mirror of
https://codeberg.org/forgejo/forgejo.git
synced 2025-10-23 18:42:26 +00:00
Backport #25388 by @wolfogre The old code generates `structs.Repository.Permissions` with only `access.Permission.AccessMode`, however, it should check the units too, or the value could be incorrect. For example, `structs.Repository.Permissions.Push` could be false even the doer has write access to code unit. Should fix https://github.com/renovatebot/renovate/issues/14059#issuecomment-1047961128 (Not reported by it, I just found it when I was looking into this bug) --- Review tips: The major changes are - `modules/structs/repo.go` https://github.com/go-gitea/gitea/pull/25388/files#diff-870406f6857117f8b03611c43fca0ab9ed6d6e76a2d0069a7c1f17e8fa9092f7 - `services/convert/repository.go` https://github.com/go-gitea/gitea/pull/25388/files#diff-7736f6d2ae894c9edb7729a80ab89aa183b888a26a811a0c1fdebd18726a7101 And other changes are passive. Co-authored-by: Jason Song <i@wolfogre.com>
866 lines
22 KiB
Go
866 lines
22 KiB
Go
// Copyright 2016 The Gogs Authors. All rights reserved.
|
|
// Copyright 2019 The Gitea Authors. All rights reserved.
|
|
// SPDX-License-Identifier: MIT
|
|
|
|
package org
|
|
|
|
import (
|
|
"errors"
|
|
"net/http"
|
|
|
|
"code.gitea.io/gitea/models"
|
|
activities_model "code.gitea.io/gitea/models/activities"
|
|
"code.gitea.io/gitea/models/organization"
|
|
"code.gitea.io/gitea/models/perm"
|
|
access_model "code.gitea.io/gitea/models/perm/access"
|
|
repo_model "code.gitea.io/gitea/models/repo"
|
|
unit_model "code.gitea.io/gitea/models/unit"
|
|
"code.gitea.io/gitea/modules/context"
|
|
"code.gitea.io/gitea/modules/log"
|
|
api "code.gitea.io/gitea/modules/structs"
|
|
"code.gitea.io/gitea/modules/web"
|
|
"code.gitea.io/gitea/routers/api/v1/user"
|
|
"code.gitea.io/gitea/routers/api/v1/utils"
|
|
"code.gitea.io/gitea/services/convert"
|
|
org_service "code.gitea.io/gitea/services/org"
|
|
)
|
|
|
|
// ListTeams list all the teams of an organization
|
|
func ListTeams(ctx *context.APIContext) {
|
|
// swagger:operation GET /orgs/{org}/teams organization orgListTeams
|
|
// ---
|
|
// summary: List an organization's teams
|
|
// produces:
|
|
// - application/json
|
|
// parameters:
|
|
// - name: org
|
|
// in: path
|
|
// description: name of the organization
|
|
// type: string
|
|
// required: true
|
|
// - name: page
|
|
// in: query
|
|
// description: page number of results to return (1-based)
|
|
// type: integer
|
|
// - name: limit
|
|
// in: query
|
|
// description: page size of results
|
|
// type: integer
|
|
// responses:
|
|
// "200":
|
|
// "$ref": "#/responses/TeamList"
|
|
|
|
teams, count, err := organization.SearchTeam(&organization.SearchTeamOptions{
|
|
ListOptions: utils.GetListOptions(ctx),
|
|
OrgID: ctx.Org.Organization.ID,
|
|
})
|
|
if err != nil {
|
|
ctx.Error(http.StatusInternalServerError, "LoadTeams", err)
|
|
return
|
|
}
|
|
|
|
apiTeams, err := convert.ToTeams(ctx, teams, false)
|
|
if err != nil {
|
|
ctx.Error(http.StatusInternalServerError, "ConvertToTeams", err)
|
|
return
|
|
}
|
|
|
|
ctx.SetTotalCountHeader(count)
|
|
ctx.JSON(http.StatusOK, apiTeams)
|
|
}
|
|
|
|
