src/socket.io/admin/user.js

'use strict';

const async = require('async');
const winston = require('winston');

const db = require('../../database');
const groups = require('../../groups');
const user = require('../../user');
const events = require('../../events');
const translator = require('../../translator');
const sockets = require('..');

const User = module.exports;

User.makeAdmins = async function (socket, uids) {
	if (!Array.isArray(uids)) {
		throw new Error('[[error:invalid-data]]');
	}
	const isMembersOfBanned = await groups.isMembers(uids, groups.BANNED_USERS);
	if (isMembersOfBanned.includes(true)) {
		throw new Error('[[error:cant-make-banned-users-admin]]');
	}
	for (const uid of uids) {
		/* eslint-disable no-await-in-loop */
		await groups.join('administrators', uid);
		await events.log({
			type: 'user-makeAdmin',
			uid: socket.uid,
			targetUid: uid,
			ip: socket.ip,
		});
	}
};

User.removeAdmins = async function (socket, uids) {
	if (!Array.isArray(uids)) {
		throw new Error('[[error:invalid-data]]');
	}
	for (const uid of uids) {
		/* eslint-disable no-await-in-loop */
		const count = await groups.getMemberCount('administrators');
		if (count === 1) {
			throw new Error('[[error:cant-remove-last-admin]]');
		}
		await groups.leave('administrators', uid);
		await events.log({
			type: 'user-removeAdmin',
			uid: socket.uid,
			targetUid: uid,
			ip: socket.ip,
		});
	}
};

User.resetLockouts = async function (socket, uids) {
	if (!Array.isArray(uids)) {
		throw new Error('[[error:invalid-data]]');
	}
	await Promise.all(uids.map(uid => user.auth.resetLockout(uid)));
};

User.validateEmail = async function (socket, uids) {
	if (!Array.isArray(uids)) {
		throw new Error('[[error:invalid-data]]');
	}

	for (const uid of uids) {
		const email = await user.email.getEmailForValidation(uid);
		if (email) {
			await user.setUserField(uid, 'email', email);
		}
		await user.email.confirmByUid(uid);
	}
};

User.sendValidationEmail = async function (socket, uids) {
	if (!Array.isArray(uids)) {
		throw new Error('[[error:invalid-data]]');
	}

	const failed = [];
	let errorLogged = false;
	await async.eachLimit(uids, 50, async (uid) => {
		const email = await user.email.getEmailForValidation(uid);
		await user.email.sendValidationEmail(uid, {
			force: true,
			email: email,
		}).catch((err) => {
			if (!errorLogged) {
				winston.error(`[user.create] Validation email failed to send\n[emailer.send] ${err.stack}`);
				errorLogged = true;
			}

			failed.push(uid);
		});
	});

	if (failed.length) {
		throw Error(`Email sending failed for the following uids, check server logs for more info: ${failed.join(',')}`);
	}
};

User.sendPasswordResetEmail = async function (socket, uids) {
	if (!Array.isArray(uids)) {
		throw new Error('[[error:invalid-data]]');
	}

	uids = uids.filter(uid => parseInt(uid, 10));

	await Promise.all(uids.map(async (uid) => {
		const userData = await user.getUserFields(uid, ['email', 'username']);
		if (!userData.email) {
			throw new Error(`[[error:user-doesnt-have-email, ${userData.username}]]`);
		}
		await user.reset.send(userData.email);
	}));
};

User.forcePasswordReset = async function (socket, uids) {
	if (!Array.isArray(uids)) {
		throw new Error('[[error:invalid-data]]');
	}

	uids = uids.filter(uid => parseInt(uid, 10));

	await db.setObjectField(uids.map(uid => `user:${uid}`), 'passwordExpiry', Date.now());
	await user.auth.revokeAllSessions(uids);
	uids.forEach(uid => sockets.in(`uid_${uid}`).emit('event:logout'));
};

User.restartJobs = async function () {
	user.startJobs();
};

