Support Team canAdmin, canCreate, and canFork (issue 36)

author: James Moger <james.moger@gitblit.com> 2012-10-10 22:29:36 -0400
committer: James Moger <james.moger@gitblit.com> 2012-10-10 22:29:36 -0400
commit: 7f70511e9a13f4801e4e941affad6fc7b579c79d (patch)
tree: a63a3594344642d16b82ad99ac65f3f19d51aa9d /src/com/gitblit/models
parent: 58e7ec808177e53981792b1489695a51d2c91fe5 (diff)
download: gitblit-7f70511e9a13f4801e4e941affad6fc7b579c79d.tar.gz
gitblit-7f70511e9a13f4801e4e941affad6fc7b579c79d.zip
2 files changed, 71 insertions, 7 deletions
diff --git a/src/com/gitblit/models/TeamModel.java b/src/com/gitblit/models/TeamModel.java
index 896adfe6..149c7659 100644
--- a/src/com/gitblit/models/TeamModel.java
+++ b/src/com/gitblit/models/TeamModel.java
@@ -41,6 +41,9 @@ public class TeamModel implements Serializable, Comparable<TeamModel> {
 
 	// field names are reflectively mapped in EditTeam page
 	public String name;
+	public boolean canAdmin;
+	public boolean canFork;
+	public boolean canCreate;
 	public final Set<String> users = new HashSet<String>();
 	// retained for backwards-compatibility with RPC clients
 	@Deprecated
diff --git a/src/com/gitblit/models/UserModel.java b/src/com/gitblit/models/UserModel.java
index d8c2abe3..6fe8df2b 100644
--- a/src/com/gitblit/models/UserModel.java
+++ b/src/com/gitblit/models/UserModel.java
@@ -26,6 +26,7 @@ import com.gitblit.Constants.AccessPermission;
 import com.gitblit.Constants.AccessRestrictionType;
 import com.gitblit.Constants.AuthorizationControl;
 import com.gitblit.Constants.Unused;
+import com.gitblit.utils.ArrayUtils;
 import com.gitblit.utils.StringUtils;
 
 /**
@@ -80,7 +81,7 @@ public class UserModel implements Principal, Serializable, Comparable<UserModel>
 	 */
 	@Deprecated
 	public boolean canAccessRepository(String repositoryName) {
-		return canAdmin || repositories.contains(repositoryName.toLowerCase())
+		return canAdmin() || repositories.contains(repositoryName.toLowerCase())
 				|| hasTeamAccess(repositoryName);
 	}
 
@@ -90,7 +91,7 @@ public class UserModel implements Principal, Serializable, Comparable<UserModel>
 		boolean isOwner = !StringUtils.isEmpty(repository.owner)
 				&& repository.owner.equals(username);
 		boolean allowAuthenticated = isAuthenticated && AuthorizationControl.AUTHENTICATED.equals(repository.authorizationControl);
-		return canAdmin || isOwner || repositories.contains(repository.name.toLowerCase())
+		return canAdmin() || isOwner || repositories.contains(repository.name.toLowerCase())
 				|| hasTeamAccess(repository.name) || allowAuthenticated;
 	}
 
@@ -177,7 +178,7 @@ public class UserModel implements Principal, Serializable, Comparable<UserModel>
 	}
 
 	public AccessPermission getRepositoryPermission(RepositoryModel repository) {
-		if (canAdmin || repository.isOwner(username) || repository.isUsersPersonalRepository(username)) {
+		if (canAdmin() || repository.isOwner(username) || repository.isUsersPersonalRepository(username)) {
 			return AccessPermission.REWIND;
 		}
 		if (AuthorizationControl.AUTHENTICATED.equals(repository.authorizationControl) && isAuthenticated) {
@@ -265,24 +266,84 @@ public class UserModel implements Principal, Serializable, Comparable<UserModel>
 			// can not fork your own repository
 			return false;
 		}
-		if (canAdmin || repository.isOwner(username)) {
+		if (canAdmin() || repository.isOwner(username)) {
 			return true;
 		}
 		if (!repository.allowForks) {
 			return false;
 		}
-		if (!isAuthenticated || !canFork) {
+		if (!isAuthenticated || !canFork()) {
 			return false;
 		}
 		return canClone(repository);
 	}
 	
 	public boolean canDelete(RepositoryModel model) {
-		return canAdmin || model.isUsersPersonalRepository(username);
+		return canAdmin() || model.isUsersPersonalRepository(username);
 	}
 	
 	public boolean canEdit(RepositoryModel model) {
-		return canAdmin || model.isUsersPersonalRepository(username) || model.isOwner(username);
+		return canAdmin() || model.isUsersPersonalRepository(username) || model.isOwner(username);
+	}
+	
+	/**
+	 * This returns true if the user has fork privileges or the user has fork
+	 * privileges because of a team membership.
+	 * 
+	 * @return true if the user can fork
+	 */
+	public boolean canFork() {
+		if (canFork) {
+			return true;
+		}
+		if (!ArrayUtils.isEmpty(teams)) {
+			for (TeamModel team : teams) {
+				if (team.canFork) {
+					return true;
+				}
+			}
+		}
+		return false;
+	}
+
+	/**
+	 * This returns true if the user has admin privileges or the user has admin
+	 * privileges because of a team membership.
+	 * 
+	 * @return true if the user can admin
+	 */
+	public boolean canAdmin() {
+		if (canAdmin) {
+			return true;
+		}
+		if (!ArrayUtils.isEmpty(teams)) {
+			for (TeamModel team : teams) {
+				if (team.canAdmin) {
+					return true;
+				}
+			}
+		}
+		return false;
+	}
+
+	/**
+	 * This returns true if the user has create privileges or the user has create
+	 * privileges because of a team membership.
+	 * 
+	 * @return true if the user can admin
+	 */
+	public boolean canCreate() {
+		if (canCreate) {
+			return true;
+		}
+		if (!ArrayUtils.isEmpty(teams)) {
+			for (TeamModel team : teams) {
+				if (team.canCreate) {
+					return true;
+				}
+			}
+		}
+		return false;
 	}
 
 	public boolean isTeamMember(String teamname) {
author	James Moger <james.moger@gitblit.com>	2012-10-10 22:29:36 -0400
committer	James Moger <james.moger@gitblit.com>	2012-10-10 22:29:36 -0400
commit	7f70511e9a13f4801e4e941affad6fc7b579c79d (patch)
tree	a63a3594344642d16b82ad99ac65f3f19d51aa9d /src/com/gitblit/models
parent	58e7ec808177e53981792b1489695a51d2c91fe5 (diff)
download	gitblit-7f70511e9a13f4801e4e941affad6fc7b579c79d.tar.gz gitblit-7f70511e9a13f4801e4e941affad6fc7b579c79d.zip