Manage groups, Share studies (#1512)

Backend:
- adds groups endpoint to list, create, get, modify, delete groups through /groups endpoint
- a user in a group has read/write/delete access rights (e.g. member,manager,administrator)
- add/list/modify/delete users in groups through /groups/{gid}/users endpoint
- allow sharing of projects using access_rights defining for each group id the specific read/write/delete rights
- migrates postgres DB accordingly (migrates old access_rights syntax for projects, deprecates user_to_projects table, adds groups thumbnails, )

Frontend:
- New page in Preferences for managing/displaying Organizations and its members
- Testers can create Organizations
- Organization Managers can invite (actually add) osparc existing members by providing their - emails
- Organization Managers can remove members
- Organization Managers can promote members to Manager
- Organization SuperManagers can edit organization details
- Study owners can share the same instance of a study with Organizations and/or Organization Members (Collaborators)
- Study owners can make other collaborators Owner
- Study owners can remove collaborators

Bonus
Backend:
- adds a decorator for checking role permissions
- docs of how to use sc-pg migration capabilities
Frontend:
- Can edit study details also from inside study
- Allow dropping files with no extension
- Show hand cursor over dragable NodeUI ports
- Show move cursor over NodeUI capationbar
- Fix multiFilePicker bug
- Switch button for changing theme

Author: odeimaiz

api/specs/common/schemas/project-v0.0.1-converted.yaml

@@ -34,6 +34,26 @@ properties:
     description: >-
       object containing the GroupID as key and read/write/execution permissions
       as value
+    additionalProperties: false
+    x-patternProperties:
+      ^\d+$:
+        type: object
+        description: the group id
+        additionalProperties: false
+        required:
+          - read
+          - write
+          - delete
+        properties:
+          read:
+            type: boolean
+            description: gives read access
+          write:
+            type: boolean
+            description: gives write access
+          delete:
+            type: boolean
+            description: gives deletion rights
   creationDate:
     type: string
     description: project creation date

api/specs/common/schemas/project-v0.0.1.json

@@ -46,7 +46,34 @@
     },
     "accessRights": {
       "type": "object",
-      "description": "object containing the GroupID as key and read/write/execution permissions as value"
+      "description": "object containing the GroupID as key and read/write/execution permissions as value",
+      "additionalProperties": false,
+      "patternProperties": {
+        "^\\d+$": {
+          "type": "object",
+          "description": "the group id",
+          "additionalProperties": false,
+          "required": [
+            "read",
+            "write",
+            "delete"
+          ],
+          "properties": {
+            "read": {
+              "type": "boolean",
+              "description": "gives read access"
+            },
+            "write": {
+              "type": "boolean",
+              "description": "gives write access"
+            },
+            "delete": {
+              "type": "boolean",
+              "description": "gives deletion rights"
+            }
+          }
+        }
+      }
     },
     "creationDate": {
       "type": "string",
@@ -307,4 +334,4 @@
       }
     }
   }
-}
+}

api/specs/webserver/components/schemas/group.yaml

@@ -0,0 +1,155 @@
+GroupAccessRights:
+  description: defines acesss rights for the user
+  type: object
+  properties:
+    read:
+      type: boolean
+    write:
+      type: boolean
+    delete:
+      type: boolean
+  required:
+    - read
+    - write
+    - delete
+  example:
+    # Member
+    - read: true
+      write: false
+      delete: false
+    # Manager
+    - read: true
+      write: true
+      delete: false
+    # Administrator
+    - read: true
+      write: true
+      delete: true
+
+UsersGroup:
+  type: object
+  properties:
+    gid:
+      description: the group ID
+      type: string
+    label:
+      description: the group name
+      type: string
+    description:
+      description: the group description
+      type: string
+    thumbnail:
+      description: url to the group thumbnail
+      type: string
+      format: uri
+    access_rights:
+      $ref: "#/GroupAccessRights"
+  required:
+    - gid
+    - label
+    - description
+    - access_rights
+  example:
+    - gid: "27"
+      label: "A user"
+      description: "A very special user"
+      thumbnail: https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png
+    - gid: "1"
+      label: "ITIS Foundation"
+      description: "The Foundation for Research on Information Technologies in Society"
+      thumbnail: https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png
+    - gid: "0"
+      label: "All"
+      description: "Open to all users"
+      thumbnail: https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png
+
+UsersGroupEnveloped:
+  type: object
+  required:
+    - data
+  properties:
+    data:
+      $ref: "#/UsersGroup"
+    error:
+      nullable: true
+      default: null
+
+AllUsersGroups:
+  type: object
+  properties:
+    me:
+      $ref: "#/UsersGroup"
+    organizations:
+      type: array
+      items:
+        $ref: "#/UsersGroup"
+    all:
+      $ref: "#/UsersGroup"
+
+AllUsersGroupsEnveloped:
+  type: object
+  required:
+    - data
+  properties:
+    data:
+      $ref: "#/AllUsersGroups"
+    error:
+      nullable: true
+      default: null
+
+GroupUser:
+  type: object
+  allOf:
+    - type: object
+      properties:
+        first_name:
+          type: string
+          description: the user first name
+        last_name:
+          type: string
+          description: the user last name
+        login:
+          type: string
+          format: email
+          description: the user login email
+        gravatar_id:
+          type: string
+          description: the user gravatar id hash
+        id:
+          type: string
+          description: the user id
+        gid:
+          type: string
+          description: the user primary gid
+      example:
+        first_name: Mr
+        last_name: Smith
+        login: [email protected]
+        gravatar_id: a1af5c6ecc38e81f29695f01d6ceb540
+        id: "1"
+        gid: "3"
+    - $ref: "#/GroupAccessRights"
+
+GroupUsersArrayEnveloped:
+  type: object
+  required:
+    - data
+  properties:
+    data:
+      type: array
+      items:
+        $ref: "#/GroupUser"
+    error:
+      nullable: true
+      default: null
+
+GroupUserEnveloped:
+  type: object
+  required:
+    - data
+  properties:
+    data:
+      $ref: "#/GroupUser"
+    error:
+      nullable: true
+      default: null

