public IActionResult DeleteGroup(string groupname) { if (!Regex.IsMatch(groupname, @"^[a-zA-Z0-9-_]{4,16}$")) { throw new GroupnameInvalidException("The groupname you enter is invalid when trying to delete it."); } string permission = PermissionBank.GroupOperationPermission(groupname, "", "delete"); var user_actor = HttpContext.Items["actor"] as User; if (user_actor.HasPermission(permission) != true) { throw new AuthenticateFailedException("not has enough permission when trying to delete a group."); } //use groupname to identify group,because the id is invisible to user var group = _databaseService.Groups.FirstOrDefault(t => t.GroupName == groupname); if (group == null) { throw new GroupNotExistException("Groupname Does Not Exist when trying to delete group."); } var existFile = _databaseService.Files .FirstOrDefault(s => s.Folder.StartsWith($"/groups/{group.GroupName}")); if (existFile != null) { throw new DeletingGroupWithFileException("The group you attempt to delete is not empty", existFile.Path); } var groupVo = new GroupModel(group); _databaseService.Groups.Remove(group); _databaseService.SaveChanges(); var groupToUserDb = _databaseService.GroupsToUsersRelation.Where(t => t.GroupId == groupVo.Id); var groupToPermissionDb = _databaseService.GroupsToPermissionsRelation.Where(t => t.GroupId == groupVo.Id); var userToPermissionDb = _databaseService.UserToPermissionRelation.Where(t => t.Permission.StartsWith($"groupmanager.group.operation.{groupVo.GroupName}")); _databaseService.GroupsToPermissionsRelation.RemoveRange(groupToPermissionDb); _databaseService.GroupsToUsersRelation.RemoveRange(groupToUserDb); _databaseService.UserToPermissionRelation.RemoveRange(userToPermissionDb); _databaseService.SaveChanges(); return(Ok(new GroupDeleteResultModel(group))); }
public IActionResult ListGroupMember([FromQuery] GroupMemberListRequestModel requestModel, string groupname) { if (!Regex.IsMatch(groupname, @"^[a-zA-Z0-9-_]{4,16}$")) { throw new GroupnameInvalidException("The groupname you enter is invalid when trying to add a member to it."); } var group = _databaseService.Groups.FirstOrDefault(t => t.GroupName == groupname); if (group == null) { throw new GroupNotExistException("The groupname you enter does not exsit actually when trying to add a grouptouser."); } string permission = PermissionBank.GroupOperationPermission(group.GroupName, "member", "list"); if (!(HttpContext.Items["actor"] is User loginUser)) { throw new UnexpectedException(); } if (loginUser.HasPermission(permission) != true) { throw new AuthenticateFailedException("not has enough permission when trying to list members to a group."); } // 开始查找 var result = _databaseService.GroupsToUsersRelation .Include(s => s.User).AsSingleQuery() .Where(s => s.GroupId == group.Id); // 按用户名关键字匹配 if (requestModel.Username?.Length > 0) { foreach (var c in requestModel.Username) { result = result.Where(s => s.User.Nickname.Contains(c)); } } result = result.Skip(requestModel.Offset); result = result.Take(requestModel.Amount); return(Ok(new GroupMemberListResultModel(group, result.ToList(), requestModel.Amount, requestModel.Offset))); }
public IActionResult AddGroupMember([FromBody] GroupAddMemberRequestModel addGroupMemberRequestModel, string groupname) { if (!Regex.IsMatch(groupname, @"^[a-zA-Z0-9-_]{4,16}$")) { throw new GroupnameInvalidException("The groupname you enter is invalid when trying to add a member to it."); } var group = _databaseService.Groups.FirstOrDefault(t => t.GroupName == groupname); if (group == null) { throw new GroupNotExistException("The groupname you enter does not exsit actually when trying to add a grouptouser."); } string permission = PermissionBank.GroupOperationPermission(groupname, "member", "add"); var user_actor = HttpContext.Items["actor"] as User; if (user_actor.HasPermission(permission) != true) { throw new AuthenticateFailedException("not has enough permission when trying to add a member to a group."); } var user = _databaseService.Users.FirstOrDefault(t => t.Username == addGroupMemberRequestModel.UserName); if (user == null) { throw new UserNotExistException("The username you enter does not exist actually when trying to add a grouptouser"); } var grouptouser = _databaseService.GroupsToUsersRelation.FirstOrDefault(t => t.Group.GroupName == group.GroupName && t.User.Username == user.Username); if (grouptouser != null) { throw new GroupToUserAlreadyExistException("Grouptouser already exists when trying to add a grouptouser"); } grouptouser = new GroupToUser(); grouptouser.Group = group; grouptouser.GroupId = group.Id; grouptouser.User = user; grouptouser.UserId = user.Id; _databaseService.GroupsToUsersRelation.Add(grouptouser); _databaseService.SaveChanges(); return(Ok(new GroupMemberAddResultModel(group, user))); }
