closed-social
/
gitea
3
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6097 Commits
2 Branches
178 MiB
Tree: 4b48a45bac
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '4b48a45bac'
${ noResults }
gitea/models/org_team.go

636 lines
15 KiB
Raw Normal View History

#1692 add admin APIs to add/remove a user from teams
8 years ago
Fix ignored errors when checking if organization, team member (#3177)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
golint for models/org_team.go
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Add units to team (#947) * add units to team * fix lint * finish team setting backend * finished permission controll on routes * fix import blank line * add unit check on ssh/http pull and push and fix test failed * fix fixtures data * remove unused code
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
improve protected branch to add whitelist support (#2451) * improve protected branch to add whitelist support * fix lint * fix style check * fix tests * fix description on UI and import * fix test * bug fixed * fix tests and languages * move isSliceInt64Eq to util pkg; improve function names & typo
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
golint for models/org_team.go
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
golint for models/org_team.go
8 years ago
rename all uID -> userID on models/org_team.go
8 years ago
Fix ignored errors when checking if organization, team member (#3177)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Bug fixes and unit tests for org_team (#1016)
7 years ago
optimization for team get repos (#953)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
rename all uID -> userID on models/org_team.go
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
rename all uID -> userID on models/org_team.go
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Fix race condition in team functions (#3268)
6 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Fix race condition in team functions (#3268)
6 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Refactor User.Id to User.ID
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Refactor session close as xorm already does everything needed internally (#2020)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Replace deprecated Id method with ID (#2655)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Refactor and fix incorrect comment (#1247)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Run "make fmt" with go-1.6 (#1333)
7 years ago
Refactor and fix incorrect comment (#1247)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Refactor and fix incorrect comment (#1247)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Refactor session close as xorm already does everything needed internally (#2020)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
EnableUnit() -> UnitEnabled() (#2242)
7 years ago
Add units to team (#947) * add units to team * fix lint * finish team setting backend * finished permission controll on routes * fix import blank line * add unit check on ssh/http pull and push and fix test failed * fix fixtures data * remove unused code
7 years ago
golint for models/org_team.go
8 years ago
Bug fixes and unit tests for org_team (#1016)
7 years ago
Adds checking of reserved keywords against team names (#22)
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Adds checking of reserved keywords against team names (#22)
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Adds checking of reserved keywords against team names (#22)
8 years ago
Replace deprecated Id method with ID (#2655)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Improve org error handling (#2117) * Improve ErrOrgNotExist type Return new error type Use good error check Use new method to check error Update tests * Fix unchanged method name report
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Rewrite XORM queries
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
golint for models/org_team.go
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
golint for models/org_team.go
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
golint for models/org_team.go
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
golint for models/org_team.go
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Replace deprecated Id method with ID (#2655)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
golint for models/org_team.go
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Refactor session close as xorm already does everything needed internally (#2020)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
fix xorm NewSession uncorrected usages (#774)
7 years ago
Rewrite XORM queries
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Replace deprecated Id method with ID (#2655)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Bug fixes and unit tests for org_team (#1016)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Refactor session close as xorm already does everything needed internally (#2020)
7 years ago
Remove unnecessary loads in org_team (#1090)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Remove unnecessary loads in org_team (#1090)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Bug fixes and unit tests for org_team (#1016)
7 years ago
Remove unnecessary loads in org_team (#1090)
7 years ago
Bug fixes and unit tests for org_team (#1016)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Remove unnecessary loads in org_team (#1090)
7 years ago
Rewrite XORM queries
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Replace deprecated Id method with ID (#2655)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Remove unnecessary loads in org_team (#1090)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
golint for models/org_team.go
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Fix ignored errors when checking if organization, team member (#3177)
7 years ago
Rewrite XORM queries
8 years ago
rename all uID -> userID on models/org_team.go
8 years ago
Fix ignored errors when checking if organization, team member (#3177)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Fix ignored errors when checking if organization, team member (#3177)
7 years ago
rename all uID -> userID on models/org_team.go
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Refactor and fix incorrect comment (#1247)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Refactor and fix incorrect comment (#1247)
7 years ago
Rewrite XORM queries
8 years ago
Refactor and fix incorrect comment (#1247)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Refactor and fix incorrect comment (#1247)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Refactor and fix incorrect comment (#1247)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Small opitimization for getUserTeams (#954) * Small opitimization for getUserTeams * more compact
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
rename all uID -> userID on models/org_team.go
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
Fix ignored errors when checking if organization, team member (#3177)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Refactor session close as xorm already does everything needed internally (#2020)
7 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
rename all uID -> userID on models/org_team.go
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Fix race condition in team functions (#3268)
6 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Fix race condition in team functions (#3268)
6 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
Fix ignored errors when checking if organization, team member (#3177)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
rename all uID -> userID on models/org_team.go
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
rename all uID -> userID on models/org_team.go
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Rewrite XORM queries
8 years ago
Replace deprecated Id method with ID (#2655)
7 years ago
Reduce usage of allcols on update (#2596) * reduce usage of allcols on update * fix bug and tests
7 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
Remove unnecessary loads in org_team (#1090)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Refactor session close as xorm already does everything needed internally (#2020)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
improve protected branch to add whitelist support (#2451) * improve protected branch to add whitelist support * fix lint * fix style check * fix tests * fix description on UI and import * fix test * bug fixed * fix tests and languages * move isSliceInt64Eq to util pkg; improve function names & typo
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Rewrite XORM queries
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
improve protected branch to add whitelist support (#2451) * improve protected branch to add whitelist support * fix lint * fix style check * fix tests * fix description on UI and import * fix test * bug fixed * fix tests and languages * move isSliceInt64Eq to util pkg; improve function names & typo
7 years ago
 
