// Copyright 2021 The Casdoor Authors. All Rights Reserved. // // Licensed under the Apache License, Version 2.0 (the "License"); // you may not use this file except in compliance with the License. // You may obtain a copy of the License at // // http://www.apache.org/licenses/LICENSE-2.0 // // Unless required by applicable law or agreed to in writing, software // distributed under the License is distributed on an "AS IS" BASIS, // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. // See the License for the specific language governing permissions and // limitations under the License. package controllers import ( "encoding/json" "github.com/beego/beego/utils/pagination" "github.com/casdoor/casdoor/object" "github.com/casdoor/casdoor/util" ) // GetProviders // @Title GetProviders // @Tag Provider API // @Description get providers // @Param owner query string true "The owner of providers" // @Success 200 {array} object.Provider The Response object // @router /get-providers [get] func (c *ApiController) GetProviders() { owner := c.Input().Get("owner") limit := c.Input().Get("pageSize") page := c.Input().Get("p") field := c.Input().Get("field") value := c.Input().Get("value") sortField := c.Input().Get("sortField") sortOrder := c.Input().Get("sortOrder") ok, isMaskEnabled := c.IsMaskedEnabled() if !ok { return } if limit == "" || page == "" { providers, err := object.GetProviders(owner) if err != nil { c.ResponseError(err.Error()) return } c.ResponseOk(object.GetMaskedProviders(providers, isMaskEnabled)) } else { limit := util.ParseInt(limit) count, err := object.GetProviderCount(owner, field, value) if err != nil { c.ResponseError(err.Error()) return } paginator := pagination.SetPaginator(c.Ctx, limit, count) paginationProviders, err := object.GetPaginationProviders(owner, paginator.Offset(), limit, field, value, sortField, sortOrder) if err != nil { c.ResponseError(err.Error()) return } providers := object.GetMaskedProviders(paginationProviders, isMaskEnabled) c.ResponseOk(providers, paginator.Nums()) } } // GetGlobalProviders // @Title GetGlobalProviders // @Tag Provider API // @Description get Global providers // @Success 200 {array} object.Provider The Response object // @router /get-global-providers [get] func (c *ApiController) GetGlobalProviders() { limit := c.Input().Get("pageSize") page := c.Input().Get("p") field := c.Input().Get("field") value := c.Input().Get("value") sortField := c.Input().Get("sortField") sortOrder := c.Input().Get("sortOrder") ok, isMaskEnabled := c.IsMaskedEnabled() if !ok { return } if limit == "" || page == "" { globalProviders, err := object.GetGlobalProviders() if err != nil { c.ResponseError(err.Error()) return } c.ResponseOk(object.GetMaskedProviders(globalProviders, isMaskEnabled)) } else { limit := util.ParseInt(limit) count, err := object.GetGlobalProviderCount(field, value) if err != nil { c.ResponseError(err.Error()) return } paginator := pagination.SetPaginator(c.Ctx, limit, count) paginationGlobalProviders, err := object.GetPaginationGlobalProviders(paginator.Offset(), limit, field, value, sortField, sortOrder) if err != nil { c.ResponseError(err.Error()) return } providers := object.GetMaskedProviders(paginationGlobalProviders, isMaskEnabled) c.ResponseOk(providers, paginator.Nums()) } } // GetProvider // @Title GetProvider // @Tag Provider API // @Description get provider // @Param id query string true "The id ( owner/name ) of the provider" // @Success 200 {object} object.Provider The Response object // @router /get-provider [get] func (c *ApiController) GetProvider() { id := c.Input().Get("id") ok, isMaskEnabled := c.IsMaskedEnabled() if !ok { return } provider, err := object.GetProvider(id) if err != nil { c.ResponseError(err.Error()) return } c.ResponseOk(object.GetMaskedProvider(provider, isMaskEnabled)) } func (c *ApiController) requireProviderPermission(provider *object.Provider) bool { isGlobalAdmin, user := c.isGlobalAdmin() if isGlobalAdmin { return true } if provider.Owner == "admin" || user.Owner != provider.Owner { c.ResponseError(c.T("auth:Unauthorized operation")) return false } return true } // UpdateProvider // @Title UpdateProvider // @Tag Provider API // @Description update provider // @Param id query string true "The id ( owner/name ) of the provider" // @Param body body object.Provider true "The details of the provider" // @Success 200 {object} controllers.Response The Response object // @router /update-provider [post] func (c *ApiController) UpdateProvider() { id := c.Input().Get("id") var provider object.Provider err := json.Unmarshal(c.Ctx.Input.RequestBody, &provider) if err != nil { c.ResponseError(err.Error()) return } ok := c.requireProviderPermission(&provider) if !ok { return } c.Data["json"] = wrapActionResponse(object.UpdateProvider(id, &provider)) c.ServeJSON() } // AddProvider // @Title AddProvider // @Tag Provider API // @Description add provider // @Param body body object.Provider true "The details of the provider" // @Success 200 {object} controllers.Response The Response object // @router /add-provider [post] func (c *ApiController) AddProvider() { var provider object.Provider err := json.Unmarshal(c.Ctx.Input.RequestBody, &provider) if err != nil { c.ResponseError(err.Error()) return } count, err := object.GetProviderCount("", "", "") if err != nil { c.ResponseError(err.Error()) return } err = checkQuotaForProvider(int(count)) if err != nil { c.ResponseError(err.Error()) return } ok := c.requireProviderPermission(&provider) if !ok { return } c.Data["json"] = wrapActionResponse(object.AddProvider(&provider)) c.ServeJSON() } // DeleteProvider // @Title DeleteProvider // @Tag Provider API // @Description delete provider // @Param body body object.Provider true "The details of the provider" // @Success 200 {object} controllers.Response The Response object // @router /delete-provider [post] func (c *ApiController) DeleteProvider() { var provider object.Provider err := json.Unmarshal(c.Ctx.Input.RequestBody, &provider) if err != nil { c.ResponseError(err.Error()) return } ok := c.requireProviderPermission(&provider) if !ok { return } c.Data["json"] = wrapActionResponse(object.DeleteProvider(&provider)) c.ServeJSON() }