2021-03-13 23:06:03 +08:00
|
|
|
// Copyright 2021 The casbin Authors. All Rights Reserved.
|
2020-10-20 23:14:03 +08:00
|
|
|
//
|
|
|
|
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
|
|
|
|
// you may not use this file except in compliance with the License.
|
|
|
|
|
// You may obtain a copy of the License at
|
|
|
|
|
//
|
|
|
|
|
// http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
|
//
|
|
|
|
|
// Unless required by applicable law or agreed to in writing, software
|
|
|
|
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
|
|
|
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
|
|
|
// See the License for the specific language governing permissions and
|
|
|
|
|
// limitations under the License.
|
|
|
|
|
|
|
|
|
|
package controllers
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"encoding/json"
|
2021-05-09 19:54:20 +08:00
|
|
|
"fmt"
|
|
|
|
|
"strings"
|
2020-10-20 23:14:03 +08:00
|
|
|
|
2021-11-06 11:32:22 +08:00
|
|
|
"github.com/astaxie/beego/utils/pagination"
|
2021-07-25 09:34:25 +08:00
|
|
|
"github.com/casbin/casdoor/object"
|
|
|
|
|
"github.com/casbin/casdoor/original"
|
2021-11-06 11:32:22 +08:00
|
|
|
"github.com/casbin/casdoor/util"
|
2020-10-20 23:14:03 +08:00
|
|
|
)
|
|
|
|
|
|
2021-08-07 22:02:56 +08:00
|
|
|
// GetGlobalUsers
|
2021-03-29 23:40:25 +08:00
|
|
|
// @Title GetGlobalUsers
|
|
|
|
|
// @Description get global users
|
|
|
|
|
// @Success 200 {array} object.User The Response object
|
|
|
|
|
// @router /get-global-users [get]
|
2021-02-13 00:11:12 +08:00
|
|
|
func (c *ApiController) GetGlobalUsers() {
|
2021-11-06 11:32:22 +08:00
|
|
|
limit := c.Input().Get("pageSize")
|
|
|
|
|
page := c.Input().Get("p")
|
|
|
|
|
if limit == "" || page == "" {
|
|
|
|
|
c.Data["json"] = object.GetMaskedUsers(object.GetGlobalUsers())
|
|
|
|
|
c.ServeJSON()
|
|
|
|
|
} else {
|
|
|
|
|
limit := util.ParseInt(limit)
|
|
|
|
|
paginator := pagination.SetPaginator(c.Ctx, limit, int64(object.GetGlobalUserCount()))
|
|
|
|
|
users := object.GetPaginationGlobalUsers(paginator.Offset(), limit)
|
|
|
|
|
c.ResponseOk(users, paginator.Nums())
|
|
|
|
|
}
|
2021-02-13 00:11:12 +08:00
|
|
|
}
|
|
|
|
|
|
2021-08-07 22:02:56 +08:00
|
|
|
// GetUsers
|
2021-03-29 23:40:25 +08:00
|
|
|
// @Title GetUsers
|
|
|
|
|
// @Description
|
|
|
|
|
// @Param owner query string true "The owner of users"
|
|
|
|
|
// @Success 200 {array} object.User The Response object
|
|
|
|
|
// @router /get-users [get]
|
2020-10-20 23:14:03 +08:00
|
|
|
func (c *ApiController) GetUsers() {
|
|
|
|
|
owner := c.Input().Get("owner")
|
2021-11-06 11:32:22 +08:00
|
|
|
limit := c.Input().Get("pageSize")
|
|
|
|
|
page := c.Input().Get("p")
|
|
|
|
|
if limit == "" || page == "" {
|
|
|
|
|
c.Data["json"] = object.GetMaskedUsers(object.GetUsers(owner))
|
|
|
|
|
c.ServeJSON()
|
|
|
|
|
} else {
|
|
|
|
|
limit := util.ParseInt(limit)
|
|
|
|
|
paginator := pagination.SetPaginator(c.Ctx, limit, int64(object.GetUserCount(owner)))
|
|
|
|
|
users := object.GetPaginationUsers(owner, paginator.Offset(), limit)
|
|
|
|
|
c.ResponseOk(users, paginator.Nums())
|
|
|
|
|
}
|
2020-10-20 23:14:03 +08:00
|
|
|
}
|
|
|
|
|
|
2021-08-07 22:02:56 +08:00
|
|
|
// GetUser
|
2021-03-29 23:40:25 +08:00
|
|
|
// @Title GetUser
|
|
|
|
|
// @Description get user
|
|
|
|
|
// @Param id query string true "The id of the user"
|
|
|
|
|
