From 3224d2f6a3bd95293fff25d6cc417b30b4f6e334 Mon Sep 17 00:00:00 2001 From: Saturnino Abril Date: Mon, 23 Apr 2018 20:18:58 +0800 Subject: add api to convert a channel from public to private and restrict that to system_admin (#8655) --- api4/channel.go | 48 +++++++++++++++++++++++++++++++++++++++++------- api4/channel_test.go | 40 ++++++++++++++++++++++++++++++++++++++++ 2 files changed, 81 insertions(+), 7 deletions(-) (limited to 'api4') diff --git a/api4/channel.go b/api4/channel.go index 5a43d5e4a..685c188bc 100644 --- a/api4/channel.go +++ b/api4/channel.go @@ -27,6 +27,7 @@ func (api *API) InitChannel() { api.BaseRoutes.Channel.Handle("", api.ApiSessionRequired(getChannel)).Methods("GET") api.BaseRoutes.Channel.Handle("", api.ApiSessionRequired(updateChannel)).Methods("PUT") api.BaseRoutes.Channel.Handle("/patch", api.ApiSessionRequired(patchChannel)).Methods("PUT") + api.BaseRoutes.Channel.Handle("/convert", api.ApiSessionRequired(convertChannelToPrivate)).Methods("POST") api.BaseRoutes.Channel.Handle("/restore", api.ApiSessionRequired(restoreChannel)).Methods("POST") api.BaseRoutes.Channel.Handle("", api.ApiSessionRequired(deleteChannel)).Methods("DELETE") api.BaseRoutes.Channel.Handle("/stats", api.ApiSessionRequired(getChannelStats)).Methods("GET") @@ -119,7 +120,6 @@ func updateChannel(c *Context, w http.ResponseWriter, r *http.Request) { oldChannel.Purpose = channel.Purpose oldChannelDisplayName := oldChannel.DisplayName - oldChannelType := oldChannel.Type if len(channel.DisplayName) > 0 { oldChannel.DisplayName = channel.DisplayName @@ -143,17 +143,51 @@ func updateChannel(c *Context, w http.ResponseWriter, r *http.Request) { } } - if oldChannelType == model.CHANNEL_OPEN && channel.Type == model.CHANNEL_PRIVATE { - if err := c.App.PostConvertChannelToPrivate(c.Session.UserId, channel); err != nil { - l4g.Error(err.Error()) - } - } - c.LogAudit("name=" + channel.Name) w.Write([]byte(oldChannel.ToJson())) } } +func convertChannelToPrivate(c *Context, w http.ResponseWriter, r *http.Request) { + c.RequireChannelId() + if c.Err != nil { + return + } + + if !c.App.SessionHasPermissionTo(c.Session, model.PERMISSION_MANAGE_SYSTEM) { + c.SetPermissionError(model.PERMISSION_MANAGE_SYSTEM) + return + } + + oldPublicChannel, err := c.App.GetChannel(c.Params.ChannelId) + if err != nil { + c.Err = err + return + } else if oldPublicChannel.Type == model.CHANNEL_PRIVATE { + c.Err = model.NewAppError("convertChannelToPrivate", "api.channel.convert_channel_to_private.private_channel_error", nil, "", http.StatusBadRequest) + return + } else if oldPublicChannel.Name == model.DEFAULT_CHANNEL { + c.Err = model.NewAppError("convertChannelToPrivate", "api.channel.convert_channel_to_private.default_channel_error", nil, "", http.StatusBadRequest) + return + } + + var user *model.User + if user, err = c.App.GetUser(c.Session.UserId); err != nil { + c.Err = err + return + } + + oldPublicChannel.Type = model.CHANNEL_PRIVATE + + if rchannel, err := c.App.UpdateChannelPrivacy(oldPublicChannel, user); err != nil { + c.Err = err + return + } else { + c.LogAudit("name=" + rchannel.Name) + w.Write([]byte(rchannel.ToJson())) + } +} + func patchChannel(c *Context, w http.ResponseWriter, r *http.Request) { c.RequireChannelId() if c.Err != nil { diff --git a/api4/channel_test.go b/api4/channel_test.go index 4c27e040a..767fdbdb8 100644 --- a/api4/channel_test.go +++ b/api4/channel_test.go @@ -897,6 +897,46 @@ func TestDeleteChannel(t *testing.T) { CheckForbiddenStatus(t, resp) } +func TestConvertChannelToPrivate(t *testing.T) { + th := Setup().InitBasic().InitSystemAdmin() + defer th.TearDown() + Client := th.Client + + defaultChannel, _ := th.App.GetChannelByName(model.DEFAULT_CHANNEL, th.BasicTeam.Id) + _, resp := Client.ConvertChannelToPrivate(defaultChannel.Id) + CheckForbiddenStatus(t, resp) + + privateChannel := th.CreatePrivateChannel() + _, resp = Client.ConvertChannelToPrivate(privateChannel.Id) + CheckForbiddenStatus(t, resp) + + publicChannel := th.CreatePublicChannel() + _, resp = Client.ConvertChannelToPrivate(publicChannel.Id) + CheckForbiddenStatus(t, resp) + + th.LoginTeamAdmin() + _, resp = Client.ConvertChannelToPrivate(publicChannel.Id) + CheckForbiddenStatus(t, resp) + + rchannel, resp := th.SystemAdminClient.ConvertChannelToPrivate(privateChannel.Id) + CheckBadRequestStatus(t, resp) + if rchannel != nil { + t.Fatal("should not return a channel") + } + + rchannel, resp = th.SystemAdminClient.ConvertChannelToPrivate(defaultChannel.Id) + CheckBadRequestStatus(t, resp) + if rchannel != nil { + t.Fatal("should not return a channel") + } + + rchannel, resp = th.SystemAdminClient.ConvertChannelToPrivate(publicChannel.Id) + CheckOKStatus(t, resp) + if rchannel.Type != model.CHANNEL_PRIVATE { + t.Fatal("channel should be converted from public to private") + } +} + func TestRestoreChannel(t *testing.T) { th := Setup().InitBasic().InitSystemAdmin() defer th.TearDown() -- cgit v1.2.3-1-g7c22