mirror of
https://github.com/grafana/grafana.git
synced 2024-11-28 11:44:26 -06:00
5f0a7f43c3
* Users: show badges for each auth provider * Chore: don't use functions in angular bindings * Users: minor style changes to labels * Chore: convert auth labels on the backed side, deduplicate frontend code * Users: use authLabels everywhere instead of authModule * User: fix edit user page style * Users: minor fixes after review
113 lines
3.1 KiB
Go
113 lines
3.1 KiB
Go
package api
|
|
|
|
import (
|
|
"github.com/grafana/grafana/pkg/api/dtos"
|
|
"github.com/grafana/grafana/pkg/bus"
|
|
m "github.com/grafana/grafana/pkg/models"
|
|
"github.com/grafana/grafana/pkg/services/teamguardian"
|
|
"github.com/grafana/grafana/pkg/setting"
|
|
"github.com/grafana/grafana/pkg/util"
|
|
)
|
|
|
|
// GET /api/teams/:teamId/members
|
|
func GetTeamMembers(c *m.ReqContext) Response {
|
|
query := m.GetTeamMembersQuery{OrgId: c.OrgId, TeamId: c.ParamsInt64(":teamId")}
|
|
|
|
if err := bus.Dispatch(&query); err != nil {
|
|
return Error(500, "Failed to get Team Members", err)
|
|
}
|
|
|
|
for _, member := range query.Result {
|
|
member.AvatarUrl = dtos.GetGravatarUrl(member.Email)
|
|
member.Labels = []string{}
|
|
|
|
if setting.IsEnterprise && member.External {
|
|
authProvider := GetAuthProviderLabel(member.AuthModule)
|
|
member.Labels = append(member.Labels, authProvider)
|
|
}
|
|
}
|
|
|
|
return JSON(200, query.Result)
|
|
}
|
|
|
|
// POST /api/teams/:teamId/members
|
|
func (hs *HTTPServer) AddTeamMember(c *m.ReqContext, cmd m.AddTeamMemberCommand) Response {
|
|
cmd.OrgId = c.OrgId
|
|
cmd.TeamId = c.ParamsInt64(":teamId")
|
|
|
|
if err := teamguardian.CanAdmin(hs.Bus, cmd.OrgId, cmd.TeamId, c.SignedInUser); err != nil {
|
|
return Error(403, "Not allowed to add team member", err)
|
|
}
|
|
|
|
if err := hs.Bus.Dispatch(&cmd); err != nil {
|
|
if err == m.ErrTeamNotFound {
|
|
return Error(404, "Team not found", nil)
|
|
}
|
|
|
|
if err == m.ErrTeamMemberAlreadyAdded {
|
|
return Error(400, "User is already added to this team", nil)
|
|
}
|
|
|
|
return Error(500, "Failed to add Member to Team", err)
|
|
}
|
|
|
|
return JSON(200, &util.DynMap{
|
|
"message": "Member added to Team",
|
|
})
|
|
}
|
|
|
|
// PUT /:teamId/members/:userId
|
|
func (hs *HTTPServer) UpdateTeamMember(c *m.ReqContext, cmd m.UpdateTeamMemberCommand) Response {
|
|
teamId := c.ParamsInt64(":teamId")
|
|
orgId := c.OrgId
|
|
|
|
if err := teamguardian.CanAdmin(hs.Bus, orgId, teamId, c.SignedInUser); err != nil {
|
|
return Error(403, "Not allowed to update team member", err)
|
|
}
|
|
|
|
if c.OrgRole != m.ROLE_ADMIN {
|
|
cmd.ProtectLastAdmin = true
|
|
}
|
|
|
|
cmd.TeamId = teamId
|
|
cmd.UserId = c.ParamsInt64(":userId")
|
|
cmd.OrgId = orgId
|
|
|
|
if err := hs.Bus.Dispatch(&cmd); err != nil {
|
|
if err == m.ErrTeamMemberNotFound {
|
|
return Error(404, "Team member not found.", nil)
|
|
}
|
|
return Error(500, "Failed to update team member.", err)
|
|
}
|
|
return Success("Team member updated")
|
|
}
|
|
|
|
// DELETE /api/teams/:teamId/members/:userId
|
|
func (hs *HTTPServer) RemoveTeamMember(c *m.ReqContext) Response {
|
|
orgId := c.OrgId
|
|
teamId := c.ParamsInt64(":teamId")
|
|
userId := c.ParamsInt64(":userId")
|
|
|
|
if err := teamguardian.CanAdmin(hs.Bus, orgId, teamId, c.SignedInUser); err != nil {
|
|
return Error(403, "Not allowed to remove team member", err)
|
|
}
|
|
|
|
protectLastAdmin := false
|
|
if c.OrgRole != m.ROLE_ADMIN {
|
|
protectLastAdmin = true
|
|
}
|
|
|
|
if err := hs.Bus.Dispatch(&m.RemoveTeamMemberCommand{OrgId: orgId, TeamId: teamId, UserId: userId, ProtectLastAdmin: protectLastAdmin}); err != nil {
|
|
if err == m.ErrTeamNotFound {
|
|
return Error(404, "Team not found", nil)
|
|
}
|
|
|
|
if err == m.ErrTeamMemberNotFound {
|
|
return Error(404, "Team member not found", nil)
|
|
}
|
|
|
|
return Error(500, "Failed to remove Member from Team", err)
|
|
}
|
|
return Success("Team Member removed")
|
|
}
|