March 2020 Release Challenge

Author: jmgasper

src/controllers/GithubController.js

@@ -19,6 +19,7 @@ const config = require('../config');
 const GithubService = require('../services/GithubService');
 const UserService = require('../services/UserService');
 const OwnerUserTeam = require('../models').OwnerUserTeam;
+const UserTeamMapping = require('../models').UserTeamMapping;
 const UserMapping = require('../models').UserMapping;
 const constants = require('../common/constants');
 
@@ -102,7 +103,8 @@ async function getTeamRegistrationUrl(req) {
   if (!user || !user.accessToken) {
     throw new errors.UnauthorizedError('You have not setup for Github.');
   }
-  return await GithubService.getTeamRegistrationUrl(user.accessToken, user.username, req.params.id);
+  return await GithubService.getTeamRegistrationUrl(user.accessToken, user.username, req.params.id,
+    req.params.accessLevel);
 }
 
 /**
@@ -152,7 +154,7 @@ async function addUserToTeamCallback(req, res) {
   const token = result.body.access_token;
   // add user to team
   console.log(`adding ${token} to ${team.teamId} with ${team.ownerToken}`); /* eslint-disable-line no-console */
-  const githubUser = await GithubService.addTeamMember(team.teamId, team.ownerToken, token);
+  const githubUser = await GithubService.addTeamMember(team.teamId, team.ownerToken, token, team.accessLevel);
   // associate github username with TC username
   const mapping = await dbHelper.scanOne(UserMapping, {
     topcoderUsername: {eq: req.session.tcUsername},
@@ -175,6 +177,22 @@ async function addUserToTeamCallback(req, res) {
     });
   }
 
+  // associate github username and teamId
+  const githubUserToTeamMapping = await dbHelper.scanOne(UserTeamMapping, {
+    teamId: {eq: team.teamId},
+    githubUserName: {eq: githubUser.username},
+    githubOrgId: {eq: team.githubOrgId},
+  });
+
+  if (!githubUserToTeamMapping) {
+    await dbHelper.create(UserTeamMapping, {
+      id: helper.generateIdentifier(),
+      teamId: team.teamId,
+      githubUserName: githubUser.username,
+      githubOrgId: team.githubOrgId,
+    });
+  }
+
   // check if user is already in the team or not yet
   if (githubUser.state === 'active') {
     // redirect user to the success page, to let user know that he is already in the team
@@ -190,6 +208,40 @@ async function addUserToTeamCallback(req, res) {
   }
 }
 
+/**
+ * Delete users from a team.
+ * @param {Object} req the request
+ * @param {Object} res the response
+ */
+async function deleteUsersFromTeam(req, res) {
+  let teamInDB;
+  const teamId = req.params.id;
+  try {
+    teamInDB = await helper.ensureExists(OwnerUserTeam, {teamId}, 'OwnerUserTeam');
+  } catch (err) {
+    if (!(err instanceof errors.NotFoundError)) {
+      throw err;
+    }
+  }
+  // If teamInDB not exists, then just return
+  if (teamInDB) {
+    try {
+      const githubOrgId = teamInDB.githubOrgId;
+      const token = teamInDB.ownerToken;
+      const userTeamMappings = await dbHelper.scan(UserTeamMapping, {
+        teamId: req.params.id,
+      });
+      // eslint-disable-next-line no-restricted-syntax
+      for (const userTeamMapItem of userTeamMappings) {
+        await GithubService.deleteUserFromGithubTeam(token, teamId, githubOrgId, userTeamMapItem.githubUserName);
+        await dbHelper.remove(UserTeamMapping, {id: userTeamMapItem.id});
+      }
+    } catch (err) {
+      throw err;
+    }
+  }
+  res.send({});
+}
 
 module.exports = {
   ownerUserLogin,
@@ -198,6 +250,7 @@ module.exports = {
   getTeamRegistrationUrl,
   addUserToTeam,
   addUserToTeamCallback,
+  deleteUsersFromTeam,
 };
 
 helper.buildController(module.exports);

src/controllers/GitlabController.js

@@ -21,6 +21,7 @@ const UserService = require('../services/UserService');
 const User = require('../models').User;
 const OwnerUserGroup = require('../models').OwnerUserGroup;
 const UserMapping = require('../models').UserMapping;
+const UserGroupMapping = require('../models').UserGroupMapping;
 
 const request = superagentPromise(superagent, Promise);
 
@@ -114,7 +115,7 @@ async function getGroupRegistrationUrl(req) {
   if (!user || !user.accessToken) {
     throw new errors.UnauthorizedError('You have not setup for Gitlab.');
   }
-  return await GitlabService.getGroupRegistrationUrl(user.username, req.params.id);
+  return await GitlabService.getGroupRegistrationUrl(user.username, req.params.id, req.params.accessLevel);
 }
 
 /**
@@ -170,27 +171,7 @@ async function addUserToGroupCallback(req, res) {
     throw new errors.NotFoundError('The owner user is not found or not accessible.');
   }
 
