discourse/app/controllers/admin/groups_controller.rb

class Admin::GroupsController < Admin::AdminController

  def index
    groups = Group.order(:name).where("groups.id <> ?", Group::AUTO_GROUPS[:everyone])

    if search = params[:search].to_s
      groups = groups.where("name ILIKE ?", "%#{search}%")
    end

    if params[:ignore_automatic].to_s == "true"
      groups = groups.where(automatic: false)
    end

    render_serialized(groups, BasicGroupSerializer)
  end

  def show
    render nothing: true
  end

  def bulk
    render nothing: true
  end

  def bulk_perform
    group = Group.find(params[:group_id].to_i)
    if group.present?
      users = (params[:users] || []).map {|u| u.downcase}
      user_ids = User.where("username_lower in (:users) OR email IN (:users)", users: users).pluck(:id)
      group.bulk_add(user_ids) if user_ids.present?
    end

    render json: success_json
  end

  def create
    group = Group.new

    group.name = (group_params[:name] || '').strip
    save_group(group)
  end

  def update
    group = Group.find(params[:id])

    # group rename is ignored for automatic groups
    group.name = group_params[:name] if group_params[:name] && !group.automatic
    save_group(group)
  end

  def save_group(group)
    group.alias_level = group_params[:alias_level].to_i if group_params[:alias_level].present?
    group.visible = group_params[:visible] == "true"
    grant_trust_level = group_params[:grant_trust_level].to_i
    group.grant_trust_level = (grant_trust_level > 0 && grant_trust_level <= 4) ? grant_trust_level : nil

    group.automatic_membership_email_domains = group_params[:automatic_membership_email_domains] unless group.automatic
    group.automatic_membership_retroactive = group_params[:automatic_membership_retroactive] == "true" unless group.automatic

    group.primary_group = group.automatic ? false : group_params["primary_group"] == "true"

    group.incoming_email = group.automatic ? nil : group_params[:incoming_email]

    title = group_params[:title] if group_params[:title].present?
    group.title = group.automatic ? nil : title

    group.flair_url      = group_params[:flair_url].presence
    group.flair_bg_color = group_params[:flair_bg_color].presence
    group.flair_color    = group_params[:flair_color].presence

    if group.save
      Group.reset_counters(group.id, :group_users)
      render_serialized(group, BasicGroupSerializer)
    else
      render_json_error group
    end
  end

  def destroy
    group = Group.find(params[:id])

    if group.automatic
      can_not_modify_automatic
    else
      group.destroy
      render json: success_json
    end
  end

  def refresh_automatic_groups
    Group.refresh_automatic_groups!
    render json: success_json
  end

  def add_owners
    group = Group.find(params.require(:id))
    return can_not_modify_automatic if group.automatic

    users = User.where(username: params[:usernames].split(","))

    users.each do |user|
      if !group.users.include?(user)
        group.add(user)
      end
      group.group_users.where(user_id: user.id).update_all(owner: true)
    end

    Group.reset_counters(group.id, :group_users)

    render json: success_json
  end

  def remove_owner
    group = Group.find(params.require(:id))
    return can_not_modify_automatic if group.automatic

    user = User.find(params[:user_id].to_i)
    group.group_users.where(user_id: user.id).update_all(owner: false)

    Group.reset_counters(group.id, :group_users)

    render json: success_json
  end

  protected

  def can_not_modify_automatic
    render json: {errors: I18n.t('groups.errors.can_not_modify_automatic')}, status: 422
  end

  private

  def group_params
    params.require(:group).permit(
      :name, :alias_level, :visible, :automatic_membership_email_domains,
      :automatic_membership_retroactive, :title, :primary_group,
      :grant_trust_level, :incoming_email, :flair_url, :flair_bg_color,
      :flair_color
    )
  end
end
work in progress add support for groups 2013-04-17 03:08:21 -04:00			`class Admin::GroupsController < Admin::AdminController`
FIX: proper handling of group memberships 2015-01-05 12:51:45 -05:00
work in progress ... groups 2013-05-08 01:20:38 -04:00			`def index`
PERF: Fix N+1 queries when loading groups. 2016-11-25 02:26:49 -05:00			`groups = Group.order(:name).where("groups.id <> ?", Group::AUTO_GROUPS[:everyone])`
FIX: proper handling of group memberships 2015-01-05 12:51:45 -05:00
FIX: ensure the group 'everyone' is never shown when using a different locale 2016-10-24 04:53:31 -04:00			`if search = params[:search].to_s`
FIX: proper handling of group memberships 2015-01-05 12:51:45 -05:00			`groups = groups.where("name ILIKE ?", "%#{search}%")`
FEATURE: admins can invite users to groups via the web UI 2014-05-09 04:22:15 -04:00			`end`
FIX: proper handling of group memberships 2015-01-05 12:51:45 -05:00
FEATURE: admins can invite users to groups via the web UI 2014-05-09 04:22:15 -04:00			`if params[:ignore_automatic].to_s == "true"`
			`groups = groups.where(automatic: false)`
			`end`
FIX: proper handling of group memberships 2015-01-05 12:51:45 -05:00
more group progress, UI getting there, controller mostly done changed it so notify moderators goes to the moderators group allow admins to grant self moderation and revoke self moderation 2013-05-09 03:37:34 -04:00			`render_serialized(groups, BasicGroupSerializer)`
work in progress ... groups 2013-05-08 01:20:38 -04:00			`end`

