implement GET /commands (#5865)

1 files changed, 47 insertions, 0 deletions

diff --git a/api4/command.go b/api4/command.go
index 64766ef3c..41a85eac3 100644
--- a/api4/command.go
+++ b/api4/command.go
@@ -5,6 +5,7 @@ package api4
 
 import (
 	"net/http"
+	"strconv"
 
 	l4g "github.com/alecthomas/log4go"
 	"github.com/mattermost/platform/app"
@@ -16,6 +17,7 @@ func InitCommand() {
 	l4g.Debug(utils.T("api.command.init.debug"))
 
 	BaseRoutes.Commands.Handle("", ApiSessionRequired(createCommand)).Methods("POST")
+	BaseRoutes.Commands.Handle("", ApiSessionRequired(listCommands)).Methods("GET")
 }
 
 func createCommand(c *Context, w http.ResponseWriter, r *http.Request) {
@@ -44,3 +46,48 @@ func createCommand(c *Context, w http.ResponseWriter, r *http.Request) {
 	w.WriteHeader(http.StatusCreated)
 	w.Write([]byte(rcmd.ToJson()))
 }
+
+func listCommands(c *Context, w http.ResponseWriter, r *http.Request) {
+	customOnly, failConv := strconv.ParseBool(r.URL.Query().Get("custom_only"))
+	if failConv != nil {
+		customOnly = false
+	}
+
+	teamId := r.URL.Query().Get("team_id")
+
+	if len(teamId) == 0 {
+		c.SetInvalidParam("team_id")
+		return
+	}
+
+	commands := []*model.Command{}
+	err := &model.AppError{}
+	if customOnly {
+		if !app.SessionHasPermissionToTeam(c.Session, teamId, model.PERMISSION_MANAGE_SLASH_COMMANDS) {
+			c.SetPermissionError(model.PERMISSION_MANAGE_SLASH_COMMANDS)
+			return
+		}
+		commands, err = app.ListTeamCommands(teamId)
+		if err != nil {
+			c.Err = err
+			return
+		}
+	} else {
+		//User with no permission should see only system commands
+		if !app.SessionHasPermissionToTeam(c.Session, teamId, model.PERMISSION_MANAGE_SLASH_COMMANDS) {
+			commands, err = app.ListAutocompleteCommands(teamId, c.T)
+			if err != nil {
+				c.Err = err
+				return
+			}
+		} else {
+			commands, err = app.ListAllCommands(teamId, c.T)
+			if err != nil {
+				c.Err = err
+				return
+			}
+		}
+	}
+
+	w.Write([]byte(model.CommandListToJson(commands)))
+}