mirrors
/
gitea
mirror of https://github.com/go-gitea/gitea.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 211 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2756 Commits
17 Branches
Tree: aa67de910a
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'aa67de910a'
${ noResults }
gitea/models/org.go

org.go 24KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990991992993994995996997998999100010011002100310041005100610071008100910101011101210131014101510161017101810191020 
  1. // Copyright 2014 The Gogs Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. package models

  6. 

  7. import (

  8. 	"errors"

  9. 	"fmt"

  10. 	"os"

  11. 	"strings"

  12. 

  13. 	"github.com/gogits/gogs/modules/base"

  14. )

  15. 

  16. var (

  17. 	ErrOrgNotExist      = errors.New("Organization does not exist")

  18. 	ErrTeamAlreadyExist = errors.New("Team already exist")

  19. 	ErrTeamNotExist     = errors.New("Team does not exist")

  20. 	ErrTeamNameIllegal  = errors.New("Team name contains illegal characters")

  21. )

  22. 

  23. // IsOwnedBy returns true if given user is in the owner team.

  24. func (org *User) IsOwnedBy(uid int64) bool {

  25. 	return IsOrganizationOwner(org.Id, uid)

  26. }

  27. 

  28. // IsOrgMember returns true if given user is member of organization.

  29. func (org *User) IsOrgMember(uid int64) bool {

  30. 	return org.IsOrganization() && IsOrganizationMember(org.Id, uid)

  31. }

  32. 

  33. func (org *User) getTeam(e Engine, name string) (*Team, error) {

  34. 	return getTeam(e, org.Id, name)

  35. }

  36. 

  37. // GetTeam returns named team of organization.

  38. func (org *User) GetTeam(name string) (*Team, error) {

  39. 	return org.getTeam(x, name)

  40. }

  41. 

  42. func (org *User) getOwnerTeam(e Engine) (*Team, error) {

  43. 	return org.getTeam(e, OWNER_TEAM)

  44. }

  45. 

  46. // GetOwnerTeam returns owner team of organization.

  47. func (org *User) GetOwnerTeam() (*Team, error) {

  48. 	return org.getOwnerTeam(x)

  49. }

  50. 

  51. func (org *User) getTeams(e Engine) error {

  52. 	return e.Where("org_id=?", org.Id).Find(&org.Teams)

  53. }

  54. 

  55. // GetTeams returns all teams that belong to organization.

  56. func (org *User) GetTeams() error {

  57. 	return org.getTeams(x)

  58. }

  59. 

  60. // GetMembers returns all members of organization.

  61. func (org *User) GetMembers() error {

  62. 	ous, err := GetOrgUsersByOrgId(org.Id)

  63. 	if err != nil {

  64. 		return err

  65. 	}

  66. 

  67. 	org.Members = make([]*User, len(ous))

  68. 	for i, ou := range ous {

  69. 		org.Members[i], err = GetUserByID(ou.Uid)

  70. 		if err != nil {

  71. 			return err

  72. 		}

  73. 	}

  74. 	return nil

  75. }

  76. 

  77. // AddMember adds new member to organization.

  78. func (org *User) AddMember(uid int64) error {

  79. 	return AddOrgUser(org.Id, uid)

  80. }

  81. 

  82. // RemoveMember removes member from organization.

  83. func (org *User) RemoveMember(uid int64) error {

  84. 	return RemoveOrgUser(org.Id, uid)

  85. }

  86. 

  87. func (org *User) removeOrgRepo(e Engine, repoID int64) error {

  88. 	return removeOrgRepo(e, org.Id, repoID)

  89. }

  90. 

  91. // RemoveOrgRepo removes all team-repository relations of organization.

  92. func (org *User) RemoveOrgRepo(repoID int64) error {

  93. 	return org.removeOrgRepo(x, repoID)

  94. }

  95. 

  96. // IsOrgEmailUsed returns true if the e-mail has been used in organization account.

  97. func IsOrgEmailUsed(email string) (bool, error) {

  98. 	if len(email) == 0 {

  99. 		return false, nil

  100. 	}

  101. 	return x.Get(&User{

  102. 		Email: email,

  103. 		Type:  ORGANIZATION,

  104. 	})

  105. }

  106. 

  107. // CreateOrganization creates record of a new organization.

  108. func CreateOrganization(org, owner *User) (err error) {

  109. 	if err = IsUsableName(org.Name); err != nil {

  110. 		return err

  111. 	}

  112. 

  113. 	isExist, err := IsUserExist(0, org.Name)

  114. 	if err != nil {

  115. 		return err

  116. 	} else if isExist {

  117. 		return ErrUserAlreadyExist{org.Name}

  118. 	}

  119. 

  120. 	isExist, err = IsOrgEmailUsed(org.Email)

  121. 	if err != nil {

  122. 		return err

  123. 	} else if isExist {

  124. 		return ErrEmailAlreadyUsed{org.Email}

  125. 	}

  126. 

