2017-01-19 19:31:46 -07:00
|
|
|
// Copyright 2017 The Gitea Authors. All rights reserved.
|
|
|
|
// Use of this source code is governed by a MIT-style
|
|
|
|
// license that can be found in the LICENSE file.
|
|
|
|
|
|
|
|
package org
|
|
|
|
|
|
|
|
import (
|
2019-12-20 10:07:12 -07:00
|
|
|
"net/http"
|
2021-11-16 11:18:25 -07:00
|
|
|
"net/url"
|
2017-01-19 19:31:46 -07:00
|
|
|
|
|
|
|
"code.gitea.io/gitea/models"
|
2022-03-29 00:29:02 -06:00
|
|
|
"code.gitea.io/gitea/models/organization"
|
2017-01-19 19:31:46 -07:00
|
|
|
"code.gitea.io/gitea/modules/context"
|
2019-11-09 21:41:51 -07:00
|
|
|
"code.gitea.io/gitea/modules/convert"
|
2017-01-19 19:31:46 -07:00
|
|
|
"code.gitea.io/gitea/modules/setting"
|
2019-08-23 10:40:30 -06:00
|
|
|
api "code.gitea.io/gitea/modules/structs"
|
2017-01-19 19:31:46 -07:00
|
|
|
"code.gitea.io/gitea/routers/api/v1/user"
|
2020-01-24 12:00:29 -07:00
|
|
|
"code.gitea.io/gitea/routers/api/v1/utils"
|
2017-01-19 19:31:46 -07:00
|
|
|
)
|
|
|
|
|
|
|
|
// listMembers list an organization's members
|
|
|
|
func listMembers(ctx *context.APIContext, publicOnly bool) {
|
2022-03-29 00:29:02 -06:00
|
|
|
opts := &organization.FindOrgMembersOpts{
|
2020-01-24 12:00:29 -07:00
|
|
|
OrgID: ctx.Org.Organization.ID,
|
|
|
|
PublicOnly: publicOnly,
|
|
|
|
ListOptions: utils.GetListOptions(ctx),
|
2021-08-12 06:43:08 -06:00
|
|
|
}
|
|
|
|
|
2022-03-29 00:29:02 -06:00
|
|
|
count, err := organization.CountOrgMembers(opts)
|
2021-08-12 06:43:08 -06:00
|
|
|
if err != nil {
|
|
|
|
ctx.InternalServerError(err)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
2022-03-29 00:29:02 -06:00
|
|
|
members, _, err := organization.FindOrgMembers(opts)
|
2019-12-05 22:34:54 -07:00
|
|
|
if err != nil {
|
2021-08-12 06:43:08 -06:00
|
|
|
ctx.InternalServerError(err)
|
2019-12-05 22:34:54 -07:00
|
|
|
return
|
2017-01-19 19:31:46 -07:00
|
|
|
}
|
|
|
|
|
|
|
|
apiMembers := make([]*api.User, len(members))
|
|
|
|
for i, member := range members {
|
2022-03-22 01:03:22 -06:00
|
|
|
apiMembers[i] = convert.ToUser(member, ctx.Doer)
|
2017-01-19 19:31:46 -07:00
|
|
|
}
|
2020-06-21 02:22:06 -06:00
|
|
|
|
2021-08-12 06:43:08 -06:00
|
|
|
ctx.SetTotalCountHeader(count)
|
2019-12-20 10:07:12 -07:00
|
|
|
ctx.JSON(http.StatusOK, apiMembers)
|
2017-01-19 19:31:46 -07:00
|
|
|
}
|
|
|
|
|
|
|
|
// ListMembers list an organization's members
|
|
|
|
func ListMembers(ctx *context.APIContext) {
|
2017-11-13 00:02:25 -07:00
|
|
|
// swagger:operation GET /orgs/{org}/members organization orgListMembers
|
|
|
|
// ---
|
|
|
|
// summary: List an organization's members
|
|
|
|
// produces:
|
|
|
|
// - application/json
|
|
|
|
// parameters:
|
|
|
|
// - name: org
|
|
|
|
// in: path
|
|
|
|
