Multitenant backend (#775)

* update test.exs to include optional test setting

* initial schema change to account

* added schema for course_registration

* updated accounts query

* Removed settings context and shifted sublanguages to courses context

* Added initial tests for courses context and shifted settings tests over

* Added initial tests for courses context controllers

* Added course table changeset tests

* updated course_registration context function/getters

* Updated course config functions and tests

* Fix filename typo

* Updated endpoint url for course config update to prevent clash with assessment config and types updates

* Added assesment config routing, functions and tests

* Temporarily fix references to Courses context in miscellaneous files

* Added context functions and tests for assessment types

* adding course_registration test set

* Updated courses context tests

* Added update assessment types routing and routing tests

* updated course_registration test

* Updated get course config tests to include assessment types for the specified course

* added pipeline for course_registration to assign course_reg in conn

* Temporary edits to make tests compilable

* Updated admin courses controller routes and test urls

* Updated courses controller routes and test urls

* Update admin courses controller tests

* Updated courses context tests

* Updated course_registrations function

* Follow up on router assign_course

* addded course_registration test for changeset

* fix group factory, partial fix for the ecto.setup flow

* updated course_registration context function test getters

* Updated sourcecast context functions and tests

* updated test for course_registration insert and update

* updated course_registration test

* updated course_registration test

* Updated sourcecast tests

* Updated assessment types tests

* fix course_registration_test.exs

* Updated sourcecast changeset

* Updated stories schema and tests

* upadted assessment schema and relevant test

* update assessment factory

* updated submissions schema with test, and added db migration

* added latest_viewed_course in user and course fk to group

* fix snake case

* updated accounts context function and adminUserController with test

* update accounts_test with get_users_by and fix queries with no groups

* update userController with test(except for stories)

* fix accounts test

* added latest_viewed context functions with test

* fix snake_case issue

* update seed.exs for initial test with frontend

* updated seed with latest_viewed

* fix user view snake_case issue

* refactor assessment_config to belong to assessment type with test and seeds

* update_assessment_config: move order from url param to json boday

* upadte courseName and courseShortName

* update assessment_type test in user controller

* update seed

* update admin controller test to test updated result and fix course field names

* refactor admin_course_controller test

* fix change of field name in course in user view

* remove grade/max_grade/adjustment in assessments context

* fix assessments show & update submission_votes voter

* fix assessment submit and query avenger_of? with test

* updated bonus_xp logit with assessment config

* update formatting and seed

* Updated google claim extractor

* Added github auth provider

* Namespacing for different auth providers

* Updated dev.secrets.exs.example

* Updated seed

* Update github auth config

* Update user seeds

* added get assessment config

* updated config route, combine assessment config table

* debuging for working with frontend

* remove decay rate and update assessment config reorder logit with test

* Updated sign_in flow and user table to allow for NULL name

* refactor reorder logit with test

* Added update_role and delete_user endpoints (#781)

* Update views to match frontend requirements

* Added update user role route

* Added delete user from course

* tested reorder and mass_upsert_reorder

* Refactor update_role and delete_course_registration

* update test cases and fix some credo issues

* updated bonus_xp logic

* update notifications with test

* Added add_users endpoint and tests

* Format

* Added create course endpoint and tests

* updated notification controller with test

* updated assessments context functions with test(skipping contest)

* updated answer controller with test

* added delete assessment_config route with test

* Updated provider tests

* Format

* Temp updates to migration file

* Complete migration file

* remove required in notification

* fixing test seed and update with migration

* update assessment controller with test + alter assessment config table

* finalise assessment controller with test

* Updated assessment config json to proper camelCase

* Remove capitalisation of assessment types inside assessment_config changeset

* update /user call

* update xml parser for assessment with test

* updated assessment config booleans

* rename /user view field

* updated /user endpoint with skippable sent

* updated admin assessment controller with test

* update /user call and remove settings test

* finalised /user call

* fix auth_controller_test

* updated contest test

* remove mentor from group

* setting up admin grading controller test

* Updated admin PUT /users endpoint

* Namespace existing usernames in migration file

* Updated migration file assessment type configs

* Updated add users logic

* updated admin grading controller with test(less grading summary)

* merging

* Updated devices

* refactor assessment config booleans to question

* code formatting

* Fix migration file

* Fix errors when testing with frontend

* added isManuallyGraded field to admin grading endpoint

* fix testcases

* delete assessment config deletes relations + tested

* fix assessment grading view

* fix format and credo issues

* Update migration file

* added unique constaints for assessment number and course_id

* rename user view crId to courseRegId

* updated jobs and autograder with test

* update assessments controller test

* updated grading summary with test

* fix spec and rename field

* reorder grading summary

* fix grader_id in migration

* grading index filter by course

* read all notifications in the previous course

* prepare for multitenant deploy

* prepare for multitenant deploy

* Debug workflow

* Specify --overwrite

* update init.sh url

* add role in /user call course array

* add role in /user call course array

* clean up unused code

* set latest_viewed_id to nil in users for non-viewable course

* update question testcases format

* add migration for update testcase format

* update migration

* Increase upsert users and groups transaction timeout to handle large requests of up to 1000 entries