  1. // Copyright 2016 The Gogs Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. package models
  6. 

  7. import (
  8. 	"errors"
  9. 	"fmt"
  10. 	"strings"
  11. 

  12. 	"code.gitea.io/gitea/modules/log"
  13. )
  14. 

  15. const ownerTeamName = "Owners"
  16. 

  17. // Team represents a organization team.

  18. type Team struct {
  19. 	ID          int64 `xorm:"pk autoincr"`
  20. 	OrgID       int64 `xorm:"INDEX"`
  21. 	LowerName   string
  22. 	Name        string
  23. 	Description string
  24. 	Authorize   AccessMode
  25. 	Repos       []*Repository `xorm:"-"`
  26. 	Members     []*User       `xorm:"-"`
  27. 	NumRepos    int
  28. 	NumMembers  int
  29. 	UnitTypes   []UnitType `xorm:"json"`
  30. }
  31. 

  32. // GetUnitTypes returns unit types the team owned, empty means all the unit types

  33. func (t *Team) GetUnitTypes() []UnitType {
  34. 	if len(t.UnitTypes) == 0 {
  35. 		return allRepUnitTypes
  36. 	}
  37. 	return t.UnitTypes
  38. }
  39. 

  40. // HasWriteAccess returns true if team has at least write level access mode.

  41. func (t *Team) HasWriteAccess() bool {
  42. 	return t.Authorize >= AccessModeWrite
  43. }
  44. 

  45. // IsOwnerTeam returns true if team is owner team.

  46. func (t *Team) IsOwnerTeam() bool {
  47. 	return t.Name == ownerTeamName
  48. }
  49. 

  50. // IsMember returns true if given user is a member of team.

  51. func (t *Team) IsMember(userID int64) bool {
  52. 	isMember, err := IsTeamMember(t.OrgID, t.ID, userID)
  53. 	if err != nil {
  54. 		log.Error(4, "IsMember: %v", err)
  55. 		return false
  56. 	}
  57. 	return isMember
  58. }
  59. 

  60. func (t *Team) getRepositories(e Engine) error {
  61. 	return e.Join("INNER", "team_repo", "repository.id = team_repo.repo_id").
  62. 		Where("team_repo.team_id=?", t.ID).Find(&t.Repos)
  63. }
  64. 

  65. // GetRepositories returns all repositories in team of organization.

  66. func (t *Team) GetRepositories() error {
  67. 	return t.getRepositories(x)
  68. }
  69. 

  70. func (t *Team) getMembers(e Engine) (err error) {
  71. 	t.Members, err = getTeamMembers(e, t.ID)
  72. 	return err
  73. }
  74. 

  75. // GetMembers returns all members in team of organization.

  76. func (t *Team) GetMembers() (err error) {
  77. 	return t.getMembers(x)
  78. }
  79. 

  80. // AddMember adds new membership of the team to the organization,

  81. // the user will have membership to the organization automatically when needed.

