Semaphore/api/projects/users.go

package projects

import (
	"fmt"
	"net/http"

	"github.com/semaphoreui/semaphore/api/helpers"
	"github.com/semaphoreui/semaphore/db"
	"github.com/gorilla/context"
)

// UserMiddleware ensures a user exists and loads it to the context
func UserMiddleware(next http.Handler) http.Handler {
	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
		project := context.Get(r, "project").(db.Project)
		userID, err := helpers.GetIntParam("user_id", w, r)
		if err != nil {
			return
		}

		_, err = helpers.Store(r).GetProjectUser(project.ID, userID)

		if err != nil {
			helpers.WriteError(w, err)
			return
		}

		user, err := helpers.Store(r).GetUser(userID)

		if err != nil {
			helpers.WriteError(w, err)
			return
		}

		context.Set(r, "projectUser", user)
		next.ServeHTTP(w, r)
	})
}

type projUser struct {
	ID       int                `json:"id"`
	Username string             `json:"username"`
	Name     string             `json:"name"`
	Role     db.ProjectUserRole `json:"role"`
}

// GetUsers returns all users in a project
func GetUsers(w http.ResponseWriter, r *http.Request) {

	// get single user if user ID specified in the request
	if user := context.Get(r, "projectUser"); user != nil {
		helpers.WriteJSON(w, http.StatusOK, user.(db.User))
		return
	}

	project := context.Get(r, "project").(db.Project)
	users, err := helpers.Store(r).GetProjectUsers(project.ID, helpers.QueryParams(r.URL))

	if err != nil {
		helpers.WriteError(w, err)
		return
	}

	var result = make([]projUser, 0)

	for _, user := range users {
		result = append(result, projUser{
			ID:       user.ID,
			Name:     user.Name,
			Username: user.Username,
			Role:     user.Role,
		})
	}

	helpers.WriteJSON(w, http.StatusOK, result)
}

// AddUser adds a user to a projects team in the database
func AddUser(w http.ResponseWriter, r *http.Request) {
	project := context.Get(r, "project").(db.Project)
	var projectUser struct {
		UserID int                `json:"user_id" binding:"required"`
		Role   db.ProjectUserRole `json:"role"`
	}

	if !helpers.Bind(w, r, &projectUser) {
		return
	}

	if !projectUser.Role.IsValid() {
		w.WriteHeader(http.StatusBadRequest)
		return
	}

	_, err := helpers.Store(r).CreateProjectUser(db.ProjectUser{
		ProjectID: project.ID,
		UserID:    projectUser.UserID,
		Role:      projectUser.Role,
	})

	if err != nil {
		w.WriteHeader(http.StatusConflict)
		return
	}

	helpers.EventLog(r, helpers.EventLogCreate, helpers.EventLogItem{
		UserID:      helpers.UserFromContext(r).ID,
		ProjectID:   project.ID,
		ObjectType:  db.EventUser,
		ObjectID:    projectUser.UserID,
		Description: fmt.Sprintf("User ID %d added to team", projectUser.UserID),
	})

	w.WriteHeader(http.StatusNoContent)
}

// removeUser removes a user from a project team
func removeUser(targetUser db.User, w http.ResponseWriter, r *http.Request) {
	project := context.Get(r, "project").(db.Project)
	me := context.Get(r, "user").(*db.User) // logged in user
	myRole := context.Get(r, "projectUserRole").(db.ProjectUserRole)

	if !me.Admin && targetUser.ID == me.ID && myRole == db.ProjectOwner {
		helpers.WriteError(w, fmt.Errorf("owner can not left the project"))
		return
	}

	err := helpers.Store(r).DeleteProjectUser(project.ID, targetUser.ID)

	if err != nil {
		helpers.WriteError(w, err)
		return
	}

	helpers.EventLog(r, helpers.EventLogDelete, helpers.EventLogItem{
		UserID:      helpers.UserFromContext(r).ID,
		ProjectID:   project.ID,
		ObjectType:  db.EventUser,
		ObjectID:    targetUser.ID,
		Description: fmt.Sprintf("User ID %d removed from team", targetUser.ID),
	})

	w.WriteHeader(http.StatusNoContent)
}

// LeftProject removes a user from a project team
func LeftProject(w http.ResponseWriter, r *http.Request) {
	me := context.Get(r, "user").(*db.User) // logged in user
	removeUser(*me, w, r)
}

