2014-03-12 22:11:48 -04:00
|
|
|
'use strict';
|
|
|
|
|
|
2016-01-22 13:06:22 +02:00
|
|
|
var async = require('async');
|
2016-08-09 12:56:42 -04:00
|
|
|
var winston = require('winston');
|
2015-09-25 15:56:58 -04:00
|
|
|
|
2016-01-22 13:06:22 +02:00
|
|
|
var user = require('../user');
|
|
|
|
|
var topics = require('../topics');
|
|
|
|
|
var notifications = require('../notifications');
|
|
|
|
|
var messaging = require('../messaging');
|
|
|
|
|
var plugins = require('../plugins');
|
|
|
|
|
var meta = require('../meta');
|
|
|
|
|
var events = require('../events');
|
|
|
|
|
var emailer = require('../emailer');
|
|
|
|
|
var db = require('../database');
|
2016-03-08 11:24:32 +02:00
|
|
|
var apiController = require('../controllers/api');
|
2015-09-25 15:56:58 -04:00
|
|
|
|
2016-01-22 13:06:22 +02:00
|
|
|
var SocketUser = {};
|
2014-01-09 22:46:51 -05:00
|
|
|
|
2015-09-25 15:56:58 -04:00
|
|
|
require('./user/profile')(SocketUser);
|
|
|
|
|
require('./user/search')(SocketUser);
|
|
|
|
|
require('./user/status')(SocketUser);
|
|
|
|
|
require('./user/picture')(SocketUser);
|
2016-01-25 13:36:10 +02:00
|
|
|
require('./user/ban')(SocketUser);
|
2015-09-25 15:56:58 -04:00
|
|
|
|
2014-01-16 15:46:37 -05:00
|
|
|
SocketUser.exists = function(socket, data, callback) {
|
2016-03-09 19:13:36 +02:00
|
|
|
if (!data || !data.username) {
|
|
|
|
|
return callback(new Error('[[error:invalid-data]]'));
|
2014-01-09 22:46:51 -05:00
|
|
|
}
|
2016-03-09 19:13:36 +02:00
|
|
|
meta.userOrGroupExists(data.username, callback);
|
2014-01-09 22:46:51 -05:00
|
|
|
};
|
|
|
|
|
|
2014-08-26 13:47:48 -04:00
|
|
|
SocketUser.deleteAccount = function(socket, data, callback) {
|
2015-04-22 10:41:44 -04:00
|
|
|
if (!socket.uid) {
|
2016-03-09 19:13:36 +02:00
|
|
|
return callback(new Error('[[error:no-privileges]]'));
|
2015-04-22 10:41:44 -04:00
|
|
|
}
|
2015-04-08 18:11:17 -04:00
|
|
|
|
2016-01-22 13:06:22 +02:00
|
|
|
async.waterfall([
|
|
|
|
|
function (next) {
|
|
|
|
|
user.isAdministrator(socket.uid, next);
|
|
|
|
|
},
|
|
|
|
|
function (isAdmin, next) {
|
|
|
|
|
if (isAdmin) {
|
|
|
|
|
return next(new Error('[[error:cant-delete-admin]]'));
|
2015-04-22 10:41:44 -04:00
|
|
|
}
|
2016-01-22 13:06:22 +02:00
|
|
|
user.deleteAccount(socket.uid, next);
|
|
|
|
|
},
|
|
|
|
|
function (next) {
|
|
|
|
|
socket.broadcast.emit('event:user_status_change', {uid: socket.uid, status: 'offline'});
|
|
|
|
|
|
|
|
|
|
events.log({
|
|
|
|
|
type: 'user-delete',
|
|
|
|
|
uid: socket.uid,
|
|
|
|
|
targetUid: socket.uid,
|
|
|
|
|
ip: socket.ip
|
|
|
|
|
});
|
|
|
|
|
next();
|
|
|
|
|
}
|
|
|
|
|
], callback);
|
2014-08-26 13:47:48 -04:00
|
|
|
};
|
|
|
|
|
|
2014-01-16 15:46:37 -05:00
|
|
|
SocketUser.emailExists = function(socket, data, callback) {
|
2016-03-09 19:13:36 +02:00
|
|
|
if (!data || !data.email) {
|
|
|
|
|
return callback(new Error('[[error:invalid-data]]'));
|
2014-01-16 18:18:42 -05:00
|
|
|
}
|
2016-03-09 19:13:36 +02:00
|
|
