Semaphore/api/projects/users.go

package projects

import (
	"database/sql"
	"strconv"

	database "github.com/ansible-semaphore/semaphore/db"
	"github.com/ansible-semaphore/semaphore/models"
	"github.com/ansible-semaphore/semaphore/util"
	"github.com/gin-gonic/gin"
	"github.com/masterminds/squirrel"
)

func UserMiddleware(w http.ResponseWriter, r *http.Request) {
	project := context.Get(r, "project").(models.Project)
	userID, err := util.GetIntParam("user_id", c)
	if err != nil {
		return
	}

	var user models.User
	if err := database.Mysql.SelectOne(&user, "select u.* from project__user as pu join user as u on pu.user_id=u.id where pu.user_id=? and pu.project_id=?", userID, project.ID); err != nil {
		if err == sql.ErrNoRows {
			w.WriteHeader(http.StatusNotFound)
			return
		}

		panic(err)
	}

	c.Set("projectUser", user)
	c.Next()
}

func GetUsers(w http.ResponseWriter, r *http.Request) {
	project := context.Get(r, "project").(models.Project)
	var users []struct {
		models.User
		Admin bool `db:"admin" json:"admin"`
	}

	query, args, _ := squirrel.Select("u.*").Column("pu.admin").
		From("project__user as pu").
		Join("user as u on pu.user_id=u.id").
		Where("pu.project_id=?", project.ID).
		ToSql()

	if _, err := database.Mysql.Select(&users, query, args...); err != nil {
		panic(err)
	}

	c.JSON(200, users)
}

func AddUser(w http.ResponseWriter, r *http.Request) {
	project := context.Get(r, "project").(models.Project)
	var user struct {
		UserID int  `json:"user_id" binding:"required"`
		Admin  bool `json:"admin"`
	}

	if err := mulekick.Bind(w, r, &user); err != nil {
		return
	}

	if _, err := database.Mysql.Exec("insert into project__user set user_id=?, project_id=?, admin=?", user.UserID, project.ID, user.Admin); err != nil {
		panic(err)
	}

	objType := "user"
	desc := "User ID " + strconv.Itoa(user.UserID) + " added to team"
	if err := (models.Event{
		ProjectID:   &project.ID,
		ObjectType:  &objType,
		ObjectID:    &user.UserID,
		Description: &desc,
	}.Insert()); err != nil {
		panic(err)
	}

	w.WriteHeader(http.StatusNoContent)
}

func RemoveUser(w http.ResponseWriter, r *http.Request) {
	project := context.Get(r, "project").(models.Project)
	user := context.Get(r, "projectUser").(models.User)

	if _, err := database.Mysql.Exec("delete from project__user where user_id=? and project_id=?", user.ID, project.ID); err != nil {
		panic(err)
	}

	objType := "user"
	desc := "User ID " + strconv.Itoa(user.ID) + " removed from team"
	if err := (models.Event{
		ProjectID:   &project.ID,
		ObjectType:  &objType,
		ObjectID:    &user.ID,
		Description: &desc,
	}.Insert()); err != nil {
		panic(err)
	}

	w.WriteHeader(http.StatusNoContent)
}

func MakeUserAdmin(w http.ResponseWriter, r *http.Request) {
	project := context.Get(r, "project").(models.Project)
	user := context.Get(r, "projectUser").(models.User)
	admin := 1

	if r.Method == "DELETE" {
		// strip admin
		admin = 0
	}

	if _, err := database.Mysql.Exec("update project__user set admin=? where user_id=? and project_id=?", admin, user.ID, project.ID); err != nil {
		panic(err)
	}

	w.WriteHeader(http.StatusNoContent)
}
Project ui, ws - [wip] ws support 2016-04-02 14:40:07 +02:00			`package projects`

