org.go 25 KB

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798991001011021031041051061071081091101111121131141151161171181191201211221231241251261271281291301311321331341351361371381391401411421431441451461471481491501511521531541551561571581591601611621631641651661671681691701711721731741751761771781791801811821831841851861871881891901911921931941951961971981992002012022032042052062072082092102112122132142152162172182192202212222232242252262272282292302312322332342352362372382392402412422432442452462472482492502512522532542552562572582592602612622632642652662672682692702712722732742752762772782792802812822832842852862872882892902912922932942952962972982993003013023033043053063073083093103113123133143153163173183193203213223233243253263273283293303313323333343353363373383393403413423433443453463473483493503513523533543553563573583593603613623633643653663673683693703713723733743753763773783793803813823833843853863873883893903913923933943953963973983994004014024034044054064074084094104114124134144154164174184194204214224234244254264274284294304314324334344354364374384394404414424434444454464474484494504514524534544554564574584594604614624634644654664674684694704714724734744754764774784794804814824834844854864874884894904914924934944954964974984995005015025035045055065075085095105115125135145155165175185195205215225235245255265275285295305315325335345355365375385395405415425435445455465475485495505515525535545555565575585595605615625635645655665675685695705715725735745755765775785795805815825835845855865875885895905915925935945955965975985996006016026036046056066076086096106116126136146156166176186196206216226236246256266276286296306316326336346356366376386396406416426436446456466476486496506516526536546556566576586596606616626636646656666676686696706716726736746756766776786796806816826836846856866876886896906916926936946956966976986997007017027037047057067077087097107117127137147157167177187197207217227237247257267277287297307317327337347357367377387397407417427437447457467477487497507517527537547557567577587597607617627637647657667677687697707717727737747757767777787797807817827837847857867877887897907917927937947957967977987998008018028038048058068078088098108118128138148158168178188198208218228238248258268278288298308318328338348358368378388398408418428438448458468478488498508518528538548558568578588598608618628638648658668678688698708718728738748758768778788798808818828838848858868878888898908918928938948958968978988999009019029039049059069079089099109119129139149159169179189199209219229239249259269279289299309319329339349359369379389399409419429439449459469479489499509519529539549559569579589599609619629639649659669679689699709719729739749759769779789799809819829839849859869879889899909919929939949959969979989991000100110021003100410051006100710081009101010111012101310141015101610171018101910201021102210231024102510261027102810291030
  1. // Copyright 2014 The Gogs Authors. All rights reserved.
  2. // Use of this source code is governed by a MIT-style
  3. // license that can be found in the LICENSE file.
  4. package models
  5. import (
  6. "errors"
  7. "fmt"
  8. "os"
  9. "strings"
  10. "github.com/go-xorm/xorm"
  11. )
  12. var (
  13. ErrOrgNotExist = errors.New("Organization does not exist")
  14. ErrTeamNotExist = errors.New("Team does not exist")
  15. )
  16. // IsOwnedBy returns true if given user is in the owner team.
  17. func (org *User) IsOwnedBy(uid int64) bool {
  18. return IsOrganizationOwner(org.Id, uid)
  19. }
  20. // IsOrgMember returns true if given user is member of organization.
  21. func (org *User) IsOrgMember(uid int64) bool {
  22. return org.IsOrganization() && IsOrganizationMember(org.Id, uid)
  23. }
  24. func (org *User) getTeam(e Engine, name string) (*Team, error) {
  25. return getTeam(e, org.Id, name)
  26. }
  27. // GetTeam returns named team of organization.
  28. func (org *User) GetTeam(name string) (*Team, error) {
  29. return org.getTeam(x, name)
  30. }
  31. func (org *User) getOwnerTeam(e Engine) (*Team, error) {
  32. return org.getTeam(e, OWNER_TEAM)
  33. }
  34. // GetOwnerTeam returns owner team of organization.
  35. func (org *User) GetOwnerTeam() (*Team, error) {
  36. return org.getOwnerTeam(x)
  37. }
  38. func (org *User) getTeams(e Engine) error {
  39. return e.Where("org_id=?", org.Id).Find(&org.Teams)
  40. }
  41. // GetTeams returns all teams that belong to organization.
  42. func (org *User) GetTeams() error {
  43. return org.getTeams(x)
  44. }
  45. // GetMembers returns all members of organization.
  46. func (org *User) GetMembers() error {
  47. ous, err := GetOrgUsersByOrgId(org.Id)
  48. if err != nil {
  49. return err
  50. }
  51. org.Members = make([]*User, len(ous))
  52. for i, ou := range ous {
  53. org.Members[i], err = GetUserByID(ou.Uid)
  54. if err != nil {
  55. return err
  56. }
  57. }
  58. return nil
  59. }
  60. // AddMember adds new member to organization.
