discourse/app/controllers/admin/groups_controller.rb

class Admin::GroupsController < Admin::AdminController

  def index
    groups = Group.order(:name)

    if search = params[:search]
      search = search.to_s
      groups = groups.where("name ILIKE ?", "%#{search}%")
    end

    if params[:ignore_automatic].to_s == "true"
      groups = groups.where(automatic: false)
    end

    render_serialized(groups, BasicGroupSerializer)
  end

  def show
    render nothing: true
  end

  def bulk
    render nothing: true
  end

  def bulk_perform
    group = Group.find(params[:group_id].to_i)
    if group.present?
      users = (params[:users] || []).map {|u| u.downcase}
      user_ids = User.where("username_lower in (:users) OR email IN (:users)", users: users).pluck(:id)

      if user_ids.present?
        Group.exec_sql("INSERT INTO group_users
                                    (group_id, user_id, created_at, updated_at)
                       SELECT #{group.id},
                              u.id,
                              CURRENT_TIMESTAMP,
                              CURRENT_TIMESTAMP
                       FROM users AS u
                       WHERE u.id IN (#{user_ids.join(', ')})
                         AND NOT EXISTS(SELECT 1 FROM group_users AS gu
                                        WHERE gu.user_id = u.id AND
                                              gu.group_id = #{group.id})")

        if group.primary_group?
          User.where(id: user_ids).update_all(primary_group_id: group.id)
        end

        if group.title.present?
          User.where(id: user_ids).update_all(title: group.title)
        end
      end
    end

    render json: success_json
  end

  def create
    group = Group.new

    group.name = (params[:name] || '').strip
    save_group(group)
  end

  def update
    group = Group.find(params[:id])

    # group rename is ignored for automatic groups
    group.name = params[:name] if params[:name] && !group.automatic
    save_group(group)
  end

  def save_group(group)
    group.alias_level = params[:alias_level].to_i if params[:alias_level].present?
    group.visible = params[:visible] == "true"
    grant_trust_level = params[:grant_trust_level].to_i
    group.grant_trust_level = (grant_trust_level > 0 && grant_trust_level <= 4) ? grant_trust_level : nil

    group.automatic_membership_email_domains = params[:automatic_membership_email_domains] unless group.automatic
    group.automatic_membership_retroactive = params[:automatic_membership_retroactive] == "true" unless group.automatic

    group.primary_group = group.automatic ? false : params["primary_group"] == "true"

    title = params[:title] if params[:title].present?
    group.title = group.automatic ? nil : title

    if group.save
      render_serialized(group, BasicGroupSerializer)
    else
      render_json_error group
    end
  end

  def destroy
    group = Group.find(params[:id])

    if group.automatic
      can_not_modify_automatic
    else
      group.destroy
      render json: success_json
    end
  end

  def refresh_automatic_groups
    Group.refresh_automatic_groups!
    render json: success_json
  end

  def add_owners
    group = Group.find(params.require(:id))
    return can_not_modify_automatic if group.automatic

    users = User.where(username: params[:usernames].split(","))

    users.each do |user|
      if !group.users.include?(user)
        group.add(user)
      end
      group.group_users.where(user_id: user.id).update_all(owner: true)
    end

    render json: success_json
  end

  def remove_owner
    group = Group.find(params.require(:id))
    return can_not_modify_automatic if group.automatic

    user = User.find(params[:user_id].to_i)
    group.group_users.where(user_id: user.id).update_all(owner: false)

