2017-01-19 19:31:46 -07:00
|
|
|
// Copyright 2017 The Gitea Authors. All rights reserved.
|
|
|
|
// Use of this source code is governed by a MIT-style
|
|
|
|
// license that can be found in the LICENSE file.
|
|
|
|
|
|
|
|
package org
|
|
|
|
|
|
|
|
import (
|
|
|
|
"fmt"
|
|
|
|
|
|
|
|
api "code.gitea.io/sdk/gitea"
|
|
|
|
|
|
|
|
"code.gitea.io/gitea/models"
|
|
|
|
"code.gitea.io/gitea/modules/context"
|
|
|
|
"code.gitea.io/gitea/modules/setting"
|
|
|
|
"code.gitea.io/gitea/routers/api/v1/user"
|
|
|
|
)
|
|
|
|
|
|
|
|
// listMembers list an organization's members
|
|
|
|
func listMembers(ctx *context.APIContext, publicOnly bool) {
|
|
|
|
var members []*models.User
|
|
|
|
if publicOnly {
|
|
|
|
orgUsers, err := models.GetOrgUsersByOrgID(ctx.Org.Organization.ID)
|
|
|
|
if err != nil {
|
|
|
|
ctx.Error(500, "GetOrgUsersByOrgID", err)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
memberIDs := make([]int64, 0, len(orgUsers))
|
|
|
|
for _, orgUser := range orgUsers {
|
|
|
|
if orgUser.IsPublic {
|
|
|
|
memberIDs = append(memberIDs, orgUser.UID)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
if members, err = models.GetUsersByIDs(memberIDs); err != nil {
|
|
|
|
ctx.Error(500, "GetUsersByIDs", err)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
} else {
|
|
|
|
if err := ctx.Org.Organization.GetMembers(); err != nil {
|
|
|
|
ctx.Error(500, "GetMembers", err)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
members = ctx.Org.Organization.Members
|
|
|
|
}
|
|
|
|
|
|
|
|
apiMembers := make([]*api.User, len(members))
|
|
|
|
for i, member := range members {
|
|
|
|
apiMembers[i] = member.APIFormat()
|
|
|
|
}
|
|
|
|
ctx.JSON(200, apiMembers)
|
|
|
|
}
|
|
|
|
|
|
|
|
// ListMembers list an organization's members
|
|
|
|
func ListMembers(ctx *context.APIContext) {
|
2017-08-21 05:13:47 -06:00
|
|
|
// swagger:route GET /orgs/{orgname}/members organization orgListMembers
|
|
|
|
//
|
|
|
|
// Produces:
|
|
|
|
// - application/json
|
|
|
|
//
|
|
|
|
// Responses:
|
|
|
|
// 200: UserList
|
|
|
|
// 500: error
|
|
|
|
|
2017-06-07 10:10:35 -06:00
|
|
|
publicOnly := ctx.User == nil || !ctx.Org.Organization.IsOrgMember(ctx.User.ID)
|
|
|
|
listMembers(ctx, publicOnly)
|
2017-01-19 19:31:46 -07:00
|
|
|
}
|
|
|
|
|
|
|
|
// ListPublicMembers list an organization's public members
|
|
|
|
func ListPublicMembers(ctx *context.APIContext) {
|
2017-08-21 05:13:47 -06:00
|
|
|
// swagger:route GET /orgs/{orgname}/public_members organization orgListPublicMembers
|
|
|
|
//
|
|
|
|
// Produces:
|
|
|
|
// - application/json
|
|
|
|
//
|
|
|
|
// Responses:
|
|
|
|
// 200: UserList
|
|
|
|
// 500: error
|
|
|
|
|
2017-01-19 19:31:46 -07:00
|
|
|
listMembers(ctx, true)
|
|
|
|
}
|
|
|
|
|
|
|
|
// IsMember check if a user is a member of an organization
|
|
|
|
func IsMember(ctx *context.APIContext) {
|
2017-08-21 05:13:47 -06:00
|
|
|
// swagger:route GET /orgs/{orgname}/members/{username} organization orgIsMember
|
|
|
|
//
|
|
|
|
// Produces:
|
|
|
|
// - application/json
|
|
|
|
//
|
|
|
|
// Responses:
|
|
|
|
// 204: empty
|
|
|
|
// 302: redirect
|
|
|
|
// 404: notFound
|
|
|
|
|
2017-01-19 19:31:46 -07:00
|
|
|
userToCheck := user.GetUserByParams(ctx)
|
2017-06-07 10:10:35 -06:00
|
|
|
if ctx.Written() {
|
|
|
|
return
|
|
|
|
}
|
|
|
|
if ctx.User != nil && ctx.Org.Organization.IsOrgMember(ctx.User.ID) {
|
|
|
|
if ctx.Org.Organization.IsOrgMember(userToCheck.ID) {
|
2017-01-19 19:31:46 -07:00
|
|
|
ctx.Status(204)
|
|
|
|
} else {
|
|
|
|
ctx.Status(404)
|
|
|
|
}
|
2017-06-07 10:10:35 -06:00
|
|
|
} else if ctx.User != nil && ctx.User.ID == userToCheck.ID {
|
2017-01-19 19:31:46 -07:00
|
|
|
ctx.Status(404)
|
|
|
|
} else {
|
|
