mirror of
				https://github.com/go-gitea/gitea.git
				synced 2025-10-26 23:46:22 +01:00 
			
		
		
		
	Fixes #17453 This PR adds the abbility to block a user from a personal account or organization to restrict how the blocked user can interact with the blocker. The docs explain what's the consequence of blocking a user. Screenshots:    --------- Co-authored-by: Lauris BH <lauris@nix.lv>
		
			
				
	
	
		
			895 lines
		
	
	
		
			23 KiB
		
	
	
	
		
			Go
		
	
	
	
	
	
			
		
		
	
	
			895 lines
		
	
	
		
			23 KiB
		
	
	
	
		
			Go
		
	
	
	
	
	
| // Copyright 2016 The Gogs Authors. All rights reserved.
 | |
| // Copyright 2019 The Gitea Authors. All rights reserved.
 | |
| // SPDX-License-Identifier: MIT
 | |
| 
 | |
| package org
 | |
| 
 | |
| import (
 | |
| 	"errors"
 | |
| 	"net/http"
 | |
| 
 | |
| 	"code.gitea.io/gitea/models"
 | |
| 	activities_model "code.gitea.io/gitea/models/activities"
 | |
| 	"code.gitea.io/gitea/models/organization"
 | |
| 	"code.gitea.io/gitea/models/perm"
 | |
| 	access_model "code.gitea.io/gitea/models/perm/access"
 | |
| 	repo_model "code.gitea.io/gitea/models/repo"
 | |
| 	unit_model "code.gitea.io/gitea/models/unit"
 | |
| 	user_model "code.gitea.io/gitea/models/user"
 | |
| 	"code.gitea.io/gitea/modules/log"
 | |
| 	api "code.gitea.io/gitea/modules/structs"
 | |
| 	"code.gitea.io/gitea/modules/web"
 | |
| 	"code.gitea.io/gitea/routers/api/v1/user"
 | |
| 	"code.gitea.io/gitea/routers/api/v1/utils"
 | |
| 	"code.gitea.io/gitea/services/context"
 | |
| 	"code.gitea.io/gitea/services/convert"
 | |
| 	org_service "code.gitea.io/gitea/services/org"
 | |
| 	repo_service "code.gitea.io/gitea/services/repository"
 | |
| )
 | |
| 
 | |
| // ListTeams list all the teams of an organization
 | |
| func ListTeams(ctx *context.APIContext) {
 | |
| 	// swagger:operation GET /orgs/{org}/teams organization orgListTeams
 | |
| 	// ---
 | |
| 	// summary: List an organization's teams
 | |
| 	// produces:
 | |
| 	// - application/json
 | |
| 	// parameters:
 | |
| 	// - name: org
 | |
| 	//   in: path
 | |
| 	//   description: name of the organization
 | |
| 	//   type: string
 | |
| 	//   required: true
 | |
| 	// - name: page
 | |
| 	//   in: query
 | |
| 	//   description: page number of results to return (1-based)
 | |
| 	//   type: integer
 | |
| 	// - name: limit
 | |
| 	//   in: query
 | |
| 	//   description: page size of results
 | |
| 	//   type: integer
 | |
| 	// responses:
 | |
| 	//   "200":
 | |
| 	//     "$ref": "#/responses/TeamList"
 | |
| 	//   "404":
 | |
| 	//     "$ref": "#/responses/notFound"
 | |
| 
 | |
| 	teams, count, err := organization.SearchTeam(ctx, &organization.SearchTeamOptions{
 | |
| 		ListOptions: utils.GetListOptions(ctx),
 | |
| 		OrgID:       ctx.Org.Organization.ID,
 | |
| 	})
 | |
| 	if err != nil {
 | |
| 		ctx.Error(http.StatusInternalServerError, "LoadTeams", err)
 | |
| 		return
 | |
| 	}
 | |
| 
 | |
| 	apiTeams, err := convert.ToTeams(ctx, teams, false)
 | |
| 	if err != nil {
 | |
| 		ctx.Error(http.StatusInternalServerError, "ConvertToTeams", err)
 | |
| 		return
 | |
| 	}
 | |
| 
 | |
| 	ctx.SetTotalCountHeader(count)
 | |
| 	ctx.JSON(http.StatusOK, apiTeams)
 | |
| }
 | |
| 
 | |
| // ListUserTeams list all the teams a user belongs to
 | |
| func ListUserTeams(ctx *context.APIContext) {
 | |
| 	// swagger:operation GET /user/teams user userListTeams
 | |
| 	// ---
 | |
| 	// summary: List all the teams a user belongs to
 | |
| 	// produces:
 | |
| 	// - application/json
 | |
| 	// parameters:
 | |
| 	// - name: page
 | |
| 	//   in: query
 | |
| 	//   description: page number of results to return (1-based)
 | |
| 	//   type: integer
 | |
| 	// - name: limit
 | |
| 	//   in: query
 | |
| 	//   description: page size of results
 | |
| 	//   type: integer
 | |
| 	// responses:
 | |
| 	//   "200":
