harbor/src/ui/api/member.go

// Copyright (c) 2017 VMware, Inc. All Rights Reserved.
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
//    http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.

package api

import (
	"fmt"
	"net/http"
	"strings"

	"github.com/vmware/harbor/src/common"

	"github.com/vmware/harbor/src/common/dao"
	"github.com/vmware/harbor/src/common/models"
	"github.com/vmware/harbor/src/common/utils/log"
	"github.com/vmware/harbor/src/ui/auth"
)

// ProjectUserMemberAPI handles request to /api/projects/{}/members/{}
type ProjectUserMemberAPI struct {
	BaseController
	memberID      int
	currentUserID int
	project       *models.Project
}

type memberReq struct {
	Username string `json:"username"`
	UserID   int    `json:"user_id"`
	Roles    []int  `json:"roles"`
}

// Prepare validates the URL and parms
func (pma *ProjectUserMemberAPI) Prepare() {
	pma.BaseController.Prepare()

	if !pma.SecurityCtx.IsAuthenticated() {
		pma.HandleUnauthorized()
		return
	}
	user, err := dao.GetUser(models.User{
		Username: pma.SecurityCtx.GetUsername(),
	})
	if err != nil {
		pma.HandleInternalServerError(
			fmt.Sprintf("failed to get user %s: %v",
				pma.SecurityCtx.GetUsername(), err))
		return
	}
	pma.currentUserID = user.UserID

	pid, err := pma.GetInt64FromPath(":pid")
	if err != nil || pid <= 0 {
		text := "invalid project ID: "
		if err != nil {
			text += err.Error()
		} else {
			text += fmt.Sprintf("%d", pid)
		}
		pma.HandleBadRequest(text)
		return
	}
	project, err := pma.ProjectMgr.Get(pid)
	if err != nil {
		pma.ParseAndHandleError(fmt.Sprintf("failed to get project %d", pid), err)
		return
	}
	if project == nil {
		pma.HandleNotFound(fmt.Sprintf("project %d not found", pid))
		return
	}
	pma.project = project

	if !(pma.Ctx.Input.IsGet() && pma.SecurityCtx.HasReadPerm(pid) ||
		pma.SecurityCtx.HasAllPerm(pid)) {
		pma.HandleForbidden(pma.SecurityCtx.GetUsername())
		return
	}

	if len(pma.GetStringFromPath(":mid")) != 0 {
		mid, err := pma.GetInt64FromPath(":mid")
		if err != nil || mid <= 0 {
			text := "invalid member ID: "
			if err != nil {
				text += err.Error()
			} else {
				text += fmt.Sprintf("%d", mid)
			}
			pma.HandleBadRequest(text)
			return
		}

		member, err := dao.GetUser(models.User{
			UserID: int(mid),
		})
		if err != nil {
			pma.HandleInternalServerError(fmt.Sprintf("failed to get user %d: %v", mid, err))
			return
		}
		if member == nil {
			pma.HandleNotFound(fmt.Sprintf("member %d not found", mid))
			return
		}

		pma.memberID = member.UserID
	}
}

// Get ...
func (pma *ProjectUserMemberAPI) Get() {
	pid := pma.project.ProjectID
	if pma.memberID == 0 { //member id not set return list of the members
		username := pma.GetString("username")
		queryUser := models.User{Username: username}
		userList, err := dao.GetUserByProject(pid, queryUser)
		if err != nil {
			log.Errorf("Failed to query database for member list, error: %v", err)
			pma.RenderError(http.StatusInternalServerError, "Internal Server Error")
			return
		}
		pma.Data["json"] = userList
	} else { //return detail of a  member
		roleList, err := listRoles(pma.memberID, pid, common.UserMember)
		if err != nil {
			log.Errorf("Error occurred in GetUserProjectRoles, error: %v", err)
			pma.CustomAbort(http.StatusInternalServerError, "Internal error.")
		}

		if len(roleList) == 0 {
			pma.CustomAbort(http.StatusNotFound, fmt.Sprintf("user %d is not a member of the project", pma.memberID))
		}

