NodeBB/src/socket.io/user.js

'use strict';

const util = require('util');
const sleep = util.promisify(setTimeout);

const api = require('../api');
const user = require('../user');
const topics = require('../topics');
const messaging = require('../messaging');
const plugins = require('../plugins');
const meta = require('../meta');
const events = require('../events');
const emailer = require('../emailer');
const db = require('../database');
const userController = require('../controllers/user');
const privileges = require('../privileges');
const utils = require('../utils');
const sockets = require('.');

const SocketUser = module.exports;

require('./user/profile')(SocketUser);
require('./user/search')(SocketUser);
require('./user/status')(SocketUser);
require('./user/picture')(SocketUser);
require('./user/ban')(SocketUser);
require('./user/registration')(SocketUser);

SocketUser.exists = async function (socket, data) {
	sockets.warnDeprecated(socket, 'HEAD /api/v3/users/bySlug/:userslug *AND* HEAD /api/v3/groups/:slug');

	if (!data || !data.username) {
		throw new Error('[[error:invalid-data]]');
	}
	return await meta.userOrGroupExists(data.username);
};

SocketUser.deleteAccount = async function (socket, data) {
	sockets.warnDeprecated(socket, 'DELETE /api/v3/users/:uid/account');
	await api.users.deleteAccount(socket, data);
};

SocketUser.emailExists = async function (socket, data) {
	if (!data || !data.email) {
		throw new Error('[[error:invalid-data]]');
	}
	return await user.email.exists(data.email);
};

SocketUser.emailConfirm = async function (socket) {
	if (!socket.uid) {
		throw new Error('[[error:no-privileges]]');
	}

	if (!meta.config.requireEmailConfirmation) {
		throw new Error('[[error:email-confirmations-are-disabled]]');
	}

	return await user.email.sendValidationEmail(socket.uid);
};


// Password Reset
SocketUser.reset = {};

SocketUser.reset.send = async function (socket, email) {
	if (!email) {
		throw new Error('[[error:invalid-data]]');
	}

	if (meta.config['password:disableEdit']) {
		throw new Error('[[error:no-privileges]]');
	}
	async function logEvent(text) {
		await events.log({
			type: 'password-reset',
			text: text,
			ip: socket.ip,
			uid: socket.uid,
			email: email,
		});
	}
	try {
		await user.reset.send(email);
		await logEvent('[[success:success]]');
		await sleep(2500);
	} catch (err) {
		await logEvent(err.message);
		const internalErrors = ['[[error:invalid-email]]', '[[error:reset-rate-limited]]'];
		if (!internalErrors.includes(err.message)) {
			throw err;
		}
	}
};

SocketUser.reset.commit = async function (socket, data) {
	if (!data || !data.code || !data.password) {
		throw new Error('[[error:invalid-data]]');
	}
	const [uid] = await Promise.all([
		db.getObjectField('reset:uid', data.code),
		user.reset.commit(data.code, data.password),
		plugins.hooks.fire('action:password.reset', { uid: socket.uid }),
	]);

	await events.log({
		type: 'password-reset',
		uid: uid,
		ip: socket.ip,
	});

	const username = await user.getUserField(uid, 'username');
	const now = new Date();
	const parsedDate = now.getFullYear() + '/' + (now.getMonth() + 1) + '/' + now.getDate();
	emailer.send('reset_notify', uid, {
		username: username,
		date: parsedDate,
		subject: '[[email:reset.notify.subject]]',
	});
};

SocketUser.isFollowing = async function (socket, data) {
	if (!socket.uid || !data.uid) {
		return false;
	}

	return await user.isFollowing(socket.uid, data.uid);
};

SocketUser.follow = async function (socket, data) {
	sockets.warnDeprecated(socket, 'POST /api/v3/users/follow');
	await api.users.follow(socket, data);
};

SocketUser.unfollow = async function (socket, data) {
	sockets.warnDeprecated(socket, 'DELETE /api/v3/users/unfollow');
	await api.users.unfollow(socket, data);
};

SocketUser.saveSettings = async function (socket, data) {
	sockets.warnDeprecated(socket, 'PUT /api/v3/users/:uid/settings');
	const settings = await api.users.updateSettings(socket, data);
	return settings;
};