User.loadGroups = async function (socket, uids) {
	const [userData, groupData] = await Promise.all([
		user.getUsersData(uids),
		groups.getUserGroupsFromSet('groups:createtime', uids),
	]);
	userData.forEach((data, index) => {
		data.groups = groupData[index].filter(group => !groups.isPrivilegeGroup(group.name));
		data.groups.forEach((group) => {
			group.nameEscaped = translator.escape(group.displayName);
		});
	});
	return { users: userData };
};

User.exportUsersCSV = async function (socket) {
	await events.log({
		type: 'exportUsersCSV',
		uid: socket.uid,
		ip: socket.ip,
	});
	setTimeout(async () => {
		try {
			await user.exportUsersCSV();
			if (socket.emit) {
				socket.emit('event:export-users-csv');
			}
			const notifications = require('../../notifications');
			const n = await notifications.create({
				bodyShort: '[[notifications:users-csv-exported]]',
				path: '/api/admin/users/csv',
				nid: 'users:csv:export',
				from: socket.uid,
			});
			await notifications.push(n, [socket.uid]);
		} catch (err) {
			winston.error(err.stack);
		}
	}, 0);
};
ESlint quotes 2017-02-18 01:56:23 -07:00			`'use strict';`
socket.io admin/user 2014-04-15 02:25:42 -04:00
refactor: async/await socket.io/admin 2019-09-07 18:22:03 -04:00			`const async = require('async');`
fix: #8969, export csv to file 2020-11-27 15:38:22 -05:00			`const winston = require('winston');`
closes #5060 2016-09-27 13:31:50 +03:00
refactor: async/await socket.io/admin 2019-09-07 18:22:03 -04:00			`const db = require('../../database');`
			`const groups = require('../../groups');`
			`const user = require('../../user');`
			`const events = require('../../events');`
feat: #5272, allow changing user groups from manage users page 2019-12-04 11:14:01 -05:00			`const translator = require('../../translator');`
fix: use POST call for user creation in ACP - Not entirely sure about error handling yet, more research needed - Also added socket method deprecation utility method 2020-03-27 22:52:46 -04:00			`const sockets = require('..');`
socket.io admin/user 2014-04-15 02:25:42 -04:00
refactor: async/await socket.io/admin 2019-09-07 18:22:03 -04:00			`const User = module.exports;`
socket.io admin/user 2014-04-15 02:25:42 -04:00
refactor: async/await socket.io/admin 2019-09-07 18:22:03 -04:00			`User.makeAdmins = async function (socket, uids) {`
ESlint keyword-spacing, no-multi-spaces 2017-02-18 01:52:56 -07:00			`if (!Array.isArray(uids)) {`
refactor: async/await socket.io/admin 2019-09-07 18:22:03 -04:00			`throw new Error('[[error:invalid-data]]');`
			`}`
feat: banned-users group 2020-12-14 09:20:41 +03:00			`const isMembersOfBanned = await groups.isMembers(uids, groups.BANNED_USERS);`
			`if (isMembersOfBanned.includes(true)) {`
			`throw new Error('[[error:cant-make-banned-users-admin]]');`
			`}`
refactor: async/await socket.io/admin 2019-09-07 18:22:03 -04:00			`for (const uid of uids) {`
			`/* eslint-disable no-await-in-loop */`
			`await groups.join('administrators', uid);`
			`await events.log({`
			`type: 'user-makeAdmin',`
			`uid: socket.uid,`
			`targetUid: uid,`
			`ip: socket.ip,`
			`});`
some checks to make last admin isnt removed 2014-06-13 22:48:24 -04:00			`}`
socket.io admin/user 2014-04-15 02:25:42 -04:00			`};`

