mirror of
https://github.com/coder/coder.git
synced 2025-07-09 11:45:56 +00:00
6f9b1a39f4
* - allow group members to read basic Group info - allow group members to see they are part of the group, but not see that information about other members - add a GetGroupMembersCountByGroupID SQL query, which allows group members to see members count without revealing other information about the members - add the group_members_expanded db view - rewrite group member queries to use the group_members_expanded view - add the RBAC ResourceGroupMember and add it to relevant roles - rewrite GetGroupMembersByGroupID permission checks - make the GroupMember type contain all user fields - fix type issues coming from replacing User with GroupMember in group member queries - add the MemberTotalCount field to codersdk.Group - display `group.total_member_count` instead of `group.members.length` on the account page
156 lines
4.3 KiB
Go
156 lines
4.3 KiB
Go
package codersdk
|
|
|
|
import (
|
|
"context"
|
|
"encoding/json"
|
|
"fmt"
|
|
"net/http"
|
|
|
|
"github.com/google/uuid"
|
|
"golang.org/x/xerrors"
|
|
)
|
|
|
|
type GroupSource string
|
|
|
|
const (
|
|
GroupSourceUser GroupSource = "user"
|
|
GroupSourceOIDC GroupSource = "oidc"
|
|
)
|
|
|
|
type CreateGroupRequest struct {
|
|
Name string `json:"name" validate:"required,group_name"`
|
|
DisplayName string `json:"display_name" validate:"omitempty,group_display_name"`
|
|
AvatarURL string `json:"avatar_url"`
|
|
QuotaAllowance int `json:"quota_allowance"`
|
|
}
|
|
|
|
type Group struct {
|
|
ID uuid.UUID `json:"id" format:"uuid"`
|
|
Name string `json:"name"`
|
|
DisplayName string `json:"display_name"`
|
|
OrganizationID uuid.UUID `json:"organization_id" format:"uuid"`
|
|
Members []ReducedUser `json:"members"`
|
|
// How many members are in this group. Shows the total count,
|
|
// even if the user is not authorized to read group member details.
|
|
// May be greater than `len(Group.Members)`.
|
|
TotalMemberCount int `json:"total_member_count"`
|
|
AvatarURL string `json:"avatar_url"`
|
|
QuotaAllowance int `json:"quota_allowance"`
|
|
Source GroupSource `json:"source"`
|
|
}
|
|
|
|
func (g Group) IsEveryone() bool {
|
|
return g.ID == g.OrganizationID
|
|
}
|
|
|
|
func (c *Client) CreateGroup(ctx context.Context, orgID uuid.UUID, req CreateGroupRequest) (Group, error) {
|
|
res, err := c.Request(ctx, http.MethodPost,
|
|
fmt.Sprintf("/api/v2/organizations/%s/groups", orgID.String()),
|
|
req,
|
|
)
|
|
if err != nil {
|
|
return Group{}, xerrors.Errorf("make request: %w", err)
|
|
}
|
|
defer res.Body.Close()
|
|
|
|
if res.StatusCode != http.StatusCreated {
|
|
return Group{}, ReadBodyAsError(res)
|
|
}
|
|
var resp Group
|
|
return resp, json.NewDecoder(res.Body).Decode(&resp)
|
|
}
|
|
|
|
func (c *Client) GroupsByOrganization(ctx context.Context, orgID uuid.UUID) ([]Group, error) {
|
|
res, err := c.Request(ctx, http.MethodGet,
|
|
fmt.Sprintf("/api/v2/organizations/%s/groups", orgID.String()),
|
|
nil,
|
|
)
|
|
if err != nil {
|
|
return nil, xerrors.Errorf("make request: %w", err)
|
|
}
|
|
defer res.Body.Close()
|
|
|
|
if res.StatusCode != http.StatusOK {
|
|
return nil, ReadBodyAsError(res)
|
|
}
|
|
|
|
var groups []Group
|
|
return groups, json.NewDecoder(res.Body).Decode(&groups)
|
|
}
|
|
|
|
func (c *Client) GroupByOrgAndName(ctx context.Context, orgID uuid.UUID, name string) (Group, error) {
|
|
res, err := c.Request(ctx, http.MethodGet,
|
|
fmt.Sprintf("/api/v2/organizations/%s/groups/%s", orgID.String(), name),
|
|
nil,
|
|
)
|
|
if err != nil {
|
|
return Group{}, xerrors.Errorf("make request: %w", err)
|
|
}
|
|
defer res.Body.Close()
|
|
|
|
if res.StatusCode != http.StatusOK {
|
|
return Group{}, ReadBodyAsError(res)
|
|
}
|
|
var resp Group
|
|
return resp, json.NewDecoder(res.Body).Decode(&resp)
|
|
}
|
|
|
|
func (c *Client) Group(ctx context.Context, group uuid.UUID) (Group, error) {
|
|
res, err := c.Request(ctx, http.MethodGet,
|
|
fmt.Sprintf("/api/v2/groups/%s", group.String()),
|
|
nil,
|
|
)
|
|
if err != nil {
|
|
return Group{}, xerrors.Errorf("make request: %w", err)
|
|
}
|
|
defer res.Body.Close()
|
|
|
|
if res.StatusCode != http.StatusOK {
|
|
return Group{}, ReadBodyAsError(res)
|
|
}
|
|
var resp Group
|
|
return resp, json.NewDecoder(res.Body).Decode(&resp)
|
|
}
|
|
|
|
type PatchGroupRequest struct {
|
|
AddUsers []string `json:"add_users"`
|
|
RemoveUsers []string `json:"remove_users"`
|
|
Name string `json:"name" validate:"omitempty,group_name"`
|
|
DisplayName *string `json:"display_name" validate:"omitempty,group_display_name"`
|
|
AvatarURL *string `json:"avatar_url"`
|
|
QuotaAllowance *int `json:"quota_allowance"`
|
|
}
|
|
|
|
func (c *Client) PatchGroup(ctx context.Context, group uuid.UUID, req PatchGroupRequest) (Group, error) {
|
|
res, err := c.Request(ctx, http.MethodPatch,
|
|
fmt.Sprintf("/api/v2/groups/%s", group.String()),
|
|
req,
|
|
)
|
|
if err != nil {
|
|
return Group{}, xerrors.Errorf("make request: %w", err)
|
|
}
|
|
defer res.Body.Close()
|
|
|
|
if res.StatusCode != http.StatusOK {
|
|
return Group{}, ReadBodyAsError(res)
|
|
}
|
|
var resp Group
|
|
return resp, json.NewDecoder(res.Body).Decode(&resp)
|
|
}
|
|
|
|
func (c *Client) DeleteGroup(ctx context.Context, group uuid.UUID) error {
|
|
res, err := c.Request(ctx, http.MethodDelete,
|
|
fmt.Sprintf("/api/v2/groups/%s", group.String()),
|
|
nil,
|
|
)
|
|
if err != nil {
|
|
return xerrors.Errorf("make request: %w", err)
|
|
}
|
|
defer res.Body.Close()
|
|
|
|
if res.StatusCode != http.StatusOK {
|
|
return ReadBodyAsError(res)
|
|
}
|
|
return nil
|
|
}
|