feat(pages-and-resources): implement advanced settings permissions and refactor related components

Author: bra-i-am

src/advanced-settings/AdvancedSettings.tsx

@@ -10,9 +10,6 @@ import {
 import { CheckCircle, Info, Warning } from '@openedx/paragon/icons';
 import { FormattedMessage, useIntl } from '@edx/frontend-platform/i18n';
 import { useCourseAuthoringContext } from '@src/CourseAuthoringContext';
-import { useWaffleFlags } from '@src/data/apiHooks';
-import { useUserPermissions } from '@src/authz/data/apiHooks';
-import { COURSE_PERMISSIONS } from '@src/authz/constants';
 import PermissionDeniedAlert from 'CourseAuthoring/generic/PermissionDeniedAlert';
 import AlertProctoringError from '@src/generic/AlertProctoringError';
 import { LoadingSpinner } from '@src/generic/Loading';
@@ -30,6 +27,8 @@ import validateAdvancedSettingsData from './utils';
 import messages from './messages';
 import ModalError from './modal-error/ModalError';
 import { useCourseAdvancedSettings, useProctoringExamErrors, useUpdateCourseAdvancedSettings } from './data/apiHooks';
+import { useCourseUserPermissions } from '@src/authz/hooks';
+import { getAdvancedSettingsPermissions } from '@src/authz/permissionHelpers';
 
 const AdvancedSettings = () => {
   const intl = useIntl();
@@ -44,18 +43,12 @@ const AdvancedSettings = () => {
 
   const { courseId, courseDetails } = useCourseAuthoringContext();
 
-  const waffleFlags = useWaffleFlags(courseId);
-  const isAuthzEnabled = waffleFlags.enableAuthzCourseAuthoring;
-  const { isLoading: isLoadingUserPermissions, data: userPermissions } = useUserPermissions({
-    canManageAdvancedSettings: {
-      action: COURSE_PERMISSIONS.MANAGE_ADVANCED_SETTINGS,
-      scope: courseId,
-    },
-    canViewAdvancedSettings: {
-      action: COURSE_PERMISSIONS.VIEW_ADVANCED_SETTINGS,
-      scope: courseId,
-    },
-  }, isAuthzEnabled);
+  const {
+    isLoading: isLoadingUserPermissions,
+    isAuthzEnabled,
+    canViewAdvancedSettings,
+    canManageAdvancedSettings,
+  } = useCourseUserPermissions(courseId, getAdvancedSettingsPermissions(courseId));
 
   const {
     data: advancedSettingsData = {},
@@ -77,17 +70,12 @@ const AdvancedSettings = () => {
 
   const isLoading = isPendingSettingsStatus || (isAuthzEnabled && isLoadingUserPermissions);
 
-  // Determine if UI should be read-only (has VIEW but not MANAGE) — auditor
+  // Determine if UI should be read-only (has VIEW but not MANAGE)
   const isReadOnly = isAuthzEnabled
     && !isLoadingUserPermissions
-    && !!userPermissions?.canViewAdvancedSettings
-    && !userPermissions?.canManageAdvancedSettings;
+    && !!canViewAdvancedSettings
+    && !canManageAdvancedSettings;
 
-  useEffect(() => {
-    if (isReadOnly) {
-      setIsEditableState(false);
-    }
-  }, [isReadOnly]);
   const updateSettingsButtonState = {
     labels: {
       default: intl.formatMessage(messages.buttonSaveText),
@@ -167,15 +155,13 @@ const AdvancedSettings = () => {
   // Show permission denied alert when authz is enabled and user doesn't have VIEW or MANAGE
   const authzIsEnabledAndNoPermission = isAuthzEnabled
     && !isLoadingUserPermissions
-    && !userPermissions?.canViewAdvancedSettings
-    && !userPermissions?.canManageAdvancedSettings;
+    && !canViewAdvancedSettings
+    && !canManageAdvancedSettings;
 
   if (authzIsEnabledAndNoPermission) {
     return <PermissionDeniedAlert />;
   }
 
-  // Show the page content (read-only or editable)
-
   return (
     <>
       <Helmet>

src/authz/permissionHelpers.test.ts

@@ -1,120 +1,51 @@
-import { getGradingPermissions, getPagesAndResourcesPermissions } from './permissionHelpers';
+import {
+  getGradingPermissions,
+  getPagesAndResourcesPermissions,
+  getAdvancedSettingsPermissions,
+} from './permissionHelpers';
 import { COURSE_PERMISSIONS } from './constants';
 
 describe('permissionHelpers', () => {
   const courseId = 'course-v1:org+course+run';
 
   describe('getGradingPermissions', () => {
-    it('returns correct permission structure with VIEW action', () => {
+    it('returns VIEW and EDIT permissions with the correct actions and scope', () => {
       const result = getGradingPermissions(courseId);
 