		//return empty role list to indicate if a user is not a member
		result := make(map[string]interface{})
		user, err := dao.GetUser(models.User{UserID: pma.memberID})
		if err != nil {
			log.Errorf("Error occurred in GetUser, error: %v", err)
			pma.CustomAbort(http.StatusInternalServerError, "Internal error.")
		}
		result["username"] = user.Username
		result["user_id"] = pma.memberID
		result["roles"] = roleList
		pma.Data["json"] = result
	}
	pma.ServeJSON()
}

// Post ...
func (pma *ProjectUserMemberAPI) Post() {
	projectID := pma.project.ProjectID

	var req memberReq
	pma.DecodeJSONReq(&req)
	username := strings.TrimSpace(req.Username)
	userID := checkUserExists(username)
	if userID <= 0 {

		user, err := auth.SearchUser(username)

		if err != nil {
			log.Errorf("Failed the search user, error: %v", err)
			pma.RenderError(http.StatusInternalServerError, "Failed to search user")
			return
		}

		if user == nil {
			log.Errorf("Current user doesn't exist: %v", username)
			pma.RenderError(http.StatusNotFound, "Failed to search user: "+username)
			return
		}

		err = auth.OnBoardUser(user)

		if err != nil {
			log.Errorf("Failed the onboard user, error: %s", err)
			pma.RenderError(http.StatusInternalServerError, "Failed to onboard user")
			return
		}
		if user.UserID <= 0 {
			log.Error("Failed the onboard user, UserId <=0")
			pma.RenderError(http.StatusInternalServerError, "Failed to onboard user")
			return
		}
		userID = user.UserID

	}
	rolelist, err := dao.GetUserProjectRoles(userID, projectID, common.UserMember)
	if err != nil {
		log.Errorf("Error occurred in GetUserProjectRoles, error: %v", err)
		pma.CustomAbort(http.StatusInternalServerError, "Internal error.")
	}
	if len(rolelist) > 0 {
		log.Warningf("user is already added to project, user id: %d, project id: %d", userID, projectID)
		pma.RenderError(http.StatusConflict, "user is ready in project")
		return
	}

	if len(req.Roles) <= 0 || len(req.Roles) > 1 {
		pma.CustomAbort(http.StatusBadRequest, "only one role is supported")
	}

	rid := req.Roles[0]
	if !(rid == models.PROJECTADMIN ||
		rid == models.DEVELOPER ||
		rid == models.GUEST) {
		pma.CustomAbort(http.StatusBadRequest, "invalid role")
	}

	_, err = dao.AddProjectMember(projectID, userID, rid, common.UserMember)
	if err != nil {
		log.Errorf("Failed to update DB to add project user role, project id: %d, user id: %d, role id: %d", projectID, userID, rid)
		pma.RenderError(http.StatusInternalServerError, "Failed to update data in database")
		return
	}
}

// Put ...
func (pma *ProjectUserMemberAPI) Put() {
	pid := pma.project.ProjectID
	mid := pma.memberID

	var req memberReq
	pma.DecodeJSONReq(&req)
	roleList, err := dao.GetUserProjectRoles(mid, pid, common.UserMember)
	if len(roleList) == 0 {
		log.Warningf("User is not in project, user id: %d, project id: %d", mid, pid)
		pma.RenderError(http.StatusNotFound, "user not exist in project")
		return
	}
	//TODO: delete and insert should in one transaction
	//delete user project role record for the given user
	err = dao.DeleteProjectMember(pid, mid, common.UserMember)
	if err != nil {
		log.Errorf("Failed to delete project roles for user, user id: %d, project id: %d, error: %v", mid, pid, err)
		pma.RenderError(http.StatusInternalServerError, "Failed to update data in DB")
		return
	}
	//insert roles in request
	for _, rid := range req.Roles {
		_, err = dao.AddProjectMember(pid, mid, int(rid), common.UserMember)
		if err != nil {
			log.Errorf("Failed to update DB to add project user role, project id: %d, user id: %d, role id: %d", pid, mid, rid)
			pma.RenderError(http.StatusInternalServerError, "Failed to update data in database")
			return
		}
	}
}