refactor: async/await socket.io/admin 2019-09-07 18:22:03 -04:00			`User.removeAdmins = async function (socket, uids) {`
ESlint keyword-spacing, no-multi-spaces 2017-02-18 01:52:56 -07:00			`if (!Array.isArray(uids)) {`
refactor: async/await socket.io/admin 2019-09-07 18:22:03 -04:00			`throw new Error('[[error:invalid-data]]');`
			`}`
			`for (const uid of uids) {`
			`/* eslint-disable no-await-in-loop */`
			`const count = await groups.getMemberCount('administrators');`
			`if (count === 1) {`
			`throw new Error('[[error:cant-remove-last-admin]]');`
			`}`
			`await groups.leave('administrators', uid);`
			`await events.log({`
			`type: 'user-removeAdmin',`
			`uid: socket.uid,`
			`targetUid: uid,`
			`ip: socket.ip,`
			`});`
closes #1487 ban and delete user admin actions takes an array of uids now. 2014-05-05 16:48:09 -04:00			`}`
some checks to make last admin isnt removed 2014-06-13 22:48:24 -04:00			`};`
closes #1487 ban and delete user admin actions takes an array of uids now. 2014-05-05 16:48:09 -04:00
refactor: async/await socket.io/admin 2019-09-07 18:22:03 -04:00			`User.resetLockouts = async function (socket, uids) {`
closes #1971 2014-08-14 08:34:38 -04:00			`if (!Array.isArray(uids)) {`
refactor: async/await socket.io/admin 2019-09-07 18:22:03 -04:00			`throw new Error('[[error:invalid-data]]');`
closes #1971 2014-08-14 08:34:38 -04:00			`}`
refactor: async/await socket.io/admin 2019-09-07 18:22:03 -04:00			`await Promise.all(uids.map(uid => user.auth.resetLockout(uid)));`
closes #1971 2014-08-14 08:34:38 -04:00			`};`

refactor: async/await socket.io/admin 2019-09-07 18:22:03 -04:00			`User.validateEmail = async function (socket, uids) {`
closes #2213 2014-10-06 13:11:12 -04:00			`if (!Array.isArray(uids)) {`
refactor: async/await socket.io/admin 2019-09-07 18:22:03 -04:00			`throw new Error('[[error:invalid-data]]');`
closes #2213 2014-10-06 13:11:12 -04:00			`}`

Admin/users (#8762) * feat: wip admin/users * feat: more work * feat: more fixes * feat: #8662, verified/unverified user groups * feat: add filter * feat: change user search to use filters array * refactor: remove unused search call * fix: tests * fix: cant join system groups * fix: upgrade script 2020-10-13 22:42:50 -04:00			`for (const uid of uids) {`
Fixes for "validate email" & "send validation email" in ACP (#11677) * confirmObj changes dont expire confirm:<code>, add a expires field instead dont expire confirm:byUid:<uid> on admin manage users display the users email status 1. verified 2. verify email sent (pending) 3. verify email sent (expired) 4. no email entered fix validate email in acp to use email in user:<uid> if they have one if not check if its in confirm:<code> if its not in above cant validate throw error fix send validate email to use email in user:<uid> if they have one if not check if its in confirm:<code> if its not in above too cant validate throw error * add back socket.io tests * test: fix confirm tests no longer using pexpire return correct time left on token * chore: update openapi * fix: delete call * test: mget test fixes * test: fix tests 2023-06-05 12:12:48 -04:00			`const email = await user.email.getEmailForValidation(uid);`
			`if (email) {`
			`await user.setUserField(uid, 'email', email);`
			`}`
feat: add user.email.confirmByUid for sso plugins 2020-12-10 20:25:48 -05:00			`await user.email.confirmByUid(uid);`
Admin/users (#8762) * feat: wip admin/users * feat: more work * feat: more fixes * feat: #8662, verified/unverified user groups * feat: add filter * feat: change user search to use filters array * refactor: remove unused search call * fix: tests * fix: cant join system groups * fix: upgrade script 2020-10-13 22:42:50 -04:00			`}`
closes #2315 2014-11-03 15:31:41 -05:00			`};`