-      expect(result.canViewGradingSettings).toBeDefined();
       expect(result.canViewGradingSettings.action).toBe(COURSE_PERMISSIONS.VIEW_GRADING_SETTINGS);
       expect(result.canViewGradingSettings.scope).toBe(courseId);
-    });
-
-    it('returns correct permission structure with EDIT action', () => {
-      const result = getGradingPermissions(courseId);
-
-      expect(result.canEditGradingSettings).toBeDefined();
       expect(result.canEditGradingSettings.action).toBe(COURSE_PERMISSIONS.EDIT_GRADING_SETTINGS);
       expect(result.canEditGradingSettings.scope).toBe(courseId);
     });
-
-    it('returns both VIEW and EDIT permissions in single call', () => {
-      const result = getGradingPermissions(courseId);
-
-      const permissions = Object.keys(result);
-      expect(permissions).toContain('canViewGradingSettings');
-      expect(permissions).toContain('canEditGradingSettings');
-    });
-
-    it('uses correct courseId as scope for all permissions', () => {
-      const customCourseId = 'course-v1:custom+org+custom_run';
-      const result = getGradingPermissions(customCourseId);
-
-      expect(result.canViewGradingSettings.scope).toBe(customCourseId);
-      expect(result.canEditGradingSettings.scope).toBe(customCourseId);
-    });
   });
 
   describe('getPagesAndResourcesPermissions', () => {
-    it('returns correct permission structure with VIEW action', () => {
+    it('returns VIEW and EDIT permissions with the correct actions and scope', () => {
       const result = getPagesAndResourcesPermissions(courseId);
 
-      expect(result.canViewPagesAndResources).toBeDefined();
       expect(result.canViewPagesAndResources.action).toBe(COURSE_PERMISSIONS.VIEW_PAGES_AND_RESOURCES);
       expect(result.canViewPagesAndResources.scope).toBe(courseId);
-    });
-
-    it('returns correct permission structure with EDIT action', () => {
-      const result = getPagesAndResourcesPermissions(courseId);
-
-      expect(result.canEditPagesAndResources).toBeDefined();
       expect(result.canEditPagesAndResources.action).toBe(COURSE_PERMISSIONS.EDIT_PAGES_AND_RESOURCES);
       expect(result.canEditPagesAndResources.scope).toBe(courseId);
     });
-
-    it('returns both VIEW and EDIT permissions in single call', () => {
-      const result = getPagesAndResourcesPermissions(courseId);
-
-      const permissions = Object.keys(result);
-      expect(permissions).toContain('canViewPagesAndResources');
-      expect(permissions).toContain('canEditPagesAndResources');
-    });
-
-    it('uses correct courseId as scope for all permissions', () => {
-      const customCourseId = 'course-v1:another+test+course';
-      const result = getPagesAndResourcesPermissions(customCourseId);
-
-      expect(result.canViewPagesAndResources.scope).toBe(customCourseId);
-      expect(result.canEditPagesAndResources.scope).toBe(customCourseId);
-    });
   });
 
-  describe('permission constants verification', () => {
-    it('uses correct VIEW_GRADING_SETTINGS constant', () => {
-      const result = getGradingPermissions(courseId);
-      expect(result.canViewGradingSettings.action).toBe('courses.view_grading_settings');
-    });
-
-    it('uses correct EDIT_GRADING_SETTINGS constant', () => {
-      const result = getGradingPermissions(courseId);
-      expect(result.canEditGradingSettings.action).toBe('courses.edit_grading_settings');
-    });
-
-    it('uses correct VIEW_PAGES_AND_RESOURCES constant', () => {
-      const result = getPagesAndResourcesPermissions(courseId);
-      expect(result.canViewPagesAndResources.action).toBe('courses.view_pages_and_resources');
-    });
-
-    it('uses correct EDIT_PAGES_AND_RESOURCES constant', () => {
-      const result = getPagesAndResourcesPermissions(courseId);
-      expect(result.canEditPagesAndResources.action).toBe('courses.manage_pages_and_resources');
-    });
-  });
-
-  describe('edge cases', () => {
-    it('handles empty courseId', () => {
-      const result = getGradingPermissions('');
-
-      expect(result.canViewGradingSettings.scope).toBe('');
-      expect(result.canEditGradingSettings.scope).toBe('');
-    });
-
-    it('handles special characters in courseId', () => {
-      const specialCourseId = 'course-v1:test+special:id';
-      const result = getPagesAndResourcesPermissions(specialCourseId);
+  describe('getAdvancedSettingsPermissions', () => {
+    it('returns VIEW and MANAGE permissions with the correct actions and scope', () => {
+      const result = getAdvancedSettingsPermissions(courseId);
 