  61. func (org *User) AddMember(uid int64) error {
  62. return AddOrgUser(org.Id, uid)
  63. }
  64. // RemoveMember removes member from organization.
  65. func (org *User) RemoveMember(uid int64) error {
  66. return RemoveOrgUser(org.Id, uid)
  67. }
  68. func (org *User) removeOrgRepo(e Engine, repoID int64) error {
  69. return removeOrgRepo(e, org.Id, repoID)
  70. }
  71. // RemoveOrgRepo removes all team-repository relations of organization.
  72. func (org *User) RemoveOrgRepo(repoID int64) error {
  73. return org.removeOrgRepo(x, repoID)
  74. }
  75. // CreateOrganization creates record of a new organization.
  76. func CreateOrganization(org, owner *User) (err error) {
  77. if err = IsUsableName(org.Name); err != nil {
  78. return err
  79. }
  80. isExist, err := IsUserExist(0, org.Name)
  81. if err != nil {
  82. return err
  83. } else if isExist {
  84. return ErrUserAlreadyExist{org.Name}
  85. }
  86. org.LowerName = strings.ToLower(org.Name)
  87. org.FullName = org.Name
  88. org.Rands = GetUserSalt()
  89. org.Salt = GetUserSalt()
  90. org.UseCustomAvatar = true
  91. org.MaxRepoCreation = -1
  92. org.NumTeams = 1
  93. org.NumMembers = 1
  94. sess := x.NewSession()
  95. defer sessionRelease(sess)
  96. if err = sess.Begin(); err != nil {
  97. return err
  98. }
  99. if _, err = sess.Insert(org); err != nil {
  100. return fmt.Errorf("insert organization: %v", err)
  101. }
  102. org.GenerateRandomAvatar()
  103. // Add initial creator to organization and owner team.
  104. if _, err = sess.Insert(&OrgUser{
  105. Uid: owner.Id,
  106. OrgID: org.Id,
  107. IsOwner: true,
  108. NumTeams: 1,
  109. }); err != nil {
  110. return fmt.Errorf("insert org-user relation: %v", err)
  111. }
  112. // Create default owner team.
  113. t := &Team{
  114. OrgID: org.Id,
  115. LowerName: strings.ToLower(OWNER_TEAM),
  116. Name: OWNER_TEAM,
  117. Authorize: ACCESS_MODE_OWNER,
  118. NumMembers: 1,
  119. }
  120. if _, err = sess.Insert(t); err != nil {
  121. return fmt.Errorf("insert owner team: %v", err)
  122. }
  123. if _, err = sess.Insert(&TeamUser{
  124. Uid: owner.Id,
  125. OrgID: org.Id,
  126. TeamID: t.ID,
  127. }); err != nil {
  128. return fmt.Errorf("insert team-user relation: %v", err)
  129. }
  130. if err = os.MkdirAll(UserPath(org.Name), os.ModePerm); err != nil {
  131. return fmt.Errorf("create directory: %v", err)
  132. }
  133. return sess.Commit()
  134. }
  135. // GetOrgByName returns organization by given name.
  136. func GetOrgByName(name string) (*User, error) {
  137. if len(name) == 0 {
  138. return nil, ErrOrgNotExist
  139. }
  140. u := &User{
  141. LowerName: strings.ToLower(name),
  142. Type: ORGANIZATION,
  143. }
  144. has, err := x.Get(u)
  145. if err != nil {
  146. return nil, err
  147. } else if !has {
  148. return nil, ErrOrgNotExist
  149. }
  150. return u, nil
  151. }
  152. // CountOrganizations returns number of organizations.
  153. func CountOrganizations() int64 {
  154. count, _ := x.Where("type=1").Count(new(User))
  155. return count
  156. }
  157. // Organizations returns number of organizations in given page.
  158. func Organizations(page, pageSize int) ([]*User, error) {
  159. orgs := make([]*User, 0, pageSize)
  160. return orgs, x.Limit(pageSize, (page-1)*pageSize).Where("type=1").Asc("id").Find(&orgs)
  161. }
  162. // DeleteOrganization completely and permanently deletes everything of organization.
  163. func DeleteOrganization(org *User) (err error) {
  164. if err := DeleteUser(org); err != nil {
  165. return err
  166. }
  167. sess := x.NewSession()
  168. defer sessionRelease(sess)
  169. if err = sess.Begin(); err != nil {
  170. return err
  171. }
  172. if err = deleteBeans(sess,
  173. &Team{OrgID: org.Id},
  174. &OrgUser{OrgID: org.Id},
  175. &TeamUser{OrgID: org.Id},
  176. ); err != nil {
  177. return fmt.Errorf("deleteBeans: %v", err)
  178. }
  179. if err = deleteUser(sess, org); err != nil {
  180. return fmt.Errorf("deleteUser: %v", err)
  181. }
  182. return sess.Commit()
  183. }
  184. // ________ ____ ___
  185. // \_____ \_______ ____ | | \______ ___________
  186. // / | \_ __ \/ ___\| | / ___// __ \_ __ \
  187. // / | \ | \/ /_/ > | /\___ \\ ___/| | \/
  188. // \_______ /__| \___ /|______//____ >\___ >__|
  189. // \/ /_____/ \/ \/
  190. // OrgUser represents an organization-user relation.
