Add admin panel for bulk ownership changes (#9070)

Spec: NuGet/Engineering#3998
Issue: NuGet/Engineering#3994

Author: joelverhagen

src/AccountDeleter/Configuration/GalleryConfiguration.cs

@@ -114,5 +114,6 @@ public string SiteRoot
         public int? MinIoThreads { get => throw new NotImplementedException(); set => throw new NotImplementedException(); }
         public int? MaxIoThreads { get => throw new NotImplementedException(); set => throw new NotImplementedException(); }
         public string InternalMicrosoftTenantKey { get => throw new NotImplementedException(); set => throw new NotImplementedException(); }
+        public string AdminSenderUser { get => throw new NotImplementedException(); set => throw new NotImplementedException(); }
     }
 }

src/Bootstrap/dist/css/bootstrap-theme.css

@@ -1,6 +1,16 @@
 .page-admin-index {
     h2 {
         margin-bottom: 8px;
-        margin-top: 32px;
+        margin-top: 8px;
+        font-size: 30px;
+
+        .ms-Icon {
+            font-size: 2.4rem;
+            top: 2px;
+        }
+    }
+
+    p {
+        margin-bottom: 16px;
     }
 }

src/Bootstrap/less/theme/page-admin-index.less

@@ -87,15 +87,6 @@ private void ReadStream(Stream stream, HttpRequest request, string uploadKey, As
                 }
 
                 _cacheService.SetProgress(uploadKey, progress);
-
-#if DEBUG
-                if (request.IsLocal)
-                {
-                    // If the request is from local machine, the upload will be too fast to see the progress.
-                    // Slow it down a bit.
-                    System.Threading.Thread.Sleep(30);
-                }
-#endif
             }
         }
 

src/NuGetGallery.Services/Authentication/AsyncFileUpload/AsyncFileUploadModule.cs

@@ -418,5 +418,6 @@ public string ExternalBrandingMessage
         [DefaultValue(null)]
         public int? MaxIoThreads { get; set; }
         public string InternalMicrosoftTenantKey { get; set; }
+        public string AdminSenderUser { get; set; }
     }
 }

src/NuGetGallery.Services/Configuration/AppConfiguration.cs

@@ -501,5 +501,14 @@ public interface IAppConfiguration : IMessageServiceConfiguration
         /// https://docs.microsoft.com/en-us/previous-versions/dotnet/netframework-4.0/7w2sway1(v=vs.100)?redirectedfrom=MSDN
         /// </summary>
         int? MaxIoThreads { get; set; }
+
+        /// <summary>
+        /// The username of the user that can be entered as the sender for admin flows. When an admin flow may send one
+        /// or more emails to end users, it helps to mask the identity of the site admin that performed the action by
+        /// using this user instead. This account is not created automatically. The username should refer to a user
+        /// account (not organization) that has an email address that can be visible for administrative notices. This
+        /// account should not have any credentials or be marked as a site admin.
+        /// </summary>
+        string AdminSenderUser { get; set; }
     }
 }

src/NuGetGallery.Services/Configuration/IAppConfiguration.cs

@@ -1,6 +1,7 @@
 // Copyright (c) .NET Foundation. All rights reserved.
 // Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
 
+using System;
 using System.Collections.Generic;
 using System.Threading.Tasks;
 using NuGet.Services.Entities;
@@ -54,17 +55,21 @@ public interface IPackageOwnershipManagementService
         /// <param name="packageRegistration">The package registration that is intended to get ownership.</param>
         /// <param name="requestingUser">The user requesting to remove an owner from the package.</param>
         /// <param name="userToBeRemoved">The user to remove as an owner from the package.</param>
-        Task RemovePackageOwnerWithMessagesAsync(PackageRegistration packageRegistration, User requestingUser, User userToBeRemoved);
+        /// <param name="requireNamespaceOwnership">Whether or not to verify that the <paramref name="requestingUser"/> has permissions for any reserved namespaces that the package is in.</param>
+        /// <exception cref="InvalidOperationException">Thrown if <paramref name="requireNamespaceOwnership"/> is true and the <paramref name="requestingUser"/> does not have permissions for an existing namespace.</exception>
+        Task RemovePackageOwnerWithMessagesAsync(PackageRegistration packageRegistration, User requestingUser, User userToBeRemoved, bool requireNamespaceOwnership);
 
