tgstation-server 6.12.0
The /tg/station 13 server suite
Loading...
Searching...
No Matches
UserGroupAuthority.cs
Go to the documentation of this file.
1using System;
2using System.Collections.Generic;
3using System.Linq;
4using System.Threading;
5using System.Threading.Tasks;
6
7using GreenDonut;
8
9using Microsoft.EntityFrameworkCore;
10using Microsoft.Extensions.Logging;
11using Microsoft.Extensions.Options;
12
13using Tgstation.Server.Api.Models;
14using Tgstation.Server.Api.Models.Response;
15using Tgstation.Server.Api.Rights;
16using Tgstation.Server.Host.Authority.Core;
17using Tgstation.Server.Host.Configuration;
18using Tgstation.Server.Host.Database;
19using Tgstation.Server.Host.Models;
20using Tgstation.Server.Host.Security;
21
22namespace Tgstation.Server.Host.Authority
23{
25 sealed class UserGroupAuthority : AuthorityBase, IUserGroupAuthority
26 {
30 readonly IUserGroupsDataLoader userGroupsDataLoader;
31
35 readonly IOptionsSnapshot<GeneralConfiguration> generalConfigurationOptions;
36
44 [DataLoader]
45 public static Task<Dictionary<long, UserGroup>> GetUserGroups(
46 IReadOnlyList<long> ids,
47 IDatabaseContext databaseContext,
48 CancellationToken cancellationToken)
49 {
50 ArgumentNullException.ThrowIfNull(ids);
51 ArgumentNullException.ThrowIfNull(databaseContext);
52
53 return databaseContext
54 .Groups
55 .Where(group => ids.Contains(group.Id!.Value))
56 .ToDictionaryAsync(userGroup => userGroup.Id!.Value, cancellationToken);
57 }
58
81
83 public async ValueTask<AuthorityResponse<UserGroup>> GetId(long id, bool includeJoins, CancellationToken cancellationToken)
84 {
85 if (id != AuthenticationContext.User.GroupId && !((AdministrationRights)AuthenticationContext.GetRight(RightsType.Administration)).HasFlag(AdministrationRights.ReadUsers))
86 return Forbid<UserGroup>();
87
88 UserGroup? userGroup;
89 if (includeJoins)
90 userGroup = await Queryable(true)
91 .Where(x => x.Id == id)
92 .FirstOrDefaultAsync(cancellationToken);
93 else
94 userGroup = await userGroupsDataLoader.LoadAsync(id, cancellationToken);
95
96 if (userGroup == null)
97 return Gone<UserGroup>();
98
99 return new AuthorityResponse<UserGroup>(userGroup);
100 }
101
103 public ValueTask<AuthorityResponse<UserGroup>> Read()
104 {
105 var group = AuthenticationContext.User!.Group;
106 if (group == null)
107 return ValueTask.FromResult(Gone<UserGroup>());
108
109 return ValueTask.FromResult(new AuthorityResponse<UserGroup>(group));
110 }
111
113 public IQueryable<UserGroup> Queryable(bool includeJoins)
114 {
115 var queryable = DatabaseContext
116 .Groups
117 .AsQueryable();
118
119 if (includeJoins)
120 queryable = queryable
121 .Include(x => x.Users)
122 .Include(x => x.PermissionSet);
123
124 return queryable;
125 }
126
128 public async ValueTask<AuthorityResponse<UserGroup>> Create(string name, Models.PermissionSet? permissionSet, CancellationToken cancellationToken)
129 {
130 ArgumentNullException.ThrowIfNull(name);
131
132 var totalGroups = await DatabaseContext
133 .Groups
134 .AsQueryable()
135 .CountAsync(cancellationToken);
136 if (totalGroups >= generalConfigurationOptions.Value.UserGroupLimit)
137 return Conflict<UserGroup>(ErrorCode.UserGroupLimitReached);
138
139 var modelPermissionSet = new Models.PermissionSet
140 {
141 AdministrationRights = permissionSet?.AdministrationRights ?? AdministrationRights.None,
142 InstanceManagerRights = permissionSet?.InstanceManagerRights ?? InstanceManagerRights.None,
143 };
144
145 var dbGroup = new UserGroup
146 {
147 Name = name,
148 PermissionSet = modelPermissionSet,
149 };
150
151 DatabaseContext.Groups.Add(dbGroup);
152 await DatabaseContext.Save(cancellationToken);
153 Logger.LogInformation("Created new user group {groupName} ({groupId})", dbGroup.Name, dbGroup.Id);
