src/controllers/accounts/edit.js

'use strict';

const user = require('../../user');
const meta = require('../../meta');
const helpers = require('../helpers');
const groups = require('../../groups');
const accountHelpers = require('./helpers');
const privileges = require('../../privileges');
const file = require('../../file');

const editController = module.exports;

editController.get = async function (req, res, next) {
	const [userData, canUseSignature] = await Promise.all([
		accountHelpers.getUserDataByUserSlug(req.params.userslug, req.uid),
		privileges.global.can('signature', req.uid),
	]);
	if (!userData) {
		return next();
	}
	userData.maximumSignatureLength = meta.config.maximumSignatureLength;
	userData.maximumAboutMeLength = meta.config.maximumAboutMeLength;
	userData.maximumProfileImageSize = meta.config.maximumProfileImageSize;
	userData.allowProfilePicture = !userData.isSelf || !!meta.config['reputation:disabled'] || userData.reputation >= meta.config['min:rep:profile-picture'];
	userData.allowCoverPicture = !userData.isSelf || !!meta.config['reputation:disabled'] || userData.reputation >= meta.config['min:rep:cover-picture'];
	userData.allowProfileImageUploads = meta.config.allowProfileImageUploads;
	userData.allowedProfileImageExtensions = user.getAllowedProfileImageExtensions().map(ext => '.' + ext).join(', ');
	userData.allowMultipleBadges = meta.config.allowMultipleBadges === 1;
	userData.allowAccountDelete = meta.config.allowAccountDelete === 1;
	userData.allowWebsite = !userData.isSelf || !!meta.config['reputation:disabled'] || userData.reputation >= meta.config['min:rep:website'];
	userData.allowAboutMe = !userData.isSelf || !!meta.config['reputation:disabled'] || userData.reputation >= meta.config['min:rep:aboutme'];
	userData.allowSignature = canUseSignature && (!userData.isSelf || !!meta.config['reputation:disabled'] || userData.reputation >= meta.config['min:rep:signature']);
	userData.profileImageDimension = meta.config.profileImageDimension;
	userData.defaultAvatar = user.getDefaultAvatar();

	userData.groups = userData.groups.filter(g => g && g.userTitleEnabled && !groups.isPrivilegeGroup(g.name) && g.name !== 'registered-users');

	if (!userData.allowMultipleBadges) {
		userData.groupTitle = userData.groupTitleArray[0];
	}

	userData.groups.sort((a, b) => {
		const i1 = userData.groupTitleArray.indexOf(a.name);
		const i2 = userData.groupTitleArray.indexOf(b.name);
		if (i1 === -1) {
			return 1;
		} else if (i2 === -1) {
			return -1;
		}
		return i1 - i2;
	});
	userData.groups.forEach(function (group) {
		group.userTitle = group.userTitle || group.displayName;
		group.selected = userData.groupTitleArray.includes(group.name);
	});
	userData.groupSelectSize = Math.min(10, Math.max(5, userData.groups.length + 1));

	userData.title = '[[pages:account/edit, ' + userData.username + ']]';
	userData.breadcrumbs = helpers.buildBreadcrumbs([
		{
			text: userData.username,
			url: '/user/' + userData.userslug,
		},
		{
			text: '[[user:edit]]',
		},
	]);
	userData.editButtons = [];
	res.render('account/edit', userData);
};

editController.password = async function (req, res, next) {
	await renderRoute('password', req, res, next);
};

editController.username = async function (req, res, next) {
	await renderRoute('username', req, res, next);
};

editController.email = async function (req, res, next) {
	await renderRoute('email', req, res, next);
};

async function renderRoute(name, req, res, next) {
	const userData = await getUserData(req, next);
	if (!userData) {
		return next();
	}
	if (meta.config[name + ':disableEdit'] && !userData.isAdmin) {
		return helpers.notAllowed(req, res);
	}

	if (name === 'password') {
		userData.minimumPasswordLength = meta.config.minimumPasswordLength;
		userData.minimumPasswordStrength = meta.config.minimumPasswordStrength;
	}

	userData.title = '[[pages:account/edit/' + name + ', ' + userData.username + ']]';
	userData.breadcrumbs = helpers.buildBreadcrumbs([
		{
			text: userData.username,
			url: '/user/' + userData.userslug,
		},
		{
			text: '[[user:edit]]',
			url: '/user/' + userData.userslug + '/edit',
		},
		{
			text: '[[user:' + name + ']]',
		},
	]);

	res.render('account/edit/' + name, userData);
}

async function getUserData(req) {
	const userData = await accountHelpers.getUserDataByUserSlug(req.params.userslug, req.uid);
	if (!userData) {
		return null;
	}