			`import (`
API Tokens, Documentation - API Tokens - More documentation - Update API 2016-04-09 21:09:57 +02:00			`"database/sql"`
Route output of tasks to correct users 2016-04-17 12:41:36 +02:00			`"strconv"`
API Tokens, Documentation - API Tokens - More documentation - Update API 2016-04-09 21:09:57 +02:00
refactoring 2016-05-24 11:55:48 +02:00			`database "github.com/ansible-semaphore/semaphore/db"`
Project ui, ws - [wip] ws support 2016-04-02 14:40:07 +02:00			`"github.com/ansible-semaphore/semaphore/models"`
access key ui & api 2016-04-04 01:10:12 +02:00			`"github.com/ansible-semaphore/semaphore/util"`
Project ui, ws - [wip] ws support 2016-04-02 14:40:07 +02:00			`"github.com/gin-gonic/gin"`
			`"github.com/masterminds/squirrel"`
			`)`

begin refactor gin -> net/http 2017-02-22 23:17:36 +01:00			`func UserMiddleware(w http.ResponseWriter, r *http.Request) {`
moar refactor - c.MustGet( -> context.Get(r, - c.Get( -> context.GetOk(r, 2017-02-22 23:21:52 +01:00			`project := context.Get(r, "project").(models.Project)`
API Tokens, Documentation - API Tokens - More documentation - Update API 2016-04-09 21:09:57 +02:00			`userID, err := util.GetIntParam("user_id", c)`
			`if err != nil {`
			`return`
			`}`

			`var user models.User`
			`if err := database.Mysql.SelectOne(&user, "select u.* from project__user as pu join user as u on pu.user_id=u.id where pu.user_id=? and pu.project_id=?", userID, project.ID); err != nil {`
			`if err == sql.ErrNoRows {`
begin refactor gin -> net/http 2017-02-22 23:17:36 +01:00			`w.WriteHeader(http.StatusNotFound)`
API Tokens, Documentation - API Tokens - More documentation - Update API 2016-04-09 21:09:57 +02:00			`return`
			`}`

			`panic(err)`
			`}`

			`c.Set("projectUser", user)`
beginning to running tasks 2016-04-04 15:44:34 +02:00			`c.Next()`
			`}`

begin refactor gin -> net/http 2017-02-22 23:17:36 +01:00			`func GetUsers(w http.ResponseWriter, r *http.Request) {`
moar refactor - c.MustGet( -> context.Get(r, - c.Get( -> context.GetOk(r, 2017-02-22 23:21:52 +01:00			`project := context.Get(r, "project").(models.Project)`
Improved UI - Fixes #94 - Fixes admin permissions (needed to manipulate users) 2016-06-17 22:16:46 +02:00			`var users []struct {`
			`models.User`
			Admin bool `db:"admin" json:"admin"`
			`}`
Project ui, ws - [wip] ws support 2016-04-02 14:40:07 +02:00
Improved UI - Fixes #94 - Fixes admin permissions (needed to manipulate users) 2016-06-17 22:16:46 +02:00			`query, args, _ := squirrel.Select("u.*").Column("pu.admin").`
Project ui, ws - [wip] ws support 2016-04-02 14:40:07 +02:00			`From("project__user as pu").`
			`Join("user as u on pu.user_id=u.id").`
			`Where("pu.project_id=?", project.ID).`
			`ToSql()`

			`if _, err := database.Mysql.Select(&users, query, args...); err != nil {`
			`panic(err)`
			`}`

			`c.JSON(200, users)`
			`}`

begin refactor gin -> net/http 2017-02-22 23:17:36 +01:00			`func AddUser(w http.ResponseWriter, r *http.Request) {`
moar refactor - c.MustGet( -> context.Get(r, - c.Get( -> context.GetOk(r, 2017-02-22 23:21:52 +01:00			`project := context.Get(r, "project").(models.Project)`
access key ui & api 2016-04-04 01:10:12 +02:00			`var user struct {`
			UserID int `json:"user_id" binding:"required"`
			Admin bool `json:"admin"`
			`}`

moar refactor - c.MustGet( -> context.Get(r, - c.Get( -> context.GetOk(r, 2017-02-22 23:21:52 +01:00			`if err := mulekick.Bind(w, r, &user); err != nil {`
access key ui & api 2016-04-04 01:10:12 +02:00			`return`
			`}`

