UserRequest.java example

Explorer

teamcity-rest-api-master
- contrib
  - cctray-extension
    - server
      - src
        jetbrains
        buildServer
        server
        restcontrib
        cctray
        PreconditionTest.java
        RESTControllerExtensionInitializer.java
        model
        Project.java
        Projects.java
        request
        CCTrayRequest.java
- src
  - jetbrains
    - buildServer
      - server
        rest
        APIController.java
        ApiUrlBuilder.java
        PathTransformator.java
        PathTransformer.java
        RESTControllerExtension.java
        RESTControllerExtensionAdapter.java
        RequestPathTransformInfo.java
        RequestWrapper.java
        data
        AbstractFilter.java
        AgentsSearchFields.java
        BuildsFilter.java
        ChangesFilter.java
        DataProvider.java
        DataUpdater.java
        FilterItemProcessor.java
        Locator.java
        RangeLimit.java
        ServerListener.java
        errors
        AccessDeniedExceptionMapper.java
        AuthorizationFailedException.java
        AuthorizationFailedExceptionMapper.java
        BadRequestException.java
        BadRequestExceptionMapper.java
        InvalidStateException.java
        InvalidStateExceptionMapper.java
        JerseyNotFoundExceptionMapper.java
        LocatorProcessException.java
        LocatorProcessExceptionMapper.java
        NotFoundException.java
        NotFoundExceptionMapper.java
        OperationException.java
        OperationExceptionMapper.java
        RuntimeExceptionMapper.java
        WebApplicationExceptionMapper.java
        jersey
        BeanFactoryContextProvider.java
        DataProviderContextProvider.java
        DataUpdaterContextProvider.java
        ExceptionMapperUtil.java
        ExtensionHolderProviderFactory.java
        JAXBContextResolver.java
        JerseyWebComponent.java
        ServiceLocatorContextProvider.java
        UrlBuilderProvider.java
        model
        Comment.java
        Constants.java
        PagerData.java
        Properties.java
        Property.java
        Util.java
        agent
        Agent.java
        AgentRef.java
        Agents.java
        build
        Build.java
        BuildRef.java
        Builds.java
        BuildsRef.java
        PinnedInfo.java
        RunningBuildInfo.java
        Tags.java
        UserActionData.java
        buildType
        BuildType.java
        BuildTypeRef.java
        BuildTypes.java
        change
        Change.java
        ChangeRef.java
        Changes.java
        ChangesRef.java
        FileChange.java
        FileChanges.java
        Revision.java
        Revisions.java
        VcsRoot.java
        VcsRootEntries.java
        VcsRootEntry.java
        VcsRoots.java
        group
        Group.java
        GroupRef.java
        Groups.java
        issue
        Issue.java
        IssueUsage.java
        IssueUsages.java
        Issues.java
        plugin
        PluginInfo.java
        PluginInfos.java
        project
        Project.java
        ProjectRef.java
        Projects.java
        server
        Server.java
        user
        RoleAssignment.java
        RoleAssignments.java
        User.java
        UserData.java
        UserRef.java
        Users.java
        request
        AgentRequest.java
        BuildRequest.java
        BuildTypeRequest.java
        ChangeRequest.java
        Constants.java
        GroupRequest.java
        ProjectRequest.java
        RootApiRequest.java
        ServerRequest.java
        UserRequest.java
        VcsRootRequest.java
        util
        BeanFactory.java
- test
  - jetbrains
    - buildServer
      - server
        rest
        data
        LocatorTest.java

/*
 * Copyright 2000-2011 JetBrains s.r.o.
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 * http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

package jetbrains.buildServer.server.rest.request;

import javax.ws.rs.*;
import javax.ws.rs.core.Context;
import jetbrains.buildServer.server.rest.ApiUrlBuilder;
import jetbrains.buildServer.server.rest.data.DataProvider;
import jetbrains.buildServer.server.rest.data.DataUpdater;
import jetbrains.buildServer.server.rest.errors.OperationException;
import jetbrains.buildServer.server.rest.model.user.*;
import jetbrains.buildServer.serverSide.auth.RoleEntry;
import jetbrains.buildServer.serverSide.auth.RoleScope;
import jetbrains.buildServer.users.SUser;

/* todo: investigate logging issues:
    - disable initialization lines into stdout
    - too long number passed as finish for builds produces 404 error
*/

@Path(UserRequest.API_USERS_URL)
public class UserRequest {
  @Context
  private DataProvider myDataProvider;
  @Context
  private DataUpdater myDataUpdater;
  @Context
  private ApiUrlBuilder myApiUrlBuilder;

  public static final String API_USERS_URL = Constants.API_URL + "/users";

  public static String getUserHref(final jetbrains.buildServer.users.User user) {
    //todo: investigate why "DOMAIN username" does not work as query parameter
//    this.href = "/httpAuth/api/users/" + user.getUsername();
    return API_USERS_URL + "/id:" + user.getId();
  }

  public static String getRoleAssignmentHref(final RoleEntry roleEntry, final SUser user) {
    final RoleScope roleScope = roleEntry.getScope();
    return getUserHref(user) + "/roles/" + roleEntry.getRole().getId() + "/" + DataProvider.getScopeRepresentation(roleScope);
  }

