grafana/pkg/api/team_members.go

package api

import (
	"github.com/grafana/grafana/pkg/api/dtos"
	"github.com/grafana/grafana/pkg/bus"
	m "github.com/grafana/grafana/pkg/models"
	"github.com/grafana/grafana/pkg/services/teamguardian"
	"github.com/grafana/grafana/pkg/setting"
	"github.com/grafana/grafana/pkg/util"
)

// GET /api/teams/:teamId/members
func GetTeamMembers(c *m.ReqContext) Response {
	query := m.GetTeamMembersQuery{OrgId: c.OrgId, TeamId: c.ParamsInt64(":teamId")}

	if err := bus.Dispatch(&query); err != nil {
		return Error(500, "Failed to get Team Members", err)
	}

	for _, member := range query.Result {
		member.AvatarUrl = dtos.GetGravatarUrl(member.Email)
		member.Labels = []string{}

		if setting.IsEnterprise && setting.LdapEnabled && member.External {
			member.Labels = append(member.Labels, "LDAP")
		}
	}

	return JSON(200, query.Result)
}

// POST /api/teams/:teamId/members
func (hs *HTTPServer) AddTeamMember(c *m.ReqContext, cmd m.AddTeamMemberCommand) Response {
	cmd.OrgId = c.OrgId
	cmd.TeamId = c.ParamsInt64(":teamId")

	if err := teamguardian.CanAdmin(hs.Bus, cmd.OrgId, cmd.TeamId, c.SignedInUser); err != nil {
		return Error(403, "Not allowed to add team member", err)
	}

	if err := hs.Bus.Dispatch(&cmd); err != nil {
		if err == m.ErrTeamNotFound {
			return Error(404, "Team not found", nil)
		}

		if err == m.ErrTeamMemberAlreadyAdded {
			return Error(400, "User is already added to this team", nil)
		}

		return Error(500, "Failed to add Member to Team", err)
	}

	return JSON(200, &util.DynMap{
		"message": "Member added to Team",
	})
}

// PUT /:teamId/members/:userId
func (hs *HTTPServer) UpdateTeamMember(c *m.ReqContext, cmd m.UpdateTeamMemberCommand) Response {
	teamId := c.ParamsInt64(":teamId")
	orgId := c.OrgId

	if err := teamguardian.CanAdmin(hs.Bus, orgId, teamId, c.SignedInUser); err != nil {
		return Error(403, "Not allowed to update team member", err)
	}

	if c.OrgRole != m.ROLE_ADMIN {
		cmd.ProtectLastAdmin = true
	}

	cmd.TeamId = teamId
	cmd.UserId = c.ParamsInt64(":userId")
	cmd.OrgId = orgId

	if err := hs.Bus.Dispatch(&cmd); err != nil {
		if err == m.ErrTeamMemberNotFound {
			return Error(404, "Team member not found.", nil)
		}
		return Error(500, "Failed to update team member.", err)
	}
	return Success("Team member updated")
}

// DELETE /api/teams/:teamId/members/:userId
func (hs *HTTPServer) RemoveTeamMember(c *m.ReqContext) Response {
	orgId := c.OrgId
	teamId := c.ParamsInt64(":teamId")
	userId := c.ParamsInt64(":userId")

	if err := teamguardian.CanAdmin(hs.Bus, orgId, teamId, c.SignedInUser); err != nil {
		return Error(403, "Not allowed to remove team member", err)
	}

	protectLastAdmin := false
	if c.OrgRole != m.ROLE_ADMIN {
		protectLastAdmin = true
	}

	if err := hs.Bus.Dispatch(&m.RemoveTeamMemberCommand{OrgId: orgId, TeamId: teamId, UserId: userId, ProtectLastAdmin: protectLastAdmin}); err != nil {
		if err == m.ErrTeamNotFound {
			return Error(404, "Team not found", nil)
		}

		if err == m.ErrTeamMemberNotFound {
			return Error(404, "Team member not found", nil)
		}

		return Error(500, "Failed to remove Member from Team", err)
	}
	return Success("Team Member removed")
}
WIP: add update user group command 2017-04-18 08:01:05 -05:00			`package api`

			`import (`
Add avatar to team and team members page (#10305) * teams: add db migration for email column in teams table * teams: /teams should render index page with a 200 OK * teams: additional backend functionality for team and team members Possibility to save/update email for teams. Possibility to retrive avatar url when searching for teams. Possibility to retrive avatar url when searching for team members. * teams: display team avatar and team member avatars Possibility to save and update email for a team * teams: create team on separate page instead of modal dialog 2017-12-20 14:20:12 -06:00			`"github.com/grafana/grafana/pkg/api/dtos"`
WIP: add update user group command 2017-04-18 08:01:05 -05:00			`"github.com/grafana/grafana/pkg/bus"`
			`m "github.com/grafana/grafana/pkg/models"`
team: renames teams.CanUpdate teamguardian.CanAdmin 2019-03-12 07:59:53 -05:00			`"github.com/grafana/grafana/pkg/services/teamguardian"`
new column for team_member table 2018-09-14 10:27:36 -05:00			`"github.com/grafana/grafana/pkg/setting"`
WIP: API methods for add/remove members to user group 2017-04-19 08:35:11 -05:00			`"github.com/grafana/grafana/pkg/util"`
WIP: add update user group command 2017-04-18 08:01:05 -05:00			`)`

