mirrors
/
gitea
огледало од https://github.com/go-gitea/gitea.git
Прати 1
Волим 0
Креирај огранак 0
Код Дискусије 0 Издања 211 Вики Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8713 Комити
17 Гране
Дрво: 6baa5d7588
Гране Ознаке
${ item.name }
Create branch ${ searchTerm }
from '6baa5d7588'
${ noResults }
gitea/routers/api/v1/admin/user.go

user.go 8.9KB
Датотека Blame Историја

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353 
  1. // Copyright 2015 The Gogs Authors. All rights reserved.

  2. // Copyright 2019 The Gitea Authors. All rights reserved.

  3. // Use of this source code is governed by a MIT-style

  4. // license that can be found in the LICENSE file.

  5. 

  6. package admin

  7. 

  8. import (

  9. 	"errors"

  10. 	"net/http"

  11. 

  12. 	"code.gitea.io/gitea/models"

  13. 	"code.gitea.io/gitea/modules/context"

  14. 	"code.gitea.io/gitea/modules/convert"

  15. 	"code.gitea.io/gitea/modules/log"

  16. 	"code.gitea.io/gitea/modules/password"

  17. 	api "code.gitea.io/gitea/modules/structs"

  18. 	"code.gitea.io/gitea/routers/api/v1/user"

  19. 	"code.gitea.io/gitea/services/mailer"

  20. )

  21. 

  22. func parseLoginSource(ctx *context.APIContext, u *models.User, sourceID int64, loginName string) {

  23. 	if sourceID == 0 {

  24. 		return

  25. 	}

  26. 

  27. 	source, err := models.GetLoginSourceByID(sourceID)

  28. 	if err != nil {

  29. 		if models.IsErrLoginSourceNotExist(err) {

  30. 			ctx.Error(http.StatusUnprocessableEntity, "", err)

  31. 		} else {

  32. 			ctx.Error(http.StatusInternalServerError, "GetLoginSourceByID", err)

  33. 		}

  34. 		return

  35. 	}

  36. 

  37. 	u.LoginType = source.Type

  38. 	u.LoginSource = source.ID

  39. 	u.LoginName = loginName

  40. }

  41. 

  42. // CreateUser create a user

  43. func CreateUser(ctx *context.APIContext, form api.CreateUserOption) {

  44. 	// swagger:operation POST /admin/users admin adminCreateUser

  45. 	// ---

  46. 	// summary: Create a user

  47. 	// consumes:

  48. 	// - application/json

  49. 	// produces:

  50. 	// - application/json

  51. 	// parameters:

  52. 	// - name: body

  53. 	//   in: body

  54. 	//   schema:

  55. 	//     "$ref": "#/definitions/CreateUserOption"

  56. 	// responses:

  57. 	//   "201":

  58. 	//     "$ref": "#/responses/User"

  59. 	//   "400":

  60. 	//     "$ref": "#/responses/error"

  61. 	//   "403":

  62. 	//     "$ref": "#/responses/forbidden"

  63. 	//   "422":

  64. 	//     "$ref": "#/responses/validationError"

  65. 

  66. 	u := &models.User{

  67. 		Name:               form.Username,

  68. 		FullName:           form.FullName,

  69. 		Email:              form.Email,

  70. 		Passwd:             form.Password,

  71. 		MustChangePassword: true,

  72. 		IsActive:           true,

  73. 		LoginType:          models.LoginPlain,

  74. 	}

  75. 	if form.MustChangePassword != nil {

  76. 		u.MustChangePassword = *form.MustChangePassword

  77. 	}

  78. 

  79. 	parseLoginSource(ctx, u, form.SourceID, form.LoginName)

  80. 	if ctx.Written() {

  81. 		return

  82. 	}

  83. 	if !password.IsComplexEnough(form.Password) {

  84. 		err := errors.New("PasswordComplexity")

  85. 		ctx.Error(http.StatusBadRequest, "PasswordComplexity", err)

  86. 		return

  87. 	}

  88. 	if err := models.CreateUser(u); err != nil {

  89. 		if models.IsErrUserAlreadyExist(err) ||

  90. 			models.IsErrEmailAlreadyUsed(err) ||

  91. 			models.IsErrNameReserved(err) ||

  92. 			models.IsErrNamePatternNotAllowed(err) {

  93. 			ctx.Error(http.StatusUnprocessableEntity, "", err)

  94. 		} else {

  95. 			ctx.Error(http.StatusInternalServerError, "CreateUser", err)

  96. 		}

  97. 		return

  98. 	}

  99. 	log.Trace("Account created by admin (%s): %s", ctx.User.Name, u.Name)

  100. 

  101. 	// Send email notification.

  102. 	if form.SendNotify {

  103. 		mailer.SendRegisterNotifyMail(ctx.Locale, u)

  104. 	}

  105. 	ctx.JSON(http.StatusCreated, convert.ToUser(u, ctx.IsSigned, ctx.User.IsAdmin))

  106. }

  107. 

