Gitiles
Code Review Sign In
korap.ids-mannheim.de / KorAP / Kustvakt / 136ff59cad9d06376a7610a15c2a4003a304e855 / . / full / src / main / java / de / ids_mannheim / korap / web / controller / UserGroupController.java
blob: 415d98dcef57003cfbe20cbd0c92df492cbea6ae [file] [log] [blame]
margaretha0b63de42017-12-20 18:48:09 +0100[diff] [blame]1package de.ids_mannheim.korap.web.controller;
2
3import java.util.List;
4
margaretha9d3eb042017-12-22 11:02:30 +0100[diff] [blame]5import javax.ws.rs.Consumes;
margaretha45667922018-01-25 21:23:03 +0100[diff] [blame]6import javax.ws.rs.DELETE;
margaretha9d3eb042017-12-22 11:02:30 +0100[diff] [blame]7import javax.ws.rs.FormParam;
margaretha0b63de42017-12-20 18:48:09 +0100[diff] [blame]8import javax.ws.rs.GET;
margaretha9d3eb042017-12-22 11:02:30 +0100[diff] [blame]9import javax.ws.rs.POST;
margarethaca7cff82019-11-12 12:06:37 +0100[diff] [blame]10import javax.ws.rs.PUT;
margaretha0b63de42017-12-20 18:48:09 +0100[diff] [blame]11import javax.ws.rs.Path;
margaretha44573832018-03-21 16:59:59 +0100[diff] [blame]12import javax.ws.rs.PathParam;
margaretha0b63de42017-12-20 18:48:09 +0100[diff] [blame]13import javax.ws.rs.Produces;
margaretha45667922018-01-25 21:23:03 +0100[diff] [blame]14import javax.ws.rs.QueryParam;
margaretha0b63de42017-12-20 18:48:09 +0100[diff] [blame]15import javax.ws.rs.core.Context;
16import javax.ws.rs.core.MediaType;
17import javax.ws.rs.core.Response;
18import javax.ws.rs.core.SecurityContext;
19
margarethaca7cff82019-11-12 12:06:37 +0100[diff] [blame]20import org.apache.http.HttpStatus;
margaretha0b63de42017-12-20 18:48:09 +0100[diff] [blame]21import org.springframework.beans.factory.annotation.Autowired;
22import org.springframework.stereotype.Controller;
23
24import com.sun.jersey.spi.container.ResourceFilters;
25
margaretha2df06602018-11-14 19:10:30 +0100[diff] [blame]26import de.ids_mannheim.korap.constant.OAuth2Scope;
margaretha293ee032018-03-20 20:11:52 +0100[diff] [blame]27import de.ids_mannheim.korap.constant.UserGroupStatus;
margaretha0b63de42017-12-20 18:48:09 +0100[diff] [blame]28import de.ids_mannheim.korap.dto.UserGroupDto;
29import de.ids_mannheim.korap.exceptions.KustvaktException;
margaretha835178d2018-08-15 19:04:03 +0200[diff] [blame]30import de.ids_mannheim.korap.oauth2.service.OAuth2ScopeService;
margaretha0e8f4e72018-04-05 14:11:52 +0200[diff] [blame]31import de.ids_mannheim.korap.security.context.TokenContext;
margaretha0b63de42017-12-20 18:48:09 +0100[diff] [blame]32import de.ids_mannheim.korap.service.UserGroupService;
margarethaf7abb362018-09-18 20:09:37 +0200[diff] [blame]33import de.ids_mannheim.korap.web.KustvaktResponseHandler;
margaretha398f4722019-01-09 19:07:20 +0100[diff] [blame]34import de.ids_mannheim.korap.web.filter.APIVersionFilter;
margaretha0b63de42017-12-20 18:48:09 +0100[diff] [blame]35import de.ids_mannheim.korap.web.filter.AuthenticationFilter;
margaretha23aae222017-12-22 15:08:23 +0100[diff] [blame]36import de.ids_mannheim.korap.web.filter.BlockingFilter;
margaretha0b63de42017-12-20 18:48:09 +0100[diff] [blame]37import de.ids_mannheim.korap.web.filter.PiwikFilter;
38
margaretha45667922018-01-25 21:23:03 +0100[diff] [blame]39/**
40 * UserGroupController defines web APIs related to user groups,
41 * such as creating a user group, listing groups of a user,
42 * adding members to a group and subscribing (confirming an
43 * invitation) to a group.