SocketUser.setTopicSort = async function (socket, sort) {
	sockets.warnDeprecated(socket, 'PUT /api/v3/users/:uid/setting/topicPostSort');
	await api.users.updateSetting(socket, {
		uid: socket.uid,
		setting: 'topicPostSort',
		value: sort,
	});
};

SocketUser.setCategorySort = async function (socket, sort) {
	sockets.warnDeprecated(socket, 'PUT /api/v3/users/:uid/setting/categoryTopicSort');
	await api.users.updateSetting(socket, {
		uid: socket.uid,
		setting: 'categoryTopicSort',
		value: sort,
	});
};

SocketUser.getUnreadCount = async function (socket) {
	if (!socket.uid) {
		return 0;
	}
	return await topics.getTotalUnread(socket.uid, '');
};

SocketUser.getUnreadChatCount = async function (socket) {
	if (!socket.uid) {
		return 0;
	}
	return await messaging.getUnreadCount(socket.uid);
};

SocketUser.getUnreadCounts = async function (socket) {
	if (!socket.uid) {
		return {};
	}
	const results = await utils.promiseParallel({
		unreadCounts: topics.getUnreadTids({ uid: socket.uid, count: true }),
		unreadChatCount: messaging.getUnreadCount(socket.uid),
		unreadNotificationCount: user.notifications.getUnreadCount(socket.uid),
	});
	results.unreadTopicCount = results.unreadCounts[''];
	results.unreadNewTopicCount = results.unreadCounts.new;
	results.unreadWatchedTopicCount = results.unreadCounts.watched;
	results.unreadUnrepliedTopicCount = results.unreadCounts.unreplied;
	return results;
};

SocketUser.getUserByUID = async function (socket, uid) {
	return await userController.getUserDataByField(socket.uid, 'uid', uid);
};

SocketUser.getUserByUsername = async function (socket, username) {
	return await userController.getUserDataByField(socket.uid, 'username', username);
};

SocketUser.getUserByEmail = async function (socket, email) {
	return await userController.getUserDataByField(socket.uid, 'email', email);
};

SocketUser.setModerationNote = async function (socket, data) {
	if (!socket.uid || !data || !data.uid || !data.note) {
		throw new Error('[[error:invalid-data]]');
	}
	const noteData = {
		uid: socket.uid,
		note: data.note,
		timestamp: Date.now(),
	};
	let canEdit = await privileges.users.canEdit(socket.uid, data.uid);
	if (!canEdit) {
		canEdit = await user.isModeratorOfAnyCategory(socket.uid);
	}
	if (!canEdit) {
		throw new Error('[[error:no-privileges]]');
	}

	await user.appendModerationNote({ uid: data.uid, noteData });
};

SocketUser.deleteUpload = async function (socket, data) {
	if (!data || !data.name || !data.uid) {
		throw new Error('[[error:invalid-data]]');
	}
	await user.deleteUpload(socket.uid, data.uid, data.name);
};

SocketUser.gdpr = {};

SocketUser.gdpr.consent = async function (socket) {
	await user.setUserField(socket.uid, 'gdpr_consent', 1);
};

SocketUser.gdpr.check = async function (socket, data) {
	const isAdmin = await user.isAdministrator(socket.uid);
	if (!isAdmin) {
		data.uid = socket.uid;
	}
	return await db.getObjectField('user:' + data.uid, 'gdpr_consent');
};

require('../promisify')(SocketUser);
moved user search to its own file 2014-03-12 22:11:48 -04:00			`'use strict';`

refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`const util = require('util');`
			`const sleep = util.promisify(setTimeout);`