* update admin assets controller test

* update achievement for multitenant upgrade

* fix formatting

* renaming and cleaning up code

* rename latest viewed course

* add course_reg_id to admin user routes

* update migration

* update migration

* update migration

* update achievement migration

* update contest leaderboard

* update contest test

* fix assessment config update

* fix source chapter and variant changeset condition

* fix course changeset and validation

* simplify function

* update delete route

* fix issues

* fix migration

Co-authored-by: Chow En Rong <[email protected]>
Co-authored-by: angelsl <[email protected]>

Author: 3 people

.github/workflows/cd.yml

@@ -4,6 +4,7 @@ on:
     branches:
       - stable
       - master
+      - multitenant-deploy
     paths:
       - 'config/**'
       - 'lib/**'
@@ -53,9 +54,7 @@ jobs:
         run: |
           mix deps.get
       - name: mix release
-        run: |
-          rm -f _build/prod/cadet-0.0.1.tar.gz
-          mix release
+        run: mix release --overwrite
       - name: Create release
         uses: marvinpinto/action-automatic-releases@latest
         with:

config/dev.secrets.exs.example

@@ -26,6 +26,17 @@ config :cadet,
     #      # You may need to write your own claim extractor for other providers
     #      claim_extractor: Cadet.Auth.Providers.CognitoClaimExtractor
     #    }},
+    # # To use authentication with GitHub
+    # "github" =>
+    #   {Cadet.Auth.Providers.GitHub,
+    #    %{
+    #       # A map of GitHub client_id => client_secret
+    #       clients: %{
+    #         "client_id" => "client_secret"
+    #       },
+    #       token_url: "https://github.com/login/oauth/access_token",
+    #       user_api: "https://api.github.com/user"
+    #    }},
     "test" =>
       {Cadet.Auth.Providers.Config,
        [

config/test.exs

@@ -52,22 +52,22 @@ config :cadet,
            token: "admin_token",
            code: "admin_code",
            name: "Test Admin",
-           username: "admin",
-           role: :admin
+           username: "admin"
+           #  role: :admin
          },
          %{
            token: "staff_token",
            code: "staff_code",
            name: "Test Staff",
-           username: "staff",
-           role: :staff
+           username: "staff"
+           #  role: :staff
          },
          %{
            token: "student_token",
            code: "student_code",
-           name: "Test Student",
-           username: "student",
-           role: :student
+           name: "student 1",
+           username: "E1234564"
+           #  role: :student
          }
        ]}
   },

deployment/init.sh

@@ -8,9 +8,9 @@
 set -euxo pipefail
 
 BASEDIR=/opt/cadet
-PKGURL='https://github.com/source-academy/cadet/releases/download/latest-stable/cadet-0.0.1.tar.gz'
+PKGURL='https://github.com/source-academy/cadet/releases/download/latest-multitenant-deploy/cadet-0.0.1.tar.gz'
 PKGPATH='/run/cadet-init/cadet-0.0.1.tar.gz'
-SVCURL=${SVCURL:-'https://raw.githubusercontent.com/source-academy/cadet/stable/deployment/cadet.service'}
+SVCURL=${SVCURL:-'https://raw.githubusercontent.com/source-academy/cadet/multitenant-deploy/deployment/cadet.service'}
 SVCPATH='/etc/systemd/system/cadet.service'
 
 if [ "$EUID" -ne 0 ]; then

lib/cadet/accounts/accounts.ex

@@ -6,25 +6,16 @@ defmodule Cadet.Accounts do
 
   import Ecto.Query
 
-  alias Cadet.Accounts.{Query, User}
+  alias Cadet.Accounts.{Query, User, CourseRegistration}
   alias Cadet.Auth.Provider
 
   @doc """
   Register new User entity using Cadet.Accounts.Form.Registration
 
   Returns {:ok, user} on success, otherwise {:error, changeset}
   """
-  def register(attrs = %{username: username}, role) when is_binary(username) do
-    attrs |> Map.put(:role, role) |> insert_or_update_user()
-  end
-
-  @doc """
-  Creates User entity with specified attributes.
-  """
-  def create_user(attrs \\ %{}) do
-    %User{}
-    |> User.changeset(attrs)
-    |> Repo.insert()
+  def register(attrs = %{username: username}) when is_binary(username) do
+    attrs |> insert_or_update_user()
   end
 
   @doc """
@@ -53,58 +44,79 @@ defmodule Cadet.Accounts do
     Repo.get(User, id)
   end
 