  @GET
  @Produces({"application/xml", "application/json"})
  public Users serveUsers() {
    checkViewAllUsersPermission();
    return new Users(myDataProvider.getAllUsers(), myApiUrlBuilder);
  }

  private void checkViewAllUsersPermission() {
    // workaround until http://youtrack.jetbrains.net/issue/TW-10534 is fixed
    checkModifyAllUsersPermission();
  }

  private void checkViewUserPermission(String userLocator) {
    SUser user;
    try {
      user = myDataProvider.getUser(userLocator);
    } catch (RuntimeException e) { // ensuring user without permisisons could not get details on existing users by error messages
      checkViewAllUsersPermission();
      return;
    }

    final jetbrains.buildServer.users.User currentUser = myDataProvider.getCurrentUser();
    if (user != null && currentUser != null && currentUser.getId() == user.getId()){
      return;
    }
    checkViewAllUsersPermission();
  }

  private void checkModifyAllUsersPermission() {
    myDataProvider.checkGlobalPermission(jetbrains.buildServer.serverSide.auth.Permission.CHANGE_USER);
  }

  private void checkModifyUserPermission(String userLocator) {
    SUser user;
    try {
      user = myDataProvider.getUser(userLocator);
    } catch (RuntimeException e) { // ensuring user without permisisons could not get details on existing users by error messages
      checkModifyAllUsersPermission();
      return;
    }

    final jetbrains.buildServer.users.User currentUser = myDataProvider.getCurrentUser();
    if (user != null && currentUser != null && currentUser.getId() == user.getId()){
      myDataProvider.checkGlobalPermission(jetbrains.buildServer.serverSide.auth.Permission.CHANGE_OWN_PROFILE);
      return;
    }
    checkModifyAllUsersPermission();
  }

  @POST
  @Consumes({"application/xml", "application/json"})
  public User createUser(UserData userData) {
    final SUser user = myDataUpdater.createUser(userData.username);
    myDataUpdater.modify(user, userData);
    return new User(user, myApiUrlBuilder);
  }

  @GET
  @Path("/{userLocator}")
  @Produces({"application/xml", "application/json"})
  public User serveUser(@PathParam("userLocator") String userLocator) {
    checkViewUserPermission(userLocator);
    return new User(myDataProvider.getUser(userLocator), myApiUrlBuilder);
  }

  @PUT
  @Path("/{userLocator}")
  @Consumes({"application/xml", "application/json"})
  public void updateUser(@PathParam("userLocator") String userLocator, UserData userData) {
    checkModifyUserPermission(userLocator); //todo: user should not be able to add own roles
    SUser user = myDataProvider.getUser(userLocator);
    myDataUpdater.modify(user, userData);
  }

  @GET
  @Path("/{userLocator}/roles")
  @Produces({"application/xml", "application/json"})
  public RoleAssignments listRoles(@PathParam("userLocator") String userLocator) {
    checkViewUserPermission(userLocator);
    SUser user = myDataProvider.getUser(userLocator);
    return new RoleAssignments(user.getRoles(), user, myApiUrlBuilder);
  }


  @PUT
  @Path("/{userLocator}/roles")
  @Consumes({"application/xml", "application/json"})
  public void addRole(@PathParam("userLocator") String userLocator, RoleAssignment roleAssignment) {
    checkModifyUserPermission(userLocator); //todo: user should not be able to add own roles
    SUser user = myDataProvider.getUser(userLocator);
    try {
      user.addRole(DataProvider.getScope(roleAssignment.scope), myDataProvider.getRoleById(roleAssignment.roleId));
    } catch (Exception e) {
      throw new OperationException("Cannot add role to user " + user, e);
    }
  }

  @GET
  @Path("/{userLocator}/roles/{roleId}/{scope}")
  public RoleAssignment listRole(@PathParam("userLocator") String userLocator, @PathParam("roleId") String roleId,
                                 @PathParam("scope") String scopeValue) {
    checkViewUserPermission(userLocator);
    SUser user = myDataProvider.getUser(userLocator);
    return new RoleAssignment(myDataProvider.getUserRoleEntry(user, roleId, scopeValue), user, myApiUrlBuilder);
  }

  @DELETE
  @Path("/{userLocator}/roles/{roleId}/{scope}")
  public void deleteRole(@PathParam("userLocator") String userLocator, @PathParam("roleId") String roleId,
                         @PathParam("scope") String scopeValue) {
    checkModifyAllUsersPermission();  // user should not be able to modify own roles
    SUser user = myDataProvider.getUser(userLocator);
    try {
      user.removeRole(DataProvider.getScope(scopeValue), myDataProvider.getRoleById(roleId));
    } catch (Exception e) {
      throw new OperationException("Cannot remove role from user " + user, e);
    }
  }


  @POST
  @Path("/{userLocator}/roles/{roleId}/{scope}")
  public void addRoleSimple(@PathParam("userLocator") String userLocator,
                            @PathParam("roleId") String roleId,
                            @PathParam("scope") String scopeValue) {
    checkModifyAllUsersPermission(); // user should not be able to add own roles
    SUser user = myDataProvider.getUser(userLocator);
    try {
      user.addRole(DataProvider.getScope(scopeValue), myDataProvider.getRoleById(roleId));
    } catch (Exception e) {
      throw new OperationException("Cannot add role to user " + user, e);
    }
  }
}