-      expect(result.canViewPagesAndResources.scope).toBe(specialCourseId);
+      expect(result.canViewAdvancedSettings.action).toBe(COURSE_PERMISSIONS.VIEW_ADVANCED_SETTINGS);
+      expect(result.canViewAdvancedSettings.scope).toBe(courseId);
+      expect(result.canManageAdvancedSettings.action).toBe(COURSE_PERMISSIONS.MANAGE_ADVANCED_SETTINGS);
+      expect(result.canManageAdvancedSettings.scope).toBe(courseId);
     });
 
-    it('returns consistent structure across multiple calls', () => {
-      const result1 = getGradingPermissions(courseId);
-      const result2 = getGradingPermissions(courseId);
+    it('uses the provided courseId as scope', () => {
+      const otherId = 'course-v1:another+test+run';
+      const result = getAdvancedSettingsPermissions(otherId);
 
-      expect(Object.keys(result1)).toEqual(Object.keys(result2));
-      expect(result1.canViewGradingSettings.action).toBe(result2.canViewGradingSettings.action);
+      expect(result.canViewAdvancedSettings.scope).toBe(otherId);
+      expect(result.canManageAdvancedSettings.scope).toBe(otherId);
     });
   });
 });

src/authz/permissionHelpers.ts

@@ -21,3 +21,14 @@ export const getPagesAndResourcesPermissions = (courseId: string) => ({
     scope: courseId,
   },
 });
+
+export const getAdvancedSettingsPermissions = (courseId: string) => ({
+  canViewAdvancedSettings: {
+    action: COURSE_PERMISSIONS.VIEW_ADVANCED_SETTINGS,
+    scope: courseId,
+  },
+  canManageAdvancedSettings: {
+    action: COURSE_PERMISSIONS.MANAGE_ADVANCED_SETTINGS,
+    scope: courseId,
+  },
+});

src/pages-and-resources/PagesAndResources.tsx

@@ -81,17 +81,8 @@ const PagesAndResources = () => {
   const isEditable = !isLoadingUserPermissions && canEditPagesAndResources;
   const hasAdditionalCoursePlugin = getConfig()?.pluginSlots?.additional_course_plugin != null;
 
-  // Read-only mode: has VIEW permission but not MANAGE (auditor)
-  const isReadOnly = isAuthzEnabled
-    && !isLoadingUserPermissions
-    && canViewPagesAndResources
-    && !canEditPagesAndResources;
-
-  // For the modal: if readOnly, isEditable should be false (show disabled fields)
-  const isEditableForModal = isReadOnly ? false : isEditable;
-
   return (
-    <PagesAndResourcesProvider courseId={courseId} isEditable={isEditableForModal}>
+    <PagesAndResourcesProvider courseId={courseId} isEditable={isEditable}>
       <main className="container container-mw-md px-3">
         <div className="d-flex justify-content-between my-4 my-md-5 align-items-center">
           <h3 className="m-0">{intl.formatMessage(messages.heading)}</h3>
@@ -143,7 +134,6 @@ const PagesAndResources = () => {
           pages={pages}
           pluginSlotComponent={<AdditionalCoursePluginSlot />}
           courseId={courseId}
-          readOnly={isReadOnly}
         />
         {(contentPermissionsPages.length > 0 || hasAdditionalCoursePlugin)
           && (
@@ -154,7 +144,6 @@ const PagesAndResources = () => {
               <PageGrid
                 pages={contentPermissionsPages}
                 pluginSlotComponent={<AdditionalCourseContentPluginSlot />}
-                readOnly={isReadOnly}
               />
             </>
           )}

src/pages-and-resources/PagesAndResourcesProvider.tsx

@@ -15,7 +15,7 @@ interface PagesAndResourcesProviderProps {
   children: React.ReactNode;
 }
 
-const PagesAndResourcesProvider = ({ courseId, isEditable = true, children }: PagesAndResourcesProviderProps) => {
+const PagesAndResourcesProvider = ({ courseId, isEditable = false, children }: PagesAndResourcesProviderProps) => {
   const contextValue = useMemo(() => ({
     courseId,
     path: `/course/${courseId}/pages-and-resources`,

src/pages-and-resources/discussions/app-config-form/AppConfigForm.jsx

@@ -42,7 +42,7 @@ const AppConfigForm = ({
   const navigate = useNavigate();
 