  82. func (t *Team) AddMember(userID int64) error {
  83. 	return AddTeamMember(t, userID)
  84. }
  85. 

  86. // RemoveMember removes member from team of organization.

  87. func (t *Team) RemoveMember(userID int64) error {
  88. 	return RemoveTeamMember(t, userID)
  89. }
  90. 

  91. func (t *Team) hasRepository(e Engine, repoID int64) bool {
  92. 	return hasTeamRepo(e, t.OrgID, t.ID, repoID)
  93. }
  94. 

  95. // HasRepository returns true if given repository belong to team.

  96. func (t *Team) HasRepository(repoID int64) bool {
  97. 	return t.hasRepository(x, repoID)
  98. }
  99. 

  100. func (t *Team) addRepository(e Engine, repo *Repository) (err error) {
  101. 	if err = addTeamRepo(e, t.OrgID, t.ID, repo.ID); err != nil {
  102. 		return err
  103. 	}
  104. 

  105. 	if _, err = e.Incr("num_repos").ID(t.ID).Update(new(Team)); err != nil {
  106. 		return fmt.Errorf("update team: %v", err)
  107. 	}
  108. 

  109. 	t.NumRepos++
  110. 

  111. 	if err = repo.recalculateTeamAccesses(e, 0); err != nil {
  112. 		return fmt.Errorf("recalculateAccesses: %v", err)
  113. 	}
  114. 

  115. 	if err = t.getMembers(e); err != nil {
  116. 		return fmt.Errorf("getMembers: %v", err)
  117. 	}
  118. 	for _, u := range t.Members {
  119. 		if err = watchRepo(e, u.ID, repo.ID, true); err != nil {
  120. 			return fmt.Errorf("watchRepo: %v", err)
  121. 		}
  122. 	}
  123. 	return nil
  124. }
  125. 

  126. // AddRepository adds new repository to team of organization.

  127. func (t *Team) AddRepository(repo *Repository) (err error) {
  128. 	if repo.OwnerID != t.OrgID {
  129. 		return errors.New("Repository does not belong to organization")
  130. 	} else if t.HasRepository(repo.ID) {
  131. 		return nil
  132. 	}
  133. 

  134. 	sess := x.NewSession()
  135. 	defer sess.Close()
  136. 	if err = sess.Begin(); err != nil {
  137. 		return err
  138. 	}
  139. 

  140. 	if err = t.addRepository(sess, repo); err != nil {
  141. 		return err
  142. 	}
  143. 

  144. 	return sess.Commit()
  145. }
  146. 

  147. func (t *Team) removeRepository(e Engine, repo *Repository, recalculate bool) (err error) {
  148. 	if err = removeTeamRepo(e, t.ID, repo.ID); err != nil {
  149. 		return err
  150. 	}
  151. 

  152. 	t.NumRepos--
  153. 	if _, err = e.ID(t.ID).Cols("num_repos").Update(t); err != nil {
  154. 		return err
  155. 	}
  156. 

  157. 	// Don't need to recalculate when delete a repository from organization.

  158. 	if recalculate {
  159. 		if err = repo.recalculateTeamAccesses(e, t.ID); err != nil {
  160. 			return err
  161. 		}
  162. 	}
  163. 

  164. 	teamUsers, err := getTeamUsersByTeamID(e, t.ID)
  165. 	if err != nil {
  166. 		return fmt.Errorf("getTeamUsersByTeamID: %v", err)
  167. 	}
  168. 	for _, teamUser := range teamUsers {
  169. 		has, err := hasAccess(e, teamUser.UID, repo, AccessModeRead)
  170. 		if err != nil {
  171. 			return err
  172. 		} else if has {
  173. 			continue
  174. 		}
  175. 

  176. 		if err = watchRepo(e, teamUser.UID, repo.ID, false); err != nil {
  177. 			return err
  178. 		}
  179. 	}
  180. 

  181. 	return nil
  182. }
  183. 

  184. // RemoveRepository removes repository from team of organization.

  185. func (t *Team) RemoveRepository(repoID int64) error {
  186. 	if !t.HasRepository(repoID) {
  187. 		return nil
  188. 	}
  189. 

  190. 	repo, err := GetRepositoryByID(repoID)
  191. 	if err != nil {
  192. 		return err
  193. 	}
  194. 

