UNPKG

screwdriver-api

Version:

API server for the Screwdriver.cd service

screwdriver.cd

screwdriver-cd/screwdriver

125 lines (105 loc) 4.45 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
'use strict'; const boom = require('@hapi/boom'); const logger = require('screwdriver-logger'); /** * @typedef {import('screwdriver-models/lib/pipeline')} Pipeline * @typedef {import('screwdriver-models/lib/user')} User */ /** * /** * * Adds users as admins for the specified pipelines. * * @method batchUpdatePipelineAdmins * @param {Object[]} pipelineConfigs - List of pipeline configurations * @param {number} pipelineConfigs[].id - Pipeline ID. * @param {string[]} [pipelineConfigs[].usernames] - Usernames to be added as admins for the pipeline. * @param {string} pipelineConfigs[].scmContext - SCM context associated with the users. * @param {User} user - User performing the update. * @param {boolean} isSDAdmin - Whether the user is a Screwdriver admin. * @param {Object} server - Hapi server instance. * @returns {Promise<Pipeline[]>} Resolves with the updated pipelines. */ async function batchUpdatePipelineAdmins(pipelineConfigs, user, isSDAdmin, server) { const { pipelineFactory, userFactory } = server.app; const pipelines = await pipelineFactory.list({ params: { id: pipelineConfigs.map(pc => pc.id) } }); const pipelineIdToPipelineMap = pipelines.reduce((map, obj) => { map[obj.id] = obj; return map; }, {}); return Promise.all( pipelineConfigs.map(async pc => { const { id, scmContext, usernames } = pc; const pipeline = pipelineIdToPipelineMap[id]; // check if pipeline exists if (!pipeline) { throw boom.notFound(`Pipeline ${id} does not exist`); } if (!isSDAdmin) { await user .getPermissions(pipeline.scmUri) // check if user has admin access .then(permissions => { if (!permissions.admin) { throw boom.forbidden( `User ${user.username} does not have admin permission for the pipeline (id=${pipeline.id}) repo and is not allowed to update admins` ); } }); } // check if pipeline is being deleted if (pipeline.state === 'DELETING') { throw boom.conflict(`Skipped updating admins for pipeline (id=${pipeline.id}) as it is being deleted.`); } const users = await userFactory.list({ params: { username: usernames, scmContext } }); const adminUsernamesForUpdate = []; const newAdmins = new Set(pipeline.adminUserIds); users.forEach(u => { newAdmins.add(u.id); adminUsernamesForUpdate.push(u.username); }); pipeline.adminUserIds = Array.from(newAdmins); try { const updatedPipeline = await pipeline.update(); logger.info(`Updated admins ${adminUsernamesForUpdate} for pipeline(id=${id})`); return updatedPipeline; } catch (err) { logger.error( `Failed to update admins ${adminUsernamesForUpdate} for pipeline(id=${id}): ${err.message}` ); throw boom.internal(`Failed to update admins for pipeline ${id}`); } }) ); } /** * /** * * Adds users as admins for the specified pipelines. * * @method updatePipelineAdmins * @param {Object} config - Pipeline configuration * @param {number} config.id - Pipeline ID. * @param {string[]} [config.usernames] - Usernames to be added as admins for the pipeline. * @param {string} config.scmContext - SCM context associated with the users. * @param {User} user - User performing the update. * @param {boolean} isSDAdmin - Whether the user is a Screwdriver admin. * @param {Object} server - Hapi server instance. * @returns {Promise<Pipeline>} Resolves with the updated pipeline. */ async function updatePipelineAdmins(config, user, isSDAdmin, server) { return batchUpdatePipelineAdmins([config], user, isSDAdmin, server).then(updatePipelines => { return updatePipelines[0]; }); } module.exports = { batchUpdatePipelineAdmins, updatePipelineAdmins };