/*! * Copyright (c) 2024 PLANKA Software GmbH * Licensed under the Fair Use License: https://github.com/plankanban/planka/blob/master/LICENSE.md */ const { idInput } = require('../../../utils/inputs'); const Errors = { NOT_ENOUGH_RIGHTS: { notEnoughRights: 'Not enough rights', }, CARD_NOT_FOUND: { cardNotFound: 'Card not found', }, USER_NOT_FOUND: { userNotFound: 'User not found', }, USER_ALREADY_CARD_MEMBER: { userAlreadyCardMember: 'User already card member', }, }; module.exports = { inputs: { cardId: { ...idInput, required: true, }, userId: { ...idInput, required: true, }, }, exits: { notEnoughRights: { responseType: 'forbidden', }, cardNotFound: { responseType: 'notFound', }, userNotFound: { responseType: 'notFound', }, userAlreadyCardMember: { responseType: 'conflict', }, }, async fn(inputs) { const { currentUser } = this.req; const { card, list, board, project } = await sails.helpers.cards .getPathToProjectById(inputs.cardId) .intercept('pathNotFound', () => Errors.CARD_NOT_FOUND); const boardMembership = await BoardMembership.qm.getOneByBoardIdAndUserId( board.id, currentUser.id, ); if (!boardMembership) { throw Errors.CARD_NOT_FOUND; // Forbidden } if (boardMembership.role !== BoardMembership.Roles.EDITOR) { throw Errors.NOT_ENOUGH_RIGHTS; } const user = await User.qm.getOneById(inputs.userId); if (!user) { throw Errors.USER_NOT_FOUND; } const isBoardMember = await sails.helpers.users.isBoardMember(user.id, board.id); if (!isBoardMember) { throw Errors.USER_NOT_FOUND; // Forbidden } const cardMembership = await sails.helpers.cardMemberships.createOne .with({ project, board, list, values: { card, user, }, actorUser: currentUser, request: this.req, }) .intercept('userAlreadyCardMember', () => Errors.USER_ALREADY_CARD_MEMBER); return { item: cardMembership, }; }, };