nodebb/src/socket.io/admin/user.js

"use strict";


var async = require('async');
var db = require('../../database');
var groups = require('../../groups');
var user = require('../../user');
var events = require('../../events');
var meta = require('../../meta');

var User = {};

User.makeAdmins = function(socket, uids, callback) {
	if(!Array.isArray(uids)) {
		return callback(new Error('[[error:invalid-data]]'));
	}

	user.getUsersFields(uids, ['banned'], function(err, userData) {
		if (err) {
			return callback(err);
		}

		for(var i=0; i<userData.length; i++) {
			if (userData[i] && parseInt(userData[i].banned, 10) === 1) {
				return callback(new Error('[[error:cant-make-banned-users-admin]]'));
			}
		}

		async.each(uids, function(uid, next) {
			groups.join('administrators', uid, next);
		}, callback);
	});
};

User.removeAdmins = function(socket, uids, callback) {
	if(!Array.isArray(uids)) {
		return callback(new Error('[[error:invalid-data]]'));
	}

	async.eachSeries(uids, function(uid, next) {
		groups.getMemberCount('administrators', function(err, count) {
			if (err) {
				return next(err);
			}

			if (count === 1) {
				return next(new Error('[[error:cant-remove-last-admin]]'));
			}

			groups.leave('administrators', uid, next);
		});
	}, callback);
};

User.createUser = function(socket, userData, callback) {
	if (!userData) {
		return callback(new Error('[[error:invalid-data]]'));
	}
	user.create(userData, callback);
};


User.resetLockouts = function(socket, uids, callback) {
	if (!Array.isArray(uids)) {
		return callback(new Error('[[error:invalid-data]]'));
	}

	async.each(uids, user.auth.resetLockout, callback);
};

User.resetFlags = function(socket, uids, callback) {
	if (!Array.isArray(uids)) {
		return callback(new Error('[[error:invalid-data]]'));
	}

	user.resetFlags(uids, callback);
};

User.validateEmail = function(socket, uids, callback) {
	if (!Array.isArray(uids)) {
		return callback(new Error('[[error:invalid-data]]'));
	}

	uids = uids.filter(function(uid) {
		return parseInt(uid, 10);
	});

	async.each(uids, function(uid, next) {
		user.setUserField(uid, 'email:confirmed', 1, next);
	}, function(err) {
		if (err) {
			return callback(err);
		}
		db.sortedSetRemove('users:notvalidated', uids, callback);
	});
};

User.sendValidationEmail = function(socket, uids, callback) {
	if (!Array.isArray(uids)) {
		return callback(new Error('[[error:invalid-data]]'));
	}

	if (parseInt(meta.config.requireEmailConfirmation, 10) !== 1) {
		return callback(new Error('[[error:email-confirmations-are-disabled]]'));
	}

	user.getUsersFields(uids, ['uid', 'email'], function(err, usersData) {
		if (err) {
			return callback(err);
		}

		async.eachLimit(usersData, 50, function(userData, next) {
			if (userData.email && userData.uid) {
				user.email.sendValidationEmail(userData.uid, userData.email, next);
			} else {
				next();
			}
		}, callback);
	});
};

User.sendPasswordResetEmail = function(socket, uids, callback) {
	if (!Array.isArray(uids)) {
		return callback(new Error('[[error:invalid-data]]'));
	}

	uids = uids.filter(function(uid) {
		return parseInt(uid, 10);
	});

	async.each(uids, function(uid, next) {
		user.getUserFields(uid, ['email', 'username'], function(err, userData) {
			if (err) {
				return next(err);
			}
			if (!userData.email) {
				return next(new Error('[[error:user-doesnt-have-email, ' + userData.username + ']]'));
			}
			user.reset.send(userData.email, next);
		});
	}, callback);
};

User.deleteUsers = function(socket, uids, callback) {
	if(!Array.isArray(uids)) {
		return callback(new Error('[[error:invalid-data]]'));
	}

	async.each(uids, function(uid, next) {
		async.waterfall([
			function (next) {
				user.isAdministrator(uid, next);
			},
			function (isAdmin, next) {
				if (isAdmin) {
					return next(new Error('[[error:cant-delete-other-admins]]'));
				}

				user.delete(socket.uid, uid, next);
			},
			function (next) {
				events.log({
					type: 'user-delete',
					uid: socket.uid,
					targetUid: uid,
					ip: socket.ip
				});
				next();
			}
		], next);
	}, callback);
};

User.search = function(socket, data, callback) {
	user.search({query: data.query, searchBy: data.searchBy, uid: socket.uid}, function(err, searchData) {
		if (err) {
			return callback(err);
		}
		if (!searchData.users.length) {
			return callback(null, searchData);
		}

		var userData = searchData.users;
		var uids = userData.map(function(user) {
			return user && user.uid;
		});

		user.getUsersFields(uids, ['email', 'flags'], function(err, userInfo) {
			if (err) {
				return callback(err);
			}

			userData.forEach(function(user, index) {
				if (user && userInfo[index]) {
					user.email = userInfo[index].email || '';
					user.flags = userInfo[index].flags || 0;
				}
			});

			callback(null, searchData);
		});
	});
};

