2020-02-07 17:27:45 +01:00
|
|
|
// Vikunja is a to-do list application to facilitate your life.
|
2020-01-09 18:33:22 +01:00
|
|
|
// Copyright 2018-2020 Vikunja and contributors. All rights reserved.
|
2018-11-26 21:17:33 +01:00
|
|
|
//
|
2019-12-04 20:39:56 +01:00
|
|
|
// This program is free software: you can redistribute it and/or modify
|
|
|
|
// it under the terms of the GNU General Public License as published by
|
|
|
|
// the Free Software Foundation, either version 3 of the License, or
|
|
|
|
// (at your option) any later version.
|
2018-11-26 21:17:33 +01:00
|
|
|
//
|
2019-12-04 20:39:56 +01:00
|
|
|
// This program is distributed in the hope that it will be useful,
|
|
|
|
// but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
// GNU General Public License for more details.
|
2018-11-26 21:17:33 +01:00
|
|
|
//
|
2019-12-04 20:39:56 +01:00
|
|
|
// You should have received a copy of the GNU General Public License
|
|
|
|
// along with this program. If not, see <https://www.gnu.org/licenses/>.
|
2018-11-26 21:17:33 +01:00
|
|
|
|
2018-07-24 17:29:13 +02:00
|
|
|
package models
|
|
|
|
|
2020-02-08 13:48:49 +01:00
|
|
|
import (
|
|
|
|
"code.vikunja.io/api/pkg/timeutil"
|
|
|
|
"code.vikunja.io/web"
|
|
|
|
)
|
2018-12-01 00:26:56 +01:00
|
|
|
|
2018-07-24 17:29:13 +02:00
|
|
|
// TeamList defines the relation between a team and a list
|
|
|
|
type TeamList struct {
|
2019-01-03 23:22:06 +01:00
|
|
|
// The unique, numeric id of this list <-> team relation.
|
|
|
|
ID int64 `xorm:"int(11) autoincr not null unique pk" json:"id"`
|
|
|
|
// The team id.
|
2020-04-12 22:48:46 +02:00
|
|
|
TeamID int64 `xorm:"int(11) not null INDEX" json:"team_id" param:"team"`
|
2019-01-03 23:22:06 +01:00
|
|
|
// The list id.
|
2019-01-14 23:32:56 +01:00
|
|
|
ListID int64 `xorm:"int(11) not null INDEX" json:"-" param:"list"`
|
2019-01-03 23:22:06 +01:00
|
|
|
// The right this team has. 0 = Read only, 1 = Read & Write, 2 = Admin. See the docs for more details.
|
2019-04-21 20:18:17 +02:00
|
|
|
Right Right `xorm:"int(11) INDEX not null default 0" json:"right" valid:"length(0|2)" maximum:"2" default:"0"`
|
2018-07-24 17:29:13 +02:00
|
|
|
|
2020-02-08 13:48:49 +01:00
|
|
|
// A timestamp when this relation was created. You cannot change this value.
|
|
|
|
Created timeutil.TimeStamp `xorm:"created not null" json:"created"`
|
|
|
|
// A timestamp when this relation was last updated. You cannot change this value.
|
|
|
|
Updated timeutil.TimeStamp `xorm:"updated not null" json:"updated"`
|
2018-07-24 17:29:13 +02:00
|
|
|
|
2018-12-01 00:26:56 +01:00
|
|
|
web.CRUDable `xorm:"-" json:"-"`
|
|
|
|
web.Rights `xorm:"-" json:"-"`
|
2018-07-24 17:29:13 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
// TableName makes beautiful table names
|
|
|
|
func (TeamList) TableName() string {
|
|
|
|
return "team_list"
|
|
|
|
}
|
2018-09-17 19:45:18 +02:00
|
|
|
|
2018-11-12 16:46:35 +01:00
|
|
|
// TeamWithRight represents a team, combined with rights.
|
|
|
|
type TeamWithRight struct {
|
2018-09-17 19:46:31 +02:00
|
|
|
Team `xorm:"extends"`
|
2019-01-21 23:08:04 +01:00
|
|
|
Right Right `json:"right"`
|
2018-09-17 19:46:31 +02:00
|
|
|
}
|
2019-07-16 16:15:40 +02:00
|
|
|
|
|
|
|
// Create creates a new team <-> list relation
|
|
|
|
// @Summary Add a team to a list
|
|
|
|
// @Description Gives a team access to a list.
|
|
|
|
// @tags sharing
|
|
|
|
// @Accept json
|
|
|
|
// @Produce json
|
|
|
|
// @Security JWTKeyAuth
|
|
|
|
// @Param id path int true "List ID"
|
|
|
|
// @Param list body models.TeamList true "The team you want to add to the list."