|
user.email.exists(data.email, callback);
|
2014-01-09 22:46:51 -05:00
|
|
|
};
|
|
|
|
|
|
2014-06-03 18:39:54 -04:00
|
|
|
SocketUser.emailConfirm = function(socket, data, callback) {
|
2016-03-09 19:13:36 +02:00
|
|
|
if (!socket.uid) {
|
|
|
|
|
return callback(new Error('[[error:no-privileges]]'));
|
|
|
|
|
}
|
2014-06-03 18:39:54 -04:00
|
|
|
|
2016-03-09 19:13:36 +02:00
|
|
|
if (parseInt(meta.config.requireEmailConfirmation, 10) !== 1) {
|
|
|
|
|
callback();
|
2014-06-03 18:39:54 -04:00
|
|
|
}
|
2016-03-09 19:13:36 +02:00
|
|
|
user.getUserField(socket.uid, 'email', function(err, email) {
|
|
|
|
|
if (err || !email) {
|
|
|
|
|
return callback(err);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
user.email.sendValidationEmail(socket.uid, email, callback);
|
|
|
|
|
});
|
2014-06-03 18:39:54 -04:00
|
|
|
};
|
|
|
|
|
|
2014-01-19 22:07:29 -05:00
|
|
|
|
2014-01-09 22:46:51 -05:00
|
|
|
// Password Reset
|
|
|
|
|
SocketUser.reset = {};
|
|
|
|
|
|
2014-04-04 13:11:05 -04:00
|
|
|
SocketUser.reset.send = function(socket, email, callback) {
|
2016-03-09 19:13:36 +02:00
|
|
|
if (!email) {
|
|
|
|
|
return callback(new Error('[[error:invalid-data]]'));
|
2014-01-16 18:18:42 -05:00
|
|
|
}
|
2016-03-09 19:13:36 +02:00
|
|
|
|
2016-08-09 12:56:42 -04:00
|
|
|
user.reset.send(email, function(err) {
|
|
|
|
|
if (err && err.message !== '[[error:invalid-email]]') {
|
|
|
|
|
return callback(err);
|
|
|
|
|
}
|
|
|
|
|
if (err && err.message === '[[error:invalid-email]]') {
|
|
|
|
|
winston.verbose('[user/reset] Invalid email attempt: ' + email);
|
|
|
|
|
return setTimeout(callback, 2500);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
callback();
|
|
|
|
|
});
|
2014-01-09 22:46:51 -05:00
|
|
|
};
|
|
|
|
|
|
2014-01-16 15:46:37 -05:00
|
|
|
SocketUser.reset.commit = function(socket, data, callback) {
|
2015-02-11 21:54:20 -05:00
|
|
|
if (!data || !data.code || !data.password) {
|
|
|
|
|
return callback(new Error('[[error:invalid-data]]'));
|
|
|
|
|
}
|
2015-02-08 21:06:38 -05:00
|
|
|
|
2015-02-11 21:54:20 -05:00
|
|
|
async.parallel({
|
|
|
|
|
uid: async.apply(db.getObjectField, 'reset:uid', data.code),
|
|
|
|
|
reset: async.apply(user.reset.commit, data.code, data.password)
|
|
|
|
|
}, function(err, results) {
|
|
|
|
|
if (err) {
|
|
|
|
|
return callback(err);
|
|
|
|
|
}
|
|
|
|
|
|
2016-03-09 19:13:36 +02:00
|
|
|
var uid = results.uid;
|
|
|
|
|
var now = new Date();
|
|
|
|
|
var parsedDate = now.getFullYear() + '/' + (now.getMonth()+1) + '/' + now.getDate();
|
2015-02-11 21:54:20 -05:00
|
|
|
|
|
|
|
|
user.getUserField(uid, 'username', function(err, username) {
|
2016-08-16 19:46:59 +02:00
|
|
|
if (err) {
|
|
|
|
|
return callback(err);
|
|
|
|
|
}
|
|
|
|
|
|
2015-02-11 21:54:20 -05:00
|
|
|
emailer.send('reset_notify', uid, {
|
|
|
|
|
username: username,
|
|
|
|
|
date: parsedDate,
|
|
|
|
|
site_title: meta.config.title || 'NodeBB',
|
|
|
|
|
subject: '[[email:reset.notify.subject]]'
|