// Delete ...
func (pma *ProjectUserMemberAPI) Delete() {
	pid := pma.project.ProjectID
	mid := pma.memberID

	err := dao.DeleteProjectMember(pid, mid, common.UserMember)
	if err != nil {
		log.Errorf("Failed to delete project roles for user, user id: %d, project id: %d, error: %v", mid, pid, err)
		pma.RenderError(http.StatusInternalServerError, "Failed to update data in DB")
		return
	}
}
replace go header 2017-04-13 18:54:58 +08:00			`// Copyright (c) 2017 VMware, Inc. All Rights Reserved.`
			`//`
			`// Licensed under the Apache License, Version 2.0 (the "License");`
			`// you may not use this file except in compliance with the License.`
			`// You may obtain a copy of the License at`
			`//`
			`// http://www.apache.org/licenses/LICENSE-2.0`
			`//`
			`// Unless required by applicable law or agreed to in writing, software`
			`// distributed under the License is distributed on an "AS IS" BASIS,`
			`// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`// See the License for the specific language governing permissions and`
			`// limitations under the License.`
fix package comment issue 2016-02-26 18:54:14 +08:00
Initial commit 2016-02-01 19:59:10 +08:00			`package api`

			`import (`
fix #895. 2016-10-27 14:16:23 +08:00			`"fmt"`
replace status codes with constants in net/http 2016-02-24 14:31:52 +08:00			`"net/http"`
Add LDAP remote certifcate validation push test Add unit test for ldap verify cert remove common.VerifyRemoteCert Update code with PR review comments Add change ldaps config and add UT testcase for TLS feature add ldap verfiy cert checkbox about #3513 Draft harbor ova install guide Search and import ldap user when add project members Add unit test case for SearchAndImportUser ova guide Add ova install guide Add ova install guide 2 Add ova install guide 3 Call ValidateLdapConf before search ldap trim space in username Remove leading space in openLdap username Remove doc change in this branch Update unit test for ldap search and import user Add test case about ldap verify cert checkbox Modify ldap testcase 2017-11-01 18:19:58 +08:00			`"strings"`
replace status codes with constants in net/http 2016-02-24 14:31:52 +08:00
Refactor project member 2018-02-06 10:59:49 +08:00			`"github.com/vmware/harbor/src/common"`

change code 20161019 2016-10-19 14:32:00 +08:00			`"github.com/vmware/harbor/src/common/dao"`
			`"github.com/vmware/harbor/src/common/models"`
			`"github.com/vmware/harbor/src/common/utils/log"`
Refactor ldap Changes include: 1. Use Session to manage the lifecycle of ldap connections 2. Abstract common AuthenticateHelper interface for db_auth, ldap_auth, uaa_auth mode 2017-11-22 12:19:13 +08:00			`"github.com/vmware/harbor/src/ui/auth"`
Initial commit 2016-02-01 19:59:10 +08:00			`)`

Refactor project member 2018-02-06 10:59:49 +08:00			`// ProjectUserMemberAPI handles request to /api/projects/{}/members/{}`
			`type ProjectUserMemberAPI struct {`
refactor member API 2017-05-19 17:06:14 +08:00			`BaseController`
fix issues except comments related in main, auth, api packages 2016-02-25 13:40:08 +08:00			`memberID int`
			`currentUserID int`
Initial commit 2016-02-01 19:59:10 +08:00			`project *models.Project`
			`}`

