feat(stacks): support compose v2.0 stack (#1963)

2025-08-04 21:35:23 +02:00 · 2018-06-11 15:13:19 +02:00 · 2018-06-11 15:13:19 +02:00 · e3d564325b
commit e3d564325b
parent ef15cd30eb
174 changed files with 7898 additions and 5849 deletions
--- a/api/http/handler/teammemberships/teammembership_update.go
+++ b/api/http/handler/teammemberships/teammembership_update.go
@ -0,0 +1,75 @@
+package teammemberships
+
+import (
+	"net/http"
+
+	"github.com/portainer/portainer"
+	httperror "github.com/portainer/portainer/http/error"
+	"github.com/portainer/portainer/http/request"
+	"github.com/portainer/portainer/http/response"
+	"github.com/portainer/portainer/http/security"
+)
+
+type teamMembershipUpdatePayload struct {
+	UserID int
+	TeamID int
+	Role   int
+}
+
+func (payload *teamMembershipUpdatePayload) Validate(r *http.Request) error {
+	if payload.UserID == 0 {
+		return portainer.Error("Invalid UserID")
+	}
+	if payload.TeamID == 0 {
+		return portainer.Error("Invalid TeamID")
+	}
+	if payload.Role != 1 && payload.Role != 2 {
+		return portainer.Error("Invalid role value. Value must be one of: 1 (leader) or 2 (member)")
+	}
+	return nil
+}
+
+// PUT request on /api/team_memberships/:id
+func (handler *Handler) teamMembershipUpdate(w http.ResponseWriter, r *http.Request) *httperror.HandlerError {
+	membershipID, err := request.RetrieveNumericRouteVariableValue(r, "id")
+	if err != nil {
+		return &httperror.HandlerError{http.StatusBadRequest, "Invalid membership identifier route variable", err}
+	}
+
+	var payload teamMembershipUpdatePayload
+	err = request.DecodeAndValidateJSONPayload(r, &payload)
+	if err != nil {
+		return &httperror.HandlerError{http.StatusBadRequest, "Invalid request payload", err}
+	}
+
+	securityContext, err := security.RetrieveRestrictedRequestContext(r)
+	if err != nil {
+		return &httperror.HandlerError{http.StatusInternalServerError, "Unable to retrieve info from request context", err}
+	}
+
+	if !security.AuthorizedTeamManagement(portainer.TeamID(payload.TeamID), securityContext) {
+		return &httperror.HandlerError{http.StatusForbidden, "Permission denied to update the membership", portainer.ErrResourceAccessDenied}
+	}
+
+	membership, err := handler.TeamMembershipService.TeamMembership(portainer.TeamMembershipID(membershipID))
+	if err == portainer.ErrTeamMembershipNotFound {
+		return &httperror.HandlerError{http.StatusNotFound, "Unable to find a team membership with the specified identifier inside the database", err}
+	} else if err != nil {
+		return &httperror.HandlerError{http.StatusInternalServerError, "Unable to find a team membership with the specified identifier inside the database", err}
+	}
+
+	if securityContext.IsTeamLeader && membership.Role != portainer.MembershipRole(payload.Role) {
+		return &httperror.HandlerError{http.StatusForbidden, "Permission denied to update the role of membership", portainer.ErrResourceAccessDenied}
+	}
+
+	membership.UserID = portainer.UserID(payload.UserID)
+	membership.TeamID = portainer.TeamID(payload.TeamID)
+	membership.Role = portainer.MembershipRole(payload.Role)
+
+	err = handler.TeamMembershipService.UpdateTeamMembership(membership.ID, membership)
+	if err != nil {
+		return &httperror.HandlerError{http.StatusInternalServerError, "Unable to persist membership changes inside the database", err}
+	}
+
+	return response.JSON(w, membership)
+}