Toggle group ownership on projects

apps/dashboard/app/controllers/projects_controller.rb

@@ -236,7 +236,7 @@ def templates
   def project_params
     params
       .require(:project)
-      .permit(:name, :directory, :description, :icon, :id, :template)
+      .permit(:name, :directory, :description, :icon, :id, :template, :group_owner)
   end
 
   def show_project_params

apps/dashboard/app/models/project.rb

@@ -111,7 +111,7 @@ def importable_directories
     end
   end
 
-  attr_reader :id, :name, :description, :icon, :directory, :template, :files
+  attr_reader :id, :name, :description, :icon, :directory, :template, :files, :group_owner
 
   validates :name, presence: { message: :required }, on: [:create, :update]
   validates :id, :directory, :icon, presence: { message: :required }, on: [:update]
@@ -128,6 +128,7 @@ def initialize(attributes = {})
     @directory = attributes[:directory]
     @directory = File.expand_path(@directory) unless @directory.blank?
     @template = attributes[:template]
+    @group_owner = attributes[:group_owner] || get_group_owner
 
     return if new_record?
 
@@ -203,6 +204,29 @@ def remove_from_lookup
     false
   end
 
+  def private?
+    project_dataroot.to_s.start_with?(CurrentUser.home)
+  end
+
+  def get_group_owner
+    if project_dataroot != Project.dataroot && project_dataroot.grpowned?
+      Etc.getgrgid(project_dataroot.stat.gid).name
+    else
+      nil
+    end
+  end
+
+  def set_group_owner
+    return true if private? || @group_owner == get_group_owner
+    begin
+      group_gid = @group_owner.nil? ? nil : Etc.getgrnam(@group_owner).gid
+      FileUtils.chown(nil, group_gid, project_dataroot)
+    rescue StandardError => e
+      errors.add(:update, "Unable to set group ownership with error #{e.class}:#{e.message}")
+      false
+    end
+  end
+
   def editable? 
     File.writable?(manifest_path)
   end
@@ -305,6 +329,7 @@ def update_attrs(attributes)
 
   def make_dir
     project_dataroot.mkpath         unless project_dataroot.exist?
+    set_group_owner
     configuration_directory.mkpath  unless configuration_directory.exist?
     workflow_directory = Workflow.workflow_dir(project_dataroot)
     workflow_directory.mkpath unless workflow_directory.exist?

apps/dashboard/app/views/projects/_form.html.erb

@@ -53,6 +53,14 @@
           <div class="field">
             <%= form.text_area :description, placeholder: I18n.t('dashboard.jobs_project_description_placeholder') %>
           </div>
+          <% unless @project.private? && edit_project_action %>
+            <div class="field">
+              <%= form.select(:group_owner,
+                              CurrentUser.group_names,
+                              { label: I18n.t('dashboard.jobs_project_group_owner') },
+                              { disabled: edit_project_action })%>
+            </div>
+	  <% end %>
         </div>
       </div>
       </div>

apps/dashboard/config/locales/en.yml

@@ -175,6 +175,7 @@ en:
     jobs_project_directory_error: Project directory path is not set for this workflow
     jobs_project_directory_placeholder: Project directory absolute path
     jobs_project_generic_error: 'There was an error processing your request: %{error}'
+    jobs_project_group_owner: Group owner
     jobs_project_invalid_configuration_clusters: An HPC cluster is required. Contact your administrator to add one to the system.
     jobs_project_invalid_configuration_scripts: An executable script is required for your project. Upload a script using the file application.
     jobs_project_job_deleted: Successfully deleted job %{job_id}