// RemoveUser removes a user from a project team
func RemoveUser(w http.ResponseWriter, r *http.Request) {
	targetUser := context.Get(r, "projectUser").(db.User) // target user
	removeUser(targetUser, w, r)
}

func UpdateUser(w http.ResponseWriter, r *http.Request) {
	project := context.Get(r, "project").(db.Project)
	me := context.Get(r, "user").(*db.User) // logged in user
	targetUser := context.Get(r, "projectUser").(db.User)
	targetUserRole := context.Get(r, "projectUserRole").(db.ProjectUserRole)

	if !me.Admin && targetUser.ID == me.ID && targetUserRole == db.ProjectOwner {
		helpers.WriteError(w, fmt.Errorf("owner can not change his role in the project"))
		return
	}

	var projectUser struct {
		Role db.ProjectUserRole `json:"role"`
	}

	if !helpers.Bind(w, r, &projectUser) {
		return
	}

	if !projectUser.Role.IsValid() {
		w.WriteHeader(http.StatusBadRequest)
		return
	}

	err := helpers.Store(r).UpdateProjectUser(db.ProjectUser{
		UserID:    targetUser.ID,
		ProjectID: project.ID,
		Role:      projectUser.Role,
	})

	if err != nil {
		helpers.WriteError(w, err)
		return
	}

	helpers.EventLog(r, helpers.EventLogUpdate, helpers.EventLogItem{
		UserID:      helpers.UserFromContext(r).ID,
		ProjectID:   project.ID,
		ObjectType:  db.EventUser,
		ObjectID:    targetUser.ID,
		Description: fmt.Sprintf("Changed role for User ID %d", targetUser.ID),
	})

	w.WriteHeader(http.StatusNoContent)
}
Project ui, ws - [wip] ws support 2016-04-02 14:40:07 +02:00			`package projects`

			`import (`
feat: admin can all 2023-09-17 16:15:44 +02:00			`"fmt"`
feat: simplify call to store event logs 2024-04-12 09:23:13 +02:00			`"net/http"`

feat(be): ansible-semaphore -> semaphoreui 2024-10-26 14:56:17 +02:00			`"github.com/semaphoreui/semaphore/api/helpers"`
			`"github.com/semaphoreui/semaphore/db"`
fix: limit data by users 2023-09-18 19:46:55 +02:00			`"github.com/gorilla/context"`
Project ui, ws - [wip] ws support 2016-04-02 14:40:07 +02:00			`)`

add gometalinter to tools and run it in circle. extract some error checking and logging in places where linting needed or errors not checked 2018-03-27 22:12:47 +02:00			`// UserMiddleware ensures a user exists and loads it to the context`
Remove mulekick router, use mux directly Revert one more commit 2019-07-09 18:14:06 +02:00			`func UserMiddleware(next http.Handler) http.Handler {`
			`return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {`
refactor(be): return models to db package 2020-12-04 23:41:26 +01:00			`project := context.Get(r, "project").(db.Project)`
refactor(be): template and environment endpoints use Store Rename util to helpers Bind returns bool instead of error 2020-12-03 14:51:15 +01:00			`userID, err := helpers.GetIntParam("user_id", w, r)`
Remove mulekick router, use mux directly Revert one more commit 2019-07-09 18:14:06 +02:00			`if err != nil {`
API Tokens, Documentation - API Tokens - More documentation - Update API 2016-04-09 21:09:57 +02:00			`return`
			`}`

refactor(be): migrate users to Store 2020-12-17 15:00:05 +01:00			`_, err = helpers.Store(r).GetProjectUser(project.ID, userID)`
Remove mulekick router, use mux directly Revert one more commit 2019-07-09 18:14:06 +02:00
refactor(be): migrate users to Store 2020-12-17 15:00:05 +01:00			`if err != nil {`
			`helpers.WriteError(w, err)`
			`return`
			`}`

