mirror of
https://github.com/mattermost/mattermost.git
synced 2025-02-25 18:55:24 -06:00
896c3f736d
* MM-23484 - add simple validation to GetUsersStatusesByIds * MM-23484 - return early in validation, add extra test case * MM-23484 - add test case for empty array Co-authored-by: Fedor Vitkovskiy <fedorvitkovskiy@pop-os.localdomain>
110 lines
2.6 KiB
Go
110 lines
2.6 KiB
Go
// Copyright (c) 2015-present Mattermost, Inc. All Rights Reserved.
|
|
// See LICENSE.txt for license information.
|
|
|
|
package api4
|
|
|
|
import (
|
|
"net/http"
|
|
|
|
"github.com/mattermost/mattermost-server/v5/model"
|
|
)
|
|
|
|
func (api *API) InitStatus() {
|
|
api.BaseRoutes.User.Handle("/status", api.ApiSessionRequired(getUserStatus)).Methods("GET")
|
|
api.BaseRoutes.Users.Handle("/status/ids", api.ApiSessionRequired(getUserStatusesByIds)).Methods("POST")
|
|
api.BaseRoutes.User.Handle("/status", api.ApiSessionRequired(updateUserStatus)).Methods("PUT")
|
|
}
|
|
|
|
func getUserStatus(c *Context, w http.ResponseWriter, r *http.Request) {
|
|
c.RequireUserId()
|
|
if c.Err != nil {
|
|
return
|
|
}
|
|
|
|
// No permission check required
|
|
|
|
statusMap, err := c.App.GetUserStatusesByIds([]string{c.Params.UserId})
|
|
if err != nil {
|
|
c.Err = err
|
|
return
|
|
}
|
|
|
|
if len(statusMap) == 0 {
|
|
c.Err = model.NewAppError("UserStatus", "api.status.user_not_found.app_error", nil, "", http.StatusNotFound)
|
|
return
|
|
}
|
|
|
|
w.Write([]byte(statusMap[0].ToJson()))
|
|
}
|
|
|
|
func getUserStatusesByIds(c *Context, w http.ResponseWriter, r *http.Request) {
|
|
userIds := model.ArrayFromJson(r.Body)
|
|
|
|
if len(userIds) == 0 {
|
|
c.SetInvalidParam("user_ids")
|
|
return
|
|
}
|
|
|
|
for _, userId := range userIds {
|
|
if len(userId) != 26 {
|
|
c.SetInvalidParam("user_ids")
|
|
return
|
|
}
|
|
}
|
|
|
|
// No permission check required
|
|
|
|
statusMap, err := c.App.GetUserStatusesByIds(userIds)
|
|
if err != nil {
|
|
c.Err = err
|
|
return
|
|
}
|
|
|
|
w.Write([]byte(model.StatusListToJson(statusMap)))
|
|
}
|
|
|
|
func updateUserStatus(c *Context, w http.ResponseWriter, r *http.Request) {
|
|
c.RequireUserId()
|
|
if c.Err != nil {
|
|
return
|
|
}
|
|
|
|
status := model.StatusFromJson(r.Body)
|
|
if status == nil {
|
|
c.SetInvalidParam("status")
|
|
return
|
|
}
|
|
|
|
// The user being updated in the payload must be the same one as indicated in the URL.
|
|
if status.UserId != c.Params.UserId {
|
|
c.SetInvalidParam("user_id")
|
|
return
|
|
}
|
|
|
|
if !c.App.SessionHasPermissionToUser(*c.App.Session(), c.Params.UserId) {
|
|
c.SetPermissionError(model.PERMISSION_EDIT_OTHER_USERS)
|
|
return
|
|
}
|
|
|
|
currentStatus, err := c.App.GetStatus(c.Params.UserId)
|
|
if err == nil && currentStatus.Status == model.STATUS_OUT_OF_OFFICE && status.Status != model.STATUS_OUT_OF_OFFICE {
|
|
c.App.DisableAutoResponder(c.Params.UserId, c.IsSystemAdmin())
|
|
}
|
|
|
|
switch status.Status {
|
|
case "online":
|
|
c.App.SetStatusOnline(c.Params.UserId, true)
|
|
case "offline":
|
|
c.App.SetStatusOffline(c.Params.UserId, true)
|
|
case "away":
|
|
c.App.SetStatusAwayIfNeeded(c.Params.UserId, true)
|
|
case "dnd":
|
|
c.App.SetStatusDoNotDisturb(c.Params.UserId)
|
|
default:
|
|
c.SetInvalidParam("status")
|
|
return
|
|
}
|
|
|
|
getUserStatus(c, w, r)
|
|
}
|