Bug(same image scan detail) : main merge

Author: adi6859

.github/pull_request_template.md

@@ -18,10 +18,19 @@ Please include a summary of the change and which issue is fixed. Please also inc
 -->
 
 Fixes #
+<!--
+For example:
+Fixes https://github.com/devtron-labs/devtron/issues/00001
+Fixes devtron-labs/devtron#0001
+
+PS: Please ensure that you've attached a valid issue that is OPEN
+-->
+
 
+<!--test-cases
 ## How Has This Been Tested?
 Please describe the tests that you ran to verify your changes. Provide instructions so we can reproduce. Please also list any relevant details for your test configuration
-<!--test-cases
+
 - [ ] Test case A
 - [ ] Test case B
 -->

.github/semantic.yml

@@ -10,3 +10,4 @@ types:
   - docs
   - doc
   - release
+  - misc

.github/workflows/pr-issue-validator.yaml

@@ -51,8 +51,8 @@ jobs:
           export forked=true
         fi
         echo "forked: $forked"
-        if [[ "$TITLE" == *"doc:"* || "$TITLE" == *"docs:"* || "$TITLE" == *"chore:"* || "$TITLE" == *"release:"* || "$TITLE" == *"Release:"*  ]]; then
-          echo "Skipping validation as this is a PR for documentation or chore."
+        if [[ "$TITLE" == *"doc:"* || "$TITLE" == *"docs:"* || "$TITLE" == *"misc:"* || "$TITLE" == *"release:"* || "$TITLE" == *"Release:"*  ]]; then
+          echo "Skipping validation as this is a PR for documentation or misc."
           if [[ $forked == true ]]; then
             echo "PR:Ready-to-Review, exiting gracefully"
             exit 0

App.go

@@ -22,6 +22,7 @@ import (
 	"crypto/tls"
 	"fmt"
 	"github.com/devtron-labs/common-lib/middlewares"
+	"github.com/devtron-labs/devtron/pkg/eventProcessor"
 	"log"
 	"net/http"
 	"os"
@@ -45,14 +46,15 @@ import (
 )
 
 type App struct {
-	MuxRouter     *router.MuxRouter
-	Logger        *zap.SugaredLogger
-	SSE           *sse.SSE
-	Enforcer      *casbin.SyncedEnforcer
-	server        *http.Server
-	db            *pg.DB
-	pubsubClient  *pubsub.PubSubClientServiceImpl
-	posthogClient *telemetry.PosthogClient
+	MuxRouter             *router.MuxRouter
+	Logger                *zap.SugaredLogger
+	SSE                   *sse.SSE
+	Enforcer              *casbin.SyncedEnforcer
+	server                *http.Server
+	db                    *pg.DB
+	pubsubClient          *pubsub.PubSubClientServiceImpl
+	posthogClient         *telemetry.PosthogClient
+	centralEventProcessor *eventProcessor.CentralEventProcessor
 	// used for local dev only
 	serveTls           bool
 	sessionManager2    *authMiddleware.SessionManager
@@ -69,21 +71,23 @@ func NewApp(router *router.MuxRouter,
 	sessionManager2 *authMiddleware.SessionManager,
 	posthogClient *telemetry.PosthogClient,
 	loggingMiddleware util.LoggingMiddleware,
+	centralEventProcessor *eventProcessor.CentralEventProcessor,
 ) *App {
 	//check argo connection
 	//todo - check argo-cd version on acd integration installation
 	app := &App{
-		MuxRouter:          router,
-		Logger:             Logger,
-		SSE:                sse,
-		Enforcer:           enforcer,
-		db:                 db,
-		pubsubClient:       pubsubClient,
-		serveTls:           false,
-		sessionManager2:    sessionManager2,
-		posthogClient:      posthogClient,
-		OtelTracingService: otel.NewOtelTracingServiceImpl(Logger),
-		loggingMiddleware:  loggingMiddleware,
+		MuxRouter:             router,
+		Logger:                Logger,
+		SSE:                   sse,
+		Enforcer:              enforcer,
+		db:                    db,
+		pubsubClient:          pubsubClient,
+		serveTls:              false,
+		sessionManager2:       sessionManager2,
+		posthogClient:         posthogClient,
+		OtelTracingService:    otel.NewOtelTracingServiceImpl(Logger),
+		loggingMiddleware:     loggingMiddleware,
+		centralEventProcessor: centralEventProcessor,
 	}
 	return app
 }