  191. type OrgUser struct {
  192. ID int64 `xorm:"pk autoincr"`
  193. Uid int64 `xorm:"INDEX UNIQUE(s)"`
  194. OrgID int64 `xorm:"INDEX UNIQUE(s)"`
  195. IsPublic bool
  196. IsOwner bool
  197. NumTeams int
  198. }
  199. // IsOrganizationOwner returns true if given user is in the owner team.
  200. func IsOrganizationOwner(orgId, uid int64) bool {
  201. has, _ := x.Where("is_owner=?", true).And("uid=?", uid).And("org_id=?", orgId).Get(new(OrgUser))
  202. return has
  203. }
  204. // IsOrganizationMember returns true if given user is member of organization.
  205. func IsOrganizationMember(orgId, uid int64) bool {
  206. has, _ := x.Where("uid=?", uid).And("org_id=?", orgId).Get(new(OrgUser))
  207. return has
  208. }
  209. // IsPublicMembership returns true if given user public his/her membership.
  210. func IsPublicMembership(orgId, uid int64) bool {
  211. has, _ := x.Where("uid=?", uid).And("org_id=?", orgId).And("is_public=?", true).Get(new(OrgUser))
  212. return has
  213. }
  214. func getOwnedOrgsByUserID(sess *xorm.Session, userID int64) ([]*User, error) {
  215. orgs := make([]*User, 0, 10)
  216. return orgs, sess.Where("`org_user`.uid=?", userID).And("`org_user`.is_owner=?", true).
  217. Join("INNER", "`org_user`", "`org_user`.org_id=`user`.id").Find(&orgs)
  218. }
  219. // GetOwnedOrgsByUserID returns a list of organizations are owned by given user ID.
  220. func GetOwnedOrgsByUserID(userID int64) ([]*User, error) {
  221. sess := x.NewSession()
  222. return getOwnedOrgsByUserID(sess, userID)
  223. }
  224. // GetOwnedOrganizationsByUserIDDesc returns a list of organizations are owned by
  225. // given user ID and descring order by given condition.
  226. func GetOwnedOrgsByUserIDDesc(userID int64, desc string) ([]*User, error) {
  227. sess := x.NewSession()
  228. return getOwnedOrgsByUserID(sess.Desc(desc), userID)
  229. }
  230. // GetOrgUsersByUserID returns all organization-user relations by user ID.
  231. func GetOrgUsersByUserID(uid int64, all bool) ([]*OrgUser, error) {
  232. ous := make([]*OrgUser, 0, 10)
  233. sess := x.Where("uid=?", uid)
  234. if !all {
  235. // Only show public organizations
  236. sess.And("is_public=?", true)
  237. }
  238. err := sess.Find(&ous)
  239. return ous, err
  240. }
  241. // GetOrgUsersByOrgId returns all organization-user relations by organization ID.
  242. func GetOrgUsersByOrgId(orgId int64) ([]*OrgUser, error) {
  243. ous := make([]*OrgUser, 0, 10)
  244. err := x.Where("org_id=?", orgId).Find(&ous)
  245. return ous, err
  246. }
  247. // ChangeOrgUserStatus changes public or private membership status.
  248. func ChangeOrgUserStatus(orgId, uid int64, public bool) error {
  249. ou := new(OrgUser)
  250. has, err := x.Where("uid=?", uid).And("org_id=?", orgId).Get(ou)
  251. if err != nil {
  252. return err
  253. } else if !has {
  254. return nil
  255. }
  256. ou.IsPublic = public
  257. _, err = x.Id(ou.ID).AllCols().Update(ou)
  258. return err
  259. }
  260. // AddOrgUser adds new user to given organization.
  261. func AddOrgUser(orgId, uid int64) error {
  262. if IsOrganizationMember(orgId, uid) {
  263. return nil
  264. }
  265. sess := x.NewSession()
  266. defer sess.Close()
  267. if err := sess.Begin(); err != nil {
  268. return err
  269. }
  270. ou := &OrgUser{
  271. Uid: uid,
  272. OrgID: orgId,
  273. }
  274. if _, err := sess.Insert(ou); err != nil {
  275. sess.Rollback()
  276. return err
  277. } else if _, err = sess.Exec("UPDATE `user` SET num_members = num_members + 1 WHERE id = ?", orgId); err != nil {
  278. sess.Rollback()
  279. return err
  280. }
  281. return sess.Commit()
  282. }
  283. // RemoveOrgUser removes user from given organization.