REFACTOR: Add urls for admin groups, make it more idiomatic ember 2014-04-23 13:25:02 -04:00			`def show`
			`render nothing: true`
			`end`

FEATURE: Change user groups in bulk via admin 2015-10-26 15:56:59 -04:00			`def bulk`
			`render nothing: true`
			`end`

			`def bulk_perform`
			`group = Group.find(params[:group_id].to_i)`
			`if group.present?`
			`users = (params[:users] \|\| []).map {\|u\| u.downcase}`
			`user_ids = User.where("username_lower in (:users) OR email IN (:users)", users: users).pluck(:id)`
move code for bulk adding users to a group from controller to model 2016-02-18 14:03:00 -05:00			`group.bulk_add(user_ids) if user_ids.present?`
FEATURE: Change user groups in bulk via admin 2015-10-26 15:56:59 -04:00			`end`

			`render json: success_json`
			`end`

FIX: proper handling of group memberships 2015-01-05 12:51:45 -05:00			`def create`
			`group = Group.new`
FEATURE: automatic group membership based on email address 2015-01-23 12:25:43 -05:00
FEATURE: Allow group owners to edit group name and avatar flair. 2016-11-29 03:25:02 -05:00			`group.name = (group_params[:name] \|\| '').strip`
FEATURE: allow admins to choose a group as a primary group FEATURE: allow admins to set a default title for a group 2015-04-09 22:17:28 -04:00			`save_group(group)`
API addition: HTTP PATCH support for /groups/xxx: incremental membership changes 2014-11-20 12:29:56 -05:00			`end`

FIX: proper handling of group memberships 2015-01-05 12:51:45 -05:00			`def update`
FEATURE: split group admin in 2 tabs (custom & automatic) FIX: clear the user-selector when adding new members 2015-01-21 14:52:48 -05:00			`group = Group.find(params[:id])`
Allow groups to be used as aliases for user mention when configured by the admin a group can be found through the @mentions feature in both the compose/reply and the private message user-selectors and once selected the mention will be replaced by the list of users in the group 2013-12-23 09:46:00 -05:00
FIX: Minor Admin bug with a setting when creating a new group 2015-01-23 14:31:48 -05:00			`# group rename is ignored for automatic groups`
FEATURE: Allow group owners to edit group name and avatar flair. 2016-11-29 03:25:02 -05:00			`group.name = group_params[:name] if group_params[:name] && !group.automatic`
FEATURE: allow admins to choose a group as a primary group FEATURE: allow admins to set a default title for a group 2015-04-09 22:17:28 -04:00			`save_group(group)`
			`end`