Wire.go

@@ -112,6 +112,7 @@ import (
 	"github.com/devtron-labs/devtron/pkg/appStore/installedApp/service/FullMode/resource"
 	"github.com/devtron-labs/devtron/pkg/appWorkflow"
 	"github.com/devtron-labs/devtron/pkg/attributes"
+	"github.com/devtron-labs/devtron/pkg/build"
 	"github.com/devtron-labs/devtron/pkg/bulkAction"
 	"github.com/devtron-labs/devtron/pkg/chart"
 	chartRepoRepository "github.com/devtron-labs/devtron/pkg/chartRepo/repository"
@@ -123,6 +124,7 @@ import (
 	"github.com/devtron-labs/devtron/pkg/devtronResource"
 	repository9 "github.com/devtron-labs/devtron/pkg/devtronResource/repository"
 	"github.com/devtron-labs/devtron/pkg/dockerRegistry"
+	"github.com/devtron-labs/devtron/pkg/eventProcessor"
 	"github.com/devtron-labs/devtron/pkg/generateManifest"
 	"github.com/devtron-labs/devtron/pkg/git"
 	"github.com/devtron-labs/devtron/pkg/gitops"
@@ -149,6 +151,8 @@ import (
 	"github.com/devtron-labs/devtron/pkg/variables"
 	"github.com/devtron-labs/devtron/pkg/variables/parsers"
 	repository10 "github.com/devtron-labs/devtron/pkg/variables/repository"
+	workflow3 "github.com/devtron-labs/devtron/pkg/workflow"
+	"github.com/devtron-labs/devtron/pkg/workflow/dag"
 	util2 "github.com/devtron-labs/devtron/util"
 	"github.com/devtron-labs/devtron/util/argo"
 	cron2 "github.com/devtron-labs/devtron/util/cron"
@@ -183,9 +187,12 @@ func InitializeApp() (*App, error) {
 		apiToken.ApiTokenWireSet,
 		webhookHelm.WebhookHelmWireSet,
 		terminal.TerminalWireSet,
+		build.BuildWireSet,
 		deployment2.DeploymentWireSet,
 		argoApplication.ArgoApplicationWireSet,
 
+		eventProcessor.EventProcessorWireSet,
+		workflow3.WorkflowWireSet,
 		// -------wireset end ----------
 		// -------
 		gitSensor.GetConfig,
@@ -483,21 +490,12 @@ func InitializeApp() (*App, error) {
 		pubsub.NewGitWebhookHandler,
 		wire.Bind(new(pubsub.GitWebhookHandler), new(*pubsub.GitWebhookHandlerImpl)),
 
-		pubsub.NewWorkflowStatusUpdateHandlerImpl,
-		wire.Bind(new(pubsub.WorkflowStatusUpdateHandler), new(*pubsub.WorkflowStatusUpdateHandlerImpl)),
-
 		pubsub.NewApplicationStatusHandlerImpl,
 		wire.Bind(new(pubsub.ApplicationStatusHandler), new(*pubsub.ApplicationStatusHandlerImpl)),
 
-		pubsub.GetCiEventConfig,
-		pubsub.NewCiEventHandlerImpl,
-		wire.Bind(new(pubsub.CiEventHandler), new(*pubsub.CiEventHandlerImpl)),
-
 		rbac.NewEnforcerUtilImpl,
 		wire.Bind(new(rbac.EnforcerUtil), new(*rbac.EnforcerUtilImpl)),
 
-		app.NewDeploymentEventHandlerImpl,
-		wire.Bind(new(app.DeploymentEventHandler), new(*app.DeploymentEventHandlerImpl)),
 		chartConfig.NewPipelineConfigRepository,
 		wire.Bind(new(chartConfig.PipelineConfigRepository), new(*chartConfig.PipelineConfigRepositoryImpl)),
 
@@ -582,8 +580,8 @@ func InitializeApp() (*App, error) {
 		pipeline.NewBlobStorageConfigServiceImpl,
 		wire.Bind(new(pipeline.BlobStorageConfigService), new(*pipeline.BlobStorageConfigServiceImpl)),
 
