Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Permissions] Document COG deny edge case #6395

Open
cool-aid-man opened this issue Jun 30, 2024 · 1 comment
Open

[Permissions] Document COG deny edge case #6395

cool-aid-man opened this issue Jun 30, 2024 · 1 comment
Labels
Category: Cogs - Permissions This is related to the Permissions cog. Status: PRs Welcome No one is currently assigned to this issue, but we'd be grateful if anyone made a PR. Type: Bug Unexpected behavior, result, or exception. In case of PRs, it is a fix for the foregoing.
Milestone
3.5.x

Comments

@cool-aid-man
Copy link

cool-aid-man commented Jun 30, 2024
edited by Flame442
Loading

Red-DiscordBot/redbot/core/commands/commands.py

Lines 451 to 458 in ad1e1aa

if self.parent is None and self.cog is not None:
# For top-level commands, we need to check the cog's requires too
ret = await self.cog.requires.verify(ctx)
if ret is False:
return False
try:
return await self.requires.verify(ctx)

The current logic for processing Permissions overrides entirely resolves the COG permissions, then exits early if the resolved state is to deny, and only then resolves COMMAND permissions. Because the process of resolving COG and COMMAND permissions is split up like this, there is no way to maintain the order of operations from [p]permissions explain between these two categories. The output of [p]permissions explain should be modified to clarify this limitation explicitly.

The original issue is maintained below for reproduction steps.

Original issue

What Red version are you using?

3.5.9

What were you trying to do?

I've got a few scenarios where the permissions don't seem to be working as intended.

1st Scene.
Where if a user has both the roles (1255859061547728966 & 1255859041620721727) they can Only use the hug command and not the rest of the sub-commands under the same cog.
Which they should be able to

COG:
  Perform:
    default: false
    1255859061547728966: true
COMMAND:
  hug:
    1255859041620721727: true
  • Both are role IDs (where 1255859041620721727 role is placed higher in the hierarchy than 1255859061547728966).
  • As you can see, there's No conflict (as both the rules are stated to - true) for the above rule.

Explanation for this permissions settings -

  • By default its set to false for everyone - on cog level (Which means at this point no one can use ANY commands from the cog Perform)
  • Rule has override for people with 1255859061547728966 - Which means only 1255859061547728966 can use ALL the commands (including the hug) from the cog.
  • People having 1255859041620721727 role also has an override allowing them to use just the hug command.
    (This means people having just the 1255859041620721727 role can only use hug but people with the 1255859061547728966 role can use every commands including hug.)

The issue comes when the user has both the roles (1255859061547728966 & 1255859041620721727) - where the cog stops the user from running every other command beside hug. Which is weird and shouldn't be happening as the permissions rule for the 1255859041620721727 role, is not conflicting with the cog's rule by any means.

So, in this case - the cog should be able to let the user run every single command that the cog offers. That includes hug & other commands.

Scene 2
Now, at this point if you deny the rule for the 1255859041620721727 role on hug command with -

  • <p>permissions addserverrule deny hug 1255859041620721727

Then the cog starts to act very weird

  • Either it will let the user (having both the roles) run every command beside hug - Intended behavior as you've set the rule to deny
  • Or, it will stop the user (having both the roles) from running every command including hug - Not intended behavior.

The cog starts to work once you restart the bot (reloading doesn't solve it). Work in the sense of - by respecting this deny rule.

What did you expect to happen?

Expected Behavior:
When there's NO conflict (cog & command both states to true) between the cog & its commands, in the permissions rule settings - the permissions cog should allow the user (having both the roles) run all the commands regardless of the roles positions in the hierarchy. By taking both the rules from cog & command into account.

Because if you just switch the ruleset by allowing the 1255859041620721727 role to run cog-wide & overriding the 1255859061547728966 role to deny the hug command then the cog do take both the rules into account.

COG:
  Perform:
    default: false
    1255859041620721727: true
COMMAND:
  hug:
    1255859061547728966: false
  • Both are role IDs (where the 1255859041620721727 role is placed higher in the hierarchy than the 1255859061547728966).
  • As you can see, there's denied hug permission for the 1255859061547728966 role.

In this case, the cog takes both the rule-sets into account and lets the user (having both the roles) to run every other command beside hug - which is intended behavior.

What actually happened?

Cog did not let the user (having both the roles) run the commands - when there's no conflict.

How can we reproduce this error?

  1. Steps are included above. ^^^

Anything else?

N/A
@cool-aid-man cool-aid-man added the Type: Bug Unexpected behavior, result, or exception. In case of PRs, it is a fix for the foregoing. label Jun 30, 2024
@github-actions github-actions bot added the Status: Needs Triage This has not been labeled or discussed for handling yet. label Jun 30, 2024
@Flame442
Copy link
Member

Flame442 commented Jul 1, 2024

Red-DiscordBot/redbot/core/commands/commands.py

Lines 451 to 458 in ad1e1aa

if self.parent is None and self.cog is not None:
# For top-level commands, we need to check the cog's requires too
ret = await self.cog.requires.verify(ctx)
if ret is False:
return False
try:
return await self.requires.verify(ctx)

The current logic for processing Permissions overrides entirely resolves the COG permissions, then exits early if the resolved state is to deny, and only then resolves COMMAND permissions. Because the process of resolving COG and COMMAND permissions is split up like this, there is no way to maintain the order of operations from [p]permissions explain between these two categories. Fixing this would require entirely rewriting how COG level permissions have been implemented, and is out of scope of what we are able to do.

I am modifying this issue to make the goal be documenting this behavior in [p]permissions explain.
([ref] for org members)

@Flame442 Flame442 changed the title [Permissions] Permissions Conflict When User Has Multiple Roles [Permissions] Document COG deny edge case Jul 1, 2024
@Flame442 Flame442 added Status: PRs Welcome No one is currently assigned to this issue, but we'd be grateful if anyone made a PR. Category: Cogs - Permissions This is related to the Permissions cog. and removed Status: Needs Triage This has not been labeled or discussed for handling yet. labels Jul 1, 2024
@Flame442 Flame442 added this to the 3.5.x milestone Jul 1, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Category: Cogs - Permissions This is related to the Permissions cog. Status: PRs Welcome No one is currently assigned to this issue, but we'd be grateful if anyone made a PR. Type: Bug Unexpected behavior, result, or exception. In case of PRs, it is a fix for the foregoing.
Projects
None yet
Milestone
3.5.x
Development

No branches or pull requests
2 participants
@Flame442 @cool-aid-man