mirrors
/
gitea
mirror of https://github.com/go-gitea/gitea.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 211 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
16496 Commits
17 Branches
Tree: fc7d3f7315
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'fc7d3f7315'
${ noResults }
gitea/modules/context/org.go

org.go 6.8KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265 
  1. // Copyright 2014 The Gogs Authors. All rights reserved.

  2. // Copyright 2020 The Gitea Authors.

  3. // SPDX-License-Identifier: MIT

  4. 

  5. package context

  6. 

  7. import (

  8. 	"strings"

  9. 

  10. 	"code.gitea.io/gitea/models/organization"

  11. 	"code.gitea.io/gitea/models/perm"

  12. 	"code.gitea.io/gitea/models/unit"

  13. 	user_model "code.gitea.io/gitea/models/user"

  14. 	"code.gitea.io/gitea/modules/setting"

  15. 	"code.gitea.io/gitea/modules/structs"

  16. )

  17. 

  18. // Organization contains organization context

  19. type Organization struct {

  20. 	IsOwner          bool

  21. 	IsMember         bool

  22. 	IsTeamMember     bool // Is member of team.

  23. 	IsTeamAdmin      bool // In owner team or team that has admin permission level.

  24. 	Organization     *organization.Organization

  25. 	OrgLink          string

  26. 	CanCreateOrgRepo bool

  27. 	PublicMemberOnly bool // Only display public members

  28. 

  29. 	Team  *organization.Team

  30. 	Teams []*organization.Team

  31. }

  32. 

  33. func (org *Organization) CanWriteUnit(ctx *Context, unitType unit.Type) bool {

  34. 	return org.Organization.UnitPermission(ctx, ctx.Doer, unitType) >= perm.AccessModeWrite

  35. }

  36. 

  37. func (org *Organization) CanReadUnit(ctx *Context, unitType unit.Type) bool {

  38. 	return org.Organization.UnitPermission(ctx, ctx.Doer, unitType) >= perm.AccessModeRead

  39. }

  40. 

  41. func GetOrganizationByParams(ctx *Context) {

  42. 	orgName := ctx.Params(":org")

  43. 

  44. 	var err error

  45. 

  46. 	ctx.Org.Organization, err = organization.GetOrgByName(ctx, orgName)

  47. 	if err != nil {

  48. 		if organization.IsErrOrgNotExist(err) {

  49. 			redirectUserID, err := user_model.LookupUserRedirect(ctx, orgName)

  50. 			if err == nil {

  51. 				RedirectToUser(ctx.Base, orgName, redirectUserID)

  52. 			} else if user_model.IsErrUserRedirectNotExist(err) {

  53. 				ctx.NotFound("GetUserByName", err)

  54. 			} else {

  55. 				ctx.ServerError("LookupUserRedirect", err)

  56. 			}

  57. 		} else {

  58. 			ctx.ServerError("GetUserByName", err)

  59. 		}

  60. 		return

  61. 	}

  62. }

  63. 

  64. // HandleOrgAssignment handles organization assignment

  65. func HandleOrgAssignment(ctx *Context, args ...bool) {

  66. 	var (

  67. 		requireMember     bool

  68. 		requireOwner      bool

  69. 		requireTeamMember bool

  70. 		requireTeamAdmin  bool

  71. 	)

  72. 	if len(args) >= 1 {

  73. 		requireMember = args[0]

  74. 	}

  75. 	if len(args) >= 2 {

  76. 		requireOwner = args[1]

  77. 	}

  78. 	if len(args) >= 3 {

  79. 		requireTeamMember = args[2]

  80. 	}

  81. 	if len(args) >= 4 {

  82. 		requireTeamAdmin = args[3]

  83. 	}

  84. 

  85. 	var err error

  86. 