-		pipeline.NewWorkflowDagExecutorImpl,
-		wire.Bind(new(pipeline.WorkflowDagExecutor), new(*pipeline.WorkflowDagExecutorImpl)),
+		dag.NewWorkflowDagExecutorImpl,
+		wire.Bind(new(dag.WorkflowDagExecutor), new(*dag.WorkflowDagExecutorImpl)),
 		appClone.NewAppCloneServiceImpl,
 		wire.Bind(new(appClone.AppCloneService), new(*appClone.AppCloneServiceImpl)),
 

api/argoApplication/wire_argoApplication.go

@@ -14,4 +14,4 @@ var ArgoApplicationWireSet = wire.NewSet(
 
 	NewArgoApplicationRouterImpl,
 	wire.Bind(new(ArgoApplicationRouter), new(*ArgoApplicationRouterImpl)),
-)
+)

api/auth/user/UserRestHandler.go

@@ -48,6 +48,7 @@ type UserRestHandler interface {
 	GetAllV2(w http.ResponseWriter, r *http.Request)
 	DeleteUser(w http.ResponseWriter, r *http.Request)
 	GetAllDetailedUsers(w http.ResponseWriter, r *http.Request)
+	BulkDeleteUsers(w http.ResponseWriter, r *http.Request)
 	FetchRoleGroupById(w http.ResponseWriter, r *http.Request)
 	CreateRoleGroup(w http.ResponseWriter, r *http.Request)
 	UpdateRoleGroup(w http.ResponseWriter, r *http.Request)
@@ -56,6 +57,7 @@ type UserRestHandler interface {
 	FetchDetailedRoleGroups(w http.ResponseWriter, r *http.Request)
 	FetchRoleGroupsByName(w http.ResponseWriter, r *http.Request)
 	DeleteRoleGroup(w http.ResponseWriter, r *http.Request)
+	BulkDeleteRoleGroups(w http.ResponseWriter, r *http.Request)
 	CheckUserRoles(w http.ResponseWriter, r *http.Request)
 	SyncOrchestratorToCasbin(w http.ResponseWriter, r *http.Request)
 	UpdateTriggerPolicyForTerminalAccess(w http.ResponseWriter, r *http.Request)
@@ -360,7 +362,7 @@ func (handler UserRestHandlerImpl) GetAllV2(w http.ResponseWriter, r *http.Reque
 		common.WriteJsonResp(w, errors.New("unauthorized"), nil, http.StatusForbidden)
 		return
 	}
-	req := &bean.FetchListingRequest{}
+	req := &bean.ListingRequest{}
 	err = decoder.Decode(req, r.URL.Query())
 	if err != nil {
 		handler.logger.Errorw("request err, GetAll", "err", err, "payload", req)
@@ -519,8 +521,8 @@ func (handler UserRestHandlerImpl) DeleteUser(w http.ResponseWriter, r *http.Req
 	}
 	//RBAC enforcer Ends
 	//validation
-	validated := helper.CheckIfUserDevtronManaged(int32(id))
-	if !validated {
+	validated := helper.IsSystemOrAdminUser(int32(id))
+	if validated {
 		err = &util.ApiError{Code: "400", HttpStatusCode: 400, UserMessage: "cannot delete system or admin user"}
 		handler.logger.Errorw("request err, DeleteUser, validation failed", "id", id, "err", err)
 		common.WriteJsonResp(w, err, nil, http.StatusBadRequest)
@@ -537,6 +539,56 @@ func (handler UserRestHandlerImpl) DeleteUser(w http.ResponseWriter, r *http.Req
 	common.WriteJsonResp(w, err, res, http.StatusOK)
 }
 
