closed-social
/
gitea
3
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6393 Commits
2 Branches
178 MiB
Tree: fa3ceb610d
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'fa3ceb610d'
${ noResults }
gitea/models/org_team.go

648 lines
15 KiB
Raw Normal View History

#1692 add admin APIs to add/remove a user from teams
8 years ago
Fix ignored errors when checking if organization, team member (#3177)
7 years ago
Fix remove team member issue (#3566) Put sess.Commit() out of the RemoveOrgUser function Add an empty line to separate import packages
6 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
golint for models/org_team.go
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Add units to team (#947) * add units to team * fix lint * finish team setting backend * finished permission controll on routes * fix import blank line * add unit check on ssh/http pull and push and fix test failed * fix fixtures data * remove unused code
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
improve protected branch to add whitelist support (#2451) * improve protected branch to add whitelist support * fix lint * fix style check * fix tests * fix description on UI and import * fix test * bug fixed * fix tests and languages * move isSliceInt64Eq to util pkg; improve function names & typo
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
golint for models/org_team.go
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
golint for models/org_team.go
8 years ago
rename all uID -> userID on models/org_team.go
8 years ago
Fix ignored errors when checking if organization, team member (#3177)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Bug fixes and unit tests for org_team (#1016)
7 years ago
optimization for team get repos (#953)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
rename all uID -> userID on models/org_team.go
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
rename all uID -> userID on models/org_team.go
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Fix race condition in team functions (#3268)
6 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Fix race condition in team functions (#3268)
6 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Refactor User.Id to User.ID
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Refactor session close as xorm already does everything needed internally (#2020)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Replace deprecated Id method with ID (#2655)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Refactor and fix incorrect comment (#1247)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Run "make fmt" with go-1.6 (#1333)
7 years ago
Refactor and fix incorrect comment (#1247)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Refactor and fix incorrect comment (#1247)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Refactor session close as xorm already does everything needed internally (#2020)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
EnableUnit() -> UnitEnabled() (#2242)
7 years ago
Add units to team (#947) * add units to team * fix lint * finish team setting backend * finished permission controll on routes * fix import blank line * add unit check on ssh/http pull and push and fix test failed * fix fixtures data * remove unused code
7 years ago
golint for models/org_team.go
8 years ago
Bug fixes and unit tests for org_team (#1016)
7 years ago
Adds checking of reserved keywords against team names (#22)
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Adds checking of reserved keywords against team names (#22)
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Adds checking of reserved keywords against team names (#22)
8 years ago
Replace deprecated Id method with ID (#2655)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Improve org error handling (#2117) * Improve ErrOrgNotExist type Return new error type Use good error check Use new method to check error Update tests * Fix unchanged method name report
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Rewrite XORM queries
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
golint for models/org_team.go
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
golint for models/org_team.go
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
golint for models/org_team.go
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
golint for models/org_team.go
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Replace deprecated Id method with ID (#2655)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
golint for models/org_team.go
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Refactor session close as xorm already does everything needed internally (#2020)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
fix xorm NewSession uncorrected usages (#774)
7 years ago
Rewrite XORM queries
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Replace deprecated Id method with ID (#2655)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Bug fixes and unit tests for org_team (#1016)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Refactor session close as xorm already does everything needed internally (#2020)
7 years ago
Remove unnecessary loads in org_team (#1090)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Remove unnecessary loads in org_team (#1090)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Bug fixes and unit tests for org_team (#1016)
7 years ago
Remove unnecessary loads in org_team (#1090)
7 years ago
Bug fixes and unit tests for org_team (#1016)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Remove unnecessary loads in org_team (#1090)
7 years ago
Rewrite XORM queries
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Replace deprecated Id method with ID (#2655)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Remove unnecessary loads in org_team (#1090)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
golint for models/org_team.go
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Fix ignored errors when checking if organization, team member (#3177)
7 years ago
Rewrite XORM queries
8 years ago
rename all uID -> userID on models/org_team.go
8 years ago
Fix ignored errors when checking if organization, team member (#3177)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Fix ignored errors when checking if organization, team member (#3177)
7 years ago
rename all uID -> userID on models/org_team.go
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Refactor and fix incorrect comment (#1247)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Refactor and fix incorrect comment (#1247)
7 years ago
Rewrite XORM queries
8 years ago
Refactor and fix incorrect comment (#1247)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Refactor and fix incorrect comment (#1247)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Refactor and fix incorrect comment (#1247)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Small opitimization for getUserTeams (#954) * Small opitimization for getUserTeams * more compact
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
rename all uID -> userID on models/org_team.go
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
Fix ignored errors when checking if organization, team member (#3177)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Refactor session close as xorm already does everything needed internally (#2020)
7 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
rename all uID -> userID on models/org_team.go
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Fix race condition in team functions (#3268)
6 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Fix race condition in team functions (#3268)
6 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Fix remove team member issue (#3566) Put sess.Commit() out of the RemoveOrgUser function Add an empty line to separate import packages
6 years ago
Fix ignored errors when checking if organization, team member (#3177)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
rename all uID -> userID on models/org_team.go
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
rename all uID -> userID on models/org_team.go
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Rewrite XORM queries
8 years ago
Replace deprecated Id method with ID (#2655)
7 years ago
Reduce usage of allcols on update (#2596) * reduce usage of allcols on update * fix bug and tests
7 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
Remove unnecessary loads in org_team (#1090)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Fix remove team member issue (#3566) Put sess.Commit() out of the RemoveOrgUser function Add an empty line to separate import packages
6 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Refactor session close as xorm already does everything needed internally (#2020)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Remove unnecessary loads in org_team (#1035)
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
improve protected branch to add whitelist support (#2451) * improve protected branch to add whitelist support * fix lint * fix style check * fix tests * fix description on UI and import * fix test * bug fixed * fix tests and languages * move isSliceInt64Eq to util pkg; improve function names & typo
7 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
Rewrite XORM queries
8 years ago
#1692 add admin APIs to add/remove a user from teams
8 years ago
improve protected branch to add whitelist support (#2451) * improve protected branch to add whitelist support * fix lint * fix style check * fix tests * fix description on UI and import * fix test * bug fixed * fix tests and languages * move isSliceInt64Eq to util pkg; improve function names & typo
7 years ago
 
