feat(global): introduce user teams and new UAC system (#868)

2025-08-02 20:35:25 +02:00 · 2017-05-23 20:56:10 +02:00 · 2017-05-23 20:56:10 +02:00 · 5523fc9023
commit 5523fc9023
parent a380fd9adc
160 changed files with 7112 additions and 3166 deletions
--- a/app/components/sidebar/sidebar.html
+++ b/app/components/sidebar/sidebar.html
@ -49,14 +49,16 @@
    <li class="sidebar-list" ng-if="applicationState.endpoint.mode.provider === 'DOCKER_STANDALONE'">
      <a ui-sref="docker" ui-sref-active="active">Docker <span class="menu-icon fa fa-th"></span></a>
    </li>
-    <li class="sidebar-title"><span>Portainer settings</span></li>
-    <li class="sidebar-list" ng-if="applicationState.application.authentication">
-      <a ui-sref="settings" ui-sref-active="active">Password <span class="menu-icon fa fa-lock"></span></a>
+    <li class="sidebar-title" ng-if="isAdmin || isTeamLeader">
+      <span>Portainer settings</span>
    </li>
-    <li class="sidebar-list" ng-if="applicationState.application.authentication && userRole === 1">
-      <a ui-sref="users" ui-sref-active="active">Users <span class="menu-icon fa fa-user"></span></a>
+    <li class="sidebar-list" ng-if="applicationState.application.authentication && (isAdmin || isTeamLeader)">
+      <a ui-sref="users" ui-sref-active="active">User management <span class="menu-icon fa fa-users"></span></a>
+      <div class="sidebar-sublist" ng-if="toggle && ($state.current.name === 'users' || $state.current.name === 'user' || $state.current.name === 'teams' || $state.current.name === 'team')">
+        <a ui-sref="teams" ui-sref-active="active">Teams</span></a>
+      </div>
    </li>
-    <li class="sidebar-list" ng-if="!applicationState.application.authentication || userRole === 1">
+    <li class="sidebar-list" ng-if="!applicationState.application.authentication || isAdmin">
      <a ui-sref="endpoints" ui-sref-active="active">Endpoints <span class="menu-icon fa fa-plug"></span></a>
    </li>
  </ul>
--- a/app/components/sidebar/sidebarController.js
+++ b/app/components/sidebar/sidebarController.js
@ -1,13 +1,13 @@
 angular.module('sidebar', [])
-.controller('SidebarController', ['$scope', '$state', 'Settings', 'Config', 'EndpointService', 'StateManager', 'EndpointProvider', 'Notifications', 'Authentication',
-function ($scope, $state, Settings, Config, EndpointService, StateManager, EndpointProvider, Notifications, Authentication) {
+.controller('SidebarController', ['$q', '$scope', '$state', 'Settings', 'Config', 'EndpointService', 'StateManager', 'EndpointProvider', 'Notifications', 'Authentication', 'UserService',
+function ($q, $scope, $state, Settings, Config, EndpointService, StateManager, EndpointProvider, Notifications, Authentication, UserService) {

  Config.$promise.then(function (c) {
    $scope.logo = c.logo;
  });

  $scope.uiVersion = Settings.uiVersion;
-  $scope.userRole = Authentication.getUserDetails().role;
+  $scope.endpoints = [];

  $scope.switchEndpoint = function(endpoint) {
    var activeEndpointID = EndpointProvider.endpointID();
@ -27,22 +27,47 @@ function ($scope, $state, Settings, Config, EndpointService, StateManager, Endpo
    });
  };

-  function fetchEndpoints() {
-    EndpointService.endpoints()
-    .then(function success(data) {
-      $scope.endpoints = data;
-      var activeEndpointID = EndpointProvider.endpointID();
-      angular.forEach($scope.endpoints, function (endpoint) {
-        if (endpoint.Id === activeEndpointID) {
-          $scope.activeEndpoint = endpoint;
-          EndpointProvider.setEndpointPublicURL(endpoint.PublicURL);
-        }
-      });
-    })
-    .catch(function error(err) {
-      $scope.endpoints = [];
+  function setActiveEndpoint(endpoints) {
+    var activeEndpointID = EndpointProvider.endpointID();
+    angular.forEach(endpoints, function (endpoint) {
+      if (endpoint.Id === activeEndpointID) {
+        $scope.activeEndpoint = endpoint;
+        EndpointProvider.setEndpointPublicURL(endpoint.PublicURL);
+      }
    });
  }

-  fetchEndpoints();
+  function checkPermissions(memberships) {
+    var isLeader = false;
+    angular.forEach(memberships, function(membership) {
+      if (membership.Role === 1) {
+        isLeader = true;
+      }
+    });
+    $scope.isTeamLeader = isLeader;
+  }
+
+  function initView() {
+    EndpointService.endpoints()
+    .then(function success(data) {
+      var endpoints = data;
+      $scope.endpoints = endpoints;
+      setActiveEndpoint(endpoints);
+
+      if (StateManager.getState().application.authentication) {
+        var userDetails = Authentication.getUserDetails();
+        var isAdmin = userDetails.role === 1 ? true: false;
+        $scope.isAdmin = isAdmin;
+        return $q.when(!isAdmin ? UserService.userMemberships(userDetails.ID) : []);
+      }
+    })
+    .then(function success(data) {
+      checkPermissions(data);
+    })
+    .catch(function error(err) {
+      Notifications.error('Failure', err, 'Unable to retrieve endpoints');
+    });
+  }
+
+  initView();
 }]);