			`def save_group(group)`
FEATURE: Allow group owners to edit group name and avatar flair. 2016-11-29 03:25:02 -05:00			`group.alias_level = group_params[:alias_level].to_i if group_params[:alias_level].present?`
			`group.visible = group_params[:visible] == "true"`
			`grant_trust_level = group_params[:grant_trust_level].to_i`
FEATURE: group can grant a trust level when a user is added 2015-09-01 16:52:05 -04:00			`group.grant_trust_level = (grant_trust_level > 0 && grant_trust_level <= 4) ? grant_trust_level : nil`
FEATURE: allow admins to choose a group as a primary group FEATURE: allow admins to set a default title for a group 2015-04-09 22:17:28 -04:00
FEATURE: Allow group owners to edit group name and avatar flair. 2016-11-29 03:25:02 -05:00			`group.automatic_membership_email_domains = group_params[:automatic_membership_email_domains] unless group.automatic`
			`group.automatic_membership_retroactive = group_params[:automatic_membership_retroactive] == "true" unless group.automatic`
FEATURE: allow admins to choose a group as a primary group FEATURE: allow admins to set a default title for a group 2015-04-09 22:17:28 -04:00
FEATURE: Allow group owners to edit group name and avatar flair. 2016-11-29 03:25:02 -05:00			`group.primary_group = group.automatic ? false : group_params["primary_group"] == "true"`
FEATURE: allow admins to choose a group as a primary group FEATURE: allow admins to set a default title for a group 2015-04-09 22:17:28 -04:00
FEATURE: Allow group owners to edit group name and avatar flair. 2016-11-29 03:25:02 -05:00			`group.incoming_email = group.automatic ? nil : group_params[:incoming_email]`
add 'incoming_email' to groups 2015-12-07 06:39:28 -05:00
FEATURE: Allow group owners to edit group name and avatar flair. 2016-11-29 03:25:02 -05:00			`title = group_params[:title] if group_params[:title].present?`
FEATURE: allow admins to choose a group as a primary group FEATURE: allow admins to set a default title for a group 2015-04-09 22:17:28 -04:00			`group.title = group.automatic ? nil : title`
Allow groups to be used as aliases for user mention when configured by the admin a group can be found through the @mentions feature in both the compose/reply and the private message user-selectors and once selected the mention will be replaced by the list of users in the group 2013-12-23 09:46:00 -05:00
FEATURE: Allow group owners to edit group name and avatar flair. 2016-11-29 03:25:02 -05:00			`group.flair_url = group_params[:flair_url].presence`
			`group.flair_bg_color = group_params[:flair_bg_color].presence`
			`group.flair_color = group_params[:flair_color].presence`
FEATURE: add flair to avatars using new settings in the groups admin UI 2016-08-16 12:34:04 -04:00
Allow groups to be used as aliases for user mention when configured by the admin a group can be found through the @mentions feature in both the compose/reply and the private message user-selectors and once selected the mention will be replaced by the list of users in the group 2013-12-23 09:46:00 -05:00			`if group.save`
FIX: ensure group's users counters are kept in sync 2016-04-04 11:03:18 -04:00			`Group.reset_counters(group.id, :group_users)`
FEATURE: automatic group membership based on email address 2015-01-23 12:25:43 -05:00			`render_serialized(group, BasicGroupSerializer)`
Allow groups to be used as aliases for user mention when configured by the admin a group can be found through the @mentions feature in both the compose/reply and the private message user-selectors and once selected the mention will be replaced by the list of users in the group 2013-12-23 09:46:00 -05:00			`else`
			`render_json_error group`
automatic groups should not allow you to muck with the listed users in the group 2013-06-16 22:54:25 -04:00			`end`
group progress, never email banned users 2013-05-08 21:33:56 -04:00			`end`

FIX: proper handling of group memberships 2015-01-05 12:51:45 -05:00			`def destroy`
FEATURE: split group admin in 2 tabs (custom & automatic) FIX: clear the user-selector when adding new members 2015-01-21 14:52:48 -05:00			`group = Group.find(params[:id])`
API addition: HTTP PATCH support for /groups/xxx: incremental membership changes 2014-11-20 12:29:56 -05:00
FIX: proper handling of group memberships 2015-01-05 12:51:45 -05:00			`if group.automatic`
			`can_not_modify_automatic`
API addition: HTTP PATCH support for /groups/xxx: incremental membership changes 2014-11-20 12:29:56 -05:00			`else`
FIX: proper handling of group memberships 2015-01-05 12:51:45 -05:00			`group.destroy`
			`render json: success_json`
API addition: HTTP PATCH support for /groups/xxx: incremental membership changes 2014-11-20 12:29:56 -05:00			`end`
			`end`

FIX: proper handling of group memberships 2015-01-05 12:51:45 -05:00			`def refresh_automatic_groups`
			`Group.refresh_automatic_groups!`
			`render json: success_json`
			`end`

FEATURE: support group owner, capable of controlling group membership Group owners are regular users that can add or remove users to a group The Admin UX allows admins to appoint group owners The public group UX will display group owners first and unlock UI to add and remove members Group owners can only be appointed on non automatic groups Group owners may not appoint another group owner 2015-11-09 08:52:04 -05:00			`def add_owners`
FEATURE: split group admin in 2 tabs (custom & automatic) FIX: clear the user-selector when adding new members 2015-01-21 14:52:48 -05:00			`group = Group.find(params.require(:id))`
FIX: proper handling of group memberships 2015-01-05 12:51:45 -05:00			`return can_not_modify_automatic if group.automatic`

