harbor/dao/role.go

/*
   Copyright (c) 2016 VMware, Inc. All Rights Reserved.
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
   You may obtain a copy of the License at

       http://www.apache.org/licenses/LICENSE-2.0

   Unless required by applicable law or agreed to in writing, software
   distributed under the License is distributed on an "AS IS" BASIS,
   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
   See the License for the specific language governing permissions and
   limitations under the License.
*/
package dao

import (
	"github.com/vmware/harbor/models"

	"github.com/astaxie/beego/orm"
)

func GetUserProjectRoles(userQuery models.User, projectID int64) ([]models.Role, error) {

	o := orm.NewOrm()

	sql := `select distinct r.role_id, r.role_code, r.name 
		from role r 
		left join project_role pr on r.role_id = pr.role_id
		left join user_project_role upr on pr.pr_id = upr.pr_id
		left join user u on u.user_id = upr.user_id
		where u.deleted = 0 
		  and u.user_id = ? `
	queryParam := make([]interface{}, 1)
	queryParam = append(queryParam, userQuery.UserID)

	if projectID > 0 {
		sql += ` and pr.project_id = ? `
		queryParam = append(queryParam, projectID)
	}
	if userQuery.RoleID > 0 {
		sql += ` and r.role_id = ? `
		queryParam = append(queryParam, userQuery.RoleID)
	}

	var roleList []models.Role
	_, err := o.Raw(sql, queryParam).QueryRows(&roleList)

	if err != nil {
		return nil, err
	}
	return roleList, nil
}

func IsAdminRole(userID int) (bool, error) {
	//role_id == 1 means the user is system admin
	userQuery := models.User{UserID: userID, RoleID: models.SYSADMIN}
	adminRoleList, err := GetUserProjectRoles(userQuery, 0)
	if err != nil {
		return false, err
	}
	return len(adminRoleList) > 0, nil
}
Initial commit 2016-02-01 12:59:10 +01:00			`/*`
			`Copyright (c) 2016 VMware, Inc. All Rights Reserved.`
			`Licensed under the Apache License, Version 2.0 (the "License");`
			`you may not use this file except in compliance with the License.`
			`You may obtain a copy of the License at`

			`http://www.apache.org/licenses/LICENSE-2.0`

			`Unless required by applicable law or agreed to in writing, software`
			`distributed under the License is distributed on an "AS IS" BASIS,`
			`WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`See the License for the specific language governing permissions and`
			`limitations under the License.`
			`*/`
			`package dao`

			`import (`
			`"github.com/vmware/harbor/models"`

			`"github.com/astaxie/beego/orm"`
			`)`

golint refactor for dao 2016-02-26 04:26:54 +01:00			`func GetUserProjectRoles(userQuery models.User, projectID int64) ([]models.Role, error) {`
Initial commit 2016-02-01 12:59:10 +01:00
			`o := orm.NewOrm()`

			sql := `select distinct r.role_id, r.role_code, r.name
			`from role r`
			`left join project_role pr on r.role_id = pr.role_id`
			`left join user_project_role upr on pr.pr_id = upr.pr_id`
			`left join user u on u.user_id = upr.user_id`
			`where u.deleted = 0`
			and u.user_id = ? `
			`queryParam := make([]interface{}, 1)`
golint refactor for model 2016-02-26 03:15:01 +01:00			`queryParam = append(queryParam, userQuery.UserID)`
Initial commit 2016-02-01 12:59:10 +01:00
golint refactor for dao 2016-02-26 04:26:54 +01:00			`if projectID > 0 {`
Initial commit 2016-02-01 12:59:10 +01:00			sql += ` and pr.project_id = ? `
golint refactor for dao 2016-02-26 04:26:54 +01:00			`queryParam = append(queryParam, projectID)`
Initial commit 2016-02-01 12:59:10 +01:00			`}`
golint refactor for model 2016-02-26 03:15:01 +01:00			`if userQuery.RoleID > 0 {`
Initial commit 2016-02-01 12:59:10 +01:00			sql += ` and r.role_id = ? `
golint refactor for model 2016-02-26 03:15:01 +01:00			`queryParam = append(queryParam, userQuery.RoleID)`
Initial commit 2016-02-01 12:59:10 +01:00			`}`

			`var roleList []models.Role`
			`_, err := o.Raw(sql, queryParam).QueryRows(&roleList)`

			`if err != nil {`
			`return nil, err`
			`}`
			`return roleList, nil`
			`}`

golint refactor for dao 2016-02-26 04:26:54 +01:00			`func IsAdminRole(userID int) (bool, error) {`
Initial commit 2016-02-01 12:59:10 +01:00			`//role_id == 1 means the user is system admin`
golint refactor for dao 2016-02-26 04:26:54 +01:00			`userQuery := models.User{UserID: userID, RoleID: models.SYSADMIN}`
Initial commit 2016-02-01 12:59:10 +01:00			`adminRoleList, err := GetUserProjectRoles(userQuery, 0)`
			`if err != nil {`
			`return false, err`
			`}`
			`return len(adminRoleList) > 0, nil`
			`}`