mirrors
/
gitea
mirror of https://github.com/go-gitea/gitea.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 210 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
11885 Commits
17 Branches
Tree: 2289580bb7
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '2289580bb7'
${ noResults }
gitea/routers/api/v1/org/member.go

member.go 8.0KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309 
  1. // Copyright 2017 The Gitea Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. package org

  6. 

  7. import (

  8. 	"net/http"

  9. 

  10. 	"code.gitea.io/gitea/models"

  11. 	"code.gitea.io/gitea/modules/context"

  12. 	"code.gitea.io/gitea/modules/convert"

  13. 	"code.gitea.io/gitea/modules/setting"

  14. 	api "code.gitea.io/gitea/modules/structs"

  15. 	"code.gitea.io/gitea/routers/api/v1/user"

  16. 	"code.gitea.io/gitea/routers/api/v1/utils"

  17. )

  18. 

  19. // listMembers list an organization's members

  20. func listMembers(ctx *context.APIContext, publicOnly bool) {

  21. 	opts := &models.FindOrgMembersOpts{

  22. 		OrgID:       ctx.Org.Organization.ID,

  23. 		PublicOnly:  publicOnly,

  24. 		ListOptions: utils.GetListOptions(ctx),

  25. 	}

  26. 

  27. 	count, err := models.CountOrgMembers(opts)

  28. 	if err != nil {

  29. 		ctx.InternalServerError(err)

  30. 		return

  31. 	}

  32. 

  33. 	members, _, err := models.FindOrgMembers(opts)

  34. 	if err != nil {

  35. 		ctx.InternalServerError(err)

  36. 		return

  37. 	}

  38. 

  39. 	apiMembers := make([]*api.User, len(members))

  40. 	for i, member := range members {

  41. 		apiMembers[i] = convert.ToUser(member, ctx.User)

  42. 	}

  43. 

  44. 	ctx.SetTotalCountHeader(count)

  45. 	ctx.JSON(http.StatusOK, apiMembers)

  46. }

  47. 

  48. // ListMembers list an organization's members

  49. func ListMembers(ctx *context.APIContext) {

  50. 	// swagger:operation GET /orgs/{org}/members organization orgListMembers

  51. 	// ---

  52. 	// summary: List an organization's members

  53. 	// produces:

  54. 	// - application/json

  55. 	// parameters:

  56. 	// - name: org

  57. 	//   in: path

  58. 	//   description: name of the organization

  59. 	//   type: string

  60. 	//   required: true

  61. 	// - name: page

  62. 	//   in: query

  63. 	//   description: page number of results to return (1-based)

  64. 	//   type: integer

  65. 	// - name: limit

  66. 	//   in: query

  67. 	//   description: page size of results

  68. 	//   type: integer

  69. 	// responses:

  70. 	//   "200":

  71. 	//     "$ref": "#/responses/UserList"

  72. 

  73. 	publicOnly := true

  74. 	if ctx.User != nil {

  75. 		isMember, err := ctx.Org.Organization.IsOrgMember(ctx.User.ID)

  76. 		if err != nil {

  77. 			ctx.Error(http.StatusInternalServerError, "IsOrgMember", err)

  78. 			return

  79. 		}

  80. 		publicOnly = !isMember && !ctx.User.IsAdmin

  81. 	}

  82. 	listMembers(ctx, publicOnly)

  83. }

  84. 

  85. // ListPublicMembers list an organization's public members

  86. func ListPublicMembers(ctx *context.APIContext) {

  87. 	// swagger:operation GET /orgs/{org}/public_members organization orgListPublicMembers

  88. 	// ---

  89. 	// summary: List an organization's public members

  90. 	// parameters:

  91. 	// - name: org

  92. 	//   in: path

  93. 	//   description: name of the organization

  94. 	//   type: string

  95. 	//   required: true

  96. 	// - name: page

  97. 	//   in: query

  98. 	//   description: page number of results to return (1-based)

  99. 	//   type: integer

  100. 	// - name: limit

  101. 	//   in: query

  102. 	//   description: page size of results

  103. 	//   type: integer

  104. 	// produces:

  105. 	// - application/json

  106. 	// responses:

  107. 	//   "200":

  108. 	//     "$ref": "#/responses/UserList"

  109. 

