refuse to try table/column level changes for now

paulfitz · paulfitz · commit d591b4a23b0b · 2025-10-08T16:10:57.000-04:00
diff --git a/app/client/ui/ProposedChangesPage.ts b/app/client/ui/ProposedChangesPage.ts
@@ -128,7 +128,7 @@ export class ProposedChangesPage extends Disposable {
     const docId = this.gristDoc.docId();
     const origUrlId = buildOriginalUrlId(docId, isSnapshot);
     const isReadOnly = this.gristDoc.docPageModel.currentDoc.get()?.isReadonly;
-    
+
     return [
       dom('p',
           t('This is a list of changes relative to the {{originalDocument}}.', {
@@ -243,8 +243,15 @@ export class ProposedChangesPage extends Disposable {
                   bigPrimaryButton(
                     applied ? t("Reapply") : t("Apply"),
                     dom.on('click', async () => {
-                      const result = await this.gristDoc.docComm.applyProposal(proposal.shortId);
-                      this._proposalsObs.splice(idx, 1, result.proposal);
+                      const outcome = await this.gristDoc.docComm.applyProposal(proposal.shortId);
+                      this._proposalsObs.splice(idx, 1, outcome.proposal);
+                      // For the moment, send debug information to console
+                      for (const change of outcome.log.changes) {
+                        if (change.fail) {
+                          reportError(new Error(change.msg));
+                        }
+                        console.log(change);
+                      }
                     }),
                     testId('propose'),
                   ),
diff --git a/app/common/ActiveDocAPI.ts b/app/common/ActiveDocAPI.ts
@@ -3,7 +3,7 @@ import {BulkAddRecord, CellValue, TableDataAction, UserAction} from 'app/common/
 import {DocStateComparison} from 'app/common/DocState';
 import {PredicateFormulaProperties} from 'app/common/PredicateFormula';
 import {FetchUrlOptions, UploadResult} from 'app/common/uploads';
-import {PermissionData, UserAccessData} from 'app/common/UserAPI';
+import {PermissionData, Proposal, UserAccessData} from 'app/common/UserAPI';
 import {ParseOptions} from 'app/plugin/FileParserAPI';
 import {AccessTokenOptions, AccessTokenResult, UIRowId} from 'app/plugin/GristAPI';
 import {IMessage} from 'grain-rpc';
@@ -545,5 +545,20 @@ export interface ActiveDocAPI {
 
   applyProposal(proposalId: number, option?: {
     dismiss?: boolean,
-  }): Promise<any>;
+  }): Promise<ApplyProposalResult>;
+}
+
+export interface ApplyProposalResult {
+  proposal: Proposal;
+  log: PatchLog;
+}
+
+export interface PatchLog {
+  changes: PatchItem[];
+  applied: boolean;
+}
+
+export interface PatchItem {
+  msg: string;
+  fail?: boolean;
 }
diff --git a/app/gen-server/entity/Proposal.ts b/app/gen-server/entity/Proposal.ts
@@ -38,6 +38,12 @@ import { BaseEntity, Column, Entity, JoinColumn, ManyToOne, PrimaryColumn } from
  * in a full timeline, but it doesn't make sense to invest in that now, and
  * some kind of summary state would be needed anyway.
  *
+ * There's at least one security problem with proposals. The source
+ * document id may be a "secret" if it was created by an anonymous
+ * user, in the sense that anyone who knows the id could edit
+ * it. Something to bear in mind. Some proposal endpoints do some
+ * censoring but may not be the right way to go.
+ *
  */
 
