Added http endpoint to list all users on a list (#87)

pkg/routes/api/v1/user_list.go

@@ -21,6 +21,7 @@ import (
 	"code.vikunja.io/web/handler"
 	"github.com/labstack/echo/v4"
 	"net/http"
+	"strconv"
 )
 
 // UserList gets all information about a user
@@ -49,3 +50,45 @@ func UserList(c echo.Context) error {
 
 	return c.JSON(http.StatusOK, users)
 }
+
+// ListUsersForList returns a list with all users who have access to a list, regardless of the method the list was shared with them.
+// @Summary Get users
+// @Description Lists all users (without emailadresses). Also possible to search for a specific user.
+// @tags list
+// @Accept json
+// @Produce json
+// @Param s query string false "Search for a user by its name."
+// @Security JWTKeyAuth
+// @Param id path int true "List ID"
+// @Success 200 {array} models.User "All (found) users."
+// @Failure 400 {object} code.vikunja.io/web.HTTPError "Something's invalid."
+// @Failure 401 {object} code.vikunja.io/web.HTTPError "The user does not have the right to see the list."
+// @Failure 500 {object} models.Message "Internal server error."
+// @Router /lists/{id}/listusers [get]
+func ListUsersForList(c echo.Context) error {
+	listID, err := strconv.ParseInt(c.Param("list"), 10, 64)
+	if err != nil {
+		return handler.HandleHTTPError(err, c)
+	}
+
+	list := models.List{ID: listID}
+	currentUser, err := models.GetCurrentUser(c)
+	if err != nil {
+		return handler.HandleHTTPError(err, c)
+	}
+	canRead, err := list.CanRead(currentUser)
+	if err != nil {
+		return handler.HandleHTTPError(err, c)
+	}
+	if !canRead {
+		return echo.ErrForbidden
+	}
+
+	s := c.QueryParam("s")
+	users, err := models.ListUsersFromList(&list, s)
+	if err != nil {
+		return handler.HandleHTTPError(err, c)
+	}
+
+	return c.JSON(http.StatusOK, users)
+}