mirrors
/
gitea
mirror of https://github.com/go-gitea/gitea.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 210 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8322 Commits
17 Branches
Tree: daab245167
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'daab245167'
${ noResults }
gitea/routers/api/v1/admin/user.go

user.go 8.5KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344 
  1. // Copyright 2015 The Gogs Authors. All rights reserved.

  2. // Copyright 2019 The Gitea Authors. All rights reserved.

  3. // Use of this source code is governed by a MIT-style

  4. // license that can be found in the LICENSE file.

  5. 

  6. package admin

  7. 

  8. import (

  9. 	"errors"

  10. 

  11. 	"code.gitea.io/gitea/models"

  12. 	"code.gitea.io/gitea/modules/context"

  13. 	"code.gitea.io/gitea/modules/convert"

  14. 	"code.gitea.io/gitea/modules/log"

  15. 	"code.gitea.io/gitea/modules/password"

  16. 	api "code.gitea.io/gitea/modules/structs"

  17. 	"code.gitea.io/gitea/routers/api/v1/user"

  18. 	"code.gitea.io/gitea/services/mailer"

  19. )

  20. 

  21. func parseLoginSource(ctx *context.APIContext, u *models.User, sourceID int64, loginName string) {

  22. 	if sourceID == 0 {

  23. 		return

  24. 	}

  25. 

  26. 	source, err := models.GetLoginSourceByID(sourceID)

  27. 	if err != nil {

  28. 		if models.IsErrLoginSourceNotExist(err) {

  29. 			ctx.Error(422, "", err)

  30. 		} else {

  31. 			ctx.Error(500, "GetLoginSourceByID", err)

  32. 		}

  33. 		return

  34. 	}

  35. 

  36. 	u.LoginType = source.Type

  37. 	u.LoginSource = source.ID

  38. 	u.LoginName = loginName

  39. }

  40. 

  41. // CreateUser create a user

  42. func CreateUser(ctx *context.APIContext, form api.CreateUserOption) {

  43. 	// swagger:operation POST /admin/users admin adminCreateUser

  44. 	// ---

  45. 	// summary: Create a user

  46. 	// consumes:

  47. 	// - application/json

  48. 	// produces:

  49. 	// - application/json

  50. 	// parameters:

  51. 	// - name: body

  52. 	//   in: body

  53. 	//   schema:

  54. 	//     "$ref": "#/definitions/CreateUserOption"

  55. 	// responses:

  56. 	//   "201":

  57. 	//     "$ref": "#/responses/User"

  58. 	//   "403":

  59. 	//     "$ref": "#/responses/forbidden"

  60. 	//   "422":

  61. 	//     "$ref": "#/responses/validationError"

  62. 	u := &models.User{

  63. 		Name:               form.Username,

  64. 		FullName:           form.FullName,

  65. 		Email:              form.Email,

  66. 		Passwd:             form.Password,

  67. 		MustChangePassword: true,

  68. 		IsActive:           true,

  69. 		LoginType:          models.LoginPlain,

  70. 	}

  71. 	if form.MustChangePassword != nil {

  72. 		u.MustChangePassword = *form.MustChangePassword

  73. 	}

  74. 

  75. 	parseLoginSource(ctx, u, form.SourceID, form.LoginName)

  76. 	if ctx.Written() {

  77. 		return

  78. 	}

  79. 	if !password.IsComplexEnough(form.Password) {

  80. 		err := errors.New("PasswordComplexity")

  81. 		ctx.Error(400, "PasswordComplexity", err)

  82. 		return

  83. 	}

  84. 	if err := models.CreateUser(u); err != nil {

  85. 		if models.IsErrUserAlreadyExist(err) ||

  86. 			models.IsErrEmailAlreadyUsed(err) ||

  87. 			models.IsErrNameReserved(err) ||

  88. 			models.IsErrNamePatternNotAllowed(err) {

  89. 			ctx.Error(422, "", err)

  90. 		} else {

  91. 			ctx.Error(500, "CreateUser", err)

  92. 		}

  93. 		return

  94. 	}

  95. 	log.Trace("Account created by admin (%s): %s", ctx.User.Name, u.Name)

  96. 

  97. 	// Send email notification.

  98. 	if form.SendNotify {

  99. 		mailer.SendRegisterNotifyMail(ctx.Locale, u)

  100. 	}

  101. 	ctx.JSON(201, convert.ToUser(u, ctx.IsSigned, ctx.User.IsAdmin))

  102. }

  103. 

