gitlab-org--gitlab-foss/lib/api/groups.rb

module API
  class Groups < Grape::API
    before { authenticate! }

    helpers do
      params :optional_params do
        optional :description, type: String, desc: 'The description of the group'
        optional :visibility_level, type: Integer, desc: 'The visibility level of the group'
        optional :lfs_enabled, type: Boolean, desc: 'Enable/disable LFS for the projects in this group'
        optional :request_access_enabled, type: Boolean, desc: 'Allow users to request member access'
      end
    end

    resource :groups do
      desc 'Get a groups list' do
        success Entities::Group
      end
      params do
        optional :skip_groups, type: Array[Integer], desc: 'Array of group ids to exclude from list'
        optional :all_available, type: Boolean, desc: 'Show all group that you have access to'
        optional :search, type: String, desc: 'Search for a specific group'
        optional :order_by, type: String, values: %w[name path], default: 'name', desc: 'Order by name or path'
        optional :sort, type: String, values: %w[asc desc], default: 'asc', desc: 'Sort by asc (ascending) or desc (descending)'
      end
      get do
        groups = if current_user.admin
                   Group.all
                 elsif params[:all_available]
                   GroupsFinder.new.execute(current_user)
                 else
                   current_user.groups
                 end

        groups = groups.search(params[:search]) if params[:search].present?
        groups = groups.where.not(id: params[:skip_groups]) if params[:skip_groups].present?
        groups = groups.reorder(params[:order_by] => params[:sort].to_sym)

        present paginate(groups), with: Entities::Group
      end

      desc 'Get list of owned groups for authenticated user' do
        success Entities::Group
      end
      get '/owned' do
        groups = current_user.owned_groups
        present paginate(groups), with: Entities::Group, user: current_user
      end

      desc 'Create a group. Available only for users who can create groups.' do
        success Entities::Group
      end
      params do
        requires :name, type: String, desc: 'The name of the group'
        requires :path, type: String, desc: 'The path of the group'
        use :optional_params
      end
      post do
        authorize! :create_group

        group = ::Groups::CreateService.new(current_user, declared_params(include_missing: false)).execute

        if group.persisted?
          present group, with: Entities::Group
        else
          render_api_error!("Failed to save group #{group.errors.messages}", 400)
        end
      end
    end

    params do
      requires :id, type: String, desc: 'The ID of a group'
    end
    resource :groups do
      desc 'Update a group. Available only for users who can administrate groups.' do
        success Entities::Group
      end
      params do
        optional :name, type: String, desc: 'The name of the group'
        optional :path, type: String, desc: 'The path of the group'
        use :optional_params
        at_least_one_of :name, :path, :description, :visibility_level,
                        :lfs_enabled, :request_access_enabled
      end
      put ':id' do
        group = find_group(params[:id])
        authorize! :admin_group, group

        if ::Groups::UpdateService.new(group, current_user, declared_params(include_missing: false)).execute
          present group, with: Entities::GroupDetail
        else
          render_validation_error!(group)
        end
      end

      desc 'Get a single group, with containing projects.' do
        success Entities::GroupDetail
      end
      get ":id" do
        group = find_group(params[:id])
        present group, with: Entities::GroupDetail
      end

      desc 'Remove a group.'
      delete ":id" do
        group = find_group(params[:id])
        authorize! :admin_group, group
        DestroyGroupService.new(group, current_user).execute
      end

      desc 'Get a list of projects in this group.' do
        success Entities::Project
      end
      get ":id/projects" do
        group = find_group(params[:id])
        projects = GroupProjectsFinder.new(group).execute(current_user)
        projects = paginate projects
        present projects, with: Entities::Project, user: current_user
      end

      desc 'Transfer a project to the group namespace. Available only for admin.' do
        success Entities::GroupDetail
      end
      params do
        requires :project_id, type: String, desc: 'The ID of the project'
      end
      post ":id/projects/:project_id" do
        authenticated_as_admin!
        group = Group.find_by(id: params[:id])
        project = Project.find(params[:project_id])
        result = ::Projects::TransferService.new(project, current_user).execute(group)

        if result
          present group, with: Entities::GroupDetail
        else
          render_api_error!("Failed to transfer project #{project.errors.messages}", 400)
        end
      end
    end
  end
end
Refactor API classes. So api classes like Gitlab::Issues become API::Issues 2013-05-14 08:33:31 -04:00			`module API`
Add api for creating/listing/viewing groups 2013-01-08 16:05:00 -05:00			`class Groups < Grape::API`
			`before { authenticate! }`

