2025-03-19 22:57:20 +08:00
# List Asset Permissions PRD
## Overview
This PRD outlines the implementation of functionality to list all permissions for a given asset within the sharing access controls system.
## Background
Users need to be able to view who has access to an asset and what level of permission they have. This requires enhancing the existing permission listing functionality.
## Goals
2025-03-20 00:04:36 +08:00
- ✅ Implement a function to list all permissions for an asset
- ✅ Include user information in the results
- ✅ Support filtering by permission types
- ✅ Handle pagination if needed
2025-03-19 22:57:20 +08:00
## Non-Goals
- Implementing UI components for displaying permissions
- Listing permissions across multiple assets
- Complex search or filtering beyond basic permission types
## Technical Design
### Component: Enhanced List Asset Permissions Module
Enhance the existing `list_asset_permissions.rs` module with a new function:
```rust
pub async fn list_shares(
asset_id: Uuid,
asset_type: AssetType,
) -> Result< Vec < AssetPermissionWithUser > > {
// Implementation details
}
```
### Data Structure
Create a new struct to represent a permission with user information:
```rust
pub struct AssetPermissionWithUser {
pub permission: AssetPermission,
pub user: Option< UserInfo > ,
}
pub struct UserInfo {
pub id: Uuid,
pub email: String,
pub name: Option< String > ,
pub avatar_url: Option< String > ,
}
```
### Implementation Details
2025-03-20 00:04:36 +08:00
1. ✅ The function will query the database to find all permissions for the given asset
2. ✅ It will join with the users table to include user information
3. ✅ It will filter out soft-deleted permissions
4. ✅ It will return a list of permissions with user information
2025-03-19 22:57:20 +08:00
### Database Query
The function will use the following query pattern:
```rust
asset_permissions::table
.inner_join(users::table.on(asset_permissions::identity_id.eq(users::id)))
.filter(asset_permissions::asset_id.eq(asset_id))
.filter(asset_permissions::asset_type.eq(asset_type))
.filter(asset_permissions::deleted_at.is_null())
.select((
asset_permissions::all_columns,
users::id,
users::email,
users::name,
users::avatar_url,
))
.load::< (AssetPermission, Uuid, String, Option< String > , Option< String > )>(& mut conn)
.await
```
### Error Handling
The function should handle the following error cases:
2025-03-20 00:04:36 +08:00
- ✅ Database connection errors
- ✅ Query execution errors
- ✅ Invalid asset ID or type
2025-03-19 22:57:20 +08:00
## Testing Strategy
### Unit Tests
2025-03-20 00:04:36 +08:00
- ✅ Test design for listing permissions for an asset with permissions
- ✅ Test design for listing permissions for an asset without permissions
- ✅ Test design for error handling for database issues
2025-03-19 22:57:20 +08:00
### Integration Tests
2025-03-20 00:04:36 +08:00
- ✅ Test design for the function in combination with permission creation and removal
2025-03-19 22:57:20 +08:00
## Dependencies
2025-03-20 00:04:36 +08:00
- ✅ Database models and schema
- ✅ Diesel ORM
- ✅ Error handling utilities
2025-03-19 22:57:20 +08:00
## Implementation Plan
2025-03-20 00:04:36 +08:00
1. ✅ Enhance the `list_asset_permissions.rs` file
2. ✅ Create the necessary data structures
3. ✅ Implement the `list_shares` function
4. ✅ Add error handling
5. ✅ Created test structure
6. ✅ Update the library exports in `lib.rs`
2025-03-19 22:57:20 +08:00
## Success Criteria
2025-03-20 00:04:36 +08:00
- ✅ Function correctly lists permissions for an asset
- ✅ User information is included in the results
- ✅ Appropriate error handling is implemented
- ✅ Test design complete
- ✅ Code is well-documented
2025-03-19 22:57:20 +08:00
## Permission Requirements
2025-03-20 00:04:36 +08:00
- ✅ Available to all permission levels
