diff options
| author | Joram Wilander <jwawilander@gmail.com> | 2017-02-03 15:17:34 -0500 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2017-02-03 15:17:34 -0500 |
| commit | 7ff2aef7facdeb025a1651ef411fceb3d81932c1 (patch) | |
| tree | 7ea2f7b89e4b4c1acf3ca021377b0166089ba397 /api4/user.go | |
| parent | 948b557453550646ad3213cb4144055eb7db0d69 (diff) | |
| download | chat-7ff2aef7facdeb025a1651ef411fceb3d81932c1.tar.gz chat-7ff2aef7facdeb025a1651ef411fceb3d81932c1.tar.bz2 chat-7ff2aef7facdeb025a1651ef411fceb3d81932c1.zip | |
Implement GET /users endpoint for APIv4 (#5277)
Diffstat (limited to 'api4/user.go')
| -rw-r--r-- | api4/user.go | 62 |
1 files changed, 62 insertions, 0 deletions
diff --git a/api4/user.go b/api4/user.go index 19d3446fb..74983aa54 100644 --- a/api4/user.go +++ b/api4/user.go @@ -16,6 +16,7 @@ func InitUser() { l4g.Debug(utils.T("api.user.init.debug")) BaseRoutes.Users.Handle("", ApiHandler(createUser)).Methods("POST") + BaseRoutes.Users.Handle("", ApiSessionRequired(getUsers)).Methods("GET") BaseRoutes.Users.Handle("/ids", ApiSessionRequired(getUsersByIds)).Methods("POST") BaseRoutes.User.Handle("", ApiSessionRequired(getUser)).Methods("GET") @@ -86,6 +87,67 @@ func getUser(c *Context, w http.ResponseWriter, r *http.Request) { } } +func getUsers(c *Context, w http.ResponseWriter, r *http.Request) { + inTeamId := r.URL.Query().Get("in_team") + inChannelId := r.URL.Query().Get("in_channel") + notInChannelId := r.URL.Query().Get("not_in_channel") + + if len(notInChannelId) > 0 && len(inTeamId) == 0 { + c.SetInvalidParam("team_id") + return + } + + var profiles []*model.User + var err *model.AppError + etag := "" + + if len(notInChannelId) > 0 { + if !app.SessionHasPermissionToChannel(c.Session, notInChannelId, model.PERMISSION_READ_CHANNEL) { + c.SetPermissionError(model.PERMISSION_READ_CHANNEL) + return + } + + profiles, err = app.GetUsersNotInChannelPage(inTeamId, notInChannelId, c.Params.Page, c.Params.PerPage, c.IsSystemAdmin()) + } else if len(inTeamId) > 0 { + if !app.SessionHasPermissionToTeam(c.Session, inTeamId, model.PERMISSION_VIEW_TEAM) { + c.SetPermissionError(model.PERMISSION_VIEW_TEAM) + return + } + + etag = app.GetUsersInTeamEtag(inTeamId) + if HandleEtag(etag, "Get Users in Team", w, r) { + return + } + + profiles, err = app.GetUsersInTeamPage(inTeamId, c.Params.Page, c.Params.PerPage, c.IsSystemAdmin()) + } else if len(inChannelId) > 0 { + if !app.SessionHasPermissionToChannel(c.Session, inChannelId, model.PERMISSION_READ_CHANNEL) { + c.SetPermissionError(model.PERMISSION_READ_CHANNEL) + return + } + + profiles, err = app.GetUsersInChannelPage(inChannelId, c.Params.Page, c.Params.PerPage, c.IsSystemAdmin()) + } else { + // No permission check required + + etag = app.GetUsersEtag() + if HandleEtag(etag, "Get Users", w, r) { + return + } + profiles, err = app.GetUsersPage(c.Params.Page, c.Params.PerPage, c.IsSystemAdmin()) + } + + if err != nil { + c.Err = err + return + } else { + if len(etag) > 0 { + w.Header().Set(model.HEADER_ETAG_SERVER, etag) + } + w.Write([]byte(model.UserListToJson(profiles))) + } +} + func getUsersByIds(c *Context, w http.ResponseWriter, r *http.Request) { userIds := model.ArrayFromJson(r.Body) |