clean old devops code

todo impl use informer

Signed-off-by: runzexia <runzexia@yunify.com>

pkg/simple/client/devops/fake/fakedevops.go

@@ -417,17 +417,6 @@ func (d *Devops) GetMultiBranchPipelineBuildByType(projectId, pipelineId, branch
 	return nil, nil
 }
 
-// ProjectMemberOperator
-func (d *Devops) AddProjectMember(membership *devops.ProjectMembership) (*devops.ProjectMembership, error) {
-	return nil, nil
-}
-func (d *Devops) UpdateProjectMember(oldMembership, newMembership *devops.ProjectMembership) (*devops.ProjectMembership, error) {
-	return nil, nil
-}
-func (d *Devops) DeleteProjectMember(membership *devops.ProjectMembership) (*devops.ProjectMembership, error) {
-	return nil, nil
-}
-
 // ProjectPipelineOperator
 func (d *Devops) CreateProjectPipeline(projectId string, pipeline *devopsv1alpha3.Pipeline) (string, error) {
 	if _, ok := d.Pipelines[projectId][pipeline.Name]; ok {

pkg/simple/client/devops/interface.go

@@ -14,8 +14,6 @@ type Interface interface {
 
 	PipelineOperator
 
-	ProjectMemberOperator
-
 	ProjectPipelineOperator
 
 	ProjectOperator

pkg/simple/client/devops/jenkins/member.go

@@ -1,322 +0,0 @@
-package jenkins
-
-import (
-	"fmt"
-	"github.com/emicklei/go-restful"
-	"k8s.io/klog"
-	"kubesphere.io/kubesphere/pkg/simple/client/devops"
-)
-
-const (
-	JenkinsAllUserRoleName = "kubesphere-user"
-)
-
-func GetProjectRoleName(projectId, role string) string {
-	return fmt.Sprintf("%s-%s-project", projectId, role)
-}
-
-func GetPipelineRoleName(projectId, role string) string {
-	return fmt.Sprintf("%s-%s-pipeline", projectId, role)
-}
-
-func GetProjectRolePattern(projectId string) string {
-	return fmt.Sprintf("^%s$", projectId)
-}
-
-func GetPipelineRolePattern(projectId string) string {
-	return fmt.Sprintf("^%s/.*", projectId)
-}
-
-var JenkinsOwnerProjectPermissionIds = &ProjectPermissionIds{
-	CredentialCreate:        true,
-	CredentialDelete:        true,
-	CredentialManageDomains: true,
-	CredentialUpdate:        true,
-	CredentialView:          true,
-	ItemBuild:               true,
-	ItemCancel:              true,
-	ItemConfigure:           true,
-	ItemCreate:              true,
-	ItemDelete:              true,
-	ItemDiscover:            true,
-	ItemMove:                true,
-	ItemRead:                true,
-	ItemWorkspace:           true,
-	RunDelete:               true,
-	RunReplay:               true,
-	RunUpdate:               true,
-	SCMTag:                  true,
-}
-
-var JenkinsProjectPermissionMap = map[string]ProjectPermissionIds{
-	devops.ProjectOwner: {
-		CredentialCreate:        true,
-		CredentialDelete:        true,
-		CredentialManageDomains: true,
-		CredentialUpdate:        true,
-		CredentialView:          true,
-		ItemBuild:               true,
-		ItemCancel:              true,
-		ItemConfigure:           true,
-		ItemCreate:              true,
-		ItemDelete:              true,
-		ItemDiscover:            true,
-		ItemMove:                true,
-		ItemRead:                true,
-		ItemWorkspace:           true,
-		RunDelete:               true,
-		RunReplay:               true,
-		RunUpdate:               true,
-		SCMTag:                  true,
-	},
-	devops.ProjectMaintainer: {
-		CredentialCreate:        true,
-		CredentialDelete:        true,
-		CredentialManageDomains: true,
-		CredentialUpdate:        true,
-		CredentialView:          true,
-		ItemBuild:               true,
-		ItemCancel:              true,
-		ItemConfigure:           false,
-		ItemCreate:              true,
-		ItemDelete:              false,
-		ItemDiscover:            true,
-		ItemMove:                false,
-		ItemRead:                true,
-		ItemWorkspace:           true,
-		RunDelete:               true,
-		RunReplay:               true,
-		RunUpdate:               true,
-		SCMTag:                  true,
-	},
-	devops.ProjectDeveloper: {
-		CredentialCreate:        false,
-		CredentialDelete:        false,
-		CredentialManageDomains: false,
-		CredentialUpdate:        false,
