You've already forked woodpecker
mirror of
https://github.com/woodpecker-ci/woodpecker.git
synced 2025-11-23 21:44:44 +02:00
045a22209a
Co-authored-by: 6543 <6543@obermui.de> Co-authored-by: Robert Kaussow <mail@thegeeklab.de>
221 lines
6.5 KiB
Go
221 lines
6.5 KiB
Go
// Copyright 2018 Drone.IO Inc.
|
|
//
|
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
|
// you may not use this file except in compliance with the License.
|
|
// You may obtain a copy of the License at
|
|
//
|
|
// http://www.apache.org/licenses/LICENSE-2.0
|
|
//
|
|
// Unless required by applicable law or agreed to in writing, software
|
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
// See the License for the specific language governing permissions and
|
|
// limitations under the License.
|
|
|
|
package api
|
|
|
|
import (
|
|
"encoding/base32"
|
|
"errors"
|
|
"fmt"
|
|
"net/http"
|
|
"strconv"
|
|
|
|
"github.com/gin-gonic/gin"
|
|
"github.com/google/tink/go/subtle/random"
|
|
|
|
"go.woodpecker-ci.org/woodpecker/v3/server/model"
|
|
"go.woodpecker-ci.org/woodpecker/v3/server/router/middleware/session"
|
|
"go.woodpecker-ci.org/woodpecker/v3/server/store"
|
|
"go.woodpecker-ci.org/woodpecker/v3/server/store/types"
|
|
)
|
|
|
|
const defaultForgeID = 1
|
|
|
|
// GetUsers
|
|
//
|
|
// @Summary List users
|
|
// @Description Returns all registered, active users in the system. Requires admin rights.
|
|
// @Router /users [get]
|
|
// @Produce json
|
|
// @Success 200 {array} User
|
|
// @Tags Users
|
|
// @Param Authorization header string true "Insert your personal access token" default(Bearer <personal access token>)
|
|
// @Param page query int false "for response pagination, page offset number" default(1)
|
|
// @Param perPage query int false "for response pagination, max items per page" default(50)
|
|
func GetUsers(c *gin.Context) {
|
|
users, err := store.FromContext(c).GetUserList(session.Pagination(c))
|
|
if err != nil {
|
|
c.String(http.StatusInternalServerError, "Error getting user list. %s", err)
|
|
return
|
|
}
|
|
c.JSON(http.StatusOK, users)
|
|
}
|
|
|
|
// GetUser
|
|
//
|
|
// @Summary Get a user
|
|
// @Description Returns a user with the specified login name. Requires admin rights.
|
|
// @Router /users/{login} [get]
|
|
// @Produce json
|
|
// @Success 200 {object} User
|
|
// @Tags Users
|
|
// @Param Authorization header string true "Insert your personal access token" default(Bearer <personal access token>)
|
|
// @Param login path string true "the user's login name"
|
|
// @Param forge_id query string true "specify forge (else default will be used)"
|
|
// @Param forge_remote_id query string false "specify user id at forge (else fallback to login)"
|
|
func GetUser(c *gin.Context) {
|
|
forgeID, err := strconv.ParseInt(c.DefaultQuery("forge_id", fmt.Sprint(defaultForgeID)), 10, 64)
|
|
if err != nil {
|
|
c.AbortWithStatus(http.StatusBadRequest)
|
|
return
|
|
}
|
|
forgeRemoteID := model.ForgeRemoteID(c.Query("forge_remote_id"))
|
|
|
|
var user *model.User
|
|
|
|
if forgeRemoteID.IsValid() {
|
|
user, err = store.FromContext(c).GetUserByRemoteID(forgeID, forgeRemoteID)
|
|
} else {
|
|
user, err = store.FromContext(c).GetUserByLogin(forgeID, c.Param("login"))
|
|
}
|
|
if err != nil {
|
|
handleDBError(c, err)
|
|
return
|
|
}
|
|
c.JSON(http.StatusOK, user)
|
|
}
|
|
|
|
// PatchUser
|
|
//
|
|
// @Summary Update a user
|
|
// @Description Changes the data of an existing user. Requires admin rights.