			`user, err := helpers.Store(r).GetUser(userID)`

			`if err != nil {`
			`helpers.WriteError(w, err)`
			`return`
Remove mulekick router, use mux directly Revert one more commit 2019-07-09 18:14:06 +02:00			`}`
API Tokens, Documentation - API Tokens - More documentation - Update API 2016-04-09 21:09:57 +02:00
Remove mulekick router, use mux directly Revert one more commit 2019-07-09 18:14:06 +02:00			`context.Set(r, "projectUser", user)`
			`next.ServeHTTP(w, r)`
			`})`
beginning to running tasks 2016-04-04 15:44:34 +02:00			`}`

fix: limit data by users 2023-09-18 19:46:55 +02:00			`type projUser struct {`
			ID int `json:"id"`
			Username string `json:"username"`
			Name string `json:"name"`
			Role db.ProjectUserRole `json:"role"`
			`}`

add gometalinter to tools and run it in circle. extract some error checking and logging in places where linting needed or errors not checked 2018-03-27 22:12:47 +02:00			`// GetUsers returns all users in a project`
mux != Koa, undo refactor before it gets worse 2019-07-09 18:11:01 +02:00			`func GetUsers(w http.ResponseWriter, r *http.Request) {`
test(be): fix dredd tests 2020-12-04 23:22:05 +01:00
			`// get single user if user ID specified in the request`
feat(web2): team page 2020-11-03 21:56:22 +01:00			`if user := context.Get(r, "projectUser"); user != nil {`
refactor(be): return models to db package 2020-12-04 23:41:26 +01:00			`helpers.WriteJSON(w, http.StatusOK, user.(db.User))`
feat(web2): team page 2020-11-03 21:56:22 +01:00			`return`
			`}`

refactor(be): return models to db package 2020-12-04 23:41:26 +01:00			`project := context.Get(r, "project").(db.Project)`
refactor(be): remove duplication 2021-10-13 16:33:07 +02:00			`users, err := helpers.Store(r).GetProjectUsers(project.ID, helpers.QueryParams(r.URL))`
mux != Koa, undo refactor before it gets worse 2019-07-09 18:11:01 +02:00
refactor(be): migrate users to Store 2020-12-17 15:00:05 +01:00			`if err != nil {`
			`helpers.WriteError(w, err)`
			`return`
mux != Koa, undo refactor before it gets worse 2019-07-09 18:11:01 +02:00			`}`

fix(be): init array my empty 2023-09-18 22:04:23 +02:00			`var result = make([]projUser, 0)`
fix: limit data by users 2023-09-18 19:46:55 +02:00
			`for _, user := range users {`
			`result = append(result, projUser{`
			`ID: user.ID,`
			`Name: user.Name,`
			`Username: user.Username,`
			`Role: user.Role,`
			`})`
			`}`

			`helpers.WriteJSON(w, http.StatusOK, result)`
Project ui, ws - [wip] ws support 2016-04-02 14:40:07 +02:00			`}`

add gometalinter to tools and run it in circle. extract some error checking and logging in places where linting needed or errors not checked 2018-03-27 22:12:47 +02:00			`// AddUser adds a user to a projects team in the database`
mux != Koa, undo refactor before it gets worse 2019-07-09 18:11:01 +02:00			`func AddUser(w http.ResponseWriter, r *http.Request) {`
refactor(be): return models to db package 2020-12-04 23:41:26 +01:00			`project := context.Get(r, "project").(db.Project)`
feat(be): add user id to activity log 2021-08-20 08:28:50 +02:00			`var projectUser struct {`
refactor(be): add struct UserWithProjectRole 2023-07-08 12:41:57 +02:00			UserID int `json:"user_id" binding:"required"`
			Role db.ProjectUserRole `json:"role"`
mux != Koa, undo refactor before it gets worse 2019-07-09 18:11:01 +02:00			`}`

feat(be): add user id to activity log 2021-08-20 08:28:50 +02:00			`if !helpers.Bind(w, r, &projectUser) {`
mux != Koa, undo refactor before it gets worse 2019-07-09 18:11:01 +02:00			`return`
			`}`