// description: name of the organization
|
|
|
|
// type: string
|
|
|
|
// required: true
|
2020-01-24 12:00:29 -07:00
|
|
|
// - name: page
|
|
|
|
// in: query
|
|
|
|
// description: page number of results to return (1-based)
|
|
|
|
// type: integer
|
|
|
|
// - name: limit
|
|
|
|
// in: query
|
2020-06-08 22:57:38 -06:00
|
|
|
// description: page size of results
|
2020-01-24 12:00:29 -07:00
|
|
|
// type: integer
|
2017-11-13 00:02:25 -07:00
|
|
|
// responses:
|
|
|
|
// "200":
|
|
|
|
// "$ref": "#/responses/UserList"
|
2019-12-20 10:07:12 -07:00
|
|
|
|
2017-12-21 00:43:26 -07:00
|
|
|
publicOnly := true
|
2022-03-22 01:03:22 -06:00
|
|
|
if ctx.Doer != nil {
|
|
|
|
isMember, err := ctx.Org.Organization.IsOrgMember(ctx.Doer.ID)
|
2017-12-21 00:43:26 -07:00
|
|
|
if err != nil {
|
2019-12-20 10:07:12 -07:00
|
|
|
ctx.Error(http.StatusInternalServerError, "IsOrgMember", err)
|
2017-12-21 00:43:26 -07:00
|
|
|
return
|
|
|
|
}
|
2022-03-22 01:03:22 -06:00
|
|
|
publicOnly = !isMember && !ctx.Doer.IsAdmin
|
2017-12-21 00:43:26 -07:00
|
|
|
}
|
2017-06-07 10:10:35 -06:00
|
|
|
listMembers(ctx, publicOnly)
|
2017-01-19 19:31:46 -07:00
|
|
|
}
|
|
|
|
|
|
|
|
// ListPublicMembers list an organization's public members
|
|
|
|
func ListPublicMembers(ctx *context.APIContext) {
|
2017-11-13 00:02:25 -07:00
|
|
|
// swagger:operation GET /orgs/{org}/public_members organization orgListPublicMembers
|
|
|
|
// ---
|
|
|
|
// summary: List an organization's public members
|
|
|
|
// parameters:
|
|
|
|
// - name: org
|
|
|
|
// in: path
|
|
|
|
// description: name of the organization
|
|
|
|
// type: string
|
|
|
|
// required: true
|
2020-01-24 12:00:29 -07:00
|
|
|
// - name: page
|
|
|
|
// in: query
|
|
|
|
// description: page number of results to return (1-based)
|
|
|
|
// type: integer
|
|
|
|
// - name: limit
|
|
|
|
// in: query
|
2020-06-08 22:57:38 -06:00
|
|
|
// description: page size of results
|
2020-01-24 12:00:29 -07:00
|
|
|
// type: integer
|
2017-11-13 00:02:25 -07:00
|
|
|
// produces:
|
|
|
|
// - application/json
|
|
|
|
// responses:
|
|
|
|
// "200":
|
|
|
|
// "$ref": "#/responses/UserList"
|
2019-12-20 10:07:12 -07:00
|
|
|
|
2017-01-19 19:31:46 -07:00
|
|
|
listMembers(ctx, true)
|
|
|
|
}
|
|
|
|
|
|
|
|
// IsMember check if a user is a member of an organization
|
|
|
|
func IsMember(ctx *context.APIContext) {
|
2017-11-13 00:02:25 -07:00
|
|
|
// swagger:operation GET /orgs/{org}/members/{username} organization orgIsMember
|
|
|
|
// ---
|
|
|
|
// summary: Check if a user is a member of an organization
|
|
|
|
// parameters:
|
|
|
|
// - name: org
|
|
|
|
// in: path
|
|
|
|
// description: name of the organization
|
|
|
|
// type: string
|
|
|
|
// required: true
|
|
|
|
// - name: username
