mirrors
/
sonarqube
mirror of https://github.com/SonarSource/sonarqube.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 237 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
31233 Commits
59 Branches
Tree: 680aed78d5
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '680aed78d5'
${ noResults }
sonarqube/server/sonar-webserver-webapi/src/main/java/org/sonar/server/permission/ws/RemoveUserAction.java

RemoveUserAction.java 4.5KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2021 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. package org.sonar.server.permission.ws;

  21. 

  22. import java.util.Optional;

  23. import org.sonar.api.server.ws.Request;

  24. import org.sonar.api.server.ws.Response;

  25. import org.sonar.api.server.ws.WebService;

  26. import org.sonar.db.DbClient;

  27. import org.sonar.db.DbSession;

  28. import org.sonar.db.component.ComponentDto;

  29. import org.sonar.db.user.UserId;

  30. import org.sonar.server.exceptions.BadRequestException;

  31. import org.sonar.server.permission.PermissionChange;

  32. import org.sonar.server.permission.PermissionService;

  33. import org.sonar.server.permission.PermissionUpdater;

  34. import org.sonar.server.permission.UserPermissionChange;

  35. import org.sonar.server.user.UserSession;

  36. 

  37. import static java.util.Collections.singletonList;

  38. import static org.sonar.db.permission.GlobalPermission.ADMINISTER;

  39. import static org.sonar.server.permission.ws.WsParameters.createProjectParameters;

  40. import static org.sonar.server.permission.ws.WsParameters.createUserLoginParameter;

  41. import static org.sonarqube.ws.client.permission.PermissionsWsParameters.PARAM_PERMISSION;

  42. import static org.sonarqube.ws.client.permission.PermissionsWsParameters.PARAM_USER_LOGIN;

  43. 

  44. public class RemoveUserAction implements PermissionsWsAction {

  45. 

  46.   public static final String ACTION = "remove_user";

  47. 

  48.   private final DbClient dbClient;

  49.   private final UserSession userSession;

  50.   private final PermissionUpdater permissionUpdater;

  51.   private final PermissionWsSupport wsSupport;

  52.   private final WsParameters wsParameters;

  53.   private final PermissionService permissionService;

  54. 

  55.   public RemoveUserAction(DbClient dbClient, UserSession userSession, PermissionUpdater permissionUpdater, PermissionWsSupport wsSupport,

  56.     WsParameters wsParameters, PermissionService permissionService) {

  57.     this.dbClient = dbClient;

  58.     this.userSession = userSession;

  59.     this.permissionUpdater = permissionUpdater;

  60.     this.wsSupport = wsSupport;

  61.     this.wsParameters = wsParameters;

  62.     this.permissionService = permissionService;

  63.   }

  64. 

  65.   @Override

  66.   public void define(WebService.NewController context) {

  67.     WebService.NewAction action = context.createAction(ACTION)

  68.       .setDescription("Remove permission from a user.<br /> " +

  69.         "This service defaults to global permissions, but can be limited to project permissions by providing project id or project key.<br /> " +

  70.         "Requires one of the following permissions:" +

  71.         "<ul>" +

  72.         "<li>'Administer System'</li>" +

  73.         "<li>'Administer' rights on the specified project</li>" +

  74.         "</ul>")

  75.       .setSince("5.2")

  76.       .setPost(true)

  77.       .setHandler(this);

  78. 

  79.     wsParameters.createPermissionParameter(action, "The permission you would like to revoke from the user.");

  80.     createUserLoginParameter(action);

  81.     createProjectParameters(action);

  82.   }

  83. 

  84.   @Override

  85.   public void handle(Request request, Response response) throws Exception {

  86.     try (DbSession dbSession = dbClient.openSession(false)) {

  87.       UserId user = wsSupport.findUser(dbSession, request.mandatoryParam(PARAM_USER_LOGIN));

  88.       String permission = request.mandatoryParam(PARAM_PERMISSION);

  89.       if (ADMINISTER.getKey().equals(permission) && user.getLogin().equals(userSession.getLogin())) {

  90.         throw BadRequestException.create("As an admin, you can't remove your own admin right");

  91.       }

  92.       Optional<ComponentDto> project = wsSupport.findProject(dbSession, request);

  93.       wsSupport.checkPermissionManagementAccess(userSession, project.orElse(null));

  94.       PermissionChange change = new UserPermissionChange(

  95.         PermissionChange.Operation.REMOVE,

  96.         permission,

  97.         project.orElse(null),

  98.         user, permissionService);

  99.       permissionUpdater.apply(dbSession, singletonList(change));

  100.       response.noContent();

  101.     }

  102.   }

  103. }