Fix editing users from collections menu

2024-11-15 09:58:54 -07:00 · 2019-01-25 17:43:51 +01:00 · 2019-01-25 17:43:51 +01:00 · 86de0ca17b
commit 86de0ca17b
parent 80414f8452
3 changed files with 40 additions and 3 deletions
--- a/src/api/core/organizations.rs
+++ b/src/api/core/organizations.rs
@ -6,7 +6,9 @@ use crate::db::models::*;
 use crate::db::DbConn;
 use crate::CONFIG;

-use crate::api::{EmptyResult, JsonResult, JsonUpcase, Notify, NumberOrString, PasswordData, UpdateType};
+use crate::api::{
+    EmptyResult, JsonResult, JsonUpcase, JsonUpcaseVec, Notify, NumberOrString, PasswordData, UpdateType,
+};
 use crate::auth::{decode_invite, AdminHeaders, Headers, OwnerHeaders};

 use crate::mail;
@ -26,6 +28,7 @@ pub fn routes() -> Vec<Route> {
        get_org_collections,
        get_org_collection_detail,
        get_collection_users,
+        put_collection_users,
        put_organization,
        post_organization,
        post_organization_collections,
@ -371,13 +374,46 @@ fn get_collection_users(org_id: String, coll_id: String, _headers: AdminHeaders,
        .map(|col_user| {
            UserOrganization::find_by_user_and_org(&col_user.user_uuid, &org_id, &conn)
                .unwrap()
-                .to_json_collection_user_details(col_user.read_only, &conn)
+                .to_json_collection_user_details(col_user.read_only)
        })
        .collect();

    Ok(Json(json!(user_list)))
 }

+#[put("/organizations/<org_id>/collections/<coll_id>/users", data = "<data>")]
+fn put_collection_users(
+    org_id: String,
+    coll_id: String,
+    data: JsonUpcaseVec<CollectionData>,
+    _headers: AdminHeaders,
+    conn: DbConn,
+) -> EmptyResult {
+    // Get org and collection, check that collection is from org
+    if Collection::find_by_uuid_and_org(&coll_id, &org_id, &conn).is_none() {
+        err!("Collection not found in Organization")
+    }
+
+    // Delete all the user-collections
+    CollectionUser::delete_all_by_collection(&coll_id, &conn)?;
+
+    // And then add all the received ones (except if the user has access_all)
+    for d in data.iter().map(|d| &d.data) {
+        let user = match UserOrganization::find_by_uuid(&d.Id, &conn) {
+            Some(u) => u,
+            None => err!("User is not part of organization"),
+        };
+
+        if user.access_all {
+            continue;
+        }
+
+        CollectionUser::save(&user.user_uuid, &coll_id, d.ReadOnly, &conn)?;
+    }
+
+    Ok(())
+}
+
 #[derive(FromForm)]
 struct OrgIdData {
    #[form(field = "organizationId")]
--- a/src/api/mod.rs
+++ b/src/api/mod.rs
@ -23,6 +23,7 @@ pub type EmptyResult = ApiResult<()>;

 use crate::util;
 type JsonUpcase<T> = Json<util::UpCase<T>>;
+type JsonUpcaseVec<T> = Json<Vec<util::UpCase<T>>>;

 // Common structs representing JSON data received
 #[derive(Deserialize)]
--- a/src/db/models/organization.rs
+++ b/src/db/models/organization.rs
@ -292,7 +292,7 @@ impl UserOrganization {
        })
    }

-    pub fn to_json_collection_user_details(&self, read_only: bool, conn: &DbConn) -> Value {
+    pub fn to_json_collection_user_details(&self, read_only: bool) -> Value {
        json!({
            "Id": self.uuid,
            "ReadOnly": read_only