  195. 	sess := x.NewSession()
  196. 	defer sess.Close()
  197. 	if err = sess.Begin(); err != nil {
  198. 		return err
  199. 	}
  200. 

  201. 	if err = t.removeRepository(sess, repo, true); err != nil {
  202. 		return err
  203. 	}
  204. 

  205. 	return sess.Commit()
  206. }
  207. 

  208. // UnitEnabled returns if the team has the given unit type enabled

  209. func (t *Team) UnitEnabled(tp UnitType) bool {
  210. 	if len(t.UnitTypes) == 0 {
  211. 		return true
  212. 	}
  213. 	for _, u := range t.UnitTypes {
  214. 		if u == tp {
  215. 			return true
  216. 		}
  217. 	}
  218. 	return false
  219. }
  220. 

  221. // IsUsableTeamName tests if a name could be as team name

  222. func IsUsableTeamName(name string) error {
  223. 	switch name {
  224. 	case "new":
  225. 		return ErrNameReserved{name}
  226. 	default:
  227. 		return nil
  228. 	}
  229. }
  230. 

  231. // NewTeam creates a record of new team.

  232. // It's caller's responsibility to assign organization ID.

  233. func NewTeam(t *Team) (err error) {
  234. 	if len(t.Name) == 0 {
  235. 		return errors.New("empty team name")
  236. 	}
  237. 

  238. 	if err = IsUsableTeamName(t.Name); err != nil {
  239. 		return err
  240. 	}
  241. 

  242. 	has, err := x.ID(t.OrgID).Get(new(User))
  243. 	if err != nil {
  244. 		return err
  245. 	} else if !has {
  246. 		return ErrOrgNotExist{t.OrgID, ""}
  247. 	}
  248. 

  249. 	t.LowerName = strings.ToLower(t.Name)
  250. 	has, err = x.
  251. 		Where("org_id=?", t.OrgID).
  252. 		And("lower_name=?", t.LowerName).
  253. 		Get(new(Team))
  254. 	if err != nil {
  255. 		return err
  256. 	} else if has {
  257. 		return ErrTeamAlreadyExist{t.OrgID, t.LowerName}
  258. 	}
  259. 

  260. 	sess := x.NewSession()
  261. 	defer sess.Close()
  262. 	if err = sess.Begin(); err != nil {
  263. 		return err
  264. 	}
  265. 

  266. 	if _, err = sess.Insert(t); err != nil {
  267. 		sess.Rollback()
  268. 		return err
  269. 	}
  270. 

  271. 	// Update organization number of teams.

  272. 	if _, err = sess.Exec("UPDATE `user` SET num_teams=num_teams+1 WHERE id = ?", t.OrgID); err != nil {
  273. 		sess.Rollback()
  274. 		return err
  275. 	}
  276. 	return sess.Commit()
  277. }
  278. 

  279. func getTeam(e Engine, orgID int64, name string) (*Team, error) {
  280. 	t := &Team{
  281. 		OrgID:     orgID,
  282. 		LowerName: strings.ToLower(name),
  283. 	}
  284. 	has, err := e.Get(t)
  285. 	if err != nil {
  286. 		return nil, err
  287. 	} else if !has {
  288. 		return nil, ErrTeamNotExist
  289. 	}
  290. 	return t, nil
  291. }
  292. 

  293. // GetTeam returns team by given team name and organization.

  294. func GetTeam(orgID int64, name string) (*Team, error) {
  295. 	return getTeam(x, orgID, name)
  296. }
  297. 

  298. func getTeamByID(e Engine, teamID int64) (*Team, error) {
  299. 	t := new(Team)
  300. 	has, err := e.ID(teamID).Get(t)
  301. 	if err != nil {
  302. 		return nil, err
  303. 	} else if !has {
  304. 		return nil, ErrTeamNotExist
  305. 	}
  306. 	return t, nil
  307. }
  308. 

  309. // GetTeamByID returns team by given ID.

  310. func GetTeamByID(teamID int64) (*Team, error) {
  311. 	return getTeamByID(x, teamID)
  312. }
  313. 

  314. // UpdateTeam updates information of team.

  315. func UpdateTeam(t *Team, authChanged bool) (err error) {
  316. 	if len(t.Name) == 0 {
  317. 		return errors.New("empty team name")
  318. 	}
  319. 