 @Entity({name: 'proposals'})
diff --git a/app/server/lib/ActiveDoc.ts b/app/server/lib/ActiveDoc.ts
@@ -17,6 +17,7 @@ import {ActionSummary} from 'app/common/ActionSummary';
 import {
   AclResources,
   AclTableDescription,
+  ApplyProposalResult,
   ApplyUAExtendedOptions,
   ApplyUAOptions,
   ApplyUAResult,
@@ -28,6 +29,7 @@ import {
   ImportResult,
   ISuggestionWithValue,
   MergeOptions,
+  PatchLog,
   PermissionDataWithExtraUsers,
   QueryResult,
   ServerQuery,
@@ -167,7 +169,7 @@ import {createAttachmentsIndex, DocStorage, REMOVE_UNUSED_ATTACHMENTS_DELAY} fro
 import {expandQuery, getFormulaErrorForExpandQuery} from 'app/server/lib/ExpandedQuery';
 import {GranularAccess, GranularAccessForBundle} from 'app/server/lib/GranularAccess';
 import {OnDemandActions} from 'app/server/lib/OnDemandActions';
-import {Patch} from 'app/server/lib/Patch';
+import {Patch } from 'app/server/lib/Patch';
 import {findOrAddAllEnvelope, Sharing} from 'app/server/lib/Sharing';
 import {Cancelable} from 'lodash';
 import cloneDeep = require('lodash/cloneDeep');
@@ -904,7 +906,7 @@ export class ActiveDoc extends EventEmitter {
 
   public async applyProposal(docSession: OptDocSession, proposalId: number, options?: {
     dismiss?: boolean,
-  }) {
+  }): Promise<ApplyProposalResult> {
     const urlId = this.docName;
     const proposal = await this._getHomeDbManagerOrFail().getProposal(urlId, proposalId);
     if (!proposal) {
@@ -914,20 +916,23 @@ export class ActiveDoc extends EventEmitter {
     if (!origDetails) {
       throw new ApiError('Proposal details not found', 500);
     }
+    let result: PatchLog = {changes: [], applied: false};
     if (!options?.dismiss) {
       const patch = new Patch(this, docSession);
       const {details} = removeMetadataChangesFromDetails(origDetails);
-      await patch.applyChanges(details);
-      await this._getHomeDbManagerOrFail().updateProposalStatus(urlId, proposalId, {
-        status: 'applied'
-      });
+      result = await patch.applyChanges(details);
+      if (result.applied) {
+        await this._getHomeDbManagerOrFail().updateProposalStatus(urlId, proposalId, {
+          status: 'applied'
+        });
+      }
     } else {
       await this._getHomeDbManagerOrFail().updateProposalStatus(urlId, proposalId, {
         status: 'dismissed'
       });
     }
     const proposal2 = await this._getHomeDbManagerOrFail().getProposal(urlId, proposalId);
-    return {proposal: proposal2};
+    return {proposal: proposal2 as any, log: result};
   }
 
   /**
diff --git a/app/server/lib/Patch.ts b/app/server/lib/Patch.ts
@@ -6,56 +6,61 @@
  */
 
 import { TableDelta } from 'app/common/ActionSummary';
+import { PatchItem, PatchLog } from 'app/common/ActiveDocAPI';
 import { UserAction } from 'app/common/DocActions';
 import { DocStateComparisonDetails } from 'app/common/DocState';
 import { ActiveDoc } from 'app/server/lib/ActiveDoc';
 import { OptDocSession } from 'app/server/lib/DocSession';
 
-export interface Change {
-  msg: string;
-  fail?: boolean;
-}
-
-export type Changes = Change[];
-
 export class Patch {
   private _otherId: number|undefined;
   private _linkId: number|undefined;
 
   public constructor(public gristDoc: ActiveDoc, public docSession: OptDocSession) {}
 