 | |
| 	//     "$ref": "#/responses/TeamList"
 | |
| 
 | |
| 	teams, count, err := organization.SearchTeam(ctx, &organization.SearchTeamOptions{
 | |
| 		ListOptions: utils.GetListOptions(ctx),
 | |
| 		UserID:      ctx.Doer.ID,
 | |
| 	})
 | |
| 	if err != nil {
 | |
| 		ctx.Error(http.StatusInternalServerError, "GetUserTeams", err)
 | |
| 		return
 | |
| 	}
 | |
| 
 | |
| 	apiTeams, err := convert.ToTeams(ctx, teams, true)
 | |
| 	if err != nil {
 | |
| 		ctx.Error(http.StatusInternalServerError, "ConvertToTeams", err)
 | |
| 		return
 | |
| 	}
 | |
| 
 | |
| 	ctx.SetTotalCountHeader(count)
 | |
| 	ctx.JSON(http.StatusOK, apiTeams)
 | |
| }
 | |
| 
 | |
| // GetTeam api for get a team
 | |
| func GetTeam(ctx *context.APIContext) {
 | |
| 	// swagger:operation GET /teams/{id} organization orgGetTeam
 | |
| 	// ---
 | |
| 	// summary: Get a team
 | |
| 	// produces:
 | |
| 	// - application/json
 | |
| 	// parameters:
 | |
| 	// - name: id
 | |
| 	//   in: path
 | |
| 	//   description: id of the team to get
 | |
| 	//   type: integer
 | |
| 	//   format: int64
 | |
| 	//   required: true
 | |
| 	// responses:
 | |
| 	//   "200":
 | |
| 	//     "$ref": "#/responses/Team"
 | |
| 	//   "404":
 | |
| 	//     "$ref": "#/responses/notFound"
 | |
| 
 | |
| 	apiTeam, err := convert.ToTeam(ctx, ctx.Org.Team, true)
 | |
| 	if err != nil {
 | |
| 		ctx.InternalServerError(err)
 | |
| 		return
 | |
| 	}
 | |
| 
 | |
| 	ctx.JSON(http.StatusOK, apiTeam)
 | |
| }
 | |
| 
 | |
| func attachTeamUnits(team *organization.Team, units []string) {
 | |
| 	unitTypes, _ := unit_model.FindUnitTypes(units...)
 | |
| 	team.Units = make([]*organization.TeamUnit, 0, len(units))
 | |
| 	for _, tp := range unitTypes {
 | |
| 		team.Units = append(team.Units, &organization.TeamUnit{
 | |
| 			OrgID:      team.OrgID,
 | |
| 			Type:       tp,
 | |
| 			AccessMode: team.AccessMode,
 | |
| 		})
 | |
| 	}
 | |
| }
 | |
| 
 | |
| func convertUnitsMap(unitsMap map[string]string) map[unit_model.Type]perm.AccessMode {
 | |
| 	res := make(map[unit_model.Type]perm.AccessMode, len(unitsMap))
 | |
| 	for unitKey, p := range unitsMap {
 | |
| 		res[unit_model.TypeFromKey(unitKey)] = perm.ParseAccessMode(p)
 | |
| 	}
 | |
| 	return res
 | |
| }
 | |
| 
 | |
| func attachTeamUnitsMap(team *organization.Team, unitsMap map[string]string) {
 | |
| 	team.Units = make([]*organization.TeamUnit, 0, len(unitsMap))
 | |
| 	for unitKey, p := range unitsMap {
 | |
| 		team.Units = append(team.Units, &organization.TeamUnit{
 | |
| 			OrgID:      team.OrgID,
 | |
| 			Type:       unit_model.TypeFromKey(unitKey),
 | |
| 			AccessMode: perm.ParseAccessMode(p),
 | |
| 		})
 | |
| 	}
 | |
| }
 | |
| 
 | |
| func attachAdminTeamUnits(team *organization.Team) {
 | |
| 	team.Units = make([]*organization.TeamUnit, 0, len(unit_model.AllRepoUnitTypes))
 | |
| 	for _, ut := range unit_model.AllRepoUnitTypes {
 | |
| 		up := perm.AccessModeAdmin
 | |
| 		if ut == unit_model.TypeExternalTracker || ut == unit_model.TypeExternalWiki {
 | |
| 			up = perm.AccessModeRead
 | |
| 		}
 | |
| 		team.Units = append(team.Units, &organization.TeamUnit{
 | |
| 			OrgID:      team.OrgID,
 | |
| 			Type:       ut,
 | |
| 			AccessMode: up,
 | |
| 		})
 | |
| 	}
 | |
| }
 | |
| 
 | |
| // CreateTeam api for create a team
 | |
| func CreateTeam(ctx *context.APIContext) {
 | |
| 	// swagger:operation POST /orgs/{org}/teams organization orgCreateTeam
 | |
| 	// ---
 | |
| 	// summary: Create a team
 | |
| 	// consumes:
 | |
| 	// - application/json
 | |
| 	// produces:
 | |
| 	// - application/json
 | |
| 	// parameters:
 | |
| 	// - name: org
 | |
| 	//   in: path
 | |
| 	//   description: name of the organization
 | |
| 	//   type: string
 | |
| 	//   required: true
 | |
| 	// - name: body
 | |
| 	//   in: body
 | |
| 	//   schema:
 | |