-		CredentialView:          false,
-		ItemBuild:               true,
-		ItemCancel:              true,
-		ItemConfigure:           false,
-		ItemCreate:              false,
-		ItemDelete:              false,
-		ItemDiscover:            true,
-		ItemMove:                false,
-		ItemRead:                true,
-		ItemWorkspace:           true,
-		RunDelete:               true,
-		RunReplay:               true,
-		RunUpdate:               true,
-		SCMTag:                  false,
-	},
-	devops.ProjectReporter: {
-		CredentialCreate:        false,
-		CredentialDelete:        false,
-		CredentialManageDomains: false,
-		CredentialUpdate:        false,
-		CredentialView:          false,
-		ItemBuild:               false,
-		ItemCancel:              false,
-		ItemConfigure:           false,
-		ItemCreate:              false,
-		ItemDelete:              false,
-		ItemDiscover:            true,
-		ItemMove:                false,
-		ItemRead:                true,
-		ItemWorkspace:           false,
-		RunDelete:               false,
-		RunReplay:               false,
-		RunUpdate:               false,
-		SCMTag:                  false,
-	},
-}
-
-var JenkinsPipelinePermissionMap = map[string]ProjectPermissionIds{
-	devops.ProjectOwner: {
-		CredentialCreate:        true,
-		CredentialDelete:        true,
-		CredentialManageDomains: true,
-		CredentialUpdate:        true,
-		CredentialView:          true,
-		ItemBuild:               true,
-		ItemCancel:              true,
-		ItemConfigure:           true,
-		ItemCreate:              true,
-		ItemDelete:              true,
-		ItemDiscover:            true,
-		ItemMove:                true,
-		ItemRead:                true,
-		ItemWorkspace:           true,
-		RunDelete:               true,
-		RunReplay:               true,
-		RunUpdate:               true,
-		SCMTag:                  true,
-	},
-	devops.ProjectMaintainer: {
-		CredentialCreate:        true,
-		CredentialDelete:        true,
-		CredentialManageDomains: true,
-		CredentialUpdate:        true,
-		CredentialView:          true,
-		ItemBuild:               true,
-		ItemCancel:              true,
-		ItemConfigure:           true,
-		ItemCreate:              true,
-		ItemDelete:              true,
-		ItemDiscover:            true,
-		ItemMove:                true,
-		ItemRead:                true,
-		ItemWorkspace:           true,
-		RunDelete:               true,
-		RunReplay:               true,
-		RunUpdate:               true,
-		SCMTag:                  true,
-	},
-	devops.ProjectDeveloper: {
-		CredentialCreate:        false,
-		CredentialDelete:        false,
-		CredentialManageDomains: false,
-		CredentialUpdate:        false,
-		CredentialView:          false,
-		ItemBuild:               true,
-		ItemCancel:              true,
-		ItemConfigure:           false,
-		ItemCreate:              false,
-		ItemDelete:              false,
-		ItemDiscover:            true,
-		ItemMove:                false,
-		ItemRead:                true,
-		ItemWorkspace:           true,
-		RunDelete:               true,
-		RunReplay:               true,
-		RunUpdate:               true,
-		SCMTag:                  false,
-	},
-	devops.ProjectReporter: {
-		CredentialCreate:        false,
-		CredentialDelete:        false,
-		CredentialManageDomains: false,
-		CredentialUpdate:        false,
-		CredentialView:          false,
-		ItemBuild:               false,
-		ItemCancel:              false,
-		ItemConfigure:           false,
-		ItemCreate:              false,
-		ItemDelete:              false,
-		ItemDiscover:            true,
-		ItemMove:                false,
-		ItemRead:                true,
-		ItemWorkspace:           false,
-		RunDelete:               false,
-		RunReplay:               false,
-		RunUpdate:               false,
-		SCMTag:                  false,
-	},
-}
-
-func (j *Jenkins) AddProjectMember(membership *devops.ProjectMembership) (*devops.ProjectMembership, error) {
-	globalRole, err := j.GetGlobalRole(JenkinsAllUserRoleName)