refactor: rename User Groups to Teams 2017-12-08 09:25:45 -06:00			`// GET /api/teams/:teamId/members`
rename Context to ReqContext 2018-03-07 10:54:50 -06:00			`func GetTeamMembers(c *m.ReqContext) Response {`
teams: use orgId in all team and team member operations (#10862) Also fixes issue in org users tests for postgres 2018-02-09 10:26:15 -06:00			`query := m.GetTeamMembersQuery{OrgId: c.OrgId, TeamId: c.ParamsInt64(":teamId")}`
WIP: add update user group command 2017-04-18 08:01:05 -05:00
			`if err := bus.Dispatch(&query); err != nil {`
Make golint happier 2018-03-22 16:13:46 -05:00			`return Error(500, "Failed to get Team Members", err)`
WIP: add update user group command 2017-04-18 08:01:05 -05:00			`}`

Add avatar to team and team members page (#10305) * teams: add db migration for email column in teams table * teams: /teams should render index page with a 200 OK * teams: additional backend functionality for team and team members Possibility to save/update email for teams. Possibility to retrive avatar url when searching for teams. Possibility to retrive avatar url when searching for team members. * teams: display team avatar and team member avatars Possibility to save and update email for a team * teams: create team on separate page instead of modal dialog 2017-12-20 14:20:12 -06:00			`for _, member := range query.Result {`
			`member.AvatarUrl = dtos.GetGravatarUrl(member.Email)`
new column for team_member table 2018-09-14 10:27:36 -05:00			`member.Labels = []string{}`

			`if setting.IsEnterprise && setting.LdapEnabled && member.External {`
			`member.Labels = append(member.Labels, "LDAP")`
			`}`
Add avatar to team and team members page (#10305) * teams: add db migration for email column in teams table * teams: /teams should render index page with a 200 OK * teams: additional backend functionality for team and team members Possibility to save/update email for teams. Possibility to retrive avatar url when searching for teams. Possibility to retrive avatar url when searching for team members. * teams: display team avatar and team member avatars Possibility to save and update email for a team * teams: create team on separate page instead of modal dialog 2017-12-20 14:20:12 -06:00			`}`

Make golint happier 2018-03-22 16:13:46 -05:00			`return JSON(200, query.Result)`
WIP: add update user group command 2017-04-18 08:01:05 -05:00			`}`
WIP: API methods for add/remove members to user group 2017-04-19 08:35:11 -05:00
refactor: rename User Groups to Teams 2017-12-08 09:25:45 -06:00			`// POST /api/teams/:teamId/members`
teams: local access to bus, moving away from dep on global. 2019-03-14 06:10:10 -05:00			`func (hs HTTPServer) AddTeamMember(c m.ReqContext, cmd m.AddTeamMemberCommand) Response {`
teams: cleanup. 2019-03-13 10:46:35 -05:00			`cmd.OrgId = c.OrgId`
			`cmd.TeamId = c.ParamsInt64(":teamId")`
teams: teams guard on all teams update methods. 2019-03-11 07:14:06 -05:00
teams: local access to bus, moving away from dep on global. 2019-03-14 06:10:10 -05:00			`if err := teamguardian.CanAdmin(hs.Bus, cmd.OrgId, cmd.TeamId, c.SignedInUser); err != nil {`
teams: teams guard on all teams update methods. 2019-03-11 07:14:06 -05:00			`return Error(403, "Not allowed to add team member", err)`
			`}`

teams: local access to bus, moving away from dep on global. 2019-03-14 06:10:10 -05:00			`if err := hs.Bus.Dispatch(&cmd); err != nil {`
teams: adds some validation to the API 2018-02-16 04:45:53 -06:00			`if err == m.ErrTeamNotFound {`
Make golint happier 2018-03-22 16:13:46 -05:00			`return Error(404, "Team not found", nil)`
teams: adds some validation to the API 2018-02-16 04:45:53 -06:00			`}`

refactor: rename User Groups to Teams 2017-12-08 09:25:45 -06:00			`if err == m.ErrTeamMemberAlreadyAdded {`
Make golint happier 2018-03-22 16:13:46 -05:00			`return Error(400, "User is already added to this team", nil)`
WIP: API methods for add/remove members to user group 2017-04-19 08:35:11 -05:00			`}`
teams: adds some validation to the API 2018-02-16 04:45:53 -06:00
Make golint happier 2018-03-22 16:13:46 -05:00			`return Error(500, "Failed to add Member to Team", err)`
WIP: API methods for add/remove members to user group 2017-04-19 08:35:11 -05:00			`}`