| 	//     "$ref": "#/definitions/CreateTeamOption"
 | |
| 	// responses:
 | |
| 	//   "201":
 | |
| 	//     "$ref": "#/responses/Team"
 | |
| 	//   "404":
 | |
| 	//     "$ref": "#/responses/notFound"
 | |
| 	//   "422":
 | |
| 	//     "$ref": "#/responses/validationError"
 | |
| 	form := web.GetForm(ctx).(*api.CreateTeamOption)
 | |
| 	p := perm.ParseAccessMode(form.Permission)
 | |
| 	if p < perm.AccessModeAdmin && len(form.UnitsMap) > 0 {
 | |
| 		p = unit_model.MinUnitAccessMode(convertUnitsMap(form.UnitsMap))
 | |
| 	}
 | |
| 	team := &organization.Team{
 | |
| 		OrgID:                   ctx.Org.Organization.ID,
 | |
| 		Name:                    form.Name,
 | |
| 		Description:             form.Description,
 | |
| 		IncludesAllRepositories: form.IncludesAllRepositories,
 | |
| 		CanCreateOrgRepo:        form.CanCreateOrgRepo,
 | |
| 		AccessMode:              p,
 | |
| 	}
 | |
| 
 | |
| 	if team.AccessMode < perm.AccessModeAdmin {
 | |
| 		if len(form.UnitsMap) > 0 {
 | |
| 			attachTeamUnitsMap(team, form.UnitsMap)
 | |
| 		} else if len(form.Units) > 0 {
 | |
| 			attachTeamUnits(team, form.Units)
 | |
| 		} else {
 | |
| 			ctx.Error(http.StatusInternalServerError, "getTeamUnits", errors.New("units permission should not be empty"))
 | |
| 			return
 | |
| 		}
 | |
| 	} else {
 | |
| 		attachAdminTeamUnits(team)
 | |
| 	}
 | |
| 
 | |
| 	if err := models.NewTeam(ctx, team); err != nil {
 | |
| 		if organization.IsErrTeamAlreadyExist(err) {
 | |
| 			ctx.Error(http.StatusUnprocessableEntity, "", err)
 | |
| 		} else {
 | |
| 			ctx.Error(http.StatusInternalServerError, "NewTeam", err)
 | |
| 		}
 | |
| 		return
 | |
| 	}
 | |
| 
 | |
| 	apiTeam, err := convert.ToTeam(ctx, team, true)
 | |
| 	if err != nil {
 | |
| 		ctx.InternalServerError(err)
 | |
| 		return
 | |
| 	}
 | |
| 	ctx.JSON(http.StatusCreated, apiTeam)
 | |
| }
 | |
| 
 | |
| // EditTeam api for edit a team
 | |
| func EditTeam(ctx *context.APIContext) {
 | |
| 	// swagger:operation PATCH /teams/{id} organization orgEditTeam
 | |
| 	// ---
 | |
| 	// summary: Edit a team
 | |
| 	// consumes:
 | |
| 	// - application/json
 | |
| 	// produces:
 | |
| 	// - application/json
 | |
| 	// parameters:
 | |
| 	// - name: id
 | |
| 	//   in: path
 | |
| 	//   description: id of the team to edit
 | |
| 	//   type: integer
 | |
| 	//   required: true
 | |
| 	// - name: body
 | |
| 	//   in: body
 | |
| 	//   schema:
 | |
| 	//     "$ref": "#/definitions/EditTeamOption"
 | |
| 	// responses:
 | |
| 	//   "200":
 | |
| 	//     "$ref": "#/responses/Team"
 | |
| 	//   "404":
 | |
| 	//     "$ref": "#/responses/notFound"
 | |
| 
 | |
| 	form := web.GetForm(ctx).(*api.EditTeamOption)
 | |
| 	team := ctx.Org.Team
 | |
| 	if err := team.LoadUnits(ctx); err != nil {
 | |
| 		ctx.InternalServerError(err)
 | |
| 		return
 | |
| 	}
 | |
| 
 | |
| 	if form.CanCreateOrgRepo != nil {
 | |
| 		team.CanCreateOrgRepo = team.IsOwnerTeam() || *form.CanCreateOrgRepo
 | |
| 	}
 | |
| 
 | |
| 	if len(form.Name) > 0 {
 | |
| 		team.Name = form.Name
 | |
| 	}
 | |
| 
 | |
| 	if form.Description != nil {
 | |
| 		team.Description = *form.Description
 | |
| 	}
 | |
| 
 | |
| 	isAuthChanged := false
 | |
| 	isIncludeAllChanged := false
 | |
| 	if !team.IsOwnerTeam() && len(form.Permission) != 0 {
 | |
| 		// Validate permission level.
 | |
| 		p := perm.ParseAccessMode(form.Permission)
 | |
| 		if p < perm.AccessModeAdmin && len(form.UnitsMap) > 0 {
 | |
| 			p = unit_model.MinUnitAccessMode(convertUnitsMap(form.UnitsMap))
 | |
| 		}
 | |
| 
 | |
| 		if team.AccessMode != p {
 | |
| 			isAuthChanged = true
 | |
| 			team.AccessMode = p
 | |
| 		}
 | |
| 
 | |
| 		if form.IncludesAllRepositories != nil {
 | |
| 			isIncludeAllChanged = true
 | |
| 			team.IncludesAllRepositories = *form.IncludesAllRepositories
 | |
| 		}
 | |
| 	}