154
155 return new AuthorityResponse<UserGroup>(
156 dbGroup,
157 HttpSuccessResponse.Created);
158 }
159
161 public async ValueTask<AuthorityResponse<UserGroup>> Update(long id, string? newName, Models.PermissionSet? newPermissionSet, CancellationToken cancellationToken)
162 {
163 var currentGroup = await DatabaseContext
164 .Groups
165 .AsQueryable()
166 .Where(x => x.Id == id)
167 .Include(x => x.PermissionSet)
168 .FirstOrDefaultAsync(cancellationToken);
169
170 if (currentGroup == default)
171 return Gone<UserGroup>();
172
173 if (newPermissionSet != null)
174 {
175 currentGroup.PermissionSet!.AdministrationRights = newPermissionSet.AdministrationRights ?? currentGroup.PermissionSet.AdministrationRights;
176 currentGroup.PermissionSet.InstanceManagerRights = newPermissionSet.InstanceManagerRights ?? currentGroup.PermissionSet.InstanceManagerRights;
177 }
178
179 currentGroup.Name = newName ?? currentGroup.Name;
180
181 await DatabaseContext.Save(cancellationToken);
182
183 return new AuthorityResponse<UserGroup>(currentGroup);
184 }
185
187 public async ValueTask<AuthorityResponse> DeleteEmpty(long id, CancellationToken cancellationToken)
188 {
189 var numDeleted = await DatabaseContext
190 .Groups
191 .AsQueryable()
192 .Where(x => x.Id == id && x.Users!.Count == 0)
193 .ExecuteDeleteAsync(cancellationToken);
194
195 if (numDeleted > 0)
196 return new();
197
198 // find out how we failed
199 var groupExists = await DatabaseContext
200 .Groups
201 .AsQueryable()
202 .Where(x => x.Id == id)
203 .AnyAsync(cancellationToken);
204
205 return new(
206 groupExists
207 ? new ErrorMessageResponse(ErrorCode.UserGroupNotEmpty)
208 : new ErrorMessageResponse(),
209 groupExists
210 ? HttpFailureResponse.Conflict
211 : HttpFailureResponse.Gone);
212 }
213 }
214}
Tgstation.Server.Api.Models.PermissionSet
Represents a set of server permissions.
Definition PermissionSet.cs:11
Tgstation.Server.Api.Models.PermissionSet.AdministrationRights
AdministrationRights? AdministrationRights
The Rights.AdministrationRights for the user.
Definition PermissionSet.cs:24
Tgstation.Server.Api.Models.Response.ErrorMessageResponse
Represents an error message returned by the server.
Definition ErrorMessageResponse.cs:12
Tgstation.Server.Host.Authority.Core.AuthorityBase.Logger
ILogger< AuthorityBase > Logger
Gets the ILogger for the AuthorityBase.
Definition AuthorityBase.cs:33
Tgstation.Server.Host.Authority.UserGroupAuthority.Queryable
IQueryable< UserGroup > Queryable(bool includeJoins)
Gets all registered UserGroups.A IQueryable<T> of UserGroups.
Definition UserGroupAuthority.cs:113
Tgstation.Server.Host.Authority.UserGroupAuthority.Read
ValueTask< AuthorityResponse< UserGroup > > Read()
Gets the current UserGroup.A ValueTask<TResult> resulting in a UserGroup AuthorityResponse<TResult>.
Definition UserGroupAuthority.cs:103
Tgstation.Server.Host.Authority.UserGroupAuthority.UserGroupAuthority
UserGroupAuthority(IAuthenticationContext authenticationContext, IDatabaseContext databaseContext, ILogger< UserGroupAuthority > logger, IUserGroupsDataLoader userGroupsDataLoader, IOptionsSnapshot< GeneralConfiguration > generalConfigurationOptions)
Initializes a new instance of the UserGroupAuthority class.
Definition UserGroupAuthority.cs:67
Tgstation.Server.Host.Authority.UserGroupAuthority.GetId
async ValueTask< AuthorityResponse< UserGroup > > GetId(long id, bool includeJoins, CancellationToken cancellationToken)
Gets the UserGroup with a given id .A ValueTask<TResult> resulting in a User AuthorityResponse<TResul...
Definition UserGroupAuthority.cs:83
Tgstation.Server.Host.Authority.UserGroupAuthority.userGroupsDataLoader
readonly IUserGroupsDataLoader userGroupsDataLoader
The IUserGroupsDataLoader for the UserGroupAuthority.
