2017-04-18 08:01:05 -05:00
|
|
|
package api
|
|
|
|
|
|
|
|
|
|
import (
|
2017-12-20 14:20:12 -06:00
|
|
|
"github.com/grafana/grafana/pkg/api/dtos"
|
2017-04-18 08:01:05 -05:00
|
|
|
"github.com/grafana/grafana/pkg/bus"
|
2020-03-04 05:57:20 -06:00
|
|
|
"github.com/grafana/grafana/pkg/models"
|
2019-03-12 07:59:53 -05:00
|
|
|
"github.com/grafana/grafana/pkg/services/teamguardian"
|
2017-04-19 08:35:11 -05:00
|
|
|
"github.com/grafana/grafana/pkg/util"
|
2017-04-18 08:01:05 -05:00
|
|
|
)
|
|
|
|
|
|
2017-12-08 09:25:45 -06:00
|
|
|
// GET /api/teams/:teamId/members
|
2020-03-04 05:57:20 -06:00
|
|
|
func (hs *HTTPServer) GetTeamMembers(c *models.ReqContext) Response {
|
|
|
|
|
query := models.GetTeamMembersQuery{OrgId: c.OrgId, TeamId: c.ParamsInt64(":teamId")}
|
2017-04-18 08:01:05 -05:00
|
|
|
|
|
|
|
|
if err := bus.Dispatch(&query); err != nil {
|
2018-03-22 16:13:46 -05:00
|
|
|
return Error(500, "Failed to get Team Members", err)
|
2017-04-18 08:01:05 -05:00
|
|
|
}
|
|
|
|
|
|
2017-12-20 14:20:12 -06:00
|
|
|
for _, member := range query.Result {
|
|
|
|
|
member.AvatarUrl = dtos.GetGravatarUrl(member.Email)
|
2018-09-14 10:27:36 -05:00
|
|
|
member.Labels = []string{}
|
|
|
|
|
|
2019-11-01 08:56:12 -05:00
|
|
|
if hs.License.HasValidLicense() && member.External {
|
2019-07-03 08:52:10 -05:00
|
|
|
authProvider := GetAuthProviderLabel(member.AuthModule)
|
|
|
|
|
member.Labels = append(member.Labels, authProvider)
|
2018-09-14 10:27:36 -05:00
|
|
|
}
|
2017-12-20 14:20:12 -06:00
|
|
|
}
|
|
|
|
|
|
2018-03-22 16:13:46 -05:00
|
|
|
return JSON(200, query.Result)
|
2017-04-18 08:01:05 -05:00
|
|
|
}
|
2017-04-19 08:35:11 -05:00
|
|
|
|
2017-12-08 09:25:45 -06:00
|
|
|
// POST /api/teams/:teamId/members
|
2020-03-04 05:57:20 -06:00
|
|
|
func (hs *HTTPServer) AddTeamMember(c *models.ReqContext, cmd models.AddTeamMemberCommand) Response {
|
2019-03-13 10:46:35 -05:00
|
|
|
cmd.OrgId = c.OrgId
|
|
|
|
|
cmd.TeamId = c.ParamsInt64(":teamId")
|
2019-03-11 07:14:06 -05:00
|
|
|
|
2019-03-14 06:10:10 -05:00
|
|
|
if err := teamguardian.CanAdmin(hs.Bus, cmd.OrgId, cmd.TeamId, c.SignedInUser); err != nil {
|
2019-03-11 07:14:06 -05:00
|
|
|
return Error(403, "Not allowed to add team member", err)
|
|
|
|
|
}
|
|
|
|
|
|
2019-03-14 06:10:10 -05:00
|
|
|
if err := hs.Bus.Dispatch(&cmd); err != nil {
|
2020-03-04 05:57:20 -06:00
|
|
|
if err == models.ErrTeamNotFound {
|
2018-03-22 16:13:46 -05:00
|
|
|
return Error(404, "Team not found", nil)
|
2018-02-16 04:45:53 -06:00
|
|
|
}
|
|
|
|
|
|
2020-03-04 05:57:20 -06:00
|
|
|
if err == models.ErrTeamMemberAlreadyAdded {
|
2018-03-22 16:13:46 -05:00
|
|
|
return Error(400, "User is already added to this team", nil)
|
2017-04-19 08:35:11 -05:00
|
|
|
}
|
2018-02-16 04:45:53 -06:00
|
|
|
|
2018-03-22 16:13:46 -05:00
|
|
|
return Error(500, "Failed to add Member to Team", err)
|
2017-04-19 08:35:11 -05:00
|
|
|
}
|
|
|
|
|
|
2018-03-22 16:13:46 -05:00
|
|
|
return JSON(200, &util.DynMap{
|
2017-12-08 09:25:45 -06:00
|
|