 | |
| 
 | |
| 	if team.AccessMode < perm.AccessModeAdmin {
 | |
| 		if len(form.UnitsMap) > 0 {
 | |
| 			attachTeamUnitsMap(team, form.UnitsMap)
 | |
| 		} else if len(form.Units) > 0 {
 | |
| 			attachTeamUnits(team, form.Units)
 | |
| 		}
 | |
| 	} else {
 | |
| 		attachAdminTeamUnits(team)
 | |
| 	}
 | |
| 
 | |
| 	if err := models.UpdateTeam(ctx, team, isAuthChanged, isIncludeAllChanged); err != nil {
 | |
| 		ctx.Error(http.StatusInternalServerError, "EditTeam", err)
 | |
| 		return
 | |
| 	}
 | |
| 
 | |
| 	apiTeam, err := convert.ToTeam(ctx, team)
 | |
| 	if err != nil {
 | |
| 		ctx.InternalServerError(err)
 | |
| 		return
 | |
| 	}
 | |
| 	ctx.JSON(http.StatusOK, apiTeam)
 | |
| }
 | |
| 
 | |
| // DeleteTeam api for delete a team
 | |
| func DeleteTeam(ctx *context.APIContext) {
 | |
| 	// swagger:operation DELETE /teams/{id} organization orgDeleteTeam
 | |
| 	// ---
 | |
| 	// summary: Delete a team
 | |
| 	// parameters:
 | |
| 	// - name: id
 | |
| 	//   in: path
 | |
| 	//   description: id of the team to delete
 | |
| 	//   type: integer
 | |
| 	//   format: int64
 | |
| 	//   required: true
 | |
| 	// responses:
 | |
| 	//   "204":
 | |
| 	//     description: team deleted
 | |
| 	//   "404":
 | |
| 	//     "$ref": "#/responses/notFound"
 | |
| 
 | |
| 	if err := models.DeleteTeam(ctx, ctx.Org.Team); err != nil {
 | |
| 		ctx.Error(http.StatusInternalServerError, "DeleteTeam", err)
 | |
| 		return
 | |
| 	}
 | |
| 	ctx.Status(http.StatusNoContent)
 | |
| }
 | |
| 
 | |
| // GetTeamMembers api for get a team's members
 | |
| func GetTeamMembers(ctx *context.APIContext) {
 | |
| 	// swagger:operation GET /teams/{id}/members organization orgListTeamMembers
 | |
| 	// ---
 | |
| 	// summary: List a team's members
 | |
| 	// produces:
 | |
| 	// - application/json
 | |
| 	// parameters:
 | |
| 	// - name: id
 | |
| 	//   in: path
 | |
| 	//   description: id of the team
 | |
| 	//   type: integer
 | |
| 	//   format: int64
 | |
| 	//   required: true
 | |
| 	// - name: page
 | |
| 	//   in: query
 | |
| 	//   description: page number of results to return (1-based)
 | |
| 	//   type: integer
 | |
| 	// - name: limit
 | |
| 	//   in: query
 | |
| 	//   description: page size of results
 | |
| 	//   type: integer
 | |
| 	// responses:
 | |
| 	//   "200":
 | |
| 	//     "$ref": "#/responses/UserList"
 | |
| 	//   "404":
 | |
| 	//     "$ref": "#/responses/notFound"
 | |
| 
 | |
| 	isMember, err := organization.IsOrganizationMember(ctx, ctx.Org.Team.OrgID, ctx.Doer.ID)
 | |
| 	if err != nil {
 | |
| 		ctx.Error(http.StatusInternalServerError, "IsOrganizationMember", err)
 | |
| 		return
 | |
| 	} else if !isMember && !ctx.Doer.IsAdmin {
 | |
| 		ctx.NotFound()
 | |
| 		return
 | |
| 	}
 | |
| 
 | |
| 	teamMembers, err := organization.GetTeamMembers(ctx, &organization.SearchMembersOptions{
 | |
| 		ListOptions: utils.GetListOptions(ctx),
 | |
| 		TeamID:      ctx.Org.Team.ID,
 | |
| 	})
 | |
| 	if err != nil {
 | |
| 		ctx.Error(http.StatusInternalServerError, "GetTeamMembers", err)
 | |
| 		return
 | |
| 	}
 | |
| 
 | |
| 	members := make([]*api.User, len(teamMembers))
 | |
| 	for i, member := range teamMembers {
 | |
| 		members[i] = convert.ToUser(ctx, member, ctx.Doer)
 | |
| 	}
 | |
| 
 | |
| 	ctx.SetTotalCountHeader(int64(ctx.Org.Team.NumMembers))
 | |
| 	ctx.JSON(http.StatusOK, members)
 | |
| }
 | |
| 
 | |
| // GetTeamMember api for get a particular member of team
 | |
| func GetTeamMember(ctx *context.APIContext) {
 | |
| 	// swagger:operation GET /teams/{id}/members/{username} organization orgListTeamMember
 | |
| 	// ---
 | |
| 	// summary: List a particular member of team
 | |
| 	// produces:
 | |
| 	// - application/json
 | |
| 	// parameters:
 | |
| 	// - name: id
 | |
| 	//   in: path
 | |
| 	//   description: id of the team
 | |