  127. 	org.LowerName = strings.ToLower(org.Name)

  128. 	org.FullName = org.Name

  129. 	org.Avatar = base.EncodeMd5(org.Email)

  130. 	org.AvatarEmail = org.Email

  131. 	// No password for organization.

  132. 	org.NumTeams = 1

  133. 	org.NumMembers = 1

  134. 

  135. 	sess := x.NewSession()

  136. 	defer sessionRelease(sess)

  137. 	if err = sess.Begin(); err != nil {

  138. 		return err

  139. 	}

  140. 

  141. 	if _, err = sess.Insert(org); err != nil {

  142. 		return fmt.Errorf("insert organization: %v", err)

  143. 	}

  144. 

  145. 	// Create default owner team.

  146. 	t := &Team{

  147. 		OrgID:      org.Id,

  148. 		LowerName:  strings.ToLower(OWNER_TEAM),

  149. 		Name:       OWNER_TEAM,

  150. 		Authorize:  ACCESS_MODE_OWNER,

  151. 		NumMembers: 1,

  152. 	}

  153. 	if _, err = sess.Insert(t); err != nil {

  154. 		return fmt.Errorf("insert owner team: %v", err)

  155. 	}

  156. 

  157. 	// Add initial creator to organization and owner team.

  158. 	ou := &OrgUser{

  159. 		Uid:      owner.Id,

  160. 		OrgID:    org.Id,

  161. 		IsOwner:  true,

  162. 		NumTeams: 1,

  163. 	}

  164. 	if _, err = sess.Insert(ou); err != nil {

  165. 		return fmt.Errorf("insert org-user relation: %v", err)

  166. 	}

  167. 

  168. 	tu := &TeamUser{

  169. 		Uid:    owner.Id,

  170. 		OrgID:  org.Id,

  171. 		TeamID: t.ID,

  172. 	}

  173. 	if _, err = sess.Insert(tu); err != nil {

  174. 		return fmt.Errorf("insert team-user relation: %v", err)

  175. 	}

  176. 

  177. 	if err = os.MkdirAll(UserPath(org.Name), os.ModePerm); err != nil {

  178. 		return fmt.Errorf("create directory: %v", err)

  179. 	}

  180. 

  181. 	return sess.Commit()

  182. }

  183. 

  184. // GetOrgByName returns organization by given name.

  185. func GetOrgByName(name string) (*User, error) {

  186. 	if len(name) == 0 {

  187. 		return nil, ErrOrgNotExist

  188. 	}

  189. 	u := &User{

  190. 		LowerName: strings.ToLower(name),

  191. 		Type:      ORGANIZATION,

  192. 	}

  193. 	has, err := x.Get(u)

  194. 	if err != nil {

  195. 		return nil, err

  196. 	} else if !has {

  197. 		return nil, ErrOrgNotExist

  198. 	}

  199. 	return u, nil

  200. }

  201. 

  202. // CountOrganizations returns number of organizations.

  203. func CountOrganizations() int64 {

  204. 	count, _ := x.Where("type=1").Count(new(User))

  205. 	return count

  206. }

  207. 

  208. // GetOrganizations returns given number of organizations with offset.

  209. func GetOrganizations(num, offset int) ([]*User, error) {

  210. 	orgs := make([]*User, 0, num)

  211. 	err := x.Limit(num, offset).Where("type=1").Asc("id").Find(&orgs)

  212. 	return orgs, err

  213. }

  214. 

  215. // DeleteOrganization completely and permanently deletes everything of organization.

  216. func DeleteOrganization(org *User) (err error) {

  217. 	if err := DeleteUser(org); err != nil {

  218. 		return err

  219. 	}

  220. 

  221. 	sess := x.NewSession()

  222. 	defer sessionRelease(sess)

  223. 	if err = sess.Begin(); err != nil {

  224. 		return err

  225. 	}

  226. 

  227. 	if err = deleteBeans(sess,

  228. 		&Team{OrgID: org.Id},

  229. 		&OrgUser{OrgID: org.Id},

  230. 		&TeamUser{OrgID: org.Id},

  231. 	); err != nil {

  232. 		return fmt.Errorf("deleteBeans: %v", err)

  233. 	}

  234. 

  235. 	if err = deleteUser(sess, org); err != nil {

  236. 		return fmt.Errorf("deleteUser: %v", err)

  237. 	}

  238. 

  239. 	return sess.Commit()

  240. }

  241. 

  242. // ________                ____ ___

  243. // \_____  \_______  ____ |    |   \______ ___________

  244. //  /   |   \_  __ \/ ___\|    |   /  ___// __ \_  __ \

  245. // /    |    \  | \/ /_/  >    |  /\___ \\  ___/|  | \/

  246. // \_______  /__|  \___  /|______//____  >\___  >__|

  247. //         \/     /_____/              \/     \/

  248. 

  249. // OrgUser represents an organization-user relation.

  250. type OrgUser struct {

  251. 	ID       int64 `xorm:"pk autoincr"`

  252. 	Uid      int64 `xorm:"INDEX UNIQUE(s)"`

  253. 	OrgID    int64 `xorm:"INDEX UNIQUE(s)"`

  254. 	IsPublic bool

  255. 	IsOwner  bool

  256. 	NumTeams int

  257. }

  258. 