  1. // Copyright 2016 The Gogs Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. package models
  6. 

  7. import (
  8. 	"errors"
  9. 	"fmt"
  10. 	"strings"
  11. 

  12. 	"code.gitea.io/gitea/modules/log"
  13. 

  14. 	"github.com/go-xorm/xorm"
  15. )
  16. 

  17. const ownerTeamName = "Owners"
  18. 

  19. // Team represents a organization team.

  20. type Team struct {
  21. 	ID          int64 `xorm:"pk autoincr"`
  22. 	OrgID       int64 `xorm:"INDEX"`
  23. 	LowerName   string
  24. 	Name        string
  25. 	Description string
  26. 	Authorize   AccessMode
  27. 	Repos       []*Repository `xorm:"-"`
  28. 	Members     []*User       `xorm:"-"`
  29. 	NumRepos    int
  30. 	NumMembers  int
  31. 	UnitTypes   []UnitType `xorm:"json"`
  32. }
  33. 

  34. // GetUnitTypes returns unit types the team owned, empty means all the unit types

  35. func (t *Team) GetUnitTypes() []UnitType {
  36. 	if len(t.UnitTypes) == 0 {
  37. 		return allRepUnitTypes
  38. 	}
  39. 	return t.UnitTypes
  40. }
  41. 

  42. // HasWriteAccess returns true if team has at least write level access mode.

  43. func (t *Team) HasWriteAccess() bool {
  44. 	return t.Authorize >= AccessModeWrite
  45. }
  46. 

  47. // IsOwnerTeam returns true if team is owner team.

  48. func (t *Team) IsOwnerTeam() bool {
  49. 	return t.Name == ownerTeamName
  50. }
  51. 

  52. // IsMember returns true if given user is a member of team.

  53. func (t *Team) IsMember(userID int64) bool {
  54. 	isMember, err := IsTeamMember(t.OrgID, t.ID, userID)
  55. 	if err != nil {
  56. 		log.Error(4, "IsMember: %v", err)
  57. 		return false
  58. 	}
  59. 	return isMember
  60. }
  61. 

  62. func (t *Team) getRepositories(e Engine) error {
  63. 	return e.Join("INNER", "team_repo", "repository.id = team_repo.repo_id").
  64. 		Where("team_repo.team_id=?", t.ID).Find(&t.Repos)
  65. }
  66. 

  67. // GetRepositories returns all repositories in team of organization.

  68. func (t *Team) GetRepositories() error {
  69. 	return t.getRepositories(x)
  70. }
  71. 

  72. func (t *Team) getMembers(e Engine) (err error) {
  73. 	t.Members, err = getTeamMembers(e, t.ID)
  74. 	return err
  75. }
  76. 

  77. // GetMembers returns all members in team of organization.

  78. func (t *Team) GetMembers() (err error) {
  79. 	return t.getMembers(x)
  80. }
  81. 

  82. // AddMember adds new membership of the team to the organization,

  83. // the user will have membership to the organization automatically when needed.

  84. func (t *Team) AddMember(userID int64) error {
  85. 	return AddTeamMember(t, userID)
  86. }
  87. 

  88. // RemoveMember removes member from team of organization.

  89. func (t *Team) RemoveMember(userID int64) error {
  90. 	return RemoveTeamMember(t, userID)
  91. }
  92. 

  93. func (t *Team) hasRepository(e Engine, repoID int64) bool {
  94. 	return hasTeamRepo(e, t.OrgID, t.ID, repoID)
  95. }
  96. 

  97. // HasRepository returns true if given repository belong to team.

  98. func (t *Team) HasRepository(repoID int64) bool {
  99. 	return t.hasRepository(x, repoID)
  100. }
  101. 

  102. func (t *Team) addRepository(e Engine, repo *Repository) (err error) {
  103. 	if err = addTeamRepo(e, t.OrgID, t.ID, repo.ID); err != nil {
  104. 		return err
  105. 	}
  106. 

  107. 	if _, err = e.Incr("num_repos").ID(t.ID).Update(new(Team)); err != nil {
  108. 		return fmt.Errorf("update team: %v", err)
  109. 	}
  110. 

  111. 	t.NumRepos++
  112. 

  113. 	if err = repo.recalculateTeamAccesses(e, 0); err != nil {
  114. 		return fmt.Errorf("recalculateAccesses: %v", err)
  115. 	}
  116. 

  117. 	if err = t.getMembers(e); err != nil {
  118. 		return fmt.Errorf("getMembers: %v", err)
  119. 	}
  120. 	for _, u := range t.Members {
  121. 		if err = watchRepo(e, u.ID, repo.ID, true); err != nil {
  122. 			return fmt.Errorf("watchRepo: %v", err)
  123. 		}
  124. 	}
  125. 	return nil
  126. }
  127. 

  128. // AddRepository adds new repository to team of organization.

  129. func (t *Team) AddRepository(repo *Repository) (err error) {
  130. 	if repo.OwnerID != t.OrgID {
  131. 		return errors.New("Repository does not belong to organization")
  132. 	} else if t.HasRepository(repo.ID) {
  133. 		return nil
  134. 	}
  135. 

  136. 	sess := x.NewSession()
  137. 	defer sess.Close()
  138. 	if err = sess.Begin(); err != nil {
  139. 		return err
  140. 	}
  141. 

  142. 	if err = t.addRepository(sess, repo); err != nil {
  143. 		return err
  144. 	}
  145. 