44 *
margaretha20f31232018-07-09 17:49:39 +0200[diff] [blame]45 * These APIs are only available to logged-in users and not available
46 * via third-party apps.
margaretha45667922018-01-25 21:23:03 +0100[diff] [blame]47 *
margarethaa0d4d3c2018-01-02 12:06:11 +0100[diff] [blame]48 * @author margaretha
49 *
50 */
margaretha0b63de42017-12-20 18:48:09 +0100[diff] [blame]51@Controller
margarethaee0cbfe2018-08-28 17:47:14 +0200[diff] [blame]52@Path("{version}/group")
53@ResourceFilters({ APIVersionFilter.class, AuthenticationFilter.class,
54 BlockingFilter.class, PiwikFilter.class })
margaretha0b63de42017-12-20 18:48:09 +0100[diff] [blame]55public class UserGroupController {
56
margaretha0b63de42017-12-20 18:48:09 +0100[diff] [blame]57 @Autowired
margarethada3c7852018-06-14 20:35:11 +0200[diff] [blame]58 private KustvaktResponseHandler kustvaktResponseHandler;
margaretha0b63de42017-12-20 18:48:09 +0100[diff] [blame]59 @Autowired
60 private UserGroupService service;
margaretha835178d2018-08-15 19:04:03 +0200[diff] [blame]61 @Autowired
62 private OAuth2ScopeService scopeService;
margaretha9d3eb042017-12-22 11:02:30 +0100[diff] [blame]63
margaretha20f31232018-07-09 17:49:39 +0200[diff] [blame]64 /**
65 * Returns all user-groups in which a user is an active or a
66 * pending member.
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]67 *
margarethaca7cff82019-11-12 12:06:37 +0100[diff] [blame]68 * Not suitable for system-admin, instead use
69 * {@link UserGroupController#
margaretha20f31232018-07-09 17:49:39 +0200[diff] [blame]70 * getUserGroupBySystemAdmin(SecurityContext, String, UserGroupStatus)}
margarethae6c711b2018-02-06 21:55:04 +0100[diff] [blame]71 *
72 * @param securityContext
73 * @return a list of user-groups
margaretha293ee032018-03-20 20:11:52 +0100[diff] [blame]74 *
margarethae6c711b2018-02-06 21:55:04 +0100[diff] [blame]75 */
margaretha0b63de42017-12-20 18:48:09 +0100[diff] [blame]76 @GET
margaretha0e8f4e72018-04-05 14:11:52 +0200[diff] [blame]77 @Produces(MediaType.APPLICATION_JSON + ";charset=utf-8")
margarethaca7cff82019-11-12 12:06:37 +0100[diff] [blame]78 public List<UserGroupDto> listUserGroups (
margaretha0e8f4e72018-04-05 14:11:52 +0200[diff] [blame]79 @Context SecurityContext securityContext) {
margaretha0b63de42017-12-20 18:48:09 +0100[diff] [blame]80 TokenContext context =
81 (TokenContext) securityContext.getUserPrincipal();
82 try {
margaretha835178d2018-08-15 19:04:03 +0200[diff] [blame]83 scopeService.verifyScope(context, OAuth2Scope.USER_GROUP_INFO);
margaretha3ccaeb72019-02-28 18:40:22 +0100[diff] [blame]84 return service.retrieveUserGroupDto(context.getUsername());
margaretha0b63de42017-12-20 18:48:09 +0100[diff] [blame]85 }
86 catch (KustvaktException e) {
margarethada3c7852018-06-14 20:35:11 +0200[diff] [blame]87 throw kustvaktResponseHandler.throwit(e);
margaretha0b63de42017-12-20 18:48:09 +0100[diff] [blame]88 }
margaretha0b63de42017-12-20 18:48:09 +0100[diff] [blame]89 }
margaretha9d3eb042017-12-22 11:02:30 +0100[diff] [blame]90
margaretha20f31232018-07-09 17:49:39 +0200[diff] [blame]91 /**
margarethaca7cff82019-11-12 12:06:37 +0100[diff] [blame]92 * Lists user-groups for system-admin purposes. If username is
93 * specified, lists user-groups of the given user, otherwise list
94 * user-groups of all users. If status specified, list only
95 * user-groups with the given status, otherwise list user-groups
96 * regardless of their status.