FEATURE: support group owner, capable of controlling group membership Group owners are regular users that can add or remove users to a group The Admin UX allows admins to appoint group owners The public group UX will display group owners first and unlock UI to add and remove members Group owners can only be appointed on non automatic groups Group owners may not appoint another group owner 2015-11-09 08:52:04 -05:00			`users = User.where(username: params[:usernames].split(","))`
Allow adding and removing members of groups by username or id As discussed here: https://meta.discourse.org/t/discourse-gem-group-add/25668/2. 2015-02-25 09:47:45 -05:00
			`users.each do \|user\|`
FIX: show error message if user already exist in group 2015-04-15 04:06:54 -04:00			`if !group.users.include?(user)`
			`group.add(user)`
			`end`
FEATURE: support group owner, capable of controlling group membership Group owners are regular users that can add or remove users to a group The Admin UX allows admins to appoint group owners The public group UX will display group owners first and unlock UI to add and remove members Group owners can only be appointed on non automatic groups Group owners may not appoint another group owner 2015-11-09 08:52:04 -05:00			`group.group_users.where(user_id: user.id).update_all(owner: true)`
FIX: proper handling of group memberships 2015-01-05 12:51:45 -05:00			`end`

FIX: ensure group's users counters are kept in sync 2016-04-04 11:03:18 -04:00			`Group.reset_counters(group.id, :group_users)`

FEATURE: support group owner, capable of controlling group membership Group owners are regular users that can add or remove users to a group The Admin UX allows admins to appoint group owners The public group UX will display group owners first and unlock UI to add and remove members Group owners can only be appointed on non automatic groups Group owners may not appoint another group owner 2015-11-09 08:52:04 -05:00			`render json: success_json`
group progress, never email banned users 2013-05-08 21:33:56 -04:00			`end`

FEATURE: support group owner, capable of controlling group membership Group owners are regular users that can add or remove users to a group The Admin UX allows admins to appoint group owners The public group UX will display group owners first and unlock UI to add and remove members Group owners can only be appointed on non automatic groups Group owners may not appoint another group owner 2015-11-09 08:52:04 -05:00			`def remove_owner`
FEATURE: split group admin in 2 tabs (custom & automatic) FIX: clear the user-selector when adding new members 2015-01-21 14:52:48 -05:00			`group = Group.find(params.require(:id))`
FIX: proper handling of group memberships 2015-01-05 12:51:45 -05:00			`return can_not_modify_automatic if group.automatic`

FEATURE: support group owner, capable of controlling group membership Group owners are regular users that can add or remove users to a group The Admin UX allows admins to appoint group owners The public group UX will display group owners first and unlock UI to add and remove members Group owners can only be appointed on non automatic groups Group owners may not appoint another group owner 2015-11-09 08:52:04 -05:00			`user = User.find(params[:user_id].to_i)`
			`group.group_users.where(user_id: user.id).update_all(owner: false)`
FIX: proper handling of group memberships 2015-01-05 12:51:45 -05:00
FIX: ensure group's users counters are kept in sync 2016-04-04 11:03:18 -04:00			`Group.reset_counters(group.id, :group_users)`

FEATURE: support group owner, capable of controlling group membership Group owners are regular users that can add or remove users to a group The Admin UX allows admins to appoint group owners The public group UX will display group owners first and unlock UI to add and remove members Group owners can only be appointed on non automatic groups Group owners may not appoint another group owner 2015-11-09 08:52:04 -05:00			`render json: success_json`
automatic groups should not allow you to muck with the listed users in the group 2013-06-16 22:54:25 -04:00			`end`

			`protected`

FEATURE: Allow group owners to edit group name and avatar flair. 2016-11-29 03:25:02 -05:00			`def can_not_modify_automatic`
			`render json: {errors: I18n.t('groups.errors.can_not_modify_automatic')}, status: 422`
			`end`

			`private`

			`def group_params`
			`params.require(:group).permit(`
			`:name, :alias_level, :visible, :automatic_membership_email_domains,`
			`:automatic_membership_retroactive, :title, :primary_group,`
			`:grant_trust_level, :incoming_email, :flair_url, :flair_bg_color,`
			`:flair_color`
			`)`
			`end`
work in progress add support for groups 2013-04-17 03:08:21 -04:00			`end`