			`type memberReq struct {`
update attributes of api 2016-06-01 15:17:05 +08:00			Username string `json:"username"`
fix issues except comments related in main, auth, api packages 2016-02-25 13:40:08 +08:00			UserID int `json:"user_id"`
Initial commit 2016-02-01 19:59:10 +08:00			Roles []int `json:"roles"`
			`}`

add comments to pass golint 2016-02-26 18:35:55 +08:00			`// Prepare validates the URL and parms`
Refactor project member 2018-02-06 10:59:49 +08:00			`func (pma *ProjectUserMemberAPI) Prepare() {`
refactor member API 2017-05-19 17:06:14 +08:00			`pma.BaseController.Prepare()`

			`if !pma.SecurityCtx.IsAuthenticated() {`
			`pma.HandleUnauthorized()`
			`return`
			`}`
			`user, err := dao.GetUser(models.User{`
			`Username: pma.SecurityCtx.GetUsername(),`
			`})`
Initial commit 2016-02-01 19:59:10 +08:00			`if err != nil {`
refactor member API 2017-05-19 17:06:14 +08:00			`pma.HandleInternalServerError(`
			`fmt.Sprintf("failed to get user %s: %v",`
			`pma.SecurityCtx.GetUsername(), err))`
Initial commit 2016-02-01 19:59:10 +08:00			`return`
			`}`
refactor member API 2017-05-19 17:06:14 +08:00			`pma.currentUserID = user.UserID`

			`pid, err := pma.GetInt64FromPath(":pid")`
			`if err != nil \|\| pid <= 0 {`
			`text := "invalid project ID: "`
			`if err != nil {`
			`text += err.Error()`
			`} else {`
			`text += fmt.Sprintf("%d", pid)`
			`}`
bug fix 2017-07-10 18:17:58 +08:00			`pma.HandleBadRequest(text)`
			`return`
refactor member API 2017-05-19 17:06:14 +08:00			`}`
			`project, err := pma.ProjectMgr.Get(pid)`
Initial commit 2016-02-01 19:59:10 +08:00			`if err != nil {`
return real status code returned by admiral APIs 2017-07-07 15:34:12 +08:00			`pma.ParseAndHandleError(fmt.Sprintf("failed to get project %d", pid), err)`
refactor member API 2017-05-19 17:06:14 +08:00			`return`
			`}`
			`if project == nil {`
			`pma.HandleNotFound(fmt.Sprintf("project %d not found", pid))`
			`return`
Initial commit 2016-02-01 19:59:10 +08:00			`}`
refactor member API 2017-05-19 17:06:14 +08:00			`pma.project = project`
Initial commit 2016-02-01 19:59:10 +08:00
fix bug in GET member API 2017-07-12 19:17:26 +08:00			`if !(pma.Ctx.Input.IsGet() && pma.SecurityCtx.HasReadPerm(pid) \|\|`
			`pma.SecurityCtx.HasAllPerm(pid)) {`
refactor member API 2017-05-19 17:06:14 +08:00			`pma.HandleForbidden(pma.SecurityCtx.GetUsername())`
			`return`
Initial commit 2016-02-01 19:59:10 +08:00			`}`
refactor member API 2017-05-19 17:06:14 +08:00
			`if len(pma.GetStringFromPath(":mid")) != 0 {`
			`mid, err := pma.GetInt64FromPath(":mid")`
			`if err != nil \|\| mid <= 0 {`
			`text := "invalid member ID: "`
			`if err != nil {`
			`text += err.Error()`
			`} else {`
			`text += fmt.Sprintf("%d", mid)`
			`}`
			`pma.HandleBadRequest(text)`
			`return`
			`}`