-	if err != nil {
-		klog.Errorf("%+v", err)
-		return nil, restful.NewError(devops.GetDevOpsStatusCode(err), err.Error())
-	}
-	if globalRole == nil {
-		_, err := j.AddGlobalRole(JenkinsAllUserRoleName, GlobalPermissionIds{
-			GlobalRead: true,
-		}, true)
-		if err != nil {
-			klog.Errorf("failed to create jenkins global role %+v", err)
-			return nil, restful.NewError(devops.GetDevOpsStatusCode(err), err.Error())
-		}
-	}
-	err = globalRole.AssignRole(membership.Username)
-	if err != nil {
-		klog.Errorf("%+v", err)
-		return nil, restful.NewError(devops.GetDevOpsStatusCode(err), err.Error())
-	}
-	projectRole, err := j.GetProjectRole(GetProjectRoleName(membership.ProjectId, membership.Role))
-	if err != nil {
-		klog.Errorf("%+v", err)
-		return nil, restful.NewError(devops.GetDevOpsStatusCode(err), err.Error())
-	}
-	err = projectRole.AssignRole(membership.Username)
-	if err != nil {
-		klog.Errorf("%+v", err)
-		return nil, restful.NewError(devops.GetDevOpsStatusCode(err), err.Error())
-	}
-	pipelineRole, err := j.GetProjectRole(GetPipelineRoleName(membership.ProjectId, membership.Role))
-	if err != nil {
-		klog.Errorf("%+v", err)
-		return nil, restful.NewError(devops.GetDevOpsStatusCode(err), err.Error())
-	}
-	err = pipelineRole.AssignRole(membership.Username)
-	if err != nil {
-		klog.Errorf("%+v", err)
-		return nil, restful.NewError(devops.GetDevOpsStatusCode(err), err.Error())
-	}
-	return membership, nil
-}
-
-func (j *Jenkins) UpdateProjectMember(oldMembership, newMembership *devops.ProjectMembership) (*devops.ProjectMembership, error) {
-	oldProjectRole, err := j.GetProjectRole(GetProjectRoleName(oldMembership.ProjectId, oldMembership.Role))
-	if err != nil {
-		return nil, restful.NewError(devops.GetDevOpsStatusCode(err), err.Error())
-	}
-
-	err = oldProjectRole.UnAssignRole(newMembership.Username)
-	if err != nil {
-		return nil, restful.NewError(devops.GetDevOpsStatusCode(err), err.Error())
-	}
-
-	oldPipelineRole, err := j.GetProjectRole(GetPipelineRoleName(oldMembership.ProjectId, oldMembership.Role))
-	if err != nil {
-		return nil, restful.NewError(devops.GetDevOpsStatusCode(err), err.Error())
-	}
-
-	err = oldPipelineRole.UnAssignRole(newMembership.Username)
-	if err != nil {
-		return nil, restful.NewError(devops.GetDevOpsStatusCode(err), err.Error())
-	}
-
-	projectRole, err := j.GetProjectRole(GetProjectRoleName(oldMembership.ProjectId, newMembership.Role))
-	if err != nil {
-		return nil, restful.NewError(devops.GetDevOpsStatusCode(err), err.Error())
-	}
-
-	err = projectRole.AssignRole(newMembership.Username)
-	if err != nil {
-		return nil, restful.NewError(devops.GetDevOpsStatusCode(err), err.Error())
-	}
-
-	pipelineRole, err := j.GetProjectRole(GetPipelineRoleName(oldMembership.ProjectId, newMembership.Role))
-	if err != nil {
-		return nil, restful.NewError(devops.GetDevOpsStatusCode(err), err.Error())
-	}
-
-	err = pipelineRole.AssignRole(newMembership.Username)
-	if err != nil {
-		return nil, restful.NewError(devops.GetDevOpsStatusCode(err), err.Error())
-	}
-	return newMembership, nil
-}
-
-func (j *Jenkins) DeleteProjectMember(membership *devops.ProjectMembership) (*devops.ProjectMembership, error) {
-	oldProjectRole, err := j.GetProjectRole(GetProjectRoleName(membership.ProjectId, membership.Role))
-	if err != nil {
-		return nil, restful.NewError(devops.GetDevOpsStatusCode(err), err.Error())
-	}
-	err = oldProjectRole.UnAssignRole(membership.Username)
-	if err != nil {
-		return nil, restful.NewError(devops.GetDevOpsStatusCode(err), err.Error())
-	}
-
-	oldPipelineRole, err := j.GetProjectRole(GetPipelineRoleName(membership.ProjectId, membership.Role))
-	if err != nil {
-		return nil, restful.NewError(devops.GetDevOpsStatusCode(err), err.Error())
-	}
-	err = oldPipelineRole.UnAssignRole(membership.Username)
-	if err != nil {
-		return nil, restful.NewError(devops.GetDevOpsStatusCode(err), err.Error())
-	}
-	return membership, nil
-}

