vor 1 Jahr · 7ea0264943
--- a/pro/controllers/users.go
+++ b/pro/controllers/users.go
@@ -467,11 +467,17 @@ func deleteUserGroup(w http.ResponseWriter, r *http.Request) {
 
				 		logic.ReturnErrorResponse(w, r, logic.FormatError(errors.New("role is required"), "badrequest"))
			
 
				 		return
			
 
				 	}
			
 
				-	err := proLogic.DeleteUserGroup(models.UserGroupID(gid))
			
 
				+	userG, err := proLogic.GetUserGroup(models.UserGroupID(gid))
			
 
				+	if err != nil {
			
 
				+		logic.ReturnErrorResponse(w, r, logic.FormatError(errors.New("role is required"), "badrequest"))
			
 
				+		return
			
 
				+	}
			
 
				+	err = proLogic.DeleteUserGroup(models.UserGroupID(gid))
			
 
				 	if err != nil {
			
 
				 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "internal"))
			
 
				 		return
			
 
				 	}
			
 
				+	go proLogic.UpdatesUserGwAccessOnGrpUpdates(userG.NetworkRoles, make(map[models.NetworkID]map[models.UserRoleID]struct{}))
			
 
				 	logic.ReturnSuccessResponseWithJson(w, r, nil, "deleted user group")
			
 
				 }
			
 
				 
			
@@ -603,11 +609,17 @@ func deleteRole(w http.ResponseWriter, r *http.Request) {
 
				 		logic.ReturnErrorResponse(w, r, logic.FormatError(errors.New("role is required"), "badrequest"))
			
 
				 		return
			
 
				 	}
			
 
				-	err := proLogic.DeleteRole(models.UserRoleID(rid), false)
			
 
				+	role, err := logic.GetRole(models.UserRoleID(rid))
			
 
				+	if err != nil {
			
 
				+		logic.ReturnErrorResponse(w, r, logic.FormatError(errors.New("role is required"), "badrequest"))
			
 
				+		return
			
 
				+	}
			
 
				+	err = proLogic.DeleteRole(models.UserRoleID(rid), false)
			
 
				 	if err != nil {
			
 
				 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "internal"))
			
 
				 		return
			
 
				 	}
			
 
				+	go proLogic.UpdatesUserGwAccessOnRoleUpdates(role.NetworkLevelAccess, make(map[models.RsrcType]map[models.RsrcID]models.RsrcPermissionScope), role.NetworkID.String())
			
 
				 	logic.ReturnSuccessResponseWithJson(w, r, nil, "deleted user role")
			
 
				 }
			
 
				 
			
--- a/pro/logic/user_mgmt.go
+++ b/pro/logic/user_mgmt.go
@@ -354,8 +354,19 @@ func DeleteRole(rid models.UserRoleID, force bool) error {
 
				 	if err != nil {
			
 
				 		return err
			
 
				 	}
			
 
				-	if !force && role.Default {
			
 
				-		return errors.New("cannot delete default role")
			
 
				+	if role.NetworkID == "" {
			
 
				+		return errors.New("cannot delete platform role")
			
 
				+	}
			
 
				+	// allow deletion of default network roles if network doesn't exist
			
 
				+	if role.NetworkID == models.AllNetworks {
			
 
				+		return errors.New("cannot delete default network role")
			
 
				+	}
			
 
				+	// check if network exists
			
 
				+	exists, _ := logic.NetworkExists(role.NetworkID.String())
			
 
				+	if role.Default {
			
 
				+		if exists && !force {
			
 
				+			return errors.New("cannot delete default role")
			
 
				+		}
			
 
				 	}
			
 
				 	for _, user := range users {
			
 
				 		for userG := range user.UserGroups {
			
@@ -390,6 +401,7 @@ func DeleteRole(rid models.UserRoleID, force bool) error {
 
				 			}
			
 
				 		}
			
 
				 	}
			
 
				+
			
 
				 	return database.DeleteRecord(database.USER_PERMISSIONS_TABLE_NAME, rid.String())
			
 
				 }