    render json: success_json
  end

  protected

    def can_not_modify_automatic
      render json: {errors: I18n.t('groups.errors.can_not_modify_automatic')}, status: 422
    end
end
work in progress add support for groups 2013-04-17 15:08:21 +08:00			`class Admin::GroupsController < Admin::AdminController`
FIX: proper handling of group memberships 2015-01-06 01:51:45 +08:00
work in progress ... groups 2013-05-08 13:20:38 +08:00			`def index`
FEATURE: admins can invite users to groups via the web UI 2014-05-09 16:22:15 +08:00			`groups = Group.order(:name)`
FIX: proper handling of group memberships 2015-01-06 01:51:45 +08:00
FEATURE: admins can invite users to groups via the web UI 2014-05-09 16:22:15 +08:00			`if search = params[:search]`
			`search = search.to_s`
FIX: proper handling of group memberships 2015-01-06 01:51:45 +08:00			`groups = groups.where("name ILIKE ?", "%#{search}%")`
FEATURE: admins can invite users to groups via the web UI 2014-05-09 16:22:15 +08:00			`end`
FIX: proper handling of group memberships 2015-01-06 01:51:45 +08:00
FEATURE: admins can invite users to groups via the web UI 2014-05-09 16:22:15 +08:00			`if params[:ignore_automatic].to_s == "true"`
			`groups = groups.where(automatic: false)`
			`end`
FIX: proper handling of group memberships 2015-01-06 01:51:45 +08:00
more group progress, UI getting there, controller mostly done changed it so notify moderators goes to the moderators group allow admins to grant self moderation and revoke self moderation 2013-05-09 15:37:34 +08:00			`render_serialized(groups, BasicGroupSerializer)`
work in progress ... groups 2013-05-08 13:20:38 +08:00			`end`

REFACTOR: Add urls for admin groups, make it more idiomatic ember 2014-04-24 01:25:02 +08:00			`def show`
			`render nothing: true`
			`end`

FEATURE: Change user groups in bulk via admin 2015-10-27 03:56:59 +08:00			`def bulk`
			`render nothing: true`
			`end`

			`def bulk_perform`
			`group = Group.find(params[:group_id].to_i)`
			`if group.present?`
			`users = (params[:users] \|\| []).map {\|u\| u.downcase}`
			`user_ids = User.where("username_lower in (:users) OR email IN (:users)", users: users).pluck(:id)`

			`if user_ids.present?`
			`Group.exec_sql("INSERT INTO group_users`
			`(group_id, user_id, created_at, updated_at)`
			`SELECT #{group.id},`
			`u.id,`
			`CURRENT_TIMESTAMP,`
			`CURRENT_TIMESTAMP`
			`FROM users AS u`
			`WHERE u.id IN (#{user_ids.join(', ')})`
			`AND NOT EXISTS(SELECT 1 FROM group_users AS gu`
			`WHERE gu.user_id = u.id AND`
			`gu.group_id = #{group.id})")`

			`if group.primary_group?`
			`User.where(id: user_ids).update_all(primary_group_id: group.id)`
			`end`

			`if group.title.present?`
			`User.where(id: user_ids).update_all(title: group.title)`
			`end`
			`end`
			`end`

			`render json: success_json`
			`end`

FIX: proper handling of group memberships 2015-01-06 01:51:45 +08:00			`def create`
			`group = Group.new`
FEATURE: automatic group membership based on email address 2015-01-24 01:25:43 +08:00
FIX: proper handling of group memberships 2015-01-06 01:51:45 +08:00			`group.name = (params[:name] \|\| '').strip`
FEATURE: allow admins to choose a group as a primary group FEATURE: allow admins to set a default title for a group 2015-04-10 10:17:28 +08:00			`save_group(group)`
API addition: HTTP PATCH support for /groups/xxx: incremental membership changes 2014-11-21 01:29:56 +08:00			`end`

FIX: proper handling of group memberships 2015-01-06 01:51:45 +08:00			`def update`
FEATURE: split group admin in 2 tabs (custom & automatic) FIX: clear the user-selector when adding new members 2015-01-22 03:52:48 +08:00			`group = Group.find(params[:id])`
Allow groups to be used as aliases for user mention when configured by the admin a group can be found through the @mentions feature in both the compose/reply and the private message user-selectors and once selected the mention will be replaced by the list of users in the group 2013-12-23 22:46:00 +08:00
FIX: Minor Admin bug with a setting when creating a new group 2015-01-24 03:31:48 +08:00			`# group rename is ignored for automatic groups`
			`group.name = params[:name] if params[:name] && !group.automatic`
FEATURE: allow admins to choose a group as a primary group FEATURE: allow admins to set a default title for a group 2015-04-10 10:17:28 +08:00			`save_group(group)`
			`end`