			`member, err := dao.GetUser(models.User{`
			`UserID: int(mid),`
			`})`
Initial commit 2016-02-01 19:59:10 +08:00			`if err != nil {`
refactor member API 2017-05-19 17:06:14 +08:00			`pma.HandleInternalServerError(fmt.Sprintf("failed to get user %d: %v", mid, err))`
			`return`
			`}`
			`if member == nil {`
			`pma.HandleNotFound(fmt.Sprintf("member %d not found", mid))`
			`return`
Initial commit 2016-02-01 19:59:10 +08:00			`}`
refactor member API 2017-05-19 17:06:14 +08:00
			`pma.memberID = member.UserID`
Initial commit 2016-02-01 19:59:10 +08:00			`}`
			`}`

add comments to pass golint 2016-02-26 18:35:55 +08:00			`// Get ...`
Refactor project member 2018-02-06 10:59:49 +08:00			`func (pma *ProjectUserMemberAPI) Get() {`
golint refactor for model 2016-02-26 10:15:01 +08:00			`pid := pma.project.ProjectID`
fix issues except comments related in main, auth, api packages 2016-02-25 13:40:08 +08:00			`if pma.memberID == 0 { //member id not set return list of the members`
Initial commit 2016-02-01 19:59:10 +08:00			`username := pma.GetString("username")`
escapse % and _ in sql 2016-11-16 20:25:40 +08:00			`queryUser := models.User{Username: username}`
improve test coverage 2016-02-24 18:16:16 +08:00			`userList, err := dao.GetUserByProject(pid, queryUser)`
Initial commit 2016-02-01 19:59:10 +08:00			`if err != nil {`
Use new logger for api package 2016-03-28 08:50:09 +08:00			`log.Errorf("Failed to query database for member list, error: %v", err)`
replace status codes with constants in net/http 2016-02-24 14:31:52 +08:00			`pma.RenderError(http.StatusInternalServerError, "Internal Server Error")`
Initial commit 2016-02-01 19:59:10 +08:00			`return`
			`}`
			`pma.Data["json"] = userList`
			`} else { //return detail of a member`
Refactor project member 2018-02-06 10:59:49 +08:00			`roleList, err := listRoles(pma.memberID, pid, common.UserMember)`
Initial commit 2016-02-01 19:59:10 +08:00			`if err != nil {`
Use new logger for api package 2016-03-28 08:50:09 +08:00			`log.Errorf("Error occurred in GetUserProjectRoles, error: %v", err)`
replace status codes with constants in net/http 2016-02-24 14:31:52 +08:00			`pma.CustomAbort(http.StatusInternalServerError, "Internal error.")`
Initial commit 2016-02-01 19:59:10 +08:00			`}`
fix #895. 2016-10-27 14:16:23 +08:00
			`if len(roleList) == 0 {`
			`pma.CustomAbort(http.StatusNotFound, fmt.Sprintf("user %d is not a member of the project", pma.memberID))`
			`}`

Initial commit 2016-02-01 19:59:10 +08:00			`//return empty role list to indicate if a user is not a member`
			`result := make(map[string]interface{})`
golint refactor for model 2016-02-26 10:15:01 +08:00			`user, err := dao.GetUser(models.User{UserID: pma.memberID})`
Initial commit 2016-02-01 19:59:10 +08:00			`if err != nil {`
Use new logger for api package 2016-03-28 08:50:09 +08:00			`log.Errorf("Error occurred in GetUser, error: %v", err)`
replace status codes with constants in net/http 2016-02-24 14:31:52 +08:00			`pma.CustomAbort(http.StatusInternalServerError, "Internal error.")`
Initial commit 2016-02-01 19:59:10 +08:00			`}`
update attributes of api 2016-06-01 15:17:05 +08:00			`result["username"] = user.Username`
fix issues except comments related in main, auth, api packages 2016-02-25 13:40:08 +08:00			`result["user_id"] = pma.memberID`
Initial commit 2016-02-01 19:59:10 +08:00			`result["roles"] = roleList`
			`pma.Data["json"] = result`
			`}`
			`pma.ServeJSON()`
			`}`