  146. 	return sess.Commit()
  147. }
  148. 

  149. func (t *Team) removeRepository(e Engine, repo *Repository, recalculate bool) (err error) {
  150. 	if err = removeTeamRepo(e, t.ID, repo.ID); err != nil {
  151. 		return err
  152. 	}
  153. 

  154. 	t.NumRepos--
  155. 	if _, err = e.ID(t.ID).Cols("num_repos").Update(t); err != nil {
  156. 		return err
  157. 	}
  158. 

  159. 	// Don't need to recalculate when delete a repository from organization.

  160. 	if recalculate {
  161. 		if err = repo.recalculateTeamAccesses(e, t.ID); err != nil {
  162. 			return err
  163. 		}
  164. 	}
  165. 

  166. 	teamUsers, err := getTeamUsersByTeamID(e, t.ID)
  167. 	if err != nil {
  168. 		return fmt.Errorf("getTeamUsersByTeamID: %v", err)
  169. 	}
  170. 	for _, teamUser := range teamUsers {
  171. 		has, err := hasAccess(e, teamUser.UID, repo, AccessModeRead)
  172. 		if err != nil {
  173. 			return err
  174. 		} else if has {
  175. 			continue
  176. 		}
  177. 

  178. 		if err = watchRepo(e, teamUser.UID, repo.ID, false); err != nil {
  179. 			return err
  180. 		}
  181. 	}
  182. 

  183. 	return nil
  184. }
  185. 

  186. // RemoveRepository removes repository from team of organization.

  187. func (t *Team) RemoveRepository(repoID int64) error {
  188. 	if !t.HasRepository(repoID) {
  189. 		return nil
  190. 	}
  191. 

  192. 	repo, err := GetRepositoryByID(repoID)
  193. 	if err != nil {
  194. 		return err
  195. 	}
  196. 

  197. 	sess := x.NewSession()
  198. 	defer sess.Close()
  199. 	if err = sess.Begin(); err != nil {
  200. 		return err
  201. 	}
  202. 

  203. 	if err = t.removeRepository(sess, repo, true); err != nil {
  204. 		return err
  205. 	}
  206. 

  207. 	return sess.Commit()
  208. }
  209. 

  210. // UnitEnabled returns if the team has the given unit type enabled

  211. func (t *Team) UnitEnabled(tp UnitType) bool {
  212. 	if len(t.UnitTypes) == 0 {
  213. 		return true
  214. 	}
  215. 	for _, u := range t.UnitTypes {
  216. 		if u == tp {
  217. 			return true
  218. 		}
  219. 	}
  220. 	return false
  221. }
  222. 

  223. // IsUsableTeamName tests if a name could be as team name

  224. func IsUsableTeamName(name string) error {
  225. 	switch name {
  226. 	case "new":
  227. 		return ErrNameReserved{name}
  228. 	default:
  229. 		return nil
  230. 	}
  231. }
  232. 

  233. // NewTeam creates a record of new team.

  234. // It's caller's responsibility to assign organization ID.

  235. func NewTeam(t *Team) (err error) {
  236. 	if len(t.Name) == 0 {
  237. 		return errors.New("empty team name")
  238. 	}
  239. 

  240. 	if err = IsUsableTeamName(t.Name); err != nil {
  241. 		return err
  242. 	}
  243. 

  244. 	has, err := x.ID(t.OrgID).Get(new(User))
  245. 	if err != nil {
  246. 		return err
  247. 	} else if !has {
  248. 		return ErrOrgNotExist{t.OrgID, ""}
  249. 	}
  250. 

  251. 	t.LowerName = strings.ToLower(t.Name)
  252. 	has, err = x.
  253. 		Where("org_id=?", t.OrgID).
  254. 		And("lower_name=?", t.LowerName).
  255. 		Get(new(Team))
  256. 	if err != nil {
  257. 		return err
  258. 	} else if has {
  259. 		return ErrTeamAlreadyExist{t.OrgID, t.LowerName}
  260. 	}
  261. 