|
|
|
|
// in: path
|
|
|
|
// description: username of the user
|
|
|
|
// type: string
|
|
|
|
// required: true
|
|
|
|
// responses:
|
|
|
|
// "204":
|
|
|
|
// description: user is a member
|
2022-03-22 22:54:07 -06:00
|
|
|
// "303":
|
2019-12-20 10:07:12 -07:00
|
|
|
// description: redirection to /orgs/{org}/public_members/{username}
|
2017-11-13 00:02:25 -07:00
|
|
|
// "404":
|
|
|
|
// description: user is not a member
|
2019-12-20 10:07:12 -07:00
|
|
|
|
2017-01-19 19:31:46 -07:00
|
|
|
userToCheck := user.GetUserByParams(ctx)
|
2017-06-07 10:10:35 -06:00
|
|
|
if ctx.Written() {
|
|
|
|
return
|
|
|
|
}
|
2022-03-22 01:03:22 -06:00
|
|
|
if ctx.Doer != nil {
|
|
|
|
userIsMember, err := ctx.Org.Organization.IsOrgMember(ctx.Doer.ID)
|
2017-12-21 00:43:26 -07:00
|
|
|
if err != nil {
|
2019-12-20 10:07:12 -07:00
|
|
|
ctx.Error(http.StatusInternalServerError, "IsOrgMember", err)
|
2017-12-21 00:43:26 -07:00
|
|
|
return
|
2022-03-22 01:03:22 -06:00
|
|
|
} else if userIsMember || ctx.Doer.IsAdmin {
|
2018-07-05 01:14:56 -06:00
|
|
|
userToCheckIsMember, err := ctx.Org.Organization.IsOrgMember(userToCheck.ID)
|
2017-12-21 00:43:26 -07:00
|
|
|
if err != nil {
|
2019-12-20 10:07:12 -07:00
|
|
|
ctx.Error(http.StatusInternalServerError, "IsOrgMember", err)
|
2017-12-21 00:43:26 -07:00
|
|
|
} else if userToCheckIsMember {
|
2019-12-20 10:07:12 -07:00
|
|
|
ctx.Status(http.StatusNoContent)
|
2017-12-21 00:43:26 -07:00
|
|
|
} else {
|
2019-03-18 20:29:43 -06:00
|
|
|
ctx.NotFound()
|
2017-12-21 00:43:26 -07:00
|
|
|
}
|
|
|
|
return
|
2022-03-22 01:03:22 -06:00
|
|
|
} else if ctx.Doer.ID == userToCheck.ID {
|
2019-03-18 20:29:43 -06:00
|
|
|
ctx.NotFound()
|
2017-12-21 00:43:26 -07:00
|
|
|
return
|
2017-01-19 19:31:46 -07:00
|
|
|
}
|
|
|
|
}
|
2017-12-21 00:43:26 -07:00
|
|
|
|
2021-11-16 11:18:25 -07:00
|
|
|
redirectURL := setting.AppSubURL + "/api/v1/orgs/" + url.PathEscape(ctx.Org.Organization.Name) + "/public_members/" + url.PathEscape(userToCheck.Name)
|
2022-03-22 22:54:07 -06:00
|
|
|
ctx.Redirect(redirectURL)
|
2017-01-19 19:31:46 -07:00
|
|
|
}
|
|
|
|
|
|
|
|
// IsPublicMember check if a user is a public member of an organization
|
|
|
|
func IsPublicMember(ctx *context.APIContext) {
|
2017-11-13 00:02:25 -07:00
|
|
|
// swagger:operation GET /orgs/{org}/public_members/{username} organization orgIsPublicMember
|
|
|
|
// ---
|
|
|
|
// summary: Check if a user is a public member of an organization
|
|
|
|
// parameters:
|
|
|
|
// - name: org
|
|
|
|
// in: path
|
|
|
|
// description: name of the organization
|
|
|
|
// type: string
|
|
|
|
// required: true
|
|
|
|
// - name: username
|
|
|
|
// in: path
|
|
|
|
// description: username of the user
|
|
|
|
// type: string
|
|
|
|
