| 1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859 |
- package access
- import (
- "github.com/ente-io/museum/ente"
- "github.com/ente-io/stacktrace"
- "github.com/gin-gonic/gin"
- )
- type GetCollectionParams struct {
- CollectionID int64
- // userID of the user trying to fetch the controller
- ActorUserID int64
- // IncludeDeleted defaults to false. If false and user is trying to fetch deletion collection
- // then the request fails
- IncludeDeleted bool
- // VerifyOwner deafults to false. If the flag is set to true, the method will verify that the actor actually owns the collection
- VerifyOwner bool
- // todo: Add accessType in params for verifying read/write/can-upload/owner types of access
- }
- type GetCollectionResponse struct {
- Collection ente.Collection
- Role *ente.CollectionParticipantRole
- }
- func (c controllerImpl) GetCollection(ctx *gin.Context, req *GetCollectionParams) (*GetCollectionResponse, error) {
- collection, err := c.CollectionRepo.Get(req.CollectionID)
- role := ente.UNKNOWN
- if err != nil {
- return nil, stacktrace.Propagate(err, "")
- }
- // Perform permission related access check if user is not the owner of the collection
- if req.VerifyOwner && req.ActorUserID != collection.Owner.ID {
- return nil, stacktrace.Propagate(ente.ErrPermissionDenied, "actor doesn't owns the collection")
- }
- if req.ActorUserID != collection.Owner.ID {
- shareeRole, err := c.CollectionRepo.GetCollectionShareeRole(req.CollectionID, req.ActorUserID)
- if err != nil {
- return nil, stacktrace.Propagate(err, "")
- }
- // Hide public URL info for non-collection owners
- collection.PublicURLs = nil
- role = *shareeRole
- } else {
- role = ente.OWNER
- }
- if !req.IncludeDeleted && collection.IsDeleted {
- return nil, stacktrace.Propagate(ente.ErrNotFound, "trying to access deleted collection")
- }
- return &GetCollectionResponse{
- Collection: collection,
- Role: &role,
- }, nil
- }
|
