dd30d9d5c0
The function `GetByBean` has an obvious defect that when the fields are empty values, it will be ignored. Then users will get a wrong result which is possibly used to make a security problem. To avoid the possibility, this PR removed function `GetByBean` and all references. And some new generic functions have been introduced to be used. The recommand usage like below. ```go // if query an object according id obj, err := db.GetByID[Object](ctx, id) // query with other conditions obj, err := db.Get[Object](ctx, builder.Eq{"a": a, "b":b}) ```
41 lines
937 B
Go
41 lines
937 B
Go
// Copyright 2022 The Gitea Authors. All rights reserved.
|
|
// SPDX-License-Identifier: MIT
|
|
|
|
package repository
|
|
|
|
import (
|
|
"context"
|
|
|
|
"code.gitea.io/gitea/models/db"
|
|
"code.gitea.io/gitea/models/perm"
|
|
access_model "code.gitea.io/gitea/models/perm/access"
|
|
repo_model "code.gitea.io/gitea/models/repo"
|
|
user_model "code.gitea.io/gitea/models/user"
|
|
|
|
"xorm.io/builder"
|
|
)
|
|
|
|
func AddCollaborator(ctx context.Context, repo *repo_model.Repository, u *user_model.User) error {
|
|
return db.WithTx(ctx, func(ctx context.Context) error {
|
|
has, err := db.Exist[repo_model.Collaboration](ctx, builder.Eq{
|
|
"repo_id": repo.ID,
|
|
"user_id": u.ID,
|
|
})
|
|
if err != nil {
|
|
return err
|
|
} else if has {
|
|
return nil
|
|
}
|
|
|
|
if err = db.Insert(ctx, &repo_model.Collaboration{
|
|
RepoID: repo.ID,
|
|
UserID: u.ID,
|
|
Mode: perm.AccessModeWrite,
|
|
}); err != nil {
|
|
return err
|
|
}
|
|
|
|
return access_model.RecalculateUserAccess(ctx, repo, u.ID)
|
|
})
|
|
}
|