More work on perms page

2025-12-13 23:09:02 +00:00 · 2019-02-17 14:09:52 -05:00
parent b936513eb9
commit 94c3ce3267
30 changed files with 425 additions and 70 deletions
--- a/api/project.go
+++ b/api/project.go
@@ -100,7 +100,7 @@ func (api *WebAPI) CreateProject(r *Request) {
 		return
 	}

-	api.Database.SetManagerRoleOn(manager.(*storage.Manager), id,
+	api.Database.SetManagerRoleOn(manager.(*storage.Manager).Id, id,
 		storage.ROLE_MANAGE_ACCESS|storage.ROLE_READ|storage.ROLE_EDIT)
 	r.OkJson(JsonResponse{
 		Ok: true,
@@ -403,3 +403,35 @@ func (api *WebAPI) RejectAccessRequest(r *Request) {
 		})
 	}
 }
+
+func (api *WebAPI) SetManagerRoleOnProject(r *Request) {
+
+	pid, err := strconv.ParseInt(r.Ctx.UserValue("id").(string), 10, 64)
+	handleErr(err, r) //todo handle invalid id
+
+	req := &SetManagerRoleOnProjectRequest{}
+	err = json.Unmarshal(r.Ctx.Request.Body(), req)
+	if err != nil {
+		r.Json(JsonResponse{
+			Ok:      false,
+			Message: "Could not parse request",
+		}, 400)
+		return
+	}
+
+	sess := api.Session.StartFasthttp(r.Ctx)
+	manager := sess.Get("manager")
+
+	if !isActionOnProjectAuthorized(pid, manager, storage.ROLE_MANAGE_ACCESS, api.Database) {
+		r.Json(JsonResponse{
+			Message: "Unauthorized",
+			Ok:      false,
+		}, 403)
+		return
+	}
+
+	api.Database.SetManagerRoleOn(req.Manager, pid, req.Role)
+	r.OkJson(JsonResponse{
+		Ok: true,
+	})
+}