Definition UserGroupAuthority.cs:30
Tgstation.Server.Host.Authority.UserGroupAuthority.DeleteEmpty
async ValueTask< AuthorityResponse > DeleteEmpty(long id, CancellationToken cancellationToken)
Deletes an empty UserGroup.A ValueTask representing the running operation.
Definition UserGroupAuthority.cs:187
Tgstation.Server.Host.Authority.UserGroupAuthority.GetUserGroups
static Task< Dictionary< long, UserGroup > > GetUserGroups(IReadOnlyList< long > ids, IDatabaseContext databaseContext, CancellationToken cancellationToken)
Implements the userGroupsDataLoader.
Definition UserGroupAuthority.cs:45
Tgstation.Server.Host.Authority.UserGroupAuthority.Update
async ValueTask< AuthorityResponse< UserGroup > > Update(long id, string? newName, Models.PermissionSet? newPermissionSet, CancellationToken cancellationToken)
Updates a UserGroup.A ValueTask<TResult> resulting in a UserGroup AuthorityResponse<TResult>.
Definition UserGroupAuthority.cs:161
Tgstation.Server.Host.Authority.UserGroupAuthority.Create
async ValueTask< AuthorityResponse< UserGroup > > Create(string name, Models.PermissionSet? permissionSet, CancellationToken cancellationToken)
Create a UserGroup.A ValueTask<TResult> resulting in a UserGroup AuthorityResponse<TResult>.
Definition UserGroupAuthority.cs:128
Tgstation.Server.Host.Authority.UserGroupAuthority.generalConfigurationOptions
readonly IOptionsSnapshot< GeneralConfiguration > generalConfigurationOptions
The IOptionsSnapshot<TOptions> of the GeneralConfiguration.
Definition UserGroupAuthority.cs:35
Tgstation.Server.Host.Database.DatabaseContext
Backend abstract implementation of IDatabaseContext.
Definition DatabaseContext.cs:25
Tgstation.Server.Host.Database.DatabaseContext.Save
Task Save(CancellationToken cancellationToken)
Saves changes made to the IDatabaseContext.A Task representing the running operation.
Tgstation.Server.Host.Database.DatabaseContext.Groups
DbSet< UserGroup > Groups
The UserGroups in the DatabaseContext.
Definition DatabaseContext.cs:109
Tgstation.Server.Host.Models.UserGroup
Represents a group of Users.
Definition UserGroup.cs:16
Tgstation.Server.Host.Models.User.GroupId
long? GroupId
The EntityId.Id of the User's Group.
Definition User.cs:46
Tgstation.Server.Host.Models.User.Group
UserGroup? Group
The UserGroup the User belongs to, if any.
Definition User.cs:41
Tgstation.Server.Host.Security.AuthenticationContext.GetRight
ulong GetRight(RightsType rightsType)
Get the value of a given rightsType .The value of rightsType . Note that if InstancePermissionSet is ...
Definition AuthenticationContext.cs:103
Tgstation.Server.Host.Database.IDatabaseContext.Groups
IDatabaseCollection< UserGroup > Groups
The DbSet<TEntity> for UserGroups.
Definition IDatabaseContext.cs:96
Tgstation.Server.Host.Security.IAuthenticationContext
For creating and accessing authentication contexts.
Definition IAuthenticationContext.cs:12
Tgstation.Server.Api.Models.ErrorCode
ErrorCode
Types of Response.ErrorMessageResponses that the API may return.
Definition ErrorCode.cs:12
Tgstation.Server.Api.Rights.ConfigurationRights.List
@ List
User may list files if the Models.Instance allows it.
Tgstation.Server.Api.Rights.RightsType
RightsType
The type of rights a model uses.
Definition RightsType.cs:7
Tgstation.Server.Api.Rights.InstanceManagerRights
InstanceManagerRights
Rights for managing Models.Instances.
Definition InstanceManagerRights.cs:10
Tgstation.Server.Api.Rights.AdministrationRights
AdministrationRights
Administration rights for the server.
Definition AdministrationRights.cs:10
Tgstation.Server.Host.Authority.Core.HttpFailureResponse
HttpFailureResponse
Indicates the type of HTTP status code an failing AuthorityResponse should generate.
Definition HttpFailureResponse.cs:7
Tgstation.Server.Host.Authority.Core.HttpSuccessResponse
HttpSuccessResponse
Indicates the type of HTTP status code a successful AuthorityResponse<TResult> should generate.
Definition HttpSuccessResponse.cs:7
Generated by doxygen 1.9.8