  259. // IsOrganizationOwner returns true if given user is in the owner team.

  260. func IsOrganizationOwner(orgId, uid int64) bool {

  261. 	has, _ := x.Where("is_owner=?", true).And("uid=?", uid).And("org_id=?", orgId).Get(new(OrgUser))

  262. 	return has

  263. }

  264. 

  265. // IsOrganizationMember returns true if given user is member of organization.

  266. func IsOrganizationMember(orgId, uid int64) bool {

  267. 	has, _ := x.Where("uid=?", uid).And("org_id=?", orgId).Get(new(OrgUser))

  268. 	return has

  269. }

  270. 

  271. // IsPublicMembership returns true if given user public his/her membership.

  272. func IsPublicMembership(orgId, uid int64) bool {

  273. 	has, _ := x.Where("uid=?", uid).And("org_id=?", orgId).And("is_public=?", true).Get(new(OrgUser))

  274. 	return has

  275. }

  276. 

  277. // GetOrgUsersByUserId returns all organization-user relations by user ID.

  278. func GetOrgUsersByUserId(uid int64) ([]*OrgUser, error) {

  279. 	ous := make([]*OrgUser, 0, 10)

  280. 	err := x.Where("uid=?", uid).Find(&ous)

  281. 	return ous, err

  282. }

  283. 

  284. // GetOrgUsersByOrgId returns all organization-user relations by organization ID.

  285. func GetOrgUsersByOrgId(orgId int64) ([]*OrgUser, error) {

  286. 	ous := make([]*OrgUser, 0, 10)

  287. 	err := x.Where("org_id=?", orgId).Find(&ous)

  288. 	return ous, err

  289. }

  290. 

  291. // ChangeOrgUserStatus changes public or private membership status.

  292. func ChangeOrgUserStatus(orgId, uid int64, public bool) error {

  293. 	ou := new(OrgUser)

  294. 	has, err := x.Where("uid=?", uid).And("org_id=?", orgId).Get(ou)

  295. 	if err != nil {

  296. 		return err

  297. 	} else if !has {

  298. 		return nil

  299. 	}

  300. 

  301. 	ou.IsPublic = public

  302. 	_, err = x.Id(ou.ID).AllCols().Update(ou)

  303. 	return err

  304. }

  305. 

  306. // AddOrgUser adds new user to given organization.

  307. func AddOrgUser(orgId, uid int64) error {

  308. 	if IsOrganizationMember(orgId, uid) {

  309. 		return nil

  310. 	}

  311. 

  312. 	sess := x.NewSession()

  313. 	defer sess.Close()

  314. 	if err := sess.Begin(); err != nil {

  315. 		return err

  316. 	}

  317. 

  318. 	ou := &OrgUser{

  319. 		Uid:   uid,

  320. 		OrgID: orgId,

  321. 	}

  322. 

  323. 	if _, err := sess.Insert(ou); err != nil {

  324. 		sess.Rollback()

  325. 		return err

  326. 	} else if _, err = sess.Exec("UPDATE `user` SET num_members = num_members + 1 WHERE id = ?", orgId); err != nil {

  327. 		sess.Rollback()

  328. 		return err

  329. 	}

  330. 

  331. 	return sess.Commit()

  332. }

  333. 

  334. // RemoveOrgUser removes user from given organization.

  335. func RemoveOrgUser(orgId, uid int64) error {

  336. 	ou := new(OrgUser)

  337. 

  338. 	has, err := x.Where("uid=?", uid).And("org_id=?", orgId).Get(ou)

  339. 	if err != nil {

  340. 		return fmt.Errorf("get org-user: %v", err)

  341. 	} else if !has {

  342. 		return nil

  343. 	}

  344. 

  345. 	u, err := GetUserByID(uid)

  346. 	if err != nil {

  347. 		return fmt.Errorf("GetUserById: %v", err)

  348. 	}

  349. 	org, err := GetUserByID(orgId)

  350. 	if err != nil {

  351. 		return fmt.Errorf("get organization: %v", err)

  352. 	} else if err = org.GetRepositories(); err != nil {

  353. 		return fmt.Errorf("GetRepositories: %v", err)

  354. 	}

  355. 

  356. 	// Check if the user to delete is the last member in owner team.

  357. 	if IsOrganizationOwner(orgId, uid) {

  358. 		t, err := org.GetOwnerTeam()

  359. 		if err != nil {

  360. 			return err

  361. 		}

  362. 		if t.NumMembers == 1 {

  363. 			return ErrLastOrgOwner{UID: uid}

  364. 		}

  365. 	}

  366. 

  367. 	sess := x.NewSession()

  368. 	defer sessionRelease(sess)

  369. 	if err := sess.Begin(); err != nil {

  370. 		return err

  371. 	}

  372. 

  373. 	if _, err := sess.Id(ou.ID).Delete(ou); err != nil {

  374. 		return err

  375. 	} else if _, err = sess.Exec("UPDATE `user` SET num_members=num_members-1 WHERE id=?", orgId); err != nil {

  376. 		return err

  377. 	}

  378. 