  262. 	sess := x.NewSession()
  263. 	defer sess.Close()
  264. 	if err = sess.Begin(); err != nil {
  265. 		return err
  266. 	}
  267. 

  268. 	if _, err = sess.Insert(t); err != nil {
  269. 		sess.Rollback()
  270. 		return err
  271. 	}
  272. 

  273. 	// Update organization number of teams.

  274. 	if _, err = sess.Exec("UPDATE `user` SET num_teams=num_teams+1 WHERE id = ?", t.OrgID); err != nil {
  275. 		sess.Rollback()
  276. 		return err
  277. 	}
  278. 	return sess.Commit()
  279. }
  280. 

  281. func getTeam(e Engine, orgID int64, name string) (*Team, error) {
  282. 	t := &Team{
  283. 		OrgID:     orgID,
  284. 		LowerName: strings.ToLower(name),
  285. 	}
  286. 	has, err := e.Get(t)
  287. 	if err != nil {
  288. 		return nil, err
  289. 	} else if !has {
  290. 		return nil, ErrTeamNotExist
  291. 	}
  292. 	return t, nil
  293. }
  294. 

  295. // GetTeam returns team by given team name and organization.

  296. func GetTeam(orgID int64, name string) (*Team, error) {
  297. 	return getTeam(x, orgID, name)
  298. }
  299. 

  300. func getTeamByID(e Engine, teamID int64) (*Team, error) {
  301. 	t := new(Team)
  302. 	has, err := e.ID(teamID).Get(t)
  303. 	if err != nil {
  304. 		return nil, err
  305. 	} else if !has {
  306. 		return nil, ErrTeamNotExist
  307. 	}
  308. 	return t, nil
  309. }
  310. 

  311. // GetTeamByID returns team by given ID.

  312. func GetTeamByID(teamID int64) (*Team, error) {
  313. 	return getTeamByID(x, teamID)
  314. }
  315. 

  316. // UpdateTeam updates information of team.

  317. func UpdateTeam(t *Team, authChanged bool) (err error) {
  318. 	if len(t.Name) == 0 {
  319. 		return errors.New("empty team name")
  320. 	}
  321. 

  322. 	if len(t.Description) > 255 {
  323. 		t.Description = t.Description[:255]
  324. 	}
  325. 

  326. 	sess := x.NewSession()
  327. 	defer sess.Close()
  328. 	if err = sess.Begin(); err != nil {
  329. 		return err
  330. 	}
  331. 

  332. 	t.LowerName = strings.ToLower(t.Name)
  333. 	has, err := sess.
  334. 		Where("org_id=?", t.OrgID).
  335. 		And("lower_name=?", t.LowerName).
  336. 		And("id!=?", t.ID).
  337. 		Get(new(Team))
  338. 	if err != nil {
  339. 		return err
  340. 	} else if has {
  341. 		return ErrTeamAlreadyExist{t.OrgID, t.LowerName}
  342. 	}
  343. 

  344. 	if _, err = sess.ID(t.ID).AllCols().Update(t); err != nil {
  345. 		return fmt.Errorf("update: %v", err)
  346. 	}
  347. 

  348. 	// Update access for team members if needed.

  349. 	if authChanged {
  350. 		if err = t.getRepositories(sess); err != nil {
  351. 			return fmt.Errorf("getRepositories: %v", err)
  352. 		}
  353. 

  354. 		for _, repo := range t.Repos {
  355. 			if err = repo.recalculateTeamAccesses(sess, 0); err != nil {
  356. 				return fmt.Errorf("recalculateTeamAccesses: %v", err)
  357. 			}
  358. 		}
  359. 	}
  360. 

  361. 	return sess.Commit()
  362. }
  363. 

  364. // DeleteTeam deletes given team.

