mirrors
/
sonarqube
mirror of https://github.com/SonarSource/sonarqube.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 237 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
36262 Commits
59 Branches
Tree: 412f42cb11
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '412f42cb11'
${ noResults }
sonarqube/server/sonar-webserver-webapi/src/main/java/org/sonar/server/permission/ws/RemoveGroupAction.java

RemoveGroupAction.java 5.0KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2024 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. package org.sonar.server.permission.ws;

  21. 

  22. import org.sonar.api.server.ws.Change;

  23. import org.sonar.api.server.ws.Request;

  24. import org.sonar.api.server.ws.Response;

  25. import org.sonar.api.server.ws.WebService;

  26. import org.sonar.db.DbClient;

  27. import org.sonar.db.DbSession;

  28. import org.sonar.db.entity.EntityDto;

  29. import org.sonar.db.user.GroupDto;

  30. import org.sonar.server.common.management.ManagedInstanceChecker;

  31. import org.sonar.server.common.permission.GroupPermissionChange;

  32. import org.sonar.server.permission.GroupUuidOrAnyone;

  33. import org.sonar.server.common.permission.Operation;

  34. import org.sonar.server.permission.PermissionService;

  35. import org.sonar.server.common.permission.PermissionUpdater;

  36. import org.sonar.server.user.UserSession;

  37. 

  38. import static java.util.Collections.singletonList;

  39. import static org.sonar.server.permission.ws.WsParameters.createGroupNameParameter;

  40. import static org.sonar.server.permission.ws.WsParameters.createProjectParameters;

  41. import static org.sonarqube.ws.client.permission.PermissionsWsParameters.PARAM_PERMISSION;

  42. 

  43. public class RemoveGroupAction implements PermissionsWsAction {

  44. 

  45.   public static final String ACTION = "remove_group";

  46. 

  47.   private final DbClient dbClient;

  48.   private final UserSession userSession;

  49.   private final PermissionUpdater<GroupPermissionChange> permissionUpdater;

  50.   private final PermissionWsSupport wsSupport;

  51.   private final WsParameters wsParameters;

  52.   private final PermissionService permissionService;

  53.   private final ManagedInstanceChecker managedInstanceChecker;

  54. 

  55.   public RemoveGroupAction(DbClient dbClient, UserSession userSession, PermissionUpdater<GroupPermissionChange> permissionUpdater, PermissionWsSupport wsSupport,

  56.     WsParameters wsParameters, PermissionService permissionService, ManagedInstanceChecker managedInstanceChecker) {

  57.     this.dbClient = dbClient;

  58.     this.userSession = userSession;

  59.     this.permissionUpdater = permissionUpdater;

  60.     this.wsSupport = wsSupport;

  61.     this.wsParameters = wsParameters;

  62.     this.permissionService = permissionService;

  63.     this.managedInstanceChecker = managedInstanceChecker;

  64.   }

  65. 

  66.   @Override

  67.   public void define(WebService.NewController context) {

  68.     WebService.NewAction action = context.createAction(ACTION)

  69.       .setDescription("Remove a permission from a group.<br /> " +

  70.         "This service defaults to global permissions, but can be limited to project permissions by providing project id or project key.<br /> " +

  71.         "The group name must be provided.<br />" +

  72.         "Requires one of the following permissions:" +

  73.         "<ul>" +

  74.         "<li>'Administer System'</li>" +

  75.         "<li>'Administer' rights on the specified project</li>" +

  76.         "</ul>")

  77.       .setSince("5.2")

  78.       .setPost(true)

  79.       .setChangelog(

  80.         new Change("10.0", "Parameter 'groupId' is removed. Use 'groupName' instead."),

  81.         new Change("8.4", "Parameter 'groupId' is deprecated. Format changes from integer to string. Use 'groupName' instead."))

  82.       .setHandler(this);

  83. 

  84.     wsParameters.createPermissionParameter(action, "The permission you would like to revoke from the group.");

  85.     createGroupNameParameter(action);

  86.     createProjectParameters(action);

  87.   }

  88. 

  89.   @Override

  90.   public void handle(Request request, Response response) throws Exception {

  91.     try (DbSession dbSession = dbClient.openSession(false)) {

  92.       EntityDto entityDto = wsSupport.findEntity(dbSession, request);

  93.       GroupDto groupDto = wsSupport.findGroupDtoOrNullIfAnyone(dbSession, request);

  94.       if (entityDto != null && entityDto.isProject() && groupDto != null) {

  95.         managedInstanceChecker.throwIfGroupAndProjectAreManaged(dbSession, groupDto.getUuid(), entityDto.getUuid());

  96.       }

  97.       wsSupport.checkPermissionManagementAccess(userSession, entityDto);

  98. 

  99.       String permission = request.mandatoryParam(PARAM_PERMISSION);

  100.       wsSupport.checkRemovingOwnBrowsePermissionOnPrivateProject(dbSession, userSession, entityDto, permission, GroupUuidOrAnyone.from(groupDto));

  101. 

  102.       GroupPermissionChange change = new GroupPermissionChange(

  103.         Operation.REMOVE,

  104.         permission,

  105.         entityDto,

  106.         groupDto,

  107.         permissionService);

  108.       permissionUpdater.apply(dbSession, singletonList(change));

  109.     }

  110.     response.noContent();

  111.   }

  112. 

  113. }