|
|
redirectURL := fmt.Sprintf("%sapi/v1/orgs/%s/public_members/%s",
|
2017-06-07 10:10:35 -06:00
|
|
|
setting.AppURL, ctx.Org.Organization.Name, userToCheck.Name)
|
2017-01-19 19:31:46 -07:00
|
|
|
ctx.Redirect(redirectURL, 302)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
// IsPublicMember check if a user is a public member of an organization
|
|
|
|
func IsPublicMember(ctx *context.APIContext) {
|
2017-08-21 05:13:47 -06:00
|
|
|
// swagger:route GET /orgs/{orgname}/public_members/{username} organization orgIsPublicMember
|
|
|
|
//
|
|
|
|
// Produces:
|
|
|
|
// - application/json
|
|
|
|
//
|
|
|
|
// Responses:
|
|
|
|
// 204: empty
|
|
|
|
// 404: notFound
|
|
|
|
|
2017-01-19 19:31:46 -07:00
|
|
|
userToCheck := user.GetUserByParams(ctx)
|
2017-06-07 10:10:35 -06:00
|
|
|
if ctx.Written() {
|
|
|
|
return
|
|
|
|
}
|
2017-01-19 19:31:46 -07:00
|
|
|
if userToCheck.IsPublicMember(ctx.Org.Organization.ID) {
|
|
|
|
ctx.Status(204)
|
|
|
|
} else {
|
|
|
|
ctx.Status(404)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
// PublicizeMember make a member's membership public
|
|
|
|
func PublicizeMember(ctx *context.APIContext) {
|
2017-08-21 05:13:47 -06:00
|
|
|
// swagger:route PUT /orgs/{orgname}/public_members/{username} organization orgPublicizeMember
|
|
|
|
//
|
|
|
|
// Produces:
|
|
|
|
// - application/json
|
|
|
|
//
|
|
|
|
// Responses:
|
|
|
|
// 204: empty
|
|
|
|
// 403: forbidden
|
|
|
|
// 500: error
|
|
|
|
|
2017-01-19 19:31:46 -07:00
|
|
|
userToPublicize := user.GetUserByParams(ctx)
|
2017-06-07 10:10:35 -06:00
|
|
|
if ctx.Written() {
|
|
|
|
return
|
|
|
|
}
|
2017-01-19 19:31:46 -07:00
|
|
|
if userToPublicize.ID != ctx.User.ID {
|
|
|
|
ctx.Error(403, "", "Cannot publicize another member")
|
|
|
|
return
|
|
|
|
}
|
|
|
|
err := models.ChangeOrgUserStatus(ctx.Org.Organization.ID, userToPublicize.ID, true)
|
|
|
|
if err != nil {
|
|
|
|
ctx.Error(500, "ChangeOrgUserStatus", err)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
ctx.Status(204)
|
|
|
|
}
|
|
|
|
|
|
|
|
// ConcealMember make a member's membership not public
|
|
|
|
func ConcealMember(ctx *context.APIContext) {
|
2017-08-21 05:13:47 -06:00
|
|
|
// swagger:route DELETE /orgs/{orgname}/public_members/{username} organization orgConcealMember
|
|
|
|
//
|
|
|
|
// Produces:
|
|
|
|
// - application/json
|
|
|
|
//
|
|
|
|
// Responses:
|
|
|
|
// 204: empty
|
|
|
|
// 403: forbidden
|
|
|
|
// 500: error
|
|
|
|
|
2017-01-19 19:31:46 -07:00
|
|
|
userToConceal := user.GetUserByParams(ctx)
|
2017-06-07 10:10:35 -06:00
|
|
|
if ctx.Written() {
|
|
|
|
return
|
|
|
|
}
|
2017-01-19 19:31:46 -07:00
|
|
|
if userToConceal.ID != ctx.User.ID {
|
|
|
|
ctx.Error(403, "", "Cannot conceal another member")
|
|
|
|
return
|
|
|
|
}
|
|
|
|
err := models.ChangeOrgUserStatus(ctx.Org.Organization.ID, userToConceal.ID, false)
|
|
|
|
if err != nil {
|
|
|
|
ctx.Error(500, "ChangeOrgUserStatus", err)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
ctx.Status(204)
|
|
|
|
}
|
|
|
|
|
|
|
|
// DeleteMember remove a member from an organization
|
|
|
|
func DeleteMember(ctx *context.APIContext) {
|
2017-08-21 05:13:47 -06:00
|
|
|
// swagger:route DELETE /orgs/{orgname}/members/{username} organization orgDeleteMember
|
|
|
|
//
|
|
|
|
// Produces:
|
|
|
|
// - application/json
|
|
|
|
//
|
|
|
|
// Responses:
|
|
|
|
// 204: empty
|
|
|
|
// 500: error
|
|
|
|
|
2017-06-07 10:10:35 -06:00
|
|
|
member := user.GetUserByParams(ctx)
|
|
|
|
if ctx.Written() {
|
|
|
|
return
|
|
|
|
}
|
|
|
|
if err := ctx.Org.Organization.RemoveMember(member.ID); err != nil {
|
2017-01-19 19:31:46 -07:00
|
|
|
ctx.Error(500, "RemoveMember", err)
|
|
|
|
}
|
|
|
|
ctx.Status(204)
|
|
|
|
}
|