harbor/api/project_member.go

/*
   Copyright (c) 2016 VMware, Inc. All Rights Reserved.
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
   You may obtain a copy of the License at

       http://www.apache.org/licenses/LICENSE-2.0

   Unless required by applicable law or agreed to in writing, software
   distributed under the License is distributed on an "AS IS" BASIS,
   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
   See the License for the specific language governing permissions and
   limitations under the License.
*/
package api

import (
	"github.com/vmware/harbor/dao"
	"github.com/vmware/harbor/models"

	"github.com/astaxie/beego"

	"strconv"
)

type ProjectMemberAPI struct {
	BaseAPI
	memberId      int
	currentUserId int
	project       *models.Project
}

type memberReq struct {
	Username string `json:"user_name"`
	UserId   int    `json:"user_id"`
	Roles    []int  `json:"roles"`
}

func (pma *ProjectMemberAPI) Prepare() {
	pid, err := strconv.ParseInt(pma.Ctx.Input.Param(":pid"), 10, 64)
	if err != nil {
		beego.Error("Error parsing project id:", pid, ", error:", err)
		pma.CustomAbort(400, "invalid project Id")
		return
	}
	p, err := dao.GetProjectById(models.Project{ProjectId: pid})
	if err != nil {
		beego.Error("Error occurred in GetProjectById:", err)
		pma.CustomAbort(500, "Internal error.")
	}

	if p == nil {
		beego.Warning("Project with id:", pid, "does not exist.")
		pma.CustomAbort(404, "Project does not exist")
	}
	pma.project = p
	pma.currentUserId = pma.ValidateUser()
	mid := pma.Ctx.Input.Param(":mid")
	if mid == "current" {
		pma.memberId = pma.currentUserId
	} else if len(mid) == 0 {
		pma.memberId = 0
	} else if len(mid) > 0 {
		memberId, err := strconv.Atoi(mid)
		if err != nil {
			beego.Error("Invalid member Id, error:", err)
			pma.CustomAbort(400, "Invalid member id")
		}
		pma.memberId = memberId
	}
}

func (pma *ProjectMemberAPI) Get() {
	pid := pma.project.ProjectId
	if !CheckProjectPermission(pma.currentUserId, pid) {
		beego.Warning("Current user, user id :", pma.currentUserId, "does not have permission for project, id:", pid)
		pma.RenderError(403, "")
		return
	}
	if pma.memberId == 0 { //member id not set return list of the members
		queryProject := models.Project{ProjectId: pid}
		username := pma.GetString("username")
		queryUser := models.User{Username: "%" + username + "%"}
		userList, err := dao.GetUserByProject(queryProject, queryUser)
		if err != nil {
			beego.Error("Failed to query database for member list, error:", err)
			pma.RenderError(500, "Internal Server Error")
			return
		}
		pma.Data["json"] = userList
	} else { //return detail of a  member
		roleList, err := dao.GetUserProjectRoles(models.User{UserId: pma.memberId}, pid)
		if err != nil {
			beego.Error("Error occurred in GetUserProjectRoles:", err)
			pma.CustomAbort(500, "Internal error.")
		}
		//return empty role list to indicate if a user is not a member
		result := make(map[string]interface{})
		user, err := dao.GetUser(models.User{UserId: pma.memberId})
		if err != nil {
			beego.Error("Error occurred in GetUser:", err)
			pma.CustomAbort(500, "Internal error.")
		}
		result["user_name"] = user.Username
		result["user_id"] = pma.memberId
		result["roles"] = roleList
		pma.Data["json"] = result
	}
	pma.ServeJSON()
}