  365. // It's caller's responsibility to assign organization ID.

  366. func DeleteTeam(t *Team) error {
  367. 	if err := t.GetRepositories(); err != nil {
  368. 		return err
  369. 	}
  370. 

  371. 	sess := x.NewSession()
  372. 	defer sess.Close()
  373. 	if err := sess.Begin(); err != nil {
  374. 		return err
  375. 	}
  376. 

  377. 	// Delete all accesses.

  378. 	for _, repo := range t.Repos {
  379. 		if err := repo.recalculateTeamAccesses(sess, t.ID); err != nil {
  380. 			return err
  381. 		}
  382. 	}
  383. 

  384. 	// Delete team-repo

  385. 	if _, err := sess.
  386. 		Where("team_id=?", t.ID).
  387. 		Delete(new(TeamRepo)); err != nil {
  388. 		return err
  389. 	}
  390. 

  391. 	// Delete team-user.

  392. 	if _, err := sess.
  393. 		Where("org_id=?", t.OrgID).
  394. 		Where("team_id=?", t.ID).
  395. 		Delete(new(TeamUser)); err != nil {
  396. 		return err
  397. 	}
  398. 

  399. 	// Delete team.

  400. 	if _, err := sess.ID(t.ID).Delete(new(Team)); err != nil {
  401. 		return err
  402. 	}
  403. 	// Update organization number of teams.

  404. 	if _, err := sess.Exec("UPDATE `user` SET num_teams=num_teams-1 WHERE id=?", t.OrgID); err != nil {
  405. 		return err
  406. 	}
  407. 

  408. 	return sess.Commit()
  409. }
  410. 

  411. // ___________                    ____ ___

  412. // \__    ___/___ _____    _____ |    |   \______ ___________

  413. //   |    |_/ __ \\__  \  /     \|    |   /  ___// __ \_  __ \

  414. //   |    |\  ___/ / __ \|  Y Y  \    |  /\___ \\  ___/|  | \/

  415. //   |____| \___  >____  /__|_|  /______//____  >\___  >__|

  416. //              \/     \/      \/             \/     \/

  417. 

  418. // TeamUser represents an team-user relation.

  419. type TeamUser struct {
  420. 	ID     int64 `xorm:"pk autoincr"`
  421. 	OrgID  int64 `xorm:"INDEX"`
  422. 	TeamID int64 `xorm:"UNIQUE(s)"`
  423. 	UID    int64 `xorm:"UNIQUE(s)"`
  424. }
  425. 

  426. func isTeamMember(e Engine, orgID, teamID, userID int64) (bool, error) {
  427. 	return e.
  428. 		Where("org_id=?", orgID).
  429. 		And("team_id=?", teamID).
  430. 		And("uid=?", userID).
  431. 		Table("team_user").
  432. 		Exist()
  433. }
  434. 

  435. // IsTeamMember returns true if given user is a member of team.

  436. func IsTeamMember(orgID, teamID, userID int64) (bool, error) {
  437. 	return isTeamMember(x, orgID, teamID, userID)
  438. }
  439. 

  440. func getTeamUsersByTeamID(e Engine, teamID int64) ([]*TeamUser, error) {
  441. 	teamUsers := make([]*TeamUser, 0, 10)
  442. 	return teamUsers, e.
  443. 		Where("team_id=?", teamID).
  444. 		Find(&teamUsers)
  445. }
  446. 

  447. func getTeamMembers(e Engine, teamID int64) (_ []*User, err error) {
  448. 	teamUsers, err := getTeamUsersByTeamID(e, teamID)
  449. 	if err != nil {
  450. 		return nil, fmt.Errorf("get team-users: %v", err)
  451. 	}
  452. 	members := make([]*User, len(teamUsers))
  453. 	for i, teamUser := range teamUsers {
  454. 		member, err := getUserByID(e, teamUser.UID)
  455. 		if err != nil {
  456. 			return nil, fmt.Errorf("get user '%d': %v", teamUser.UID, err)
  457. 		}
  458. 		members[i] = member
  459. 	}
  460. 	return members, nil
  461. }
  462. 