  379. 	// Delete all repository accesses.

  380. 	access := &Access{UserID: u.Id}

  381. 	for _, repo := range org.Repos {

  382. 		access.RepoID = repo.ID

  383. 		if _, err = sess.Delete(access); err != nil {

  384. 			return err

  385. 		} else if err = watchRepo(sess, u.Id, repo.ID, false); err != nil {

  386. 			return err

  387. 		}

  388. 	}

  389. 

  390. 	// Delete member in his/her teams.

  391. 	teams, err := getUserTeams(sess, org.Id, u.Id)

  392. 	if err != nil {

  393. 		return err

  394. 	}

  395. 	for _, t := range teams {

  396. 		if err = removeTeamMember(sess, org.Id, t.ID, u.Id); err != nil {

  397. 			return err

  398. 		}

  399. 	}

  400. 

  401. 	return sess.Commit()

  402. }

  403. 

  404. // ___________

  405. // \__    ___/___ _____    _____

  406. //   |    |_/ __ \\__  \  /     \

  407. //   |    |\  ___/ / __ \|  Y Y  \

  408. //   |____| \___  >____  /__|_|  /

  409. //              \/     \/      \/

  410. 

  411. const OWNER_TEAM = "Owners"

  412. 

  413. // Team represents a organization team.

  414. type Team struct {

  415. 	ID          int64 `xorm:"pk autoincr"`

  416. 	OrgID       int64 `xorm:"INDEX"`

  417. 	LowerName   string

  418. 	Name        string

  419. 	Description string

  420. 	Authorize   AccessMode

  421. 	Repos       []*Repository `xorm:"-"`

  422. 	Members     []*User       `xorm:"-"`

  423. 	NumRepos    int

  424. 	NumMembers  int

  425. }

  426. 

  427. // IsOwnerTeam returns true if team is owner team.

  428. func (t *Team) IsOwnerTeam() bool {

  429. 	return t.Name == OWNER_TEAM

  430. }

  431. 

  432. // IsTeamMember returns true if given user is a member of team.

  433. func (t *Team) IsMember(uid int64) bool {

  434. 	return IsTeamMember(t.OrgID, t.ID, uid)

  435. }

  436. 

  437. func (t *Team) getRepositories(e Engine) (err error) {

  438. 	teamRepos := make([]*TeamRepo, 0, t.NumRepos)

  439. 	if err = x.Where("team_id=?", t.ID).Find(&teamRepos); err != nil {

  440. 		return fmt.Errorf("get team-repos: %v", err)

  441. 	}

  442. 

  443. 	t.Repos = make([]*Repository, 0, len(teamRepos))

  444. 	for i := range teamRepos {

  445. 		repo, err := getRepositoryByID(e, teamRepos[i].RepoID)

  446. 		if err != nil {

  447. 			return fmt.Errorf("getRepositoryById(%d): %v", teamRepos[i].RepoID, err)

  448. 		}

  449. 		t.Repos = append(t.Repos, repo)

  450. 	}

  451. 	return nil

  452. }

  453. 

  454. // GetRepositories returns all repositories in team of organization.

  455. func (t *Team) GetRepositories() error {

  456. 	return t.getRepositories(x)

  457. }

  458. 

  459. func (t *Team) getMembers(e Engine) (err error) {

  460. 	t.Members, err = getTeamMembers(e, t.ID)

  461. 	return err

  462. }

  463. 

  464. // GetMembers returns all members in team of organization.

  465. func (t *Team) GetMembers() (err error) {

  466. 	return t.getMembers(x)

  467. }

  468. 

  469. // AddMember adds new member to team of organization.

  470. func (t *Team) AddMember(uid int64) error {

  471. 	return AddTeamMember(t.OrgID, t.ID, uid)

  472. }

  473. 

  474. // RemoveMember removes member from team of organization.

  475. func (t *Team) RemoveMember(uid int64) error {

  476. 	return RemoveTeamMember(t.OrgID, t.ID, uid)

  477. }

  478. 

  479. func (t *Team) hasRepository(e Engine, repoID int64) bool {

  480. 	return hasTeamRepo(e, t.OrgID, t.ID, repoID)

  481. }

  482. 

  483. // HasRepository returns true if given repository belong to team.

  484. func (t *Team) HasRepository(repoID int64) bool {

  485. 	return t.hasRepository(x, repoID)

  486. }

  487. 

  488. func (t *Team) addRepository(e Engine, repo *Repository) (err error) {

  489. 	if err = addTeamRepo(e, t.OrgID, t.ID, repo.ID); err != nil {

  490. 		return err

  491. 	}

  492. 

  493. 	t.NumRepos++

  494. 	if _, err = e.Id(t.ID).AllCols().Update(t); err != nil {

  495. 		return fmt.Errorf("update team: %v", err)

  496. 	}

  497. 