  87. 	if ctx.ContextUser == nil {

  88. 		// if Organization is not defined, get it from params

  89. 		if ctx.Org.Organization == nil {

  90. 			GetOrganizationByParams(ctx)

  91. 			if ctx.Written() {

  92. 				return

  93. 			}

  94. 		}

  95. 	} else if ctx.ContextUser.IsOrganization() {

  96. 		if ctx.Org == nil {

  97. 			ctx.Org = &Organization{}

  98. 		}

  99. 		ctx.Org.Organization = (*organization.Organization)(ctx.ContextUser)

  100. 	} else {

  101. 		// ContextUser is an individual User

  102. 		return

  103. 	}

  104. 

  105. 	org := ctx.Org.Organization

  106. 

  107. 	// Handle Visibility

  108. 	if org.Visibility != structs.VisibleTypePublic && !ctx.IsSigned {

  109. 		// We must be signed in to see limited or private organizations

  110. 		ctx.NotFound("OrgAssignment", err)

  111. 		return

  112. 	}

  113. 

  114. 	if org.Visibility == structs.VisibleTypePrivate {

  115. 		requireMember = true

  116. 	} else if ctx.IsSigned && ctx.Doer.IsRestricted {

  117. 		requireMember = true

  118. 	}

  119. 

  120. 	ctx.ContextUser = org.AsUser()

  121. 	ctx.Data["Org"] = org

  122. 

  123. 	// Admin has super access.

  124. 	if ctx.IsSigned && ctx.Doer.IsAdmin {

  125. 		ctx.Org.IsOwner = true

  126. 		ctx.Org.IsMember = true

  127. 		ctx.Org.IsTeamMember = true

  128. 		ctx.Org.IsTeamAdmin = true

  129. 		ctx.Org.CanCreateOrgRepo = true

  130. 	} else if ctx.IsSigned {

  131. 		ctx.Org.IsOwner, err = org.IsOwnedBy(ctx.Doer.ID)

  132. 		if err != nil {

  133. 			ctx.ServerError("IsOwnedBy", err)

  134. 			return

  135. 		}

  136. 

  137. 		if ctx.Org.IsOwner {

  138. 			ctx.Org.IsMember = true

  139. 			ctx.Org.IsTeamMember = true

  140. 			ctx.Org.IsTeamAdmin = true

  141. 			ctx.Org.CanCreateOrgRepo = true

  142. 		} else {

  143. 			ctx.Org.IsMember, err = org.IsOrgMember(ctx.Doer.ID)

  144. 			if err != nil {

  145. 				ctx.ServerError("IsOrgMember", err)

  146. 				return

  147. 			}

  148. 			ctx.Org.CanCreateOrgRepo, err = org.CanCreateOrgRepo(ctx.Doer.ID)

  149. 			if err != nil {

  150. 				ctx.ServerError("CanCreateOrgRepo", err)

  151. 				return

  152. 			}

  153. 		}

  154. 	} else {

  155. 		// Fake data.

  156. 		ctx.Data["SignedUser"] = &user_model.User{}

  157. 	}

  158. 	if (requireMember && !ctx.Org.IsMember) ||

  159. 		(requireOwner && !ctx.Org.IsOwner) {

  160. 		ctx.NotFound("OrgAssignment", err)

  161. 		return

  162. 	}

  163. 	ctx.Data["IsOrganizationOwner"] = ctx.Org.IsOwner

  164. 	ctx.Data["IsOrganizationMember"] = ctx.Org.IsMember

  165. 	ctx.Data["IsPackageEnabled"] = setting.Packages.Enabled

  166. 	ctx.Data["IsRepoIndexerEnabled"] = setting.Indexer.RepoIndexerEnabled

  167. 	ctx.Data["IsPublicMember"] = func(uid int64) bool {

  168. 		is, _ := organization.IsPublicMembership(ctx.Org.Organization.ID, uid)

  169. 		return is

  170. 	}

  171. 	ctx.Data["CanCreateOrgRepo"] = ctx.Org.CanCreateOrgRepo

  172. 

  173. 	ctx.Org.OrgLink = org.AsUser().OrganisationLink()

  174. 	ctx.Data["OrgLink"] = ctx.Org.OrgLink

  175. 

