Página inicial Explorar Ajuda
Entrar
golang
/
netmaker
mirror de https://github.com/gravitl/netmaker
2
0
Fork 0
Arquivos Issues 0 Wiki
Ver código fonte

user roles CRUD apis

abhishek9686 1 ano atrás
pai
f70e27b64f
commit
01c50b3457
2 arquivos alterados com 152 adições e 4 exclusões
Visão dividida Mostrar estatísticas do Diff
  1. 91 4
      controllers/user.go
  2. 61 0
      logic/user_mgmt.go

+ 91 - 4
controllers/user.go
Ver arquivo 

@@ -37,12 +37,16 @@ func userHandlers(r *mux.Router) {
 
 	r.HandleFunc("/api/users_pending/user/{username}", logic.SecurityCheck(true, http.HandlerFunc(deletePendingUser))).Methods(http.MethodDelete)
 
 	r.HandleFunc("/api/users_pending/user/{username}", logic.SecurityCheck(true, http.HandlerFunc(approvePendingUser))).Methods(http.MethodPost)
 
 
-	// User Mgmt handlers
 
-	r.HandleFunc("/api/v1/users/roles", logic.SecurityCheck(true, http.HandlerFunc(getUserRoles))).Methods(http.MethodGet)
 
+	// User Role handlers
 
+	r.HandleFunc("/api/v1/users/roles", logic.SecurityCheck(true, http.HandlerFunc(listRoles))).Methods(http.MethodGet)
 
+	r.HandleFunc("/api/v1/users/role", logic.SecurityCheck(true, http.HandlerFunc(createRole))).Methods(http.MethodPost)
 
+	r.HandleFunc("/api/v1/users/role", logic.SecurityCheck(true, http.HandlerFunc(updateRole))).Methods(http.MethodPut)
 
+	r.HandleFunc("/api/v1/users/role", logic.SecurityCheck(true, http.HandlerFunc(deleteRole))).Methods(http.MethodDelete)
 
 
+	// User Group Handlers
 
 }
 
 
-// swagger:route GET /api/v1/users/roles user getUserRoles
 
+// swagger:route GET /api/v1/users/roles user listRoles
 
 //
 
 // Get user role permission templates.
 
 //
 
@@ -53,7 +57,7 @@ func userHandlers(r *mux.Router) {
 
 //
 
 //			Responses:
 
 //				200: userBodyResponse
 
-func getUserRoles(w http.ResponseWriter, r *http.Request) {
 
+func listRoles(w http.ResponseWriter, r *http.Request) {
 
 	roles, err := logic.ListRoles()
 
 	if err != nil {
 
 		logic.ReturnErrorResponse(w, r, models.ErrorResponse{
 
@@ -65,6 +69,89 @@ func getUserRoles(w http.ResponseWriter, r *http.Request) {
 
 	logic.ReturnSuccessResponseWithJson(w, r, roles, "successfully fetched user roles permission templates")
 
 }
 
 
+// swagger:route POST /api/v1/users/role user createRole
 
+//
 
+// Create user role permission template.
 
+//
 
+//			Schemes: https
 
+//
 
+//			Security:
 
+//	  		oauth
 
+//
 
+//			Responses:
 
+//				200: userBodyResponse
 
+func createRole(w http.ResponseWriter, r *http.Request) {
 
+	var userRole models.UserRolePermissionTemplate
 
+	err := json.NewDecoder(r.Body).Decode(&userRole)
 
+	if err != nil {
 
+		slog.Error("error decoding request body", "error",
 
+			err.Error())
 
+		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "badrequest"))
 
+		return
 
+	}
 
+	err = logic.CreateRole(userRole)
 
+	if err != nil {
 
+		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "internal"))
 
+		return
 
+	}
 
+	logic.ReturnSuccessResponseWithJson(w, r, userRole, "created user role")
 
+}
 
+
 
+// swagger:route PUT /api/v1/users/role user updateRole
 
+//
 
+// Update user role permission template.
 