margaretha293ee032018-03-20 20:11:52 +0100[diff] [blame]97 *
98 * @param securityContext
margaretha20f31232018-07-09 17:49:39 +0200[diff] [blame]99 * @param username
margarethaca7cff82019-11-12 12:06:37 +0100[diff] [blame]100 * a username
margaretha20f31232018-07-09 17:49:39 +0200[diff] [blame]101 * @param status
102 * {@link UserGroupStatus}
margaretha293ee032018-03-20 20:11:52 +0100[diff] [blame]103 * @return a list of user-groups
104 */
105 @GET
106 @Path("list/system-admin")
margaretha0e8f4e72018-04-05 14:11:52 +0200[diff] [blame]107 @Produces(MediaType.APPLICATION_JSON + ";charset=utf-8")
108 public List<UserGroupDto> getUserGroupBySystemAdmin (
margaretha293ee032018-03-20 20:11:52 +0100[diff] [blame]109 @Context SecurityContext securityContext,
110 @QueryParam("username") String username,
111 @QueryParam("status") UserGroupStatus status) {
112 TokenContext context =
113 (TokenContext) securityContext.getUserPrincipal();
114 try {
margaretha835178d2018-08-15 19:04:03 +0200[diff] [blame]115 scopeService.verifyScope(context, OAuth2Scope.ADMIN);
margaretha0e8f4e72018-04-05 14:11:52 +0200[diff] [blame]116 return service.retrieveUserGroupByStatus(username,
117 context.getUsername(), status);
margaretha293ee032018-03-20 20:11:52 +0100[diff] [blame]118 }
119 catch (KustvaktException e) {
margarethada3c7852018-06-14 20:35:11 +0200[diff] [blame]120 throw kustvaktResponseHandler.throwit(e);
margaretha293ee032018-03-20 20:11:52 +0100[diff] [blame]121 }
122 }
margaretha9d3eb042017-12-22 11:02:30 +0100[diff] [blame]123
margaretha20f31232018-07-09 17:49:39 +0200[diff] [blame]124 /**
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]125 * Retrieves a specific user-group. Only system admins are
126 * allowed.
margaretha44573832018-03-21 16:59:59 +0100[diff] [blame]127 *
128 * @param securityContext
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]129 * @param groupName
130 * group name
margaretha44573832018-03-21 16:59:59 +0100[diff] [blame]131 * @return a user-group
132 */
133 @GET
margaretha03b195a2019-11-12 14:57:15 +0100[diff] [blame]134 @Path("@{groupName}")
margaretha0e8f4e72018-04-05 14:11:52 +0200[diff] [blame]135 @Produces(MediaType.APPLICATION_JSON + ";charset=utf-8")
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]136 public UserGroupDto retrieveUserGroup (
margaretha0e8f4e72018-04-05 14:11:52 +0200[diff] [blame]137 @Context SecurityContext securityContext,
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]138 @PathParam("groupName") String groupName) {
margaretha44573832018-03-21 16:59:59 +0100[diff] [blame]139 TokenContext context =
140 (TokenContext) securityContext.getUserPrincipal();
141 try {
margaretha835178d2018-08-15 19:04:03 +0200[diff] [blame]142 scopeService.verifyScope(context, OAuth2Scope.ADMIN);
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]143 return service.searchByName(context.getUsername(), groupName);
margaretha44573832018-03-21 16:59:59 +0100[diff] [blame]144 }
145 catch (KustvaktException e) {
margarethada3c7852018-06-14 20:35:11 +0200[diff] [blame]146 throw kustvaktResponseHandler.throwit(e);
margaretha44573832018-03-21 16:59:59 +0100[diff] [blame]147 }
margaretha0e8f4e72018-04-05 14:11:52 +0200[diff] [blame]148
margaretha44573832018-03-21 16:59:59 +0100[diff] [blame]149 }
margaretha18533fd2018-03-28 16:01:06 +0200[diff] [blame]150
margaretha20f31232018-07-09 17:49:39 +0200[diff] [blame]151 /**
margarethad8aa1352019-12-19 11:04:41 +0100[diff] [blame]152 * Creates a user group with the group owner as the only group
153 * member. The group owner is the authenticated user in the token
154 * context.
