/
ERM Sprint 161

ERM Sprint 161

Owned by Jag Goraya
Last updated: Mar 27, 2023

Sprint Goal / Focus 

  • Bugfest 

Sprint Schedule

  • Sprint: 161
  • Release: 2023.1 Orchid  
    • Sprint 162: Bugfix Release Deadline (31 Mar 2023) [FOLREL-581]
  • Release: 2023.2 Poppy  
    • Sprint 3 of 8 since Release Development Cycle Starts (Sprint 159) to Feature Freeze (Sprint 166)
    • Sprint 168: Module Release Deadline (16 Jun 2023) [FOLREL-565]
    • Sprint 170: Bugfix Release Deadline (21 Jul 2023) [FOLREL-581]

Development Meetings

  • 15 Mar
  • 20 (Mid Sprint Review)
  • 22 Mar

Sprint Capacity

Team AvailabilitySchedule | Calendar

Notes / Exceptions:

  • NA

Lead Roles:

QA Environment: 

  • folio-snapshot, folio-snapshot-2

Present

Planning Questions

  • Does the issue meet the criteria for Definition of Ready?
  • What front and back end components are affected?
  • What changes need to be made? (additions, removals or modifications)
  • What development tests need to be written?  
  • What data does the developer need to verify their work?
  • What are the known unknowns? 
  • What is needed to QA? (environment, data, scripts)

Navigation

 Sprint Planning Agenda
  1. Sprint Goal / Focus
  2. Sprint Capacity
  3. Review sprint candidates 
  4. Agree technical approach / define key implementation tasks
  5. Finalise estimates / costings
  6. Confirm sprint scope
  7. Confirm first actions




Sprint Planning  

(error) - not in sprint

(tick) or @ - in sprint 

(warning) - not ready

(question) - pending triage / planning


Sprint Focus


Planning Notes Template

  • Triage

  • Approach

  • Components and Changes

    • Frontend

    • Backend

  • Tests / Data / Dependencies

  • Known Unknowns

  • QA: snapshot | local | testing | other

  • Release Target: 

  • Development Estimate

UXPROD-3861 - UX improvements for Agreements R2 2023 Closed

Issue ID

Sprint Backlog?

Notes / Estimates / Actions

ERM-1026 - Comparisons | Capitalise Full, Partial and None Closed

(question)

ERM-1061 - Comparison report - display message indicating there are more records to load. Closed

(question)

ERM-1795 - Dashboard: apply a common set of drag and drop styles and behaviours Closed

(question)

ERM-2064 - Move large file upload warning in document to a toast message Closed

(tick)

  • Triage

    • Not showing all the applicable validation messages
      • Potentially increase the drag and drop file upload space to accommodate
    • Currently: 
      • If upload error, could be displaying 3 messages
      • final form and validator behaviour clashes resulting in erroneous error behaviour
  • Approach
    • Move drop validation to toast message (to eliminate state-based error display)
    • Move logic to toast notification (callout rather than field validation)

  • Components and Changes

    • Frontend

    • Backend: none

  • Tests / Data / Dependencies / Known Unknowns: none

  • QA: snapshot 

  • Release Target: Poppy

  • Development Estimate 

Tests

Issue ID

Sprint Backlog?

Notes / Estimates / Actions

ERM-2773 - [C15831] Add agreement line with internal KB resource Closed

(error)

ERM-2812 - [C757] Create an Agreement and [C11095] Delete an Agreement Closed

(error)


Release Tasks (Orchid Bugfix)

Backend: 1d

Frontend: 2d

Issue ID

Sprint Backlog?

Notes / Estimates / Actions

ERM-2640 - mod-agreements release. Fix version: 5.5.1 (Orchid BugFix) Closed



ERM-2648 - mod-service-interaction release. Fix Version: 2.2.2 (Orchid Bugfix) Closed



ERM-2649 - mod-licenses release. Fix Version: 4.3.1 (Orchid Bugfix) Closed



Release Tasks (Non-Flower Release)

Issue ID

Sprint Backlog?

Notes / Estimates / Actions

NA



Maintenance

Issue ID

Sprint Backlog?

Notes / Estimates / Actions

NA



Changes

(plus) Added

(minus) Removed: note whether rescheduled or deferred

Feature ID

Issue ID

Change

Notes


ERM-2883 - On saving a PCI record in the UI the user is returned to title instance view Draft





Rolled Over From Previous Sprint


Planning Notes Template

  • Current State
  • TODO
  • Development Estimate

In Development

Feature ID

Issue IDSprint Backlog?

Notes / Estimates / Actions


ERM-2633 - Add view only settings for Local KB Admin Closed

ERM-2624 - Add view only permissions for Agreement settings Closed

ERM-2625 - Add view only permissions for License settings Closed

Ethan Freestone 

  • Current State
    • In Code Review
  • TODO
  • Development Estimate

ERM-2612 - Add support for content type property on Agreements Closed

Ethan Freestone 

  • Current State
    • In Code Review
  • TODO
  • Development Estimate

ERM-2643 - handlebars rhino (XML External Entity (XXE) Injection) Closed

Ethan Freestone 

  • Current State
    • In Code Review
    • Rhino removed
  • TODO
  • Development Estimate

ERM-2630 - Add new endpoint for external KB "push" process Closed

Ethan Freestone 

  • Current State
    • Unlikely to be parallelised at this point
    • Confidence in how it will act in production service
    • Verified that can remove Remote KBs from domain model
    • Package ingest almost done
  • TODO
    • Finish package ingest from endpoint: make sure it can save to db
    • Issues to address around pushKB service
      • Separate (non-blocker) to package ingest development
    • Tweak title ingest and schema 
    • Refactor title and package ingest services
      • to ensure correctly attaching from outside package
    • Write external pushKb service (ERM-2631)
      • Unknown: how will a developer service work around this for debugging and developing?
      • May need enabling tooling to support development workflow
  • Development Estimate: 2 sprints


Sprint Backlog

Feature IDIssue IDSprint Backlog?