// ListUserTeams list all the teams a user belongs to
|
|
func ListUserTeams(ctx *context.APIContext) {
|
|
// swagger:operation GET /user/teams user userListTeams
|
|
// ---
|
|
// summary: List all the teams a user belongs to
|
|
// produces:
|
|
// - application/json
|
|
// parameters:
|
|
// - name: page
|
|
// in: query
|
|
// description: page number of results to return (1-based)
|
|
// type: integer
|
|
// - name: limit
|
|
// in: query
|
|
// description: page size of results
|
|
// type: integer
|
|
// responses:
|
|
// "200":
|
|
// "$ref": "#/responses/TeamList"
|
|
|
|
teams, count, err := organization.SearchTeam(&organization.SearchTeamOptions{
|
|
ListOptions: utils.GetListOptions(ctx),
|
|
UserID: ctx.Doer.ID,
|
|
})
|
|
if err != nil {
|
|
ctx.Error(http.StatusInternalServerError, "GetUserTeams", err)
|
|
return
|
|
}
|
|
|
|
apiTeams, err := convert.ToTeams(ctx, teams, true)
|
|
if err != nil {
|
|
ctx.Error(http.StatusInternalServerError, "ConvertToTeams", err)
|
|
return
|
|
}
|
|
|
|
ctx.SetTotalCountHeader(count)
|
|
ctx.JSON(http.StatusOK, apiTeams)
|
|
}
|
|
|
|
// GetTeam api for get a team
|
|
func GetTeam(ctx *context.APIContext) {
|
|
// swagger:operation GET /teams/{id} organization orgGetTeam
|
|
// ---
|
|
// summary: Get a team
|
|
// produces:
|
|
// - application/json
|
|
// parameters:
|
|
// - name: id
|
|
// in: path
|
|
// description: id of the team to get
|
|
// type: integer
|
|
// format: int64
|
|
// required: true
|
|
// responses:
|
|
// "200":
|
|
// "$ref": "#/responses/Team"
|
|
|
|
apiTeam, err := convert.ToTeam(ctx, ctx.Org.Team, true)
|
|
if err != nil {
|
|
ctx.InternalServerError(err)
|
|
return
|
|
}
|
|
|
|
ctx.JSON(http.StatusOK, apiTeam)
|
|
}
|
|
|
|
func attachTeamUnits(team *organization.Team, units []string) {
|
|
unitTypes, _ := unit_model.FindUnitTypes(units...)
|
|
team.Units = make([]*organization.TeamUnit, 0, len(units))
|
|
for _, tp := range unitTypes {
|
|
team.Units = append(team.Units, &organization.TeamUnit{
|
|
OrgID: team.OrgID,
|
|
Type: tp,
|
|
AccessMode: team.AccessMode,
|
|
})
|
|
}
|
|
}
|
|
|
|
func convertUnitsMap(unitsMap map[string]string) map[unit_model.Type]perm.AccessMode {
|
|
res := make(map[unit_model.Type]perm.AccessMode, len(unitsMap))
|
|
for unitKey, p := range unitsMap {
|
|
res[unit_model.TypeFromKey(unitKey)] = perm.ParseAccessMode(p)
|
|
}
|
|
return res
|
|
}
|
|
|
|
func attachTeamUnitsMap(team *organization.Team, unitsMap map[string]string) {
|
|
team.Units = make([]*organization.TeamUnit, 0, len(unitsMap))
|
|
for unitKey, p := range unitsMap {
|
|
team.Units = append(team.Units, &organization.TeamUnit{
|
|
OrgID: team.OrgID,
|
|
Type: unit_model.TypeFromKey(unitKey),
|
|
AccessMode: perm.ParseAccessMode(p),
|
|
})
|
|
}
|
|
}
|
|
|
|
func attachAdminTeamUnits(team *organization.Team) {
|
|
team.Units = make([]*organization.TeamUnit, 0, len(unit_model.AllRepoUnitTypes))
|
|
for _, ut := range unit_model.AllRepoUnitTypes {
|
|
up := perm.AccessModeAdmin
|
|
if ut == unit_model.TypeExternalTracker || ut == unit_model.TypeExternalWiki {
|
|
up = perm.AccessModeRead
|
|
}
|
|
team.Units = append(team.Units, &organization.TeamUnit{
|
|
OrgID: team.OrgID,
|
|
