123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110 |
- // Copyright 2014 The Gogs Authors. All rights reserved.
- // Copyright 2019 The Gitea Authors. All rights reserved.
- // SPDX-License-Identifier: MIT
-
- package models
-
- import (
- "context"
- "fmt"
-
- "code.gitea.io/gitea/models/db"
- "code.gitea.io/gitea/models/organization"
- access_model "code.gitea.io/gitea/models/perm/access"
- repo_model "code.gitea.io/gitea/models/repo"
- )
-
- func removeOrgUser(ctx context.Context, orgID, userID int64) error {
- ou := new(organization.OrgUser)
-
- sess := db.GetEngine(ctx)
-
- has, err := sess.
- Where("uid=?", userID).
- And("org_id=?", orgID).
- Get(ou)
- if err != nil {
- return fmt.Errorf("get org-user: %w", err)
- } else if !has {
- return nil
- }
-
- org, err := organization.GetOrgByID(ctx, orgID)
- if err != nil {
- return fmt.Errorf("GetUserByID [%d]: %w", orgID, err)
- }
-
- // Check if the user to delete is the last member in owner team.
- if isOwner, err := organization.IsOrganizationOwner(ctx, orgID, userID); err != nil {
- return err
- } else if isOwner {
- t, err := organization.GetOwnerTeam(ctx, org.ID)
- if err != nil {
- return err
- }
- if t.NumMembers == 1 {
- if err := t.LoadMembers(ctx); err != nil {
- return err
- }
- if t.Members[0].ID == userID {
- return organization.ErrLastOrgOwner{UID: userID}
- }
- }
- }
-
- if _, err := sess.ID(ou.ID).Delete(ou); err != nil {
- return err
- } else if _, err = db.Exec(ctx, "UPDATE `user` SET num_members=num_members-1 WHERE id=?", orgID); err != nil {
- return err
- }
-
- // Delete all repository accesses and unwatch them.
- env, err := organization.AccessibleReposEnv(ctx, org, userID)
- if err != nil {
- return fmt.Errorf("AccessibleReposEnv: %w", err)
- }
- repoIDs, err := env.RepoIDs(1, org.NumRepos)
- if err != nil {
- return fmt.Errorf("GetUserRepositories [%d]: %w", userID, err)
- }
- for _, repoID := range repoIDs {
- if err = repo_model.WatchRepo(ctx, userID, repoID, false); err != nil {
- return err
- }
- }
-
- if len(repoIDs) > 0 {
- if _, err = sess.
- Where("user_id = ?", userID).
- In("repo_id", repoIDs).
- Delete(new(access_model.Access)); err != nil {
- return err
- }
- }
-
- // Delete member in their teams.
- teams, err := organization.GetUserOrgTeams(ctx, org.ID, userID)
- if err != nil {
- return err
- }
- for _, t := range teams {
- if err = removeTeamMember(ctx, t, userID); err != nil {
- return err
- }
- }
-
- return nil
- }
-
- // RemoveOrgUser removes user from given organization.
- func RemoveOrgUser(orgID, userID int64) error {
- ctx, committer, err := db.TxContext(db.DefaultContext)
- if err != nil {
- return err
- }
- defer committer.Close()
- if err := removeOrgUser(ctx, orgID, userID); err != nil {
- return err
- }
- return committer.Commit()
- }
|