  104. // EditUser api for modifying a user's information

  105. func EditUser(ctx *context.APIContext, form api.EditUserOption) {

  106. 	// swagger:operation PATCH /admin/users/{username} admin adminEditUser

  107. 	// ---

  108. 	// summary: Edit an existing user

  109. 	// consumes:

  110. 	// - application/json

  111. 	// produces:

  112. 	// - application/json

  113. 	// parameters:

  114. 	// - name: username

  115. 	//   in: path

  116. 	//   description: username of user to edit

  117. 	//   type: string

  118. 	//   required: true

  119. 	// - name: body

  120. 	//   in: body

  121. 	//   schema:

  122. 	//     "$ref": "#/definitions/EditUserOption"

  123. 	// responses:

  124. 	//   "200":

  125. 	//     "$ref": "#/responses/User"

  126. 	//   "403":

  127. 	//     "$ref": "#/responses/forbidden"

  128. 	//   "422":

  129. 	//     "$ref": "#/responses/validationError"

  130. 	u := user.GetUserByParams(ctx)

  131. 	if ctx.Written() {

  132. 		return

  133. 	}

  134. 

  135. 	parseLoginSource(ctx, u, form.SourceID, form.LoginName)

  136. 	if ctx.Written() {

  137. 		return

  138. 	}

  139. 

  140. 	if len(form.Password) > 0 {

  141. 		if !password.IsComplexEnough(form.Password) {

  142. 			err := errors.New("PasswordComplexity")

  143. 			ctx.Error(400, "PasswordComplexity", err)

  144. 			return

  145. 		}

  146. 		var err error

  147. 		if u.Salt, err = models.GetUserSalt(); err != nil {

  148. 			ctx.Error(500, "UpdateUser", err)

  149. 			return

  150. 		}

  151. 		u.HashPassword(form.Password)

  152. 	}

  153. 

  154. 	if form.MustChangePassword != nil {

  155. 		u.MustChangePassword = *form.MustChangePassword

  156. 	}

  157. 

  158. 	u.LoginName = form.LoginName

  159. 	u.FullName = form.FullName

  160. 	u.Email = form.Email

  161. 	u.Website = form.Website

  162. 	u.Location = form.Location

  163. 	if form.Active != nil {

  164. 		u.IsActive = *form.Active

  165. 	}

  166. 	if form.Admin != nil {

  167. 		u.IsAdmin = *form.Admin

  168. 	}

  169. 	if form.AllowGitHook != nil {

  170. 		u.AllowGitHook = *form.AllowGitHook

  171. 	}

  172. 	if form.AllowImportLocal != nil {

  173. 		u.AllowImportLocal = *form.AllowImportLocal

  174. 	}

  175. 	if form.MaxRepoCreation != nil {

  176. 		u.MaxRepoCreation = *form.MaxRepoCreation

  177. 	}

  178. 	if form.AllowCreateOrganization != nil {

  179. 		u.AllowCreateOrganization = *form.AllowCreateOrganization

  180. 	}

  181. 	if form.ProhibitLogin != nil {

  182. 		u.ProhibitLogin = *form.ProhibitLogin

  183. 	}

  184. 

  185. 	if err := models.UpdateUser(u); err != nil {

  186. 		if models.IsErrEmailAlreadyUsed(err) {

  187. 			ctx.Error(422, "", err)

  188. 		} else {

  189. 			ctx.Error(500, "UpdateUser", err)

  190. 		}

  191. 		return

  192. 	}

  193. 	log.Trace("Account profile updated by admin (%s): %s", ctx.User.Name, u.Name)

  194. 

  195. 	ctx.JSON(200, convert.ToUser(u, ctx.IsSigned, ctx.User.IsAdmin))

  196. }

  197. 

  198. // DeleteUser api for deleting a user

  199. func DeleteUser(ctx *context.APIContext) {

  200. 	// swagger:operation DELETE /admin/users/{username} admin adminDeleteUser

  201. 	// ---

  202. 	// summary: Delete a user

  203. 	// produces:

  204. 	// - application/json

  205. 	// parameters:

  206. 	// - name: username

  207. 	//   in: path

  208. 	//   description: username of user to delete

  209. 	//   type: string

  210. 	//   required: true

  211. 	// responses:

  212. 	//   "204":

  213. 	//     "$ref": "#/responses/empty"

  214. 	//   "403":

  215. 	//     "$ref": "#/responses/forbidden"

  216. 	//   "422":

  217. 	//     "$ref": "#/responses/validationError"

  218. 	u := user.GetUserByParams(ctx)

  219. 	if ctx.Written() {

  220. 		return

  221. 	}

  222. 

