GitLab

There were several places in the code where strings were still used to
determine, add or remove permissions. These have now all been replaced
with the correct Element from PermissionEnum

VidjilAuth another issue related to the queries when no group_assoc exists. The query has been split to resolve this

Applied new methods to match patient query

Moved queries to controller from html file and added a groups parents to
the display in index

Due to an error in the queries in methods get_user_access_groups and
get_group_access_groups, the queries hae both been split into two
separate queries

tests/VidjilAuth fixed a bug where accessible_query would not return any values if there were no group associations

Removed some of the permissions displayed in the user profile since they
now are patient/run/sample_set specific

More of the old permission system is being replaced by the new method

Updated the patient and config permission pages to make them work as
intended with the new permissions system

Applying some vidjil_accessible_query where the regular accessible_query
was still used

Added methods to check permissions for processing and uploading for a
specific sample_set. These differ from their 'patient' or 'run'
counterparts because they also check permissions for the associated runs
and patients, in the same way modification permissions are checked

The same as with processing files. The permission now depends on an
object_if_action and a record_id

can_process_file now takes an object_of_action and an id to better fit
the current permissions system

Added some methods to check permissions on groups rather than only
checking permissions on users

Added an enum to manage permission names.

Added a method that works like accessible_query but loads the
permissions into the cache.

Altered method get_permission to be able to check the existance of a
permission. ie passing no record id to get_permissions now works just
like in the old system

Committing the tests that match the changes made in VidjilAuth

Adjusted VidjilAuth to isolate group permissions. In the previous
version, belonging to a group which granted admin permissions would
grant admin permissions on all patients to which a group granted access.

This method correctly isolates these permissions so grant admin
permissions on a group will only grant admin permissions on patients
aquired from that group or its parent