add comments to pass golint 2016-02-26 18:35:55 +08:00			`// Post ...`
Refactor project member 2018-02-06 10:59:49 +08:00			`func (pma *ProjectUserMemberAPI) Post() {`
1. user can get repositories of public project without login 2. add basic auth support for repository API 3. system admin can CRUD members of all projects 2016-05-19 18:36:40 +08:00			`projectID := pma.project.ProjectID`
db_role_refactor 2016-03-29 12:09:27 +08:00
Initial commit 2016-02-01 19:59:10 +08:00			`var req memberReq`
fix issues except comments related in main, auth, api packages 2016-02-25 13:40:08 +08:00			`pma.DecodeJSONReq(&req)`
Add LDAP remote certifcate validation push test Add unit test for ldap verify cert remove common.VerifyRemoteCert Update code with PR review comments Add change ldaps config and add UT testcase for TLS feature add ldap verfiy cert checkbox about #3513 Draft harbor ova install guide Search and import ldap user when add project members Add unit test case for SearchAndImportUser ova guide Add ova install guide Add ova install guide 2 Add ova install guide 3 Call ValidateLdapConf before search ldap trim space in username Remove leading space in openLdap username Remove doc change in this branch Update unit test for ldap search and import user Add test case about ldap verify cert checkbox Modify ldap testcase 2017-11-01 18:19:58 +08:00			`username := strings.TrimSpace(req.Username)`
add comments to pass golint 2016-02-26 18:35:55 +08:00			`userID := checkUserExists(username)`
fix issues except comments related in main, auth, api packages 2016-02-25 13:40:08 +08:00			`if userID <= 0 {`
Refactor ldap Changes include: 1. Use Session to manage the lifecycle of ldap connections 2. Abstract common AuthenticateHelper interface for db_auth, ldap_auth, uaa_auth mode 2017-11-22 12:19:13 +08:00
			`user, err := auth.SearchUser(username)`

Update with PR review comment 2017-11-24 14:53:34 +08:00			`if err != nil {`
Refactor ldap Changes include: 1. Use Session to manage the lifecycle of ldap connections 2. Abstract common AuthenticateHelper interface for db_auth, ldap_auth, uaa_auth mode 2017-11-22 12:19:13 +08:00			`log.Errorf("Failed the search user, error: %v", err)`
			`pma.RenderError(http.StatusInternalServerError, "Failed to search user")`
Update with PR review comment 2017-11-24 14:53:34 +08:00			`return`
			`}`

Refactor ldap Changes include: 1. Use Session to manage the lifecycle of ldap connections 2. Abstract common AuthenticateHelper interface for db_auth, ldap_auth, uaa_auth mode 2017-11-22 12:19:13 +08:00			`if user == nil {`
			`log.Errorf("Current user doesn't exist: %v", username)`
			`pma.RenderError(http.StatusNotFound, "Failed to search user: "+username)`
Add LDAP remote certifcate validation push test Add unit test for ldap verify cert remove common.VerifyRemoteCert Update code with PR review comments Add change ldaps config and add UT testcase for TLS feature add ldap verfiy cert checkbox about #3513 Draft harbor ova install guide Search and import ldap user when add project members Add unit test case for SearchAndImportUser ova guide Add ova install guide Add ova install guide 2 Add ova install guide 3 Call ValidateLdapConf before search ldap trim space in username Remove leading space in openLdap username Remove doc change in this branch Update unit test for ldap search and import user Add test case about ldap verify cert checkbox Modify ldap testcase 2017-11-01 18:19:58 +08:00			`return`
			`}`

Refactor ldap Changes include: 1. Use Session to manage the lifecycle of ldap connections 2. Abstract common AuthenticateHelper interface for db_auth, ldap_auth, uaa_auth mode 2017-11-22 12:19:13 +08:00			`err = auth.OnBoardUser(user)`