  498. 	if err = repo.recalculateTeamAccesses(e, 0); err != nil {

  499. 		return fmt.Errorf("recalculateAccesses: %v", err)

  500. 	}

  501. 

  502. 	if err = t.getMembers(e); err != nil {

  503. 		return fmt.Errorf("getMembers: %v", err)

  504. 	}

  505. 	for _, u := range t.Members {

  506. 		if err = watchRepo(e, u.Id, repo.ID, true); err != nil {

  507. 			return fmt.Errorf("watchRepo: %v", err)

  508. 		}

  509. 	}

  510. 	return nil

  511. }

  512. 

  513. // AddRepository adds new repository to team of organization.

  514. func (t *Team) AddRepository(repo *Repository) (err error) {

  515. 	if repo.OwnerID != t.OrgID {

  516. 		return errors.New("Repository does not belong to organization")

  517. 	} else if t.HasRepository(repo.ID) {

  518. 		return nil

  519. 	}

  520. 

  521. 	sess := x.NewSession()

  522. 	defer sessionRelease(sess)

  523. 	if err = sess.Begin(); err != nil {

  524. 		return err

  525. 	}

  526. 

  527. 	if err = t.addRepository(sess, repo); err != nil {

  528. 		return err

  529. 	}

  530. 

  531. 	return sess.Commit()

  532. }

  533. 

  534. func (t *Team) removeRepository(e Engine, repo *Repository, recalculate bool) (err error) {

  535. 	if err = removeTeamRepo(e, t.ID, repo.ID); err != nil {

  536. 		return err

  537. 	}

  538. 

  539. 	t.NumRepos--

  540. 	if _, err = e.Id(t.ID).AllCols().Update(t); err != nil {

  541. 		return err

  542. 	}

  543. 

  544. 	// Don't need to recalculate when delete a repository from organization.

  545. 	if recalculate {

  546. 		if err = repo.recalculateTeamAccesses(e, t.ID); err != nil {

  547. 			return err

  548. 		}

  549. 	}

  550. 

  551. 	if err = t.getMembers(e); err != nil {

  552. 		return fmt.Errorf("get team members: %v", err)

  553. 	}

  554. 	for _, u := range t.Members {

  555. 		has, err := hasAccess(e, u, repo, ACCESS_MODE_READ)

  556. 		if err != nil {

  557. 			return err

  558. 		} else if has {

  559. 			continue

  560. 		}

  561. 

  562. 		if err = watchRepo(e, u.Id, repo.ID, false); err != nil {

  563. 			return err

  564. 		}

  565. 	}

  566. 

  567. 	return nil

  568. }

  569. 

  570. // RemoveRepository removes repository from team of organization.

  571. func (t *Team) RemoveRepository(repoID int64) error {

  572. 	if !t.HasRepository(repoID) {

  573. 		return nil

  574. 	}

  575. 

  576. 	repo, err := GetRepositoryByID(repoID)

  577. 	if err != nil {

  578. 		return err

  579. 	}

  580. 

  581. 	sess := x.NewSession()

  582. 	defer sessionRelease(sess)

  583. 	if err = sess.Begin(); err != nil {

  584. 		return err

  585. 	}

  586. 

  587. 	if err = t.removeRepository(sess, repo, true); err != nil {

  588. 		return err

  589. 	}

  590. 

  591. 	return sess.Commit()

  592. }

  593. 

  594. // NewTeam creates a record of new team.

  595. // It's caller's responsibility to assign organization ID.

  596. func NewTeam(t *Team) (err error) {

  597. 	if err = IsUsableName(t.Name); err != nil {

  598. 		return err

  599. 	}

  600. 

  601. 	has, err := x.Id(t.OrgID).Get(new(User))

  602. 	if err != nil {

  603. 		return err

  604. 	} else if !has {

  605. 		return ErrOrgNotExist

  606. 	}

  607. 

  608. 	t.LowerName = strings.ToLower(t.Name)

  609. 	has, err = x.Where("org_id=?", t.OrgID).And("lower_name=?", t.LowerName).Get(new(Team))

  610. 	if err != nil {

  611. 		return err

  612. 	} else if has {

  613. 		return ErrTeamAlreadyExist

  614. 	}

  615. 

  616. 	sess := x.NewSession()

  617. 	defer sess.Close()

  618. 	if err = sess.Begin(); err != nil {

  619. 		return err

  620. 	}

  621. 

  622. 	if _, err = sess.Insert(t); err != nil {

  623. 		sess.Rollback()

  624. 		return err

  625. 	}

  626. 

  627. 	// Update organization number of teams.

  628. 	if _, err = sess.Exec("UPDATE `user` SET num_teams=num_teams+1 WHERE id = ?", t.OrgID); err != nil {

  629. 		sess.Rollback()

  630. 		return err

  631. 	}

  632. 	return sess.Commit()

  633. }

  634. 

  635. func getTeam(e Engine, orgId int64, name string) (*Team, error) {

  636. 	t := &Team{

  637. 		OrgID:     orgId,

  638. 		LowerName: strings.ToLower(name),

  639. 	}

  640. 	has, err := e.Get(t)

  641. 	if err != nil {

  642. 		return nil, err

  643. 	} else if !has {

  644. 		return nil, ErrTeamNotExist

  645. 	}

  646. 	return t, nil

  647. }

  648. 

