add single user permission checks for SDK

HighKo · HighKo · commit 9ad503a3c99c · 2024-10-04T16:08:42.000+02:00
diff --git a/kotlin-jira-client/kotlin-jira-client-sdk/src/main/kotlin/com/linkedplanet/kotlinjiraclient/sdk/SdkJiraUserOperator.kt b/kotlin-jira-client/kotlin-jira-client-sdk/src/main/kotlin/com/linkedplanet/kotlinjiraclient/sdk/SdkJiraUserOperator.kt
@@ -28,6 +28,7 @@ import com.atlassian.jira.bc.projectroles.ProjectRoleService
 import com.atlassian.jira.bc.user.search.DefaultAssigneeService
 import com.atlassian.jira.permission.ProjectPermissions
 import com.atlassian.jira.project.Project
+import com.atlassian.jira.project.ProjectManager
 import com.atlassian.jira.security.JiraAuthenticationContext
 import com.atlassian.jira.security.PermissionManager
 import com.atlassian.jira.security.roles.ProjectRoleActors
@@ -43,6 +44,7 @@ import com.linkedplanet.kotlinjiraclient.sdk.util.withErrorCollection
 
 object SdkJiraUserOperator : JiraUserOperator {
 
+    private val projectManager: ProjectManager by getComponent()
     private val projectService: ProjectService by getComponent()
     private val permissionManager: PermissionManager by getComponent()
     private val userUtil: UserUtil by getComponent()
@@ -53,6 +55,26 @@ object SdkJiraUserOperator : JiraUserOperator {
 
     private fun user() = jiraAuthenticationContext.loggedInUser
 
+    /**
+     * Check if a single user is project admin for the given project.
+     * This is only available through the Sdk Operator as it is quite inefficient to do this multiple times over http.
+     */
+    fun isProjectAdmin(applicationUser: ApplicationUser, projectId: Long): Either<JiraClientError, Boolean> = either {
+        val project = projectManager.getProjectObj(projectId)
+            ?: return createProjectNotFoundError(projectId).left()
+        applicationUser.hasPermissionWithName(ProjectPermissions.ADMINISTER_PROJECTS.permissionKey(), project)
+    }
+
+    /**
+     * Check if a single user is assignable to the given project.
+     * This is only available through the Sdk Operator as it is quite inefficient to do this multiple times over http.
+     */
+    fun isAssignable(applicationUser: ApplicationUser, projectId: Long): Either<JiraClientError, Boolean> = either {
+        val project = projectManager.getProjectObj(projectId)
+            ?: return createProjectNotFoundError(projectId).left()
+        defaultAssigneeService.isAssignable(project, applicationUser)
+    }
+
     override suspend fun getAssignableUsersByProjectKey(projectKey: String): Either<JiraClientError, List<JiraUser>> =
         eitherAndCatch {
             val project =
@@ -102,6 +124,12 @@ object SdkJiraUserOperator : JiraUserOperator {
         statusCode = 404
     )
 
+    private fun createProjectNotFoundError(projectId: Long) = JiraClientError(
+        "Project not found",
+        "No Project with projectId $projectId found.",
+        statusCode = 404
+    )
+
     private fun ApplicationUser.hasPermissionWithName(permissionName: String, project: Project): Boolean {
         val permission =
             permissionManager.allProjectPermissions.firstOrNull { it.key == permissionName } ?: return false
