[GH-626]: Supported filtering on comment visibility for subscriptions

[Nityanand13]

Summary

Added "Comment Visibility" field to subscription modal to filter notifications in the channel.

1. When a user creates a comment in Jira then the plugin is getting notified through a webhook. Now, with this API we are getting all the information of a comment. If that particular comment has a visibility attribute that it should be visible to the users who belong to a certain group. Then notification is sent to the subscribed channel in mattermost only when that particular group is included in the subscriptions and vice versa.
2. Apart from adding groups to which a user belongs, he can also add a group ‘visible-to-all-users’. If a particular comment has no visibility attribute, then notification is sent to the subscribed channel in mattermost only when ‘visible-to-all-users’ is present or no filter is present on the mattermost side.

Ticket Link

Fixes #626

[mattermod]

Hello @Nityanand13,

Thanks for your pull request! A Core Committer will review your pull request soon. For code contributions, you can learn more about the review process here.

[javaguirre]

What's Item? We can find a more relevant name I think

[Nityanand13]

Now I have changed this to GroupItem. It indicates the individual group.

[javaguirre]

Is this a UserGroup?

[javaguirre]

or VisibilityUserGroup? Is this group being used for anything else?

[Nityanand13]

Now I have changed this to GroupsInfo.It indicate all the groups to which a commentator belongs to.

[mickmister]

How about JiraUserGroupCollection for the collection and JiraUserGroup for the singular group?

[mattermod]

This PR has been automatically labelled "stale" because it hasn't had recent activity.
A core team member will check in on the status of the PR to help with questions.
Thank you for your contribution!

[hanzei]

@mickmister Head up that the PR is ready for your review

[mattermost-build]

This PR has been automatically labelled "stale" because it hasn't had recent activity.
A core team member will check in on the status of the PR to help with questions.
Thank you for your contribution!

[codecov-commenter]

Codecov Report

Attention: Patch coverage is 5.47945% with 69 lines in your changes missing coverage. Please review.

Project coverage is 29.41%. Comparing base (3d90500) to head (649d520).
Report is 10 commits behind head on master.

❗ Current head 649d520 differs from pull request most recent head 5e21750

Please upload reports for the commit 5e21750 to get more accurate results.

Files	Patch %	Lines
server/issue.go	0.00%	34 Missing ⚠️
server/webhook_worker.go	0.00%	23 Missing ⚠️
server/client.go	0.00%	7 Missing ⚠️
server/subscribe.go	37.50%	3 Missing and 2 partials ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##           master     #894      +/-   ##
==========================================
- Coverage   33.37%   29.41%   -3.97%     
==========================================
  Files          53       52       -1     
  Lines        8008     7861     -147     
==========================================
- Hits         2673     2312     -361     
- Misses       5112     5351     +239     
+ Partials      223      198      -25     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[mattermost-build]

This PR has been automatically labelled "stale" because it hasn't had recent activity.
A core team member will check in on the status of the PR to help with questions.
Thank you for your contribution!

[mickmister]

Great work on this improvement @Nityanand13 👍

I have a few topics for discussion, one in particular is how to properly handle the case when the Jira comment author is not connected to Mattermost. This poses a challenge with the tradeoffs of defaulting to secure or not. There are some other suggestions as well, but mostly LGTM

[mickmister]

If the comment author is not connected to Mattermost, we end up not processing the webhook event no matter what. I think there's a design gap in the security model of this feature. This is a difficult problem to solve, the case of a comment author not connected to Mattermost.

---

Let's say a subscription is set to "comment visibility must be empty". If we can't fetch the comment because the author is not connected to MM, then we can't know the visibility of the comment. And so we would then always be avoiding the webhook events with every comment made by a user that is not connected. That's not really behavior that we want.

Though we can only assume that it is a sensitive comment if we can't fetch its visibility. Otherwise the feature would create posts for sensitive comments.

@esarafianou Do you have any thoughts on this? Essentially, this feature allows subscriptions to filter out sensitive comments, but if the comment author is not connected to MM, then we have no way of knowing whether the comment is sensitive or not. Defaulting to secure avoids unwanted data leakage, but it then requires all comment authors to be connected to MM for any comments to be posted ever.

[esarafianou]

@mickmister Seems I had missed this. Is this still relevant?

[raghavaggarwal2308]

@mickmister I have removed the extra API call for getting the comment visibility data as in the current implementation of Jira plugin we are always making an API call to get the comment event data. So, the user have to be connected in every case of comment events.

This will be fixed with the API token approach we discussed earlier. So, maybe we can proeed with this for now and it will be fixed later.

[raghavaggarwal2308]

API token approch implemented via #1102

[mickmister]

I'm thinking we want to use project roles for this

I have a WIP here that implements the data fetching piece, but not the comment filtering piece master...comment-security

mattermost-plugin-jira/server/autocomplete_search.go

Lines 108 to 121 in a86928d

	err = client.RESTGet("2/project/"+projectKey, nil, &result)
	if err != nil {
	return http.StatusInternalServerError,
	errors.WithMessage(err, "error fetching comment security levels")
	}
	roles := result.Roles
	out := &AutoCompleteResult{}
	for role := range roles {
	out.Results = append(out.Results, Result{
	Value: role,
	DisplayName: role,
	})
	}

[raghavaggarwal2308]

@mickmister We are getting the user groups here. I don't think the project roles API returns that response

[mickmister]

Also this will need to be tested on Jira Cloud and Jira Server

[raghavaggarwal2308]

@mickmister Fixed the review comments added by you.

[mattermost-build]

This PR has been automatically labelled "stale" because it hasn't had recent activity.
A core team member will check in on the status of the PR to help with questions.
Thank you for your contribution!

[wiggin77]

/update-branch

[mattermost-build]

We don't have permissions to update this PR, please contact the submitter to apply the update.

[wiggin77]

@raghavaggarwal2308 can you shepherd this through the outstanding comments?

[raghavaggarwal2308]

@wiggin77 There are two unresolved comments above:

1. [GH-626]: Supported filtering on comment visibility for subscriptions #894 (comment): This has been resolved now as the API token approach is implemented now. Basically the issue was that when we receive a comment event we needed to fetch some more comment details using the author ID of the comment but if the author is not connected to Jira from MM then we will not have the auth token and wont be able to fetch the details and end us not posting the event in the channel at all.

2. [GH-626]: Supported filtering on comment visibility for subscriptions #894 (comment): Michael was suggesting to use some alternate API, which did not seem to be valid for our use case.