	userData.hasPassword = await user.hasPassword(userData.uid);
	return userData;
}

editController.uploadPicture = async function (req, res, next) {
	const userPhoto = req.files.files[0];
	try {
		const updateUid = await user.getUidByUserslug(req.params.userslug);
		const isAllowed = await privileges.users.canEdit(req.uid, updateUid);
		if (!isAllowed) {
			return helpers.notAllowed(req, res);
		}
		await user.checkMinReputation(req.uid, updateUid, 'min:rep:profile-picture');

		const image = await user.uploadCroppedPictureFile({
			uid: updateUid,
			file: userPhoto,
		});

		res.json([{
			name: userPhoto.name,
			url: image.url,
		}]);
	} catch (err) {
		next(err);
	} finally {
		await file.delete(userPhoto.path);
	}
};
accounts refactor part #1 2015-09-25 01:52:41 -04:00			`'use strict';`

feat: async/await refactor controllers/accounts 2019-08-12 20:58:29 -04:00			`const user = require('../../user');`
			`const meta = require('../../meta');`
			`const helpers = require('../helpers');`
			`const groups = require('../../groups');`
			`const accountHelpers = require('./helpers');`
			`const privileges = require('../../privileges');`
fix: #8437, #8433 2020-06-24 23:04:24 -04:00			`const file = require('../../file');`
feat: async/await refactor controllers/accounts 2019-08-12 20:58:29 -04:00
			`const editController = module.exports;`

			`editController.get = async function (req, res, next) {`
			`const [userData, canUseSignature] = await Promise.all([`
			`accountHelpers.getUserDataByUserSlug(req.params.userslug, req.uid),`
			`privileges.global.can('signature', req.uid),`
			`]);`
			`if (!userData) {`
			`return next();`
			`}`
			`userData.maximumSignatureLength = meta.config.maximumSignatureLength;`
			`userData.maximumAboutMeLength = meta.config.maximumAboutMeLength;`
			`userData.maximumProfileImageSize = meta.config.maximumProfileImageSize;`
			`userData.allowProfilePicture = !userData.isSelf \|\| !!meta.config['reputation:disabled'] \|\| userData.reputation >= meta.config['min:rep:profile-picture'];`
			`userData.allowCoverPicture = !userData.isSelf \|\| !!meta.config['reputation:disabled'] \|\| userData.reputation >= meta.config['min:rep:cover-picture'];`
			`userData.allowProfileImageUploads = meta.config.allowProfileImageUploads;`
feat: #9005, use timestamp in profile/cover images delete current one if keepAllUserImages is turned off fix typo in data 2020-12-01 20:24:22 -05:00			`userData.allowedProfileImageExtensions = user.getAllowedProfileImageExtensions().map(ext => '.' + ext).join(', ');`
feat: async/await refactor controllers/accounts 2019-08-12 20:58:29 -04:00			`userData.allowMultipleBadges = meta.config.allowMultipleBadges === 1;`
			`userData.allowAccountDelete = meta.config.allowAccountDelete === 1;`
			`userData.allowWebsite = !userData.isSelf \|\| !!meta.config['reputation:disabled'] \|\| userData.reputation >= meta.config['min:rep:website'];`
			`userData.allowAboutMe = !userData.isSelf \|\| !!meta.config['reputation:disabled'] \|\| userData.reputation >= meta.config['min:rep:aboutme'];`
			`userData.allowSignature = canUseSignature && (!userData.isSelf \|\| !!meta.config['reputation:disabled'] \|\| userData.reputation >= meta.config['min:rep:signature']);`
			`userData.profileImageDimension = meta.config.profileImageDimension;`
			`userData.defaultAvatar = user.getDefaultAvatar();`

			`userData.groups = userData.groups.filter(g => g && g.userTitleEnabled && !groups.isPrivilegeGroup(g.name) && g.name !== 'registered-users');`

			`if (!userData.allowMultipleBadges) {`
			`userData.groupTitle = userData.groupTitleArray[0];`
			`}`
fix: #7791 2019-08-13 16:13:39 -04:00
			`userData.groups.sort((a, b) => {`
			`const i1 = userData.groupTitleArray.indexOf(a.name);`
			`const i2 = userData.groupTitleArray.indexOf(b.name);`
			`if (i1 === -1) {`
			`return 1;`
			`} else if (i2 === -1) {`
			`return -1;`
			`}`
			`return i1 - i2;`
			`});`
feat: async/await refactor controllers/accounts 2019-08-12 20:58:29 -04:00			`userData.groups.forEach(function (group) {`
fix: #7953, allow icon only group badges 2019-10-08 12:19:17 -04:00			`group.userTitle = group.userTitle \|\| group.displayName;`
feat: async/await refactor controllers/accounts 2019-08-12 20:58:29 -04:00			`group.selected = userData.groupTitleArray.includes(group.name);`
			`});`
fix: #7791 2019-08-13 16:13:39 -04:00			`userData.groupSelectSize = Math.min(10, Math.max(5, userData.groups.length + 1));`
feat: async/await refactor controllers/accounts 2019-08-12 20:58:29 -04:00
			`userData.title = '[[pages:account/edit, ' + userData.username + ']]';`
			`userData.breadcrumbs = helpers.buildBreadcrumbs([`
			`{`
			`text: userData.username,`
			`url: '/user/' + userData.userslug,`
file.delete method 2017-05-24 00:02:30 -04:00			`},`
feat: async/await refactor controllers/accounts 2019-08-12 20:58:29 -04:00			`{`
			`text: '[[user:edit]]',`
file.delete method 2017-05-24 00:02:30 -04:00			`},`
feat: async/await refactor controllers/accounts 2019-08-12 20:58:29 -04:00			`]);`
			`userData.editButtons = [];`
feat: remove deprecated hooks 2020-07-24 10:39:51 -04:00			`res.render('account/edit', userData);`
closes #1637 2015-10-09 17:52:55 -04:00			`};`