|
|
|
|
// @Success 200 {object} models.TeamList "The created team<->list relation."
|
|
|
|
// @Failure 400 {object} code.vikunja.io/web.HTTPError "Invalid team list object provided."
|
|
|
|
// @Failure 404 {object} code.vikunja.io/web.HTTPError "The team does not exist."
|
|
|
|
// @Failure 403 {object} code.vikunja.io/web.HTTPError "The user does not have access to the list"
|
|
|
|
// @Failure 500 {object} models.Message "Internal error"
|
|
|
|
// @Router /lists/{id}/teams [put]
|
|
|
|
func (tl *TeamList) Create(a web.Auth) (err error) {
|
|
|
|
|
|
|
|
// Check if the rights are valid
|
|
|
|
if err = tl.Right.isValid(); err != nil {
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
// Check if the team exists
|
|
|
|
_, err = GetTeamByID(tl.TeamID)
|
|
|
|
if err != nil {
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
// Check if the list exists
|
|
|
|
l := &List{ID: tl.ListID}
|
|
|
|
if err := l.GetSimpleByID(); err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
// Check if the team is already on the list
|
|
|
|
exists, err := x.Where("team_id = ?", tl.TeamID).
|
|
|
|
And("list_id = ?", tl.ListID).
|
|
|
|
Get(&TeamList{})
|
|
|
|
if err != nil {
|
|
|
|
return
|
|
|
|
}
|
|
|
|
if exists {
|
|
|
|
return ErrTeamAlreadyHasAccess{tl.TeamID, tl.ListID}
|
|
|
|
}
|
|
|
|
|
|
|
|
// Insert the new team
|
|
|
|
_, err = x.Insert(tl)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
err = updateListLastUpdated(l)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
// Delete deletes a team <-> list relation based on the list & team id
|
|
|
|
// @Summary Delete a team from a list
|
|
|
|
// @Description Delets a team from a list. The team won't have access to the list anymore.
|
|
|
|
// @tags sharing
|
|
|
|
// @Produce json
|
|
|
|
// @Security JWTKeyAuth
|
|
|
|
// @Param listID path int true "List ID"
|
|
|
|
// @Param teamID path int true "Team ID"
|
|
|
|
// @Success 200 {object} models.Message "The team was successfully deleted."
|
|
|
|
// @Failure 403 {object} code.vikunja.io/web.HTTPError "The user does not have access to the list"
|
|
|
|
// @Failure 404 {object} code.vikunja.io/web.HTTPError "Team or list does not exist."
|
|
|
|
// @Failure 500 {object} models.Message "Internal error"
|
|
|
|
// @Router /lists/{listID}/teams/{teamID} [delete]
|
|
|
|
func (tl *TeamList) Delete() (err error) {
|
|
|
|
|
|
|
|
// Check if the team exists
|
|
|
|
_, err = GetTeamByID(tl.TeamID)
|
|
|
|
if err != nil {
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
// Check if the team has access to the list
|
|
|
|
has, err := x.Where("team_id = ? AND list_id = ?", tl.TeamID, tl.ListID).
|
|
|
|
Get(&TeamList{})
|
|
|
|
if err != nil {
|
|
|
|
return
|
|
|
|
}
|
|
|
|
if !has {
|
|
|
|
return ErrTeamDoesNotHaveAccessToList{TeamID: tl.TeamID, ListID: tl.ListID}
|
|
|
|
}
|
|
|
|
|
|
|
|
// Delete the relation
|
|
|
|
_, err = x.Where("team_id = ?", tl.TeamID).
|
|
|
|
And("list_id = ?", tl.ListID).
|
|
|
|
Delete(TeamList{})
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
err = updateListLastUpdated(&List{ID: tl.ListID})
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
// ReadAll implements the method to read all teams of a list
|
|
|
|
// @Summary Get teams on a list
|
|
|
|
// @Description Returns a list with all teams which have access on a given list.
|
|
|
|
// @tags sharing
|
|
|
|
// @Accept json
|
|
|
|
// @Produce json
|
|
|
|
// @Param id path int true "List ID"
|
2019-10-23 23:11:40 +02:00
|
|
|
// @Param page query int false "The page number. Used for pagination. If not provided, the first page of results is returned."
|
|
|
|
// @Param per_page query int false "The maximum number of items per page. Note this parameter is limited by the configured maximum of items per page."
|
2019-07-16 16:15:40 +02:00
|
|
|
// @Param s query string false "Search teams by its name."
|
|
|
|
// @Security JWTKeyAuth
|
|
|
|
// @Success 200 {array} models.TeamWithRight "The teams with their right."
|
|
|
|
// @Failure 403 {object} code.vikunja.io/web.HTTPError "No right to see the list."