|
"message": "Member added to Team",
|
2017-04-19 08:35:11 -05:00
|
|
|
})
|
|
|
|
|
}
|
|
|
|
|
|
2019-03-06 08:37:37 -06:00
|
|
|
// PUT /:teamId/members/:userId
|
2020-03-04 05:57:20 -06:00
|
|
|
func (hs *HTTPServer) UpdateTeamMember(c *models.ReqContext, cmd models.UpdateTeamMemberCommand) Response {
|
2019-03-11 07:14:06 -05:00
|
|
|
teamId := c.ParamsInt64(":teamId")
|
|
|
|
|
orgId := c.OrgId
|
|
|
|
|
|
2019-03-14 06:10:10 -05:00
|
|
|
if err := teamguardian.CanAdmin(hs.Bus, orgId, teamId, c.SignedInUser); err != nil {
|
2019-03-11 07:14:06 -05:00
|
|
|
return Error(403, "Not allowed to update team member", err)
|
|
|
|
|
}
|
|
|
|
|
|
2020-03-04 05:57:20 -06:00
|
|
|
if c.OrgRole != models.ROLE_ADMIN {
|
2019-03-13 04:11:53 -05:00
|
|
|
cmd.ProtectLastAdmin = true
|
|
|
|
|
}
|
|
|
|
|
|
2019-03-11 07:14:06 -05:00
|
|
|
cmd.TeamId = teamId
|
2019-03-06 08:37:37 -06:00
|
|
|
cmd.UserId = c.ParamsInt64(":userId")
|
2019-03-11 07:14:06 -05:00
|
|
|
cmd.OrgId = orgId
|
2019-03-06 08:37:37 -06:00
|
|
|
|
2019-03-14 06:10:10 -05:00
|
|
|
if err := hs.Bus.Dispatch(&cmd); err != nil {
|
2020-03-04 05:57:20 -06:00
|
|
|
if err == models.ErrTeamMemberNotFound {
|
2019-03-06 08:37:37 -06:00
|
|
|
return Error(404, "Team member not found.", nil)
|
|
|
|
|
}
|
|
|
|
|
return Error(500, "Failed to update team member.", err)
|
|
|
|
|
}
|
|
|
|
|
return Success("Team member updated")
|
|
|
|
|
}
|
|
|
|
|
|
2017-12-08 09:25:45 -06:00
|
|
|
// DELETE /api/teams/:teamId/members/:userId
|
2020-03-04 05:57:20 -06:00
|
|
|
func (hs *HTTPServer) RemoveTeamMember(c *models.ReqContext) Response {
|
2019-03-11 07:14:06 -05:00
|
|
|
orgId := c.OrgId
|
|
|
|
|
teamId := c.ParamsInt64(":teamId")
|
|
|
|
|
userId := c.ParamsInt64(":userId")
|
|
|
|
|
|
2019-03-14 06:10:10 -05:00
|
|
|
if err := teamguardian.CanAdmin(hs.Bus, orgId, teamId, c.SignedInUser); err != nil {
|
2019-03-11 07:14:06 -05:00
|
|
|
return Error(403, "Not allowed to remove team member", err)
|
|
|
|
|
}
|
|
|
|
|
|
2019-03-12 10:59:39 -05:00
|
|
|
protectLastAdmin := false
|
2020-03-04 05:57:20 -06:00
|
|
|
if c.OrgRole != models.ROLE_ADMIN {
|
2019-03-12 10:59:39 -05:00
|
|
|
protectLastAdmin = true
|
|
|
|
|
}
|
|
|
|
|
|
2020-03-04 05:57:20 -06:00
|
|
|
if err := hs.Bus.Dispatch(&models.RemoveTeamMemberCommand{OrgId: orgId, TeamId: teamId, UserId: userId, ProtectLastAdmin: protectLastAdmin}); err != nil {
|
|
|
|
|
if err == models.ErrTeamNotFound {
|
2018-03-22 16:13:46 -05:00
|
|
|
return Error(404, "Team not found", nil)
|
2018-02-16 04:45:53 -06:00
|
|
|
}
|
|
|
|
|
|
2020-03-04 05:57:20 -06:00
|
|
|
if err == models.ErrTeamMemberNotFound {
|
2018-03-22 16:13:46 -05:00
|
|
|
return Error(404, "Team member not found", nil)
|
2018-02-16 04:45:53 -06:00
|
|
|
}
|
|
|
|
|
|
2018-03-22 16:13:46 -05:00
|
|
|
return Error(500, "Failed to remove Member from Team", err)
|
2017-04-19 08:35:11 -05:00
|
|
|
}
|
2018-03-22 16:13:46 -05:00
|
|
|
return Success("Team Member removed")
|
2017-04-19 08:35:11 -05:00
|
|
|
}
|
