Merge branch '23731-add-param-to-user-api' into 'master'

Add query param to filter users by 'external' & 'blocked' type on API Closes #23731 See merge request !7109
author: Sean McGivern <sean@mcgivern.me.uk> 2016-11-09 20:13:21 +0300
committer: Sean McGivern <sean@mcgivern.me.uk> 2016-11-09 20:13:21 +0300
commit: 2976ad40f83e97e5e3628c32db1a06edafe21a72 (patch)
tree: a18a349437f717cf8907750ba9acf4129aab8f84 /lib
parent: 0d73e491801e52b59293ffb5eec4e556ec54c735 (diff)
parent: a0aaf93fe591215a7fc29a52ff6cbd38604c8dcb (diff)
1 files changed, 6 insertions, 1 deletions
diff --git a/lib/api/users.rb b/lib/api/users.rb
index c28e07a76b7..298c401a816 100644
--- a/lib/api/users.rb
+++ b/lib/api/users.rb
@@ -10,6 +10,9 @@ module API
       #  GET /users
       #  GET /users?search=Admin
       #  GET /users?username=root
+      #  GET /users?active=true
+      #  GET /users?external=true
+      #  GET /users?blocked=true
       get do
         unless can?(current_user, :read_users_list, nil)
           render_api_error!("Not authorized.", 403)
@@ -19,8 +22,10 @@ module API
           @users = User.where(username: params[:username])
         else
           @users = User.all
-          @users = @users.active if params[:active].present?
+          @users = @users.active if to_boolean(params[:active])
           @users = @users.search(params[:search]) if params[:search].present?
+          @users = @users.blocked if to_boolean(params[:blocked])
+          @users = @users.external if to_boolean(params[:external]) && current_user.is_admin?
           @users = paginate @users
         end
author	Sean McGivern <sean@mcgivern.me.uk>	2016-11-09 20:13:21 +0300
committer	Sean McGivern <sean@mcgivern.me.uk>	2016-11-09 20:13:21 +0300
commit	2976ad40f83e97e5e3628c32db1a06edafe21a72 (patch)
tree	a18a349437f717cf8907750ba9acf4129aab8f84 /lib
parent	0d73e491801e52b59293ffb5eec4e556ec54c735 (diff)
parent	a0aaf93fe591215a7fc29a52ff6cbd38604c8dcb (diff)