2015-02-01 19:11:58 -05:00
|
|
|
});
|
|
|
|
|
});
|
2015-02-11 21:54:20 -05:00
|
|
|
|
|
|
|
|
events.log({
|
|
|
|
|
type: 'password-reset',
|
|
|
|
|
uid: uid,
|
|
|
|
|
ip: socket.ip
|
|
|
|
|
});
|
|
|
|
|
callback();
|
|
|
|
|
});
|
2014-01-09 22:46:51 -05:00
|
|
|
};
|
|
|
|
|
|
2015-10-29 22:22:33 -04:00
|
|
|
SocketUser.isFollowing = function(socket, data, callback) {
|
|
|
|
|
if (!socket.uid || !data.uid) {
|
2015-10-30 00:10:48 -04:00
|
|
|
return callback(null, false);
|
2015-10-29 22:22:33 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
user.isFollowing(socket.uid, data.uid, callback);
|
|
|
|
|
};
|
|
|
|
|
|
2014-01-16 15:46:37 -05:00
|
|
|
SocketUser.follow = function(socket, data, callback) {
|
2014-09-08 23:03:37 -04:00
|
|
|
if (!socket.uid || !data) {
|
2016-03-09 19:13:36 +02:00
|
|
|
return callback(new Error('[[error:invalid-data]]'));
|
2014-09-08 23:03:37 -04:00
|
|
|
}
|
2015-03-19 15:55:56 -04:00
|
|
|
var userData;
|
2015-02-27 17:57:09 -05:00
|
|
|
async.waterfall([
|
2016-01-27 20:03:28 +02:00
|
|
|
function (next) {
|
2015-02-27 17:57:09 -05:00
|
|
|
toggleFollow('follow', socket.uid, data.uid, next);
|
|
|
|
|
},
|
2016-01-27 20:03:28 +02:00
|
|
|
function (next) {
|
2015-02-27 17:57:09 -05:00
|
|
|
user.getUserFields(socket.uid, ['username', 'userslug'], next);
|
|
|
|
|
},
|
2016-01-27 20:03:28 +02:00
|
|
|
function (_userData, next) {
|
2015-03-19 15:55:56 -04:00
|
|
|
userData = _userData;
|
2014-09-08 23:03:37 -04:00
|
|
|
notifications.create({
|
|
|
|
|
bodyShort: '[[notifications:user_started_following_you, ' + userData.username + ']]',
|
2014-09-12 16:35:30 -04:00
|
|
|
nid: 'follow:' + data.uid + ':uid:' + socket.uid,
|
2015-08-20 11:23:16 -04:00
|
|
|
from: socket.uid,
|
2016-05-06 09:41:30 +03:00
|
|
|
path: '/uid/' + socket.uid,
|
2015-12-16 12:15:24 -05:00
|
|
|
mergeId: 'notifications:user_started_following_you'
|
2015-02-27 17:57:09 -05:00
|
|
|
}, next);
|
|
|
|
|
},
|
2016-01-27 20:03:28 +02:00
|
|
|
function (notification, next) {
|
|
|
|
|
if (!notification) {
|
|
|
|
|
return next();
|
|
|
|
|
}
|
2015-03-19 15:55:56 -04:00
|
|
|
notification.user = userData;
|
2015-02-27 17:57:09 -05:00
|
|
|
notifications.push(notification, [data.uid], next);
|
|
|
|
|
}
|
|
|
|
|
], callback);
|
2014-01-09 22:46:51 -05:00
|
|
|
};
|
|
|
|
|
|
2014-01-16 15:46:37 -05:00
|
|
|
SocketUser.unfollow = function(socket, data, callback) {
|
2016-03-09 19:13:36 +02:00
|
|
|
if (!socket.uid || !data) {
|
|
|
|
|
return callback(new Error('[[error:invalid-data]]'));
|
2014-01-09 22:46:51 -05:00
|
|
|
}
|
2016-03-09 19:13:36 +02:00
|
|
|
toggleFollow('unfollow', socket.uid, data.uid, callback);
|
2014-01-09 22:46:51 -05:00
|
|
|
};
|
|
|
|
|
|
2014-08-14 17:59:33 -04:00
|
|
|
function toggleFollow(method, uid, theiruid, callback) {
|
|
|
|
|
user[method](uid, theiruid, function(err) {
|
|
|
|
|
if (err) {
|
|
|
|
|
return callback(err);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