// @Success 200 {object} object.User The Response object
|
|
|
|
|
// @router /get-user [get]
|
2020-10-20 23:14:03 +08:00
|
|
|
func (c *ApiController) GetUser() {
|
|
|
|
|
id := c.Input().Get("id")
|
2021-11-19 10:43:14 +08:00
|
|
|
owner := c.Input().Get("owner")
|
|
|
|
|
email := c.Input().Get("email")
|
|
|
|
|
|
|
|
|
|
var user *object.User
|
|
|
|
|
if email == "" {
|
|
|
|
|
user = object.GetUser(id)
|
|
|
|
|
} else {
|
|
|
|
|
user = object.GetUserByEmail(owner, email)
|
|
|
|
|
}
|
2020-10-20 23:14:03 +08:00
|
|
|
|
2021-11-19 10:43:14 +08:00
|
|
|
c.Data["json"] = object.GetMaskedUser(user)
|
2020-10-20 23:14:03 +08:00
|
|
|
c.ServeJSON()
|
|
|
|
|
}
|
|
|
|
|
|
2021-08-07 22:02:56 +08:00
|
|
|
// UpdateUser
|
2021-03-29 23:40:25 +08:00
|
|
|
// @Title UpdateUser
|
|
|
|
|
// @Description update user
|
|
|
|
|
// @Param id query string true "The id of the user"
|
|
|
|
|
// @Param body body object.User true "The details of the user"
|
|
|
|
|
// @Success 200 {object} controllers.Response The Response object
|
|
|
|
|
// @router /update-user [post]
|
2020-10-20 23:14:03 +08:00
|
|
|
func (c *ApiController) UpdateUser() {
|
|
|
|
|
id := c.Input().Get("id")
|
|
|
|
|
|
|
|
|
|
var user object.User
|
|
|
|
|
err := json.Unmarshal(c.Ctx.Input.RequestBody, &user)
|
|
|
|
|
if err != nil {
|
|
|
|
|
panic(err)
|
|
|
|
|
}
|
|
|
|
|
|
2021-05-16 21:52:50 +08:00
|
|
|
if user.DisplayName == "" {
|
|
|
|
|
c.ResponseError("Display name cannot be empty")
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2021-06-20 13:27:26 +08:00
|
|
|
affected := object.UpdateUser(id, &user)
|
|
|
|
|
if affected {
|
|
|
|
|
newUser := object.GetUser(user.GetId())
|
|
|
|
|
original.UpdateUserToOriginalDatabase(newUser)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
c.Data["json"] = wrapActionResponse(affected)
|
2020-10-20 23:14:03 +08:00
|
|
|
c.ServeJSON()
|
|
|
|
|
}
|
|
|
|
|
|
2021-08-07 22:02:56 +08:00
|
|
|
// AddUser
|
2021-03-29 23:40:25 +08:00
|
|
|
// @Title AddUser
|
|
|
|
|
// @Description add user
|
|
|
|
|
// @Param body body object.User true "The details of the user"
|
|
|
|
|
// @Success 200 {object} controllers.Response The Response object
|
|
|
|
|
// @router /add-user [post]
|
2020-10-20 23:14:03 +08:00
|
|
|
func (c *ApiController) AddUser() {
|
|
|
|
|
var user object.User
|
|
|
|
|
err := json.Unmarshal(c.Ctx.Input.RequestBody, &user)
|
|
|
|
|
if err != nil {
|
|
|
|
|
panic(err)
|
|
|
|
|
}
|
|
|
|
|
|
2021-03-28 00:48:34 +08:00
|
|
|
c.Data["json"] = wrapActionResponse(object.AddUser(&user))
|
2020-10-20 23:14:03 +08:00
|
|
|
c.ServeJSON()
|
|
|
|
|
}
|
|
|
|
|
|
2021-08-07 22:02:56 +08:00
|
|
|
// DeleteUser
|
2021-03-29 23:40:25 +08:00
|
|
|
// @Title DeleteUser
|
|
|
|
|
// @Description delete user
|
|
|
|
|
// @Param body body object.User true "The details of the user"
|
|
|
|
|
// @Success 200 {object} controllers.Response The Response object
|
|
|
|
|
// @router /delete-user [post]
|
2020-10-20 23:14:03 +08:00
|
|
|
func (c *ApiController) DeleteUser() {
|
|
|
|
|
var user object.User
|
|
|
|
|
err := json.Unmarshal(c.Ctx.Input.RequestBody, &user)
|
|
|
|
|
if err != nil {
|
|
|
|
|
panic(err)
|
|
|
|
|
}
|
|
|
|
|
|
2021-03-28 00:48:34 +08:00
|
|
|
c.Data["json"] = wrapActionResponse(object.DeleteUser(&user))
|
2020-10-20 23:14:03 +08:00
|
|
|
c.ServeJSON()
|
|
|
|
|
}
|
2021-05-09 19:54:20 +08:00
|
|
|
|
2021-08-07 22:02:56 +08:00
|
|
|