Type: ut,
|
|
AccessMode: up,
|
|
})
|
|
}
|
|
}
|
|
|
|
// CreateTeam api for create a team
|
|
func CreateTeam(ctx *context.APIContext) {
|
|
// swagger:operation POST /orgs/{org}/teams organization orgCreateTeam
|
|
// ---
|
|
// summary: Create a team
|
|
// consumes:
|
|
// - application/json
|
|
// produces:
|
|
// - application/json
|
|
// parameters:
|
|
// - name: org
|
|
// in: path
|
|
// description: name of the organization
|
|
// type: string
|
|
// required: true
|
|
// - name: body
|
|
// in: body
|
|
// schema:
|
|
// "$ref": "#/definitions/CreateTeamOption"
|
|
// responses:
|
|
// "201":
|
|
// "$ref": "#/responses/Team"
|
|
// "422":
|
|
// "$ref": "#/responses/validationError"
|
|
form := web.GetForm(ctx).(*api.CreateTeamOption)
|
|
p := perm.ParseAccessMode(form.Permission)
|
|
if p < perm.AccessModeAdmin && len(form.UnitsMap) > 0 {
|
|
p = unit_model.MinUnitAccessMode(convertUnitsMap(form.UnitsMap))
|
|
}
|
|
team := &organization.Team{
|
|
OrgID: ctx.Org.Organization.ID,
|
|
Name: form.Name,
|
|
Description: form.Description,
|
|
IncludesAllRepositories: form.IncludesAllRepositories,
|
|
CanCreateOrgRepo: form.CanCreateOrgRepo,
|
|
AccessMode: p,
|
|
}
|
|
|
|
if team.AccessMode < perm.AccessModeAdmin {
|
|
if len(form.UnitsMap) > 0 {
|
|
attachTeamUnitsMap(team, form.UnitsMap)
|
|
} else if len(form.Units) > 0 {
|
|
attachTeamUnits(team, form.Units)
|
|
} else {
|
|
ctx.Error(http.StatusInternalServerError, "getTeamUnits", errors.New("units permission should not be empty"))
|
|
return
|
|
}
|
|
} else {
|
|
attachAdminTeamUnits(team)
|
|
}
|
|
|
|
if err := models.NewTeam(team); err != nil {
|
|
if organization.IsErrTeamAlreadyExist(err) {
|
|
ctx.Error(http.StatusUnprocessableEntity, "", err)
|
|
} else {
|
|
ctx.Error(http.StatusInternalServerError, "NewTeam", err)
|
|
}
|
|
return
|
|
}
|
|
|
|
apiTeam, err := convert.ToTeam(ctx, team)
|
|
if err != nil {
|
|
ctx.InternalServerError(err)
|
|
return
|
|
}
|
|
ctx.JSON(http.StatusCreated, apiTeam)
|
|
}
|
|
|
|
// EditTeam api for edit a team
|
|
func EditTeam(ctx *context.APIContext) {
|
|
// swagger:operation PATCH /teams/{id} organization orgEditTeam
|
|
// ---
|
|
// summary: Edit a team
|
|
// consumes:
|
|
// - application/json
|
|
// produces:
|
|
// - application/json
|
|
// parameters:
|
|
// - name: id
|
|
// in: path
|
|
// description: id of the team to edit
|
|
// type: integer
|
|
// required: true
|
|
// - name: body
|
|
// in: body
|
|
// schema:
|
|
// "$ref": "#/definitions/EditTeamOption"
|
|
// responses:
|
|
// "200":
|
|
// "$ref": "#/responses/Team"
|
|
|
|
form := web.GetForm(ctx).(*api.EditTeamOption)
|
|
team := ctx.Org.Team
|
|
if err := team.LoadUnits(ctx); err != nil {
|
|
ctx.InternalServerError(err)
|
|
return
|
|
}
|
|
|
|
if form.CanCreateOrgRepo != nil {
|
|
team.CanCreateOrgRepo = team.IsOwnerTeam() || *form.CanCreateOrgRepo
|
|
}
|
|
|
|
if len(form.Name) > 0 {
|
|
team.Name = form.Name
|
|
}
|
|
|
|
if form.Description != nil {
|
|
team.Description = *form.Description
|
|
}
|
|
|
|
isAuthChanged := false
|
|
isIncludeAllChanged := false
|
|
if !team.IsOwnerTeam() && len(form.Permission) != 0 {
|
|
// Validate permission level.