|
|
|
|
// @Failure 500 {object} models.Message "Internal error"
|
|
|
|
// @Router /lists/{id}/teams [get]
|
2019-10-23 23:11:40 +02:00
|
|
|
func (tl *TeamList) ReadAll(a web.Auth, search string, page int, perPage int) (result interface{}, resultCount int, totalItems int64, err error) {
|
2019-07-16 16:15:40 +02:00
|
|
|
// Check if the user can read the namespace
|
|
|
|
l := &List{ID: tl.ListID}
|
|
|
|
canRead, err := l.CanRead(a)
|
|
|
|
if err != nil {
|
2019-10-23 23:11:40 +02:00
|
|
|
return nil, 0, 0, err
|
2019-07-16 16:15:40 +02:00
|
|
|
}
|
|
|
|
if !canRead {
|
2019-10-23 23:11:40 +02:00
|
|
|
return nil, 0, 0, ErrNeedToHaveListReadAccess{ListID: tl.ListID, UserID: a.GetID()}
|
2019-07-16 16:15:40 +02:00
|
|
|
}
|
|
|
|
|
2020-04-12 19:29:24 +02:00
|
|
|
limit, start := getLimitFromPageIndex(page, perPage)
|
|
|
|
|
2019-07-16 16:15:40 +02:00
|
|
|
// Get the teams
|
|
|
|
all := []*TeamWithRight{}
|
2020-04-12 19:29:24 +02:00
|
|
|
query := x.
|
2019-07-16 16:15:40 +02:00
|
|
|
Table("teams").
|
|
|
|
Join("INNER", "team_list", "team_id = teams.id").
|
|
|
|
Where("team_list.list_id = ?", tl.ListID).
|
2020-04-12 19:29:24 +02:00
|
|
|
Where("teams.name LIKE ?", "%"+search+"%")
|
|
|
|
if limit > 0 {
|
|
|
|
query = query.Limit(limit, start)
|
|
|
|
}
|
|
|
|
err = query.Find(&all)
|
2019-10-23 23:11:40 +02:00
|
|
|
if err != nil {
|
|
|
|
return nil, 0, 0, err
|
|
|
|
}
|
|
|
|
|
2020-01-27 18:28:17 +01:00
|
|
|
teams := []*Team{}
|
|
|
|
for _, t := range all {
|
|
|
|
teams = append(teams, &t.Team)
|
|
|
|
}
|
|
|
|
|
|
|
|
err = addMoreInfoToTeams(teams)
|
|
|
|
if err != nil {
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
2019-10-23 23:11:40 +02:00
|
|
|
totalItems, err = x.
|
|
|
|
Table("teams").
|
|
|
|
Join("INNER", "team_list", "team_id = teams.id").
|
|
|
|
Where("team_list.list_id = ?", tl.ListID).
|
|
|
|
Where("teams.name LIKE ?", "%"+search+"%").
|
|
|
|
Count(&TeamWithRight{})
|
|
|
|
if err != nil {
|
|
|
|
return nil, 0, 0, err
|
|
|
|
}
|
2019-07-16 16:15:40 +02:00
|
|
|
|
2019-10-23 23:11:40 +02:00
|
|
|
return all, len(all), totalItems, err
|
2019-07-16 16:15:40 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
// Update updates a team <-> list relation
|
|
|
|
// @Summary Update a team <-> list relation
|
|
|
|
// @Description Update a team <-> list relation. Mostly used to update the right that team has.
|
|
|
|
// @tags sharing
|
|
|
|
// @Accept json
|
|
|
|
// @Produce json
|
|
|
|
// @Param listID path int true "List ID"
|
|
|
|
// @Param teamID path int true "Team ID"
|
|
|
|
// @Param list body models.TeamList true "The team you want to update."
|
|
|
|
// @Security JWTKeyAuth
|
|
|
|
// @Success 200 {object} models.TeamList "The updated team <-> list relation."
|
|
|
|
// @Failure 403 {object} code.vikunja.io/web.HTTPError "The user does not have admin-access to the list"
|
|
|
|
// @Failure 404 {object} code.vikunja.io/web.HTTPError "Team or list does not exist."
|
|
|
|
// @Failure 500 {object} models.Message "Internal error"
|
|
|
|
// @Router /lists/{listID}/teams/{teamID} [post]
|
|
|
|
func (tl *TeamList) Update() (err error) {
|
|
|
|
|
|
|
|
// Check if the right is valid
|
|
|
|
if err := tl.Right.isValid(); err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
_, err = x.
|
|
|
|
Where("list_id = ? AND team_id = ?", tl.ListID, tl.TeamID).
|
|
|
|
Cols("right").
|
|
|
|
Update(tl)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
err = updateListLastUpdated(&List{ID: tl.ListID})
|
|
|
|
return
|
|
|
|
}
|