|
|
// @Router /users/{login} [patch]
|
|
// @Produce json
|
|
// @Accept json
|
|
// @Success 200 {object} User
|
|
// @Tags Users
|
|
// @Param Authorization header string true "Insert your personal access token" default(Bearer <personal access token>)
|
|
// @Param login path string true "the user's login name"
|
|
// @Param user body User true "the user's data"
|
|
func PatchUser(c *gin.Context) {
|
|
_store := store.FromContext(c)
|
|
|
|
in := &model.User{}
|
|
err := c.Bind(in)
|
|
if err != nil {
|
|
c.AbortWithStatus(http.StatusBadRequest)
|
|
return
|
|
}
|
|
|
|
if in.ForgeID < defaultForgeID {
|
|
in.ForgeID = defaultForgeID
|
|
}
|
|
|
|
user, err := store.FromContext(c).GetUserByRemoteID(in.ForgeID, in.ForgeRemoteID)
|
|
if err != nil && !errors.Is(err, types.RecordNotExist) {
|
|
handleDBError(c, err)
|
|
return
|
|
}
|
|
|
|
if user == nil {
|
|
user, err = _store.GetUserByLogin(in.ForgeID, c.Param("login"))
|
|
if err != nil {
|
|
handleDBError(c, err)
|
|
return
|
|
}
|
|
}
|
|
|
|
// TODO: disallow to change login, email, avatar if the user is using oauth
|
|
user.Login = in.Login
|
|
user.Email = in.Email
|
|
user.Avatar = in.Avatar
|
|
user.Admin = in.Admin
|
|
|
|
err = _store.UpdateUser(user)
|
|
if err != nil {
|
|
c.AbortWithStatus(http.StatusConflict)
|
|
return
|
|
}
|
|
|
|
c.JSON(http.StatusOK, user)
|
|
}
|
|
|
|
// PostUser
|
|
//
|
|
// @Summary Create a user
|
|
// @Description Creates a new user account with the specified external login. Requires admin rights.
|
|
// @Router /users [post]
|
|
// @Produce json
|
|
// @Success 200 {object} User
|
|
// @Tags Users
|
|
// @Param Authorization header string true "Insert your personal access token" default(Bearer <personal access token>)
|
|
// @Param user body User true "the user's data"
|
|
func PostUser(c *gin.Context) {
|
|
in := &model.User{}
|
|
err := c.Bind(in)
|
|
if err != nil {
|
|
c.String(http.StatusBadRequest, err.Error())
|
|
return
|
|
}
|
|
user := &model.User{
|
|
Login: in.Login,
|
|
Email: in.Email,
|
|
Avatar: in.Avatar,
|
|
Hash: base32.StdEncoding.EncodeToString(
|
|
random.GetRandomBytes(32),
|
|
),
|
|
ForgeID: in.ForgeID,
|
|
ForgeRemoteID: model.ForgeRemoteID("0"), // TODO: search for the user in the forge and get the remote id
|
|
}
|
|
if err = user.Validate(); err != nil {
|
|
c.String(http.StatusBadRequest, err.Error())
|
|
return
|
|
}
|
|
if err = store.FromContext(c).CreateUser(user); err != nil {
|
|
c.String(http.StatusInternalServerError, err.Error())
|
|
return
|
|
}
|
|
c.JSON(http.StatusOK, user)
|
|
}
|
|
|
|
// DeleteUser
|
|
//
|
|
// @Summary Delete a user
|
|
// @Description Deletes the given user. Requires admin rights.
|
|
// @Router /users/{login} [delete]
|
|
// @Produce plain
|
|
// @Success 204
|
|
// @Tags Users
|
|
// @Param Authorization header string true "Insert your personal access token" default(Bearer <personal access token>)
|
|
// @Param login path string true "the user's login name"
|
|
// @Param forge_id query string true "specify forge (else default will be used)"
|
|
// @Param forge_remote_id query string false "specify user id at forge (else fallback to login)"
|
|
func DeleteUser(c *gin.Context) {
|
|
_store := store.FromContext(c)
|
|
|
|
forgeID, err := strconv.ParseInt(c.DefaultQuery("forge_id", fmt.Sprint(defaultForgeID)), 10, 64)
|
|
if err != nil {
|
|
c.AbortWithStatus(http.StatusBadRequest)
|
|
return
|
|
}
|
|
forgeRemoteID := model.ForgeRemoteID(c.Query("forge_remote_id"))
|
|
|
|
var user *model.User
|
|
|
|
if forgeRemoteID.IsValid() {
|
|
user, err = store.FromContext(c).GetUserByRemoteID(forgeID, forgeRemoteID)
|
|
} else {
|
|
user, err = store.FromContext(c).GetUserByLogin(forgeID, c.Param("login"))
|
|
}
|
|
if err != nil {
|
|
handleDBError(c, err)
|
|
return
|
|
}
|
|
if err = _store.DeleteUser(user); err != nil {
|
|
handleDBError(c, err)
|
|
return
|
|
}
|
|
c.Status(http.StatusNoContent)
|
|
}
|