  110. 	listMembers(ctx, true)

  111. }

  112. 

  113. // IsMember check if a user is a member of an organization

  114. func IsMember(ctx *context.APIContext) {

  115. 	// swagger:operation GET /orgs/{org}/members/{username} organization orgIsMember

  116. 	// ---

  117. 	// summary: Check if a user is a member of an organization

  118. 	// parameters:

  119. 	// - name: org

  120. 	//   in: path

  121. 	//   description: name of the organization

  122. 	//   type: string

  123. 	//   required: true

  124. 	// - name: username

  125. 	//   in: path

  126. 	//   description: username of the user

  127. 	//   type: string

  128. 	//   required: true

  129. 	// responses:

  130. 	//   "204":

  131. 	//     description: user is a member

  132. 	//   "302":

  133. 	//     description: redirection to /orgs/{org}/public_members/{username}

  134. 	//   "404":

  135. 	//     description: user is not a member

  136. 

  137. 	userToCheck := user.GetUserByParams(ctx)

  138. 	if ctx.Written() {

  139. 		return

  140. 	}

  141. 	if ctx.User != nil {

  142. 		userIsMember, err := ctx.Org.Organization.IsOrgMember(ctx.User.ID)

  143. 		if err != nil {

  144. 			ctx.Error(http.StatusInternalServerError, "IsOrgMember", err)

  145. 			return

  146. 		} else if userIsMember || ctx.User.IsAdmin {

  147. 			userToCheckIsMember, err := ctx.Org.Organization.IsOrgMember(userToCheck.ID)

  148. 			if err != nil {

  149. 				ctx.Error(http.StatusInternalServerError, "IsOrgMember", err)

  150. 			} else if userToCheckIsMember {

  151. 				ctx.Status(http.StatusNoContent)

  152. 			} else {

  153. 				ctx.NotFound()

  154. 			}

  155. 			return

  156. 		} else if ctx.User.ID == userToCheck.ID {

  157. 			ctx.NotFound()

  158. 			return

  159. 		}

  160. 	}

  161. 

  162. 	redirectURL := setting.AppURL + "api/v1/orgs/" + ctx.Org.Organization.Name + "/public_members/" + userToCheck.Name

  163. 	ctx.Redirect(redirectURL, 302)

  164. }

  165. 

  166. // IsPublicMember check if a user is a public member of an organization

  167. func IsPublicMember(ctx *context.APIContext) {

  168. 	// swagger:operation GET /orgs/{org}/public_members/{username} organization orgIsPublicMember

  169. 	// ---

  170. 	// summary: Check if a user is a public member of an organization

  171. 	// parameters:

  172. 	// - name: org

  173. 	//   in: path

  174. 	//   description: name of the organization

  175. 	//   type: string

  176. 	//   required: true

  177. 	// - name: username

  178. 	//   in: path

  179. 	//   description: username of the user

  180. 	//   type: string

  181. 	//   required: true

  182. 	// responses:

  183. 	//   "204":

  184. 	//     description: user is a public member

  185. 	//   "404":

  186. 	//     description: user is not a public member

  187. 

  188. 	userToCheck := user.GetUserByParams(ctx)

  189. 	if ctx.Written() {

  190. 		return

  191. 	}

  192. 	if userToCheck.IsPublicMember(ctx.Org.Organization.ID) {

  193. 		ctx.Status(http.StatusNoContent)

  194. 	} else {

  195. 		ctx.NotFound()

  196. 	}

  197. }

  198. 

