- Fix tests

- Add new endpoints for retrieving the repo permissions for a robot account - Have the robots list return the number of repositories for which there are permissions - Other UI fixes
2015-03-31 18:50:43 -04:00 · 2015-03-31 18:50:43 -04:00 · 1f5e6df678
commit 1f5e6df678
parent bb81c05c03
16 changed files with 356 additions and 60 deletions
--- a/endpoints/api/robot.py
+++ b/endpoints/api/robot.py
@ -6,12 +6,24 @@ from auth.auth_context import get_authenticated_user
 from auth import scopes
 from data import model
 from util.names import format_robot_username
+from flask import abort


-def robot_view(name, token):
+def robot_view(name, token, count=None):
  return {
    'name': name,
    'token': token,
+    'permission_count': count
+  }
+
+
+def permission_view(permission):
+  return {
+    'repository': {
+      'name': permission.repository.name,
+      'is_public': permission.repository.visibility.name == 'public'
+    },
+    'role': permission.role.name
  }


@ -26,7 +38,7 @@ class UserRobotList(ApiResource):
    user = get_authenticated_user()
    robots = model.list_entity_robot_tuples(user.username)
    return {
-      'robots': [robot_view(name, password) for name, password in robots]
+      'robots': [robot_view(name, password, count) for name, password, count in robots]
    }


@ -75,7 +87,7 @@ class OrgRobotList(ApiResource):
    if permission.can():
      robots = model.list_entity_robot_tuples(orgname)
      return {
-        'robots': [robot_view(name, password) for name, password in robots]
+        'robots': [robot_view(name, password, count) for name, password, count in robots]
      }

    raise Unauthorized()
@ -125,6 +137,47 @@ class OrgRobot(ApiResource):
    raise Unauthorized()


+@resource('/v1/user/robots/<robot_shortname>/permissions')
+@path_param('robot_shortname', 'The short name for the robot, without any user or organization prefix')
+@internal_only
+class UserRobotPermissions(ApiResource):
+  """ Resource for listing the permissions a user's robot has in the system. """
+  @require_user_admin
+  @nickname('getUserRobotPermissions')
+  def get(self, robot_shortname):
+    """ Returns the list of repository permissions for the user's robot. """
+    parent = get_authenticated_user()
+    robot, password = model.get_robot(robot_shortname, parent)
+    permissions = model.list_robot_permissions(robot.username)
+
+    return {
+      'permissions': [permission_view(permission) for permission in permissions]
+    }
+
+
+@resource('/v1/organization/<orgname>/robots/<robot_shortname>/permissions')
+@path_param('orgname', 'The name of the organization')
+@path_param('robot_shortname', 'The short name for the robot, without any user or organization prefix')
+@related_user_resource(UserRobotPermissions)
+class OrgRobotPermissions(ApiResource):
+  """ Resource for listing the permissions an org's robot has in the system. """
+  @require_user_admin
+  @nickname('getOrgRobotPermissions')
+  def get(self, orgname, robot_shortname):
+    """ Returns the list of repository permissions for the org's robot. """
+    permission = AdministerOrganizationPermission(orgname)
+    if permission.can():
+      parent = model.get_organization(orgname)
+      robot, password = model.get_robot(robot_shortname, parent)
+      permissions = model.list_robot_permissions(robot.username)
+
+      return {
+        'permissions': [permission_view(permission) for permission in permissions]
+      }
+
+    abort(403)
+
+
@resource('/v1/user/robots/<robot_shortname>/regenerate')
@path_param('robot_shortname', 'The short name for the robot, without any user or organization prefix')
@internal_only