[SSF-211] promote volunteer to admin

[jxuistrying]

ℹ️ Issue

Closes [SSF-211]

📝 Description

• added PATCH /api/users/:id/role endpoint for promotion
• promotion updates role in DB, clears pantry assignments, and syncs Cognito groups
• wrote service and controller tests
• implemented column ui changes to promote to admin with confirmation modal
• add alerts for success/error after promotion

✔️ Verification

used frontend to test promoting a volunteer to admin and checked the network tab to see user role updated to admin

🏕️ (Optional) Future Work / Notes

my yarn tests are failing currently but im not sure how to fix it yet.

[jiang-h-y]

Mostly lgtm, but could you move the promote button into a new column instead of putting it within "Actions" so it better matches the Figma design?

Like this:

[jiang-h-y]

Also backend tests are passing for me so not sure why you're having issues.

[dburkhart07]

few questions pending yurika's clarification, but still some good things to work on. make sure all these updates you make you make to the tests too!

[dburkhart07]

This may be a very rare case where we do not need a body. We know we are already promoting the volunteer to admin, so we shouldn't need to verify any other data. Can we delete this and the dto, and the check in the controller?

[dburkhart07]

nit: Can we rename this to something more descriptive, perhaps @Patch('/:id/promote-volunteer)

[jxuistrying]

renamed to promote-volunteer

[dburkhart07]

Most of our patch api calls will return void you'll see, let's do the same here and update the service function and all tests.

[dburkhart07]

This is a required field, it will aways exist

[dburkhart07]

I don't think we need any of this queryRunner, and we should be able to just set the volunteers to [] and save that. I think that may have been missed in the ticket, so can you do that? Should just be able to do this.repo.save instead (like all our other service functions).

[dburkhart07]

Can we wrap all 3 service calls in one single transaction? Look at many of our other service functions (one example would be the create function in the donations service) to understand how we go about using a transactionManager. The boilerplate code should be identical to that.

[dburkhart07]

nit: include these imports in the same one as above

[dburkhart07]

we generally havent been testing for the sad cases in the controller, since primarily the service will handle bad input logic. controller tests for us are primarily just to make sure that the service is called once, and with the right parameters.

cuz of that, can we delete this test and the one below?

[dburkhart07]

in our dummy data, user id 7 is a volunteer i believe (from line 553). can we just use that for all of our promote checks here instead of finding all volunteers?

[dburkhart07]

if this removeUserFromGroup call fails, then our database will be inconsistent with Cognito (we will have an admin user in Cognito, but this will rollback and give us a volunteer in the database. For this second call, can we do a try catch and, in the catch, run await this.authService.removeUserFromGroup(user.email, 'admin'); so that we remove the just added admin, and then throw an error so that everything rolls back? can we also add a specific test for this?

[dburkhart07]

can we make sure hat the volunteer had pantries to begin with before, to show that the call removes them?

[dburkhart07]

nit: can we rephrase this to "when user is not a volunteer" since thats really what we want to test (any other role will work though).

[dburkhart07]

same thing here, user id 1 should be an admin

[dburkhart07]

see above comment about using id instead

[dburkhart07]

same here

[dburkhart07]

nit: can we change this to if (!e.open) onClose(); like all our other modals?

[dburkhart07]

see slack comments

[dburkhart07]

i know this isnt part of your ticket, but can we also make this function take in the users role, so that they can be added to the appropriate group?