fix(mcp): serialize dashboard role permissions #41404
+153
−3
There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -21,16 +21,19 @@ | |
|
|
||
| import logging | ||
| from importlib import import_module | ||
| from types import SimpleNamespace | ||
| from unittest.mock import Mock, patch | ||
|
|
||
| import pytest | ||
| from fastmcp import Client | ||
| from fastmcp.exceptions import ToolError | ||
| from flask import g | ||
| from sqlalchemy.orm.exc import DetachedInstanceError | ||
|
|
||
| from superset.mcp_service.app import mcp | ||
| from superset.mcp_service.dashboard.schemas import ( | ||
| ListDashboardsRequest, | ||
| serialize_role_object, | ||
| ) | ||
| from superset.mcp_service.dashboard.tool.get_dashboard_info import ( | ||
| _refresh_request_user_for_permalink_access, | ||
|
|
@@ -134,6 +137,109 @@ async def test_list_dashboards_basic(mock_list, mcp_server): | |
| assert "slug" in data["columns_loaded"] | ||
|
|
||
|
|
||
| def test_dashboard_role_serializer_serializes_permission_view_names() -> None: | ||
|
Contributor
There was a problem hiding this comment. Suggestion: Add a short docstring to this new test function describing the serializer behavior it validates. [custom_rule] Severity Level: Minor Why it matters? 🤔This is a newly added Python test function and it has no docstring. The custom rule requires new functions to be documented inline, so the suggestion identifies a real violation.
(Use Cmd/Ctrl + Click for best experience) Prompt for AI Agent 🤖This is a comment left during a code review.
**Path:** tests/unit_tests/mcp_service/dashboard/tool/test_dashboard_tools.py
**Line:** 140:140
**Comment:**
*Custom Rule: Add a short docstring to this new test function describing the serializer behavior it validates.
Validate the correctness of the flagged issue. If correct, How can I resolve this? If you propose a fix, implement it and please make it concise.
Once fix is implemented, also check other comments on the same PR, and ask user if the user wants to fix the rest of the comments as well. if said yes, then fetch all the comments validate the correctness and implement a minimal fix |
||
| permission_view = SimpleNamespace( | ||
| permission=SimpleNamespace(name="can_read"), | ||
| view_menu=SimpleNamespace(name="Dashboard"), | ||
| ) | ||
| role = SimpleNamespace(id=1, name="Gamma", permissions=[permission_view]) | ||
|
|
||
| role_info = serialize_role_object(role) | ||
|
|
||
| assert role_info is not None | ||
| assert role_info.model_dump() == { | ||
| "id": 1, | ||
| "name": "Gamma", | ||
| "permissions": ["can_read on Dashboard"], | ||
| } | ||
|
|
||
|
|
||
| def test_dashboard_role_serializer_skips_bad_permission_items() -> None: | ||
|
Contributor
There was a problem hiding this comment. Suggestion: Add a docstring to this new test function so its edge-case intent is explicitly documented. [custom_rule] Severity Level: Minor Why it matters? 🤔This is a newly added Python test function and there is no docstring immediately under it. That violates the rule requiring new functions to include docstrings.
(Use Cmd/Ctrl + Click for best experience) Prompt for AI Agent 🤖This is a comment left during a code review.
**Path:** tests/unit_tests/mcp_service/dashboard/tool/test_dashboard_tools.py
**Line:** 157:157
**Comment:**
*Custom Rule: Add a docstring to this new test function so its edge-case intent is explicitly documented.
Validate the correctness of the flagged issue. If correct, How can I resolve this? If you propose a fix, implement it and please make it concise.
Once fix is implemented, also check other comments on the same PR, and ask user if the user wants to fix the rest of the comments as well. if said yes, then fetch all the comments validate the correctness and implement a minimal fix |
||
| class DetachedPermission: | ||
|
Contributor
There was a problem hiding this comment. Suggestion: Add a brief class docstring explaining the purpose of this helper class used in the test. [custom_rule] Severity Level: Minor Why it matters? 🤔This newly introduced helper class does not have a docstring. The custom rule explicitly requires new classes to be documented inline.
(Use Cmd/Ctrl + Click for best experience) Prompt for AI Agent 🤖This is a comment left during a code review.
**Path:** tests/unit_tests/mcp_service/dashboard/tool/test_dashboard_tools.py
**Line:** 158:158
**Comment:**
*Custom Rule: Add a brief class docstring explaining the purpose of this helper class used in the test.
Validate the correctness of the flagged issue. If correct, How can I resolve this? If you propose a fix, implement it and please make it concise.
