Enable permission check according to the new permissions

components/mobile-plugins/mobile-base-plugin/org.wso2.carbon.device.mgt.mobile.ui/src/main/resources/jaggeryapps/devicemgt/app/pages/mdm.page.dashboard/dashboard.hbs

@@ -19,7 +19,6 @@
 {{unit "cdmf.unit.lib.qrcode"}}
 {{unit "mdm.unit.device.qr-modal"}}
 {{#zone "content"}}
-    {{#if permissions.VIEW_DASHBOARD}}
         {{#if permissions.LIST_DEVICES}}
             <div class="row ">
                 <div class="col-md-3 wr-stats-board">
@@ -151,9 +150,6 @@
                 </div>
             </div>
         {{/if}}
-    {{else}}
-        Permission denied
-    {{/if}}
 {{/zone}}
 {{#zone "bottomJs"}}
     {{js "js/dashboard.js"}}

components/mobile-plugins/mobile-base-plugin/org.wso2.carbon.device.mgt.mobile.ui/src/main/resources/jaggeryapps/devicemgt/app/pages/mdm.page.dashboard/dashboard.js

@@ -20,10 +20,16 @@ function onRequest(context) {
     var userModule = require("/app/modules/business-controllers/user.js")["userModule"];
     var generalConfig = context.app.conf["generalConfig"];
     var mdmProps = require("/app/modules/conf-reader/main.js")["conf"];
-
     var viewModel = {};
-    viewModel.permissions = userModule.getUIPermissions();
+    var permissions = {};
-    new Log().debug("## Permissions : " + stringify(userModule.getUIPermissions()));
+    permissions.LIST_DEVICES = userModule.isAuthorized("/permission/admin/device-mgt/devices/owning/view");
+    permissions.LIST_POLICIES = userModule.isAuthorized("/permission/admin/device-mgt/policies/view");
+    permissions.LIST_ROLES = userModule.isAuthorized("/permission/admin/device-mgt/roles/view");
+    permissions.LIST_USERS = userModule.isAuthorized("/permission/admin/device-mgt/users/view");
+    permissions.ADD_POLICY = userModule.isAuthorized("/permission/admin/device-mgt/policies/manage");
+    permissions.ADD_ROLE = userModule.isAuthorized("/permission/admin/device-mgt/roles/manage");
+    permissions.ADD_USER = userModule.isAuthorized("/permission/admin/device-mgt/users/manage");
+    viewModel.permissions = permissions;
     //TODO: Move enrollment URL into app-conf.json
     viewModel.enrollmentURL = mdmProps.generalConfig.host +  mdmProps.enrollmentDir;
     return viewModel;

components/mobile-plugins/mobile-base-plugin/org.wso2.carbon.device.mgt.mobile.ui/src/main/resources/jaggeryapps/devicemgt/app/units/mdm.unit.ui.navbar.nav-menu/nav-menu.hbs

@@ -22,23 +22,14 @@
 {{/zone}}
 
 {{#zone "navMenu-items"}}
-    {{#if permissions.VIEW_DASHBOARD}}
         <li>
             <a href="{{@app.context}}">
                 <i class="fw fw-dashboard"></i>
                 Admin Dashboard
             </a>
         </li>
-    {{/if}}
+
-    {{#if permissions.LIST_DEVICES_ADMIN}}
+    {{#if permissions.LIST_DEVICES}}
-        <li>
-            <a href="{{@app.context}}/devices">
-                <i class="fw fw-mobile"></i>
-                Device Management
-            </a>
-        </li>
-    {{else}}
-        {{#if permissions.LIST_OWN_DEVICES}}
         <li>
             <a href="{{@app.context}}/devices">
                 <i class="fw fw-mobile"></i>
@@ -46,7 +37,6 @@
             </a>
         </li>
     {{/if}}
-    {{/if}}
 