|
|
p := perm.ParseAccessMode(form.Permission)
|
|
if p < perm.AccessModeAdmin && len(form.UnitsMap) > 0 {
|
|
p = unit_model.MinUnitAccessMode(convertUnitsMap(form.UnitsMap))
|
|
}
|
|
|
|
if team.AccessMode != p {
|
|
isAuthChanged = true
|
|
team.AccessMode = p
|
|
}
|
|
|
|
if form.IncludesAllRepositories != nil {
|
|
isIncludeAllChanged = true
|
|
team.IncludesAllRepositories = *form.IncludesAllRepositories
|
|
}
|
|
}
|
|
|
|
if team.AccessMode < perm.AccessModeAdmin {
|
|
if len(form.UnitsMap) > 0 {
|
|
attachTeamUnitsMap(team, form.UnitsMap)
|
|
} else if len(form.Units) > 0 {
|
|
attachTeamUnits(team, form.Units)
|
|
}
|
|
} else {
|
|
attachAdminTeamUnits(team)
|
|
}
|
|
|
|
if err := models.UpdateTeam(team, isAuthChanged, isIncludeAllChanged); err != nil {
|
|
ctx.Error(http.StatusInternalServerError, "EditTeam", err)
|
|
return
|
|
}
|
|
|
|
apiTeam, err := convert.ToTeam(ctx, team)
|
|
if err != nil {
|
|
ctx.InternalServerError(err)
|
|
return
|
|
}
|
|
ctx.JSON(http.StatusOK, apiTeam)
|
|
}
|
|
|
|
// DeleteTeam api for delete a team
|
|
func DeleteTeam(ctx *context.APIContext) {
|
|
// swagger:operation DELETE /teams/{id} organization orgDeleteTeam
|
|
// ---
|
|
// summary: Delete a team
|
|
// parameters:
|
|
// - name: id
|
|
// in: path
|
|
// description: id of the team to delete
|
|
// type: integer
|
|
// format: int64
|
|
// required: true
|
|
// responses:
|
|
// "204":
|
|
// description: team deleted
|
|
|
|
if err := models.DeleteTeam(ctx.Org.Team); err != nil {
|
|
ctx.Error(http.StatusInternalServerError, "DeleteTeam", err)
|
|
return
|
|
}
|
|
ctx.Status(http.StatusNoContent)
|
|
}
|
|
|
|
// GetTeamMembers api for get a team's members
|
|
func GetTeamMembers(ctx *context.APIContext) {
|
|
// swagger:operation GET /teams/{id}/members organization orgListTeamMembers
|
|
// ---
|
|
// summary: List a team's members
|
|
// produces:
|
|
// - application/json
|
|
// parameters:
|
|
// - name: id
|
|
// in: path
|
|
// description: id of the team
|
|
// type: integer
|
|
// format: int64
|
|
// required: true
|
|
// - name: page
|
|
// in: query
|
|
// description: page number of results to return (1-based)
|
|
// type: integer
|
|
// - name: limit
|
|
// in: query
|
|
// description: page size of results
|
|
// type: integer
|
|
// responses:
|
|
// "200":
|
|
// "$ref": "#/responses/UserList"
|
|
|
|
isMember, err := organization.IsOrganizationMember(ctx, ctx.Org.Team.OrgID, ctx.Doer.ID)
|
|
if err != nil {
|
|
ctx.Error(http.StatusInternalServerError, "IsOrganizationMember", err)
|
|
return
|
|
} else if !isMember && !ctx.Doer.IsAdmin {
|
|
ctx.NotFound()
|
|
return
|
|
}
|
|
|
|
teamMembers, err := organization.GetTeamMembers(ctx, &organization.SearchMembersOptions{
|
|
ListOptions: utils.GetListOptions(ctx),
|
|
TeamID: ctx.Org.Team.ID,
|
|
})
|
|
if err != nil {
|
|
ctx.Error(http.StatusInternalServerError, "GetTeamMembers", err)
|
|
return
|
|
}
|
|
|
|
members := make([]*api.User, len(teamMembers))
|
|
for i, member := range teamMembers {
|
|
members[i] = convert.ToUser(ctx, member, ctx.Doer)
|
|
}
|
|
|
|
ctx.SetTotalCountHeader(int64(ctx.Org.Team.NumMembers))
|
|
ctx.JSON(http.StatusOK, members)
|
|
}
|
|
|
|