margaretha9d3eb042017-12-22 11:02:30 +0100[diff] [blame]155 *
156 * @param securityContext
margarethad8aa1352019-12-19 11:04:41 +0100[diff] [blame]157 * @param groupName the name of the group
margarethaca7cff82019-11-12 12:06:37 +0100[diff] [blame]158 * @return if a new group created, HTTP response status 201
159 * Created, otherwise 204 No Content.
margaretha9d3eb042017-12-22 11:02:30 +0100[diff] [blame]160 */
margarethaca7cff82019-11-12 12:06:37 +0100[diff] [blame]161 @PUT
margaretha03b195a2019-11-12 14:57:15 +0100[diff] [blame]162 @Path("@{groupName}")
margarethaca7cff82019-11-12 12:06:37 +0100[diff] [blame]163 @Consumes(MediaType.APPLICATION_FORM_URLENCODED)
margarethad8aa1352019-12-19 11:04:41 +0100[diff] [blame]164 public Response createUpdateUserGroup (@Context SecurityContext securityContext,
margarethaca7cff82019-11-12 12:06:37 +0100[diff] [blame]165 @PathParam("groupName") String groupName,
margarethad8aa1352019-12-19 11:04:41 +0100[diff] [blame]166 @FormParam("description") String description) {
margaretha9d3eb042017-12-22 11:02:30 +0100[diff] [blame]167 TokenContext context =
168 (TokenContext) securityContext.getUserPrincipal();
169 try {
margaretha835178d2018-08-15 19:04:03 +0200[diff] [blame]170 scopeService.verifyScope(context, OAuth2Scope.CREATE_USER_GROUP);
margarethad8aa1352019-12-19 11:04:41 +0100[diff] [blame]171 boolean groupExists = service.createUpdateUserGroup(groupName,
172 description, context.getUsername());
margarethaca7cff82019-11-12 12:06:37 +0100[diff] [blame]173 if (groupExists) {
174 return Response.noContent().build();
175 }
176 else {
177 return Response.status(HttpStatus.SC_CREATED).build();
178 }
margaretha9d3eb042017-12-22 11:02:30 +0100[diff] [blame]179 }
180 catch (KustvaktException e) {
margarethada3c7852018-06-14 20:35:11 +0200[diff] [blame]181 throw kustvaktResponseHandler.throwit(e);
margaretha9d3eb042017-12-22 11:02:30 +0100[diff] [blame]182 }
margaretha9d3eb042017-12-22 11:02:30 +0100[diff] [blame]183 }
184
margaretha20f31232018-07-09 17:49:39 +0200[diff] [blame]185 /**
margarethaca7cff82019-11-12 12:06:37 +0100[diff] [blame]186 * Deletes a user-group specified by the group name. Only group
margaretha835178d2018-08-15 19:04:03 +0200[diff] [blame]187 * owner and system admins can delete groups.
margaretha2c019fa2018-02-01 19:50:51 +0100[diff] [blame]188 *
189 * @param securityContext
margarethaca7cff82019-11-12 12:06:37 +0100[diff] [blame]190 * @param groupName
191 * the name of the group to delete
margaretha2c019fa2018-02-01 19:50:51 +0100[diff] [blame]192 * @return HTTP 200, if successful.
193 */
margaretha45667922018-01-25 21:23:03 +0100[diff] [blame]194 @DELETE
margaretha03b195a2019-11-12 14:57:15 +0100[diff] [blame]195 @Path("@{groupName}")
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]196 public Response deleteUserGroup (@Context SecurityContext securityContext,
margaretha39cec602019-02-05 19:48:49 +0100[diff] [blame]197 @PathParam("groupName") String groupName) {
198 TokenContext context =
199 (TokenContext) securityContext.getUserPrincipal();
200 try {
201 scopeService.verifyScope(context, OAuth2Scope.DELETE_USER_GROUP);
202 service.deleteGroup(groupName, context.getUsername());
203 return Response.ok().build();
204 }
205 catch (KustvaktException e) {
206 throw kustvaktResponseHandler.throwit(e);
207 }
208 }
margarethae6c711b2018-02-06 21:55:04 +0100[diff] [blame]209
margaretha20f31232018-07-09 17:49:39 +0200[diff] [blame]210 /**
margarethaca7cff82019-11-12 12:06:37 +0100[diff] [blame]211 * Removes a user-group member. Group owner cannot be removed.