  284. func RemoveOrgUser(orgId, uid int64) error {
  285. ou := new(OrgUser)
  286. has, err := x.Where("uid=?", uid).And("org_id=?", orgId).Get(ou)
  287. if err != nil {
  288. return fmt.Errorf("get org-user: %v", err)
  289. } else if !has {
  290. return nil
  291. }
  292. u, err := GetUserByID(uid)
  293. if err != nil {
  294. return fmt.Errorf("GetUserById: %v", err)
  295. }
  296. org, err := GetUserByID(orgId)
  297. if err != nil {
  298. return fmt.Errorf("get organization: %v", err)
  299. } else if err = org.GetRepositories(); err != nil {
  300. return fmt.Errorf("GetRepositories: %v", err)
  301. }
  302. // Check if the user to delete is the last member in owner team.
  303. if IsOrganizationOwner(orgId, uid) {
  304. t, err := org.GetOwnerTeam()
  305. if err != nil {
  306. return err
  307. }
  308. if t.NumMembers == 1 {
  309. return ErrLastOrgOwner{UID: uid}
  310. }
  311. }
  312. sess := x.NewSession()
  313. defer sessionRelease(sess)
  314. if err := sess.Begin(); err != nil {
  315. return err
  316. }
  317. if _, err := sess.Id(ou.ID).Delete(ou); err != nil {
  318. return err
  319. } else if _, err = sess.Exec("UPDATE `user` SET num_members=num_members-1 WHERE id=?", orgId); err != nil {
  320. return err
  321. }
  322. // Delete all repository accesses.
  323. access := &Access{UserID: u.Id}
  324. for _, repo := range org.Repos {
  325. access.RepoID = repo.ID
  326. if _, err = sess.Delete(access); err != nil {
  327. return err
  328. } else if err = watchRepo(sess, u.Id, repo.ID, false); err != nil {
  329. return err
  330. }
  331. }
  332. // Delete member in his/her teams.
  333. teams, err := getUserTeams(sess, org.Id, u.Id)
  334. if err != nil {
  335. return err
  336. }
  337. for _, t := range teams {
  338. if err = removeTeamMember(sess, org.Id, t.ID, u.Id); err != nil {
  339. return err
  340. }
  341. }
  342. return sess.Commit()
  343. }
  344. // ___________
  345. // \__ ___/___ _____ _____
  346. // | |_/ __ \\__ \ / \
  347. // | |\ ___/ / __ \| Y Y \
  348. // |____| \___ >____ /__|_| /
  349. // \/ \/ \/
  350. const OWNER_TEAM = "Owners"
  351. // Team represents a organization team.
  352. type Team struct {
  353. ID int64 `xorm:"pk autoincr"`
  354. OrgID int64 `xorm:"INDEX"`
  355. LowerName string
  356. Name string
  357. Description string
  358. Authorize AccessMode
  359. Repos []*Repository `xorm:"-"`
  360. Members []*User `xorm:"-"`
  361. NumRepos int
  362. NumMembers int
  363. }
  364. // IsOwnerTeam returns true if team is owner team.
  365. func (t *Team) IsOwnerTeam() bool {
  366. return t.Name == OWNER_TEAM
  367. }
  368. // IsTeamMember returns true if given user is a member of team.
  369. func (t *Team) IsMember(uid int64) bool {
  370. return IsTeamMember(t.OrgID, t.ID, uid)
  371. }
  372. func (t *Team) getRepositories(e Engine) (err error) {
  373. teamRepos := make([]*TeamRepo, 0, t.NumRepos)
  374. if err = x.Where("team_id=?", t.ID).Find(&teamRepos); err != nil {
  375. return fmt.Errorf("get team-repos: %v", err)
  376. }
  377. t.Repos = make([]*Repository, 0, len(teamRepos))
  378. for i := range teamRepos {
  379. repo, err := getRepositoryByID(e, teamRepos[i].RepoID)
  380. if err != nil {
  381. return fmt.Errorf("getRepositoryById(%d): %v", teamRepos[i].RepoID, err)
  382. }
  383. t.Repos = append(t.Repos, repo)
  384. }
  385. return nil
  386. }
  387. // GetRepositories returns all repositories in team of organization.
  388. func (t *Team) GetRepositories() error {
  389. return t.getRepositories(x)
  390. }
  391. func (t *Team) getMembers(e Engine) (err error) {
  392. t.Members, err = getTeamMembers(e, t.ID)
  393. return err
  394. }
  395. // GetMembers returns all members in team of organization.