   const { formRef } = useContext(AppConfigFormContext);
-  const { path: pagesAndResourcesPath, isEditable: contextIsEditable = false } = useContext(PagesAndResourcesContext);
+  const { path: pagesAndResourcesPath, isEditable = false } = useContext(PagesAndResourcesContext);
   const { appId: routeAppId } = useParams();
   const [isLoading, setLoading] = useState(true);
   const {
@@ -102,7 +102,7 @@ const AppConfigForm = ({
         formRef={formRef}
         onSubmit={handleSubmit}
         legacy
-        isEditable={contextIsEditable}
+        isEditable={isEditable}
       />
     );
   } else if (selectedAppId === 'openedx') {
@@ -111,15 +111,15 @@ const AppConfigForm = ({
         formRef={formRef}
         onSubmit={handleSubmit}
         legacy={false}
-        isEditable={contextIsEditable}
+        isEditable={isEditable}
       />
     );
   } else {
     form = (
       <LtiConfigForm
         formRef={formRef}
         onSubmit={handleSubmit}
-        isEditable={contextIsEditable}
+        isEditable={isEditable}
       />
     );
   }

src/pages-and-resources/discussions/app-config-form/AppConfigFormSaveButton.jsx

@@ -18,7 +18,7 @@ const AppConfigFormSaveButton = ({ labelText }) => {
   const { isEditable = false } = useContext(PagesAndResourcesContext);
 
   const app = useModel('apps', selectedAppId);
-  const canSubmit = (getAuthenticatedUser().administrator || !app?.adminOnlyConfig) && isEditable;
+  const canSubmit = getAuthenticatedUser().administrator || !app?.adminOnlyConfig;
 
   const { formRef } = useContext(AppConfigFormContext);
 
@@ -47,6 +47,7 @@ const AppConfigFormSaveButton = ({ labelText }) => {
         }}
         state={submitButtonState}
         onClick={handleSave}
+        disabled={!isEditable}
         style={{ minWidth: '88px' }}
       />
     )

src/pages-and-resources/discussions/app-config-form/apps/lti/LtiConfigForm.jsx

@@ -71,7 +71,7 @@ const LtiConfigForm = ({ onSubmit, formRef, isEditable = false }) => {
 
   return (
     <Card className="mb-5 p-5" data-testid="ltiConfigForm">
-      <Form ref={formRef} onSubmit={handleSubmit} disabled={!isEditable}>
+      <Form ref={formRef} onSubmit={handleSubmit}>
         <h3 className="mb-3">{providerName}</h3>
         <p>
           <FormattedMessage
@@ -113,6 +113,7 @@ const LtiConfigForm = ({ onSubmit, formRef, isEditable = false }) => {
                 onChange={handleChange}
                 onBlur={handleBlur}
                 value={values.consumerKey}
+                disabled={!isEditable}
               />
               {isInvalidConsumerKey && (
                 <Form.Control.Feedback type="invalid" hasIcon={false}>
@@ -130,6 +131,7 @@ const LtiConfigForm = ({ onSubmit, formRef, isEditable = false }) => {
                 onChange={handleChange}
                 onBlur={handleBlur}
                 value={values.consumerSecret}
+                disabled={!isEditable}
               />
               {isInvalidConsumerSecret && (
                 <Form.Control.Feedback type="invalid" hasIcon={false}>
@@ -143,6 +145,7 @@ const LtiConfigForm = ({ onSubmit, formRef, isEditable = false }) => {
                 onChange={handleChange}
                 onBlur={handleBlur}
                 value={values.launchUrl}
+                disabled={!isEditable}
               />
               {isInvalidLaunchUrl && (
                 <Form.Control.Feedback type="invalid" hasIcon={false}>
@@ -163,6 +166,7 @@ const LtiConfigForm = ({ onSubmit, formRef, isEditable = false }) => {
                 onBlur={handleBlur}
                 checked={values.piiShareUsername}
                 label={intl.formatMessage(messages.piiShareUsername)}
+                disabled={!isEditable}
               />
               <Form.Check
                 type="checkbox"
@@ -171,6 +175,7 @@ const LtiConfigForm = ({ onSubmit, formRef, isEditable = false }) => {
                 onBlur={handleBlur}
                 checked={values.piiShareEmail}
                 label={intl.formatMessage(messages.piiShareEmail)}
+                disabled={!isEditable}
               />
             </Form.Group>
           </div>

src/pages-and-resources/discussions/app-config-form/apps/openedx/OpenedXConfigForm.jsx

@@ -136,7 +136,7 @@ const OpenedXConfigForm = ({
         return (
           <OpenedXConfigFormProvider value={contextValue}>
             <Card className="mb-5 px-4 px-sm-5 pb-4" data-testid="legacyConfigForm">
-              <Form ref={formRef} onSubmit={handleSubmit} disabled={!isEditable}>
+              <Form ref={formRef} onSubmit={handleSubmit}>
                 <h3 className="text-primary-500 my-3">{intl.formatMessage(messages[`appName-${selectedAppId}`])}</h3>
                 <AppConfigFormDivider thick />
                 {!legacy