			`def save_group(group)`
FIX: proper handling of group memberships 2015-01-06 01:51:45 +08:00			`group.alias_level = params[:alias_level].to_i if params[:alias_level].present?`
			`group.visible = params[:visible] == "true"`
FEATURE: group can grant a trust level when a user is added 2015-09-02 04:52:05 +08:00			`grant_trust_level = params[:grant_trust_level].to_i`
			`group.grant_trust_level = (grant_trust_level > 0 && grant_trust_level <= 4) ? grant_trust_level : nil`
FEATURE: allow admins to choose a group as a primary group FEATURE: allow admins to set a default title for a group 2015-04-10 10:17:28 +08:00
			`group.automatic_membership_email_domains = params[:automatic_membership_email_domains] unless group.automatic`
			`group.automatic_membership_retroactive = params[:automatic_membership_retroactive] == "true" unless group.automatic`

			`group.primary_group = group.automatic ? false : params["primary_group"] == "true"`

			`title = params[:title] if params[:title].present?`
			`group.title = group.automatic ? nil : title`
Allow groups to be used as aliases for user mention when configured by the admin a group can be found through the @mentions feature in both the compose/reply and the private message user-selectors and once selected the mention will be replaced by the list of users in the group 2013-12-23 22:46:00 +08:00
			`if group.save`
FEATURE: automatic group membership based on email address 2015-01-24 01:25:43 +08:00			`render_serialized(group, BasicGroupSerializer)`
Allow groups to be used as aliases for user mention when configured by the admin a group can be found through the @mentions feature in both the compose/reply and the private message user-selectors and once selected the mention will be replaced by the list of users in the group 2013-12-23 22:46:00 +08:00			`else`
			`render_json_error group`
automatic groups should not allow you to muck with the listed users in the group 2013-06-17 10:54:25 +08:00			`end`
group progress, never email banned users 2013-05-09 09:33:56 +08:00			`end`

FIX: proper handling of group memberships 2015-01-06 01:51:45 +08:00			`def destroy`
FEATURE: split group admin in 2 tabs (custom & automatic) FIX: clear the user-selector when adding new members 2015-01-22 03:52:48 +08:00			`group = Group.find(params[:id])`
API addition: HTTP PATCH support for /groups/xxx: incremental membership changes 2014-11-21 01:29:56 +08:00
FIX: proper handling of group memberships 2015-01-06 01:51:45 +08:00			`if group.automatic`
			`can_not_modify_automatic`
API addition: HTTP PATCH support for /groups/xxx: incremental membership changes 2014-11-21 01:29:56 +08:00			`else`
FIX: proper handling of group memberships 2015-01-06 01:51:45 +08:00			`group.destroy`
			`render json: success_json`
API addition: HTTP PATCH support for /groups/xxx: incremental membership changes 2014-11-21 01:29:56 +08:00			`end`
			`end`

FIX: proper handling of group memberships 2015-01-06 01:51:45 +08:00			`def refresh_automatic_groups`
			`Group.refresh_automatic_groups!`
			`render json: success_json`
			`end`

FEATURE: support group owner, capable of controlling group membership Group owners are regular users that can add or remove users to a group The Admin UX allows admins to appoint group owners The public group UX will display group owners first and unlock UI to add and remove members Group owners can only be appointed on non automatic groups Group owners may not appoint another group owner 2015-11-09 21:52:04 +08:00			`def add_owners`
FEATURE: split group admin in 2 tabs (custom & automatic) FIX: clear the user-selector when adding new members 2015-01-22 03:52:48 +08:00			`group = Group.find(params.require(:id))`
FIX: proper handling of group memberships 2015-01-06 01:51:45 +08:00			`return can_not_modify_automatic if group.automatic`