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]212 * Only group admins, system admins and the member himself can
margarethaca7cff82019-11-12 12:06:37 +0100[diff] [blame]213 * remove a member.
margaretha45667922018-01-25 21:23:03 +0100[diff] [blame]214 *
215 * @param securityContext
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]216 * @param memberUsername
margaretha20f31232018-07-09 17:49:39 +0200[diff] [blame]217 * a username of a group member
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]218 * @param groupName
219 * a group name
margaretha45667922018-01-25 21:23:03 +0100[diff] [blame]220 * @return if successful, HTTP response status OK
221 */
222 @DELETE
margaretha03b195a2019-11-12 14:57:15 +0100[diff] [blame]223 @Path("@{groupName}/~{memberUsername}")
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]224 public Response removeUserFromGroup (
margaretha45667922018-01-25 21:23:03 +0100[diff] [blame]225 @Context SecurityContext securityContext,
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]226 @PathParam("memberUsername") String memberUsername,
227 @PathParam("groupName") String groupName) {
margaretha45667922018-01-25 21:23:03 +0100[diff] [blame]228 TokenContext context =
229 (TokenContext) securityContext.getUserPrincipal();
230 try {
margarethaee0cbfe2018-08-28 17:47:14 +0200[diff] [blame]231 scopeService.verifyScope(context,
232 OAuth2Scope.DELETE_USER_GROUP_MEMBER);
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]233 service.deleteGroupMember(memberUsername, groupName,
234 context.getUsername());
margaretha45667922018-01-25 21:23:03 +0100[diff] [blame]235 return Response.ok().build();
236 }
237 catch (KustvaktException e) {
margarethada3c7852018-06-14 20:35:11 +0200[diff] [blame]238 throw kustvaktResponseHandler.throwit(e);
margaretha45667922018-01-25 21:23:03 +0100[diff] [blame]239 }
240 }
241
margaretha20f31232018-07-09 17:49:39 +0200[diff] [blame]242 /**
margarethaca7cff82019-11-12 12:06:37 +0100[diff] [blame]243 * Invites users to join a user-group specified by the
margarethad8aa1352019-12-19 11:04:41 +0100[diff] [blame]244 * groupName. Only user-group admins and system admins are
245 * allowed to use this service.
246 *
247 * The invited users are added as group members with status
248 * GroupMemberStatus.PENDING.
249 *
250 * If a user accepts the invitation by using the service:
251 * {@link UserGroupController#subscribeToGroup(SecurityContext, String)},
252 * his GroupMemberStatus will be updated to
253 * GroupMemberStatus.ACTIVE.
254 *
255 * If a user rejects the invitation by using the service:
256 * {@link UserGroupController#unsubscribeFromGroup(SecurityContext, String)},
257 * his GroupMemberStatus will be updated to
258 * GroupMemberStatus.DELETED.
margaretha31a9f522018-04-03 20:40:45 +0200[diff] [blame]259 *
margaretha18533fd2018-03-28 16:01:06 +0200[diff] [blame]260 * @param securityContext
margarethaca7cff82019-11-12 12:06:37 +0100[diff] [blame]261 * @param members
262 * usernames separated by comma
margaretha18533fd2018-03-28 16:01:06 +0200[diff] [blame]263 * @return if successful, HTTP response status OK
264 */
margarethab874ef52018-01-23 20:26:31 +0100[diff] [blame]265 @POST
margaretha03b195a2019-11-12 14:57:15 +0100[diff] [blame]266 @Path("@{groupName}/invite")
margarethaca7cff82019-11-12 12:06:37 +0100[diff] [blame]267 @Consumes(MediaType.APPLICATION_FORM_URLENCODED)
margaretha4edc70e2018-03-14 22:34:29 +0100[diff] [blame]268 public Response inviteGroupMembers (
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]269 @Context SecurityContext securityContext,
270 @PathParam("groupName") String groupName,
margarethaca7cff82019-11-12 12:06:37 +0100[diff] [blame]271 @FormParam("members") String members) {
margarethab874ef52018-01-23 20:26:31 +0100[diff] [blame]272 TokenContext context =
273 (TokenContext) securityContext.getUserPrincipal();
274 try {
margarethaee0cbfe2018-08-28 17:47:14 +0200[diff] [blame]275 scopeService.verifyScope(context,
276 OAuth2Scope.ADD_USER_GROUP_MEMBER);
margarethaca7cff82019-11-12 12:06:37 +0100[diff] [blame]277 service.inviteGroupMembers(groupName, members,
278 context.getUsername());
margarethac9f40e22019-08-07 17:32:19 +0200[diff] [blame]279 return Response.ok("SUCCESS").build();
margarethab874ef52018-01-23 20:26:31 +0100[diff] [blame]280 }
281 catch (KustvaktException e) {
margarethada3c7852018-06-14 20:35:11 +0200[diff] [blame]282 throw kustvaktResponseHandler.throwit(e);
margarethab874ef52018-01-23 20:26:31 +0100[diff] [blame]283 }
284 }
margaretha9d3eb042017-12-22 11:02:30 +0100[diff] [blame]285
margarethada5a6ab2019-11-08 10:06:05 +0100[diff] [blame]286 /**
287 * Very similar to addMemberRoles web-service, but allows deletion
margaretha0e1fc552019-08-08 15:31:01 +0200[diff] [blame]288 * as well.