Once fix is implemented, also check other comments on the same PR, and ask user if the user wants to fix the rest of the comments as well. if said yes, then fetch all the comments validate the correctness and implement a minimal fix |
||
| @property | ||
| def name(self) -> str: | ||
| raise DetachedInstanceError("detached permission") | ||
|
|
||
| permission_view = SimpleNamespace( | ||
| permission=SimpleNamespace(name="can_read"), | ||
| view_menu=SimpleNamespace(name="Dashboard"), | ||
| ) | ||
| role = SimpleNamespace( | ||
| id=1, | ||
| name="Gamma", | ||
| permissions=[ | ||
| permission_view, | ||
| DetachedPermission(), | ||
| SimpleNamespace(name="can_write"), | ||
| ], | ||
| ) | ||
|
|
||
| role_info = serialize_role_object(role) | ||
|
|
||
| assert role_info is not None | ||
| assert role_info.permissions == ["can_read on Dashboard", "can_write"] | ||
|
|
||
|
|
||
| def test_dashboard_role_serializer_handles_detached_permissions() -> None: | ||
| class DetachedRole: | ||
|
Contributor
There was a problem hiding this comment. Suggestion: Add a class docstring to describe why this detached-role test double exists. [custom_rule] Severity Level: Minor Why it matters? 🤔This is a newly added helper class inside a test function and it lacks a docstring. That matches the custom rule for new classes needing inline documentation.
(Use Cmd/Ctrl + Click for best experience) Prompt for AI Agent 🤖This is a comment left during a code review.
**Path:** tests/unit_tests/mcp_service/dashboard/tool/test_dashboard_tools.py
**Line:** 184:184
**Comment:**
*Custom Rule: Add a class docstring to describe why this detached-role test double exists.
Validate the correctness of the flagged issue. If correct, How can I resolve this? If you propose a fix, implement it and please make it concise.
Once fix is implemented, also check other comments on the same PR, and ask user if the user wants to fix the rest of the comments as well. if said yes, then fetch all the comments validate the correctness and implement a minimal fix |
||
| id = 1 | ||
| name = "Gamma" | ||
|
|
||
| @property | ||
| def permissions(self) -> list[object]: | ||
| raise DetachedInstanceError("detached permissions") | ||
|
|
||
| role_info = serialize_role_object(DetachedRole()) | ||
|
|
||
| assert role_info is not None | ||
| assert role_info.permissions is None | ||
|
|
||
|
|
||
| def test_dashboard_role_serializer_handles_non_iterable_permissions() -> None: | ||
| role = SimpleNamespace(id=1, name="Gamma", permissions=object()) | ||
|
|
||
| role_info = serialize_role_object(role) | ||
|
|
||
| assert role_info is not None | ||
| assert role_info.permissions == [] | ||
|
|
||
|
|
||
| def test_dashboard_role_serializer_stops_on_detached_permission_iterator() -> None: | ||
| class DetachedPermissionIterator: | ||
|
Contributor
There was a problem hiding this comment. Suggestion: Add a short docstring to this iterator helper class to clarify the failure scenario it simulates. [custom_rule] Severity Level: Minor Why it matters? 🤔This new helper class also lacks a docstring. Since the rule requires newly added classes to be documented, the suggestion is valid.
(Use Cmd/Ctrl + Click for best experience) Prompt for AI Agent 🤖This is a comment left during a code review.
**Path:** tests/unit_tests/mcp_service/dashboard/tool/test_dashboard_tools.py
**Line:** 208:208
**Comment:**
*Custom Rule: Add a short docstring to this iterator helper class to clarify the failure scenario it simulates.
Validate the correctness of the flagged issue. If correct, How can I resolve this? If you propose a fix, implement it and please make it concise.
Once fix is implemented, also check other comments on the same PR, and ask user if the user wants to fix the rest of the comments as well. if said yes, then fetch all the comments validate the correctness and implement a minimal fix |
||
| def __iter__(self) -> "DetachedPermissionIterator": | ||
| return self | ||
|
|
||
| def __next__(self) -> object: | ||
| raise DetachedInstanceError("detached permission iterator") | ||
|
|
||
| role = SimpleNamespace( | ||
| id=1, | ||
| name="Gamma", | ||
| permissions=DetachedPermissionIterator(), | ||
| ) | ||
|
|
||
| role_info = serialize_role_object(role) | ||
|
|
||
| assert role_info is not None | ||
| assert role_info.permissions == [] | ||
|
|
||
|
|
||
| def test_dashboard_role_serializer_skips_unnamed_permission_items() -> None: | ||
| role = SimpleNamespace( | ||
| id=1, | ||
| name="Gamma", | ||
| permissions=[ | ||
| SimpleNamespace(permission=SimpleNamespace(name="can_read")), | ||
| SimpleNamespace(view_menu=SimpleNamespace(name="Dashboard")), | ||
| ], | ||
| ) | ||
|
|
||
| role_info = serialize_role_object(role) | ||
|
|
||
| assert role_info is not None | ||
| assert role_info.permissions == [] | ||
|
|
||
|
|
||
| @patch("superset.daos.dashboard.DashboardDAO.list") | ||
| @pytest.mark.asyncio | ||
| async def test_list_dashboards_with_filters(mock_list, mcp_server): | ||
|
|
||
Oops, something went wrong.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Uh oh!
There was an error while loading. Please reload this page.