// GetEmailAndPhone
|
2021-06-02 13:39:01 +08:00
|
|
|
// @Title GetEmailAndPhone
|
|
|
|
|
// @Description get email and phone by username
|
|
|
|
|
// @Param username formData string true "The username of the user"
|
|
|
|
|
// @Param organization formData string true "The organization of the user"
|
|
|
|
|
// @Success 200 {object} controllers.Response The Response object
|
|
|
|
|
// @router /get-email-and-phone [post]
|
|
|
|
|
func (c *ApiController) GetEmailAndPhone() {
|
|
|
|
|
var form RequestForm
|
|
|
|
|
err := json.Unmarshal(c.Ctx.Input.RequestBody, &form)
|
|
|
|
|
if err != nil {
|
|
|
|
|
panic(err)
|
|
|
|
|
}
|
|
|
|
|
|
2021-06-07 19:12:51 +08:00
|
|
|
user := object.GetUserByFields(form.Organization, form.Username)
|
2021-06-02 13:39:01 +08:00
|
|
|
if user == nil {
|
|
|
|
|
c.ResponseError("No such user.")
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2021-06-07 19:12:51 +08:00
|
|
|
respUser := object.User{Email: user.Email, Phone: user.Phone, Name: user.Name}
|
|
|
|
|
var contentType string
|
|
|
|
|
switch form.Username {
|
|
|
|
|
case user.Email:
|
|
|
|
|
contentType = "email"
|
|
|
|
|
case user.Phone:
|
|
|
|
|
contentType = "phone"
|
|
|
|
|
case user.Name:
|
|
|
|
|
contentType = "username"
|
|
|
|
|
}
|
2021-06-02 13:39:01 +08:00
|
|
|
|
2021-08-08 16:00:19 +08:00
|
|
|
c.ResponseOk(respUser, contentType)
|
2021-06-02 13:39:01 +08:00
|
|
|
}
|
|
|
|
|
|
2021-08-07 22:02:56 +08:00
|
|
|
// SetPassword
|
2021-05-09 19:54:20 +08:00
|
|
|
// @Title SetPassword
|
|
|
|
|
// @Description set password
|
|
|
|
|
// @Param userOwner formData string true "The owner of the user"
|
|
|
|
|
// @Param userName formData string true "The name of the user"
|
|
|
|
|
// @Param oldPassword formData string true "The old password of the user"
|
|
|
|
|
// @Param newPassword formData string true "The new password of the user"
|
|
|
|
|
// @Success 200 {object} controllers.Response The Response object
|
|
|
|
|
// @router /set-password [post]
|
|
|
|
|
func (c *ApiController) SetPassword() {
|
|
|
|
|
userOwner := c.Ctx.Request.Form.Get("userOwner")
|
|
|
|
|
userName := c.Ctx.Request.Form.Get("userName")
|
|
|
|
|
oldPassword := c.Ctx.Request.Form.Get("oldPassword")
|
|
|
|
|
newPassword := c.Ctx.Request.Form.Get("newPassword")
|
|
|
|
|
|
2021-07-18 07:15:22 +08:00
|
|
|
requestUserId := c.GetSessionUsername()
|
2021-05-09 19:54:20 +08:00
|
|
|
if requestUserId == "" {
|
|
|
|
|
c.ResponseError("Please login first.")
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
requestUser := object.GetUser(requestUserId)
|
|
|
|
|
if requestUser == nil {
|
|
|
|
|
c.ResponseError("Session outdated. Please login again.")
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
userId := fmt.Sprintf("%s/%s", userOwner, userName)
|
|
|
|
|
targetUser := object.GetUser(userId)
|
|
|
|
|
if targetUser == nil {
|
|
|
|
|
c.ResponseError("Invalid user id.")
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
hasPermission := false
|
|
|
|
|
|
|
|
|
|
if requestUser.IsGlobalAdmin {
|
|
|
|
|
hasPermission = true
|
|
|
|
|
} else if requestUserId == userId {
|
|
|
|
|
hasPermission = true
|
|
|
|
|
} else if targetUser.Owner == requestUser.Owner && requestUser.IsAdmin {
|
|
|
|
|
hasPermission = true
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if !hasPermission {
|
|
|
|
|
c.ResponseError("You don't have the permission to do this.")