Update with PR review comment 2017-11-24 14:53:34 +08:00			`if err != nil {`
Refactor ldap Changes include: 1. Use Session to manage the lifecycle of ldap connections 2. Abstract common AuthenticateHelper interface for db_auth, ldap_auth, uaa_auth mode 2017-11-22 12:19:13 +08:00			`log.Errorf("Failed the onboard user, error: %s", err)`
			`pma.RenderError(http.StatusInternalServerError, "Failed to onboard user")`
Add LDAP remote certifcate validation push test Add unit test for ldap verify cert remove common.VerifyRemoteCert Update code with PR review comments Add change ldaps config and add UT testcase for TLS feature add ldap verfiy cert checkbox about #3513 Draft harbor ova install guide Search and import ldap user when add project members Add unit test case for SearchAndImportUser ova guide Add ova install guide Add ova install guide 2 Add ova install guide 3 Call ValidateLdapConf before search ldap trim space in username Remove leading space in openLdap username Remove doc change in this branch Update unit test for ldap search and import user Add test case about ldap verify cert checkbox Modify ldap testcase 2017-11-01 18:19:58 +08:00			`return`
			`}`
Refactor ldap Changes include: 1. Use Session to manage the lifecycle of ldap connections 2. Abstract common AuthenticateHelper interface for db_auth, ldap_auth, uaa_auth mode 2017-11-22 12:19:13 +08:00			`if user.UserID <= 0 {`
			`log.Error("Failed the onboard user, UserId <=0")`
			`pma.RenderError(http.StatusInternalServerError, "Failed to onboard user")`
Update with PR review comment 2017-11-24 14:53:34 +08:00			`return`
			`}`
Refactor ldap Changes include: 1. Use Session to manage the lifecycle of ldap connections 2. Abstract common AuthenticateHelper interface for db_auth, ldap_auth, uaa_auth mode 2017-11-22 12:19:13 +08:00			`userID = user.UserID`
Update with PR review comment 2017-11-24 14:53:34 +08:00
Initial commit 2016-02-01 19:59:10 +08:00			`}`
Refactor project member 2018-02-06 10:59:49 +08:00			`rolelist, err := dao.GetUserProjectRoles(userID, projectID, common.UserMember)`
Initial commit 2016-02-01 19:59:10 +08:00			`if err != nil {`
Use new logger for api package 2016-03-28 08:50:09 +08:00			`log.Errorf("Error occurred in GetUserProjectRoles, error: %v", err)`
replace status codes with constants in net/http 2016-02-24 14:31:52 +08:00			`pma.CustomAbort(http.StatusInternalServerError, "Internal error.")`
Initial commit 2016-02-01 19:59:10 +08:00			`}`
			`if len(rolelist) > 0 {`
1. user can get repositories of public project without login 2. add basic auth support for repository API 3. system admin can CRUD members of all projects 2016-05-19 18:36:40 +08:00			`log.Warningf("user is already added to project, user id: %d, project id: %d", userID, projectID)`
replace status codes with constants in net/http 2016-02-24 14:31:52 +08:00			`pma.RenderError(http.StatusConflict, "user is ready in project")`
Initial commit 2016-02-01 19:59:10 +08:00			`return`
			`}`

fix #761 2016-09-19 17:58:29 +08:00			`if len(req.Roles) <= 0 \|\| len(req.Roles) > 1 {`
			`pma.CustomAbort(http.StatusBadRequest, "only one role is supported")`
			`}`

			`rid := req.Roles[0]`
			`if !(rid == models.PROJECTADMIN \|\|`
			`rid == models.DEVELOPER \|\|`
			`rid == models.GUEST) {`
			`pma.CustomAbort(http.StatusBadRequest, "invalid role")`
			`}`

Refactor project member 2018-02-06 10:59:49 +08:00			`_, err = dao.AddProjectMember(projectID, userID, rid, common.UserMember)`
fix #761 2016-09-19 17:58:29 +08:00			`if err != nil {`
			`log.Errorf("Failed to update DB to add project user role, project id: %d, user id: %d, role id: %d", projectID, userID, rid)`
			`pma.RenderError(http.StatusInternalServerError, "Failed to update data in database")`
			`return`
Initial commit 2016-02-01 19:59:10 +08:00			`}`
			`}`

add comments to pass golint 2016-02-26 18:35:55 +08:00			`// Put ...`
Refactor project member 2018-02-06 10:59:49 +08:00			`func (pma *ProjectUserMemberAPI) Put() {`
golint refactor for model 2016-02-26 10:15:01 +08:00			`pid := pma.project.ProjectID`
1. user can get repositories of public project without login 2. add basic auth support for repository API 3. system admin can CRUD members of all projects 2016-05-19 18:36:40 +08:00			`mid := pma.memberID`