  223. 	if err := models.DeleteUser(u); err != nil {

  224. 		if models.IsErrUserOwnRepos(err) ||

  225. 			models.IsErrUserHasOrgs(err) {

  226. 			ctx.Error(422, "", err)

  227. 		} else {

  228. 			ctx.Error(500, "DeleteUser", err)

  229. 		}

  230. 		return

  231. 	}

  232. 	log.Trace("Account deleted by admin(%s): %s", ctx.User.Name, u.Name)

  233. 

  234. 	ctx.Status(204)

  235. }

  236. 

  237. // CreatePublicKey api for creating a public key to a user

  238. func CreatePublicKey(ctx *context.APIContext, form api.CreateKeyOption) {

  239. 	// swagger:operation POST /admin/users/{username}/keys admin adminCreatePublicKey

  240. 	// ---

  241. 	// summary: Add a public key on behalf of a user

  242. 	// consumes:

  243. 	// - application/json

  244. 	// produces:

  245. 	// - application/json

  246. 	// parameters:

  247. 	// - name: username

  248. 	//   in: path

  249. 	//   description: username of the user

  250. 	//   type: string

  251. 	//   required: true

  252. 	// - name: key

  253. 	//   in: body

  254. 	//   schema:

  255. 	//     "$ref": "#/definitions/CreateKeyOption"

  256. 	// responses:

  257. 	//   "201":

  258. 	//     "$ref": "#/responses/PublicKey"

  259. 	//   "403":

  260. 	//     "$ref": "#/responses/forbidden"

  261. 	//   "422":

  262. 	//     "$ref": "#/responses/validationError"

  263. 	u := user.GetUserByParams(ctx)

  264. 	if ctx.Written() {

  265. 		return

  266. 	}

  267. 	user.CreateUserPublicKey(ctx, form, u.ID)

  268. }

  269. 

  270. // DeleteUserPublicKey api for deleting a user's public key

  271. func DeleteUserPublicKey(ctx *context.APIContext) {

  272. 	// swagger:operation DELETE /admin/users/{username}/keys/{id} admin adminDeleteUserPublicKey

  273. 	// ---

  274. 	// summary: Delete a user's public key

  275. 	// produces:

  276. 	// - application/json

  277. 	// parameters:

  278. 	// - name: username

  279. 	//   in: path

  280. 	//   description: username of user

  281. 	//   type: string

  282. 	//   required: true

  283. 	// - name: id

  284. 	//   in: path

  285. 	//   description: id of the key to delete

  286. 	//   type: integer

  287. 	//   format: int64

  288. 	//   required: true

  289. 	// responses:

  290. 	//   "204":

  291. 	//     "$ref": "#/responses/empty"

  292. 	//   "403":

  293. 	//     "$ref": "#/responses/forbidden"

  294. 	//   "404":

  295. 	//     "$ref": "#/responses/notFound"

  296. 	u := user.GetUserByParams(ctx)

  297. 	if ctx.Written() {

  298. 		return

  299. 	}

  300. 

  301. 	if err := models.DeletePublicKey(u, ctx.ParamsInt64(":id")); err != nil {

  302. 		if models.IsErrKeyNotExist(err) {

  303. 			ctx.NotFound()

  304. 		} else if models.IsErrKeyAccessDenied(err) {

  305. 			ctx.Error(403, "", "You do not have access to this key")

  306. 		} else {

  307. 			ctx.Error(500, "DeleteUserPublicKey", err)

  308. 		}

  309. 		return

  310. 	}

  311. 	log.Trace("Key deleted by admin(%s): %s", ctx.User.Name, u.Name)

  312. 

  313. 	ctx.Status(204)

  314. }

  315. 

  316. //GetAllUsers API for getting information of all the users

  317. func GetAllUsers(ctx *context.APIContext) {

  318. 	// swagger:operation GET /admin/users admin adminGetAllUsers

  319. 	// ---

  320. 	// summary: List all users

  321. 	// produces:

  322. 	// - application/json

  323. 	// responses:

  324. 	//   "200":

  325. 	//     "$ref": "#/responses/UserList"

  326. 	//   "403":

  327. 	//     "$ref": "#/responses/forbidden"

  328. 	users, _, err := models.SearchUsers(&models.SearchUserOptions{

  329. 		Type:     models.UserTypeIndividual,

  330. 		OrderBy:  models.SearchOrderByAlphabetically,

  331. 		PageSize: -1,

  332. 	})

  333. 	if err != nil {

  334. 		ctx.Error(500, "GetAllUsers", err)

  335. 		return

  336. 	}

  337. 

  338. 	results := make([]*api.User, len(users))

  339. 	for i := range users {

  340. 		results[i] = convert.ToUser(users[i], ctx.IsSigned, ctx.User.IsAdmin)

  341. 	}

  342. 

  343. 	ctx.JSON(200, &results)

  344. }