plugins.fireHook('action:user.' + method, {
|
|
|
|
|
fromUid: uid,
|
|
|
|
|
toUid: theiruid
|
|
|
|
|
});
|
2014-08-17 00:14:45 -04:00
|
|
|
callback();
|
2014-08-14 17:59:33 -04:00
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
|
2014-01-16 15:46:37 -05:00
|
|
|
SocketUser.saveSettings = function(socket, data, callback) {
|
2014-07-20 21:10:23 -04:00
|
|
|
if (!socket.uid || !data) {
|
|
|
|
|
return callback(new Error('[[error:invalid-data]]'));
|
2014-01-09 22:46:51 -05:00
|
|
|
}
|
2014-07-20 21:10:23 -04:00
|
|
|
|
2016-02-16 18:04:02 +02:00
|
|
|
async.waterfall([
|
|
|
|
|
function(next) {
|
|
|
|
|
if (socket.uid === parseInt(data.uid, 10)) {
|
|
|
|
|
return next(null, true);
|
|
|
|
|
}
|
|
|
|
|
user.isAdminOrGlobalMod(socket.uid, next);
|
2016-03-08 11:24:32 +02:00
|
|
|
},
|
2016-02-16 18:04:02 +02:00
|
|
|
function(allowed, next) {
|
|
|
|
|
if (!allowed) {
|
|
|
|
|
return next(new Error('[[error:no-privileges]]'));
|
|
|
|
|
}
|
|
|
|
|
user.saveSettings(data.uid, data.settings, next);
|
2014-07-20 21:10:23 -04:00
|
|
|
}
|
2016-02-16 18:04:02 +02:00
|
|
|
], callback);
|
2014-01-09 22:46:51 -05:00
|
|
|
};
|
|
|
|
|
|
2014-06-06 22:12:14 -04:00
|
|
|
SocketUser.setTopicSort = function(socket, sort, callback) {
|
2016-03-09 19:13:36 +02:00
|
|
|
if (!socket.uid) {
|
|
|
|
|
return callback();
|
2014-06-06 22:12:14 -04:00
|
|
|
}
|
2016-03-09 19:13:36 +02:00
|
|
|
user.setSetting(socket.uid, 'topicPostSort', sort, callback);
|
2014-06-06 22:12:14 -04:00
|
|
|
};
|
|
|
|
|
|
2015-01-08 13:47:15 -05:00
|
|
|
SocketUser.setCategorySort = function(socket, sort, callback) {
|
2016-03-09 19:13:36 +02:00
|
|
|
if (!socket.uid) {
|
|
|
|
|
return callback();
|
2015-01-08 13:47:15 -05:00
|
|
|
}
|
2016-03-09 19:13:36 +02:00
|
|
|
user.setSetting(socket.uid, 'categoryTopicSort', sort, callback);
|
2015-01-08 13:47:15 -05:00
|
|
|
};
|
|
|
|
|
|
2014-01-16 15:46:37 -05:00
|
|
|
SocketUser.getUnreadCount = function(socket, data, callback) {
|
2014-11-01 16:55:50 -04:00
|
|
|
if (!socket.uid) {
|
|
|
|
|
return callback(null, 0);
|
|
|
|
|
}
|
2014-03-09 14:02:30 -04:00
|
|
|
topics.getTotalUnread(socket.uid, callback);
|
2014-01-09 22:46:51 -05:00
|
|
|
};
|
|
|
|
|
|
2014-07-19 10:33:27 -04:00
|
|
|
SocketUser.getUnreadChatCount = function(socket, data, callback) {
|
2014-11-01 16:55:50 -04:00
|
|
|
if (!socket.uid) {
|
|
|
|
|
return callback(null, 0);
|
|
|
|
|
}
|
2014-07-19 10:33:27 -04:00
|
|
|
messaging.getUnreadCount(socket.uid, callback);
|
|
|
|
|
};
|
|
|
|
|
|
2015-10-20 19:19:50 -04:00
|
|
|
SocketUser.getUnreadCounts = function(socket, data, callback) {
|
|
|
|
|
if (!socket.uid) {
|
|
|
|
|
return callback(null, {});
|
|
|
|
|
}
|
|
|
|
|
async.parallel({
|
|
|
|
|
unreadTopicCount: async.apply(topics.getTotalUnread, socket.uid),
|
2016-04-08 13:54:51 -05:00
|
|
|
unreadNewTopicCount: async.apply(topics.getTotalUnread, socket.uid, 'new'),
|
2015-10-20 19:19:50 -04:00
|
|
|
unreadChatCount: async.apply(messaging.getUnreadCount, socket.uid),