  199. // PublicizeMember make a member's membership public

  200. func PublicizeMember(ctx *context.APIContext) {

  201. 	// swagger:operation PUT /orgs/{org}/public_members/{username} organization orgPublicizeMember

  202. 	// ---

  203. 	// summary: Publicize a user's membership

  204. 	// produces:

  205. 	// - application/json

  206. 	// parameters:

  207. 	// - name: org

  208. 	//   in: path

  209. 	//   description: name of the organization

  210. 	//   type: string

  211. 	//   required: true

  212. 	// - name: username

  213. 	//   in: path

  214. 	//   description: username of the user

  215. 	//   type: string

  216. 	//   required: true

  217. 	// responses:

  218. 	//   "204":

  219. 	//     description: membership publicized

  220. 	//   "403":

  221. 	//     "$ref": "#/responses/forbidden"

  222. 

  223. 	userToPublicize := user.GetUserByParams(ctx)

  224. 	if ctx.Written() {

  225. 		return

  226. 	}

  227. 	if userToPublicize.ID != ctx.User.ID {

  228. 		ctx.Error(http.StatusForbidden, "", "Cannot publicize another member")

  229. 		return

  230. 	}

  231. 	err := models.ChangeOrgUserStatus(ctx.Org.Organization.ID, userToPublicize.ID, true)

  232. 	if err != nil {

  233. 		ctx.Error(http.StatusInternalServerError, "ChangeOrgUserStatus", err)

  234. 		return

  235. 	}

  236. 	ctx.Status(http.StatusNoContent)

  237. }

  238. 

  239. // ConcealMember make a member's membership not public

  240. func ConcealMember(ctx *context.APIContext) {

  241. 	// swagger:operation DELETE /orgs/{org}/public_members/{username} organization orgConcealMember

  242. 	// ---

  243. 	// summary: Conceal a user's membership

  244. 	// produces:

  245. 	// - application/json

  246. 	// parameters:

  247. 	// - name: org

  248. 	//   in: path

  249. 	//   description: name of the organization

  250. 	//   type: string

  251. 	//   required: true

  252. 	// - name: username

  253. 	//   in: path

  254. 	//   description: username of the user

  255. 	//   type: string

  256. 	//   required: true

  257. 	// responses:

  258. 	//   "204":

  259. 	//     "$ref": "#/responses/empty"

  260. 	//   "403":

  261. 	//     "$ref": "#/responses/forbidden"

  262. 

  263. 	userToConceal := user.GetUserByParams(ctx)

  264. 	if ctx.Written() {

  265. 		return

  266. 	}

  267. 	if userToConceal.ID != ctx.User.ID {

  268. 		ctx.Error(http.StatusForbidden, "", "Cannot conceal another member")

  269. 		return

  270. 	}

  271. 	err := models.ChangeOrgUserStatus(ctx.Org.Organization.ID, userToConceal.ID, false)

  272. 	if err != nil {

  273. 		ctx.Error(http.StatusInternalServerError, "ChangeOrgUserStatus", err)

  274. 		return

  275. 	}

  276. 	ctx.Status(http.StatusNoContent)

  277. }

  278. 

  279. // DeleteMember remove a member from an organization

  280. func DeleteMember(ctx *context.APIContext) {

  281. 	// swagger:operation DELETE /orgs/{org}/members/{username} organization orgDeleteMember

  282. 	// ---

  283. 	// summary: Remove a member from an organization

  284. 	// produces:

  285. 	// - application/json

  286. 	// parameters:

  287. 	// - name: org

  288. 	//   in: path

  289. 	//   description: name of the organization

  290. 	//   type: string

  291. 	//   required: true

  292. 	// - name: username

  293. 	//   in: path

  294. 	//   description: username of the user

  295. 	//   type: string

  296. 	//   required: true

  297. 	// responses:

  298. 	//   "204":

  299. 	//     description: member removed

  300. 

  301. 	member := user.GetUserByParams(ctx)

  302. 	if ctx.Written() {

  303. 		return

  304. 	}

  305. 	if err := ctx.Org.Organization.RemoveMember(member.ID); err != nil {

  306. 		ctx.Error(http.StatusInternalServerError, "RemoveMember", err)

  307. 	}

  308. 	ctx.Status(http.StatusNoContent)

  309. }