+//
 
+//			Schemes: https
 
+//
 
+//			Security:
 
+//	  		oauth
 
+//
 
+//			Responses:
 
+//				200: userBodyResponse
 
+func updateRole(w http.ResponseWriter, r *http.Request) {
 
+	var userRole models.UserRolePermissionTemplate
 
+	err := json.NewDecoder(r.Body).Decode(&userRole)
 
+	if err != nil {
 
+		slog.Error("error decoding request body", "error",
 
+			err.Error())
 
+		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "badrequest"))
 
+		return
 
+	}
 
+	err = logic.UpdateRole(userRole)
 
+	if err != nil {
 
+		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "internal"))
 
+		return
 
+	}
 
+	logic.ReturnSuccessResponseWithJson(w, r, userRole, "updated user role")
 
+}
 
+
 
+// swagger:route DELETE /api/v1/users/role user deleteRole
 
+//
 
+// Delete user role permission template.
 
+//
 
+//			Schemes: https
 
+//
 
+//			Security:
 
+//	  		oauth
 
+//
 
+//			Responses:
 
+//				200: userBodyResponse
 
+func deleteRole(w http.ResponseWriter, r *http.Request) {
 
+	var userRole models.UserRolePermissionTemplate
 
+	var params = mux.Vars(r)
 
+	rid := params["role_id"]
 
+	if rid == "" {
 
+		logic.ReturnErrorResponse(w, r, logic.FormatError(errors.New("role is required"), "badrequest"))
 
+		return
 
+	}
 
+	err := logic.DeleteRole(models.UserRole(rid))
 
+	if err != nil {
 
+		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "internal"))
 
+		return
 
+	}
 
+	logic.ReturnSuccessResponseWithJson(w, r, userRole, "created user role")
 
+}
 
+
 
 // swagger:route POST /api/users/adm/authenticate authenticate authenticateUser
 
 //
 
 // User authenticates using its password and retrieves a JWT for authorization.

+ 61 - 0
logic/user_mgmt.go
Ver arquivo 

@@ -2,6 +2,7 @@ package logic
 
 
 import (
 
 	"encoding/json"
 
+	"errors"
 
 
 	"github.com/gravitl/netmaker/database"
 
 	"github.com/gravitl/netmaker/models"
 
@@ -68,3 +69,63 @@ func ListRoles() ([]models.UserRolePermissionTemplate, error) {
 
 	}
 
 	return userRoles, nil
 
 }
 
+
 
+// CreateRole - inserts new role into DB
 
+func CreateRole(r models.UserRolePermissionTemplate) error {
 
+	// check if role already exists
 
+	_, err := database.FetchRecord(database.USER_PERMISSIONS_TABLE_NAME, r.ID.String())
 
+	if err == nil {
 
+		return errors.New("role already exists")
 
+	}
 
+	d, err := json.Marshal(r)
 
+	if err != nil {
 
+		return err
 
+	}
 
+	return database.Insert(r.ID.String(), string(d), database.USER_PERMISSIONS_TABLE_NAME)
 
+}
 
+
 
+// GetRole - fetches role template by id
 
+func GetRole(roleID string) (models.UserRolePermissionTemplate, error) {
 
+	// check if role already exists
 
+	data, err := database.FetchRecord(database.USER_PERMISSIONS_TABLE_NAME, roleID)
 
+	if err != nil {
 
+		return models.UserRolePermissionTemplate{}, errors.New("role already exists")
 
+	}
 
+	ur := models.UserRolePermissionTemplate{}
 
+	err = json.Unmarshal([]byte(data), &ur)
 
+	if err != nil {
 
+		return ur, err
 
+	}
 
+	return ur, nil
 
+}
 
+
 
+// UpdateRole - updates role template
 
+func UpdateRole(r models.UserRolePermissionTemplate) error {
 
+	_, err := database.FetchRecord(database.USER_PERMISSIONS_TABLE_NAME, r.ID.String())
 
+	if err != nil {
 
+		return err
 
+	}
 
+	d, err := json.Marshal(r)
 
+	if err != nil {
 
+		return err
 
+	}
 
+	return database.Insert(r.ID.String(), string(d), database.USER_PERMISSIONS_TABLE_NAME)
 
+}
 
+
 
+// DeleteRole - deletes user role
 
+func DeleteRole(rid models.UserRole) error {
 
+	users, err := GetUsersDB()
 
+	if err != nil {
 
+		return err
 
+	}
 
+	for _, user := range users {
 
+		if user.GroupID != "" {
 
+			// TODO - get permission template  of the group
 
+			continue
 
+		}
 
+		if user.PermissionTemplate.ID == rid {
 
+			errors.New("active roles cannot be deleted.switch existing users to a new role before deleting")
 
+		}
 
+	}
 
+	return database.DeleteRecord(database.USER_PERMISSIONS_TABLE_NAME, rid.String())
 
+}