Show multiple permission reasons as JSON arrays, refs #2531

- Modified /-/allowed to show all reasons that grant access to a resource - Changed from MAX(reason) to json_group_array() in SQL to collect all reasons - Reasons now displayed as JSON arrays in both HTML and JSON responses - Only show Reason column to users with permissions-debug permission - Removed obsolete "Source Plugin" column from /-/rules interface - Updated allowed_resources_with_reasons() to parse and return reason lists - Fixed alert() on /-/allowed by replacing with disabled input state
2025-12-10 16:51:24 +01:00 · 2025-10-25 21:24:05 -07:00 · 2025-10-25 21:24:05 -07:00 · d769e97ab8
commit d769e97ab8
parent ee4fcff5c0
6 changed files with 40 additions and 21 deletions
--- a/datasette/app.py
+++ b/datasette/app.py
@ -1233,7 +1233,22 @@ class Datasette:
        resources = []
        for row in result.rows:
            resource = self.resource_for_action(action, parent=row[0], child=row[1])
-            reason = row[2]
+            reason_json = row[2]
+
+            # Parse JSON array of reasons and filter out nulls
+            try:
+                import json
+
+                reasons_array = (
+                    json.loads(reason_json) if isinstance(reason_json, str) else []
+                )
+                reasons_filtered = [r for r in reasons_array if r is not None]
+                # Store as list for multiple reasons, or keep empty list
+                reason = reasons_filtered
+            except (json.JSONDecodeError, TypeError):
+                # Fallback for backward compatibility
+                reason = [reason_json] if reason_json else []
+
            resources.append(AllowedResource(resource=resource, reason=reason))

        return resources