func (pma *ProjectMemberAPI) Post() {
	pid := pma.project.ProjectId
	userQuery := models.User{UserId: pma.currentUserId, RoleId: models.PROJECTADMIN}
	rolelist, err := dao.GetUserProjectRoles(userQuery, pid)
	if err != nil {
		beego.Error("Error occurred in GetUserProjectRoles:", err)
		pma.CustomAbort(500, "Internal error.")
	}
	if len(rolelist) == 0 {
		beego.Warning("Current user, id:", pma.currentUserId, "does not have project admin role for project, id:", pid)
		pma.RenderError(403, "")
		return
	}
	var req memberReq
	pma.DecodeJsonReq(&req)
	username := req.Username
	userId := CheckUserExists(username)
	if userId <= 0 {
		beego.Warning("User does not exist, user name:", username)
		pma.RenderError(404, "User does not exist")
		return
	}
	rolelist, err = dao.GetUserProjectRoles(models.User{UserId: userId}, pid)
	if err != nil {
		beego.Error("Error occurred in GetUserProjectRoles:", err)
		pma.CustomAbort(500, "Internal error.")
	}
	if len(rolelist) > 0 {
		beego.Warning("user is already added to project, user id:", userId, ", project id:", pid)
		pma.RenderError(409, "user is ready in project")
		return
	}

	for _, rid := range req.Roles {
		err = dao.AddUserProjectRole(userId, pid, int(rid))
		if err != nil {
			beego.Error("Failed to update DB to add project user role, project id:", pid, ", user id:", userId, ", role id:", rid)
			pma.RenderError(500, "Failed to update data in database")
			return
		}
	}
}

func (pma *ProjectMemberAPI) Put() {
	pid := pma.project.ProjectId
	mid := pma.memberId
	userQuery := models.User{UserId: pma.currentUserId, RoleId: models.PROJECTADMIN}
	rolelist, err := dao.GetUserProjectRoles(userQuery, pid)
	if err != nil {
		beego.Error("Error occurred in GetUserProjectRoles:", err)
		pma.CustomAbort(500, "Internal error.")
	}
	if len(rolelist) == 0 {
		beego.Warning("Current user, id:", pma.currentUserId, ", does not have project admin role for project, id:", pid)
		pma.RenderError(403, "")
		return
	}
	var req memberReq
	pma.DecodeJsonReq(&req)
	roleList, err := dao.GetUserProjectRoles(models.User{UserId: mid}, pid)
	if len(roleList) == 0 {
		beego.Warning("User is not in project, user id:", mid, ", project id:", pid)
		pma.RenderError(404, "user not exist in project")
		return
	}
	//TODO: delete and insert should in one transaction
	//delete user project role record for the given user
	err = dao.DeleteUserProjectRoles(mid, pid)
	if err != nil {
		beego.Error("Failed to delete project roles for user, user id:", mid, ", project id: ", pid, ", error: ", err)
		pma.RenderError(500, "Failed to update data in DB")
		return
	}
	//insert roles in request
	for _, rid := range req.Roles {
		err = dao.AddUserProjectRole(mid, pid, int(rid))
		if err != nil {
			beego.Error("Failed to update DB to add project user role, project id:", pid, ", user id:", mid, ", role id:", rid)
			pma.RenderError(500, "Failed to update data in database")
			return
		}
	}
}

func (pma *ProjectMemberAPI) Delete() {
	pid := pma.project.ProjectId
	mid := pma.memberId
	userQuery := models.User{UserId: pma.currentUserId, RoleId: models.PROJECTADMIN}
	rolelist, err := dao.GetUserProjectRoles(userQuery, pid)
	if len(rolelist) == 0 {
		beego.Warning("Current user, id:", pma.currentUserId, ", does not have project admin role for project, id:", pid)
		pma.RenderError(403, "")
		return
	}
	err = dao.DeleteUserProjectRoles(mid, pid)
	if err != nil {
		beego.Error("Failed to delete project roles for user, user id:", mid, ", project id:", pid, ", error:", err)
		pma.RenderError(500, "Failed to update data in DB")
		return
	}
}
Initial commit 2016-02-01 12:59:10 +01:00			`/*`
			`Copyright (c) 2016 VMware, Inc. All Rights Reserved.`
			`Licensed under the Apache License, Version 2.0 (the "License");`
			`you may not use this file except in compliance with the License.`
			`You may obtain a copy of the License at`

			`http://www.apache.org/licenses/LICENSE-2.0`

			`Unless required by applicable law or agreed to in writing, software`
			`distributed under the License is distributed on an "AS IS" BASIS,`
			`WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`See the License for the specific language governing permissions and`
			`limitations under the License.`
			`*/`
			`package api`