Grapify the group API 2016-11-07 10:54:39 -05:00			`helpers do`
			`params :optional_params do`
			`optional :description, type: String, desc: 'The description of the group'`
			`optional :visibility_level, type: Integer, desc: 'The visibility level of the group'`
			`optional :lfs_enabled, type: Boolean, desc: 'Enable/disable LFS for the projects in this group'`
			`optional :request_access_enabled, type: Boolean, desc: 'Allow users to request member access'`
			`end`
			`end`

Fix groups api: differ between users and admin 2013-02-01 09:00:12 -05:00			`resource :groups do`
Grapify the group API 2016-11-07 10:54:39 -05:00			`desc 'Get a groups list' do`
			`success Entities::Group`
			`end`
			`params do`
			`optional :skip_groups, type: Array[Integer], desc: 'Array of group ids to exclude from list'`
			`optional :all_available, type: Boolean, desc: 'Show all group that you have access to'`
			`optional :search, type: String, desc: 'Search for a specific group'`
Allow sorting groups in API Allow `order_by` and `sort` parameters to `/api/v3/groups.json`. At present, only ordering by name and path is supported, and the default sort is name ascending (alphabetical order). 2016-11-17 07:41:48 -05:00			`optional :order_by, type: String, values: %w[name path], default: 'name', desc: 'Order by name or path'`
			`optional :sort, type: String, values: %w[asc desc], default: 'asc', desc: 'Sort by asc (ascending) or desc (descending)'`
Grapify the group API 2016-11-07 10:54:39 -05:00			`end`
Fix groups api: differ between users and admin 2013-02-01 09:00:12 -05:00			`get do`
Grapify the group API 2016-11-07 10:54:39 -05:00			`groups = if current_user.admin`
			`Group.all`
			`elsif params[:all_available]`
			`GroupsFinder.new.execute(current_user)`
			`else`
			`current_user.groups`
			`end`
Add group filtering by name for API Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-12-30 04:30:56 -05:00
Grapify the group API 2016-11-07 10:54:39 -05:00			`groups = groups.search(params[:search]) if params[:search].present?`
			`groups = groups.where.not(id: params[:skip_groups]) if params[:skip_groups].present?`
Allow sorting groups in API Allow `order_by` and `sort` parameters to `/api/v3/groups.json`. At present, only ordering by name and path is supported, and the default sort is name ascending (alphabetical order). 2016-11-17 07:41:48 -05:00			`groups = groups.reorder(params[:order_by] => params[:sort].to_sym)`

Grapify the group API 2016-11-07 10:54:39 -05:00			`present paginate(groups), with: Entities::Group`
Fix groups api: differ between users and admin 2013-02-01 09:00:12 -05:00			`end`

Grapify the group API 2016-11-07 10:54:39 -05:00			`desc 'Get list of owned groups for authenticated user' do`
			`success Entities::Group`
			`end`
Added API endpoint groups/owned 2016-10-25 09:22:12 -04:00			`get '/owned' do`
Grapify the group API 2016-11-07 10:54:39 -05:00			`groups = current_user.owned_groups`
			`present paginate(groups), with: Entities::Group, user: current_user`
Added API endpoint groups/owned 2016-10-25 09:22:12 -04:00			`end`

Grapify the group API 2016-11-07 10:54:39 -05:00			`desc 'Create a group. Available only for users who can create groups.' do`
			`success Entities::Group`
			`end`
			`params do`
			`requires :name, type: String, desc: 'The name of the group'`
			`requires :path, type: String, desc: 'The path of the group'`
			`use :optional_params`
			`end`
Fix groups api: differ between users and admin 2013-02-01 09:00:12 -05:00			`post do`
use a nil subject when we want to check global abilities 2016-08-18 19:12:32 -04:00			`authorize! :create_group`
API: groups documentation updated, functions return different status codes Updates the API documentation of groups with infos to return codes. The function calls in the groups API have updated documentation and return `400 Bad Request` status code if a required attribute is missing. 2013-02-27 06:34:45 -05:00
Grapify the group API 2016-11-07 10:54:39 -05:00			`group = ::Groups::CreateService.new(current_user, declared_params(include_missing: false)).execute`
Fix groups api: differ between users and admin 2013-02-01 09:00:12 -05:00
Grapify the group API 2016-11-07 10:54:39 -05:00			`if group.persisted?`
			`present group, with: Entities::Group`
Fix groups api: differ between users and admin 2013-02-01 09:00:12 -05:00			`else`
Grapify the group API 2016-11-07 10:54:39 -05:00			`render_api_error!("Failed to save group #{group.errors.messages}", 400)`
Fix groups api: differ between users and admin 2013-02-01 09:00:12 -05:00			`end`
			`end`
Grapify the group API 2016-11-07 10:54:39 -05:00			`end`
Fix groups api: differ between users and admin 2013-02-01 09:00:12 -05:00
Grapify the group API 2016-11-07 10:54:39 -05:00			`params do`
			`requires :id, type: String, desc: 'The ID of a group'`
			`end`
			`resource :groups do`
			`desc 'Update a group. Available only for users who can administrate groups.' do`
			`success Entities::Group`
			`end`
			`params do`
			`optional :name, type: String, desc: 'The name of the group'`
			`optional :path, type: String, desc: 'The path of the group'`
			`use :optional_params`
			`at_least_one_of :name, :path, :description, :visibility_level,`
			`:lfs_enabled, :request_access_enabled`
			`end`
API: Ability to update a group 2016-04-07 04:12:49 -04:00			`put ':id' do`
			`group = find_group(params[:id])`
			`authorize! :admin_group, group`