  176. 	// Member

  177. 	ctx.Org.PublicMemberOnly = ctx.Doer == nil || !ctx.Org.IsMember && !ctx.Doer.IsAdmin

  178. 	opts := &organization.FindOrgMembersOpts{

  179. 		OrgID:      org.ID,

  180. 		PublicOnly: ctx.Org.PublicMemberOnly,

  181. 	}

  182. 	ctx.Data["NumMembers"], err = organization.CountOrgMembers(opts)

  183. 	if err != nil {

  184. 		ctx.ServerError("CountOrgMembers", err)

  185. 		return

  186. 	}

  187. 

  188. 	// Team.

  189. 	if ctx.Org.IsMember {

  190. 		shouldSeeAllTeams := false

  191. 		if ctx.Org.IsOwner {

  192. 			shouldSeeAllTeams = true

  193. 		} else {

  194. 			teams, err := org.GetUserTeams(ctx.Doer.ID)

  195. 			if err != nil {

  196. 				ctx.ServerError("GetUserTeams", err)

  197. 				return

  198. 			}

  199. 			for _, team := range teams {

  200. 				if team.IncludesAllRepositories && team.AccessMode >= perm.AccessModeAdmin {

  201. 					shouldSeeAllTeams = true

  202. 					break

  203. 				}

  204. 			}

  205. 		}

  206. 		if shouldSeeAllTeams {

  207. 			ctx.Org.Teams, err = org.LoadTeams()

  208. 			if err != nil {

  209. 				ctx.ServerError("LoadTeams", err)

  210. 				return

  211. 			}

  212. 		} else {

  213. 			ctx.Org.Teams, err = org.GetUserTeams(ctx.Doer.ID)

  214. 			if err != nil {

  215. 				ctx.ServerError("GetUserTeams", err)

  216. 				return

  217. 			}

  218. 		}

  219. 		ctx.Data["NumTeams"] = len(ctx.Org.Teams)

  220. 	}

  221. 

  222. 	teamName := ctx.Params(":team")

  223. 	if len(teamName) > 0 {

  224. 		teamExists := false

  225. 		for _, team := range ctx.Org.Teams {

  226. 			if team.LowerName == strings.ToLower(teamName) {

  227. 				teamExists = true

  228. 				ctx.Org.Team = team

  229. 				ctx.Org.IsTeamMember = true

  230. 				ctx.Data["Team"] = ctx.Org.Team

  231. 				break

  232. 			}

  233. 		}

  234. 

  235. 		if !teamExists {

  236. 			ctx.NotFound("OrgAssignment", err)

  237. 			return

  238. 		}

  239. 

  240. 		ctx.Data["IsTeamMember"] = ctx.Org.IsTeamMember

  241. 		if requireTeamMember && !ctx.Org.IsTeamMember {

  242. 			ctx.NotFound("OrgAssignment", err)

  243. 			return

  244. 		}

  245. 

  246. 		ctx.Org.IsTeamAdmin = ctx.Org.Team.IsOwnerTeam() || ctx.Org.Team.AccessMode >= perm.AccessModeAdmin

  247. 		ctx.Data["IsTeamAdmin"] = ctx.Org.IsTeamAdmin

  248. 		if requireTeamAdmin && !ctx.Org.IsTeamAdmin {

  249. 			ctx.NotFound("OrgAssignment", err)

  250. 			return

  251. 		}

  252. 	}

  253. 	ctx.Data["ContextUser"] = ctx.ContextUser

  254. 

  255. 	ctx.Data["CanReadProjects"] = ctx.Org.CanReadUnit(ctx, unit.TypeProjects)

  256. 	ctx.Data["CanReadPackages"] = ctx.Org.CanReadUnit(ctx, unit.TypePackages)

  257. 	ctx.Data["CanReadCode"] = ctx.Org.CanReadUnit(ctx, unit.TypeCode)

  258. }

  259. 

  260. // OrgAssignment returns a middleware to handle organization assignment

  261. func OrgAssignment(args ...bool) func(ctx *Context) {

  262. 	return func(ctx *Context) {

  263. 		HandleOrgAssignment(ctx, args...)

  264. 	}

  265. }