[CORE-2567] Upgrading a plugin adds permissions for only one company - Blesta

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 4.9.1, 4.10.0-b1
Component/s: None
Labels:
None

Description

When a plugin is upgraded, all instances of the plugin on other companies are also upgraded since they share database tables. New permissions however are only added for the instance upgraded. This should be updated to add the permission for all plugin instances.

Activity

Ascending order - Click to sort in descending order

Hide

Permalink

Tyson Phillips (Inactive) added a comment - 07/Feb/18 6:13 PM

The only backward compatible integration I see here is to assume the plugin will set permissions for all copies of the plugin during upgrade. So the solution would be for each plugin to implement any permissions across all installed plugins. The plugin system would have to be refactored to change the way that plugins handle multiple instances of a single copy and that would require a major version change to accomplish, and likely updates to all plugins.

Show

Tyson Phillips (Inactive) added a comment - 07/Feb/18 6:13 PM The only backward compatible integration I see here is to assume the plugin will set permissions for all copies of the plugin during upgrade. So the solution would be for each plugin to implement any permissions across all installed plugins. The plugin system would have to be refactored to change the way that plugins handle multiple instances of a single copy and that would require a major version change to accomplish, and likely updates to all plugins.

4 older comments

Hide

Permalink

Abdy Franco added a comment - 16/Apr/20 2:23 PM - edited

This new method will be similar to install() or upgrade() it will only receive plugin_id as the parameter and will return an array of all the plugin permissions, the plugin manager should be updated as well, as will need to add the permissions during installation and check what new permissions should be added on upgrade as well for all companies.

Show

Abdy Franco added a comment - 16/Apr/20 2:23 PM - edited This new method will be similar to install() or upgrade() it will only receive plugin_id as the parameter and will return an array of all the plugin permissions, the plugin manager should be updated as well, as will need to add the permissions during installation and check what new permissions should be added on upgrade as well for all companies.

Hide

Permalink

Jonathan Reissmueller added a comment - 20/Apr/20 2:25 PM

I see. Well in that case I don't think there is any need to make this backward incompatible. It is simple enough to create a default method on the Plugin class that returns an empty array. Then all plugins that don't implement the method will continue to function in the current fashion.

Is there a need for the $plugin_id parameter? It is just getting a list of permissions, yes?

We'll also probably want to remove the permissions on uninstall. Upgrade should check permissions on every instance of the plugin, while install and uninstall should only effect the particular plugin the action is being taken on.

Do we have what we need to get started on this? I'd love to get 4.9.1 out by the end of the week.

Show

Jonathan Reissmueller added a comment - 20/Apr/20 2:25 PM I see. Well in that case I don't think there is any need to make this backward incompatible. It is simple enough to create a default method on the Plugin class that returns an empty array. Then all plugins that don't implement the method will continue to function in the current fashion. Is there a need for the $plugin_id parameter? It is just getting a list of permissions, yes? We'll also probably want to remove the permissions on uninstall. Upgrade should check permissions on every instance of the plugin, while install and uninstall should only effect the particular plugin the action is being taken on. Do we have what we need to get started on this? I'd love to get 4.9.1 out by the end of the week.

Hide

Permalink

Abdy Franco added a comment - 20/Apr/20 4:41 PM

I think we can remove the $plugin_id parameter as the method will only return a list of permissions, I see it possible to have it ready by the end of the week.

Show

Abdy Franco added a comment - 20/Apr/20 4:41 PM I think we can remove the $plugin_id parameter as the method will only return a list of permissions, I see it possible to have it ready by the end of the week.

Hide

Permalink

Jonathan Reissmueller added a comment - 20/Apr/20 4:44 PM

I've got some time this afternoon so I'll go ahead and pick this one up and let you focus on filtering

Show

Jonathan Reissmueller added a comment - 20/Apr/20 4:44 PM I've got some time this afternoon so I'll go ahead and pick this one up and let you focus on filtering

Hide

Permalink

Abdy Franco added a comment - 20/Apr/20 4:50 PM - edited

If you need help on the task, just let me know.

Show

Abdy Franco added a comment - 20/Apr/20 4:50 PM - edited If you need help on the task, just let me know.

People

Assignee:

Jonathan Reissmueller

Reporter:

Jonathan Reissmueller

Votes:

0 Vote for this issue

Watchers:

3 Start watching this issue

Dates

Created:

28/Dec/17 1:45 PM

Updated:

22/Apr/20 4:34 PM

Resolved:

22/Apr/20 4:34 PM

Fix Release Date:

23/Apr/20

Time Tracking

Estimated:

Not Specified

Remaining:

Logged:

6h 49m

Agile

Completed Sprints:

4.3.0 Sprint 3 ended 21/Feb/18
4.10.0 Sprint 2 ended 27/Apr/20
View on Board