refactor: async/await socket.io/admin 2019-09-07 18:22:03 -04:00			`User.sendValidationEmail = async function (socket, uids) {`
closes #2640 2015-02-11 14:44:56 -05:00			`if (!Array.isArray(uids)) {`
refactor: async/await socket.io/admin 2019-09-07 18:22:03 -04:00			`throw new Error('[[error:invalid-data]]');`
closes #2640 2015-02-11 14:44:56 -05:00			`}`
closes #2971 2015-04-13 17:29:43 -04:00
fix: email testing and settings change from ACP - changing email SMTP settings wouldn't apply the first time - "Send Test Email" now will report emailer errors in most cases 2020-12-05 14:25:14 -07:00			`const failed = [];`
fix: #9339, only log email errors once per digest, notification push show notice in acp 2021-03-05 19:03:16 -05:00			`let errorLogged = false;`
chore: eslint prefer-arrow-callback 2021-02-04 00:01:39 -07:00			`await async.eachLimit(uids, 50, async (uid) => {`
Fixes for "validate email" & "send validation email" in ACP (#11677) * confirmObj changes dont expire confirm:<code>, add a expires field instead dont expire confirm:byUid:<uid> on admin manage users display the users email status 1. verified 2. verify email sent (pending) 3. verify email sent (expired) 4. no email entered fix validate email in acp to use email in user:<uid> if they have one if not check if its in confirm:<code> if its not in above cant validate throw error fix send validate email to use email in user:<uid> if they have one if not check if its in confirm:<code> if its not in above too cant validate throw error * add back socket.io tests * test: fix confirm tests no longer using pexpire return correct time left on token * chore: update openapi * fix: delete call * test: mget test fixes * test: fix tests 2023-06-05 12:12:48 -04:00			`const email = await user.email.getEmailForValidation(uid);`
			`await user.email.sendValidationEmail(uid, {`
			`force: true,`
			`email: email,`
			`}).catch((err) => {`
fix: #9339, only log email errors once per digest, notification push show notice in acp 2021-03-05 19:03:16 -05:00			`if (!errorLogged) {`
			winston.error(`[user.create] Validation email failed to send\n[emailer.send] ${err.stack}`);
			`errorLogged = true;`
			`}`

fix: email testing and settings change from ACP - changing email SMTP settings wouldn't apply the first time - "Send Test Email" now will report emailer errors in most cases 2020-12-05 14:25:14 -07:00			`failed.push(uid);`
			`});`
refactor: async/await socket.io/admin 2019-09-07 18:22:03 -04:00			`});`
fix: email testing and settings change from ACP - changing email SMTP settings wouldn't apply the first time - "Send Test Email" now will report emailer errors in most cases 2020-12-05 14:25:14 -07:00
			`if (failed.length) {`
			throw Error(`Email sending failed for the following uids, check server logs for more info: ${failed.join(',')}`);
			`}`
closes #2640 2015-02-11 14:44:56 -05:00			`};`

refactor: async/await socket.io/admin 2019-09-07 18:22:03 -04:00			`User.sendPasswordResetEmail = async function (socket, uids) {`
closes #2315 2014-11-03 15:31:41 -05:00			`if (!Array.isArray(uids)) {`
refactor: async/await socket.io/admin 2019-09-07 18:22:03 -04:00			`throw new Error('[[error:invalid-data]]');`
closes #2315 2014-11-03 15:31:41 -05:00			`}`

closes #6910 2018-11-05 08:20:43 -05:00			`uids = uids.filter(uid => parseInt(uid, 10));`
closes #2315 2014-11-03 15:31:41 -05:00
chore: eslint prefer-arrow-callback 2021-02-04 00:01:39 -07:00			`await Promise.all(uids.map(async (uid) => {`
refactor: async/await socket.io/admin 2019-09-07 18:22:03 -04:00			`const userData = await user.getUserFields(uid, ['email', 'username']);`
			`if (!userData.email) {`
chore: eslint prefer-template 2021-02-03 23:59:08 -07:00			throw new Error(`[[error:user-doesnt-have-email, ${userData.username}]]`);
refactor: async/await socket.io/admin 2019-09-07 18:22:03 -04:00			`}`
			`await user.reset.send(userData.email);`
			`}));`
closes #2213 2014-10-06 13:11:12 -04:00			`};`