			`import (`
			`"github.com/vmware/harbor/dao"`
			`"github.com/vmware/harbor/models"`

			`"github.com/astaxie/beego"`

			`"strconv"`
			`)`

			`type ProjectMemberAPI struct {`
			`BaseAPI`
			`memberId int`
			`currentUserId int`
			`project *models.Project`
			`}`

			`type memberReq struct {`
			Username string `json:"user_name"`
			UserId int `json:"user_id"`
			Roles []int `json:"roles"`
			`}`

			`func (pma *ProjectMemberAPI) Prepare() {`
			`pid, err := strconv.ParseInt(pma.Ctx.Input.Param(":pid"), 10, 64)`
			`if err != nil {`
			`beego.Error("Error parsing project id:", pid, ", error:", err)`
			`pma.CustomAbort(400, "invalid project Id")`
			`return`
			`}`
			`p, err := dao.GetProjectById(models.Project{ProjectId: pid})`
			`if err != nil {`
			`beego.Error("Error occurred in GetProjectById:", err)`
			`pma.CustomAbort(500, "Internal error.")`
			`}`

			`if p == nil {`
			`beego.Warning("Project with id:", pid, "does not exist.")`
			`pma.CustomAbort(404, "Project does not exist")`
			`}`
			`pma.project = p`
			`pma.currentUserId = pma.ValidateUser()`
			`mid := pma.Ctx.Input.Param(":mid")`
			`if mid == "current" {`
			`pma.memberId = pma.currentUserId`
			`} else if len(mid) == 0 {`
			`pma.memberId = 0`
			`} else if len(mid) > 0 {`
			`memberId, err := strconv.Atoi(mid)`
			`if err != nil {`
			`beego.Error("Invalid member Id, error:", err)`
			`pma.CustomAbort(400, "Invalid member id")`
			`}`
			`pma.memberId = memberId`
			`}`
			`}`

			`func (pma *ProjectMemberAPI) Get() {`
			`pid := pma.project.ProjectId`
			`if !CheckProjectPermission(pma.currentUserId, pid) {`
			`beego.Warning("Current user, user id :", pma.currentUserId, "does not have permission for project, id:", pid)`
			`pma.RenderError(403, "")`
			`return`
			`}`
			`if pma.memberId == 0 { //member id not set return list of the members`
			`queryProject := models.Project{ProjectId: pid}`
			`username := pma.GetString("username")`
			`queryUser := models.User{Username: "%" + username + "%"}`
			`userList, err := dao.GetUserByProject(queryProject, queryUser)`
			`if err != nil {`
			`beego.Error("Failed to query database for member list, error:", err)`
			`pma.RenderError(500, "Internal Server Error")`
			`return`
			`}`
			`pma.Data["json"] = userList`
			`} else { //return detail of a member`
			`roleList, err := dao.GetUserProjectRoles(models.User{UserId: pma.memberId}, pid)`
			`if err != nil {`
			`beego.Error("Error occurred in GetUserProjectRoles:", err)`
			`pma.CustomAbort(500, "Internal error.")`
			`}`
			`//return empty role list to indicate if a user is not a member`
			`result := make(map[string]interface{})`
			`user, err := dao.GetUser(models.User{UserId: pma.memberId})`
			`if err != nil {`
			`beego.Error("Error occurred in GetUser:", err)`
			`pma.CustomAbort(500, "Internal error.")`
			`}`
			`result["user_name"] = user.Username`
			`result["user_id"] = pma.memberId`
			`result["roles"] = roleList`
			`pma.Data["json"] = result`
			`}`
			`pma.ServeJSON()`
			`}`