Initial commit 2016-02-01 19:59:10 +08:00			`var req memberReq`
fix issues except comments related in main, auth, api packages 2016-02-25 13:40:08 +08:00			`pma.DecodeJSONReq(&req)`
Refactor project member 2018-02-06 10:59:49 +08:00			`roleList, err := dao.GetUserProjectRoles(mid, pid, common.UserMember)`
Initial commit 2016-02-01 19:59:10 +08:00			`if len(roleList) == 0 {`
Use new logger for api package 2016-03-28 08:50:09 +08:00			`log.Warningf("User is not in project, user id: %d, project id: %d", mid, pid)`
replace status codes with constants in net/http 2016-02-24 14:31:52 +08:00			`pma.RenderError(http.StatusNotFound, "user not exist in project")`
Initial commit 2016-02-01 19:59:10 +08:00			`return`
			`}`
			`//TODO: delete and insert should in one transaction`
			`//delete user project role record for the given user`
Refactor project member 2018-02-06 10:59:49 +08:00			`err = dao.DeleteProjectMember(pid, mid, common.UserMember)`
Initial commit 2016-02-01 19:59:10 +08:00			`if err != nil {`
Use new logger for api package 2016-03-28 08:50:09 +08:00			`log.Errorf("Failed to delete project roles for user, user id: %d, project id: %d, error: %v", mid, pid, err)`
replace status codes with constants in net/http 2016-02-24 14:31:52 +08:00			`pma.RenderError(http.StatusInternalServerError, "Failed to update data in DB")`
Initial commit 2016-02-01 19:59:10 +08:00			`return`
			`}`
			`//insert roles in request`
			`for _, rid := range req.Roles {`
Refactor project member 2018-02-06 10:59:49 +08:00			`_, err = dao.AddProjectMember(pid, mid, int(rid), common.UserMember)`
Initial commit 2016-02-01 19:59:10 +08:00			`if err != nil {`
Use new logger for api package 2016-03-28 08:50:09 +08:00			`log.Errorf("Failed to update DB to add project user role, project id: %d, user id: %d, role id: %d", pid, mid, rid)`
replace status codes with constants in net/http 2016-02-24 14:31:52 +08:00			`pma.RenderError(http.StatusInternalServerError, "Failed to update data in database")`
Initial commit 2016-02-01 19:59:10 +08:00			`return`
			`}`
			`}`
			`}`

add comments to pass golint 2016-02-26 18:35:55 +08:00			`// Delete ...`
Refactor project member 2018-02-06 10:59:49 +08:00			`func (pma *ProjectUserMemberAPI) Delete() {`
golint refactor for model 2016-02-26 10:15:01 +08:00			`pid := pma.project.ProjectID`
1. user can get repositories of public project without login 2. add basic auth support for repository API 3. system admin can CRUD members of all projects 2016-05-19 18:36:40 +08:00			`mid := pma.memberID`

Refactor project member 2018-02-06 10:59:49 +08:00			`err := dao.DeleteProjectMember(pid, mid, common.UserMember)`
Initial commit 2016-02-01 19:59:10 +08:00			`if err != nil {`
Use new logger for api package 2016-03-28 08:50:09 +08:00			`log.Errorf("Failed to delete project roles for user, user id: %d, project id: %d, error: %v", mid, pid, err)`
replace status codes with constants in net/http 2016-02-24 14:31:52 +08:00			`pma.RenderError(http.StatusInternalServerError, "Failed to update data in DB")`
Initial commit 2016-02-01 19:59:10 +08:00			`return`
			`}`
			`}`