  320. 	if len(t.Description) > 255 {
  321. 		t.Description = t.Description[:255]
  322. 	}
  323. 

  324. 	sess := x.NewSession()
  325. 	defer sess.Close()
  326. 	if err = sess.Begin(); err != nil {
  327. 		return err
  328. 	}
  329. 

  330. 	t.LowerName = strings.ToLower(t.Name)
  331. 	has, err := sess.
  332. 		Where("org_id=?", t.OrgID).
  333. 		And("lower_name=?", t.LowerName).
  334. 		And("id!=?", t.ID).
  335. 		Get(new(Team))
  336. 	if err != nil {
  337. 		return err
  338. 	} else if has {
  339. 		return ErrTeamAlreadyExist{t.OrgID, t.LowerName}
  340. 	}
  341. 

  342. 	if _, err = sess.ID(t.ID).AllCols().Update(t); err != nil {
  343. 		return fmt.Errorf("update: %v", err)
  344. 	}
  345. 

  346. 	// Update access for team members if needed.

  347. 	if authChanged {
  348. 		if err = t.getRepositories(sess); err != nil {
  349. 			return fmt.Errorf("getRepositories: %v", err)
  350. 		}
  351. 

  352. 		for _, repo := range t.Repos {
  353. 			if err = repo.recalculateTeamAccesses(sess, 0); err != nil {
  354. 				return fmt.Errorf("recalculateTeamAccesses: %v", err)
  355. 			}
  356. 		}
  357. 	}
  358. 

  359. 	return sess.Commit()
  360. }
  361. 

  362. // DeleteTeam deletes given team.

  363. // It's caller's responsibility to assign organization ID.

  364. func DeleteTeam(t *Team) error {
  365. 	if err := t.GetRepositories(); err != nil {
  366. 		return err
  367. 	}
  368. 

  369. 	sess := x.NewSession()
  370. 	defer sess.Close()
  371. 	if err := sess.Begin(); err != nil {
  372. 		return err
  373. 	}
  374. 

  375. 	// Delete all accesses.

  376. 	for _, repo := range t.Repos {
  377. 		if err := repo.recalculateTeamAccesses(sess, t.ID); err != nil {
  378. 			return err
  379. 		}
  380. 	}
  381. 

  382. 	// Delete team-repo

  383. 	if _, err := sess.
  384. 		Where("team_id=?", t.ID).
  385. 		Delete(new(TeamRepo)); err != nil {
  386. 		return err
  387. 	}
  388. 

  389. 	// Delete team-user.

  390. 	if _, err := sess.
  391. 		Where("org_id=?", t.OrgID).
  392. 		Where("team_id=?", t.ID).
  393. 		Delete(new(TeamUser)); err != nil {
  394. 		return err
  395. 	}
  396. 

  397. 	// Delete team.

  398. 	if _, err := sess.ID(t.ID).Delete(new(Team)); err != nil {
  399. 		return err
  400. 	}
  401. 	// Update organization number of teams.

  402. 	if _, err := sess.Exec("UPDATE `user` SET num_teams=num_teams-1 WHERE id=?", t.OrgID); err != nil {
  403. 		return err
  404. 	}
  405. 

  406. 	return sess.Commit()
  407. }
  408. 

  409. // ___________                    ____ ___

  410. // \__    ___/___ _____    _____ |    |   \______ ___________

  411. //   |    |_/ __ \\__  \  /     \|    |   /  ___// __ \_  __ \

  412. //   |    |\  ___/ / __ \|  Y Y  \    |  /\___ \\  ___/|  | \/

  413. //   |____| \___  >____  /__|_|  /______//____  >\___  >__|

  414. //              \/     \/      \/             \/     \/

  415. 

  416. // TeamUser represents an team-user relation.

  417. type TeamUser struct {
  418. 	ID     int64 `xorm:"pk autoincr"`
  419. 	OrgID  int64 `xorm:"INDEX"`
  420. 	TeamID int64 `xorm:"UNIQUE(s)"`
  421. 	UID    int64 `xorm:"UNIQUE(s)"`
  422. }
  423. 

  424. func isTeamMember(e Engine, orgID, teamID, userID int64) (bool, error) {
  425. 	return e.
  426. 		Where("org_id=?", orgID).
  427. 		And("team_id=?", teamID).
  428. 		And("uid=?", userID).
  429. 		Table("team_user").
  430. 		Exist()
  431. }
  432. 