			`func (pma *ProjectMemberAPI) Post() {`
			`pid := pma.project.ProjectId`
			`userQuery := models.User{UserId: pma.currentUserId, RoleId: models.PROJECTADMIN}`
			`rolelist, err := dao.GetUserProjectRoles(userQuery, pid)`
			`if err != nil {`
			`beego.Error("Error occurred in GetUserProjectRoles:", err)`
			`pma.CustomAbort(500, "Internal error.")`
			`}`
			`if len(rolelist) == 0 {`
			`beego.Warning("Current user, id:", pma.currentUserId, "does not have project admin role for project, id:", pid)`
			`pma.RenderError(403, "")`
			`return`
			`}`
			`var req memberReq`
			`pma.DecodeJsonReq(&req)`
			`username := req.Username`
			`userId := CheckUserExists(username)`
			`if userId <= 0 {`
			`beego.Warning("User does not exist, user name:", username)`
			`pma.RenderError(404, "User does not exist")`
			`return`
			`}`
			`rolelist, err = dao.GetUserProjectRoles(models.User{UserId: userId}, pid)`
			`if err != nil {`
			`beego.Error("Error occurred in GetUserProjectRoles:", err)`
			`pma.CustomAbort(500, "Internal error.")`
			`}`
			`if len(rolelist) > 0 {`
			`beego.Warning("user is already added to project, user id:", userId, ", project id:", pid)`
			`pma.RenderError(409, "user is ready in project")`
			`return`
			`}`

			`for _, rid := range req.Roles {`
			`err = dao.AddUserProjectRole(userId, pid, int(rid))`
			`if err != nil {`
			`beego.Error("Failed to update DB to add project user role, project id:", pid, ", user id:", userId, ", role id:", rid)`
			`pma.RenderError(500, "Failed to update data in database")`
			`return`
			`}`
			`}`
			`}`

			`func (pma *ProjectMemberAPI) Put() {`
			`pid := pma.project.ProjectId`
			`mid := pma.memberId`
			`userQuery := models.User{UserId: pma.currentUserId, RoleId: models.PROJECTADMIN}`
			`rolelist, err := dao.GetUserProjectRoles(userQuery, pid)`
			`if err != nil {`
			`beego.Error("Error occurred in GetUserProjectRoles:", err)`
			`pma.CustomAbort(500, "Internal error.")`
			`}`
			`if len(rolelist) == 0 {`
			`beego.Warning("Current user, id:", pma.currentUserId, ", does not have project admin role for project, id:", pid)`
			`pma.RenderError(403, "")`
			`return`
			`}`
			`var req memberReq`
			`pma.DecodeJsonReq(&req)`
			`roleList, err := dao.GetUserProjectRoles(models.User{UserId: mid}, pid)`
			`if len(roleList) == 0 {`
			`beego.Warning("User is not in project, user id:", mid, ", project id:", pid)`
			`pma.RenderError(404, "user not exist in project")`
			`return`
			`}`
			`//TODO: delete and insert should in one transaction`
			`//delete user project role record for the given user`
			`err = dao.DeleteUserProjectRoles(mid, pid)`
			`if err != nil {`
			`beego.Error("Failed to delete project roles for user, user id:", mid, ", project id: ", pid, ", error: ", err)`
			`pma.RenderError(500, "Failed to update data in DB")`
			`return`
			`}`
			`//insert roles in request`
			`for _, rid := range req.Roles {`
			`err = dao.AddUserProjectRole(mid, pid, int(rid))`
			`if err != nil {`
			`beego.Error("Failed to update DB to add project user role, project id:", pid, ", user id:", mid, ", role id:", rid)`
			`pma.RenderError(500, "Failed to update data in database")`
			`return`
			`}`
			`}`
			`}`

			`func (pma *ProjectMemberAPI) Delete() {`
			`pid := pma.project.ProjectId`
			`mid := pma.memberId`
			`userQuery := models.User{UserId: pma.currentUserId, RoleId: models.PROJECTADMIN}`
			`rolelist, err := dao.GetUserProjectRoles(userQuery, pid)`
			`if len(rolelist) == 0 {`
			`beego.Warning("Current user, id:", pma.currentUserId, ", does not have project admin role for project, id:", pid)`
			`pma.RenderError(403, "")`
			`return`
			`}`
			`err = dao.DeleteUserProjectRoles(mid, pid)`
			`if err != nil {`
			`beego.Error("Failed to delete project roles for user, user id:", mid, ", project id:", pid, ", error:", err)`
			`pma.RenderError(500, "Failed to update data in DB")`
			`return`
			`}`
			`}`