fix(roles): validate user role in project when add or update 2023-07-09 10:23:13 +02:00			`if !projectUser.Role.IsValid() {`
			`w.WriteHeader(http.StatusBadRequest)`
			`return`
			`}`

feat(be): add migration project__user.admin -> project_user.role 2023-07-07 23:15:30 +02:00			`_, err := helpers.Store(r).CreateProjectUser(db.ProjectUser{`
			`ProjectID: project.ID,`
			`UserID: projectUser.UserID,`
refactor(be): add struct UserWithProjectRole 2023-07-08 12:41:57 +02:00			`Role: projectUser.Role,`
feat(be): add migration project__user.admin -> project_user.role 2023-07-07 23:15:30 +02:00			`})`
fix(be): delete global Mysql variable and add interface Store for dialect-independent communication with database. 2020-12-01 20:06:49 +01:00
			`if err != nil {`
			`w.WriteHeader(http.StatusConflict)`
			`return`
mux != Koa, undo refactor before it gets worse 2019-07-09 18:11:01 +02:00			`}`

feat: simplify call to store event logs 2024-04-12 09:23:13 +02:00			`helpers.EventLog(r, helpers.EventLogCreate, helpers.EventLogItem{`
			`UserID: helpers.UserFromContext(r).ID,`
			`ProjectID: project.ID,`
			`ObjectType: db.EventUser,`
			`ObjectID: projectUser.UserID,`
			`Description: fmt.Sprintf("User ID %d added to team", projectUser.UserID),`
fix(be): delete global Mysql variable and add interface Store for dialect-independent communication with database. 2020-12-01 20:06:49 +01:00			`})`

mux != Koa, undo refactor before it gets worse 2019-07-09 18:11:01 +02:00			`w.WriteHeader(http.StatusNoContent)`
Project ui, ws - [wip] ws support 2016-04-02 14:40:07 +02:00			`}`

feat: left project 2023-09-18 21:43:13 +02:00			`// removeUser removes a user from a project team`
			`func removeUser(targetUser db.User, w http.ResponseWriter, r *http.Request) {`
refactor(be): return models to db package 2020-12-04 23:41:26 +01:00			`project := context.Get(r, "project").(db.Project)`
feat: left project 2023-09-18 21:43:13 +02:00			`me := context.Get(r, "user").(*db.User) // logged in user`
			`myRole := context.Get(r, "projectUserRole").(db.ProjectUserRole)`
mux != Koa, undo refactor before it gets worse 2019-07-09 18:11:01 +02:00
feat: left project 2023-09-18 21:43:13 +02:00			`if !me.Admin && targetUser.ID == me.ID && myRole == db.ProjectOwner {`
feat: admin can all 2023-09-17 16:15:44 +02:00			`helpers.WriteError(w, fmt.Errorf("owner can not left the project"))`
			`return`
			`}`

			`err := helpers.Store(r).DeleteProjectUser(project.ID, targetUser.ID)`
fix(be): delete global Mysql variable and add interface Store for dialect-independent communication with database. 2020-12-01 20:06:49 +01:00
			`if err != nil {`
refactor(be): migrate users to Store 2020-12-17 15:00:05 +01:00			`helpers.WriteError(w, err)`
fix(be): delete global Mysql variable and add interface Store for dialect-independent communication with database. 2020-12-01 20:06:49 +01:00			`return`
mux != Koa, undo refactor before it gets worse 2019-07-09 18:11:01 +02:00			`}`

feat: simplify call to store event logs 2024-04-12 09:23:13 +02:00			`helpers.EventLog(r, helpers.EventLogDelete, helpers.EventLogItem{`
			`UserID: helpers.UserFromContext(r).ID,`
			`ProjectID: project.ID,`
			`ObjectType: db.EventUser,`
			`ObjectID: targetUser.ID,`
			`Description: fmt.Sprintf("User ID %d removed from team", targetUser.ID),`
fix(be): delete global Mysql variable and add interface Store for dialect-independent communication with database. 2020-12-01 20:06:49 +01:00			`})`

mux != Koa, undo refactor before it gets worse 2019-07-09 18:11:01 +02:00			`w.WriteHeader(http.StatusNoContent)`
Project ui, ws - [wip] ws support 2016-04-02 14:40:07 +02:00			`}`
beginning to running tasks 2016-04-04 15:44:34 +02:00
feat: left project 2023-09-18 21:43:13 +02:00			`// LeftProject removes a user from a project team`
			`func LeftProject(w http.ResponseWriter, r *http.Request) {`
			`me := context.Get(r, "user").(*db.User) // logged in user`
			`removeUser(*me, w, r)`
			`}`