// required: true
|
|
|
|
// responses:
|
|
|
|
// "204":
|
|
|
|
// description: user is a public member
|
|
|
|
// "404":
|
|
|
|
// description: user is not a public member
|
2019-12-20 10:07:12 -07:00
|
|
|
|
2017-01-19 19:31:46 -07:00
|
|
|
userToCheck := user.GetUserByParams(ctx)
|
2017-06-07 10:10:35 -06:00
|
|
|
if ctx.Written() {
|
|
|
|
return
|
|
|
|
}
|
2022-03-29 00:29:02 -06:00
|
|
|
is, err := organization.IsPublicMembership(ctx.Org.Organization.ID, userToCheck.ID)
|
2021-11-22 08:21:55 -07:00
|
|
|
if err != nil {
|
|
|
|
ctx.Error(http.StatusInternalServerError, "IsPublicMembership", err)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
if is {
|
2019-12-20 10:07:12 -07:00
|
|
|
ctx.Status(http.StatusNoContent)
|
2017-01-19 19:31:46 -07:00
|
|
|
} else {
|
2019-03-18 20:29:43 -06:00
|
|
|
ctx.NotFound()
|
2017-01-19 19:31:46 -07:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
// PublicizeMember make a member's membership public
|
|
|
|
func PublicizeMember(ctx *context.APIContext) {
|
2017-11-13 00:02:25 -07:00
|
|
|
// swagger:operation PUT /orgs/{org}/public_members/{username} organization orgPublicizeMember
|
|
|
|
// ---
|
|
|
|
// summary: Publicize a user's membership
|
|
|
|
// produces:
|
|
|
|
// - application/json
|
|
|
|
// parameters:
|
|
|
|
// - name: org
|
|
|
|
// in: path
|
|
|
|
// description: name of the organization
|
|
|
|
// type: string
|
|
|
|
// required: true
|
|
|
|
// - name: username
|
|
|
|
// in: path
|
|
|
|
// description: username of the user
|
|
|
|
// type: string
|
|
|
|
// required: true
|
|
|
|
// responses:
|
|
|
|
// "204":
|
|
|
|
// description: membership publicized
|
2019-12-20 10:07:12 -07:00
|
|
|
// "403":
|
|
|
|
// "$ref": "#/responses/forbidden"
|
|
|
|
|
2017-01-19 19:31:46 -07:00
|
|
|
userToPublicize := user.GetUserByParams(ctx)
|
2017-06-07 10:10:35 -06:00
|
|
|
if ctx.Written() {
|
|
|
|
return
|
|
|
|
}
|
2022-03-22 01:03:22 -06:00
|
|
|
if userToPublicize.ID != ctx.Doer.ID {
|
2019-12-20 10:07:12 -07:00
|
|
|
ctx.Error(http.StatusForbidden, "", "Cannot publicize another member")
|
2017-01-19 19:31:46 -07:00
|
|
|
return
|
|
|
|
}
|
2022-03-29 00:29:02 -06:00
|
|
|
err := organization.ChangeOrgUserStatus(ctx.Org.Organization.ID, userToPublicize.ID, true)
|
2017-01-19 19:31:46 -07:00
|
|
|
if err != nil {
|
2019-12-20 10:07:12 -07:00
|
|
|
ctx.Error(http.StatusInternalServerError, "ChangeOrgUserStatus", err)
|
2017-01-19 19:31:46 -07:00
|
|
|
return
|
|
|
|
}
|
2019-12-20 10:07:12 -07:00
|
|
|
ctx.Status(http.StatusNoContent)
|
2017-01-19 19:31:46 -07:00
|
|
|
}
|
|
|
|
|
|
|
|
// ConcealMember make a member's membership not public
|
|
|
|
func ConcealMember(ctx *context.APIContext) {
|
2017-11-13 00:02:25 -07:00
|
|
|
