// Vikunja is a to-do list application to facilitate your life. // Copyright 2018-2021 Vikunja and contributors. All rights reserved. // // This program is free software: you can redistribute it and/or modify // it under the terms of the GNU Affero General Public Licensee as published by // the Free Software Foundation, either version 3 of the License, or // (at your option) any later version. // // This program is distributed in the hope that it will be useful, // but WITHOUT ANY WARRANTY; without even the implied warranty of // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the // GNU Affero General Public Licensee for more details. // // You should have received a copy of the GNU Affero General Public Licensee // along with this program. If not, see . package models import ( "strconv" "strings" "time" "code.vikunja.io/api/pkg/config" "code.vikunja.io/api/pkg/events" "code.vikunja.io/api/pkg/files" "code.vikunja.io/api/pkg/log" "code.vikunja.io/api/pkg/user" "code.vikunja.io/web" "xorm.io/builder" "xorm.io/xorm" ) // List represents a list of tasks type List struct { // The unique, numeric id of this list. ID int64 `xorm:"bigint autoincr not null unique pk" json:"id" param:"list"` // The title of the list. You'll see this in the namespace overview. Title string `xorm:"varchar(250) not null" json:"title" valid:"required,runelength(1|250)" minLength:"1" maxLength:"250"` // The description of the list. Description string `xorm:"longtext null" json:"description"` // The unique list short identifier. Used to build task identifiers. Identifier string `xorm:"varchar(10) null" json:"identifier" valid:"runelength(0|10)" minLength:"0" maxLength:"10"` // The hex color of this list HexColor string `xorm:"varchar(6) null" json:"hex_color" valid:"runelength(0|6)" maxLength:"6"` OwnerID int64 `xorm:"bigint INDEX not null" json:"-"` NamespaceID int64 `xorm:"bigint INDEX not null" json:"namespace_id" param:"namespace"` // The user who created this list. Owner *user.User `xorm:"-" json:"owner" valid:"-"` // An array of tasks which belong to the list. // Deprecated: you should use the dedicated task list endpoint because it has support for pagination and filtering Tasks []*Task `xorm:"-" json:"-"` // Only used for migration. Buckets []*Bucket `xorm:"-" json:"-"` // Whether or not a list is archived. IsArchived bool `xorm:"not null default false" json:"is_archived" query:"is_archived"` // The id of the file this list has set as background BackgroundFileID int64 `xorm:"null" json:"-"` // Holds extra information about the background set since some background providers require attribution or similar. If not null, the background can be accessed at /lists/{listID}/background BackgroundInformation interface{} `xorm:"-" json:"background_information"` // True if a list is a favorite. Favorite lists show up in a separate namespace. IsFavorite bool `xorm:"default false" json:"is_favorite"` // The subscription status for the user reading this list. You can only read this property, use the subscription endpoints to modify it. // Will only returned when retreiving one list. Subscription *Subscription `xorm:"-" json:"subscription,omitempty"` // A timestamp when this list was created. You cannot change this value. Created time.Time `xorm:"created not null" json:"created"` // A timestamp when this list was last updated. You cannot change this value. Updated time.Time `xorm:"updated not null" json:"updated"` web.CRUDable `xorm:"-" json:"-"` web.Rights `xorm:"-" json:"-"` } // ListBackgroundType holds a list background type type ListBackgroundType struct { Type string } // ListBackgroundUpload represents the list upload background type const ListBackgroundUpload string = "upload" // FavoritesPseudoList holds all tasks marked as favorites var FavoritesPseudoList = List{ ID: -1, Title: "Favorites", Description: "This list has all tasks marked as