  108. // EditUser api for modifying a user's information

  109. func EditUser(ctx *context.APIContext, form api.EditUserOption) {

  110. 	// swagger:operation PATCH /admin/users/{username} admin adminEditUser

  111. 	// ---

  112. 	// summary: Edit an existing user

  113. 	// consumes:

  114. 	// - application/json

  115. 	// produces:

  116. 	// - application/json

  117. 	// parameters:

  118. 	// - name: username

  119. 	//   in: path

  120. 	//   description: username of user to edit

  121. 	//   type: string

  122. 	//   required: true

  123. 	// - name: body

  124. 	//   in: body

  125. 	//   schema:

  126. 	//     "$ref": "#/definitions/EditUserOption"

  127. 	// responses:

  128. 	//   "200":

  129. 	//     "$ref": "#/responses/User"

  130. 	//   "403":

  131. 	//     "$ref": "#/responses/forbidden"

  132. 	//   "422":

  133. 	//     "$ref": "#/responses/validationError"

  134. 

  135. 	u := user.GetUserByParams(ctx)

  136. 	if ctx.Written() {

  137. 		return

  138. 	}

  139. 

  140. 	parseLoginSource(ctx, u, form.SourceID, form.LoginName)

  141. 	if ctx.Written() {

  142. 		return

  143. 	}

  144. 

  145. 	if len(form.Password) > 0 {

  146. 		if !password.IsComplexEnough(form.Password) {

  147. 			err := errors.New("PasswordComplexity")

  148. 			ctx.Error(http.StatusBadRequest, "PasswordComplexity", err)

  149. 			return

  150. 		}

  151. 		var err error

  152. 		if u.Salt, err = models.GetUserSalt(); err != nil {

  153. 			ctx.Error(http.StatusInternalServerError, "UpdateUser", err)

  154. 			return

  155. 		}

  156. 		u.HashPassword(form.Password)

  157. 	}

  158. 

  159. 	if form.MustChangePassword != nil {

  160. 		u.MustChangePassword = *form.MustChangePassword

  161. 	}

  162. 

  163. 	u.LoginName = form.LoginName

  164. 	u.FullName = form.FullName

  165. 	u.Email = form.Email

  166. 	u.Website = form.Website

  167. 	u.Location = form.Location

  168. 	if form.Active != nil {

  169. 		u.IsActive = *form.Active

  170. 	}

  171. 	if form.Admin != nil {

  172. 		u.IsAdmin = *form.Admin

  173. 	}

  174. 	if form.AllowGitHook != nil {

  175. 		u.AllowGitHook = *form.AllowGitHook

  176. 	}

  177. 	if form.AllowImportLocal != nil {

  178. 		u.AllowImportLocal = *form.AllowImportLocal

  179. 	}

  180. 	if form.MaxRepoCreation != nil {

  181. 		u.MaxRepoCreation = *form.MaxRepoCreation

  182. 	}

  183. 	if form.AllowCreateOrganization != nil {

  184. 		u.AllowCreateOrganization = *form.AllowCreateOrganization

  185. 	}

  186. 	if form.ProhibitLogin != nil {

  187. 		u.ProhibitLogin = *form.ProhibitLogin

  188. 	}

  189. 

  190. 	if err := models.UpdateUser(u); err != nil {

  191. 		if models.IsErrEmailAlreadyUsed(err) {

  192. 			ctx.Error(http.StatusUnprocessableEntity, "", err)

  193. 		} else {

  194. 			ctx.Error(http.StatusInternalServerError, "UpdateUser", err)

  195. 		}

  196. 		return

  197. 	}

  198. 	log.Trace("Account profile updated by admin (%s): %s", ctx.User.Name, u.Name)

  199. 

  200. 	ctx.JSON(http.StatusOK, convert.ToUser(u, ctx.IsSigned, ctx.User.IsAdmin))

  201. }

  202. 

  203. // DeleteUser api for deleting a user

  204. func DeleteUser(ctx *context.APIContext) {

  205. 	// swagger:operation DELETE /admin/users/{username} admin adminDeleteUser

  206. 	// ---

  207. 	// summary: Delete a user

  208. 	// produces:

  209. 	// - application/json

  210. 	// parameters:

  211. 	// - name: username

  212. 	//   in: path

  213. 	//   description: username of user to delete

  214. 	//   type: string

  215. 	//   required: true

  216. 	// responses:

  217. 	//   "204":

  218. 	//     "$ref": "#/responses/empty"

  219. 	//   "403":

  220. 	//     "$ref": "#/responses/forbidden"

  221. 	//   "422":

  222. 	//     "$ref": "#/responses/validationError"

  223. 

  224. 	u := user.GetUserByParams(ctx)

  225. 	if ctx.Written() {

  226. 		return

  227. 	}

  228. 