FEATURE: support group owner, capable of controlling group membership Group owners are regular users that can add or remove users to a group The Admin UX allows admins to appoint group owners The public group UX will display group owners first and unlock UI to add and remove members Group owners can only be appointed on non automatic groups Group owners may not appoint another group owner 2015-11-09 21:52:04 +08:00			`users = User.where(username: params[:usernames].split(","))`
Allow adding and removing members of groups by username or id As discussed here: https://meta.discourse.org/t/discourse-gem-group-add/25668/2. 2015-02-25 22:47:45 +08:00
			`users.each do \|user\|`
FIX: show error message if user already exist in group 2015-04-15 16:06:54 +08:00			`if !group.users.include?(user)`
			`group.add(user)`
			`end`
FEATURE: support group owner, capable of controlling group membership Group owners are regular users that can add or remove users to a group The Admin UX allows admins to appoint group owners The public group UX will display group owners first and unlock UI to add and remove members Group owners can only be appointed on non automatic groups Group owners may not appoint another group owner 2015-11-09 21:52:04 +08:00			`group.group_users.where(user_id: user.id).update_all(owner: true)`
FIX: proper handling of group memberships 2015-01-06 01:51:45 +08:00			`end`

FEATURE: support group owner, capable of controlling group membership Group owners are regular users that can add or remove users to a group The Admin UX allows admins to appoint group owners The public group UX will display group owners first and unlock UI to add and remove members Group owners can only be appointed on non automatic groups Group owners may not appoint another group owner 2015-11-09 21:52:04 +08:00			`render json: success_json`
group progress, never email banned users 2013-05-09 09:33:56 +08:00			`end`

FEATURE: support group owner, capable of controlling group membership Group owners are regular users that can add or remove users to a group The Admin UX allows admins to appoint group owners The public group UX will display group owners first and unlock UI to add and remove members Group owners can only be appointed on non automatic groups Group owners may not appoint another group owner 2015-11-09 21:52:04 +08:00			`def remove_owner`
FEATURE: split group admin in 2 tabs (custom & automatic) FIX: clear the user-selector when adding new members 2015-01-22 03:52:48 +08:00			`group = Group.find(params.require(:id))`
FIX: proper handling of group memberships 2015-01-06 01:51:45 +08:00			`return can_not_modify_automatic if group.automatic`

FEATURE: support group owner, capable of controlling group membership Group owners are regular users that can add or remove users to a group The Admin UX allows admins to appoint group owners The public group UX will display group owners first and unlock UI to add and remove members Group owners can only be appointed on non automatic groups Group owners may not appoint another group owner 2015-11-09 21:52:04 +08:00			`user = User.find(params[:user_id].to_i)`
			`group.group_users.where(user_id: user.id).update_all(owner: false)`
FIX: proper handling of group memberships 2015-01-06 01:51:45 +08:00
FEATURE: support group owner, capable of controlling group membership Group owners are regular users that can add or remove users to a group The Admin UX allows admins to appoint group owners The public group UX will display group owners first and unlock UI to add and remove members Group owners can only be appointed on non automatic groups Group owners may not appoint another group owner 2015-11-09 21:52:04 +08:00			`render json: success_json`
automatic groups should not allow you to muck with the listed users in the group 2013-06-17 10:54:25 +08:00			`end`

			`protected`

FIX: proper handling of group memberships 2015-01-06 01:51:45 +08:00			`def can_not_modify_automatic`
			`render json: {errors: I18n.t('groups.errors.can_not_modify_automatic')}, status: 422`
			`end`
work in progress add support for groups 2013-04-17 15:08:21 +08:00			`end`