mirror of
https://github.com/gravitl/netmaker.git
synced 2024-09-20 15:26:04 +08:00
723375b334
* return 401 instead of 403 * fixed http.StatusForbidden * Tagged build version (temp) * Unauthorized_Err when applicable * untagged version * fixed PUT /api/users/networks/user1 * - expired token redirs to login - added `/api/enrollment_keys` for non-admins - unit test for enrollment keys for non-admins * handle user perms in `/hosts` * removed debug * misc * - support masteradmin - return hosts with partial access * added `ismaster` to middleware
89 lines
2.4 KiB
Go
89 lines
2.4 KiB
Go
package logic
|
|
|
|
import (
|
|
"encoding/json"
|
|
"sort"
|
|
|
|
"github.com/gravitl/netmaker/database"
|
|
"github.com/gravitl/netmaker/logger"
|
|
"github.com/gravitl/netmaker/logic/pro"
|
|
"github.com/gravitl/netmaker/models"
|
|
"github.com/gravitl/netmaker/models/promodels"
|
|
)
|
|
|
|
// GetUser - gets a user
|
|
// TODO support "masteradmin"
|
|
func GetUser(username string) (*models.User, error) {
|
|
|
|
var user models.User
|
|
record, err := database.FetchRecord(database.USERS_TABLE_NAME, username)
|
|
if err != nil {
|
|
return &user, err
|
|
}
|
|
if err = json.Unmarshal([]byte(record), &user); err != nil {
|
|
return &models.User{}, err
|
|
}
|
|
return &user, err
|
|
}
|
|
|
|
// GetGroupUsers - gets users in a group
|
|
func GetGroupUsers(group string) ([]models.ReturnUser, error) {
|
|
var returnUsers []models.ReturnUser
|
|
users, err := GetUsers()
|
|
if err != nil {
|
|
return returnUsers, err
|
|
}
|
|
for _, user := range users {
|
|
if StringSliceContains(user.Groups, group) {
|
|
users = append(users, user)
|
|
}
|
|
}
|
|
return users, err
|
|
}
|
|
|
|
// == PRO ==
|
|
|
|
// InitializeNetUsers - intializes network users for all users/networks
|
|
func InitializeNetUsers(network *models.Network) error {
|
|
// == add all current users to network as network users ==
|
|
currentUsers, err := GetUsers()
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
for i := range currentUsers { // add all users to given network
|
|
newUser := promodels.NetworkUser{
|
|
ID: promodels.NetworkUserID(currentUsers[i].UserName),
|
|
Clients: []string{},
|
|
Nodes: []string{},
|
|
AccessLevel: pro.NO_ACCESS,
|
|
ClientLimit: 0,
|
|
NodeLimit: 0,
|
|
}
|
|
if pro.IsUserAllowed(network, currentUsers[i].UserName, currentUsers[i].Groups) {
|
|
newUser.AccessLevel = network.ProSettings.DefaultAccessLevel
|
|
newUser.ClientLimit = network.ProSettings.DefaultUserClientLimit
|
|
newUser.NodeLimit = network.ProSettings.DefaultUserNodeLimit
|
|
}
|
|
|
|
if err = pro.CreateNetworkUser(network, &newUser); err != nil {
|
|
logger.Log(0, "failed to add network user settings to user", string(newUser.ID), "on network", network.NetID)
|
|
}
|
|
}
|
|
return nil
|
|
}
|
|
|
|
// SetUserDefaults - sets the defaults of a user to avoid empty fields
|
|
func SetUserDefaults(user *models.User) {
|
|
if user.Groups == nil {
|
|
user.Groups = []string{pro.DEFAULT_ALLOWED_GROUPS}
|
|
}
|
|
}
|
|
|
|
// SortUsers - Sorts slice of Users by username
|
|
func SortUsers(unsortedUsers []models.ReturnUser) {
|
|
sort.Slice(unsortedUsers, func(i, j int) bool {
|
|
return unsortedUsers[i].UserName < unsortedUsers[j].UserName
|
|
})
|
|
}
|