| 	//   type: integer
 | |
| 	//   format: int64
 | |
| 	//   required: true
 | |
| 	// - name: username
 | |
| 	//   in: path
 | |
| 	//   description: username of the member to list
 | |
| 	//   type: string
 | |
| 	//   required: true
 | |
| 	// responses:
 | |
| 	//   "200":
 | |
| 	//     "$ref": "#/responses/User"
 | |
| 	//   "404":
 | |
| 	//     "$ref": "#/responses/notFound"
 | |
| 
 | |
| 	u := user.GetUserByParams(ctx)
 | |
| 	if ctx.Written() {
 | |
| 		return
 | |
| 	}
 | |
| 	teamID := ctx.ParamsInt64("teamid")
 | |
| 	isTeamMember, err := organization.IsUserInTeams(ctx, u.ID, []int64{teamID})
 | |
| 	if err != nil {
 | |
| 		ctx.Error(http.StatusInternalServerError, "IsUserInTeams", err)
 | |
| 		return
 | |
| 	} else if !isTeamMember {
 | |
| 		ctx.NotFound()
 | |
| 		return
 | |
| 	}
 | |
| 	ctx.JSON(http.StatusOK, convert.ToUser(ctx, u, ctx.Doer))
 | |
| }
 | |
| 
 | |
| // AddTeamMember api for add a member to a team
 | |
| func AddTeamMember(ctx *context.APIContext) {
 | |
| 	// swagger:operation PUT /teams/{id}/members/{username} organization orgAddTeamMember
 | |
| 	// ---
 | |
| 	// summary: Add a team member
 | |
| 	// produces:
 | |
| 	// - application/json
 | |
| 	// parameters:
 | |
| 	// - name: id
 | |
| 	//   in: path
 | |
| 	//   description: id of the team
 | |
| 	//   type: integer
 | |
| 	//   format: int64
 | |
| 	//   required: true
 | |
| 	// - name: username
 | |
| 	//   in: path
 | |
| 	//   description: username of the user to add
 | |
| 	//   type: string
 | |
| 	//   required: true
 | |
| 	// responses:
 | |
| 	//   "204":
 | |
| 	//     "$ref": "#/responses/empty"
 | |
| 	//   "403":
 | |
| 	//     "$ref": "#/responses/forbidden"
 | |
| 	//   "404":
 | |
| 	//     "$ref": "#/responses/notFound"
 | |
| 
 | |
| 	u := user.GetUserByParams(ctx)
 | |
| 	if ctx.Written() {
 | |
| 		return
 | |
| 	}
 | |
| 	if err := models.AddTeamMember(ctx, ctx.Org.Team, u); err != nil {
 | |
| 		if errors.Is(err, user_model.ErrBlockedUser) {
 | |
| 			ctx.Error(http.StatusForbidden, "AddTeamMember", err)
 | |
| 		} else {
 | |
| 			ctx.Error(http.StatusInternalServerError, "AddTeamMember", err)
 | |
| 		}
 | |
| 		return
 | |
| 	}
 | |
| 	ctx.Status(http.StatusNoContent)
 | |
| }
 | |
| 
 | |
| // RemoveTeamMember api for remove one member from a team
 | |
| func RemoveTeamMember(ctx *context.APIContext) {
 | |
| 	// swagger:operation DELETE /teams/{id}/members/{username} organization orgRemoveTeamMember
 | |
| 	// ---
 | |
| 	// summary: Remove a team member
 | |
| 	// produces:
 | |
| 	// - application/json
 | |
| 	// parameters:
 | |
| 	// - name: id
 | |
| 	//   in: path
 | |
| 	//   description: id of the team
 | |
| 	//   type: integer
 | |
| 	//   format: int64
 | |
| 	//   required: true
 | |
| 	// - name: username
 | |
| 	//   in: path
 | |
| 	//   description: username of the user to remove
 | |
| 	//   type: string
 | |
| 	//   required: true
 | |
| 	// responses:
 | |
| 	//   "204":
 | |
| 	//     "$ref": "#/responses/empty"
 | |
| 	//   "404":
 | |
| 	//     "$ref": "#/responses/notFound"
 | |
| 
 | |
| 	u := user.GetUserByParams(ctx)
 | |
| 	if ctx.Written() {
 | |
| 		return
 | |
| 	}
 | |
| 
 | |
| 	if err := models.RemoveTeamMember(ctx, ctx.Org.Team, u); err != nil {
 | |
| 		ctx.Error(http.StatusInternalServerError, "RemoveTeamMember", err)
 | |
| 		return
 | |
| 	}
 | |
| 	ctx.Status(http.StatusNoContent)
 | |
| }
 | |
| 
 | |
| // GetTeamRepos api for get a team's repos
 | |
| func GetTeamRepos(ctx *context.APIContext) {
 | |
| 	// swagger:operation GET /teams/{id}/repos organization orgListTeamRepos
 | |
| 	// ---
 | |
| 	// summary: List a team's repos
 | |
| 	// produces:
 | |
| 	// - application/json
 | |
| 	// parameters:
 | |
| 	// - name: id
 | |
| 	//   in: path
 | |
| 	//   description: id of the team
 | |
