From f57dae8566f88c7ef4f5fe63a8656d06a1eb6679 Mon Sep 17 00:00:00 2001 From: khoaguin Date: Mon, 18 Sep 2023 14:55:40 +0700 Subject: [PATCH 1/5] fix the nasty bug Co-authored-by: Shubham Gupta --- packages/syft/src/syft/service/user/user_service.py | 9 ++++----- packages/syft/src/syft/service/user/user_stash.py | 7 +++++++ 2 files changed, 11 insertions(+), 5 deletions(-) diff --git a/packages/syft/src/syft/service/user/user_service.py b/packages/syft/src/syft/service/user/user_service.py index f488147bc61..6b9c14a3944 100644 --- a/packages/syft/src/syft/service/user/user_service.py +++ b/packages/syft/src/syft/service/user/user_service.py @@ -229,13 +229,12 @@ def update( # Get user to be updated by its UID result = self.stash.get_by_uid(credentials=context.credentials, uid=uid) - # TODO: ADD Email Validation - # check if the email already exists + # check if the email already exists (with root's key) if user_update.email is not Empty: - user_with_email = self.stash.get_by_email( - credentials=context.credentials, email=user_update.email + user_with_email_exists: bool = self.stash.email_exists( + email=user_update.email ) - if user_with_email.ok() is not None: + if user_with_email_exists: return SyftError( message=f"A user with the email {user_update.email} already exists." ) diff --git a/packages/syft/src/syft/service/user/user_stash.py b/packages/syft/src/syft/service/user/user_stash.py index e3fd20bd179..9d1c1ab5fe8 100644 --- a/packages/syft/src/syft/service/user/user_stash.py +++ b/packages/syft/src/syft/service/user/user_stash.py @@ -76,6 +76,13 @@ def get_by_email( qks = QueryKeys(qks=[EmailPartitionKey.with_obj(email)]) return self.query_one(credentials=credentials, qks=qks) + def email_exists(self, email="") -> bool: + res = self.get_by_email(credentials=self.admin_verify_key().ok(), email=email) + if res.ok() is None: + return False + else: + return True + def get_by_role( self, credentials: SyftVerifyKey, role: ServiceRole ) -> Result[Optional[User], str]: From 8ed597fbb3b9f9d547e5a4b653e8bc8ddd591337 Mon Sep 17 00:00:00 2001 From: khoaguin Date: Mon, 18 Sep 2023 15:40:46 +0700 Subject: [PATCH 2/5] fix a test when setting email to default root email add a separate test when setting email to root email --- packages/syft/tests/syft/users/user_test.py | 18 +++++++++++++++++- 1 file changed, 17 insertions(+), 1 deletion(-) diff --git a/packages/syft/tests/syft/users/user_test.py b/packages/syft/tests/syft/users/user_test.py index 5729c643166..7846e6c80ca 100644 --- a/packages/syft/tests/syft/users/user_test.py +++ b/packages/syft/tests/syft/users/user_test.py @@ -8,6 +8,7 @@ from syft import SyftSuccess from syft.client.api import SyftAPICall from syft.client.domain_client import DomainClient +from syft.node.node import get_default_root_email from syft.node.worker import Worker from syft.service.context import AuthedServiceContext from syft.service.user.user import ServiceRole @@ -260,7 +261,6 @@ def test_user_view_set_invalid_email( [ ("syft@gmail.com", "syft_ds@gmail.com"), ("syft@openmined.com", "syft_ds@openmined.com"), - ("info@openmined.org", "info_ds@openmined.org"), ], ) def test_user_view_set_email_success( @@ -275,6 +275,22 @@ def test_user_view_set_email_success( assert isinstance(result2, SyftSuccess) +def test_user_view_set_default_admin_email_failed( + ds_client: DomainClient, guest_client: DomainClient +) -> None: + default_root_email = get_default_root_email() + result = ds_client.me.set_email(default_root_email) + assert isinstance(result, SyftError) + assert ( + result.message == f"A user with the email {default_root_email} already exists." + ) + result_2 = guest_client.me.set_email(default_root_email) + assert isinstance(result_2, SyftError) + assert ( + result.message == f"A user with the