289 *
290 * @param securityContext
margarethad8aa1352019-12-19 11:04:41 +0100[diff] [blame]291 * @param groupName
292 * the group name
293 * @param memberUsername
294 * the username of a group-member
margarethad575bd92021-06-14 09:42:18 +0200[diff] [blame]295 * @param roleId
296 * a role id or multiple role ids
margaretha0e1fc552019-08-08 15:31:01 +0200[diff] [blame]297 * @return
298 */
margarethaf7abb362018-09-18 20:09:37 +0200[diff] [blame]299 @POST
margaretha03b195a2019-11-12 14:57:15 +0100[diff] [blame]300 @Path("@{groupName}/role/edit")
margarethaf7abb362018-09-18 20:09:37 +0200[diff] [blame]301 @Consumes(MediaType.APPLICATION_FORM_URLENCODED)
302 public Response editMemberRoles (@Context SecurityContext securityContext,
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]303 @PathParam("groupName") String groupName,
margarethaf7abb362018-09-18 20:09:37 +0200[diff] [blame]304 @FormParam("memberUsername") String memberUsername,
margarethad575bd92021-06-14 09:42:18 +0200[diff] [blame]305 @FormParam("roleId") List<Integer> roleIds) {
margarethaf7abb362018-09-18 20:09:37 +0200[diff] [blame]306 TokenContext context =
307 (TokenContext) securityContext.getUserPrincipal();
308 try {
309 scopeService.verifyScope(context,
310 OAuth2Scope.EDIT_USER_GROUP_MEMBER_ROLE);
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]311 service.editMemberRoles(context.getUsername(), groupName,
margarethaf7abb362018-09-18 20:09:37 +0200[diff] [blame]312 memberUsername, roleIds);
margarethac9f40e22019-08-07 17:32:19 +0200[diff] [blame]313 return Response.ok("SUCCESS").build();
margarethaf7abb362018-09-18 20:09:37 +0200[diff] [blame]314 }
315 catch (KustvaktException e) {
316 throw kustvaktResponseHandler.throwit(e);
317 }
318 }
319
margaretha20f31232018-07-09 17:49:39 +0200[diff] [blame]320 /**
321 * Adds roles of an active member of a user-group. Only user-group
margaretha0e1fc552019-08-08 15:31:01 +0200[diff] [blame]322 * admins and system admins are allowed.
