mirror of
https://github.com/fleetdm/fleet
synced 2026-04-21 21:47:20 +00:00
60b233e5f7
#16961 API changes here: https://github.com/fleetdm/fleet/pull/17609/files - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [X] Added/updated tests - [X] Manual QA for all new/changed functionality
82 lines
2.4 KiB
Go
82 lines
2.4 KiB
Go
package service
|
|
|
|
import (
|
|
"errors"
|
|
"fmt"
|
|
|
|
"github.com/fleetdm/fleet/v4/server/fleet"
|
|
)
|
|
|
|
// CreateUser creates a new user, skipping the invitation process.
|
|
//
|
|
// The session key (aka API token) is returned only when creating
|
|
// API only users.
|
|
func (c *Client) CreateUser(p fleet.UserPayload) (*string, error) {
|
|
verb, path := "POST", "/api/latest/fleet/users/admin"
|
|
var responseBody createUserResponse
|
|
if err := c.authenticatedRequest(p, verb, path, &responseBody); err != nil {
|
|
return nil, err
|
|
}
|
|
return responseBody.Token, nil
|
|
}
|
|
|
|
// ListUsers retrieves the list of users.
|
|
func (c *Client) ListUsers() ([]fleet.User, error) {
|
|
verb, path := "GET", "/api/latest/fleet/users"
|
|
var responseBody listUsersResponse
|
|
|
|
err := c.authenticatedRequest(nil, verb, path, &responseBody)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return responseBody.Users, nil
|
|
}
|
|
|
|
// ApplyUsersRoleSecretSpec applies the global and team roles for users.
|
|
func (c *Client) ApplyUsersRoleSecretSpec(spec *fleet.UsersRoleSpec) error {
|
|
req := applyUserRoleSpecsRequest{Spec: spec}
|
|
verb, path := "POST", "/api/latest/fleet/users/roles/spec"
|
|
var responseBody applyUserRoleSpecsResponse
|
|
return c.authenticatedRequest(req, verb, path, &responseBody)
|
|
}
|
|
|
|
func (c *Client) userIdFromEmail(email string) (uint, error) {
|
|
verb, path := "POST", "/api/latest/fleet/translate"
|
|
var responseBody translatorResponse
|
|
|
|
params := translatorRequest{List: []fleet.TranslatePayload{
|
|
{
|
|
Type: fleet.TranslatorTypeUserEmail,
|
|
Payload: fleet.StringIdentifierToIDPayload{Identifier: email},
|
|
},
|
|
}}
|
|
|
|
err := c.authenticatedRequest(¶ms, verb, path, &responseBody)
|
|
if err != nil {
|
|
return 0, err
|
|
}
|
|
if len(responseBody.List) != 1 {
|
|
return 0, errors.New("Expected 1 item translated, got none")
|
|
}
|
|
return responseBody.List[0].Payload.ID, nil
|
|
}
|
|
|
|
// DeleteUser deletes the user specified by the email
|
|
func (c *Client) DeleteUser(email string) error {
|
|
userID, err := c.userIdFromEmail(email)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
verb, path := "DELETE", fmt.Sprintf("/api/latest/fleet/users/%d", userID)
|
|
var responseBody deleteUserResponse
|
|
return c.authenticatedRequest(nil, verb, path, &responseBody)
|
|
}
|
|
|
|
// Me returns the user associated with the current session.
|
|
func (c *Client) Me() (*fleet.User, error) {
|
|
verb, path := "GET", "/api/latest/fleet/me"
|
|
var responseBody getUserResponse
|
|
err := c.authenticatedRequest(nil, verb, path, &responseBody)
|
|
return responseBody.User, err
|
|
}
|