  649. // GetTeam returns team by given team name and organization.

  650. func GetTeam(orgId int64, name string) (*Team, error) {

  651. 	return getTeam(x, orgId, name)

  652. }

  653. 

  654. func getTeamById(e Engine, teamId int64) (*Team, error) {

  655. 	t := new(Team)

  656. 	has, err := e.Id(teamId).Get(t)

  657. 	if err != nil {

  658. 		return nil, err

  659. 	} else if !has {

  660. 		return nil, ErrTeamNotExist

  661. 	}

  662. 	return t, nil

  663. }

  664. 

  665. // GetTeamById returns team by given ID.

  666. func GetTeamById(teamId int64) (*Team, error) {

  667. 	return getTeamById(x, teamId)

  668. }

  669. 

  670. // UpdateTeam updates information of team.

  671. func UpdateTeam(t *Team, authChanged bool) (err error) {

  672. 	if err = IsUsableName(t.Name); err != nil {

  673. 		return err

  674. 	}

  675. 

  676. 	if len(t.Description) > 255 {

  677. 		t.Description = t.Description[:255]

  678. 	}

  679. 

  680. 	sess := x.NewSession()

  681. 	defer sessionRelease(sess)

  682. 	if err = sess.Begin(); err != nil {

  683. 		return err

  684. 	}

  685. 

  686. 	t.LowerName = strings.ToLower(t.Name)

  687. 	if _, err = sess.Id(t.ID).AllCols().Update(t); err != nil {

  688. 		return fmt.Errorf("update: %v", err)

  689. 	}

  690. 

  691. 	// Update access for team members if needed.

  692. 	if authChanged {

  693. 		if err = t.getRepositories(sess); err != nil {

  694. 			return fmt.Errorf("getRepositories:%v", err)

  695. 		}

  696. 

  697. 		for _, repo := range t.Repos {

  698. 			if err = repo.recalculateTeamAccesses(sess, 0); err != nil {

  699. 				return fmt.Errorf("recalculateTeamAccesses: %v", err)

  700. 			}

  701. 		}

  702. 	}

  703. 

  704. 	return sess.Commit()

  705. }

  706. 

  707. // DeleteTeam deletes given team.

  708. // It's caller's responsibility to assign organization ID.

  709. func DeleteTeam(t *Team) error {

  710. 	if err := t.GetRepositories(); err != nil {

  711. 		return err

  712. 	}

  713. 

  714. 	// Get organization.

  715. 	org, err := GetUserByID(t.OrgID)

  716. 	if err != nil {

  717. 		return err

  718. 	}

  719. 

  720. 	sess := x.NewSession()

  721. 	defer sessionRelease(sess)

  722. 	if err = sess.Begin(); err != nil {

  723. 		return err

  724. 	}

  725. 

  726. 	// Delete all accesses.

  727. 	for _, repo := range t.Repos {

  728. 		if err = repo.recalculateTeamAccesses(sess, t.ID); err != nil {

  729. 			return err

  730. 		}

  731. 	}

  732. 

  733. 	// Delete team-user.

  734. 	if _, err = sess.Where("org_id=?", org.Id).Where("team_id=?", t.ID).Delete(new(TeamUser)); err != nil {

  735. 		return err

  736. 	}

  737. 

  738. 	// Delete team.

  739. 	if _, err = sess.Id(t.ID).Delete(new(Team)); err != nil {

  740. 		return err

  741. 	}

  742. 	// Update organization number of teams.

  743. 	if _, err = sess.Exec("UPDATE `user` SET num_teams=num_teams-1 WHERE id=?", t.OrgID); err != nil {

  744. 		return err

  745. 	}

  746. 

  747. 	return sess.Commit()

  748. }

  749. 

  750. // ___________                    ____ ___

  751. // \__    ___/___ _____    _____ |    |   \______ ___________

  752. //   |    |_/ __ \\__  \  /     \|    |   /  ___// __ \_  __ \

  753. //   |    |\  ___/ / __ \|  Y Y  \    |  /\___ \\  ___/|  | \/

  754. //   |____| \___  >____  /__|_|  /______//____  >\___  >__|

  755. //              \/     \/      \/             \/     \/

  756. 

  757. // TeamUser represents an team-user relation.

  758. type TeamUser struct {

  759. 	ID     int64 `xorm:"pk autoincr"`

  760. 	OrgID  int64 `xorm:"INDEX"`

  761. 	TeamID int64 `xorm:"UNIQUE(s)"`

  762. 	Uid    int64 `xorm:"UNIQUE(s)"`

  763. }

  764. 

  765. func isTeamMember(e Engine, orgID, teamID, uid int64) bool {

  766. 	has, _ := e.Where("org_id=?", orgID).And("team_id=?", teamID).And("uid=?", uid).Get(new(TeamUser))

  767. 	return has

  768. }

  769. 