+func (handler UserRestHandlerImpl) BulkDeleteUsers(w http.ResponseWriter, r *http.Request) {
+	userId, err := handler.userService.GetLoggedInUser(r)
+	if userId == 0 || err != nil {
+		common.WriteJsonResp(w, err, "Unauthorized User", http.StatusUnauthorized)
+		return
+	}
+	decoder := json.NewDecoder(r.Body)
+	// request decoding
+	var request *bean.BulkDeleteRequest
+	err = decoder.Decode(&request)
+	if err != nil {
+		handler.logger.Errorw("request err, BulkDeleteUsers", "payload", request, "err", err)
+		common.WriteJsonResp(w, err, nil, http.StatusBadRequest)
+		return
+	}
+	handler.logger.Debugw("request payload, BulkDeleteUsers", "payload", request)
+	// setting logged in user Id for audit logs
+	request.LoggedInUserId = userId
+
+	// validations for system and admin user
+	err = helper.CheckValidationForAdminAndSystemUserId(request.Ids)
+	if err != nil {
+		handler.logger.Errorw("request err, BulkDeleteUsers, validation failed", "payload", request, "err", err)
+		common.WriteJsonResp(w, err, nil, http.StatusBadRequest)
+		return
+	}
+
+	// RBAC enforcer applying
+	token := r.Header.Get("token")
+	if ok := handler.enforcer.Enforce(token, casbin.ResourceGlobal, casbin.ActionGet, "*"); !ok {
+		common.WriteJsonResp(w, errors.New("unauthorized"), nil, http.StatusForbidden)
+		return
+	}
+	// struct validation
+	err = handler.validator.Struct(request)
+	if err != nil {
+		handler.logger.Errorw("validation err, BulkDeleteUsers", "payload", request, "err", err)
+		common.WriteJsonResp(w, err, nil, http.StatusBadRequest)
+		return
+	}
+	// service call
+	res, err := handler.userService.BulkDeleteUsers(request)
+	if err != nil {
+		handler.logger.Errorw("service err, BulkDeleteUsers", "payload", request, "err", err)
+		common.WriteJsonResp(w, err, nil, http.StatusInternalServerError)
+		return
+	}
+	common.WriteJsonResp(w, nil, res, http.StatusOK)
+}
+
 func (handler UserRestHandlerImpl) FetchRoleGroupById(w http.ResponseWriter, r *http.Request) {
 	vars := mux.Vars(r)
 	/* #nosec */
@@ -769,7 +821,7 @@ func (handler UserRestHandlerImpl) FetchRoleGroupsV2(w http.ResponseWriter, r *h
 		return
 	}
 
-	req := &bean.FetchListingRequest{}
+	req := &bean.ListingRequest{}
 	err = decoder.Decode(req, r.URL.Query())
 	if err != nil {
 		handler.logger.Errorw("request err, FetchRoleGroups", "err", err, "payload", req)
@@ -863,8 +915,8 @@ func (handler UserRestHandlerImpl) FetchDetailedRoleGroups(w http.ResponseWriter
 		common.WriteJsonResp(w, errors.New("unauthorized"), nil, http.StatusForbidden)
 		return
 	}
-
-	res, err := handler.roleGroupService.FetchDetailedRoleGroups()
+	req := &bean.ListingRequest{ShowAll: true}
+	res, err := handler.roleGroupService.FetchDetailedRoleGroups(req)
 	if err != nil {
 		handler.logger.Errorw("service err, FetchRoleGroups", "err", err)
 		common.WriteJsonResp(w, err, "", http.StatusInternalServerError)
@@ -950,6 +1002,50 @@ func (handler UserRestHandlerImpl) DeleteRoleGroup(w http.ResponseWriter, r *htt
 	common.WriteJsonResp(w, err, res, http.StatusOK)
 }
 