  433. // IsTeamMember returns true if given user is a member of team.

  434. func IsTeamMember(orgID, teamID, userID int64) (bool, error) {
  435. 	return isTeamMember(x, orgID, teamID, userID)
  436. }
  437. 

  438. func getTeamUsersByTeamID(e Engine, teamID int64) ([]*TeamUser, error) {
  439. 	teamUsers := make([]*TeamUser, 0, 10)
  440. 	return teamUsers, e.
  441. 		Where("team_id=?", teamID).
  442. 		Find(&teamUsers)
  443. }
  444. 

  445. func getTeamMembers(e Engine, teamID int64) (_ []*User, err error) {
  446. 	teamUsers, err := getTeamUsersByTeamID(e, teamID)
  447. 	if err != nil {
  448. 		return nil, fmt.Errorf("get team-users: %v", err)
  449. 	}
  450. 	members := make([]*User, len(teamUsers))
  451. 	for i, teamUser := range teamUsers {
  452. 		member, err := getUserByID(e, teamUser.UID)
  453. 		if err != nil {
  454. 			return nil, fmt.Errorf("get user '%d': %v", teamUser.UID, err)
  455. 		}
  456. 		members[i] = member
  457. 	}
  458. 	return members, nil
  459. }
  460. 

  461. // GetTeamMembers returns all members in given team of organization.

  462. func GetTeamMembers(teamID int64) ([]*User, error) {
  463. 	return getTeamMembers(x, teamID)
  464. }
  465. 

  466. func getUserTeams(e Engine, orgID, userID int64) (teams []*Team, err error) {
  467. 	return teams, e.
  468. 		Join("INNER", "team_user", "team_user.team_id = team.id").
  469. 		Where("team.org_id = ?", orgID).
  470. 		And("team_user.uid=?", userID).
  471. 		Find(&teams)
  472. }
  473. 

  474. // GetUserTeams returns all teams that user belongs to in given organization.

  475. func GetUserTeams(orgID, userID int64) ([]*Team, error) {
  476. 	return getUserTeams(x, orgID, userID)
  477. }
  478. 

  479. // AddTeamMember adds new membership of given team to given organization,

  480. // the user will have membership to given organization automatically when needed.

  481. func AddTeamMember(team *Team, userID int64) error {
  482. 	isAlreadyMember, err := IsTeamMember(team.OrgID, team.ID, userID)
  483. 	if err != nil || isAlreadyMember {
  484. 		return err
  485. 	}
  486. 

  487. 	if err := AddOrgUser(team.OrgID, userID); err != nil {
  488. 		return err
  489. 	}
  490. 

  491. 	// Get team and its repositories.

  492. 	if err := team.GetRepositories(); err != nil {
  493. 		return err
  494. 	}
  495. 

  496. 	sess := x.NewSession()
  497. 	defer sess.Close()
  498. 	if err := sess.Begin(); err != nil {
  499. 		return err
  500. 	}
  501. 

  502. 	if _, err := sess.Insert(&TeamUser{
  503. 		UID:    userID,
  504. 		OrgID:  team.OrgID,
  505. 		TeamID: team.ID,
  506. 	}); err != nil {
  507. 		return err
  508. 	} else if _, err := sess.Incr("num_members").ID(team.ID).Update(new(Team)); err != nil {
  509. 		return err
  510. 	}
  511. 

  512. 	team.NumMembers++
  513. 

  514. 	// Give access to team repositories.

  515. 	for _, repo := range team.Repos {
  516. 		if err := repo.recalculateTeamAccesses(sess, 0); err != nil {
  517. 			return err
  518. 		}
  519. 	}
  520. 

  521. 	return sess.Commit()
  522. }
  523. 

  524. func removeTeamMember(e Engine, team *Team, userID int64) error {
  525. 	isMember, err := isTeamMember(e, team.OrgID, team.ID, userID)
  526. 	if err != nil || !isMember {
  527. 		return err
  528. 	}
  529. 

  530. 	// Check if the user to delete is the last member in owner team.

  531. 	if team.IsOwnerTeam() && team.NumMembers == 1 {
  532. 		return ErrLastOrgOwner{UID: userID}
  533. 	}
  534. 

