mirrors
/
sonarqube
mirror of https://github.com/SonarSource/sonarqube.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 237 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
30155 Commits
59 Branches
Tree: 4d8f0c4bf3
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '4d8f0c4bf3'
${ noResults }
sonarqube/server/sonar-webserver-webapi/src/main/java/org/sonar/server/usergroups/ws/RemoveUserAction.java

RemoveUserAction.java 4.2KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2020 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. package org.sonar.server.usergroups.ws;

  21. 

  22. import org.sonar.api.server.ws.Change;

  23. import org.sonar.api.server.ws.Request;

  24. import org.sonar.api.server.ws.Response;

  25. import org.sonar.api.server.ws.WebService.NewAction;

  26. import org.sonar.api.server.ws.WebService.NewController;

  27. import org.sonar.db.DbClient;

  28. import org.sonar.db.DbSession;

  29. import org.sonar.db.permission.OrganizationPermission;

  30. import org.sonar.db.user.GroupDto;

  31. import org.sonar.db.user.UserDto;

  32. import org.sonar.server.user.UserSession;

  33. 

  34. import static java.lang.String.format;

  35. import static org.sonar.server.exceptions.BadRequestException.checkRequest;

  36. import static org.sonar.server.exceptions.NotFoundException.checkFound;

  37. import static org.sonar.server.usergroups.ws.GroupWsSupport.PARAM_GROUP_ID;

  38. import static org.sonar.server.usergroups.ws.GroupWsSupport.PARAM_GROUP_NAME;

  39. import static org.sonar.server.usergroups.ws.GroupWsSupport.PARAM_LOGIN;

  40. import static org.sonar.server.usergroups.ws.GroupWsSupport.defineGroupWsParameters;

  41. import static org.sonar.server.usergroups.ws.GroupWsSupport.defineLoginWsParameter;

  42. 

  43. public class RemoveUserAction implements UserGroupsWsAction {

  44. 

  45.   private final DbClient dbClient;

  46.   private final UserSession userSession;

  47.   private final GroupWsSupport support;

  48. 

  49.   public RemoveUserAction(DbClient dbClient, UserSession userSession, GroupWsSupport support) {

  50.     this.dbClient = dbClient;

  51.     this.userSession = userSession;

  52.     this.support = support;

  53.   }

  54. 

  55.   @Override

  56.   public void define(NewController context) {

  57.     NewAction action = context.createAction("remove_user")

  58.       .setDescription(format("Remove a user from a group.<br />" +

  59.           "'%s' or '%s' must be provided.<br>" +

  60.           "Requires the following permission: 'Administer System'.",

  61.         PARAM_GROUP_ID, PARAM_GROUP_NAME))

  62.       .setHandler(this)

  63.       .setPost(true)

  64.       .setSince("5.2")

  65.       .setChangelog(

  66.         new Change("8.4", "Parameter 'id' is deprecated. Format changes from integer to string. Use 'name' instead."));

  67. 

  68.     defineGroupWsParameters(action);

  69.     defineLoginWsParameter(action);

  70.   }

  71. 

  72.   @Override

  73.   public void handle(Request request, Response response) throws Exception {

  74.     userSession.checkLoggedIn();

  75. 

  76.     try (DbSession dbSession = dbClient.openSession(false)) {

  77.       GroupDto group = support.findGroupDto(dbSession, request);

  78.       userSession.checkPermission(OrganizationPermission.ADMINISTER);

  79.       support.checkGroupIsNotDefault(dbSession, group);

  80. 

  81.       String login = request.mandatoryParam(PARAM_LOGIN);

  82.       UserDto user = getUser(dbSession, login);

  83. 

  84.       ensureLastAdminIsNotRemoved(dbSession, group, user);

  85. 

  86.       dbClient.userGroupDao().delete(dbSession, group.getUuid(), user.getUuid());

  87.       dbSession.commit();

  88. 

  89.       response.noContent();

  90.     }

  91.   }

  92. 

  93.   /**

  94.    * Ensure that there are still users with admin global permission if user is removed from the group.

  95.    */

  96.   private void ensureLastAdminIsNotRemoved(DbSession dbSession, GroupDto group, UserDto user) {

  97.     int remainingAdmins = dbClient.authorizationDao().countUsersWithGlobalPermissionExcludingGroupMember(dbSession,

  98.       OrganizationPermission.ADMINISTER.getKey(), group.getUuid(), user.getUuid());

  99.     checkRequest(remainingAdmins > 0, "The last administrator user cannot be removed");

  100.   }

  101. 

  102.   private UserDto getUser(DbSession dbSession, String userLogin) {

  103.     return checkFound(dbClient.userDao().selectActiveUserByLogin(dbSession, userLogin),

  104.       "User with login '%s' is not found'", userLogin);

  105.   }

  106. }