Make golint happier 2018-03-22 16:13:46 -05:00			`return JSON(200, &util.DynMap{`
refactor: rename User Groups to Teams 2017-12-08 09:25:45 -06:00			`"message": "Member added to Team",`
WIP: API methods for add/remove members to user group 2017-04-19 08:35:11 -05:00			`})`
			`}`

teams: can update team members permission. 2019-03-06 08:37:37 -06:00			`// PUT /:teamId/members/:userId`
teams: local access to bus, moving away from dep on global. 2019-03-14 06:10:10 -05:00			`func (hs HTTPServer) UpdateTeamMember(c m.ReqContext, cmd m.UpdateTeamMemberCommand) Response {`
teams: teams guard on all teams update methods. 2019-03-11 07:14:06 -05:00			`teamId := c.ParamsInt64(":teamId")`
			`orgId := c.OrgId`

teams: local access to bus, moving away from dep on global. 2019-03-14 06:10:10 -05:00			`if err := teamguardian.CanAdmin(hs.Bus, orgId, teamId, c.SignedInUser); err != nil {`
teams: teams guard on all teams update methods. 2019-03-11 07:14:06 -05:00			`return Error(403, "Not allowed to update team member", err)`
			`}`

teams: editor/viewer team admin cant remove the last admin. 2019-03-13 04:11:53 -05:00			`if c.OrgRole != m.ROLE_ADMIN {`
			`cmd.ProtectLastAdmin = true`
			`}`

teams: teams guard on all teams update methods. 2019-03-11 07:14:06 -05:00			`cmd.TeamId = teamId`
teams: can update team members permission. 2019-03-06 08:37:37 -06:00			`cmd.UserId = c.ParamsInt64(":userId")`
teams: teams guard on all teams update methods. 2019-03-11 07:14:06 -05:00			`cmd.OrgId = orgId`
teams: can update team members permission. 2019-03-06 08:37:37 -06:00
teams: local access to bus, moving away from dep on global. 2019-03-14 06:10:10 -05:00			`if err := hs.Bus.Dispatch(&cmd); err != nil {`
teams: can update team members permission. 2019-03-06 08:37:37 -06:00			`if err == m.ErrTeamMemberNotFound {`
			`return Error(404, "Team member not found.", nil)`
			`}`
			`return Error(500, "Failed to update team member.", err)`
			`}`
			`return Success("Team member updated")`
			`}`

refactor: rename User Groups to Teams 2017-12-08 09:25:45 -06:00			`// DELETE /api/teams/:teamId/members/:userId`
teams: editors can't remove the last admin from a team. 2019-03-12 10:59:39 -05:00			`func (hs HTTPServer) RemoveTeamMember(c m.ReqContext) Response {`
teams: teams guard on all teams update methods. 2019-03-11 07:14:06 -05:00			`orgId := c.OrgId`
			`teamId := c.ParamsInt64(":teamId")`
			`userId := c.ParamsInt64(":userId")`

teams: local access to bus, moving away from dep on global. 2019-03-14 06:10:10 -05:00			`if err := teamguardian.CanAdmin(hs.Bus, orgId, teamId, c.SignedInUser); err != nil {`
teams: teams guard on all teams update methods. 2019-03-11 07:14:06 -05:00			`return Error(403, "Not allowed to remove team member", err)`
			`}`

teams: editors can't remove the last admin from a team. 2019-03-12 10:59:39 -05:00			`protectLastAdmin := false`
teams: editor/viewer team admin cant remove the last admin. 2019-03-13 04:11:53 -05:00			`if c.OrgRole != m.ROLE_ADMIN {`
teams: editors can't remove the last admin from a team. 2019-03-12 10:59:39 -05:00			`protectLastAdmin = true`
			`}`

teams: local access to bus, moving away from dep on global. 2019-03-14 06:10:10 -05:00			`if err := hs.Bus.Dispatch(&m.RemoveTeamMemberCommand{OrgId: orgId, TeamId: teamId, UserId: userId, ProtectLastAdmin: protectLastAdmin}); err != nil {`
teams: adds some validation to the API 2018-02-16 04:45:53 -06:00			`if err == m.ErrTeamNotFound {`
Make golint happier 2018-03-22 16:13:46 -05:00			`return Error(404, "Team not found", nil)`
teams: adds some validation to the API 2018-02-16 04:45:53 -06:00			`}`

			`if err == m.ErrTeamMemberNotFound {`
Make golint happier 2018-03-22 16:13:46 -05:00			`return Error(404, "Team member not found", nil)`
teams: adds some validation to the API 2018-02-16 04:45:53 -06:00			`}`

Make golint happier 2018-03-22 16:13:46 -05:00			`return Error(500, "Failed to remove Member from Team", err)`
WIP: API methods for add/remove members to user group 2017-04-19 08:35:11 -05:00			`}`
Make golint happier 2018-03-22 16:13:46 -05:00			`return Success("Team Member removed")`
WIP: API methods for add/remove members to user group 2017-04-19 08:35:11 -05:00			`}`