Feat/dbgap options

[Avantol13]

New Features

• dbGaP sync supports handling "Common Exchange Area" user access via the c999 consent group now
• new configuration to turn on "granting Common Exchange Area user access via the c999 consent group" feature

Breaking Changes

• c999 is no longer converted to just phsid when parsing consent codes (which causes issues when switching the configuration on/off in terms of data access). Now, when consent code parsing is on, usersync handles c999 by providing access to all consents explicitly (including itself, .c999, to represent the study-specific exchange area)

Bug Fixes

Improvements

Dependency updates

Deployment changes

• Fence does NOT handle c999 the same as before. If using dbgap sync w/ consent code parsing and indexd records have acls with just phsid to represent objects someone w/ c999 should be able to see, you will need to ensure that the records also have the phsid.consent_code as well or users will lose access
• Fence has a new configuration to support more dbGaP syncing options: if you require "Common Exchange Area" data access, review the new configuration and supply necessary values

[coveralls]

Pull Request Test Coverage Report for Build 7944

• 50 of 51 (98.04%) changed or added relevant lines in 1 file are covered.
• No unchanged relevant lines lost coverage.
• Overall coverage increased (+0.1%) to 69.436%

---

Changes Missing Coverage	Covered Lines	Changed/Added Lines	%
fence/sync/sync_users.py	50	51	98.04%

Totals
Change from base Build 7942:	0.1%
Covered Lines:	5073
Relevant Lines:	7306

---

💛 - Coveralls

[github-actions]

The style in this PR agrees with black. ✔️

This formatting comment was generated automatically by a script in uc-cdis/wool.

[paulineribeyre]

what does .v1.p1 mean? :D

[allisonheath]

For reference: https://www.ncbi.nlm.nih.gov/pmc/articles/PMC2031016/#S9title

[paulineribeyre]

phs000179 is not in study_to_resource_namespaces so where does the mapping come from?

[Avantol13]

gets put in the _default namespace

[paulineribeyre]

why did you choose to make this configurable?

[Avantol13]

in case dbgap projects we receive change format, we don't have to edit code. there are possibilities where the first 3 chars are not phs. I'd rather be able to change it in configuration in the future than edit code 🤷‍♂️ idk, I could be convinced otherwise, but since this is an external format we are expected, figured it'd feel more at home in configuration

[paulineribeyre]

but instead of editing code in 1 place, we would have to edit the default config + edit the value in the config of all the Commons that use it 😬

[Avantol13]

not necessarily, just edit the default and don't supply it in the configurations in the commons so they use the default

[Avantol13]

and then if a specific commons expects something different they can override it

[Avantol13]

like if for some commons we need phs123 but others we start getting phg123, better to have that in config. I see your point though, it's not of immediate use now, I just feel like this is something that should be configurable

[paulineribeyre]

true!! assuming we remember to leave it out of the commons' configs 😅

[paulineribeyre]

permissions is not used - either use for project in copy.deepcopy(user_project_info) here, or use permissions instead of read-storage later

[paulineribeyre]

did you forget to paste this somewhere? 🤔

[Avantol13]

no, this logic was confusing, this is already checked below, no need to do it twice

[paulineribeyre]

✨ c999 ✨