// GetTeamMember api for get a particular member of team
|
|
func GetTeamMember(ctx *context.APIContext) {
|
|
// swagger:operation GET /teams/{id}/members/{username} organization orgListTeamMember
|
|
// ---
|
|
// summary: List a particular member of team
|
|
// produces:
|
|
// - application/json
|
|
// parameters:
|
|
// - name: id
|
|
// in: path
|
|
// description: id of the team
|
|
// type: integer
|
|
// format: int64
|
|
// required: true
|
|
// - name: username
|
|
// in: path
|
|
// description: username of the member to list
|
|
// type: string
|
|
// required: true
|
|
// responses:
|
|
// "200":
|
|
// "$ref": "#/responses/User"
|
|
// "404":
|
|
// "$ref": "#/responses/notFound"
|
|
|
|
u := user.GetUserByParams(ctx)
|
|
if ctx.Written() {
|
|
return
|
|
}
|
|
teamID := ctx.ParamsInt64("teamid")
|
|
isTeamMember, err := organization.IsUserInTeams(ctx, u.ID, []int64{teamID})
|
|
if err != nil {
|
|
ctx.Error(http.StatusInternalServerError, "IsUserInTeams", err)
|
|
return
|
|
} else if !isTeamMember {
|
|
ctx.NotFound()
|
|
return
|
|
}
|
|
ctx.JSON(http.StatusOK, convert.ToUser(ctx, u, ctx.Doer))
|
|
}
|
|
|
|
// AddTeamMember api for add a member to a team
|
|
func AddTeamMember(ctx *context.APIContext) {
|
|
// swagger:operation PUT /teams/{id}/members/{username} organization orgAddTeamMember
|
|
// ---
|
|
// summary: Add a team member
|
|
// produces:
|
|
// - application/json
|
|
// parameters:
|
|
// - name: id
|
|
// in: path
|
|
// description: id of the team
|
|
// type: integer
|
|
// format: int64
|
|
// required: true
|
|
// - name: username
|
|
// in: path
|
|
// description: username of the user to add
|
|
// type: string
|
|
// required: true
|
|
// responses:
|
|
// "204":
|
|
// "$ref": "#/responses/empty"
|
|
// "404":
|
|
// "$ref": "#/responses/notFound"
|
|
|
|
u := user.GetUserByParams(ctx)
|
|
if ctx.Written() {
|
|
return
|
|
}
|
|
if err := models.AddTeamMember(ctx.Org.Team, u.ID); err != nil {
|
|
ctx.Error(http.StatusInternalServerError, "AddMember", err)
|
|
return
|
|
}
|
|
ctx.Status(http.StatusNoContent)
|
|
}
|
|
|
|
// RemoveTeamMember api for remove one member from a team
|
|
func RemoveTeamMember(ctx *context.APIContext) {
|
|
// swagger:operation DELETE /teams/{id}/members/{username} organization orgRemoveTeamMember
|
|
// ---
|
|
// summary: Remove a team member
|
|
// produces:
|
|
// - application/json
|
|
// parameters:
|
|
// - name: id
|
|
// in: path
|
|
// description: id of the team
|
|
// type: integer
|
|
// format: int64
|
|
// required: true
|
|
// - name: username
|
|
// in: path
|
|
// description: username of the user to remove
|
|
// type: string
|
|
// required: true
|
|
// responses:
|
|
// "204":
|
|
// "$ref": "#/responses/empty"
|
|
// "404":
|
|
// "$ref": "#/responses/notFound"
|
|
|
|
u := user.GetUserByParams(ctx)
|
|
if ctx.Written() {
|
|
return
|
|
}
|
|
|
|
if err := models.RemoveTeamMember(ctx.Org.Team, u.ID); err != nil {
|
|
ctx.Error(http.StatusInternalServerError, "RemoveTeamMember", err)
|
|
return
|
|
}
|
|
ctx.Status(http.StatusNoContent)
|
|
}
|
|
|
|
// GetTeamRepos api for get a team's repos
|
|
func GetTeamRepos(ctx *context.APIContext) {
|
|
// swagger:operation GET /teams/{id}/repos organization orgListTeamRepos
