using System; using System.Collections.Generic; using System.Linq; using ASC.Api.Core; using ASC.Api.Utils; using ASC.Common.Web; using ASC.Core; using ASC.Core.Users; using ASC.MessagingSystem; using ASC.Web.Api.Models; using ASC.Web.Api.Routing; using Microsoft.AspNetCore.Mvc; using SecurityContext = ASC.Core.SecurityContext; namespace ASC.Employee.Core.Controllers { [DefaultRoute] [ApiController] public class GroupController : ControllerBase { public Common.Logging.LogManager LogManager { get; } public ApiContext ApiContext { get; } public MessageService MessageService { get; } public GroupController(Common.Logging.LogManager logManager, MessageService messageService, ApiContext apiContext) { LogManager = logManager; MessageService = messageService; ApiContext = apiContext; } [Read] public IEnumerable GetAll() { return CoreContext.UserManager.GetDepartments(ApiContext.Tenant.TenantId).Select(x => new GroupWrapperSummary(x, ApiContext)); } [Read("{groupid}")] public GroupWrapperFull GetById(Guid groupid) { return new GroupWrapperFull(GetGroupInfo(groupid), true, ApiContext); } [Read("user/{userid}")] public IEnumerable GetByUserId(Guid userid) { return CoreContext.UserManager.GetUserGroups(ApiContext.Tenant, userid).Select(x => new GroupWrapperSummary(x, ApiContext)); } [Create] public GroupWrapperFull AddGroup(Guid groupManager, string groupName, IEnumerable members) { SecurityContext.DemandPermissions(ApiContext.Tenant, Constants.Action_EditGroups, Constants.Action_AddRemoveUser); var group = CoreContext.UserManager.SaveGroupInfo(ApiContext.Tenant, new GroupInfo { Name = groupName }); TransferUserToDepartment(groupManager, @group, true); if (members != null) { foreach (var member in members) { TransferUserToDepartment(member, group, false); } } MessageService.Send(MessageAction.GroupCreated, MessageTarget.Create(group.ID), group.Name); return new GroupWrapperFull(group, true, ApiContext); } [Update("{groupid}")] public GroupWrapperFull UpdateGroup(Guid groupid, Guid groupManager, string groupName, IEnumerable members) { SecurityContext.DemandPermissions(ApiContext.Tenant, Constants.Action_EditGroups, Constants.Action_AddRemoveUser); var group = CoreContext.UserManager.GetGroups(ApiContext.Tenant.TenantId).SingleOrDefault(x => x.ID == groupid).NotFoundIfNull("group not found"); if (group.ID == Constants.LostGroupInfo.ID) { throw new ItemNotFoundException("group not found"); } group.Name = groupName ?? group.Name; CoreContext.UserManager.SaveGroupInfo(ApiContext.Tenant, group); RemoveMembersFrom(groupid, CoreContext.UserManager.GetUsersByGroup(ApiContext.Tenant, groupid, EmployeeStatus.All).Select(u => u.ID).Where(id => !members.Contains(id))); TransferUserToDepartment(groupManager, @group, true); if (members != null) { foreach (var member in members) { TransferUserToDepartment(member, group, false); } } MessageService.Send(MessageAction.GroupUpdated, MessageTarget.Create(group.ID), group.Name); return GetById(groupid); } [Delete("{groupid}")] public GroupWrapperFull DeleteGroup(Guid groupid) { SecurityContext.DemandPermissions(ApiContext.Tenant, Constants.Action_EditGroups, Constants.Action_AddRemoveUser); var @group = GetGroupInfo(groupid); var groupWrapperFull = new GroupWrapperFull(group, false, ApiContext); CoreContext.UserManager.DeleteGroup(ApiContext.Tenant, groupid); MessageService.Send(MessageAction.GroupDeleted, MessageTarget.Create(group.ID), group.Name); return groupWrapperFull; } private GroupInfo GetGroupInfo(Guid groupid) { var group = CoreContext.UserManager.GetGroups(ApiContext.Tenant.TenantId).SingleOrDefault(x => x.ID == groupid).NotFoundIfNull("group not found"); if (group.ID == Constants.LostGroupInfo.ID) throw new ItemNotFoundException("group not found"); return @group; } [Update("{groupid}/members/{newgroupid}")] public GroupWrapperFull TransferMembersTo(Guid groupid, Guid newgroupid) { SecurityContext.DemandPermissions(ApiContext.Tenant, Constants.Action_EditGroups, Constants.Action_AddRemoveUser); var oldgroup = GetGroupInfo(groupid); var newgroup = GetGroupInfo(newgroupid); var users = CoreContext.UserManager.GetUsersByGroup(ApiContext.Tenant, oldgroup.ID); foreach (var userInfo in users) { TransferUserToDepartment(userInfo.ID, newgroup, false); } return GetById(newgroupid); } [Create("{groupid}/members")] public GroupWrapperFull SetMembersTo(Guid groupid, IEnumerable members) { RemoveMembersFrom(groupid, CoreContext.UserManager.GetUsersByGroup(ApiContext.Tenant, groupid).Select(x => x.ID)); AddMembersTo(groupid, members); return GetById(groupid); } [Update("{groupid}/members")] public GroupWrapperFull AddMembersTo(Guid groupid, IEnumerable members) { SecurityContext.DemandPermissions(ApiContext.Tenant, Constants.Action_EditGroups, Constants.Action_AddRemoveUser); var group = GetGroupInfo(groupid); foreach (var userId in members) { TransferUserToDepartment(userId, group, false); } return GetById(group.ID); } [Update("{groupid}/manager")] public GroupWrapperFull SetManager(Guid groupid, Guid userid) { var group = GetGroupInfo(groupid); if (CoreContext.UserManager.UserExists(userid, ApiContext.Tenant.TenantId)) { CoreContext.UserManager.SetDepartmentManager(ApiContext.Tenant.TenantId, group.ID, userid); } else { throw new ItemNotFoundException("user not found"); } return GetById(groupid); } [Delete("{groupid}/members")] public GroupWrapperFull RemoveMembersFrom(Guid groupid, IEnumerable members) { SecurityContext.DemandPermissions(ApiContext.Tenant, Constants.Action_EditGroups, Constants.Action_AddRemoveUser); var group = GetGroupInfo(groupid); foreach (var userId in members) { RemoveUserFromDepartment(userId, group); } return GetById(group.ID); } private void RemoveUserFromDepartment(Guid userId, GroupInfo @group) { if (!CoreContext.UserManager.UserExists(userId, ApiContext.Tenant.TenantId)) return; var user = CoreContext.UserManager.GetUsers(userId, ApiContext.Tenant.TenantId); CoreContext.UserManager.RemoveUserFromGroup(ApiContext.Tenant, user.ID, @group.ID); CoreContext.UserManager.SaveUserInfo(ApiContext.Tenant, user); } private void TransferUserToDepartment(Guid userId, GroupInfo group, bool setAsManager) { if (!CoreContext.UserManager.UserExists(userId, ApiContext.Tenant.TenantId) && userId != Guid.Empty) return; if (setAsManager) { CoreContext.UserManager.SetDepartmentManager(ApiContext.Tenant.TenantId, @group.ID, userId); } CoreContext.UserManager.AddUserIntoGroup(ApiContext.Tenant, userId, @group.ID); } } }