margaretha18533fd2018-03-28 16:01:06 +0200[diff] [blame]323 *
324 * @param securityContext
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]325 * @param groupName
326 * a group name
margaretha20f31232018-07-09 17:49:39 +0200[diff] [blame]327 * @param memberUsername
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]328 * a username of a group member
margarethad575bd92021-06-14 09:42:18 +0200[diff] [blame]329 * @param roleId
330 * a role id or multiple role ids
margaretha18533fd2018-03-28 16:01:06 +0200[diff] [blame]331 * @return if successful, HTTP response status OK
332 */
333 @POST
margaretha03b195a2019-11-12 14:57:15 +0100[diff] [blame]334 @Path("@{groupName}/role/add")
margaretha18533fd2018-03-28 16:01:06 +0200[diff] [blame]335 @Consumes(MediaType.APPLICATION_FORM_URLENCODED)
336 public Response addMemberRoles (@Context SecurityContext securityContext,
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]337 @PathParam("groupName") String groupName,
margaretha18533fd2018-03-28 16:01:06 +0200[diff] [blame]338 @FormParam("memberUsername") String memberUsername,
margarethad575bd92021-06-14 09:42:18 +0200[diff] [blame]339 @FormParam("roleId") List<Integer> roleIds) {
margaretha18533fd2018-03-28 16:01:06 +0200[diff] [blame]340 TokenContext context =
341 (TokenContext) securityContext.getUserPrincipal();
342 try {
margarethaee0cbfe2018-08-28 17:47:14 +0200[diff] [blame]343 scopeService.verifyScope(context,
344 OAuth2Scope.ADD_USER_GROUP_MEMBER_ROLE);
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]345 service.addMemberRoles(context.getUsername(), groupName,
margaretha18533fd2018-03-28 16:01:06 +0200[diff] [blame]346 memberUsername, roleIds);
margarethac9f40e22019-08-07 17:32:19 +0200[diff] [blame]347 return Response.ok("SUCCESS").build();
margaretha18533fd2018-03-28 16:01:06 +0200[diff] [blame]348 }
349 catch (KustvaktException e) {
margarethada3c7852018-06-14 20:35:11 +0200[diff] [blame]350 throw kustvaktResponseHandler.throwit(e);
margaretha18533fd2018-03-28 16:01:06 +0200[diff] [blame]351 }
352 }
353
margaretha20f31232018-07-09 17:49:39 +0200[diff] [blame]354 /**
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]355 * Updates the roles of a member of a user-group by removing the
margarethaca7cff82019-11-12 12:06:37 +0100[diff] [blame]356 * given roles. Only user-group admins and system admins are
357 * allowed.
margaretha18533fd2018-03-28 16:01:06 +0200[diff] [blame]358 *
359 * @param securityContext
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]360 * @param groupName
361 * a group name
margaretha20f31232018-07-09 17:49:39 +0200[diff] [blame]362 * @param memberUsername
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]363 * a username of a group member
margarethad575bd92021-06-14 09:42:18 +0200[diff] [blame]364 * @param roleId
365 * a role id or multiple role ids
margaretha18533fd2018-03-28 16:01:06 +0200[diff] [blame]366 * @return if successful, HTTP response status OK
367 */
368 @POST
margaretha03b195a2019-11-12 14:57:15 +0100[diff] [blame]369 @Path("@{groupName}/role/delete")
margaretha18533fd2018-03-28 16:01:06 +0200[diff] [blame]370 @Consumes(MediaType.APPLICATION_FORM_URLENCODED)
371 public Response deleteMemberRoles (@Context SecurityContext securityContext,
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]372 @PathParam("groupName") String groupName,
margaretha18533fd2018-03-28 16:01:06 +0200[diff] [blame]373 @FormParam("memberUsername") String memberUsername,
margarethad575bd92021-06-14 09:42:18 +0200[diff] [blame]374 @FormParam("roleId") List<Integer> roleIds) {
margaretha18533fd2018-03-28 16:01:06 +0200[diff] [blame]375 TokenContext context =
376 (TokenContext) securityContext.getUserPrincipal();
377 try {
margarethaee0cbfe2018-08-28 17:47:14 +0200[diff] [blame]378 scopeService.verifyScope(context,
379 OAuth2Scope.DELETE_USER_GROUP_MEMBER_ROLE);
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]380 service.deleteMemberRoles(context.getUsername(), groupName,
margaretha18533fd2018-03-28 16:01:06 +0200[diff] [blame]381 memberUsername, roleIds);
margarethac9f40e22019-08-07 17:32:19 +0200[diff] [blame]382 return Response.ok("SUCCESS").build();
margaretha18533fd2018-03-28 16:01:06 +0200[diff] [blame]383 }
384 catch (KustvaktException e) {
margarethada3c7852018-06-14 20:35:11 +0200[diff] [blame]385 throw kustvaktResponseHandler.throwit(e);
margaretha18533fd2018-03-28 16:01:06 +0200[diff] [blame]386 }
387 }
388
margaretha20f31232018-07-09 17:49:39 +0200[diff] [blame]389 /**
390 * Handles requests to accept membership invitation. Only invited
margarethada5a6ab2019-11-08 10:06:05 +0100[diff] [blame]391 * users can subscribe to the corresponding user-group.
