Skip to content

bugzilla
bugzilla
Commit 601bda78 authored by Max Kanat-Alexander's avatar Max Kanat-Alexander
Browse files
Options

Bug 548198: Add a method of limiting the User.get results by group name or id

r=dkl, a=mkanat
parent db2a5492
Hide whitespace changes
Inline Side-by-side
Showing with 53 additions and 7 deletions
Bugzilla/WebService/User.pm
View file @ 601bda78
...@@ -25,6 +25,7 @@ use base qw(Bugzilla::WebService); ...@@ -25,6 +25,7 @@ use base qw(Bugzilla::WebService);
use Bugzilla; use Bugzilla;
use Bugzilla::Constants; use Bugzilla::Constants;
use Bugzilla::Error; use Bugzilla::Error;
use Bugzilla::Group;
use Bugzilla::User; use Bugzilla::User;
use Bugzilla::Util qw(trim); use Bugzilla::Util qw(trim);
use Bugzilla::Token; use Bugzilla::Token;
...@@ -156,11 +157,13 @@ sub get { ...@@ -156,11 +157,13 @@ sub get {
if ($params->{match}) { if ($params->{match}) {
ThrowUserError('user_access_by_match_denied'); ThrowUserError('user_access_by_match_denied');
} }
my $in_group = $self->_filter_users_by_group(
\@user_objects, $params);
@users = map {filter $params, { @users = map {filter $params, {
id => $self->type('int', $_->id), id => $self->type('int', $_->id),
real_name => $self->type('string', $_->name), real_name => $self->type('string', $_->name),
name => $self->type('string', $_->login), name => $self->type('string', $_->login),
}} @user_objects; }} @$in_group;
return { users => \@users }; return { users => \@users };
} }
...@@ -199,7 +202,9 @@ sub get { ...@@ -199,7 +202,9 @@ sub get {
} }
} }
} }
my $in_group = $self->_filter_users_by_group(
\@user_objects, $params);
if (Bugzilla->user->in_group('editusers')) { if (Bugzilla->user->in_group('editusers')) {
@users = @users =
map {filter $params, { map {filter $params, {
...@@ -210,7 +215,7 @@ sub get { ...@@ -210,7 +215,7 @@ sub get {
can_login => $self->type('boolean', $_->is_disabled ? 0 : 1), can_login => $self->type('boolean', $_->is_disabled ? 0 : 1),
email_enabled => $self->type('boolean', $_->email_enabled), email_enabled => $self->type('boolean', $_->email_enabled),
login_denied_text => $self->type('string', $_->disabledtext), login_denied_text => $self->type('string', $_->disabledtext),
}} @user_objects; }} @$in_group;
} }
else { else {
...@@ -221,12 +226,39 @@ sub get { ...@@ -221,12 +226,39 @@ sub get {
name => $self->type('string', $_->login), name => $self->type('string', $_->login),
email => $self->type('string', $_->email), email => $self->type('string', $_->email),
can_login => $self->type('boolean', $_->is_disabled ? 0 : 1), can_login => $self->type('boolean', $_->is_disabled ? 0 : 1),
}} @user_objects; }} @$in_group;
} }
return { users => \@users }; return { users => \@users };
} }
sub _filter_users_by_group {
my ($self, $users, $params) = @_;
my ($group_ids, $group_names) = @$params{qw(group_ids groups)};
# If no groups are specified, we return all users.
return $users if (!$group_ids and !$group_names);
my @groups = map { Bugzilla::Group->check({ id => $_ }) }
@{ $group_ids || [] };
my @name_groups = map { Bugzilla::Group->check($_) }
@{ $group_names || [] };
push(@groups, @name_groups);
my @in_group = grep { $self->_user_in_any_group($_, \@groups) }
@$users;
return \@in_group;
}
sub _user_in_any_group {
my ($self, $user, $groups) = @_;
foreach my $group (@$groups) {
return 1 if $user->in_group($group);
}
return 0;
}
1; 1;
__END__ __END__
...@@ -472,7 +504,9 @@ Logged-out users cannot pass this parameter to this function. If they try, ...@@ -472,7 +504,9 @@ Logged-out users cannot pass this parameter to this function. If they try,
they will get an error. Logged-in users will get an error if they specify they will get an error. Logged-in users will get an error if they specify
the id of a user they cannot see. the id of a user they cannot see.
=item C<names> (array) - An array of login names (strings). =item C<names> (array)
An array of login names (strings).
=item C<match> (array) =item C<match> (array)
...@@ -493,6 +527,15 @@ if they try. (This is to make it harder for spammers to harvest email ...@@ -493,6 +527,15 @@ if they try. (This is to make it harder for spammers to harvest email
addresses from Bugzilla, and also to enforce the user visibility addresses from Bugzilla, and also to enforce the user visibility
restrictions that are implemented on some Bugzillas.) restrictions that are implemented on some Bugzillas.)
=item C<group_ids> (array)
=item C<groups> (array)
C<group_ids> is an array of numeric ids for groups that a user can be in.
C<groups> is an array of names of groups that a user can be in.
If these are specified, they limit the return value to users who are
in I<any> of the groups specified.
=back =back
=item B<Returns> =item B<Returns>
...@@ -546,9 +589,10 @@ C<real_name>, C<email>, and C<can_login> items. ...@@ -546,9 +589,10 @@ C<real_name>, C<email>, and C<can_login> items.
=over =over
=item 51 (Bad Login Name) =item 51 (Bad Login Name or Group Name)
You passed an invalid login name in the "names" array. You passed an invalid login name in the "names" array or a bad
group name/id in the C<groups>/C<group_ids> arguments.
=item 304 (Authorization Required) =item 304 (Authorization Required)
...@@ -568,6 +612,8 @@ function. ...@@ -568,6 +612,8 @@ function.
=item Added in Bugzilla B<3.4>. =item Added in Bugzilla B<3.4>.
=item C<group_ids> and C<groups> were added in Bugzilla B<3.8>.
=back =back
=back =back
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment