✨ Realm permission check

2024-02-09 12:36:39 +08:00
parent 798e78ff8e
commit 012ee55c3a
6 changed files with 92 additions and 20 deletions
--- a/pkg/server/realms_api.go
+++ b/pkg/server/realms_api.go
@ -49,13 +49,14 @@ func createRealm(c *fiber.Ctx) error {
 	var data struct {
 		Name        string `json:"name" validate:"required"`
 		Description string `json:"description"`
+		IsPublic    bool   `json:"is_public"`
 	}

 	if err := BindAndValidate(c, &data); err != nil {
 		return err
 	}

-	realm, err := services.NewRealm(user, data.Name, data.Description)
+	realm, err := services.NewRealm(user, data.Name, data.Description, data.IsPublic)
 	if err != nil {
 		return fiber.NewError(fiber.StatusBadRequest, err.Error())
 	}
@ -63,6 +64,40 @@ func createRealm(c *fiber.Ctx) error {
 	return c.JSON(realm)
 }

+func inviteRealm(c *fiber.Ctx) error {
+	user := c.Locals("principal").(models.Account)
+	realmId, _ := c.ParamsInt("realmId", 0)
+
+	var data struct {
+		AccountID uint `json:"account_id" validate:"required"`
+	}
+
+	if err := BindAndValidate(c, &data); err != nil {
+		return err
+	}
+
+	var realm models.Realm
+	if err := database.C.Where(&models.Realm{
+		BaseModel: models.BaseModel{ID: uint(realmId)},
+		AccountID: user.ID,
+	}).First(&realm).Error; err != nil {
+		return fiber.NewError(fiber.StatusNotFound, err.Error())
+	}
+
+	var account models.Account
+	if err := database.C.Where(&models.Account{
+		BaseModel: models.BaseModel{ID: uint(realmId)},
+	}).First(&account).Error; err != nil {
+		return fiber.NewError(fiber.StatusNotFound, err.Error())
+	}
+
+	if err := services.InviteRealmMember(account, realm); err != nil {
+		return fiber.NewError(fiber.StatusBadRequest, err.Error())
+	} else {
+		return c.SendStatus(fiber.StatusOK)
+	}
+}
+
 func editRealm(c *fiber.Ctx) error {
 	user := c.Locals("principal").(models.Account)
 	id, _ := c.ParamsInt("realmId", 0)
@ -70,6 +105,7 @@ func editRealm(c *fiber.Ctx) error {
 	var data struct {
 		Name        string `json:"name" validate:"required"`
 		Description string `json:"description"`
+		IsPublic    bool   `json:"is_public"`
 	}

 	if err := BindAndValidate(c, &data); err != nil {
@ -84,7 +120,7 @@ func editRealm(c *fiber.Ctx) error {
 		return fiber.NewError(fiber.StatusNotFound, err.Error())
 	}

-	realm, err := services.EditRealm(realm, data.Name, data.Description)
+	realm, err := services.EditRealm(realm, data.Name, data.Description, data.IsPublic)
 	if err != nil {
 		return fiber.NewError(fiber.StatusBadRequest, err.Error())
 	}
--- a/pkg/server/startup.go
+++ b/pkg/server/startup.go
@ -80,6 +80,7 @@ func NewServer() {
 		api.Get("/realms/me", auth, listOwnedRealm)
 		api.Get("/realms/:realmId", getRealm)
 		api.Post("/realms", auth, createRealm)
+		api.Post("/realms/:realmId/invite", auth, inviteRealm)
 		api.Put("/realms/:realmId", auth, editRealm)
 		api.Delete("/realms/:realmId", auth, deleteRealm)
 	}