  463. // GetTeamMembers returns all members in given team of organization.

  464. func GetTeamMembers(teamID int64) ([]*User, error) {
  465. 	return getTeamMembers(x, teamID)
  466. }
  467. 

  468. func getUserTeams(e Engine, orgID, userID int64) (teams []*Team, err error) {
  469. 	return teams, e.
  470. 		Join("INNER", "team_user", "team_user.team_id = team.id").
  471. 		Where("team.org_id = ?", orgID).
  472. 		And("team_user.uid=?", userID).
  473. 		Find(&teams)
  474. }
  475. 

  476. // GetUserTeams returns all teams that user belongs to in given organization.

  477. func GetUserTeams(orgID, userID int64) ([]*Team, error) {
  478. 	return getUserTeams(x, orgID, userID)
  479. }
  480. 

  481. // AddTeamMember adds new membership of given team to given organization,

  482. // the user will have membership to given organization automatically when needed.

  483. func AddTeamMember(team *Team, userID int64) error {
  484. 	isAlreadyMember, err := IsTeamMember(team.OrgID, team.ID, userID)
  485. 	if err != nil || isAlreadyMember {
  486. 		return err
  487. 	}
  488. 

  489. 	if err := AddOrgUser(team.OrgID, userID); err != nil {
  490. 		return err
  491. 	}
  492. 

  493. 	// Get team and its repositories.

  494. 	if err := team.GetRepositories(); err != nil {
  495. 		return err
  496. 	}
  497. 

  498. 	sess := x.NewSession()
  499. 	defer sess.Close()
  500. 	if err := sess.Begin(); err != nil {
  501. 		return err
  502. 	}
  503. 

  504. 	if _, err := sess.Insert(&TeamUser{
  505. 		UID:    userID,
  506. 		OrgID:  team.OrgID,
  507. 		TeamID: team.ID,
  508. 	}); err != nil {
  509. 		return err
  510. 	} else if _, err := sess.Incr("num_members").ID(team.ID).Update(new(Team)); err != nil {
  511. 		return err
  512. 	}
  513. 

  514. 	team.NumMembers++
  515. 

  516. 	// Give access to team repositories.

  517. 	for _, repo := range team.Repos {
  518. 		if err := repo.recalculateTeamAccesses(sess, 0); err != nil {
  519. 			return err
  520. 		}
  521. 	}
  522. 

  523. 	return sess.Commit()
  524. }
  525. 

  526. func removeTeamMember(e *xorm.Session, team *Team, userID int64) error {
  527. 	isMember, err := isTeamMember(e, team.OrgID, team.ID, userID)
  528. 	if err != nil || !isMember {
  529. 		return err
  530. 	}
  531. 

  532. 	// Check if the user to delete is the last member in owner team.

  533. 	if team.IsOwnerTeam() && team.NumMembers == 1 {
  534. 		return ErrLastOrgOwner{UID: userID}
  535. 	}
  536. 

  537. 	team.NumMembers--
  538. 

  539. 	if err := team.getRepositories(e); err != nil {
  540. 		return err
  541. 	}
  542. 

  543. 	if _, err := e.Delete(&TeamUser{
  544. 		UID:    userID,
  545. 		OrgID:  team.OrgID,
  546. 		TeamID: team.ID,
  547. 	}); err != nil {
  548. 		return err
  549. 	} else if _, err = e.
  550. 		ID(team.ID).
  551. 		Cols("num_members").
  552. 		Update(team); err != nil {
  553. 		return err
  554. 	}
  555. 

  556. 	// Delete access to team repositories.

  557. 	for _, repo := range team.Repos {
  558. 		if err := repo.recalculateTeamAccesses(e, 0); err != nil {
  559. 			return err
  560. 		}
  561. 	}
  562. 