feat: async/await refactor controllers/accounts 2019-08-12 20:58:29 -04:00			`editController.password = async function (req, res, next) {`
			`await renderRoute('password', req, res, next);`
closes #1637 2015-10-09 17:52:55 -04:00			`};`

feat: async/await refactor controllers/accounts 2019-08-12 20:58:29 -04:00			`editController.username = async function (req, res, next) {`
			`await renderRoute('username', req, res, next);`
closes #1637 2015-10-09 17:52:55 -04:00			`};`

feat: async/await refactor controllers/accounts 2019-08-12 20:58:29 -04:00			`editController.email = async function (req, res, next) {`
			`await renderRoute('email', req, res, next);`
			`};`
closes #1637 2015-10-09 17:52:55 -04:00
feat: async/await refactor controllers/accounts 2019-08-12 20:58:29 -04:00			`async function renderRoute(name, req, res, next) {`
			`const userData = await getUserData(req, next);`
			`if (!userData) {`
			`return next();`
			`}`
			`if (meta.config[name + ':disableEdit'] && !userData.isAdmin) {`
			`return helpers.notAllowed(req, res);`
			`}`

			`if (name === 'password') {`
			`userData.minimumPasswordLength = meta.config.minimumPasswordLength;`
			`userData.minimumPasswordStrength = meta.config.minimumPasswordStrength;`
			`}`

			`userData.title = '[[pages:account/edit/' + name + ', ' + userData.username + ']]';`
			`userData.breadcrumbs = helpers.buildBreadcrumbs([`
			`{`
			`text: userData.username,`
			`url: '/user/' + userData.userslug,`
accounts refactor part #1 2015-09-25 01:52:41 -04:00			`},`
feat: async/await refactor controllers/accounts 2019-08-12 20:58:29 -04:00			`{`
			`text: '[[user:edit]]',`
			`url: '/user/' + userData.userslug + '/edit',`
ESlint comma-dangle 2017-02-17 19:31:21 -07:00			`},`
feat: async/await refactor controllers/accounts 2019-08-12 20:58:29 -04:00			`{`
			`text: '[[user:' + name + ']]',`
file.delete method 2017-05-24 00:02:30 -04:00			`},`
feat: async/await refactor controllers/accounts 2019-08-12 20:58:29 -04:00			`]);`
accounts refactor #2 and various 404 fixes 2015-09-25 13:11:11 -04:00
feat: async/await refactor controllers/accounts 2019-08-12 20:58:29 -04:00			`res.render('account/edit/' + name, userData);`
			`}`
accounts refactor #2 and various 404 fixes 2015-09-25 13:11:11 -04:00
feat: async/await refactor controllers/accounts 2019-08-12 20:58:29 -04:00			`async function getUserData(req) {`
			`const userData = await accountHelpers.getUserDataByUserSlug(req.params.userslug, req.uid);`
			`if (!userData) {`
			`return null;`
			`}`
accounts refactor #2 and various 404 fixes 2015-09-25 13:11:11 -04:00
feat: async/await refactor controllers/accounts 2019-08-12 20:58:29 -04:00			`userData.hasPassword = await user.hasPassword(userData.uid);`
			`return userData;`
			`}`
fix: #8437, #8433 2020-06-24 23:04:24 -04:00
			`editController.uploadPicture = async function (req, res, next) {`
			`const userPhoto = req.files.files[0];`
			`try {`
			`const updateUid = await user.getUidByUserslug(req.params.userslug);`
			`const isAllowed = await privileges.users.canEdit(req.uid, updateUid);`
			`if (!isAllowed) {`
			`return helpers.notAllowed(req, res);`
			`}`
			`await user.checkMinReputation(req.uid, updateUid, 'min:rep:profile-picture');`

			`const image = await user.uploadCroppedPictureFile({`
			`uid: updateUid,`
			`file: userPhoto,`
			`});`

			`res.json([{`
			`name: userPhoto.name,`
			`url: image.url,`
			`}]);`
			`} catch (err) {`
			`next(err);`
			`} finally {`
			`await file.delete(userPhoto.path);`
			`}`
			`};`