refactor: change password/user follow to use api lib 2020-10-15 17:09:39 -04:00			`const api = require('../api');`
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`const user = require('../user');`
			`const topics = require('../topics');`
			`const messaging = require('../messaging');`
			`const plugins = require('../plugins');`
			`const meta = require('../meta');`
			`const events = require('../events');`
			`const emailer = require('../emailer');`
			`const db = require('../database');`
			`const userController = require('../controllers/user');`
			`const privileges = require('../privileges');`
			`const utils = require('../utils');`
feat: added POST and DELETE /api/v1/users/:uid/follow routes 2020-03-31 20:54:10 -04:00			`const sockets = require('.');`
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00
			`const SocketUser = module.exports;`
so far so good... user, meta, notifications, categories 2014-01-09 22:46:51 -05:00
socket.io/user.js refactor 2015-09-25 15:56:58 -04:00			`require('./user/profile')(SocketUser);`
			`require('./user/search')(SocketUser);`
			`require('./user/status')(SocketUser);`
			`require('./user/picture')(SocketUser);`
closes #4103 2016-01-25 13:36:10 +02:00			`require('./user/ban')(SocketUser);`
fix: #7316 2019-01-29 13:11:45 -05:00			`require('./user/registration')(SocketUser);`
socket.io/user.js refactor 2015-09-25 15:56:58 -04:00
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`SocketUser.exists = async function (socket, data) {`
feat: group exists API call in write api 2020-11-06 12:18:42 -05:00			`sockets.warnDeprecated(socket, 'HEAD /api/v3/users/bySlug/:userslug AND HEAD /api/v3/groups/:slug');`
feat: user exist route in write api 2020-11-06 11:55:04 -05:00
added some missing callbacks 2016-03-09 19:13:36 +02:00			`if (!data \|\| !data.username) {`
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`throw new Error('[[error:invalid-data]]');`
so far so good... user, meta, notifications, categories 2014-01-09 22:46:51 -05:00			`}`
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`return await meta.userOrGroupExists(data.username);`
so far so good... user, meta, notifications, categories 2014-01-09 22:46:51 -05:00			`};`

refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`SocketUser.deleteAccount = async function (socket, data) {`
feat(api): account deletion routes for the Write API (#8881) * feat(api): account deletion routes for the Write API * refactor: rewrite client-side calls to account deletion to use api * style: apply DRY 2020-11-17 17:29:50 -05:00			`sockets.warnDeprecated(socket, 'DELETE /api/v3/users/:uid/account');`
			`await api.users.deleteAccount(socket, data);`
closes #1284 2014-08-26 13:47:48 -04:00			`};`

refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`SocketUser.emailExists = async function (socket, data) {`
added some missing callbacks 2016-03-09 19:13:36 +02:00			`if (!data \|\| !data.email) {`
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`throw new Error('[[error:invalid-data]]');`
added data checks to user calls 2014-01-16 18:18:42 -05:00			`}`
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`return await user.email.exists(data.email);`
so far so good... user, meta, notifications, categories 2014-01-09 22:46:51 -05:00			`};`

refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`SocketUser.emailConfirm = async function (socket) {`
added some missing callbacks 2016-03-09 19:13:36 +02:00			`if (!socket.uid) {`
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`throw new Error('[[error:no-privileges]]');`
added some missing callbacks 2016-03-09 19:13:36 +02:00			`}`
closes #1635 if email isnt confirmed, show a warning in account/edit and let users resend confirm email 2014-06-03 18:39:54 -04:00
Parse int (#6853) * Store config fields as JSON in the db Fewer parseInts * Remove unnecessary parseInts * remove some dupe code add tests * remove console.log * remove more parseInts * WIP: read meta.configs defaults from defaults.json remove more parseInts * more work * add log for failing test * update admin pwd * fix tests, dont require posts/cache before configs are initialized * handle saves * Test boolean conditions * remove more parseInts * Fix boolean values * remove lots more parseInts * removed json parsing * renamed var to number * categories dont have timestamp 2018-10-21 16:47:51 -04:00			`if (!meta.config.requireEmailConfirmation) {`
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`throw new Error('[[error:email-confirmations-are-disabled]]');`
closes #1635 if email isnt confirmed, show a warning in account/edit and let users resend confirm email 2014-06-03 18:39:54 -04:00			`}`
added some missing callbacks 2016-03-09 19:13:36 +02:00
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`return await user.email.sendValidationEmail(socket.uid);`
closes #1635 if email isnt confirmed, show a warning in account/edit and let users resend confirm email 2014-06-03 18:39:54 -04:00			`};`