  229. 	if err := models.DeleteUser(u); err != nil {

  230. 		if models.IsErrUserOwnRepos(err) ||

  231. 			models.IsErrUserHasOrgs(err) {

  232. 			ctx.Error(http.StatusUnprocessableEntity, "", err)

  233. 		} else {

  234. 			ctx.Error(http.StatusInternalServerError, "DeleteUser", err)

  235. 		}

  236. 		return

  237. 	}

  238. 	log.Trace("Account deleted by admin(%s): %s", ctx.User.Name, u.Name)

  239. 

  240. 	ctx.Status(http.StatusNoContent)

  241. }

  242. 

  243. // CreatePublicKey api for creating a public key to a user

  244. func CreatePublicKey(ctx *context.APIContext, form api.CreateKeyOption) {

  245. 	// swagger:operation POST /admin/users/{username}/keys admin adminCreatePublicKey

  246. 	// ---

  247. 	// summary: Add a public key on behalf of a user

  248. 	// consumes:

  249. 	// - application/json

  250. 	// produces:

  251. 	// - application/json

  252. 	// parameters:

  253. 	// - name: username

  254. 	//   in: path

  255. 	//   description: username of the user

  256. 	//   type: string

  257. 	//   required: true

  258. 	// - name: key

  259. 	//   in: body

  260. 	//   schema:

  261. 	//     "$ref": "#/definitions/CreateKeyOption"

  262. 	// responses:

  263. 	//   "201":

  264. 	//     "$ref": "#/responses/PublicKey"

  265. 	//   "403":

  266. 	//     "$ref": "#/responses/forbidden"

  267. 	//   "422":

  268. 	//     "$ref": "#/responses/validationError"

  269. 

  270. 	u := user.GetUserByParams(ctx)

  271. 	if ctx.Written() {

  272. 		return

  273. 	}

  274. 	user.CreateUserPublicKey(ctx, form, u.ID)

  275. }

  276. 

  277. // DeleteUserPublicKey api for deleting a user's public key

  278. func DeleteUserPublicKey(ctx *context.APIContext) {

  279. 	// swagger:operation DELETE /admin/users/{username}/keys/{id} admin adminDeleteUserPublicKey

  280. 	// ---

  281. 	// summary: Delete a user's public key

  282. 	// produces:

  283. 	// - application/json

  284. 	// parameters:

  285. 	// - name: username

  286. 	//   in: path

  287. 	//   description: username of user

  288. 	//   type: string

  289. 	//   required: true

  290. 	// - name: id

  291. 	//   in: path

  292. 	//   description: id of the key to delete

  293. 	//   type: integer

  294. 	//   format: int64

  295. 	//   required: true

  296. 	// responses:

  297. 	//   "204":

  298. 	//     "$ref": "#/responses/empty"

  299. 	//   "403":

  300. 	//     "$ref": "#/responses/forbidden"

  301. 	//   "404":

  302. 	//     "$ref": "#/responses/notFound"

  303. 

  304. 	u := user.GetUserByParams(ctx)

  305. 	if ctx.Written() {

  306. 		return

  307. 	}

  308. 

  309. 	if err := models.DeletePublicKey(u, ctx.ParamsInt64(":id")); err != nil {

  310. 		if models.IsErrKeyNotExist(err) {

  311. 			ctx.NotFound()

  312. 		} else if models.IsErrKeyAccessDenied(err) {

  313. 			ctx.Error(http.StatusForbidden, "", "You do not have access to this key")

  314. 		} else {

  315. 			ctx.Error(http.StatusInternalServerError, "DeleteUserPublicKey", err)

  316. 		}

  317. 		return

  318. 	}

  319. 	log.Trace("Key deleted by admin(%s): %s", ctx.User.Name, u.Name)

  320. 

  321. 	ctx.Status(http.StatusNoContent)

  322. }

  323. 

  324. //GetAllUsers API for getting information of all the users

  325. func GetAllUsers(ctx *context.APIContext) {

  326. 	// swagger:operation GET /admin/users admin adminGetAllUsers

  327. 	// ---

  328. 	// summary: List all users

  329. 	// produces:

  330. 	// - application/json

  331. 	// responses:

  332. 	//   "200":

  333. 	//     "$ref": "#/responses/UserList"

  334. 	//   "403":

  335. 	//     "$ref": "#/responses/forbidden"

  336. 

  337. 	users, _, err := models.SearchUsers(&models.SearchUserOptions{

  338. 		Type:     models.UserTypeIndividual,

  339. 		OrderBy:  models.SearchOrderByAlphabetically,

  340. 		PageSize: -1,

  341. 	})

  342. 	if err != nil {

  343. 		ctx.Error(http.StatusInternalServerError, "GetAllUsers", err)

  344. 		return

  345. 	}

  346. 

  347. 	results := make([]*api.User, len(users))

  348. 	for i := range users {

  349. 		results[i] = convert.ToUser(users[i], ctx.IsSigned, ctx.User.IsAdmin)

  350. 	}

  351. 

  352. 	ctx.JSON(http.StatusOK, &results)

  353. }