margaretha18533fd2018-03-28 16:01:06 +0200[diff] [blame]392 *
393 * @param securityContext
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]394 * @param groupName
395 * a group name
margaretha18533fd2018-03-28 16:01:06 +0200[diff] [blame]396 * @return if successful, HTTP response status OK
397 */
margaretha9d3eb042017-12-22 11:02:30 +0100[diff] [blame]398 @POST
margaretha03b195a2019-11-12 14:57:15 +0100[diff] [blame]399 @Path("@{groupName}/subscribe")
margaretha9d3eb042017-12-22 11:02:30 +0100[diff] [blame]400 public Response subscribeToGroup (@Context SecurityContext securityContext,
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]401 @PathParam("groupName") String groupName) {
margaretha9d3eb042017-12-22 11:02:30 +0100[diff] [blame]402 TokenContext context =
403 (TokenContext) securityContext.getUserPrincipal();
404 try {
margarethaee0cbfe2018-08-28 17:47:14 +0200[diff] [blame]405 scopeService.verifyScope(context,
406 OAuth2Scope.ADD_USER_GROUP_MEMBER);
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]407 service.acceptInvitation(groupName, context.getUsername());
margarethac9f40e22019-08-07 17:32:19 +0200[diff] [blame]408 return Response.ok("SUCCESS").build();
margaretha9d3eb042017-12-22 11:02:30 +0100[diff] [blame]409 }
410 catch (KustvaktException e) {
margarethada3c7852018-06-14 20:35:11 +0200[diff] [blame]411 throw kustvaktResponseHandler.throwit(e);
margaretha9d3eb042017-12-22 11:02:30 +0100[diff] [blame]412 }
margaretha9d3eb042017-12-22 11:02:30 +0100[diff] [blame]413 }
414
margaretha20f31232018-07-09 17:49:39 +0200[diff] [blame]415 /**
416 * Handles requests to reject membership invitation. A member can
margarethada5a6ab2019-11-08 10:06:05 +0100[diff] [blame]417 * only unsubscribe him/herself from a group.
margaretha18533fd2018-03-28 16:01:06 +0200[diff] [blame]418 *
margarethaca7cff82019-11-12 12:06:37 +0100[diff] [blame]419 * Implemented identical to
420 * {@link #removeUserFromGroup(SecurityContext, String, String)}.
margaretha18533fd2018-03-28 16:01:06 +0200[diff] [blame]421 *
422 * @param securityContext
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]423 * @param groupName
margaretha18533fd2018-03-28 16:01:06 +0200[diff] [blame]424 * @return if successful, HTTP response status OK
425 */
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]426 @DELETE
margaretha03b195a2019-11-12 14:57:15 +0100[diff] [blame]427 @Path("@{groupName}/unsubscribe")
margaretha9d3eb042017-12-22 11:02:30 +0100[diff] [blame]428 public Response unsubscribeFromGroup (
429 @Context SecurityContext securityContext,
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]430 @PathParam("groupName") String groupName) {
margaretha9d3eb042017-12-22 11:02:30 +0100[diff] [blame]431 TokenContext context =
432 (TokenContext) securityContext.getUserPrincipal();
433 try {
margarethaee0cbfe2018-08-28 17:47:14 +0200[diff] [blame]434 scopeService.verifyScope(context,
435 OAuth2Scope.DELETE_USER_GROUP_MEMBER);
margarethaa18ab2b2019-11-11 12:55:26 +0100[diff] [blame]436 service.deleteGroupMember(context.getUsername(), groupName,
margarethae6c711b2018-02-06 21:55:04 +0100[diff] [blame]437 context.getUsername());
margarethac9f40e22019-08-07 17:32:19 +0200[diff] [blame]438 return Response.ok("SUCCESS").build();
margaretha9d3eb042017-12-22 11:02:30 +0100[diff] [blame]439 }
440 catch (KustvaktException e) {
margarethada3c7852018-06-14 20:35:11 +0200[diff] [blame]441 throw kustvaktResponseHandler.throwit(e);
margaretha9d3eb042017-12-22 11:02:30 +0100[diff] [blame]442 }
margaretha9d3eb042017-12-22 11:02:30 +0100[diff] [blame]443 }
margaretha0b63de42017-12-20 18:48:09 +0100[diff] [blame]444}