email {default_root_email} already exists." + ) + + def test_user_view_set_duplicated_email( root_client: DomainClient, ds_client: DomainClient, guest_client: DomainClient ) -> None: From 2dfd8c6a0093d592c6943cf4d3320b2159b208fc Mon Sep 17 00:00:00 2001 From: khoaguin Date: Mon, 18 Sep 2023 16:43:31 +0700 Subject: [PATCH 3/5] add a test to check that users can't update their emails to DEFAULT_ROOT_EMAIL through their api services --- packages/syft/tests/syft/users/user_test.py | 26 +++++++++++++++++---- 1 file changed, 22 insertions(+), 4 deletions(-) diff --git a/packages/syft/tests/syft/users/user_test.py b/packages/syft/tests/syft/users/user_test.py index 7846e6c80ca..b9bfac92a7d 100644 --- a/packages/syft/tests/syft/users/user_test.py +++ b/packages/syft/tests/syft/users/user_test.py @@ -33,7 +33,7 @@ def get_users(worker): ) -def get_mock_client(root_client, role): +def get_mock_client(root_client, role) -> DomainClient: worker = root_client.api.connection.node client = worker.guest_client mail = Faker().email() @@ -67,17 +67,17 @@ def manually_call_service(worker, client, service, args=None, kwargs=None): @pytest.fixture -def guest_client(worker): +def guest_client(worker) -> DomainClient: return get_mock_client(worker.root_client, ServiceRole.GUEST) @pytest.fixture -def ds_client(worker): +def ds_client(worker) -> DomainClient: return get_mock_client(worker.root_client, ServiceRole.DATA_SCIENTIST) @pytest.fixture -def do_client(worker): +def do_client(worker) -> DomainClient: return get_mock_client(worker.root_client, ServiceRole.DATA_OWNER) @@ -234,6 +234,24 @@ def test_user_update(root_client): ) +def test_guest_user_update_to_root_email_failed( + root_client: DomainClient, + do_client: DomainClient, + guest_client: DomainClient, + ds_client: DomainClient, +) -> None: + default_root_email: str = get_default_root_email() + user_update_to_root_email = UserUpdate(email=default_root_email) + for client in [root_client, do_client, guest_client, ds_client]: + res = client.api.services.user.update( + uid=client.me.id, user_update=user_update_to_root_email + ) + assert isinstance(res, SyftError) + assert ( + res.message == f"A user with the email {default_root_email} already exists." + ) + + def test_user_view_set_password(worker: Worker, root_client: DomainClient) -> None: root_client.me.set_password("123", confirm=False) email = root_client.me.email From 2b2827e11537bbba4224bcf3e4c3772bcad742a4 Mon Sep 17 00:00:00 2001 From: khoaguin Date: Tue, 19 Sep 2023 13:13:01 +0700 Subject: [PATCH 4/5] skip setting email to empty string add missing type annotation for the email field --- packages/syft/src/syft/service/user/user_stash.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packages/syft/src/syft/service/user/user_stash.py b/packages/syft/src/syft/service/user/user_stash.py index 9d1c1ab5fe8..8535acea25d 100644 --- a/packages/syft/src/syft/service/user/user_stash.py +++ b/packages/syft/src/syft/service/user/user_stash.py @@ -76,7 +76,7 @@ def get_by_email( qks = QueryKeys(qks=[EmailPartitionKey.with_obj(email)]) return self.query_one(credentials=credentials, qks=qks) - def email_exists(self, email="") -> bool: + def email_exists(self, email: str) -> bool: res = self.get_by_email(credentials=self.admin_verify_key().ok(), email=email) if res.ok() is None: return False From f070d957f244057ffcdc4de58805cafb2273692e Mon Sep 17 00:00:00 2001 From: Shubham Gupta Date: Thu, 21 Sep 2023 18:10:45 +0530 Subject: [PATCH 5/5] remove experimental notebook --- notebooks/Experimental/test.ipynb | 0 1 file changed, 0 insertions(+), 0 deletions(-) delete mode 100644 notebooks/Experimental/test.ipynb diff --git a/notebooks/Experimental/test.ipynb b/notebooks/Experimental/test.ipynb deleted file mode 100644 index e69de29bb2d..00000000000