User.deleteInvitation = function(socket, data, callback) {
	user.deleteInvitation(data.invitedBy, data.email, callback);
};

User.acceptRegistration = function(socket, data, callback) {
	user.acceptRegistration(data.username, callback);
};

User.rejectRegistration = function(socket, data, callback) {
	user.rejectRegistration(data.username, callback);
};


module.exports = User;
socket.io admin/user 11 years ago			`"use strict";`


closes #4103 9 years ago			`var async = require('async');`
			`var db = require('../../database');`
			`var groups = require('../../groups');`
			`var user = require('../../user');`
			`var events = require('../../events');`
			`var meta = require('../../meta');`
socket.io admin/user 11 years ago
closes #4103 9 years ago			`var User = {};`
socket.io admin/user 11 years ago
closes #1487 ban and delete user admin actions takes an array of uids now. 11 years ago			`User.makeAdmins = function(socket, uids, callback) {`
some checks to make last admin isnt removed 11 years ago			`if(!Array.isArray(uids)) {`
			`return callback(new Error('[[error:invalid-data]]'));`
			`}`
socket.io admin/user 11 years ago
more refactors 10 years ago			`user.getUsersFields(uids, ['banned'], function(err, userData) {`
closes #2225 11 years ago			`if (err) {`
			`return callback(err);`
			`}`

			`for(var i=0; i<userData.length; i++) {`
			`if (userData[i] && parseInt(userData[i].banned, 10) === 1) {`
			`return callback(new Error('[[error:cant-make-banned-users-admin]]'));`
			`}`
			`}`

			`async.each(uids, function(uid, next) {`
			`groups.join('administrators', uid, next);`
			`}, callback);`
			`});`
socket.io admin/user 11 years ago			`};`

some checks to make last admin isnt removed 11 years ago			`User.removeAdmins = function(socket, uids, callback) {`
closes #1487 ban and delete user admin actions takes an array of uids now. 11 years ago			`if(!Array.isArray(uids)) {`
			`return callback(new Error('[[error:invalid-data]]'));`
			`}`

some checks to make last admin isnt removed 11 years ago			`async.eachSeries(uids, function(uid, next) {`
			`groups.getMemberCount('administrators', function(err, count) {`
			`if (err) {`
			`return next(err);`
			`}`

			`if (count === 1) {`
			`return next(new Error('[[error:cant-remove-last-admin]]'));`
			`}`

			`groups.leave('administrators', uid, next);`
			`});`
closes #1487 ban and delete user admin actions takes an array of uids now. 11 years ago			`}, callback);`
some checks to make last admin isnt removed 11 years ago			`};`
closes #1487 ban and delete user admin actions takes an array of uids now. 11 years ago
socket.io admin/user 11 years ago			`User.createUser = function(socket, userData, callback) {`
			`if (!userData) {`
			`return callback(new Error('[[error:invalid-data]]'));`
			`}`
			`user.create(userData, callback);`
			`};`


closes #1971 11 years ago			`User.resetLockouts = function(socket, uids, callback) {`
			`if (!Array.isArray(uids)) {`
			`return callback(new Error('[[error:invalid-data]]'));`
			`}`

			`async.each(uids, user.auth.resetLockout, callback);`
			`};`

closes #2458 10 years ago			`User.resetFlags = function(socket, uids, callback) {`
			`if (!Array.isArray(uids)) {`
			`return callback(new Error('[[error:invalid-data]]'));`
			`}`

			`user.resetFlags(uids, callback);`
			`};`

closes #2213 11 years ago			`User.validateEmail = function(socket, uids, callback) {`
			`if (!Array.isArray(uids)) {`
			`return callback(new Error('[[error:invalid-data]]'));`
			`}`

			`uids = uids.filter(function(uid) {`
			`return parseInt(uid, 10);`
			`});`

			`async.each(uids, function(uid, next) {`
			`user.setUserField(uid, 'email:confirmed', 1, next);`
closes #3436 9 years ago			`}, function(err) {`
			`if (err) {`
			`return callback(err);`
			`}`
			`db.sortedSetRemove('users:notvalidated', uids, callback);`
			`});`
closes #2315 10 years ago			`};`

closes #2640 10 years ago			`User.sendValidationEmail = function(socket, uids, callback) {`
			`if (!Array.isArray(uids)) {`
			`return callback(new Error('[[error:invalid-data]]'));`
			`}`
closes #2971 10 years ago
closes #2640 10 years ago			`if (parseInt(meta.config.requireEmailConfirmation, 10) !== 1) {`
			`return callback(new Error('[[error:email-confirmations-are-disabled]]'));`
			`}`

more refactors 10 years ago			`user.getUsersFields(uids, ['uid', 'email'], function(err, usersData) {`
closes #2640 10 years ago			`if (err) {`
			`return callback(err);`
			`}`