			`if _, err := database.Mysql.Exec("insert into project__user set user_id=?, project_id=?, admin=?", user.UserID, project.ID, user.Admin); err != nil {`
			`panic(err)`
			`}`

Route output of tasks to correct users 2016-04-17 12:41:36 +02:00			`objType := "user"`
			`desc := "User ID " + strconv.Itoa(user.UserID) + " added to team"`
			`if err := (models.Event{`
			`ProjectID: &project.ID,`
			`ObjectType: &objType,`
			`ObjectID: &user.UserID,`
			`Description: &desc,`
			`}.Insert()); err != nil {`
			`panic(err)`
			`}`

begin refactor gin -> net/http 2017-02-22 23:17:36 +01:00			`w.WriteHeader(http.StatusNoContent)`
Project ui, ws - [wip] ws support 2016-04-02 14:40:07 +02:00			`}`

begin refactor gin -> net/http 2017-02-22 23:17:36 +01:00			`func RemoveUser(w http.ResponseWriter, r *http.Request) {`
moar refactor - c.MustGet( -> context.Get(r, - c.Get( -> context.GetOk(r, 2017-02-22 23:21:52 +01:00			`project := context.Get(r, "project").(models.Project)`
			`user := context.Get(r, "projectUser").(models.User)`
access key ui & api 2016-04-04 01:10:12 +02:00
API Tokens, Documentation - API Tokens - More documentation - Update API 2016-04-09 21:09:57 +02:00			`if _, err := database.Mysql.Exec("delete from project__user where user_id=? and project_id=?", user.ID, project.ID); err != nil {`
access key ui & api 2016-04-04 01:10:12 +02:00			`panic(err)`
			`}`

Route output of tasks to correct users 2016-04-17 12:41:36 +02:00			`objType := "user"`
			`desc := "User ID " + strconv.Itoa(user.ID) + " removed from team"`
			`if err := (models.Event{`
			`ProjectID: &project.ID,`
			`ObjectType: &objType,`
			`ObjectID: &user.ID,`
			`Description: &desc,`
			`}.Insert()); err != nil {`
			`panic(err)`
			`}`

begin refactor gin -> net/http 2017-02-22 23:17:36 +01:00			`w.WriteHeader(http.StatusNoContent)`
Project ui, ws - [wip] ws support 2016-04-02 14:40:07 +02:00			`}`
beginning to running tasks 2016-04-04 15:44:34 +02:00
begin refactor gin -> net/http 2017-02-22 23:17:36 +01:00			`func MakeUserAdmin(w http.ResponseWriter, r *http.Request) {`
moar refactor - c.MustGet( -> context.Get(r, - c.Get( -> context.GetOk(r, 2017-02-22 23:21:52 +01:00			`project := context.Get(r, "project").(models.Project)`
			`user := context.Get(r, "projectUser").(models.User)`
API Tokens, Documentation - API Tokens - More documentation - Update API 2016-04-09 21:09:57 +02:00			`admin := 1`

begin refactor gin -> net/http 2017-02-22 23:17:36 +01:00			`if r.Method == "DELETE" {`
beginning to running tasks 2016-04-04 15:44:34 +02:00			`// strip admin`
API Tokens, Documentation - API Tokens - More documentation - Update API 2016-04-09 21:09:57 +02:00			`admin = 0`
beginning to running tasks 2016-04-04 15:44:34 +02:00			`}`

API Tokens, Documentation - API Tokens - More documentation - Update API 2016-04-09 21:09:57 +02:00			`if _, err := database.Mysql.Exec("update project__user set admin=? where user_id=? and project_id=?", admin, user.ID, project.ID); err != nil {`
			`panic(err)`
			`}`

begin refactor gin -> net/http 2017-02-22 23:17:36 +01:00			`w.WriteHeader(http.StatusNoContent)`
beginning to running tasks 2016-04-04 15:44:34 +02:00			`}`