  535. 	team.NumMembers--
  536. 

  537. 	if err := team.getRepositories(e); err != nil {
  538. 		return err
  539. 	}
  540. 

  541. 	if _, err := e.Delete(&TeamUser{
  542. 		UID:    userID,
  543. 		OrgID:  team.OrgID,
  544. 		TeamID: team.ID,
  545. 	}); err != nil {
  546. 		return err
  547. 	} else if _, err = e.
  548. 		ID(team.ID).
  549. 		Cols("num_members").
  550. 		Update(team); err != nil {
  551. 		return err
  552. 	}
  553. 

  554. 	// Delete access to team repositories.

  555. 	for _, repo := range team.Repos {
  556. 		if err := repo.recalculateTeamAccesses(e, 0); err != nil {
  557. 			return err
  558. 		}
  559. 	}
  560. 

  561. 	return nil
  562. }
  563. 

  564. // RemoveTeamMember removes member from given team of given organization.

  565. func RemoveTeamMember(team *Team, userID int64) error {
  566. 	sess := x.NewSession()
  567. 	defer sess.Close()
  568. 	if err := sess.Begin(); err != nil {
  569. 		return err
  570. 	}
  571. 	if err := removeTeamMember(sess, team, userID); err != nil {
  572. 		return err
  573. 	}
  574. 	return sess.Commit()
  575. }
  576. 

  577. // IsUserInTeams returns if a user in some teams

  578. func IsUserInTeams(userID int64, teamIDs []int64) (bool, error) {
  579. 	return x.Where("uid=?", userID).In("team_id", teamIDs).Exist(new(TeamUser))
  580. }
  581. 

  582. // ___________                  __________

  583. // \__    ___/___ _____    _____\______   \ ____ ______   ____

  584. //   |    |_/ __ \\__  \  /     \|       _// __ \\____ \ /  _ \

  585. //   |    |\  ___/ / __ \|  Y Y  \    |   \  ___/|  |_> >  <_> )

  586. //   |____| \___  >____  /__|_|  /____|_  /\___  >   __/ \____/

  587. //              \/     \/      \/       \/     \/|__|

  588. 

  589. // TeamRepo represents an team-repository relation.

  590. type TeamRepo struct {
  591. 	ID     int64 `xorm:"pk autoincr"`
  592. 	OrgID  int64 `xorm:"INDEX"`
  593. 	TeamID int64 `xorm:"UNIQUE(s)"`
  594. 	RepoID int64 `xorm:"UNIQUE(s)"`
  595. }
  596. 

  597. func hasTeamRepo(e Engine, orgID, teamID, repoID int64) bool {
  598. 	has, _ := e.
  599. 		Where("org_id=?", orgID).
  600. 		And("team_id=?", teamID).
  601. 		And("repo_id=?", repoID).
  602. 		Get(new(TeamRepo))
  603. 	return has
  604. }
  605. 

  606. // HasTeamRepo returns true if given repository belongs to team.

  607. func HasTeamRepo(orgID, teamID, repoID int64) bool {
  608. 	return hasTeamRepo(x, orgID, teamID, repoID)
  609. }
  610. 

  611. func addTeamRepo(e Engine, orgID, teamID, repoID int64) error {
  612. 	_, err := e.InsertOne(&TeamRepo{
  613. 		OrgID:  orgID,
  614. 		TeamID: teamID,
  615. 		RepoID: repoID,
  616. 	})
  617. 	return err
  618. }
  619. 

  620. func removeTeamRepo(e Engine, teamID, repoID int64) error {
  621. 	_, err := e.Delete(&TeamRepo{
  622. 		TeamID: teamID,
  623. 		RepoID: repoID,
  624. 	})
  625. 	return err
  626. }
  627. 

  628. // GetTeamsWithAccessToRepo returns all teams in an organization that have given access level to the repository.

  629. func GetTeamsWithAccessToRepo(orgID, repoID int64, mode AccessMode) ([]*Team, error) {
  630. 	teams := make([]*Team, 0, 5)
  631. 	return teams, x.Where("team.authorize >= ?", mode).
  632. 		Join("INNER", "team_repo", "team_repo.team_id = team.id").
  633. 		And("team_repo.org_id = ?", orgID).
  634. 		And("team_repo.repo_id = ?", repoID).
  635. 		Find(&teams)
  636. }