+func (handler UserRestHandlerImpl) BulkDeleteRoleGroups(w http.ResponseWriter, r *http.Request) {
+	userId, err := handler.userService.GetLoggedInUser(r)
+	if userId == 0 || err != nil {
+		common.WriteJsonResp(w, err, "Unauthorized User", http.StatusUnauthorized)
+		return
+	}
+	decoder := json.NewDecoder(r.Body)
+	// request decoding
+	var request *bean.BulkDeleteRequest
+	err = decoder.Decode(&request)
+	if err != nil {
+		handler.logger.Errorw("request err, BulkDeleteRoleGroups", "payload", request, "err", err)
+		common.WriteJsonResp(w, err, nil, http.StatusBadRequest)
+		return
+	}
+	handler.logger.Debugw("request payload, BulkDeleteRoleGroups", "payload", request)
+	// setting logged in user Id for audit logs
+	request.LoggedInUserId = userId
+
+	// struct validation
+	err = handler.validator.Struct(request)
+	if err != nil {
+		handler.logger.Errorw("validation err, BulkDeleteRoleGroups", "payload", request, "err", err)
+		common.WriteJsonResp(w, err, nil, http.StatusBadRequest)
+		return
+	}
+
+	// RBAC enforcer applying
+	token := r.Header.Get("token")
+	if ok := handler.enforcer.Enforce(token, casbin.ResourceGlobal, casbin.ActionGet, "*"); !ok {
+		common.WriteJsonResp(w, errors.New("unauthorized"), nil, http.StatusForbidden)
+		return
+	}
+
+	// service call
+	res, err := handler.roleGroupService.BulkDeleteRoleGroups(request)
+	if err != nil {
+		handler.logger.Errorw("service err, BulkDeleteRoleGroups", "payload", request, "err", err)
+		common.WriteJsonResp(w, err, nil, http.StatusInternalServerError)
+		return
+	}
+	common.WriteJsonResp(w, nil, res, http.StatusOK)
+}
+
 func (handler UserRestHandlerImpl) CheckUserRoles(w http.ResponseWriter, r *http.Request) {
 	userId, err := handler.userService.GetLoggedInUser(r)
 	if userId == 0 || err != nil {

api/auth/user/UserRouter.go

@@ -48,6 +48,8 @@ func (router UserRouterImpl) InitUserRouter(userAuthRouter *mux.Router) {
 		HandlerFunc(router.userRestHandler.GetAll).Methods("GET")
 	userAuthRouter.Path("").
 		HandlerFunc(router.userRestHandler.UpdateUser).Methods("PUT")
+	userAuthRouter.Path("/bulk").
+		HandlerFunc(router.userRestHandler.BulkDeleteUsers).Methods("DELETE")
 	userAuthRouter.Path("/{id}").
 		HandlerFunc(router.userRestHandler.DeleteUser).Methods("DELETE")
 	userAuthRouter.Path("/detail/get").
@@ -68,6 +70,8 @@ func (router UserRouterImpl) InitUserRouter(userAuthRouter *mux.Router) {
 	userAuthRouter.Path("/role/group/search").
 		Queries("name", "{name}").
 		HandlerFunc(router.userRestHandler.FetchRoleGroupsByName).Methods("GET")
+	userAuthRouter.Path("/role/group/bulk").
+		HandlerFunc(router.userRestHandler.BulkDeleteRoleGroups).Methods("DELETE")
 	userAuthRouter.Path("/role/group/{id}").
 		HandlerFunc(router.userRestHandler.DeleteRoleGroup).Methods("DELETE")
 

api/auth/user/wire_user.go

@@ -5,15 +5,13 @@ import (
 	"github.com/devtron-labs/devtron/pkg/auth/authorisation/casbin"
 	user2 "github.com/devtron-labs/devtron/pkg/auth/user"
 	repository2 "github.com/devtron-labs/devtron/pkg/auth/user/repository"
-	"github.com/devtron-labs/devtron/pkg/auth/user/repository/helper"
 	"github.com/google/wire"
 )
 
 //depends on sql,validate,logger
 
 var UserWireSet = wire.NewSet(
 	UserAuditWireSet,
-	helper.NewUserRepositoryQueryBuilder,
 	NewUserAuthRouterImpl,
 	wire.Bind(new(UserAuthRouter), new(*UserAuthRouterImpl)),
 	NewUserAuthHandlerImpl,

api/bean/UserRequest.go

@@ -130,7 +130,7 @@ type RoleGroupListingResponse struct {
 	TotalCount int          `json:"totalCount"`
 }
 
-type FetchListingRequest struct {
+type ListingRequest struct {
 	SearchKey  string         `json:"searchKey"`
 	SortOrder  bean.SortOrder `json:"sortOrder"`
 	SortBy     bean.SortBy    `json:"sortBy"`
@@ -139,3 +139,9 @@ type FetchListingRequest struct {
 	ShowAll    bool           `json:"showAll"`
 	CountCheck bool           `json:"-"`
 }
+
+type BulkDeleteRequest struct {
+	Ids            []int32         `json:"ids"`
+	ListingRequest *ListingRequest `json:"listingRequest,omitempty"`
+	LoggedInUserId int32           `json:"-"`
+}