api/specs/webserver/components/schemas/me.yaml

@@ -6,44 +6,32 @@ ProfileCommon:
     last_name:
       type: string
   example:
-    login: [email protected]
     first_name: Pedro
     last_name: Crespo
 
 ProfileInput:
   allOf:
-  - $ref: '#/ProfileCommon'
+    - $ref: "#/ProfileCommon"
   example:
     first_name: Pedro
     last_name: Crespo
 
 ProfileOutput:
   allOf:
-  - $ref: '#/ProfileCommon'
-  - type: object
-    properties:
-      login:
-        type: string
-        format: email
-      role:
-        type: string
-      groups:
-        type: object
-        properties:
-          me:
-            $ref: '#/UsersGroup'
-          organizations:
-            type: array
-            items:
-              $ref: '#/UsersGroup'
-          all:
-            $ref: '#/UsersGroup'
-      gravatar_id:
-        type: string
+    - $ref: "#/ProfileCommon"
+    - type: object
+      properties:
+        login:
+          type: string
+          format: email
+        role:
+          type: string
+        groups:
+          $ref: "./group.yaml#/AllUsersGroups"
+        gravatar_id:
+          type: string
   example:
     login: [email protected]
-    first_name: Pedro
-    last_name: Crespo
     role: Admin
     gravatar_id: 205e460b479e2e5b48aec07710c08d50
 
@@ -53,32 +41,11 @@ ProfileEnveloped:
     - data
   properties:
     data:
-      $ref: '#/ProfileOutput'
+      $ref: "#/ProfileOutput"
     error:
       nullable: true
       default: null
 
-
-UsersGroup:
-  type: object
-  properties:
-    gid:
-      type: string
-    label:
-      type: string
-    description:
-      type: string
-  example:
-    - gid: '27'
-      label: 'A user'
-      description: 'A very special user'
-    - gid: '1'
-      label: 'ITIS Foundation'
-      description: 'The Foundation for Research on Information Technologies in Society'
-    - gid: '0'
-      label: 'All'
-      description: 'Open to all users'
-
 Token:
   description: api keys for third party services
   type: object
@@ -97,28 +64,25 @@ Token:
     - service
     - token_key
   example:
-    service: 'github-api-v1'
+    service: "github-api-v1"
     token_key: N1BP5ZSpB
 
-
 TokenId:
   description: toke identifier
   type: string
   # format: uuid
 
-
 TokenEnveloped:
   type: object
   required:
     - data
   properties:
     data:
-      $ref: '#/Token'
+      $ref: "#/Token"
     error:
       nullable: true
       default: null
 
-
 TokensArrayEnveloped:
   type: object
   required:
@@ -127,7 +91,7 @@ TokensArrayEnveloped:
     data:
       type: array
       items:
-        $ref: '#/Token'
+        $ref: "#/Token"
     error:
       nullable: true
       default: null
@@ -138,7 +102,7 @@ TokenIdEnveloped:
     - data
   properties:
     data:
-      $ref: '#/TokenId'
+      $ref: "#/TokenId"
     error:
       nullable: true
       default: null