         /// <summary>
         /// Remove the user as from the list of owners of the package. Also remove the package registration
         /// from the reserved namespaces owned by this user if the Id matches any of the reserved prefixes
         /// and the user is the only package owner that owns the namespace that matches the package registration.
+        /// This method verifies that the <paramref name="requestingUser"/> has the permissions to an existing namespaces.
         /// </summary>
         /// <param name="packageRegistration">The package registration that is intended to get ownership.</param>
         /// <param name="requestingUser">The user requesting to remove an owner from the package.</param>
         /// <param name="userToBeRemoved">The user to remove as an owner from the package.</param>
         /// <param name="commitChanges">Whether or not to commit the changes.</param>
+        /// <exception cref="InvalidOperationException">Thrown if the <paramref name="requestingUser"/> does not have permissions for an existing namespace.</exception>
         Task RemovePackageOwnerAsync(PackageRegistration packageRegistration, User requestingUser, User userToBeRemoved, bool commitChanges);
 
         /// <summary>

src/NuGetGallery.Services/PackageManagement/IPackageOwnershipManagementService.cs

@@ -247,15 +247,25 @@ public IEnumerable<PackageOwnerRequest> GetPackageOwnershipRequests(PackageRegis
             return _packageOwnerRequestService.GetPackageOwnershipRequests(package, requestingOwner, newOwner);
         }
 
-        public async Task RemovePackageOwnerWithMessagesAsync(PackageRegistration packageRegistration, User requestingOwner, User ownerToBeRemoved)
+        public async Task RemovePackageOwnerWithMessagesAsync(PackageRegistration packageRegistration, User requestingOwner, User ownerToBeRemoved, bool requireNamespaceOwnership)
         {
-            await RemovePackageOwnerAsync(packageRegistration, requestingOwner, ownerToBeRemoved);
+            await RemovePackageOwnerAsync(packageRegistration, requestingOwner, ownerToBeRemoved, commitChanges: true, requireNamespaceOwnership);
 
             var emailMessage = new PackageOwnerRemovedMessage(_appConfiguration, requestingOwner, ownerToBeRemoved, packageRegistration);
             await _messageService.SendMessageAsync(emailMessage);
         }
 
         public async Task RemovePackageOwnerAsync(PackageRegistration packageRegistration, User requestingOwner, User ownerToBeRemoved, bool commitChanges = true)
+        {
+            await RemovePackageOwnerAsync(packageRegistration, requestingOwner, ownerToBeRemoved, commitChanges, requireNamespaceOwnership: true);
+        }
+
+        private async Task RemovePackageOwnerAsync(
+            PackageRegistration packageRegistration,
+            User requestingOwner,
+            User ownerToBeRemoved,
+            bool commitChanges,
+            bool requireNamespaceOwnership)
         {
             if (packageRegistration == null)
             {
@@ -272,7 +282,7 @@ public async Task RemovePackageOwnerAsync(PackageRegistration packageRegistratio
                 throw new ArgumentNullException(nameof(ownerToBeRemoved));
             }
 
-            if (OwnerHasPermissionsToRemove(requestingOwner, ownerToBeRemoved, packageRegistration))
+            if (!requireNamespaceOwnership || OwnerHasPermissionsToRemoveFromNamespace(requestingOwner, ownerToBeRemoved, packageRegistration))
             {
                 if (commitChanges)
                 {
@@ -390,7 +400,7 @@ private async Task DeletePackageOwnershipRequestAsync(PackageRegistration packag
             }
         }
 
-        private static bool OwnerHasPermissionsToRemove(User requestingOwner, User ownerToBeRemoved, PackageRegistration packageRegistration)
+        private static bool OwnerHasPermissionsToRemoveFromNamespace(User requestingOwner, User ownerToBeRemoved, PackageRegistration packageRegistration)
         {
             var reservedNamespaces = packageRegistration.ReservedNamespaces.ToList();
             if (ActionsRequiringPermissions.AddPackageToReservedNamespace

src/NuGetGallery.Services/PackageManagement/PackageOwnershipManagementService.cs

@@ -24,6 +24,7 @@ public virtual ActionResult Index()
         {
             var viewModel = new HomeViewModel(
                 showDatabaseAdmin: _config.Current.AdminPanelDatabaseAccessEnabled,
+                showLuceneAdmin: _config.Current.SearchServiceUriPrimary == null && _config.Current.SearchServiceUriSecondary == null,
                 showValidation: _config.Current.AsynchronousPackageValidationEnabled);
 
             return View(viewModel);