Notes / Estimates / Actions









Blocked

Feature IDIssue IDSprint Backlog?

Notes / Estimates / Actions


ERM-2645 - Set up inital e2e test for Licenses Closed

Claudia Malzer 
  • Current State
    • Blocked
    • Want to avoid re-writing these by avoiding using the interactors (resulting in extra redundant patterns)
  • TODO
    • Needs conversation between Bienenvolk, AQA and Stripes Testing team to support reusable test data for unit and e2e tests across pre-prod and production environments. 
    • Could
      • make non-progress on tests that don't rely on date-picker 
      • try overriding selector (line 9)
      • if not, try writing new date-picker interactor 
        • create new interactor in stripes-erm-testing based on date-picker from stripes-testing
        • need to address a different way to grab data-div
        • add unit test (to support JEST debugging)
        • verify in cypress 
    • Unknowns
      • how to find which element is selected?
  • Development Estimate




In QA

Feature IDIssue IDSprint Backlog?

Notes / Estimates / Actions


SI-12 - Potential CROSS SITE SCRIPTING (XSS) vulnerability Closed

  Monireh Rasouli 

  • Current State
  • TODO
    • Filter the input by whitelist
      • In widget type form component
      • Use as field validator, employed from a reusable utils file in dashboard
    • Add URI encoding in form submission
  • Development Estimate
    • Wed


For Elaboration

Feature IDIssue IDSprint Backlog?

Notes / Estimates / Actions

NA





For Release Prep

Feature IDIssue IDSprint Backlog?

Notes / Estimates / Actions


ERM-2506 - Display licenses sorted in predictable order in Agreements Closed




Bugfix Cycle

Feature IDIssue IDSprint Backlog?

Notes / Estimates / Actions







Sprint Summary

ERM

Key Summary T Assignee Status Components
No issues found Refresh


Dashboard

Key Summary T Assignee Status Components
No issues found Refresh

Other

Key Summary T Assignee Status Components Labels
RMB-391 Implement foreign key support for CQLPGJson Parser (two tables, parent->child) Story Eric Valuk Closed platform-backlog
RMB-390 Unit tests fail (24.1.0-SNAPSHOT) Bug Julian Ladisch Closed back-end, platform-backlog
RMB-384 Generated models might have "readOnly" properties which are not in schema Bug Adam Dickmeiss Closed back-end, platform-backlog
RMB-383 PgUtil.deleteById: return 400 on foreign key violation Bug Julian Ladisch Closed back-end, platform-backlog
RMB-380 implement new approach for searching array-of-strings and array-of-objects fields Task Adam Dickmeiss Closed platform-backlog
RMB-379 wrong Criteria value masking results in SQL Injection Bug Julian Ladisch Closed back-end, platform-backlog, security
RMB-378 Update jersey to 2.28, fixing security issues Bug Julian Ladisch Closed back-end, platform-backlog, security
RMB-377 jackson-databind 2.9.9: Block one more gadget type (CVE-2019-12086) Bug Julian Ladisch Closed back-end, platform-backlog, security
RMB-376 merge CQL2PG into RMB New Feature Julian Ladisch Closed platform-backlog
RMB-353 Metadata without user id Bug Julian Ladisch Closed back-end, platform-backlog
RMB-346 Always sync _id and jsonb->>'id' using a trigger, drop "populateJsonWithId: false" option Bug Julian Ladisch Closed back-end, platform-backlog
RMB-277 id for primary key name, drop configuration option Bug Julian Ladisch Closed back-end, core, platform-backlog
RMB-199 Single quote SQL Injection in PostgresClient.delete(table, pojo, handler) Bug Julian Ladisch Closed back-end, platform-backlog, privacy, security
RMB-125 no way to indicate a removal of the metadata trigger in the schema.json Bug Julian Ladisch Closed back-end, platform-backlog
OKAPI-738 Increase internal deploy/undeploy timeout Bug Adam Dickmeiss Closed back-end, platform-backlog
OKAPI-737 Cannot restart Okapi when mod-authtoken is enabled on supertenant Bug Adam Dickmeiss Closed back-end, platform-backlog
OKAPI-736 PoC: Deploy through the Kubernetes API New Feature Unassigned Open platform-backlog
OKAPI-729 Discovery: url pattern (DNS for service) New Feature Unassigned Open platform-backlog
MODINVSTOR-289 deleteAll: use DELETE, not TRUNCATE for foreign-key references Bug Julian Ladisch Closed back-end
MODINVSTOR-255 GET 200 - instance-storage by source: query=source=abc takes 360 s Bug Julian Ladisch Closed performance, platform-backlog
Showing 20 out of 38 issues Refresh

No Label

Key Summary T Assignee Status Components
No issues found Refresh