  770. // IsTeamMember returns true if given user is a member of team.

  771. func IsTeamMember(orgID, teamID, uid int64) bool {

  772. 	return isTeamMember(x, orgID, teamID, uid)

  773. }

  774. 

  775. func getTeamMembers(e Engine, teamID int64) (_ []*User, err error) {

  776. 	teamUsers := make([]*TeamUser, 0, 10)

  777. 	if err = e.Where("team_id=?", teamID).Find(&teamUsers); err != nil {

  778. 		return nil, fmt.Errorf("get team-users: %v", err)

  779. 	}

  780. 	members := make([]*User, 0, len(teamUsers))

  781. 	for i := range teamUsers {

  782. 		member := new(User)

  783. 		if _, err = e.Id(teamUsers[i].Uid).Get(member); err != nil {

  784. 			return nil, fmt.Errorf("get user '%d': %v", teamUsers[i].Uid, err)

  785. 		}

  786. 		members = append(members, member)

  787. 	}

  788. 	return members, nil

  789. }

  790. 

  791. // GetTeamMembers returns all members in given team of organization.

  792. func GetTeamMembers(teamID int64) ([]*User, error) {

  793. 	return getTeamMembers(x, teamID)

  794. }

  795. 

  796. func getUserTeams(e Engine, orgId, uid int64) ([]*Team, error) {

  797. 	tus := make([]*TeamUser, 0, 5)

  798. 	if err := e.Where("uid=?", uid).And("org_id=?", orgId).Find(&tus); err != nil {

  799. 		return nil, err

  800. 	}

  801. 

  802. 	ts := make([]*Team, len(tus))

  803. 	for i, tu := range tus {

  804. 		t := new(Team)

  805. 		has, err := e.Id(tu.TeamID).Get(t)

  806. 		if err != nil {

  807. 			return nil, err

  808. 		} else if !has {

  809. 			return nil, ErrTeamNotExist

  810. 		}

  811. 		ts[i] = t

  812. 	}

  813. 	return ts, nil

  814. }

  815. 

  816. // GetUserTeams returns all teams that user belongs to in given organization.

  817. func GetUserTeams(orgId, uid int64) ([]*Team, error) {

  818. 	return getUserTeams(x, orgId, uid)

  819. }

  820. 

  821. // AddTeamMember adds new member to given team of given organization.

  822. func AddTeamMember(orgId, teamId, uid int64) error {

  823. 	if IsTeamMember(orgId, teamId, uid) {

  824. 		return nil

  825. 	}

  826. 

  827. 	if err := AddOrgUser(orgId, uid); err != nil {

  828. 		return err

  829. 	}

  830. 

  831. 	// Get team and its repositories.

  832. 	t, err := GetTeamById(teamId)

  833. 	if err != nil {

  834. 		return err

  835. 	}

  836. 	t.NumMembers++

  837. 

  838. 	if err = t.GetRepositories(); err != nil {

  839. 		return err

  840. 	}

  841. 

  842. 	sess := x.NewSession()

  843. 	defer sessionRelease(sess)

  844. 	if err = sess.Begin(); err != nil {

  845. 		return err

  846. 	}

  847. 

  848. 	tu := &TeamUser{

  849. 		Uid:    uid,

  850. 		OrgID:  orgId,

  851. 		TeamID: teamId,

  852. 	}

  853. 	if _, err = sess.Insert(tu); err != nil {

  854. 		return err

  855. 	} else if _, err = sess.Id(t.ID).Update(t); err != nil {

  856. 		return err

  857. 	}

  858. 

  859. 	// Give access to team repositories.

  860. 	for _, repo := range t.Repos {

  861. 		if err = repo.recalculateTeamAccesses(sess, 0); err != nil {

  862. 			return err

  863. 		}

  864. 	}

  865. 

  866. 	// We make sure it exists before.

  867. 	ou := new(OrgUser)

  868. 	if _, err = sess.Where("uid=?", uid).And("org_id=?", orgId).Get(ou); err != nil {

  869. 		return err

  870. 	}

  871. 	ou.NumTeams++

  872. 	if t.IsOwnerTeam() {

  873. 		ou.IsOwner = true

  874. 	}

  875. 	if _, err = sess.Id(ou.ID).AllCols().Update(ou); err != nil {

  876. 		return err

  877. 	}

  878. 

  879. 	return sess.Commit()

  880. }

  881. 

  882. func removeTeamMember(e Engine, orgId, teamId, uid int64) error {

  883. 	if !isTeamMember(e, orgId, teamId, uid) {

  884. 		return nil

  885. 	}

  886. 

  887. 	// Get team and its repositories.

  888. 	t, err := getTeamById(e, teamId)

  889. 	if err != nil {

  890. 		return err

  891. 	}

  892. 

  893. 	// Check if the user to delete is the last member in owner team.

  894. 	if t.IsOwnerTeam() && t.NumMembers == 1 {

  895. 		return ErrLastOrgOwner{UID: uid}

  896. 	}

  897. 

  898. 	t.NumMembers--

  899. 

