# BEGIN BPS TAGGED BLOCK {{{ # # COPYRIGHT: # # This software is Copyright (c) 1996-2022 Best Practical Solutions, LLC # # # (Except where explicitly superseded by other copyright notices) # # # LICENSE: # # This work is made available to you under the terms of Version 2 of # the GNU General Public License. A copy of that license should have # been provided with this software, but in any event can be snarfed # from www.gnu.org. # # This work is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA # 02110-1301 or visit their web page on the internet at # http://www.gnu.org/licenses/old-licenses/gpl-2.0.html. # # # CONTRIBUTION SUBMISSION POLICY: # # (The following paragraph is not intended to limit the rights granted # to you to modify and distribute this software under the terms of # the GNU General Public License and is only of importance to you if # you choose to contribute your changes and enhancements to the # community by submitting them to Best Practical Solutions, LLC.) # # By intentionally submitting any modifications, corrections or # derivatives to this work, or any other work intended for use with # Request Tracker, to Best Practical Solutions, LLC, you confirm that # you are the copyright holder for those contributions and you grant # Best Practical Solutions, LLC a nonexclusive, worldwide, irrevocable, # royalty-free, perpetual, license to use, copy, create derivative # works based on those contributions, and sublicense and distribute # those contributions and any derivatives thereof. # # END BPS TAGGED BLOCK }}} package RT::REST2::Resource::GroupMembers; use strict; use warnings; use Moose; use namespace::autoclean; extends 'RT::REST2::Resource::Collection'; with 'RT::REST2::Resource::Role::RequestBodyIsJSON' => {type => 'ARRAY'}; has 'group' => ( is => 'ro', ); sub dispatch_rules { Path::Dispatcher::Rule::Regex->new( regex => qr{^/group/(\d+)/members/?$}, block => sub { my ($match, $req) = @_; my $group_id = $match->pos(1); my $group = RT::Group->new($req->env->{"rt.current_user"}); $group->Load($group_id); my $collection; my $recursively = $req->parameters->{recursively} // 0; my $users = $req->parameters->{users} // 1; my $groups = $req->parameters->{groups} // 1; if ( $users && $groups ) { if ( $recursively ) { $collection = $group->DeepMembersObj; } else { $collection = $group->MembersObj; } } elsif ( $users ) { $collection = $group->UserMembersObj(Recursively => $recursively); } elsif ( $groups ) { $collection = $group->GroupMembersObj(Recursively => $recursively); } else { $collection = RT::GroupMembers->new( $req->env->{"rt.current_user"} ); $collection->Limit(FIELD => 'id', VALUE => 0); } return {group => $group, collection => $collection}; }, ), Path::Dispatcher::Rule::Regex->new( regex => qr{^/group/(\d+)/member/(\d+)/?$}, block => sub { my ($match, $req) = @_; my $group_id = $match->pos(1); my $member_id = $match->pos(2) || ''; my $group = RT::Group->new($req->env->{"rt.current_user"}); $group->Load($group_id); my $collection = $group->MembersObj; $collection->Limit(FIELD => 'MemberId', VALUE => $member_id); return {group => $group, collection => $collection}; }, ), } sub forbidden { my $self = shift; return !$self->group->CurrentUserHasRight('AdminGroupMembership'); } sub serialize { my $self = shift; my $collection = $self->collection; my @results; while (my $item = $collection->Next) { my ($id, $class); if (ref $item eq 'RT::GroupMember' || ref $item eq 'RT::CachedGroupMember') { my $principal = $item->MemberObj; $class = $principal->IsGroup ? 'group' : 'user'; $id = $principal->id; } elsif (ref $item eq 'RT::Group') { $class = 'group'; $id = $item->id; } elsif (ref $item eq 'RT::User') { $class = 'user'; $id = $item->id; } else { next; } my $result = { type => $class, id => $id, _url => RT::REST2->base_uri . "/$class/$id", }; push @results, $result; } return { count => scalar(@results) + 0, total => $collection->CountAll, per_page => $collection->RowsPerPage + 0, page => ($collection->FirstRow / $collection->RowsPerPage) + 1, items => \@results, }; } sub allowed_methods { my @ok = ('GET', 'HEAD', 'DELETE', 'PUT'); return \@ok; } sub content_types_accepted {[{'application/json' => 'from_json'}]} sub delete_resource { my $self = shift; my $collection = $self->collection; while (my $group_member = $collection->Next) { $RT::Logger->info('Delete ' . ($group_member->MemberObj->IsGroup ? 'group' : 'user') . ' ' . $group_member->MemberId . ' from group '.$group_member->GroupId); $group_member->GroupObj->Object->DeleteMember($group_member->MemberId); } return 1; } sub from_json { my $self = shift; my $params = JSON::decode_json($self->request->content); my $group = $self->group; my $method = $self->request->method; my @results; if ($method eq 'PUT') { for my $param (@$params) { if ($param =~ /^\d+$/) { my ($ret, $msg) = $group->AddMember($param); push @results, $msg; } else { push @results, 'You should provide principal id for each member to add'; } } } $self->response->body(JSON::encode_json(\@results)); return; } __PACKAGE__->meta->make_immutable; 1;