-  public async applyChanges(details: DocStateComparisonDetails): Promise<Changes> {
-    const changes: Changes = [];
-    const summary = details.leftChanges;
-    if (summary.tableRenames.length > 0) {
-      changes.push({
-        msg: 'table renames ignored',
-      });
-    }
-    for (const [tableId, delta] of Object.entries(summary.tableDeltas)) {
-      if (tableId.startsWith('_grist_')) {
-        continue;
-      }
-      if (delta.columnRenames.length > 0) {
-        changes.push({
-          msg: 'column renames ignored',
-        });
-      }
-      if (delta.removeRows.length > 0) {
-        changes.push(...await this.removeRows(tableId, delta));
+  public async applyChanges(details: DocStateComparisonDetails): Promise<PatchLog> {
+    const changes: PatchItem[] = [];
+    try {
+      const summary = details.leftChanges;
+      if (summary.tableRenames.length > 0) {
+        throw new Error('table-level changes cannot be handled yet');
       }
-      if (delta.updateRows.length > 0) {
-        changes.push(...await this.updateRows(tableId, delta));
+      for (const [, delta] of Object.entries(summary.tableDeltas)) {
+        if (delta.columnRenames.length > 0) {
+          throw new Error('column-level changes cannot be handled yet');
+        }
       }
-      if (delta.addRows.length > 0) {
-        changes.push(...await this.addRows(tableId, delta));
+      for (const [tableId, delta] of Object.entries(summary.tableDeltas)) {
+        if (tableId.startsWith('_grist_')) {
+          continue;
+        }
+        if (delta.columnRenames.length > 0) {
+          changes.push({
+            msg: 'column renames ignored',
+          });
+        }
+        if (delta.removeRows.length > 0) {
+          changes.push(...await this.removeRows(tableId, delta));
+        }
+        if (delta.updateRows.length > 0) {
+          changes.push(...await this.updateRows(tableId, delta));
+        }
+        if (delta.addRows.length > 0) {
+          changes.push(...await this.addRows(tableId, delta));
+        }
       }
+    } catch (e) {
+      changes.push({
+        msg: String(e),
+        fail: true,
+      });
     }
-    return changes;
+    const applied = changes.some(change => !change.fail);
+    return {changes, applied};
   }
 
   public async change(delta: TableDelta, tableId: string, rowId: number, colId: string,
-                      pre: any, post: any): Promise<Change> {
+                      pre: any, post: any): Promise<PatchItem> {
     await this.applyUserActions([
       ['UpdateRecord', tableId, rowId, { [colId]: post }],
     ]);
@@ -80,7 +85,7 @@ export class Patch {
     this._linkId = result.actionNum;
   }
 
-  public async doAdd(delta: TableDelta, tableId: string, rowId: number, rec: Record<string, any>): Promise<Change> {
+  public async doAdd(delta: TableDelta, tableId: string, rowId: number, rec: Record<string, any>): Promise<PatchItem> {
     if (rec.manualSort) {
       delete rec.manualSort;
     }
@@ -95,7 +100,8 @@ export class Patch {
     };
   }
 
-  public async doRemove(delta: TableDelta, tableId: string, rowId: number, rec: Record<string, any>): Promise<Change> {
+  public async doRemove(delta: TableDelta, tableId: string, rowId: number,
+                        rec: Record<string, any>): Promise<PatchItem> {
     await this.applyUserActions([
       ['RemoveRecord', tableId, rowId],
     ]);
@@ -107,8 +113,8 @@ export class Patch {
     };
   }
 
-  public async updateRows(tableId: string, delta: TableDelta): Promise<Changes> {
-    const changes: Changes = [];
+  public async updateRows(tableId: string, delta: TableDelta): Promise<PatchItem[]> {
+    const changes: PatchItem[] = [];
     const rows = remaining(delta.updateRows, undefined); //, delta.accepted?.updateRows);
     const columnDeltas = delta.columnDeltas;
     for (const row of rows) {
@@ -128,8 +134,8 @@ export class Patch {
     return changes;
   }
 
-  public async addRows(tableId: string, delta: TableDelta): Promise<Changes> {
-    const changes: Changes = [];
+  public async addRows(tableId: string, delta: TableDelta): Promise<PatchItem[]> {
+    const changes: PatchItem[] = [];
     const rows = remaining(delta.addRows, undefined); //delta.accepted?.addRows);
     const columnDeltas = delta.columnDeltas;
     for (const row of rows) {
@@ -149,8 +155,8 @@ export class Patch {
     return changes;
   }
 
-  public async removeRows(tableId: string, delta: TableDelta): Promise<Changes> {
-    const changes: Changes = [];
+  public async removeRows(tableId: string, delta: TableDelta): Promise<PatchItem[]> {
+    const changes: PatchItem[] = [];
     const rows = remaining(delta.removeRows, undefined); //delta.accepted?.removeRows);
     const columnDeltas = delta.columnDeltas;
     for (const row of rows) {