  396. func (t *Team) GetMembers() (err error) {
  397. return t.getMembers(x)
  398. }
  399. // AddMember adds new member to team of organization.
  400. func (t *Team) AddMember(uid int64) error {
  401. return AddTeamMember(t.OrgID, t.ID, uid)
  402. }
  403. // RemoveMember removes member from team of organization.
  404. func (t *Team) RemoveMember(uid int64) error {
  405. return RemoveTeamMember(t.OrgID, t.ID, uid)
  406. }
  407. func (t *Team) hasRepository(e Engine, repoID int64) bool {
  408. return hasTeamRepo(e, t.OrgID, t.ID, repoID)
  409. }
  410. // HasRepository returns true if given repository belong to team.
  411. func (t *Team) HasRepository(repoID int64) bool {
  412. return t.hasRepository(x, repoID)
  413. }
  414. func (t *Team) addRepository(e Engine, repo *Repository) (err error) {
  415. if err = addTeamRepo(e, t.OrgID, t.ID, repo.ID); err != nil {
  416. return err
  417. }
  418. t.NumRepos++
  419. if _, err = e.Id(t.ID).AllCols().Update(t); err != nil {
  420. return fmt.Errorf("update team: %v", err)
  421. }
  422. if err = repo.recalculateTeamAccesses(e, 0); err != nil {
  423. return fmt.Errorf("recalculateAccesses: %v", err)
  424. }
  425. if err = t.getMembers(e); err != nil {
  426. return fmt.Errorf("getMembers: %v", err)
  427. }
  428. for _, u := range t.Members {
  429. if err = watchRepo(e, u.Id, repo.ID, true); err != nil {
  430. return fmt.Errorf("watchRepo: %v", err)
  431. }
  432. }
  433. return nil
  434. }
  435. // AddRepository adds new repository to team of organization.
  436. func (t *Team) AddRepository(repo *Repository) (err error) {
  437. if repo.OwnerID != t.OrgID {
  438. return errors.New("Repository does not belong to organization")
  439. } else if t.HasRepository(repo.ID) {
  440. return nil
  441. }
  442. sess := x.NewSession()
  443. defer sessionRelease(sess)
  444. if err = sess.Begin(); err != nil {
  445. return err
  446. }
  447. if err = t.addRepository(sess, repo); err != nil {
  448. return err
  449. }
  450. return sess.Commit()
  451. }
  452. func (t *Team) removeRepository(e Engine, repo *Repository, recalculate bool) (err error) {
  453. if err = removeTeamRepo(e, t.ID, repo.ID); err != nil {
  454. return err
  455. }
  456. t.NumRepos--
  457. if _, err = e.Id(t.ID).AllCols().Update(t); err != nil {
  458. return err
  459. }
  460. // Don't need to recalculate when delete a repository from organization.
  461. if recalculate {
  462. if err = repo.recalculateTeamAccesses(e, t.ID); err != nil {
  463. return err
  464. }
  465. }
  466. if err = t.getMembers(e); err != nil {
  467. return fmt.Errorf("get team members: %v", err)
  468. }
  469. for _, u := range t.Members {
  470. has, err := hasAccess(e, u, repo, ACCESS_MODE_READ)
  471. if err != nil {
  472. return err
  473. } else if has {
  474. continue
  475. }
  476. if err = watchRepo(e, u.Id, repo.ID, false); err != nil {
  477. return err
  478. }
  479. }
  480. return nil
  481. }
  482. // RemoveRepository removes repository from team of organization.
  483. func (t *Team) RemoveRepository(repoID int64) error {
  484. if !t.HasRepository(repoID) {
  485. return nil
  486. }
  487. repo, err := GetRepositoryByID(repoID)
  488. if err != nil {
  489. return err
  490. }
  491. sess := x.NewSession()
  492. defer sessionRelease(sess)
  493. if err = sess.Begin(); err != nil {
  494. return err
  495. }
  496. if err = t.removeRepository(sess, repo, true); err != nil {
  497. return err
  498. }
  499. return sess.Commit()
  500. }
  501. // NewTeam creates a record of new team.
  502. // It's caller's responsibility to assign organization ID.
  503. func NewTeam(t *Team) error {
  504. if len(t.Name) == 0 {
  505. return errors.New("empty team name")
  506. }
  507. has, err := x.Id(t.OrgID).Get(new(User))
  508. if err != nil {
  509. return err
  510. } else if !has {
  511. return ErrOrgNotExist
  512. }
  513. t.LowerName = strings.ToLower(t.Name)
  514. has, err = x.Where("org_id=?", t.OrgID).And("lower_name=?", t.LowerName).Get(new(Team))
  515. if err != nil {
  516. return err
  517. } else if has {
  518. return ErrTeamAlreadyExist{t.OrgID, t.LowerName}
  519. }
  520. sess := x.NewSession()
  521. defer sess.Close()
  522. if err = sess.Begin(); err != nil {
  523. return err
  524. }
  525. if _, err = sess.Insert(t); err != nil {
  526. sess.Rollback()
  527. return err
  528. }
  529. // Update organization number of teams.