| 	//   type: integer
 | |
| 	//   format: int64
 | |
| 	//   required: true
 | |
| 	// - name: page
 | |
| 	//   in: query
 | |
| 	//   description: page number of results to return (1-based)
 | |
| 	//   type: integer
 | |
| 	// - name: limit
 | |
| 	//   in: query
 | |
| 	//   description: page size of results
 | |
| 	//   type: integer
 | |
| 	// responses:
 | |
| 	//   "200":
 | |
| 	//     "$ref": "#/responses/RepositoryList"
 | |
| 	//   "404":
 | |
| 	//     "$ref": "#/responses/notFound"
 | |
| 
 | |
| 	team := ctx.Org.Team
 | |
| 	teamRepos, err := organization.GetTeamRepositories(ctx, &organization.SearchTeamRepoOptions{
 | |
| 		ListOptions: utils.GetListOptions(ctx),
 | |
| 		TeamID:      team.ID,
 | |
| 	})
 | |
| 	if err != nil {
 | |
| 		ctx.Error(http.StatusInternalServerError, "GetTeamRepos", err)
 | |
| 		return
 | |
| 	}
 | |
| 	repos := make([]*api.Repository, len(teamRepos))
 | |
| 	for i, repo := range teamRepos {
 | |
| 		permission, err := access_model.GetUserRepoPermission(ctx, repo, ctx.Doer)
 | |
| 		if err != nil {
 | |
| 			ctx.Error(http.StatusInternalServerError, "GetTeamRepos", err)
 | |
| 			return
 | |
| 		}
 | |
| 		repos[i] = convert.ToRepo(ctx, repo, permission)
 | |
| 	}
 | |
| 	ctx.SetTotalCountHeader(int64(team.NumRepos))
 | |
| 	ctx.JSON(http.StatusOK, repos)
 | |
| }
 | |
| 
 | |
| // GetTeamRepo api for get a particular repo of team
 | |
| func GetTeamRepo(ctx *context.APIContext) {
 | |
| 	// swagger:operation GET /teams/{id}/repos/{org}/{repo} organization orgListTeamRepo
 | |
| 	// ---
 | |
| 	// summary: List a particular repo of team
 | |
| 	// produces:
 | |
| 	// - application/json
 | |
| 	// parameters:
 | |
| 	// - name: id
 | |
| 	//   in: path
 | |
| 	//   description: id of the team
 | |
| 	//   type: integer
 | |
| 	//   format: int64
 | |
| 	//   required: true
 | |
| 	// - name: org
 | |
| 	//   in: path
 | |
| 	//   description: organization that owns the repo to list
 | |
| 	//   type: string
 | |
| 	//   required: true
 | |
| 	// - name: repo
 | |
| 	//   in: path
 | |
| 	//   description: name of the repo to list
 | |
| 	//   type: string
 | |
| 	//   required: true
 | |
| 	// responses:
 | |
| 	//   "200":
 | |
| 	//     "$ref": "#/responses/Repository"
 | |
| 	//   "404":
 | |
| 	//     "$ref": "#/responses/notFound"
 | |
| 
 | |
| 	repo := getRepositoryByParams(ctx)
 | |
| 	if ctx.Written() {
 | |
| 		return
 | |
| 	}
 | |
| 
 | |
| 	if !organization.HasTeamRepo(ctx, ctx.Org.Team.OrgID, ctx.Org.Team.ID, repo.ID) {
 | |
| 		ctx.NotFound()
 | |
| 		return
 | |
| 	}
 | |
| 
 | |
| 	permission, err := access_model.GetUserRepoPermission(ctx, repo, ctx.Doer)
 | |
| 	if err != nil {
 | |
| 		ctx.Error(http.StatusInternalServerError, "GetTeamRepos", err)
 | |
| 		return
 | |
| 	}
 | |
| 
 | |
| 	ctx.JSON(http.StatusOK, convert.ToRepo(ctx, repo, permission))
 | |
| }
 | |
| 
 | |
| // getRepositoryByParams get repository by a team's organization ID and repo name
 | |
| func getRepositoryByParams(ctx *context.APIContext) *repo_model.Repository {
 | |
| 	repo, err := repo_model.GetRepositoryByName(ctx, ctx.Org.Team.OrgID, ctx.Params(":reponame"))
 | |
| 	if err != nil {
 | |
| 		if repo_model.IsErrRepoNotExist(err) {
 | |
| 			ctx.NotFound()
 | |
| 		} else {
 | |
| 			ctx.Error(http.StatusInternalServerError, "GetRepositoryByName", err)
 | |
| 		}
 | |
| 		return nil
 | |
| 	}
 | |
| 	return repo
 | |
| }
 | |
| 
 | |
| // AddTeamRepository api for adding a repository to a team
 | |
| func AddTeamRepository(ctx *context.APIContext) {
 | |
| 	// swagger:operation PUT /teams/{id}/repos/{org}/{repo} organization orgAddTeamRepository
 | |
| 	// ---
 | |
| 	// summary: Add a repository to a team
 | |
| 	// produces:
 | |
| 	// - application/json
 | |
| 	// parameters:
 | |
| 	// - name: id
 | |
| 	//   in: path
