2020-02-07 17:27:45 +01:00
|
|
|
// Vikunja is a to-do list application to facilitate your life.
|
2020-01-09 18:33:22 +01:00
|
|
|
// Copyright 2018-2020 Vikunja and contributors. All rights reserved.
|
2018-11-26 21:17:33 +01:00
|
|
|
//
|
2019-12-04 20:39:56 +01:00
|
|
|
// This program is free software: you can redistribute it and/or modify
|
|
|
|
|
// it under the terms of the GNU General Public License as published by
|
|
|
|
|
// the Free Software Foundation, either version 3 of the License, or
|
|
|
|
|
// (at your option) any later version.
|
2018-11-26 21:17:33 +01:00
|
|
|
//
|
2019-12-04 20:39:56 +01:00
|
|
|
// This program is distributed in the hope that it will be useful,
|
|
|
|
|
// but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
|
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
|
// GNU General Public License for more details.
|
2018-11-26 21:17:33 +01:00
|
|
|
//
|
2019-12-04 20:39:56 +01:00
|
|
|
// You should have received a copy of the GNU General Public License
|
|
|
|
|
// along with this program. If not, see <https://www.gnu.org/licenses/>.
|
2018-11-26 21:17:33 +01:00
|
|
|
|
2018-10-31 13:42:38 +01:00
|
|
|
package models
|
|
|
|
|
|
|
|
|
|
import (
|
2018-12-01 00:26:56 +01:00
|
|
|
"code.vikunja.io/web"
|
2018-10-31 13:42:38 +01:00
|
|
|
)
|
|
|
|
|
|
|
|
|
|
// CanCreate checks if the user can create a new team
|
2019-03-24 13:35:50 +01:00
|
|
|
func (t *Team) CanCreate(a web.Auth) (bool, error) {
|
2019-08-31 22:56:41 +02:00
|
|
|
if _, is := a.(*LinkSharing); is {
|
|
|
|
|
return false, nil
|
|
|
|
|
}
|
|
|
|
|
|
2018-10-31 13:42:38 +01:00
|
|
|
// This is currently a dummy function, later on we could imagine global limits etc.
|
2019-03-24 13:35:50 +01:00
|
|
|
return true, nil
|
2018-10-31 13:42:38 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// CanUpdate checks if the user can update a team
|
2019-03-24 13:35:50 +01:00
|
|
|
func (t *Team) CanUpdate(a web.Auth) (bool, error) {
|
2019-04-01 21:48:48 +02:00
|
|
|
return t.IsAdmin(a)
|
2018-10-31 13:42:38 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// CanDelete checks if a user can delete a team
|
2019-03-24 13:35:50 +01:00
|
|
|
func (t *Team) CanDelete(a web.Auth) (bool, error) {
|
2018-12-01 00:26:56 +01:00
|
|
|
return t.IsAdmin(a)
|
2018-10-31 13:42:38 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// IsAdmin returns true when the user is admin of a team
|
2019-03-24 13:35:50 +01:00
|
|
|
func (t *Team) IsAdmin(a web.Auth) (bool, error) {
|
2019-08-31 22:56:41 +02:00
|
|
|
// Don't do anything if we're deadling with a link share auth here
|
|
|
|
|
if _, is := a.(*LinkSharing); is {
|
|
|
|
|
return false, nil
|
|
|
|
|
}
|
|
|
|
|
|
2019-04-01 21:48:48 +02:00
|
|
|
// Check if the team exists to be able to return a proper error message if not
|
|
|
|
|
_, err := GetTeamByID(t.ID)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return false, err
|
|
|
|
|
}
|
|
|
|
|
|
2019-03-24 13:35:50 +01:00
|
|
|
return x.Where("team_id = ?", t.ID).
|
2019-06-28 10:21:48 +02:00
|
|
|
And("user_id = ?", a.GetID()).
|
2018-10-31 13:42:38 +01:00
|
|
|
And("admin = ?", true).
|
|
|
|
|
Get(&TeamMember{})
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// CanRead returns true if the user has read access to the team
|
2020-08-10 14:11:43 +02:00
|
|
|
func (t *Team) CanRead(a web.Auth) (bool, int, error) {
|
2018-10-31 13:42:38 +01:00
|
|
|
// Check if the user is in the team
|
2020-08-10 14:11:43 +02:00
|
|
|
tm := &TeamMember{}
|
|
|
|
|
can, err := x.Where("team_id = ?", t.ID).
|
2019-06-28 10:21:48 +02:00
|
|
|
And("user_id = ?", a.GetID()).
|
2020-08-10 14:11:43 +02:00
|
|
|
Get(tm)
|
|
|
|
|
|
|
|
|
|
maxRights := 0
|
|
|
|
|
if tm.Admin {
|
|
|
|
|
maxRights = int(RightAdmin)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return can, maxRights, err
|
2018-10-31 13:42:38 +01:00
|
|
|
}
|