     <li><a><i class="fw fw-user"></i>User Management</a>
         <ul>
@@ -64,12 +54,12 @@
     {{/if}}
     <li><a><i class="fw fw-settings"></i>Configuration Management</a>
         <ul>
-            {{#if permissions.TENANT_CONFIGURATION}}
+            {{#if permissions.LIST_CONFIGURATION}}
                 <li><a href="{{@app.context}}/platform-configuration"><i class="fw fw-service"></i>Platform Configurations</a>
                 </li>
             {{/if}}
             <!-- todo change the permission and get the related permission -->
-            {{#if permissions.TENANT_CONFIGURATION}}
+            {{#if permissions.LIST_CONFIGURATION}}
                 <li><a href="{{@app.context}}/certificates"><i class="fw fw-security-policy"></i>Certificate Configurations</a>
                 </li>
             {{/if}}
@@ -93,7 +83,7 @@
     </ul>
 {{/zone}}
 {{#zone "sidePanes"}}
-    <div class="sidebar-wrapper" id="right-sidebar" is-authorized="{{isAuthorizedForNotifications}}"
+    <div class="sidebar-wrapper" id="right-sidebar" is-authorized="{{permissions.LIST_NOTIFICATIONS}}"
          data-side="right" data-width="320" data-sidebar-fixed="true" data-fixed-offset="50" data-spy="affix"
          data-offset-top="80">
         <ul class="sidebar-messages">

components/mobile-plugins/mobile-base-plugin/org.wso2.carbon.device.mgt.mobile.ui/src/main/resources/jaggeryapps/devicemgt/app/units/mdm.unit.ui.navbar.nav-menu/nav-menu.js

@@ -30,27 +30,30 @@ function onRequest(context) {
     var userModule = require("/app/modules/business-controllers/user.js")["userModule"];
     var mdmProps = require("/app/modules/conf-reader/main.js")["conf"];
     var constants = require("/app/modules/constants.js");
-    var uiPermissions = userModule.getUIPermissions();
-    context["permissions"] = uiPermissions;
-
     var links = {
         "user-mgt": [],
         "role-mgt": [],
         "policy-mgt": [],
         "device-mgt": []
     };
+    var viewModel = {};
 
-    // following context.link value comes here based on the value passed at the point
+    // following viewModel.link value comes here based on the value passed at the point
     // where units are attached to a page zone.
     // eg: {{unit "appbar" pageLink="users" title="User Management"}}
-    context["currentActions"] = links[context["pageLink"]];
+    viewModel["currentActions"] = links[viewModel["pageLink"]];
-    context["enrollmentURL"] = mdmProps["generalConfig"]["host"] + mdmProps["enrollmentDir"];
+    viewModel["enrollmentURL"] = mdmProps["generalConfig"]["host"] + mdmProps["enrollmentDir"];
-    var  isAuthorizedForNotifications =
-        userModule.isAuthorized("/permission/admin/device-mgt/emm-admin/notifications/view");
     var currentUser = session.get(constants["USER_SESSION_KEY"]);
-    context["isAuthorizedForNotifications"] = isAuthorizedForNotifications;
+    var permissions = {};
-    context["currentUser"] = currentUser;
+    permissions.LIST_DEVICES = userModule.isAuthorized("/permission/admin/device-mgt/devices/owning/view");
-    context["appContext"] = mdmProps["appContext"];
+    permissions.LIST_POLICIES = userModule.isAuthorized("/permission/admin/device-mgt/policies/view");
+    permissions.LIST_ROLES = userModule.isAuthorized("/permission/admin/device-mgt/roles/view");
+    permissions.LIST_USERS = userModule.isAuthorized("/permission/admin/device-mgt/users/view");
+    permissions.LIST_NOTIFICATIONS = userModule.isAuthorized("/permission/admin/device-mgt/notifications/view");
+    permissions.LIST_CONFIGURATION = userModule.isAuthorized("/permission/admin/device-mgt/configurations/view");
+    viewModel.permissions = permissions;
+    viewModel["currentUser"] = currentUser;
+    viewModel["appContext"] = mdmProps["appContext"];
 
-    return context;
+    return viewModel;
 }