|
|
// ---
|
|
// summary: List a team's repos
|
|
// produces:
|
|
// - application/json
|
|
// parameters:
|
|
// - name: id
|
|
// in: path
|
|
// description: id of the team
|
|
// type: integer
|
|
// format: int64
|
|
// required: true
|
|
// - name: page
|
|
// in: query
|
|
// description: page number of results to return (1-based)
|
|
// type: integer
|
|
// - name: limit
|
|
// in: query
|
|
// description: page size of results
|
|
// type: integer
|
|
// responses:
|
|
// "200":
|
|
// "$ref": "#/responses/RepositoryList"
|
|
|
|
team := ctx.Org.Team
|
|
teamRepos, err := organization.GetTeamRepositories(ctx, &organization.SearchTeamRepoOptions{
|
|
ListOptions: utils.GetListOptions(ctx),
|
|
TeamID: team.ID,
|
|
})
|
|
if err != nil {
|
|
ctx.Error(http.StatusInternalServerError, "GetTeamRepos", err)
|
|
return
|
|
}
|
|
repos := make([]*api.Repository, len(teamRepos))
|
|
for i, repo := range teamRepos {
|
|
permission, err := access_model.GetUserRepoPermission(ctx, repo, ctx.Doer)
|
|
if err != nil {
|
|
ctx.Error(http.StatusInternalServerError, "GetTeamRepos", err)
|
|
return
|
|
}
|
|
repos[i] = convert.ToRepo(ctx, repo, permission)
|
|
}
|
|
ctx.SetTotalCountHeader(int64(team.NumRepos))
|
|
ctx.JSON(http.StatusOK, repos)
|
|
}
|
|
|
|
// GetTeamRepo api for get a particular repo of team
|
|
func GetTeamRepo(ctx *context.APIContext) {
|
|
// swagger:operation GET /teams/{id}/repos/{org}/{repo} organization orgListTeamRepo
|
|
// ---
|
|
// summary: List a particular repo of team
|
|
// produces:
|
|
// - application/json
|
|
// parameters:
|
|
// - name: id
|
|
// in: path
|
|
// description: id of the team
|
|
// type: integer
|
|
// format: int64
|
|
// required: true
|
|
// - name: org
|
|
// in: path
|
|
// description: organization that owns the repo to list
|
|
// type: string
|
|
// required: true
|
|
// - name: repo
|
|
// in: path
|
|
// description: name of the repo to list
|
|
// type: string
|
|
// required: true
|
|
// responses:
|
|
// "200":
|
|
// "$ref": "#/responses/Repository"
|
|
// "404":
|
|
// "$ref": "#/responses/notFound"
|
|
|
|
repo := getRepositoryByParams(ctx)
|
|
if ctx.Written() {
|
|
return
|
|
}
|
|
|
|
if !organization.HasTeamRepo(ctx, ctx.Org.Team.OrgID, ctx.Org.Team.ID, repo.ID) {
|
|
ctx.NotFound()
|
|
return
|
|
}
|
|
|
|
permission, err := access_model.GetUserRepoPermission(ctx, repo, ctx.Doer)
|
|
if err != nil {
|
|
ctx.Error(http.StatusInternalServerError, "GetTeamRepos", err)
|
|
return
|
|
}
|
|
|
|
ctx.JSON(http.StatusOK, convert.ToRepo(ctx, repo, permission))
|
|
}
|
|
|
|
// getRepositoryByParams get repository by a team's organization ID and repo name
|
|
func getRepositoryByParams(ctx *context.APIContext) *repo_model.Repository {
|
|
repo, err := repo_model.GetRepositoryByName(ctx.Org.Team.OrgID, ctx.Params(":reponame"))
|
|
if err != nil {
|
|
if repo_model.IsErrRepoNotExist(err) {
|
|
ctx.NotFound()
|
|
} else {
|
|
ctx.Error(http.StatusInternalServerError, "GetRepositoryByName", err)
|
|
}
|
|
return nil
|
|
}
|
|
return repo
|
|
}
|
|
|
|
// AddTeamRepository api for adding a repository to a team
|
|
func AddTeamRepository(ctx *context.APIContext) {
|
|