refactor: async/await socket.io/admin 2019-09-07 18:22:03 -04:00			`User.forcePasswordReset = async function (socket, uids) {`
feat: manual password expiry. closes #7471 2019-03-20 16:34:22 -04:00			`if (!Array.isArray(uids)) {`
refactor: async/await socket.io/admin 2019-09-07 18:22:03 -04:00			`throw new Error('[[error:invalid-data]]');`
feat: manual password expiry. closes #7471 2019-03-20 16:34:22 -04:00			`}`

			`uids = uids.filter(uid => parseInt(uid, 10));`

chore: eslint prefer-template 2021-02-03 23:59:08 -07:00			await db.setObjectField(uids.map(uid => `user:${uid}`), 'passwordExpiry', Date.now());
refactor: async/await socket.io/admin 2019-09-07 18:22:03 -04:00			`await user.auth.revokeAllSessions(uids);`
chore: eslint prefer-template 2021-02-03 23:59:08 -07:00			uids.forEach(uid => sockets.in(`uid_${uid}`).emit('event:logout'));
feat: manual password expiry. closes #7471 2019-03-20 16:34:22 -04:00			`};`

refactor: async/await socket.io/admin 2019-09-07 18:22:03 -04:00			`User.restartJobs = async function () {`
feat: #7743 user/index.js user/info.js user/invite.js user/jobs.js 2019-07-16 11:42:24 -04:00			`user.startJobs();`
closes #4766 2016-08-26 10:04:38 -04:00			`};`
feat: #5272, allow changing user groups from manage users page 2019-12-04 11:14:01 -05:00
			`User.loadGroups = async function (socket, uids) {`
			`const [userData, groupData] = await Promise.all([`
			`user.getUsersData(uids),`
			`groups.getUserGroupsFromSet('groups:createtime', uids),`
			`]);`
			`userData.forEach((data, index) => {`
			`data.groups = groupData[index].filter(group => !groups.isPrivilegeGroup(group.name));`
			`data.groups.forEach((group) => {`
			`group.nameEscaped = translator.escape(group.displayName);`
			`});`
			`});`
			`return { users: userData };`
			`};`
fix: #8969, export csv to file 2020-11-27 15:38:22 -05:00
			`User.exportUsersCSV = async function (socket) {`
			`await events.log({`
			`type: 'exportUsersCSV',`
			`uid: socket.uid,`
			`ip: socket.ip,`
			`});`
chore: eslint prefer-arrow-callback 2021-02-04 00:01:39 -07:00			`setTimeout(async () => {`
fix: #8969, export csv to file 2020-11-27 15:38:22 -05:00			`try {`
			`await user.exportUsersCSV();`
test: socket.emit doesnt exist in tests 2021-11-09 10:51:44 -05:00			`if (socket.emit) {`
			`socket.emit('event:export-users-csv');`
			`}`
fix: #8969, export csv to file 2020-11-27 15:38:22 -05:00			`const notifications = require('../../notifications');`
			`const n = await notifications.create({`
			`bodyShort: '[[notifications:users-csv-exported]]',`
			`path: '/api/admin/users/csv',`
			`nid: 'users:csv:export',`
			`from: socket.uid,`
			`});`
			`await notifications.push(n, [socket.uid]);`
			`} catch (err) {`
test: socket.emit doesnt exist in tests 2021-11-09 10:51:44 -05:00			`winston.error(err.stack);`
fix: #8969, export csv to file 2020-11-27 15:38:22 -05:00			`}`
			`}, 0);`
			`};`