// swagger:operation DELETE /orgs/{org}/public_members/{username} organization orgConcealMember
|
|
|
|
// ---
|
|
|
|
// summary: Conceal a user's membership
|
|
|
|
// produces:
|
|
|
|
// - application/json
|
|
|
|
// parameters:
|
|
|
|
// - name: org
|
|
|
|
// in: path
|
|
|
|
// description: name of the organization
|
|
|
|
// type: string
|
|
|
|
// required: true
|
|
|
|
// - name: username
|
|
|
|
// in: path
|
|
|
|
// description: username of the user
|
|
|
|
// type: string
|
|
|
|
// required: true
|
|
|
|
// responses:
|
|
|
|
// "204":
|
|
|
|
// "$ref": "#/responses/empty"
|
2019-12-20 10:07:12 -07:00
|
|
|
// "403":
|
|
|
|
// "$ref": "#/responses/forbidden"
|
|
|
|
|
2017-01-19 19:31:46 -07:00
|
|
|
userToConceal := user.GetUserByParams(ctx)
|
2017-06-07 10:10:35 -06:00
|
|
|
if ctx.Written() {
|
|
|
|
return
|
|
|
|
}
|
2022-03-22 01:03:22 -06:00
|
|
|
if userToConceal.ID != ctx.Doer.ID {
|
2019-12-20 10:07:12 -07:00
|
|
|
ctx.Error(http.StatusForbidden, "", "Cannot conceal another member")
|
2017-01-19 19:31:46 -07:00
|
|
|
return
|
|
|
|
}
|
2022-03-29 00:29:02 -06:00
|
|
|
err := organization.ChangeOrgUserStatus(ctx.Org.Organization.ID, userToConceal.ID, false)
|
2017-01-19 19:31:46 -07:00
|
|
|
if err != nil {
|
2019-12-20 10:07:12 -07:00
|
|
|
ctx.Error(http.StatusInternalServerError, "ChangeOrgUserStatus", err)
|
2017-01-19 19:31:46 -07:00
|
|
|
return
|
|
|
|
}
|
2019-12-20 10:07:12 -07:00
|
|
|
ctx.Status(http.StatusNoContent)
|
2017-01-19 19:31:46 -07:00
|
|
|
}
|
|
|
|
|
|
|
|
// DeleteMember remove a member from an organization
|
|
|
|
func DeleteMember(ctx *context.APIContext) {
|
2017-11-13 00:02:25 -07:00
|
|
|
// swagger:operation DELETE /orgs/{org}/members/{username} organization orgDeleteMember
|
|
|
|
// ---
|
|
|
|
// summary: Remove a member from an organization
|
|
|
|
// produces:
|
|
|
|
// - application/json
|
|
|
|
// parameters:
|
|
|
|
// - name: org
|
|
|
|
// in: path
|
|
|
|
// description: name of the organization
|
|
|
|
// type: string
|
|
|
|
// required: true
|
|
|
|
// - name: username
|
|
|
|
// in: path
|
|
|
|
// description: username of the user
|
|
|
|
// type: string
|
|
|
|
// required: true
|
|
|
|
// responses:
|
|
|
|
// "204":
|
|
|
|
// description: member removed
|
2019-12-20 10:07:12 -07:00
|
|
|
|
2017-06-07 10:10:35 -06:00
|
|
|
member := user.GetUserByParams(ctx)
|
|
|
|
if ctx.Written() {
|
|
|
|
return
|
|
|
|
}
|
2022-03-29 00:29:02 -06:00
|
|
|
if err := models.RemoveOrgUser(ctx.Org.Organization.ID, member.ID); err != nil {
|
|
|
|
ctx.Error(http.StatusInternalServerError, "RemoveOrgUser", err)
|
2017-01-19 19:31:46 -07:00
|
|
|
}
|
2019-12-20 10:07:12 -07:00
|
|
|
ctx.Status(http.StatusNoContent)
|
2017-01-19 19:31:46 -07:00
|
|
|
}
|