pkg/simple/client/devops/member.go

@@ -1,48 +0,0 @@
-package devops
-
-type ProjectMembership struct {
-	Username  string `json:"username" description:"Member's username，username can uniquely identify a user"`
-	ProjectId string `json:"project_id" db:"project_id" description:"the DevOps Projects which project membership belongs to"`
-	Role      string `json:"role" description:"DevOps Project membership's role type. e.g. owner '"`
-	Status    string `json:"status" description:"Deprecated, Status of project membership. e.g. active "`
-	GrantBy   string `json:"grand_by,omitempty" description:"Username of the user who assigned the role"`
-}
-
-type ProjectMemberOperator interface {
-	AddProjectMember(membership *ProjectMembership) (*ProjectMembership, error)
-	UpdateProjectMember(oldMembership, newMembership *ProjectMembership) (*ProjectMembership, error)
-	DeleteProjectMember(membership *ProjectMembership) (*ProjectMembership, error)
-}
-
-var DefaultRoles = []*Role{
-	{
-		Name:        ProjectOwner,
-		Description: "Owner have access to do all the operations of a DevOps project and own the highest permissions as well.",
-	},
-	{
-		Name:        ProjectMaintainer,
-		Description: "Maintainer have access to manage pipeline and credential configuration in a DevOps project.",
-	},
-	{
-		Name:        ProjectDeveloper,
-		Description: "Developer is able to view and trigger the pipeline.",
-	},
-	{
-		Name:        ProjectReporter,
-		Description: "Reporter is only allowed to view the status of the pipeline.",
-	},
-}
-
-var AllRoleSlice = []string{ProjectDeveloper, ProjectReporter, ProjectMaintainer, ProjectOwner}
-
-const (
-	ProjectOwner      = "owner"
-	ProjectMaintainer = "maintainer"
-	ProjectDeveloper  = "developer"
-	ProjectReporter   = "reporter"
-)
-
-type Role struct {
-	Name        string `json:"name" description:"role's name e.g. owner'"`
-	Description string `json:"description" description:"role 's description'"`
-}