			`async.eachLimit(usersData, 50, function(userData, next) {`
			`if (userData.email && userData.uid) {`
closes #2971 10 years ago			`user.email.sendValidationEmail(userData.uid, userData.email, next);`
closes #2640 10 years ago			`} else {`
			`next();`
			`}`
			`}, callback);`
			`});`
			`};`

closes #2315 10 years ago			`User.sendPasswordResetEmail = function(socket, uids, callback) {`
			`if (!Array.isArray(uids)) {`
			`return callback(new Error('[[error:invalid-data]]'));`
			`}`

			`uids = uids.filter(function(uid) {`
			`return parseInt(uid, 10);`
			`});`

			`async.each(uids, function(uid, next) {`
			`user.getUserFields(uid, ['email', 'username'], function(err, userData) {`
			`if (err) {`
			`return next(err);`
			`}`
			`if (!userData.email) {`
			`return next(new Error('[[error:user-doesnt-have-email, ' + userData.username + ']]'));`
			`}`
			`user.reset.send(userData.email, next);`
			`});`
closes #2213 11 years ago			`}, callback);`
			`};`

closes #1487 ban and delete user admin actions takes an array of uids now. 11 years ago			`User.deleteUsers = function(socket, uids, callback) {`
			`if(!Array.isArray(uids)) {`
			`return callback(new Error('[[error:invalid-data]]'));`
			`}`
socket.io admin/user 11 years ago
closes #1487 ban and delete user admin actions takes an array of uids now. 11 years ago			`async.each(uids, function(uid, next) {`
log self account delete, logout on self account delete 9 years ago			`async.waterfall([`
			`function (next) {`
			`user.isAdministrator(uid, next);`
			`},`
			`function (isAdmin, next) {`
			`if (isAdmin) {`
			`return next(new Error('[[error:cant-delete-other-admins]]'));`
prevent administrators from being deleted - first remove them from admin group 11 years ago			`}`

closes #4354 9 years ago			`user.delete(socket.uid, uid, next);`
log self account delete, logout on self account delete 9 years ago			`},`
			`function (next) {`
closes #2550, closes #2518 10 years ago			`events.log({`
			`type: 'user-delete',`
			`uid: socket.uid,`
			`targetUid: uid,`
			`ip: socket.ip`
			`});`
prevent administrators from being deleted - first remove them from admin group 11 years ago			`next();`
log self account delete, logout on self account delete 9 years ago			`}`
			`], next);`
closes #1487 ban and delete user admin actions takes an array of uids now. 11 years ago			`}, callback);`
socket.io admin/user 11 years ago			`};`

closes #2440 10 years ago			`User.search = function(socket, data, callback) {`
part 1 no upgrade script yet 10 years ago			`user.search({query: data.query, searchBy: data.searchBy, uid: socket.uid}, function(err, searchData) {`
socket.io admin/user 11 years ago			`if (err) {`
			`return callback(err);`
			`}`
closes #2458 10 years ago			`if (!searchData.users.length) {`
			`return callback(null, searchData);`
			`}`

			`var userData = searchData.users;`
			`var uids = userData.map(function(user) {`
			`return user && user.uid;`
			`});`

closes #4820 9 years ago			`user.getUsersFields(uids, ['email', 'flags'], function(err, userInfo) {`
closes #2458 10 years ago			`if (err) {`
			`return callback(err);`
			`}`

			`userData.forEach(function(user, index) {`
closes #4820 9 years ago			`if (user && userInfo[index]) {`
			`user.email = userInfo[index].email \|\| '';`
			`user.flags = userInfo[index].flags \|\| 0;`
closes #2458 10 years ago			`}`
			`});`
socket.io admin/user 11 years ago
closes #2458 10 years ago			`callback(null, searchData);`
socket.io admin/user 11 years ago			`});`
			`});`
			`};`

In the process of adding the delete button to the invitation panel. Apparently, the delete method doesn't work with the invitation items, so I might need to add some extra logic. 9 years ago			`User.deleteInvitation = function(socket, data, callback) {`
Finished adding a new delete to also remove the reference from the invites list on the APM. 9 years ago			`user.deleteInvitation(data.invitedBy, data.email, callback);`
In the process of adding the delete button to the invitation panel. Apparently, the delete method doesn't work with the invitation items, so I might need to add some extra logic. 9 years ago			`};`

closes #1306 10 years ago			`User.acceptRegistration = function(socket, data, callback) {`
			`user.acceptRegistration(data.username, callback);`
			`};`

			`User.rejectRegistration = function(socket, data, callback) {`
			`user.rejectRegistration(data.username, callback);`
			`};`


In the process of adding the delete button to the invitation panel. Apparently, the delete method doesn't work with the invitation items, so I might need to add some extra logic. 9 years ago			`module.exports = User;`