favorites.", NamespaceID: FavoritesPseudoNamespace.ID, IsFavorite: true, Created: time.Now(), Updated: time.Now(), } // GetListsByNamespaceID gets all lists in a namespace func GetListsByNamespaceID(s *xorm.Session, nID int64, doer *user.User) (lists []*List, err error) { switch nID { case SharedListsPseudoNamespace.ID: nnn, err := getSharedListsInNamespace(s, false, doer) if err != nil { return nil, err } if nnn != nil && nnn.Lists != nil { lists = nnn.Lists } case FavoritesPseudoNamespace.ID: namespaces := make(map[int64]*NamespaceWithLists) _, err := getNamespacesWithLists(s, &namespaces, "", false, 0, -1, doer.ID) if err != nil { return nil, err } namespaceIDs, _ := getNamespaceOwnerIDs(namespaces) ls, err := getListsForNamespaces(s, namespaceIDs, false) if err != nil { return nil, err } nnn, err := getFavoriteLists(s, ls, namespaceIDs, doer) if err != nil { return nil, err } if nnn != nil && nnn.Lists != nil { lists = nnn.Lists } case SavedFiltersPseudoNamespace.ID: nnn, err := getSavedFilters(s, doer) if err != nil { return nil, err } if nnn != nil && nnn.Lists != nil { lists = nnn.Lists } default: err = s.Select("l.*"). Alias("l"). Join("LEFT", []string{"namespaces", "n"}, "l.namespace_id = n.id"). Where("l.is_archived = false"). Where("n.is_archived = false"). Where("namespace_id = ?", nID). Find(&lists) } if err != nil { return nil, err } // get more list details err = addListDetails(s, lists) return lists, err } // ReadAll gets all lists a user has access to // @Summary Get all lists a user has access to // @Description Returns all lists a user has access to. // @tags list // @Accept json // @Produce json // @Param page query int false "The page number. Used for pagination. If not provided, the first page of results is returned." // @Param per_page query int false "The maximum number of items per page. Note this parameter is limited by the configured maximum of items per page." // @Param s query string false "Search lists by title." // @Param is_archived query bool false "If true, also returns all archived lists." // @Security JWTKeyAuth // @Success 200 {array} models.List "The lists" // @Failure 403 {object} web.HTTPError "The user does not have access to the list" // @Failure 500 {object} models.Message "Internal error" // @Router /lists [get] func (l *List) ReadAll(s *xorm.Session, a web.Auth, search string, page int, perPage int) (result interface{}, resultCount int, totalItems int64, err error) { // Check if we're dealing with a share auth shareAuth, ok := a.(*LinkSharing) if ok { list, err := GetListSimpleByID(s, shareAuth.ListID) if err != nil { return nil, 0, 0, err } lists := []*List{list} err = addListDetails(s, lists) return lists, 0, 0, err } lists, resultCount, totalItems, err := getRawListsForUser( s, &listOptions{ search: search, user: &user.User{ID: a.GetID()}, page: page, perPage: perPage, isArchived: l.IsArchived, }) if err != nil { return nil, 0, 0, err } // Add more list details err = addListDetails(s, lists) return lists, resultCount, totalItems, err } // ReadOne gets one list by its ID // @Summary Gets one list // @Description Returns a list by its ID. // @tags list // @Accept json // @Produce json // @Security JWTKeyAuth // @Param id path int true "List ID" // @Success 200 {object} models.List "The list" // @Failure 403 {object} web.HTTPError "The user does not have access to the list" // @Failure 500 {object} models.Message "Internal error" // @Router /lists/{id} [get] func (l *List) ReadOne(s *xorm.Session, a web.Auth) (err error) { if l.ID == FavoritesPseudoList.ID { // Already "built" the list in CanRead return nil } // Check for saved filters if getSavedFilterIDFromListID(l.ID) > 0 { sf, err := getSavedFilterSimpleByID(s, getSavedFilterIDFromListID(l.ID)) if err != nil { return err } l.Title = sf.Title l.Description = sf.Description l.Created = sf.Created l.Updated = sf.Updated