diff options
Diffstat (limited to 'api4/team.go')
-rw-r--r-- | api4/team.go | 28 |
1 files changed, 28 insertions, 0 deletions
diff --git a/api4/team.go b/api4/team.go index 206ea7b0e..ed096e058 100644 --- a/api4/team.go +++ b/api4/team.go @@ -23,6 +23,7 @@ func InitTeam() { BaseRoutes.TeamByName.Handle("", ApiSessionRequired(getTeamByName)).Methods("GET") BaseRoutes.TeamMember.Handle("", ApiSessionRequired(getTeamMember)).Methods("GET") + BaseRoutes.TeamMember.Handle("/roles", ApiSessionRequired(updateTeamMemberRoles)).Methods("PUT") } func createTeam(c *Context, w http.ResponseWriter, r *http.Request) { @@ -140,3 +141,30 @@ func getTeamStats(c *Context, w http.ResponseWriter, r *http.Request) { return } } + +func updateTeamMemberRoles(c *Context, w http.ResponseWriter, r *http.Request) { + c.RequireTeamId().RequireUserId() + if c.Err != nil { + return + } + + props := model.MapFromJson(r.Body) + + newRoles := props["roles"] + if !model.IsValidUserRoles(newRoles) { + c.SetInvalidParam("team_member_roles") + return + } + + if !app.SessionHasPermissionToTeam(c.Session, c.Params.TeamId, model.PERMISSION_MANAGE_TEAM_ROLES) { + c.SetPermissionError(model.PERMISSION_MANAGE_TEAM_ROLES) + return + } + + if _, err := app.UpdateTeamMemberRoles(c.Params.TeamId, c.Params.UserId, newRoles); err != nil { + c.Err = err + return + } + + ReturnStatusOK(w) +} |