moved a number of sanity checks to also be in canMessage, so they are all consolidated into one exported method. (@barisusakli)

10 years ago · d40ca1e3c8
parent 078d76a11b
commit d40ca1e3c8
2 changed files with 52 additions and 48 deletions
--- a/src/messaging.js
+++ b/src/messaging.js
@ -298,7 +298,32 @@ var db = require('./database'),
 	};
 	Messaging.canMessage = function(fromUid, toUid, callback) {
 		if (parseInt(meta.config.disableChat) === 1) {
 			return callback(new Error('[[error:chat-disabled]]'));
 		} else if (toUid === fromUid) {
 			return callback(new Error('[[error:cant-chat-with-yourself]]'));
 		} else if (fromUid === 0) {
 			return callback(new Error('[[error:not-logged-in]]'));
 		}
 		async.waterfall([
 			function(next) {
 				user.getUserFields(fromUid, ['banned', 'email:confirmed'], function(err, userData) {
 					if (err) {
 						return callback(err);
 					}
 					if (parseInt(userData.banned, 10) === 1) {
 						return callback(new Error('[[error:user-banned]]'));
 					}
 					if (parseInt(meta.config.requireEmailConfirmation, 10) === 1 && parseInt(userData['email:confirmed'], 10) !== 1) {
 						return callback(new Error('[[error:email-not-confirmed-chat]]'));
 					}
 					next();
 				});
 			},
 			function(next) {
 				user.getSettings(toUid, next);
 			},
--- a/src/socket.io/modules.js
+++ b/src/socket.io/modules.js
@ -139,35 +139,15 @@ SocketModules.chats.send = function(socket, data, callback) {
 		return callback(new Error('[[error:invalid-data]]'));
 	}
-	if (parseInt(meta.config.disableChat) === 1) {
+	var now = Date.now(),
-		return callback(new Error('[[error:chat-disabled]]'));
+		touid = parseInt(data.touid, 10);
 	}
 	var touid = parseInt(data.touid, 10);
 	if (touid === socket.uid || socket.uid === 0) {
 		return;
 	}
-	var now = Date.now();
+	// Websocket rate limiting
 	socket.lastChatMessageTime = socket.lastChatMessageTime || 0;
 	if (now - socket.lastChatMessageTime < 200) {
 		return callback(new Error('[[error:too-many-messages]]'));
-	}
+	} else {
 		socket.lastChatMessageTime = now;
 	user.getUserFields(socket.uid, ['banned', 'email:confirmed'], function(err, userData) {
 		if (err) {
 			return callback(err);
 		}
 		if (parseInt(userData.banned, 10) === 1) {
 			return callback(new Error('[[error:user-banned]]'));
 		}
 		if (parseInt(meta.config.requireEmailConfirmation, 10) === 1 && parseInt(userData['email:confirmed'], 10) !== 1) {
 			return callback(new Error('[[error:email-not-confirmed-chat]]'));
 	}
 	Messaging.canMessage(socket.uid, touid, function(err, allowed) {
@ -201,7 +181,6 @@ SocketModules.chats.send = function(socket, data, callback) {
 			callback();
 		});
 	});
 	});
 };
 SocketModules.chats.canMessage = function(socket, toUid, callback) {