 | |
| 	//   description: id of the team
 | |
| 	//   type: integer
 | |
| 	//   format: int64
 | |
| 	//   required: true
 | |
| 	// - name: org
 | |
| 	//   in: path
 | |
| 	//   description: organization that owns the repo to add
 | |
| 	//   type: string
 | |
| 	//   required: true
 | |
| 	// - name: repo
 | |
| 	//   in: path
 | |
| 	//   description: name of the repo to add
 | |
| 	//   type: string
 | |
| 	//   required: true
 | |
| 	// responses:
 | |
| 	//   "204":
 | |
| 	//     "$ref": "#/responses/empty"
 | |
| 	//   "403":
 | |
| 	//     "$ref": "#/responses/forbidden"
 | |
| 	//   "404":
 | |
| 	//     "$ref": "#/responses/notFound"
 | |
| 
 | |
| 	repo := getRepositoryByParams(ctx)
 | |
| 	if ctx.Written() {
 | |
| 		return
 | |
| 	}
 | |
| 	if access, err := access_model.AccessLevel(ctx, ctx.Doer, repo); err != nil {
 | |
| 		ctx.Error(http.StatusInternalServerError, "AccessLevel", err)
 | |
| 		return
 | |
| 	} else if access < perm.AccessModeAdmin {
 | |
| 		ctx.Error(http.StatusForbidden, "", "Must have admin-level access to the repository")
 | |
| 		return
 | |
| 	}
 | |
| 	if err := org_service.TeamAddRepository(ctx, ctx.Org.Team, repo); err != nil {
 | |
| 		ctx.Error(http.StatusInternalServerError, "TeamAddRepository", err)
 | |
| 		return
 | |
| 	}
 | |
| 	ctx.Status(http.StatusNoContent)
 | |
| }
 | |
| 
 | |
| // RemoveTeamRepository api for removing a repository from a team
 | |
| func RemoveTeamRepository(ctx *context.APIContext) {
 | |
| 	// swagger:operation DELETE /teams/{id}/repos/{org}/{repo} organization orgRemoveTeamRepository
 | |
| 	// ---
 | |
| 	// summary: Remove a repository from a team
 | |
| 	// description: This does not delete the repository, it only removes the
 | |
| 	//              repository from the team.
 | |
| 	// produces:
 | |
| 	// - application/json
 | |
| 	// parameters:
 | |
| 	// - name: id
 | |
| 	//   in: path
 | |
| 	//   description: id of the team
 | |
| 	//   type: integer
 | |
| 	//   format: int64
 | |
| 	//   required: true
 | |
| 	// - name: org
 | |
| 	//   in: path
 | |
| 	//   description: organization that owns the repo to remove
 | |
| 	//   type: string
 | |
| 	//   required: true
 | |
| 	// - name: repo
 | |
| 	//   in: path
 | |
| 	//   description: name of the repo to remove
 | |
| 	//   type: string
 | |
| 	//   required: true
 | |
| 	// responses:
 | |
| 	//   "204":
 | |
| 	//     "$ref": "#/responses/empty"
 | |
| 	//   "403":
 | |
| 	//     "$ref": "#/responses/forbidden"
 | |
| 	//   "404":
 | |
| 	//     "$ref": "#/responses/notFound"
 | |
| 
 | |
| 	repo := getRepositoryByParams(ctx)
 | |
| 	if ctx.Written() {
 | |
| 		return
 | |
| 	}
 | |
| 	if access, err := access_model.AccessLevel(ctx, ctx.Doer, repo); err != nil {
 | |
| 		ctx.Error(http.StatusInternalServerError, "AccessLevel", err)
 | |
| 		return
 | |
| 	} else if access < perm.AccessModeAdmin {
 | |
| 		ctx.Error(http.StatusForbidden, "", "Must have admin-level access to the repository")
 | |
| 		return
 | |
| 	}
 | |
| 	if err := repo_service.RemoveRepositoryFromTeam(ctx, ctx.Org.Team, repo.ID); err != nil {
 | |
| 		ctx.Error(http.StatusInternalServerError, "RemoveRepository", err)
 | |
| 		return
 | |
| 	}
 | |
| 	ctx.Status(http.StatusNoContent)
 | |
| }
 | |
| 
 | |
| // SearchTeam api for searching teams
 | |
| func SearchTeam(ctx *context.APIContext) {
 | |
| 	// swagger:operation GET /orgs/{org}/teams/search organization teamSearch
 | |
| 	// ---
 | |
| 	// summary: Search for teams within an organization
 | |
| 	// produces:
 | |
| 	// - application/json
 | |
| 	// parameters:
 | |
| 	// - name: org
 | |
| 	//   in: path
 | |
| 	//   description: name of the organization
 | |
| 	//   type: string
 | |
| 	//   required: true
 | |
| 	// - name: q
 | |
| 	//   in: query
 | |
| 	//   description: keywords to search
