feat(can_share): can share chart and dashboard

[amitmiran137]

SUMMARY

As all things are so should sharing be a managed under a permission the user entitles to.
can_share_dashboard and can_share_chart are the new permissions .
both hide/show ShareMenuItems component on the dashboard/chart menus

BEFORE/AFTER SCREENSHOTS OR ANIMATED GIF

can_share.mov

TEST PLAN

1. check that sharing is menu option is shown by default for Admin/Gamma/Alpha
2. remove can share chart/dashboard on Superset from you user role
3. check that sharing menu option is hidden

ADDITIONAL INFORMATION

• Has associated issue:
• Changes UI
• Includes DB Migration (follow approval process in SIP-59)
  • Migration is atomic, supports rollback & is backwards-compatible
  • Confirm DB migration upgrade and downgrade tested
  • Runtime estimates and downtime expectations provided
• Introduces new feature or API
• Removes existing feature or API

[codecov]

Codecov Report

Merging #14076 (88b523e) into master (80da1ca) will increase coverage by 1.31%.
The diff coverage is 100.00%.

❗ Current head 88b523e differs from pull request most recent head 2ac7224. Consider uploading reports for the commit 2ac7224 to get more accurate results

@@            Coverage Diff             @@
##           master   #14076      +/-   ##
==========================================
+ Coverage   78.25%   79.57%   +1.31%     
==========================================
  Files         942      943       +1     
  Lines       47675    47768      +93     
  Branches     5977     6029      +52     
==========================================
+ Hits        37306    38009     +703     
+ Misses      10215     9638     -577     
+ Partials      154      121      -33     

Flag	Coverage Δ
cypress	56.33% <83.33%> (+9.78%)	⬆️
hive	?
javascript	69.62% <90.90%> (+0.49%)	⬆️
mysql	80.72% <100.00%> (+<0.01%)	⬆️
postgres	80.75% <100.00%> (+<0.01%)	⬆️
presto	80.47% <100.00%> (+<0.01%)	⬆️
python	81.05% <100.00%> (-0.27%)	⬇️
sqlite	80.35% <100.00%> (+<0.01%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

Impacted Files	Coverage Δ
superset-frontend/src/dashboard/actions/hydrate.js	85.84% <ø> (+15.09%)	⬆️
.../src/dashboard/components/gridComponents/Chart.jsx	86.59% <ø> (ø)
...nativeFilters/FilterBar/FilterSets/EditSection.tsx	80.00% <ø> (+46.00%)	⬆️
...tiveFilters/FilterBar/FilterSets/FilterSetUnit.tsx	95.65% <ø> (+52.17%)	⬆️
...tiveFilters/FilterBar/FilterSets/FiltersHeader.tsx	91.42% <ø> (+59.99%)	⬆️
...ents/nativeFilters/FilterBar/FilterSets/Footer.tsx	95.23% <ø> (+47.61%)	⬆️
...nents/nativeFilters/FilterBar/FilterSets/index.tsx	46.46% <ø> (ø)
...perset-frontend/src/dashboard/containers/Chart.jsx	100.00% <ø> (ø)
...d/components/DashboardBuilder/DashboardBuilder.tsx	95.34% <100.00%> (ø)
...erset-frontend/src/dashboard/components/Header.jsx	59.70% <100.00%> (+6.76%)	⬆️
... and 105 more

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 80da1ca...2ac7224. Read the comment docs.

[etr2460]

one question, otherwise i think this makes sense. I'll defer to @dpgaspar or someone more familiar with FAB permissions to stamp though

[dpgaspar]

LGTM,
Assuming that this is a frontend only permission stored on the server. We are not actually preventing user's from accessing the functionality just hiding it.

[graceguo-supercat]

This PR caused SHARE links (share url, share in email etc) are hidden in dashboard. @amitmiran137 @dpgaspar

[amitmiran137]

If you run superset init I believe it will create by default the missing permission to Admin/Alpha/Gamma

For the rest of your roles you should add the permission manually

[amitmiran137]

For backward compatibility you could create a migration that associate the permission to all existing roles

[junlincc]

@amitmiran137 was there a db migration made in this PR?
look at the PR description, it was not super clear about all the permission changes that are being made. More details may help prevent future confusion.

[amitmiran137]

No migration were need bc the PR made sure that those 2 new permission are added by default once you run Superset init
And I as far as I know running superset init is a must command on every new deployment right after dB upgrade