// swagger:operation PUT /teams/{id}/repos/{org}/{repo} organization orgAddTeamRepository
|
|
// ---
|
|
// summary: Add a repository to a team
|
|
// produces:
|
|
// - application/json
|
|
// parameters:
|
|
// - name: id
|
|
// in: path
|
|
// description: id of the team
|
|
// type: integer
|
|
// format: int64
|
|
// required: true
|
|
// - name: org
|
|
// in: path
|
|
// description: organization that owns the repo to add
|
|
// type: string
|
|
// required: true
|
|
// - name: repo
|
|
// in: path
|
|
// description: name of the repo to add
|
|
// type: string
|
|
// required: true
|
|
// responses:
|
|
// "204":
|
|
// "$ref": "#/responses/empty"
|
|
// "403":
|
|
// "$ref": "#/responses/forbidden"
|
|
|
|
repo := getRepositoryByParams(ctx)
|
|
if ctx.Written() {
|
|
return
|
|
}
|
|
if access, err := access_model.AccessLevel(ctx, ctx.Doer, repo); err != nil {
|
|
ctx.Error(http.StatusInternalServerError, "AccessLevel", err)
|
|
return
|
|
} else if access < perm.AccessModeAdmin {
|
|
ctx.Error(http.StatusForbidden, "", "Must have admin-level access to the repository")
|
|
return
|
|
}
|
|
if err := org_service.TeamAddRepository(ctx.Org.Team, repo); err != nil {
|
|
ctx.Error(http.StatusInternalServerError, "TeamAddRepository", err)
|
|
return
|
|
}
|
|
ctx.Status(http.StatusNoContent)
|
|
}
|
|
|
|
// RemoveTeamRepository api for removing a repository from a team
|
|
func RemoveTeamRepository(ctx *context.APIContext) {
|
|
// swagger:operation DELETE /teams/{id}/repos/{org}/{repo} organization orgRemoveTeamRepository
|
|
// ---
|
|
// summary: Remove a repository from a team
|
|
// description: This does not delete the repository, it only removes the
|
|
// repository from the team.
|
|
// produces:
|
|
// - application/json
|
|
// parameters:
|
|
// - name: id
|
|
// in: path
|
|
// description: id of the team
|
|
// type: integer
|
|
// format: int64
|
|
// required: true
|
|
// - name: org
|
|
// in: path
|
|
// description: organization that owns the repo to remove
|
|
// type: string
|
|
// required: true
|
|
// - name: repo
|
|
// in: path
|
|
// description: name of the repo to remove
|
|
// type: string
|
|
// required: true
|
|
// responses:
|
|
// "204":
|
|
// "$ref": "#/responses/empty"
|
|
// "403":
|
|
// "$ref": "#/responses/forbidden"
|
|
|
|
repo := getRepositoryByParams(ctx)
|
|
if ctx.Written() {
|
|
return
|
|
}
|
|
if access, err := access_model.AccessLevel(ctx, ctx.Doer, repo); err != nil {
|
|
ctx.Error(http.StatusInternalServerError, "AccessLevel", err)
|
|
return
|
|
} else if access < perm.AccessModeAdmin {
|
|
ctx.Error(http.StatusForbidden, "", "Must have admin-level access to the repository")
|
|
return
|
|
}
|
|
if err := models.RemoveRepository(ctx.Org.Team, repo.ID); err != nil {
|
|
ctx.Error(http.StatusInternalServerError, "RemoveRepository", err)
|
|
return
|
|
}
|
|
ctx.Status(http.StatusNoContent)
|
|
}
|
|
|
|
// SearchTeam api for searching teams
|
|
func SearchTeam(ctx *context.APIContext) {
|
|
// swagger:operation GET /orgs/{org}/teams/search organization teamSearch
|
|
// ---
|
|
// summary: Search for teams within an organization
|
|
// produces:
|
|
// - application/json
|
|
// parameters:
|
|
// - name: org
|
|
// in: path
|
|
// description: name of the organization