 | |
| 	//   type: string
 | |
| 	// - name: include_desc
 | |
| 	//   in: query
 | |
| 	//   description: include search within team description (defaults to true)
 | |
| 	//   type: boolean
 | |
| 	// - name: page
 | |
| 	//   in: query
 | |
| 	//   description: page number of results to return (1-based)
 | |
| 	//   type: integer
 | |
| 	// - name: limit
 | |
| 	//   in: query
 | |
| 	//   description: page size of results
 | |
| 	//   type: integer
 | |
| 	// responses:
 | |
| 	//   "200":
 | |
| 	//     description: "SearchResults of a successful search"
 | |
| 	//     schema:
 | |
| 	//       type: object
 | |
| 	//       properties:
 | |
| 	//         ok:
 | |
| 	//           type: boolean
 | |
| 	//         data:
 | |
| 	//           type: array
 | |
| 	//           items:
 | |
| 	//             "$ref": "#/definitions/Team"
 | |
| 	//   "404":
 | |
| 	//     "$ref": "#/responses/notFound"
 | |
| 
 | |
| 	listOptions := utils.GetListOptions(ctx)
 | |
| 
 | |
| 	opts := &organization.SearchTeamOptions{
 | |
| 		Keyword:     ctx.FormTrim("q"),
 | |
| 		OrgID:       ctx.Org.Organization.ID,
 | |
| 		IncludeDesc: ctx.FormString("include_desc") == "" || ctx.FormBool("include_desc"),
 | |
| 		ListOptions: listOptions,
 | |
| 	}
 | |
| 
 | |
| 	// Only admin is allowd to search for all teams
 | |
| 	if !ctx.Doer.IsAdmin {
 | |
| 		opts.UserID = ctx.Doer.ID
 | |
| 	}
 | |
| 
 | |
| 	teams, maxResults, err := organization.SearchTeam(ctx, opts)
 | |
| 	if err != nil {
 | |
| 		log.Error("SearchTeam failed: %v", err)
 | |
| 		ctx.JSON(http.StatusInternalServerError, map[string]any{
 | |
| 			"ok":    false,
 | |
| 			"error": "SearchTeam internal failure",
 | |
| 		})
 | |
| 		return
 | |
| 	}
 | |
| 
 | |
| 	apiTeams, err := convert.ToTeams(ctx, teams, false)
 | |
| 	if err != nil {
 | |
| 		ctx.InternalServerError(err)
 | |
| 		return
 | |
| 	}
 | |
| 
 | |
| 	ctx.SetLinkHeader(int(maxResults), listOptions.PageSize)
 | |
| 	ctx.SetTotalCountHeader(maxResults)
 | |
| 	ctx.JSON(http.StatusOK, map[string]any{
 | |
| 		"ok":   true,
 | |
| 		"data": apiTeams,
 | |
| 	})
 | |
| }
 | |
| 
 | |
| func ListTeamActivityFeeds(ctx *context.APIContext) {
 | |
| 	// swagger:operation GET /teams/{id}/activities/feeds organization orgListTeamActivityFeeds
 | |
| 	// ---
 | |
| 	// summary: List a team's activity feeds
 | |
| 	// produces:
 | |
| 	// - application/json
 | |
| 	// parameters:
 | |
| 	// - name: id
 | |
| 	//   in: path
 | |
| 	//   description: id of the team
 | |
| 	//   type: integer
 | |
| 	//   format: int64
 | |
| 	//   required: true
 | |
| 	// - name: date
 | |
| 	//   in: query
 | |
| 	//   description: the date of the activities to be found
 | |
| 	//   type: string
 | |
| 	//   format: date
 | |
| 	// - name: page
 | |
| 	//   in: query
 | |
| 	//   description: page number of results to return (1-based)
 | |
| 	//   type: integer
 | |
| 	// - name: limit
 | |
| 	//   in: query
 | |
| 	//   description: page size of results
 | |
| 	//   type: integer
 | |
| 	// responses:
 | |
| 	//   "200":
 | |
| 	//     "$ref": "#/responses/ActivityFeedsList"
 | |
| 	//   "404":
 | |
| 	//     "$ref": "#/responses/notFound"
 | |
| 
 | |
| 	listOptions := utils.GetListOptions(ctx)
 | |
| 
 | |
| 	opts := activities_model.GetFeedsOptions{
 | |
| 		RequestedTeam:  ctx.Org.Team,
 | |
| 		Actor:          ctx.Doer,
 | |
| 		IncludePrivate: true,
 | |
| 		Date:           ctx.FormString("date"),
 | |
| 		ListOptions:    listOptions,
 | |
| 	}
 | |
| 
 | |
| 	feeds, count, err := activities_model.GetFeeds(ctx, opts)
 | |
| 	if err != nil {
 | |
| 		ctx.Error(http.StatusInternalServerError, "GetFeeds", err)
 | |
| 		return
 | |
| 	}
 | |
| 	ctx.SetTotalCountHeader(count)
 | |
| 
 | |
| 	ctx.JSON(http.StatusOK, convert.ToActivities(ctx, feeds, ctx.Doer))
 | |
| }
 |