Grapify the group API 2016-11-07 10:54:39 -05:00			`if ::Groups::UpdateService.new(group, current_user, declared_params(include_missing: false)).execute`
API: Ability to update a group 2016-04-07 04:12:49 -04:00			`present group, with: Entities::GroupDetail`
Fix minor issues according development guidelines 2016-04-12 13:08:35 -04:00			`else`
			`render_validation_error!(group)`
API: Ability to update a group 2016-04-07 04:12:49 -04:00			`end`
			`end`

Grapify the group API 2016-11-07 10:54:39 -05:00			`desc 'Get a single group, with containing projects.' do`
			`success Entities::GroupDetail`
			`end`
Fix groups api: differ between users and admin 2013-02-01 09:00:12 -05:00			`get ":id" do`
Add group membership api Change-Id: I5b174bba02856ede788dcb51ec9b0d598ea7d0df 2013-09-04 11:19:03 -04:00			`group = find_group(params[:id])`
			`present group, with: Entities::GroupDetail`
Fix groups api: differ between users and admin 2013-02-01 09:00:12 -05:00			`end`
Additional Admin APIs 2012-11-14 15:37:52 -05:00
Grapify the group API 2016-11-07 10:54:39 -05:00			`desc 'Remove a group.'`
API: new feature - remove group 2013-10-07 06:10:01 -04:00			`delete ":id" do`
			`group = find_group(params[:id])`
Rename manage_group ability to admin_group for consistency with project. 2015-04-10 08:39:10 -04:00			`authorize! :admin_group, group`
Wrap group removal into service Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2015-06-03 08:07:20 -04:00			`DestroyGroupService.new(group, current_user).execute`
API: new feature - remove group 2013-10-07 06:10:01 -04:00			`end`

Grapify the group API 2016-11-07 10:54:39 -05:00			`desc 'Get a list of projects in this group.' do`
			`success Entities::Project`
			`end`
Add API group projects endpoint. 2015-12-07 11:10:40 -05:00			`get ":id/projects" do`
			`group = find_group(params[:id])`
Fix groups API to list only user's accessible projects Closes #17496 2016-05-24 20:55:57 -04:00			`projects = GroupProjectsFinder.new(group).execute(current_user)`
Add API group projects endpoint. 2015-12-07 11:10:40 -05:00			`projects = paginate projects`
Project tools visibility level 2016-08-01 18:31:21 -04:00			`present projects, with: Entities::Project, user: current_user`
Add API group projects endpoint. 2015-12-07 11:10:40 -05:00			`end`

Grapify the group API 2016-11-07 10:54:39 -05:00			`desc 'Transfer a project to the group namespace. Available only for admin.' do`
			`success Entities::GroupDetail`
			`end`
			`params do`
			`requires :project_id, type: String, desc: 'The ID of the project'`
			`end`
Additional Admin APIs 2012-11-14 15:37:52 -05:00			`post ":id/projects/:project_id" do`
			`authenticated_as_admin!`
Fix transferring of project to another group using the API. 2015-07-02 08:31:25 -04:00			`group = Group.find_by(id: params[:id])`
Additional Admin APIs 2012-11-14 15:37:52 -05:00			`project = Project.find(params[:project_id])`
Fix transferring of project to another group using the API. 2015-07-02 08:31:25 -04:00			`result = ::Projects::TransferService.new(project, current_user).execute(group)`
Use new Projects::TransferService class Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-05-28 12:03:45 -04:00
			`if result`
Grapify the group API 2016-11-07 10:54:39 -05:00			`present group, with: Entities::GroupDetail`
Additional Admin APIs 2012-11-14 15:37:52 -05:00			`else`
Add a message when unable to save an object through api. 2015-01-07 04:46:00 -05:00			`render_api_error!("Failed to transfer project #{project.errors.messages}", 400)`
Additional Admin APIs 2012-11-14 15:37:52 -05:00			`end`
remove trailing spaces 2013-03-20 17:46:30 -04:00			`end`
Fix groups api: differ between users and admin 2013-02-01 09:00:12 -05:00			`end`
Add api for creating/listing/viewing groups 2013-01-08 16:05:00 -05:00			`end`
			`end`