+  @get_all_role ~w(admin staff)a
   @doc """
   Returns users matching a given set of criteria.
   """
-  def get_users(filter \\ []) do
-    User
-    |> join(:left, [u], g in assoc(u, :group))
-    |> preload([u, g], group: g)
-    |> get_users(filter)
+  def get_users_by(filter \\ [], %CourseRegistration{course_id: course_id, role: role})
+      when role in @get_all_role do
+    CourseRegistration
+    |> where([cr], cr.course_id == ^course_id)
+    |> join(:inner, [cr], u in assoc(cr, :user))
+    |> preload([cr, u], user: u)
+    |> join(:left, [cr, u], g in assoc(cr, :group))
+    |> preload([cr, u, g], group: g)
+    |> get_users_helper(filter)
   end
 
-  defp get_users(query, []), do: Repo.all(query)
+  defp get_users_helper(query, []), do: Repo.all(query)
 
-  defp get_users(query, [{:group, group} | filters]),
-    do: query |> where([u, g], g.name == ^group) |> get_users(filters)
+  defp get_users_helper(query, [{:group, group} | filters]),
+    do: query |> where([cr, u, g], g.name == ^group) |> get_users_helper(filters)
 
-  defp get_users(query, [filter | filters]), do: query |> where(^[filter]) |> get_users(filters)
+  defp get_users_helper(query, [filter | filters]),
+    do: query |> where(^[filter]) |> get_users_helper(filters)
 
   @spec sign_in(String.t(), Provider.token(), Provider.provider_instance()) ::
           {:error, :bad_request | :forbidden | :internal_server_error, String.t()} | {:ok, any}
   @doc """
   Sign in using given user ID
   """
   def sign_in(username, token, provider) do
-    case Repo.one(Query.username(username)) do
-      nil ->
-        # user is not registered in our database
-        with {:ok, role} <- Provider.get_role(provider, token),
-             {:ok, name} <- Provider.get_name(provider, token),
-             {:ok, _} <- register(%{name: name, username: username}, role) do
-          sign_in(username, name, token)
-        else
-          {:error, :invalid_credentials, err} ->
-            {:error, :forbidden, err}
-
-          {:error, :upstream, err} ->
-            {:error, :bad_request, err}
-
-          {:error, _err} ->
-            {:error, :internal_server_error}
-        end
-
-      user ->
-        {:ok, user}
+    user = username |> Query.username() |> Repo.one()
+
+    if is_nil(user) or is_nil(user.name) do
+      # user is not registered in our database or does not have a name
+      # (accounts pre-created by instructors do not have a name, and has to be fetched
+      #  from the auth provider during sign_in)
+      with {:ok, name} <- Provider.get_name(provider, token),
+           {:ok, _} <- register(%{name: name, username: username}) do
+        sign_in(username, name, token)
+      else
+        {:error, :invalid_credentials, err} ->
+          {:error, :forbidden, err}
+
+        {:error, :upstream, err} ->
+          {:error, :bad_request, err}
+
+        {:error, _err} ->
+          {:error, :internal_server_error}
+      end
+    else
+      {:ok, user}
     end
   end
 
-  def update_game_states(user = %User{}, new_game_state = %{}) do
-    case user
-         |> User.changeset(%{game_states: new_game_state})
-         |> Repo.update() do
-      result = {:ok, _} -> result
-      {:error, changeset} -> {:error, {:internal_server_error, full_error_messages(changeset)}}
+  def update_latest_viewed(user = %User{id: user_id}, latest_viewed_course_id)
+      when is_ecto_id(latest_viewed_course_id) do
+    CourseRegistration
+    |> where(user_id: ^user_id)
+    |> where(course_id: ^latest_viewed_course_id)
+    |> Repo.one()
+    |> case do
+      nil ->
+        {:error, {:bad_request, "user is not in the course"}}
+
+      _ ->
+        case user
+             |> User.changeset(%{latest_viewed_course_id: latest_viewed_course_id})
+             |> Repo.update() do
+          result = {:ok, _} ->
+            result
+
+          {:error, changeset} ->
+            {:error, {:internal_server_error, full_error_messages(changeset)}}
+        end
     end
   end
 end

lib/cadet/accounts/course_registration.ex

@@ -0,0 +1,31 @@
+defmodule Cadet.Accounts.CourseRegistration do
+  @moduledoc """
+  The mapping table representing the registration of a user to a course.
+  """
+  use Cadet, :model
+
+  alias Cadet.Accounts.{Role, User}
+  alias Cadet.Courses.{Course, Group}
+
+  schema "course_registrations" do
+    field(:role, Role)
+    field(:game_states, :map)
+
+    belongs_to(:group, Group)
+    belongs_to(:user, User)
+    belongs_to(:course, Course)
+
+    timestamps()
+  end
+
+  @required_fields ~w(user_id course_id role)a
+  @optional_fields ~w(game_states group_id)a
+
+  def changeset(course_registration, params \\ %{}) do
+    course_registration
+    |> cast(params, @optional_fields ++ @required_fields)
+    |> add_belongs_to_id_from_model([:user, :group, :course], params)
+    |> validate_required(@required_fields)
+    |> unique_constraint(:user_id, name: :course_registrations_user_id_course_id_index)
+  end
+end