  563. 	// Check if the user is a member of any team in the organization.

  564. 	if count, err := e.Count(&TeamUser{
  565. 		UID:   userID,
  566. 		OrgID: team.OrgID,
  567. 	}); err != nil {
  568. 		return err
  569. 	} else if count == 0 {
  570. 		return removeOrgUser(e, team.OrgID, userID)
  571. 	}
  572. 

  573. 	return nil
  574. }
  575. 

  576. // RemoveTeamMember removes member from given team of given organization.

  577. func RemoveTeamMember(team *Team, userID int64) error {
  578. 	sess := x.NewSession()
  579. 	defer sess.Close()
  580. 	if err := sess.Begin(); err != nil {
  581. 		return err
  582. 	}
  583. 	if err := removeTeamMember(sess, team, userID); err != nil {
  584. 		return err
  585. 	}
  586. 	return sess.Commit()
  587. }
  588. 

  589. // IsUserInTeams returns if a user in some teams

  590. func IsUserInTeams(userID int64, teamIDs []int64) (bool, error) {
  591. 	return x.Where("uid=?", userID).In("team_id", teamIDs).Exist(new(TeamUser))
  592. }
  593. 

  594. // ___________                  __________

  595. // \__    ___/___ _____    _____\______   \ ____ ______   ____

  596. //   |    |_/ __ \\__  \  /     \|       _// __ \\____ \ /  _ \

  597. //   |    |\  ___/ / __ \|  Y Y  \    |   \  ___/|  |_> >  <_> )

  598. //   |____| \___  >____  /__|_|  /____|_  /\___  >   __/ \____/

  599. //              \/     \/      \/       \/     \/|__|

  600. 

  601. // TeamRepo represents an team-repository relation.

  602. type TeamRepo struct {
  603. 	ID     int64 `xorm:"pk autoincr"`
  604. 	OrgID  int64 `xorm:"INDEX"`
  605. 	TeamID int64 `xorm:"UNIQUE(s)"`
  606. 	RepoID int64 `xorm:"UNIQUE(s)"`
  607. }
  608. 

  609. func hasTeamRepo(e Engine, orgID, teamID, repoID int64) bool {
  610. 	has, _ := e.
  611. 		Where("org_id=?", orgID).
  612. 		And("team_id=?", teamID).
  613. 		And("repo_id=?", repoID).
  614. 		Get(new(TeamRepo))
  615. 	return has
  616. }
  617. 

  618. // HasTeamRepo returns true if given repository belongs to team.

  619. func HasTeamRepo(orgID, teamID, repoID int64) bool {
  620. 	return hasTeamRepo(x, orgID, teamID, repoID)
  621. }
  622. 

  623. func addTeamRepo(e Engine, orgID, teamID, repoID int64) error {
  624. 	_, err := e.InsertOne(&TeamRepo{
  625. 		OrgID:  orgID,
  626. 		TeamID: teamID,
  627. 		RepoID: repoID,
  628. 	})
  629. 	return err
  630. }
  631. 

  632. func removeTeamRepo(e Engine, teamID, repoID int64) error {
  633. 	_, err := e.Delete(&TeamRepo{
  634. 		TeamID: teamID,
  635. 		RepoID: repoID,
  636. 	})
  637. 	return err
  638. }
  639. 

  640. // GetTeamsWithAccessToRepo returns all teams in an organization that have given access level to the repository.

  641. func GetTeamsWithAccessToRepo(orgID, repoID int64, mode AccessMode) ([]*Team, error) {
  642. 	teams := make([]*Team, 0, 5)
  643. 	return teams, x.Where("team.authorize >= ?", mode).
  644. 		Join("INNER", "team_repo", "team_repo.team_id = team.id").
  645. 		And("team_repo.org_id = ?", orgID).
  646. 		And("team_repo.repo_id = ?", repoID).
  647. 		Find(&teams)
  648. }