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2021-06-02 13:39:01 +08:00
|
|
|
if oldPassword != "" {
|
|
|
|
|
msg := object.CheckPassword(targetUser, oldPassword)
|
|
|
|
|
if msg != "" {
|
|
|
|
|
c.ResponseError(msg)
|
|
|
|
|
return
|
|
|
|
|
}
|
2021-05-09 19:54:20 +08:00
|
|
|
}
|
|
|
|
|
|
2021-08-07 22:02:56 +08:00
|
|
|
if strings.Contains(newPassword, " ") {
|
2021-05-16 21:52:50 +08:00
|
|
|
c.ResponseError("New password cannot contain blank space.")
|
2021-05-09 19:54:20 +08:00
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2021-05-16 21:52:50 +08:00
|
|
|
if len(newPassword) <= 5 {
|
|
|
|
|
c.ResponseError("New password must have at least 6 characters")
|
2021-05-09 19:54:20 +08:00
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-18 07:15:22 +08:00
|
|
|
c.SetSessionUsername("")
|
2021-06-02 13:39:01 +08:00
|
|
|
|
2021-05-09 19:54:20 +08:00
|
|
|
targetUser.Password = newPassword
|
|
|
|
|
object.SetUserField(targetUser, "password", targetUser.Password)
|
|
|
|
|
c.Data["json"] = Response{Status: "ok"}
|
|
|
|
|
c.ServeJSON()
|
|
|
|
|
}
|
2021-08-15 21:57:36 +08:00
|
|
|
|
|
|
|
|
func (c *ApiController) CheckUserPassword() {
|
|
|
|
|
var user object.User
|
|
|
|
|
err := json.Unmarshal(c.Ctx.Input.RequestBody, &user)
|
|
|
|
|
if err != nil {
|
|
|
|
|
panic(err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
_, msg := object.CheckUserPassword(user.Owner, user.Name, user.Password)
|
|
|
|
|
if msg == "" {
|
|
|
|
|
c.ResponseOk()
|
|
|
|
|
} else {
|
|
|
|
|
c.ResponseError(msg)
|
|
|
|
|
}
|
|
|
|
|
}
|
2021-11-19 10:43:14 +08:00
|
|
|
|
|
|
|
|
// GetSortedUsers
|
|
|
|
|
// @Title GetSortedUsers
|
|
|
|
|
// @Description
|
|
|
|
|
// @Param owner query string true "The owner of users"
|
|
|
|
|
// @Param sorter query string true "The DB column name to sort by, e.g., created_time"
|
|
|
|
|
// @Param limit query string true "The count of users to return, e.g., 25"
|
|
|
|
|
// @Success 200 {array} object.User The Response object
|
|
|
|
|
// @router /get-sorted-users [get]
|
|
|
|
|
func (c *ApiController) GetSortedUsers() {
|
|
|
|
|
owner := c.Input().Get("owner")
|
|
|
|
|
sorter := c.Input().Get("sorter")
|
|
|
|
|
limit := util.ParseInt(c.Input().Get("limit"))
|
|
|
|
|
|
|
|
|
|
c.Data["json"] = object.GetMaskedUsers(object.GetSortedUsers(owner, sorter, limit))
|
|
|
|
|
c.ServeJSON()
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// GetUserCount
|
|
|
|
|
// @Title GetUserCount
|
|
|
|
|
// @Description
|
|
|
|
|
// @Param owner query string true "The owner of users"
|
|
|
|
|
// @Param isOnline query string true "The filter for query, 1 for online, 0 for offline, empty string for all users"
|
|
|
|
|
// @Success 200 {int} int The count of filtered users for an organization
|
|
|
|
|
// @router /get-user-count [get]
|
|
|
|
|
func (c *ApiController) GetUserCount() {
|
|
|
|
|
owner := c.Input().Get("owner")
|
|
|
|
|
isOnline := c.Input().Get("isOnline")
|
|
|
|
|
|
|
|
|
|
count := 0
|
|
|
|
|
if isOnline == "" {
|
|
|
|
|
count = object.GetUserCount(owner)
|
|
|
|
|
} else {
|
|
|
|
|
count = object.GetOnlineUserCount(owner, util.ParseInt(isOnline))
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
c.Data["json"] = count
|
|
|
|
|
c.ServeJSON()
|
|
|
|
|
}
|