-  // refresh the owner user access token if needed
-  if (ownerUser.accessTokenExpiration && ownerUser.accessTokenExpiration.getTime() <=
-    new Date().getTime() + constants.GITLAB_REFRESH_TOKEN_BEFORE_EXPIRATION * MS_PER_SECOND) {
-    const refreshTokenResult = await request
-      .post('https://gitlab.com/oauth/token')
-      .query({
-        client_id: config.GITLAB_CLIENT_ID,
-        client_secret: config.GITLAB_CLIENT_SECRET,
-        refresh_token: ownerUser.refreshToken,
-        grant_type: 'refresh_token',
-        redirect_uri: `${config.WEBSITE}/api/${config.API_VERSION}/gitlab/owneruser/callback`,
-      })
-      .end();
-    // save user token data
-    const expiresIn = refreshTokenResult.body.expires_in || constants.GITLAB_ACCESS_TOKEN_DEFAULT_EXPIRATION;
-    await dbHelper.update(User, ownerUser.id, {
-      accessToken: refreshTokenResult.body.access_token,
-      accessTokenExpiration: new Date(new Date().getTime() + expiresIn * MS_PER_SECOND),
-      refreshToken: refreshTokenResult.body.refresh_token,
-    });
-  }
+  await GitlabService.refreshGitlabUserAccessToken(ownerUser);
 
   // exchange code to get normal user token
   const result = await request
@@ -212,7 +193,7 @@ async function addUserToGroupCallback(req, res) {
   });
 
   // add user to group
-  const gitlabUser = await GitlabService.addGroupMember(group.groupId, ownerUser.accessToken, token);
+  const gitlabUser = await GitlabService.addGroupMember(group.groupId, ownerUser.accessToken, token, group.accessLevel);
   // associate gitlab username with TC username
   const mapping = await dbHelper.scanOne(UserMapping, {
     topcoderUsername: {eq: req.session.tcUsername},
@@ -230,17 +211,67 @@ async function addUserToGroupCallback(req, res) {
       gitlabUserId: gitlabUser.id,
     });
   }
+  // We get gitlabUser.id and group.groupId and
+  // associate github username and teamId
+  const gitlabUserToGroupMapping = await dbHelper.scanOne(UserGroupMapping, {
+    groupId: {eq: group.groupId},
+    gitlabUserId: {eq: gitlabUser.id},
+  });
+
+  if (!gitlabUserToGroupMapping) {
+    await dbHelper.create(UserGroupMapping, {
+      id: helper.generateIdentifier(),
+      groupId: group.groupId,
+      gitlabUserId: gitlabUser.id,
+    });
+  }
   // redirect to success page
   res.redirect(`${constants.USER_ADDED_TO_TEAM_SUCCESS_URL}/gitlab/${currentGroup.full_path}`);
 }
 
+
+/**
+ * Delete users from a group.
+ * @param {Object} req the request
+ * @param {Object} res the response
+ */
+async function deleteUsersFromTeam(req, res) {
+  const groupId = req.params.id;
+  let groupInDB;
+  try {
+    groupInDB = await helper.ensureExists(OwnerUserGroup, {groupId}, 'OwnerUserGroup');
+  } catch (err) {
+    if (!(err instanceof errors.NotFoundError)) {
+      throw err;
+    }
+  }
+  // If groupInDB not exists, then just return
+  if (groupInDB) {
+    try {
+      const ownerUser = await helper.ensureExists(User,
+        {username: groupInDB.ownerUsername, type: constants.USER_TYPES.GITLAB, role: constants.USER_ROLES.OWNER}, 'User');
+      await GitlabService.refreshGitlabUserAccessToken(ownerUser);
+      const userGroupMappings = await dbHelper.scan(UserGroupMapping, {groupId});
+      // eslint-disable-next-line no-restricted-syntax
+      for (const userGroupMapItem of userGroupMappings) {
+        await GitlabService.deleteUserFromGitlabGroup(ownerUser.accessToken, groupId, userGroupMapItem.gitlabUserId);
+        await dbHelper.remove(UserGroupMapping, {id: userGroupMapItem.id});
+      }
+    } catch (err) {
+      throw err;
+    }
+  }
+  res.send({});
+}
+
 module.exports = {
   ownerUserLogin,
   ownerUserLoginCallback,
   listOwnerUserGroups,
   getGroupRegistrationUrl,
   addUserToGroup,
   addUserToGroupCallback,
+  deleteUsersFromTeam,
 };
 
 helper.buildController(module.exports);