			`// RemoveUser removes a user from a project team`
			`func RemoveUser(w http.ResponseWriter, r *http.Request) {`
			`targetUser := context.Get(r, "projectUser").(db.User) // target user`
			`removeUser(targetUser, w, r)`
			`}`

feat(ui): add select for project users' role 2023-07-08 13:42:50 +02:00			`func UpdateUser(w http.ResponseWriter, r *http.Request) {`
refactor(be): return models to db package 2020-12-04 23:41:26 +01:00			`project := context.Get(r, "project").(db.Project)`
feat: admin can all 2023-09-17 16:15:44 +02:00			`me := context.Get(r, "user").(*db.User) // logged in user`
			`targetUser := context.Get(r, "projectUser").(db.User)`
			`targetUserRole := context.Get(r, "projectUserRole").(db.ProjectUserRole)`

			`if !me.Admin && targetUser.ID == me.ID && targetUserRole == db.ProjectOwner {`
			`helpers.WriteError(w, fmt.Errorf("owner can not change his role in the project"))`
			`return`
			`}`
API Tokens, Documentation - API Tokens - More documentation - Update API 2016-04-09 21:09:57 +02:00
feat(ui): add select for project users' role 2023-07-08 13:42:50 +02:00			`var projectUser struct {`
			Role db.ProjectUserRole `json:"role"`
			`}`

			`if !helpers.Bind(w, r, &projectUser) {`
			`return`
mux != Koa, undo refactor before it gets worse 2019-07-09 18:11:01 +02:00			`}`
beginning to running tasks 2016-04-04 15:44:34 +02:00
fix(roles): validate user role in project when add or update 2023-07-09 10:23:13 +02:00			`if !projectUser.Role.IsValid() {`
			`w.WriteHeader(http.StatusBadRequest)`
			`return`
			`}`

feat(be): add migration project__user.admin -> project_user.role 2023-07-07 23:15:30 +02:00			`err := helpers.Store(r).UpdateProjectUser(db.ProjectUser{`
feat: admin can all 2023-09-17 16:15:44 +02:00			`UserID: targetUser.ID,`
feat(be): add migration project__user.admin -> project_user.role 2023-07-07 23:15:30 +02:00			`ProjectID: project.ID,`
feat(ui): add select for project users' role 2023-07-08 13:42:50 +02:00			`Role: projectUser.Role,`
feat(be): add migration project__user.admin -> project_user.role 2023-07-07 23:15:30 +02:00			`})`
refactor(be): migrate users to Store 2020-12-17 15:00:05 +01:00
			`if err != nil {`
			`helpers.WriteError(w, err)`
			`return`
mux != Koa, undo refactor before it gets worse 2019-07-09 18:11:01 +02:00			`}`
API Tokens, Documentation - API Tokens - More documentation - Update API 2016-04-09 21:09:57 +02:00
feat: simplify call to store event logs 2024-04-12 09:23:13 +02:00			`helpers.EventLog(r, helpers.EventLogUpdate, helpers.EventLogItem{`
			`UserID: helpers.UserFromContext(r).ID,`
			`ProjectID: project.ID,`
			`ObjectType: db.EventUser,`
			`ObjectID: targetUser.ID,`
			`Description: fmt.Sprintf("Changed role for User ID %d", targetUser.ID),`
			`})`

mux != Koa, undo refactor before it gets worse 2019-07-09 18:11:01 +02:00			`w.WriteHeader(http.StatusNoContent)`
beginning to running tasks 2016-04-04 15:44:34 +02:00			`}`