l.OwnerID = sf.OwnerID } // Get list owner l.Owner, err = user.GetUserByID(s, l.OwnerID) if err != nil { return err } // Check if the namespace is archived and set the namespace to archived if it is not already archived individually. if !l.IsArchived { err = l.CheckIsArchived(s) if err != nil { if !IsErrNamespaceIsArchived(err) && !IsErrListIsArchived(err) { return } l.IsArchived = true } } // Get any background information if there is one set if l.BackgroundFileID != 0 { // Unsplash image l.BackgroundInformation, err = GetUnsplashPhotoByFileID(s, l.BackgroundFileID) if err != nil && !files.IsErrFileIsNotUnsplashFile(err) { return } if err != nil && files.IsErrFileIsNotUnsplashFile(err) { l.BackgroundInformation = &ListBackgroundType{Type: ListBackgroundUpload} } } l.Subscription, err = GetSubscription(s, SubscriptionEntityList, l.ID, a) return } // GetListSimpleByID gets a list with only the basic items, aka no tasks or user objects. Returns an error if the list does not exist. func GetListSimpleByID(s *xorm.Session, listID int64) (list *List, err error) { list = &List{} if listID < 1 { return nil, ErrListDoesNotExist{ID: listID} } exists, err := s.Where("id = ?", listID).Get(list) if err != nil { return } if !exists { return nil, ErrListDoesNotExist{ID: listID} } return } // GetListSimplByTaskID gets a list by a task id func GetListSimplByTaskID(s *xorm.Session, taskID int64) (l *List, err error) { // We need to re-init our list object, because otherwise xorm creates a "where for every item in that list object, // leading to not finding anything if the id is good, but for example the title is different. var list List exists, err := s. Select("list.*"). Table(List{}). Join("INNER", "tasks", "list.id = tasks.list_id"). Where("tasks.id = ?", taskID). Get(&list) if err != nil { return } if !exists { return &List{}, ErrListDoesNotExist{ID: l.ID} } return &list, nil } // GetListsByIDs returns a map of lists from a slice with list ids func GetListsByIDs(s *xorm.Session, listIDs []int64) (lists map[int64]*List, err error) { lists = make(map[int64]*List, len(listIDs)) if len(listIDs) == 0 { return } err = s.In("id", listIDs).Find(&lists) return } type listOptions struct { search string user *user.User page int perPage int isArchived bool } func getUserListsStatement(userID int64) *builder.Builder { dialect := config.DatabaseType.GetString() if dialect == "sqlite" { dialect = builder.SQLITE } return builder.Dialect(dialect). Select("l.*"). From("list", "l"). Join("INNER", "namespaces n", "l.namespace_id = n.id"). Join("LEFT", "team_namespaces tn", "tn.namespace_id = n.id"). Join("LEFT", "team_members tm", "tm.team_id = tn.team_id"). Join("LEFT", "team_list tl", "l.id = tl.list_id"). Join("LEFT", "team_members tm2", "tm2.team_id = tl.team_id"). Join("LEFT", "users_list ul", "ul.list_id = l.id"). Join("LEFT", "users_namespace un", "un.namespace_id = l.namespace_id"). Where(builder.Or( builder.Eq{"tm.user_id": userID}, builder.Eq{"tm2.user_id": userID}, builder.Eq{"ul.user_id": userID}, builder.Eq{"un.user_id": userID}, builder.Eq{"l.owner_id": userID}, )). GroupBy("l.id") } // Gets the lists only, without any tasks or so func getRawListsForUser(s *xorm.Session, opts *listOptions) (lists []*List, resultCount int, totalItems int64, err error) { fullUser, err := user.GetUserByID(s, opts.user.ID) if err != nil { return nil, 0, 0, err } // Adding a 1=1 condition by default here because xorm always needs a condition and cannot handle nil conditions var isArchivedCond builder.Cond = builder.Eq{"1": 1} if !opts.isArchived { isArchivedCond = builder.And( builder.Eq{"l.is_archived": false}, builder.Eq{"n.is_archived": false}, ) } limit, start := getLimitFromPageIndex(opts.page, opts.perPage) var filterCond builder.Cond vals := strings.Split(opts.search, ",") ids := []int64{} for _, val := range vals { v, err := strconv.ParseInt(val, 10, 64) if