  530. if _, err = sess.Exec("UPDATE `user` SET num_teams=num_teams+1 WHERE id = ?", t.OrgID); err != nil {
  531. sess.Rollback()
  532. return err
  533. }
  534. return sess.Commit()
  535. }
  536. func getTeam(e Engine, orgId int64, name string) (*Team, error) {
  537. t := &Team{
  538. OrgID: orgId,
  539. LowerName: strings.ToLower(name),
  540. }
  541. has, err := e.Get(t)
  542. if err != nil {
  543. return nil, err
  544. } else if !has {
  545. return nil, ErrTeamNotExist
  546. }
  547. return t, nil
  548. }
  549. // GetTeam returns team by given team name and organization.
  550. func GetTeam(orgId int64, name string) (*Team, error) {
  551. return getTeam(x, orgId, name)
  552. }
  553. func getTeamById(e Engine, teamId int64) (*Team, error) {
  554. t := new(Team)
  555. has, err := e.Id(teamId).Get(t)
  556. if err != nil {
  557. return nil, err
  558. } else if !has {
  559. return nil, ErrTeamNotExist
  560. }
  561. return t, nil
  562. }
  563. // GetTeamById returns team by given ID.
  564. func GetTeamById(teamId int64) (*Team, error) {
  565. return getTeamById(x, teamId)
  566. }
  567. // UpdateTeam updates information of team.
  568. func UpdateTeam(t *Team, authChanged bool) (err error) {
  569. if len(t.Name) == 0 {
  570. return errors.New("empty team name")
  571. }
  572. if len(t.Description) > 255 {
  573. t.Description = t.Description[:255]
  574. }
  575. sess := x.NewSession()
  576. defer sessionRelease(sess)
  577. if err = sess.Begin(); err != nil {
  578. return err
  579. }
  580. t.LowerName = strings.ToLower(t.Name)
  581. has, err := x.Where("org_id=?", t.OrgID).And("lower_name=?", t.LowerName).And("id!=?", t.ID).Get(new(Team))
  582. if err != nil {
  583. return err
  584. } else if has {
  585. return ErrTeamAlreadyExist{t.OrgID, t.LowerName}
  586. }
  587. if _, err = sess.Id(t.ID).AllCols().Update(t); err != nil {
  588. return fmt.Errorf("update: %v", err)
  589. }
  590. // Update access for team members if needed.
  591. if authChanged {
  592. if err = t.getRepositories(sess); err != nil {
  593. return fmt.Errorf("getRepositories:%v", err)
  594. }
  595. for _, repo := range t.Repos {
  596. if err = repo.recalculateTeamAccesses(sess, 0); err != nil {
  597. return fmt.Errorf("recalculateTeamAccesses: %v", err)
  598. }
  599. }
  600. }
  601. return sess.Commit()
  602. }
  603. // DeleteTeam deletes given team.
  604. // It's caller's responsibility to assign organization ID.
  605. func DeleteTeam(t *Team) error {
  606. if err := t.GetRepositories(); err != nil {
  607. return err
  608. }
  609. // Get organization.
  610. org, err := GetUserByID(t.OrgID)
  611. if err != nil {
  612. return err
  613. }
  614. sess := x.NewSession()
  615. defer sessionRelease(sess)
  616. if err = sess.Begin(); err != nil {
  617. return err
  618. }
  619. // Delete all accesses.
  620. for _, repo := range t.Repos {
  621. if err = repo.recalculateTeamAccesses(sess, t.ID); err != nil {
  622. return err
  623. }
  624. }
  625. // Delete team-user.
  626. if _, err = sess.Where("org_id=?", org.Id).Where("team_id=?", t.ID).Delete(new(TeamUser)); err != nil {
  627. return err
  628. }
  629. // Delete team.
  630. if _, err = sess.Id(t.ID).Delete(new(Team)); err != nil {
  631. return err
  632. }
  633. // Update organization number of teams.
  634. if _, err = sess.Exec("UPDATE `user` SET num_teams=num_teams-1 WHERE id=?", t.OrgID); err != nil {
  635. return err
  636. }
  637. return sess.Commit()
  638. }
  639. // ___________ ____ ___
  640. // \__ ___/___ _____ _____ | | \______ ___________
  641. // | |_/ __ \\__ \ / \| | / ___// __ \_ __ \
  642. // | |\ ___/ / __ \| Y Y \ | /\___ \\ ___/| | \/
  643. // |____| \___ >____ /__|_| /______//____ >\___ >__|
  644. // \/ \/ \/ \/ \/
  645. // TeamUser represents an team-user relation.