  900. 	if err = t.getRepositories(e); err != nil {

  901. 		return err

  902. 	}

  903. 

  904. 	// Get organization.

  905. 	org, err := getUserByID(e, orgId)

  906. 	if err != nil {

  907. 		return err

  908. 	}

  909. 

  910. 	tu := &TeamUser{

  911. 		Uid:    uid,

  912. 		OrgID:  orgId,

  913. 		TeamID: teamId,

  914. 	}

  915. 	if _, err := e.Delete(tu); err != nil {

  916. 		return err

  917. 	} else if _, err = e.Id(t.ID).AllCols().Update(t); err != nil {

  918. 		return err

  919. 	}

  920. 

  921. 	// Delete access to team repositories.

  922. 	for _, repo := range t.Repos {

  923. 		if err = repo.recalculateTeamAccesses(e, 0); err != nil {

  924. 			return err

  925. 		}

  926. 	}

  927. 

  928. 	// This must exist.

  929. 	ou := new(OrgUser)

  930. 	_, err = e.Where("uid=?", uid).And("org_id=?", org.Id).Get(ou)

  931. 	if err != nil {

  932. 		return err

  933. 	}

  934. 	ou.NumTeams--

  935. 	if t.IsOwnerTeam() {

  936. 		ou.IsOwner = false

  937. 	}

  938. 	if _, err = e.Id(ou.ID).AllCols().Update(ou); err != nil {

  939. 		return err

  940. 	}

  941. 	return nil

  942. }

  943. 

  944. // RemoveTeamMember removes member from given team of given organization.

  945. func RemoveTeamMember(orgId, teamId, uid int64) error {

  946. 	sess := x.NewSession()

  947. 	defer sessionRelease(sess)

  948. 	if err := sess.Begin(); err != nil {

  949. 		return err

  950. 	}

  951. 	if err := removeTeamMember(sess, orgId, teamId, uid); err != nil {

  952. 		return err

  953. 	}

  954. 	return sess.Commit()

  955. }

  956. 

  957. // ___________                  __________

  958. // \__    ___/___ _____    _____\______   \ ____ ______   ____

  959. //   |    |_/ __ \\__  \  /     \|       _// __ \\____ \ /  _ \

  960. //   |    |\  ___/ / __ \|  Y Y  \    |   \  ___/|  |_> >  <_> )

  961. //   |____| \___  >____  /__|_|  /____|_  /\___  >   __/ \____/

  962. //              \/     \/      \/       \/     \/|__|

  963. 

  964. // TeamRepo represents an team-repository relation.

  965. type TeamRepo struct {

  966. 	ID     int64 `xorm:"pk autoincr"`

  967. 	OrgID  int64 `xorm:"INDEX"`

  968. 	TeamID int64 `xorm:"UNIQUE(s)"`

  969. 	RepoID int64 `xorm:"UNIQUE(s)"`

  970. }

  971. 

  972. func hasTeamRepo(e Engine, orgID, teamID, repoID int64) bool {

  973. 	has, _ := e.Where("org_id=?", orgID).And("team_id=?", teamID).And("repo_id=?", repoID).Get(new(TeamRepo))

  974. 	return has

  975. }

  976. 

  977. // HasTeamRepo returns true if given repository belongs to team.

  978. func HasTeamRepo(orgID, teamID, repoID int64) bool {

  979. 	return hasTeamRepo(x, orgID, teamID, repoID)

  980. }

  981. 

  982. func addTeamRepo(e Engine, orgID, teamID, repoID int64) error {

  983. 	_, err := e.InsertOne(&TeamRepo{

  984. 		OrgID:  orgID,

  985. 		TeamID: teamID,

  986. 		RepoID: repoID,

  987. 	})

  988. 	return err

  989. }

  990. 

  991. // AddTeamRepo adds new repository relation to team.

  992. func AddTeamRepo(orgID, teamID, repoID int64) error {

  993. 	return addTeamRepo(x, orgID, teamID, repoID)

  994. }

  995. 

  996. func removeTeamRepo(e Engine, teamID, repoID int64) error {

  997. 	_, err := e.Delete(&TeamRepo{

  998. 		TeamID: teamID,

  999. 		RepoID: repoID,

  1000. 	})

  1001. 	return err

  1002. }

  1003. 

  1004. // RemoveTeamRepo deletes repository relation to team.

  1005. func RemoveTeamRepo(teamID, repoID int64) error {

  1006. 	return removeTeamRepo(x, teamID, repoID)

  1007. }

  1008. 

  1009. func removeOrgRepo(e Engine, orgID, repoID int64) error {

  1010. 	_, err := e.Delete(&TeamRepo{

  1011. 		OrgID:  orgID,

  1012. 		RepoID: repoID,

  1013. 	})

  1014. 	return err

  1015. }

  1016. 

  1017. // RemoveOrgRepo removes all team-repository relations of given organization.

  1018. func RemoveOrgRepo(orgID, repoID int64) error {

  1019. 	return removeOrgRepo(x, orgID, repoID)

  1020. }