public IActionResult DeleteGroupMember([FromBody] DeleteGroupMemberRequestModel deleteGroupMemberRequestModel, string groupname) { if (!Regex.IsMatch(groupname, @"^[a-zA-Z0-9-_]{4,16}$")) { throw new GroupnameInvalidException("The groupname you enter is invalid when trying to delete a member from it."); } string permission = PermissionBank.GroupOperationPermission(groupname, "member", "remove"); var user_actor = HttpContext.Items["actor"] as User; if (user_actor.HasPermission(permission) != true) { throw new AuthenticateFailedException("not has enough permission when trying to delete a member from a group."); } var group = _databaseService.Groups.FirstOrDefault(t => t.GroupName == groupname); if (group == null) { throw new GroupNotExistException("The groupname you enter does not exsit actually when trying to delete a grouptouser."); } var user = _databaseService.Users.FirstOrDefault(t => t.Username == deleteGroupMemberRequestModel.UserName); if (user == null) { throw new UserNotExistException("The username you enter does not exist actually when trying to delete a grouptouser"); } var grouptouser = _databaseService.GroupsToUsersRelation.FirstOrDefault(t => t.Group.GroupName == group.GroupName && t.User.Username == user.Username); if (grouptouser == null) { throw new GroupToUserNotExistException("The user is not in the group at present when deleting by another user."); } _databaseService.GroupsToUsersRelation.Remove(grouptouser); _databaseService.SaveChanges(); return(Ok(new GroupMemberRemoveResultModel(group, user))); }
public IActionResult AddGroup([FromBody] GroupCreateRequestModel addGroupRequestModel) { //use groupname to identify group,because the id is invisible to user if (_databaseService.Groups.FirstOrDefault(t => t.GroupName == addGroupRequestModel.GroupName) != null) { throw new GroupnameDuplicatedException("Groupname duplicated."); } //initialize new group and save it to database Group group = new Group(); group.GroupName = addGroupRequestModel.GroupName; _databaseService.Groups.Add(group); //obtain the user var user = HttpContext.Items["actor"] as User; //initialize grouptouser and save it to database GroupToUser groupToUser = new GroupToUser(); groupToUser.Group = group; groupToUser.GroupId = group.Id; groupToUser.User = user; groupToUser.UserId = user.Id; _databaseService.GroupsToUsersRelation.Add(groupToUser); // initial group permission to the new group _databaseService.UserToPermissionRelation.Add(new UserToPermission() { User = user, UserId = user.Id, Permission = PermissionBank.GroupOperationPermission(group.GroupName, "member", "add") }); _databaseService.UserToPermissionRelation.Add(new UserToPermission() { User = user, UserId = user.Id, Permission = PermissionBank.GroupOperationPermission(group.GroupName, "member", "remove") }); _databaseService.UserToPermissionRelation.Add(new UserToPermission() { User = user, UserId = user.Id, Permission = PermissionBank.GroupOperationPermission(group.GroupName, "", "delete") }); _databaseService.GroupsToPermissionsRelation.Add(new GroupToPermission() { Group = group, GroupId = group.Id, Permission = PermissionBank.GroupOperationPermission(group.GroupName, "member", "list") }); //find the grouptouser in the database //below is how to input parameters when the entity has composite key values: //"The ordering of composite key values is as defined in the EDM, which is in turn as defined in the designer, by the Code First fluent API, or by the DataMember attribute." // var groupToUser_db = _databaseService.GroupsToUsersRelation.Find(groupToUser.GroupId, groupToUser.UserId); //waiting for adding permissions for the group if (!_databaseService.Files.Any(s => s.Path == $"/groups/{group.GroupName}")) { var groupDirectory = EntityFile.CreateDirectoryRecord(group.GroupName, "/groups", $"/groups/{group.GroupName}", user); _databaseService.Files.Add(groupDirectory); } _databaseService.SaveChanges(); return(Ok(new GroupCreateResultModel(group))); }