  646. type TeamUser struct {
  647. ID int64 `xorm:"pk autoincr"`
  648. OrgID int64 `xorm:"INDEX"`
  649. TeamID int64 `xorm:"UNIQUE(s)"`
  650. Uid int64 `xorm:"UNIQUE(s)"`
  651. }
  652. func isTeamMember(e Engine, orgID, teamID, uid int64) bool {
  653. has, _ := e.Where("org_id=?", orgID).And("team_id=?", teamID).And("uid=?", uid).Get(new(TeamUser))
  654. return has
  655. }
  656. // IsTeamMember returns true if given user is a member of team.
  657. func IsTeamMember(orgID, teamID, uid int64) bool {
  658. return isTeamMember(x, orgID, teamID, uid)
  659. }
  660. func getTeamMembers(e Engine, teamID int64) (_ []*User, err error) {
  661. teamUsers := make([]*TeamUser, 0, 10)
  662. if err = e.Where("team_id=?", teamID).Find(&teamUsers); err != nil {
  663. return nil, fmt.Errorf("get team-users: %v", err)
  664. }
  665. members := make([]*User, 0, len(teamUsers))
  666. for i := range teamUsers {
  667. member := new(User)
  668. if _, err = e.Id(teamUsers[i].Uid).Get(member); err != nil {
  669. return nil, fmt.Errorf("get user '%d': %v", teamUsers[i].Uid, err)
  670. }
  671. members = append(members, member)
  672. }
  673. return members, nil
  674. }
  675. // GetTeamMembers returns all members in given team of organization.
  676. func GetTeamMembers(teamID int64) ([]*User, error) {
  677. return getTeamMembers(x, teamID)
  678. }
  679. func getUserTeams(e Engine, orgId, uid int64) ([]*Team, error) {
  680. tus := make([]*TeamUser, 0, 5)
  681. if err := e.Where("uid=?", uid).And("org_id=?", orgId).Find(&tus); err != nil {
  682. return nil, err
  683. }
  684. ts := make([]*Team, len(tus))
  685. for i, tu := range tus {
  686. t := new(Team)
  687. has, err := e.Id(tu.TeamID).Get(t)
  688. if err != nil {
  689. return nil, err
  690. } else if !has {
  691. return nil, ErrTeamNotExist
  692. }
  693. ts[i] = t
  694. }
  695. return ts, nil
  696. }
  697. // GetUserTeams returns all teams that user belongs to in given organization.
  698. func GetUserTeams(orgId, uid int64) ([]*Team, error) {
  699. return getUserTeams(x, orgId, uid)
  700. }
  701. // AddTeamMember adds new member to given team of given organization.
  702. func AddTeamMember(orgId, teamId, uid int64) error {
  703. if IsTeamMember(orgId, teamId, uid) {
  704. return nil
  705. }
  706. if err := AddOrgUser(orgId, uid); err != nil {
  707. return err
  708. }
  709. // Get team and its repositories.
  710. t, err := GetTeamById(teamId)
  711. if err != nil {
  712. return err
  713. }
  714. t.NumMembers++
  715. if err = t.GetRepositories(); err != nil {
  716. return err
  717. }
  718. sess := x.NewSession()
  719. defer sessionRelease(sess)
  720. if err = sess.Begin(); err != nil {
  721. return err
  722. }
  723. tu := &TeamUser{
  724. Uid: uid,
  725. OrgID: orgId,
  726. TeamID: teamId,
  727. }
  728. if _, err = sess.Insert(tu); err != nil {
  729. return err
  730. } else if _, err = sess.Id(t.ID).Update(t); err != nil {
  731. return err
  732. }
  733. // Give access to team repositories.
  734. for _, repo := range t.Repos {
  735. if err = repo.recalculateTeamAccesses(sess, 0); err != nil {
  736. return err
  737. }
  738. }
  739. // We make sure it exists before.
  740. ou := new(OrgUser)
  741. if _, err = sess.Where("uid=?", uid).And("org_id=?", orgId).Get(ou); err != nil {
  742. return err
  743. }
  744. ou.NumTeams++
  745. if t.IsOwnerTeam() {
  746. ou.IsOwner = true
  747. }
  748. if _, err = sess.Id(ou.ID).AllCols().Update(ou); err != nil {
  749. return err
  750. }
  751. return sess.Commit()
  752. }
  753. func removeTeamMember(e Engine, orgId, teamId, uid int64) error {
  754. if !isTeamMember(e, orgId, teamId, uid) {
  755. return nil
  756. }
  757. // Get team and its repositories.
