|
|
||
| func (d *Directory) RemoveGroupPerms(name string, verbs []string, resource string) bool { |
There was a problem hiding this comment.
| return foundGroups == len(groups) | ||
| } | ||
|
|
||
| func (d *Directory) removePermsFromBucket(bucket string, p []perm) bool { |
There was a problem hiding this comment.
we should switch to a map or a tree instead of a slice.
most of the code is hard to read and gas inefficient. let's just change how we store the data.
edit: let's use a tree directly.
| return true | ||
| } | ||
|
|
||
| func (d *Directory) RemoveUserFromGroups(user std.Address, groups []string) bool { |
There was a problem hiding this comment.
remove this helper, just call RemoveUserFromGroup several times.
There was a problem hiding this comment.
Improving this package is a worthwhile endeavor. However, the current implementation is difficult to read, gas-inefficient, not scalable, and the API does not seem optimized. New helpers appear to lack practical use cases, while other important helpers are missing.
If you want to enhance this package by adding more flexibility (thank you), please start by refactoring our data storage. I suggest using the recent libraries I added:
- https://gno.land/p/moul/addreset for lists of addresses
- https://gno.land/p/moul/ulist for sets
Alternatively, feel free to fork this ACL package under your username if you believe your API could better serve some users.
This PR adds missing functionalities from the acl package:
Everything can be tested by running
gno test examples/gno.land/p/demo/aclContributors' checklist...
BREAKING CHANGE: xxxmessage was included in the description