err != nil { log.Debugf("List search string part '%s' is not a number: %s", val, err) continue } ids = append(ids, v) } if len(ids) > 0 { filterCond = builder.In("l.id", ids) } else { filterCond = &builder.Like{"l.title", "%" + opts.search + "%"} } // Gets all Lists where the user is either owner or in a team which has access to the list // Or in a team which has namespace read access query := getUserListsStatement(fullUser.ID). Where(filterCond). Where(isArchivedCond) if limit > 0 { query = query.Limit(limit, start) } err = s.SQL(query).Find(&lists) if err != nil { return nil, 0, 0, err } query = getUserListsStatement(fullUser.ID). Where(filterCond). Where(isArchivedCond) totalItems, err = s. SQL(query.Select("count(*)")). Count(&List{}) return lists, len(lists), totalItems, err } // addListDetails adds owner user objects and list tasks to all lists in the slice func addListDetails(s *xorm.Session, lists []*List) (err error) { if len(lists) == 0 { return } var ownerIDs []int64 for _, l := range lists { ownerIDs = append(ownerIDs, l.OwnerID) } // Get all list owners owners := map[int64]*user.User{} if len(ownerIDs) > 0 { err = s.In("id", ownerIDs).Find(&owners) if err != nil { return } } var fileIDs []int64 for _, l := range lists { if o, exists := owners[l.OwnerID]; exists { l.Owner = o } if l.BackgroundFileID != 0 { l.BackgroundInformation = &ListBackgroundType{Type: ListBackgroundUpload} } fileIDs = append(fileIDs, l.BackgroundFileID) } if len(fileIDs) == 0 { return } // Unsplash background file info us := []*UnsplashPhoto{} err = s.In("file_id", fileIDs).Find(&us) if err != nil { return } unsplashPhotos := make(map[int64]*UnsplashPhoto, len(us)) for _, u := range us { unsplashPhotos[u.FileID] = u } // Build it all into the lists slice for _, l := range lists { // Only override the file info if we have info for unsplash backgrounds if _, exists := unsplashPhotos[l.BackgroundFileID]; exists { l.BackgroundInformation = unsplashPhotos[l.BackgroundFileID] } } return } // NamespaceList is a meta type to be able to join a list with its namespace type NamespaceList struct { List List `xorm:"extends"` Namespace Namespace `xorm:"extends"` } // CheckIsArchived returns an ErrListIsArchived or ErrNamespaceIsArchived if the list or its namespace is archived. func (l *List) CheckIsArchived(s *xorm.Session) (err error) { // When creating a new list, we check if the namespace is archived if l.ID == 0 { n := &Namespace{ID: l.NamespaceID} return n.CheckIsArchived(s) } nl := &NamespaceList{} exists, err := s. Table("list"). Join("LEFT", "namespaces", "list.namespace_id = namespaces.id"). Where("list.id = ? AND (list.is_archived = true OR namespaces.is_archived = true)", l.ID). Get(nl) if err != nil { return } if exists && nl.List.ID != 0 && nl.List.IsArchived { return ErrListIsArchived{ListID: l.ID} } if exists && nl.Namespace.ID != 0 && nl.Namespace.IsArchived { return ErrNamespaceIsArchived{NamespaceID: nl.Namespace.ID} } return nil } // CreateOrUpdateList updates a list or creates it if it doesn't exist func CreateOrUpdateList(s *xorm.Session, list *List, auth web.Auth) (err error) { // Check if the namespace exists if list.NamespaceID != 0 && list.NamespaceID != FavoritesPseudoNamespace.ID { _, err = GetNamespaceByID(s, list.NamespaceID) if err != nil { return err } } // Check if the identifier is unique and not empty if list.Identifier != "" { exists, err := s. Where("identifier = ?", list.Identifier). And("id != ?", list.ID). Exist(&List{}) if err != nil { return err } if exists { return ErrListIdentifierIsNotUnique{Identifier: list.Identifier} } } if list.ID == 0 { _, err = s.Insert(list) } else { // We need to specify the cols we want to update here to be able to un-archive lists colsToUpdate := []string{ "title", "is_archived", "identifier", "hex_color", "is_favorite", "background_file_id", } if list.Description != "" { colsToUpdate = append(colsToUpdate, "description") } _, err = s. ID(list.ID). Cols(colsToUpdate...). Update(list) } if err != nil { return } l, err := GetListSimpleByID(s, list.ID) if err != nil { return err } *list = *l err = list.ReadOne(s, auth) return } // Update implements the update method of CRUDable // @Summary Updates a list // @Description Updates a list. This does not include adding a task (see below). // @tags list // @Accept json // @Produce json // @Security JWTKeyAuth // @Param id path int true "List ID" // @Param list body models.List true "The list with updated values you want to update." // @Success 200 {object} models.List "The updated list." // @Failure 400 {object} web.HTTPError "Invalid list object provided." // @Failure 403 {object} web.HTTPError "The user does not have access to the list" // @Failure 500 {object} models.Message "Internal error" // @Router /lists/{id} [post] func (l *List) Update(s *xorm.Session, a web.Auth) (err error) { err = CreateOrUpdateList(s, l, a) if err != nil { return err } return events.Dispatch(&ListUpdatedEvent{ List: l, Doer: a, }) } func updateListLastUpdated(s *xorm.Session, list *List) error { _, err := s.ID(list.ID).Cols("updated").Update(list) return err } func updateListByTaskID(s *xorm.Session, taskID int64) (err error) { // need to get the task to update the list last updated timestamp task, err := GetTaskByIDSimple(s, taskID) if err != nil { return err } return updateListLastUpdated(s, &List{ID: task.ListID}) } // Create implements the create method of CRUDable // @Summary Creates a new list // @Description Creates a new list in a given namespace. The user needs write-access to the namespace. // @tags list // @Accept json // @Produce json // @Security JWTKeyAuth // @Param namespaceID path int true "Namespace ID" // @Param list body models.List true "The list you want to create." // @Success 200 {object} models.List "The created list." // @Failure 400 {object} web.HTTPError "Invalid list object provided." // @Failure 403 {object} web.HTTPError "The user does not have access to the list" // @Failure 500 {object} models.Message "Internal error" // @Router /namespaces/{namespaceID}/lists [put] func (l *List) Create(s *xorm.Session, a web.Auth) (err error) { err = l.CheckIsArchived(s) if err != nil { return err } doer, err := user.GetFromAuth(a) if err != nil { return err } l.OwnerID = doer.ID l.Owner = doer l.ID = 0 // Otherwise only the first time a new list would be created err = CreateOrUpdateList(s, l, a) if err != nil { return } // Create a new first bucket for this list b := &Bucket{ ListID: l.ID, Title: "Backlog", } err = b.Create(s, a) if err != nil { return } return events.Dispatch(&ListCreatedEvent{ List: l, Doer: doer, }) } // Delete implements the delete method of CRUDable // @Summary Deletes a list // @Description Delets a list // @tags list // @Produce json // @Security JWTKeyAuth // @Param id path int true "List ID" // @Success 200 {object} models.Message "The list was successfully deleted." // @Failure 400 {object} web.HTTPError "Invalid list object provided." // @Failure 403 {object} web.HTTPError "The user does not have access to the list" // @Failure 500 {object} models.Message "Internal error" // @Router /lists/{id} [delete] func (l *List) Delete(s *xorm.Session, a web.Auth) (err error) { // Delete the list _, err = s.ID(l.ID).Delete(&List{}) if err != nil { return } // Delete all tasks on that list _, err = s.Where("list_id = ?", l.ID).Delete(&Task{}) if err != nil { return } return events.Dispatch(&ListDeletedEvent{ List: l, Doer: a, }) } // SetListBackground sets a background file as list background in the db func SetListBackground(s *xorm.Session, listID int64, background *files.File) (err error) { l := &List{ ID: listID, BackgroundFileID: background.ID, } _, err = s. Where("id = ?", l.ID). Cols("background_file_id"). Update(l) return }