  758. t, err := getTeamById(e, teamId)
  759. if err != nil {
  760. return err
  761. }
  762. // Check if the user to delete is the last member in owner team.
  763. if t.IsOwnerTeam() && t.NumMembers == 1 {
  764. return ErrLastOrgOwner{UID: uid}
  765. }
  766. t.NumMembers--
  767. if err = t.getRepositories(e); err != nil {
  768. return err
  769. }
  770. // Get organization.
  771. org, err := getUserByID(e, orgId)
  772. if err != nil {
  773. return err
  774. }
  775. tu := &TeamUser{
  776. Uid: uid,
  777. OrgID: orgId,
  778. TeamID: teamId,
  779. }
  780. if _, err := e.Delete(tu); err != nil {
  781. return err
  782. } else if _, err = e.Id(t.ID).AllCols().Update(t); err != nil {
  783. return err
  784. }
  785. // Delete access to team repositories.
  786. for _, repo := range t.Repos {
  787. if err = repo.recalculateTeamAccesses(e, 0); err != nil {
  788. return err
  789. }
  790. }
  791. // This must exist.
  792. ou := new(OrgUser)
  793. _, err = e.Where("uid=?", uid).And("org_id=?", org.Id).Get(ou)
  794. if err != nil {
  795. return err
  796. }
  797. ou.NumTeams--
  798. if t.IsOwnerTeam() {
  799. ou.IsOwner = false
  800. }
  801. if _, err = e.Id(ou.ID).AllCols().Update(ou); err != nil {
  802. return err
  803. }
  804. return nil
  805. }
  806. // RemoveTeamMember removes member from given team of given organization.
  807. func RemoveTeamMember(orgId, teamId, uid int64) error {
  808. sess := x.NewSession()
  809. defer sessionRelease(sess)
  810. if err := sess.Begin(); err != nil {
  811. return err
  812. }
  813. if err := removeTeamMember(sess, orgId, teamId, uid); err != nil {
  814. return err
  815. }
  816. return sess.Commit()
  817. }
  818. // ___________ __________
  819. // \__ ___/___ _____ _____\______ \ ____ ______ ____
  820. // | |_/ __ \\__ \ / \| _// __ \\____ \ / _ \
  821. // | |\ ___/ / __ \| Y Y \ | \ ___/| |_> > <_> )
  822. // |____| \___ >____ /__|_| /____|_ /\___ > __/ \____/
  823. // \/ \/ \/ \/ \/|__|
  824. // TeamRepo represents an team-repository relation.
  825. type TeamRepo struct {
  826. ID int64 `xorm:"pk autoincr"`
  827. OrgID int64 `xorm:"INDEX"`
  828. TeamID int64 `xorm:"UNIQUE(s)"`
  829. RepoID int64 `xorm:"UNIQUE(s)"`
  830. }
  831. func hasTeamRepo(e Engine, orgID, teamID, repoID int64) bool {
  832. has, _ := e.Where("org_id=?", orgID).And("team_id=?", teamID).And("repo_id=?", repoID).Get(new(TeamRepo))
  833. return has
  834. }
  835. // HasTeamRepo returns true if given repository belongs to team.
  836. func HasTeamRepo(orgID, teamID, repoID int64) bool {
  837. return hasTeamRepo(x, orgID, teamID, repoID)
  838. }
  839. func addTeamRepo(e Engine, orgID, teamID, repoID int64) error {
  840. _, err := e.InsertOne(&TeamRepo{
  841. OrgID: orgID,
  842. TeamID: teamID,
  843. RepoID: repoID,
  844. })
  845. return err
  846. }
  847. // AddTeamRepo adds new repository relation to team.
  848. func AddTeamRepo(orgID, teamID, repoID int64) error {
  849. return addTeamRepo(x, orgID, teamID, repoID)
  850. }
  851. func removeTeamRepo(e Engine, teamID, repoID int64) error {
  852. _, err := e.Delete(&TeamRepo{
  853. TeamID: teamID,
  854. RepoID: repoID,
  855. })
  856. return err
  857. }
  858. // RemoveTeamRepo deletes repository relation to team.
  859. func RemoveTeamRepo(teamID, repoID int64) error {
  860. return removeTeamRepo(x, teamID, repoID)
  861. }
  862. func removeOrgRepo(e Engine, orgID, repoID int64) error {
  863. _, err := e.Delete(&TeamRepo{
  864. OrgID: orgID,
  865. RepoID: repoID,
  866. })
  867. return err
  868. }
  869. // RemoveOrgRepo removes all team-repository relations of given organization.
  870. func RemoveOrgRepo(orgID, repoID int64) error {
  871. return removeOrgRepo(x, orgID, repoID)
  872. }