added alphanumeric user search (instead of using reds), and exposed a proper socket call for user searching for non-admins 2014-01-19 22:07:29 -05:00
so far so good... user, meta, notifications, categories 2014-01-09 22:46:51 -05:00			`// Password Reset`
			`SocketUser.reset = {};`

refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`SocketUser.reset.send = async function (socket, email) {`
added some missing callbacks 2016-03-09 19:13:36 +02:00			`if (!email) {`
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`throw new Error('[[error:invalid-data]]');`
added data checks to user calls 2014-01-16 18:18:42 -05:00			`}`
added some missing callbacks 2016-03-09 19:13:36 +02:00
fix: #7576 "Disable password changes" can be sidestepped 2019-05-09 15:51:36 -04:00			`if (meta.config['password:disableEdit']) {`
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`throw new Error('[[error:no-privileges]]');`
fix: #7576 "Disable password changes" can be sidestepped 2019-05-09 15:51:36 -04:00			`}`
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`async function logEvent(text) {`
			`await events.log({`
feat: logging password resets and errors into event log closes #7343, also adds tests for password reset socket calls 2019-02-08 10:50:15 -05:00			`type: 'password-reset',`
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`text: text,`
feat: logging password resets and errors into event log closes #7343, also adds tests for password reset socket calls 2019-02-08 10:50:15 -05:00			`ip: socket.ip,`
			`uid: socket.uid,`
			`email: email,`
			`});`
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`}`
			`try {`
			`await user.reset.send(email);`
			`await logEvent('[[success:success]]');`
			`await sleep(2500);`
			`} catch (err) {`
			`await logEvent(err.message);`
feat: logging password resets and errors into event log closes #7343, also adds tests for password reset socket calls 2019-02-08 10:50:15 -05:00			`const internalErrors = ['[[error:invalid-email]]', '[[error:reset-rate-limited]]'];`
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`if (!internalErrors.includes(err.message)) {`
			`throw err;`
closes #4918 2016-08-09 12:56:42 -04:00			`}`
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`}`
so far so good... user, meta, notifications, categories 2014-01-09 22:46:51 -05:00			`};`

refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`SocketUser.reset.commit = async function (socket, data) {`
use uid instead of socket.uid 2015-02-11 21:54:20 -05:00			`if (!data \|\| !data.code \|\| !data.password) {`
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`throw new Error('[[error:invalid-data]]');`
use uid instead of socket.uid 2015-02-11 21:54:20 -05:00			`}`
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`const [uid] = await Promise.all([`
			`db.getObjectField('reset:uid', data.code),`
			`user.reset.commit(data.code, data.password),`
refactor: move plugin hook methods to plugin.hooks.* 2020-11-20 16:06:26 -05:00			`plugins.hooks.fire('action:password.reset', { uid: socket.uid }),`
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`]);`

			`await events.log({`
			`type: 'password-reset',`
			`uid: uid,`
			`ip: socket.ip,`
			`});`

			`const username = await user.getUserField(uid, 'username');`
			`const now = new Date();`
			`const parsedDate = now.getFullYear() + '/' + (now.getMonth() + 1) + '/' + now.getDate();`
			`emailer.send('reset_notify', uid, {`
			`username: username,`
			`date: parsedDate,`
			`subject: '[[email:reset.notify.subject]]',`
			`});`
so far so good... user, meta, notifications, categories 2014-01-09 22:46:51 -05:00			`};`

refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`SocketUser.isFollowing = async function (socket, data) {`
user.isFollowing socket call 2015-10-29 22:22:33 -04:00			`if (!socket.uid \|\| !data.uid) {`
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`return false;`
user.isFollowing socket call 2015-10-29 22:22:33 -04:00			`}`

refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`return await user.isFollowing(socket.uid, data.uid);`
user.isFollowing socket call 2015-10-29 22:22:33 -04:00			`};`

refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`SocketUser.follow = async function (socket, data) {`
refactor(writeapi): update route prefix to api/v3, default error option 2020-10-07 11:14:37 -04:00			`sockets.warnDeprecated(socket, 'POST /api/v3/users/follow');`
refactor: change password/user follow to use api lib 2020-10-15 17:09:39 -04:00			`await api.users.follow(socket, data);`
so far so good... user, meta, notifications, categories 2014-01-09 22:46:51 -05:00			`};`

refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`SocketUser.unfollow = async function (socket, data) {`
refactor(writeapi): update route prefix to api/v3, default error option 2020-10-07 11:14:37 -04:00			`sockets.warnDeprecated(socket, 'DELETE /api/v3/users/unfollow');`
refactor: change password/user follow to use api lib 2020-10-15 17:09:39 -04:00			`await api.users.unfollow(socket, data);`
so far so good... user, meta, notifications, categories 2014-01-09 22:46:51 -05:00			`};`

refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`SocketUser.saveSettings = async function (socket, data) {`
feat(writeapi): user settings API 2020-10-22 14:07:45 -04:00			`sockets.warnDeprecated(socket, 'PUT /api/v3/users/:uid/settings');`
			`const settings = await api.users.updateSettings(socket, data);`
			`return settings;`
so far so good... user, meta, notifications, categories 2014-01-09 22:46:51 -05:00			`};`

refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`SocketUser.setTopicSort = async function (socket, sort) {`
feat(writeapi): user settings API 2020-10-22 14:07:45 -04:00			`sockets.warnDeprecated(socket, 'PUT /api/v3/users/:uid/setting/topicPostSort');`
			`await api.users.updateSetting(socket, {`
			`uid: socket.uid,`
			`setting: 'topicPostSort',`
			`value: sort,`
			`});`
closes #450 backup database before upgrade! upgrade script will take the first post of each topic and set the `mainPid` property on the topic. then it will remove that pid from the sorted sets for that topic, this was done to make alternative sorting work. added a new sorted set called `tid:<id>:posts:votes` that is used to sort topic posts by vote count, the original sorted set `tid:<id>:posts` is used to sort by oldest first or newest first. the main post is added to the returned posts array on topic load and is always at the top. theme changes are minimal just a few new data properties on the posts and the sorting dropdown. hopefully didn't miss anything too critical. 2014-06-06 22:12:14 -04:00			`};`

refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`SocketUser.setCategorySort = async function (socket, sort) {`
feat(writeapi): user settings API 2020-10-22 14:07:45 -04:00			`sockets.warnDeprecated(socket, 'PUT /api/v3/users/:uid/setting/categoryTopicSort');`
			`await api.users.updateSetting(socket, {`
			`uid: socket.uid,`
			`setting: 'categoryTopicSort',`
			`value: sort,`
			`});`
closes #1917 2015-01-08 13:47:15 -05:00			`};`

refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`SocketUser.getUnreadCount = async function (socket) {`
checks in socket.io/user reset doesnt need socket 2014-11-01 16:55:50 -04:00			`if (!socket.uid) {`
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`return 0;`
checks in socket.io/user reset doesnt need socket 2014-11-01 16:55:50 -04:00			`}`
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`return await topics.getTotalUnread(socket.uid, '');`
so far so good... user, meta, notifications, categories 2014-01-09 22:46:51 -05:00			`};`

refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`SocketUser.getUnreadChatCount = async function (socket) {`
checks in socket.io/user reset doesnt need socket 2014-11-01 16:55:50 -04:00			`if (!socket.uid) {`
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`return 0;`
checks in socket.io/user reset doesnt need socket 2014-11-01 16:55:50 -04:00			`}`
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`return await messaging.getUnreadCount(socket.uid);`
closes #1825, closes #1674 2014-07-19 10:33:27 -04:00			`};`

refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`SocketUser.getUnreadCounts = async function (socket) {`
make one socket call to load unread counts 2015-10-20 19:19:50 -04:00			`if (!socket.uid) {`
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`return {};`
make one socket call to load unread counts 2015-10-20 19:19:50 -04:00			`}`
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`const results = await utils.promiseParallel({`
			`unreadCounts: topics.getUnreadTids({ uid: socket.uid, count: true }),`
			`unreadChatCount: messaging.getUnreadCount(socket.uid),`
			`unreadNotificationCount: user.notifications.getUnreadCount(socket.uid),`
Unread changes closes #6781 (#6783) * WIP * more unread work * faster teaser block handling if user doesn't have anyone blocked don't check * much faster filtering of blocked posts * add missing uid * add tidsByFilter to return * dont load all pids to find previous non-blocked teaser * fix unread filters they no longer use unread/new unread/watched etc they are query strings now * shorter nav item code * add unreplied to filters fix icons not clearing to 0 dont increment unread counters if there is a reply in a topic where you ignored the topic creator 2018-09-24 12:58:59 -04:00			`});`
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`results.unreadTopicCount = results.unreadCounts[''];`
			`results.unreadNewTopicCount = results.unreadCounts.new;`
			`results.unreadWatchedTopicCount = results.unreadCounts.watched;`
			`results.unreadUnrepliedTopicCount = results.unreadCounts.unreplied;`
			`return results;`
make one socket call to load unread counts 2015-10-20 19:19:50 -04:00			`};`

refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`SocketUser.getUserByUID = async function (socket, uid) {`
			`return await userController.getUserDataByField(socket.uid, 'uid', uid);`
added socket methods 2016-03-08 11:24:32 +02:00			`};`

refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`SocketUser.getUserByUsername = async function (socket, username) {`
			`return await userController.getUserDataByField(socket.uid, 'username', username);`
added socket methods 2016-03-08 11:24:32 +02:00			`};`

refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`SocketUser.getUserByEmail = async function (socket, email) {`
			`return await userController.getUserDataByField(socket.uid, 'email', email);`
added socket methods 2016-03-08 11:24:32 +02:00			`};`

refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`SocketUser.setModerationNote = async function (socket, data) {`
closes #5542 2017-03-23 10:58:17 +03:00			`if (!socket.uid \|\| !data \|\| !data.uid \|\| !data.note) {`
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`throw new Error('[[error:invalid-data]]');`
ability to set moderation note on users 2016-09-21 12:55:44 +03:00			`}`
fix: #7519 2019-04-05 13:44:15 -04:00			`const noteData = {`
			`uid: socket.uid,`
			`note: data.note,`
			`timestamp: Date.now(),`
			`};`
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`let canEdit = await privileges.users.canEdit(socket.uid, data.uid);`
			`if (!canEdit) {`
			`canEdit = await user.isModeratorOfAnyCategory(socket.uid);`
			`}`
			`if (!canEdit) {`
			`throw new Error('[[error:no-privileges]]');`
			`}`
refactor: expose new method for appending moderation note 2020-09-14 10:16:35 -04:00
fix: tests, because redis is TOO FAST 2020-09-14 11:07:46 -04:00			`await user.appendModerationNote({ uid: data.uid, noteData });`
ability to set moderation note on users 2016-09-21 12:55:44 +03:00			`};`
Added user consent pages (#6430) - "Your Rights & Consent" user settings page 2018-04-09 12:22:44 -04:00
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`SocketUser.deleteUpload = async function (socket, data) {`
change upload storage 2018-04-12 12:35:05 -04:00			`if (!data \|\| !data.name \|\| !data.uid) {`
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`throw new Error('[[error:invalid-data]]');`
ability to delete uploads from account page #6431 2018-04-09 20:03:33 -04:00			`}`
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`await user.deleteUpload(socket.uid, data.uid, data.name);`
ability to delete uploads from account page #6431 2018-04-09 20:03:33 -04:00			`};`

Added user consent pages (#6430) - "Your Rights & Consent" user settings page 2018-04-09 12:22:44 -04:00			`SocketUser.gdpr = {};`

refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`SocketUser.gdpr.consent = async function (socket) {`
			`await user.setUserField(socket.uid, 'gdpr_consent', 1);`
Added user consent pages (#6430) - "Your Rights & Consent" user settings page 2018-04-09 12:22:44 -04:00			`};`
added gdpr check socket method 2018-05-11 12:18:51 -04:00
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00			`SocketUser.gdpr.check = async function (socket, data) {`
			`const isAdmin = await user.isAdministrator(socket.uid);`
			`if (!isAdmin) {`
			`data.uid = socket.uid;`
			`}`
			`return await db.getObjectField('user:' + data.uid, 'gdpr_consent');`
added gdpr check socket method 2018-05-11 12:18:51 -04:00			`};`
refactor: async/await socket.io 2019-09-15 02:14:51 -04:00
			`require('../promisify')(SocketUser);`