src/front/src/app/git-access-control/access-control.html

@@ -27,12 +27,13 @@ <h2>Git Access Control</h2>
                                                     </span>
                                                 </div>
                                             </div>
-                                        </div>        
+                                        </div>
                                         <table ng-if="tableConfig.github.items.length!=0 || tableConfig.github.allItems.length!=0" class="footable table table-stripped toggle-arrow-tiny">
                                             <thead>
                                                 <tr>
                                                     <th class="col-lg-2" data-sort-ignore="true">Team Name</th>
                                                     <th class="col-lg-2" data-sort-ignore="true">Get Link</th>
+                                                    <th class="col-lg-2" data-sort-ignore="true">Remove All Users</th>
                                                 </tr>
                                             </thead>
                                             <tbody>
@@ -56,6 +57,14 @@ <h2>Git Access Control</h2>
                                                             </a>
                                                         </div>
                                                     </td>
+                                                    <td class="col-lg-2">
+                                                        <button class="btn btn-sm btn-danger" ng-hide="item.removingUsers" ng-click="removeAllUsers(item, 'github')">
+                                                            <strong>Remove All Users</strong>
+                                                        </button>
+                                                        <button class="btn btn-sm btn-success disabled" ng-show="item.removingUsers">
+                                                            <i class="fa fa-spinner fa-spin"></i>
+                                                        </button>
+                                                    </td>
                                                 </tr>
                                             </tbody>
                                             <tfoot>
@@ -103,7 +112,7 @@ <h2>Git Access Control</h2>
                             <uib-tab index="1" heading="Gitlab" select="tabChanged('gitlab')">
                                 <br/>
                                 <div ng-if="settings.gitlab==true">
-                                    <div ng-show="tableConfig.gitlab.initialized">                                        
+                                    <div ng-show="tableConfig.gitlab.initialized">
                                         <div ng-if="tableConfig.gitlab.items.length!=0 || tableConfig.gitlab.allItems.length!=0" class="row">
                                             <div class="col-lg-3">
                                                 <div class="input-group custom-search-form">
@@ -144,6 +153,14 @@ <h2>Git Access Control</h2>
                                                             </a>
                                                         </div>
                                                     </td>
+                                                    <td class="col-lg-2">
+                                                        <button class="btn btn-sm btn-danger" ng-hide="item.removingUsers" ng-click="removeAllUsers(item, 'gitlab')">
+                                                            <strong>Remove All Users</strong>
+                                                        </button>
+                                                        <button class="btn btn-sm btn-success disabled" ng-show="item.removingUsers">
+                                                            <i class="fa fa-spinner fa-spin"></i>
+                                                        </button>
+                                                    </td>
                                                 </tr>
                                             </tbody>
                                             <tfoot>
@@ -194,4 +211,4 @@ <h2>Git Access Control</h2>
             </div>
         </div>
     </div>
-</div>
+</div>

src/front/src/app/git-access-control/access-control.service.js

@@ -24,8 +24,8 @@ angular.module('topcoderX')
          * get gitlab shareable link
          *
          */
-        service.getGitlabShareableLink = function (groupId) {
-            return $http.get(baseUrl + '/api/v1/gitlab/groups/' + groupId + '/registrationurl').then(function (response) {
+        service.getGitlabShareableLink = function (groupId, accessLevel) {
+            return $http.get(baseUrl + '/api/v1/gitlab/groups/' + groupId + '/registrationurl/' + accessLevel).then(function (response) {
                 return response;
             });
         };
@@ -44,8 +44,28 @@ angular.module('topcoderX')
          * get github shareable link
          *
          */
-        service.getGithubShareableLink = function (teamId) {
-            return $http.get(baseUrl + '/api/v1/github/teams/' + teamId + '/registrationurl').then(function (response) {
+        service.getGithubShareableLink = function (teamId, accessLevel) {
+            return $http.get(baseUrl + '/api/v1/github/teams/' + teamId + '/registrationurl/' + accessLevel).then(function (response) {
+                return response;
+            });
+        };
+
+        /**
+         * remove all users from a github team
+         *
+         */
+        service.removeAllGithubUsers = function (teamId) {
+            return $http.delete(baseUrl + '/api/v1/github/teams/' + teamId + '/users').then(function (response) {
+                return response;
+            });
+        };
+
+        /**
+         * remove all users from a gitlab group
+         *
+         */
+        service.removeAllGitlabUsers = function (groupId) {
+            return $http.delete(baseUrl + '/api/v1/gitlab/groups/' + groupId + '/users').then(function (response) {
                 return response;
             });
         };

src/front/src/app/git-access-control/git-access-dialog.controller.js

@@ -0,0 +1,44 @@
+// controller for transfer ownership dialog
+'use strict';
+
+angular.module('topcoderX').controller('GitAccessDialogController', [
+  '$scope',
+  '$uibModalInstance',
+  'provider',
+  function (
+    $scope,
+    $uibModalInstance,
+    provider
+  ) {
+    $scope.provider = provider;
+    $scope.accessLevel = '';
+    if ($scope.provider === 'github') {
+      $scope.accessLevel = 'member';
+    } else {
+      $scope.accessLevel = '30';
+    }
+
+    /**
+     * Update the access level
+     */
+    $scope.updateAccessLevel = function (accessLevel) {
+      $scope.accessLevel = accessLevel;
+    };
+
+    /**
+     * Set changes to father controller
+     */
+    $scope.setChanges = function () {
+      $uibModalInstance.close({
+        accessLevel: $scope.accessLevel,
+      });
+    };
+
+    /**
+    * Close dialog
+    */
+    $scope.close = function () {
+      $uibModalInstance.close();
+    };
+  },
+]);