|
|
// type: string
|
|
// required: true
|
|
// - name: q
|
|
// in: query
|
|
// description: keywords to search
|
|
// type: string
|
|
// - name: include_desc
|
|
// in: query
|
|
// description: include search within team description (defaults to true)
|
|
// type: boolean
|
|
// - name: page
|
|
// in: query
|
|
// description: page number of results to return (1-based)
|
|
// type: integer
|
|
// - name: limit
|
|
// in: query
|
|
// description: page size of results
|
|
// type: integer
|
|
// responses:
|
|
// "200":
|
|
// description: "SearchResults of a successful search"
|
|
// schema:
|
|
// type: object
|
|
// properties:
|
|
// ok:
|
|
// type: boolean
|
|
// data:
|
|
// type: array
|
|
// items:
|
|
// "$ref": "#/definitions/Team"
|
|
|
|
listOptions := utils.GetListOptions(ctx)
|
|
|
|
opts := &organization.SearchTeamOptions{
|
|
Keyword: ctx.FormTrim("q"),
|
|
OrgID: ctx.Org.Organization.ID,
|
|
IncludeDesc: ctx.FormString("include_desc") == "" || ctx.FormBool("include_desc"),
|
|
ListOptions: listOptions,
|
|
}
|
|
|
|
// Only admin is allowd to search for all teams
|
|
if !ctx.Doer.IsAdmin {
|
|
opts.UserID = ctx.Doer.ID
|
|
}
|
|
|
|
teams, maxResults, err := organization.SearchTeam(opts)
|
|
if err != nil {
|
|
log.Error("SearchTeam failed: %v", err)
|
|
ctx.JSON(http.StatusInternalServerError, map[string]interface{}{
|
|
"ok": false,
|
|
"error": "SearchTeam internal failure",
|
|
})
|
|
return
|
|
}
|
|
|
|
apiTeams, err := convert.ToTeams(ctx, teams, false)
|
|
if err != nil {
|
|
ctx.InternalServerError(err)
|
|
return
|
|
}
|
|
|
|
ctx.SetLinkHeader(int(maxResults), listOptions.PageSize)
|
|
ctx.SetTotalCountHeader(maxResults)
|
|
ctx.JSON(http.StatusOK, map[string]interface{}{
|
|
"ok": true,
|
|
"data": apiTeams,
|
|
})
|
|
}
|
|
|
|
func ListTeamActivityFeeds(ctx *context.APIContext) {
|
|
// swagger:operation GET /teams/{id}/activities/feeds organization orgListTeamActivityFeeds
|
|
// ---
|
|
// summary: List a team's activity feeds
|
|
// produces:
|
|
// - application/json
|
|
// parameters:
|
|
// - name: id
|
|
// in: path
|
|
// description: id of the team
|
|
// type: integer
|
|
// format: int64
|
|
// required: true
|
|
// - name: date
|
|
// in: query
|
|
// description: the date of the activities to be found
|
|
// type: string
|
|
// format: date
|
|
// - name: page
|
|
// in: query
|
|
// description: page number of results to return (1-based)
|
|
// type: integer
|
|
// - name: limit
|
|
// in: query
|
|
// description: page size of results
|
|
// type: integer
|
|
// responses:
|
|
// "200":
|
|
// "$ref": "#/responses/ActivityFeedsList"
|
|
// "404":
|
|
// "$ref": "#/responses/notFound"
|
|
|
|
listOptions := utils.GetListOptions(ctx)
|
|
|
|
opts := activities_model.GetFeedsOptions{
|
|
RequestedTeam: ctx.Org.Team,
|
|
Actor: ctx.Doer,
|
|
IncludePrivate: true,
|
|
Date: ctx.FormString("date"),
|
|
ListOptions: listOptions,
|
|
}
|
|
|
|
feeds, count, err := activities_model.GetFeeds(ctx, opts)
|
|
if err != nil {
|
|
ctx.Error(http.StatusInternalServerError, "GetFeeds", err)
|
|
return
|
|
}
|
|
ctx.SetTotalCountHeader(count)
|
|
|
|
ctx.JSON(http.StatusOK, convert.ToActivities(ctx, feeds, ctx.Doer))
|
|
}
|