|
|
|
|
|
unreadNotificationCount: async.apply(user.notifications.getUnreadCount, socket.uid)
|
|
|
|
|
}, callback);
|
|
|
|
|
};
|
|
|
|
|
|
2015-06-28 21:54:21 -04:00
|
|
|
SocketUser.invite = function(socket, email, callback) {
|
|
|
|
|
if (!email || !socket.uid) {
|
2015-11-27 16:55:31 -07:00
|
|
|
return callback(new Error('[[error:invalid-data]]'));
|
2015-06-28 21:54:21 -04:00
|
|
|
}
|
|
|
|
|
|
2016-01-22 13:06:22 +02:00
|
|
|
var registrationType = meta.config.registrationType;
|
2015-11-28 15:33:17 -07:00
|
|
|
|
|
|
|
|
if (registrationType !== 'invite-only' && registrationType !== 'admin-invite-only') {
|
2015-06-28 21:54:21 -04:00
|
|
|
return callback(new Error('[[error:forum-not-invite-only]]'));
|
|
|
|
|
}
|
|
|
|
|
|
2015-11-27 16:55:31 -07:00
|
|
|
var max = meta.config.maximumInvites;
|
|
|
|
|
|
2015-11-28 15:33:17 -07:00
|
|
|
user.isAdministrator(socket.uid, function(err, admin) {
|
|
|
|
|
if (err) {
|
|
|
|
|
return callback(err);
|
|
|
|
|
}
|
|
|
|
|
if (registrationType === 'admin-invite-only' && !admin) {
|
|
|
|
|
return callback(new Error('[[error:no-privileges]]'));
|
|
|
|
|
}
|
|
|
|
|
if (max) {
|
|
|
|
|
async.waterfall([
|
|
|
|
|
function(next) {
|
|
|
|
|
user.getInvitesNumber(socket.uid, next);
|
|
|
|
|
},
|
|
|
|
|
function(invites, next) {
|
|
|
|
|
if (!admin && invites > max) {
|
|
|
|
|
return next(new Error('[[error:invite-maximum-met, ' + invites + ', ' + max + ']]'));
|
|
|
|
|
}
|
|
|
|
|
next();
|
|
|
|
|
},
|
|
|
|
|
function(next) {
|
|
|
|
|
user.sendInvitationEmail(socket.uid, email, next);
|
2015-11-27 16:55:31 -07:00
|
|
|
}
|
2015-11-28 15:33:17 -07:00
|
|
|
], callback);
|
|
|
|
|
} else {
|
|
|
|
|
user.sendInvitationEmail(socket.uid, email, callback);
|
|
|
|
|
}
|
|
|
|
|
});
|
|
|
|
|
|
2015-06-28 21:54:21 -04:00
|
|
|
};
|
|
|
|
|
|
2016-03-08 11:24:32 +02:00
|
|
|
SocketUser.getUserByUID = function(socket, uid, callback) {
|
2016-04-30 21:08:47 +03:00
|
|
|
apiController.getUserDataByField(socket.uid, 'uid', uid, callback);
|
2016-03-08 11:24:32 +02:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
SocketUser.getUserByUsername = function(socket, username, callback) {
|
2016-04-30 21:08:47 +03:00
|
|
|
apiController.getUserDataByField(socket.uid, 'username', username, callback);
|
2016-03-08 11:24:32 +02:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
SocketUser.getUserByEmail = function(socket, email, callback) {
|
2016-04-30 21:08:47 +03:00
|
|
|
apiController.getUserDataByField(socket.uid, 'email', email, callback);
|
2016-03-08 11:24:32 +02:00
|
|
|
};
|
|
|
|
|
|
2016-09-21 12:55:44 +03:00
|
|
|
SocketUser.setModerationNote = function(socket, data, callback) {
|
|
|
|
|
if (!socket.uid || !data || !data.uid) {
|
|
|
|
|
return callback(new Error('[[error:invalid-data]]'));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
async.waterfall([
|
|
|
|
|
function(next) {
|
|
|
|
|
user.isAdminOrGlobalMod(socket.uid, next);
|
|
|
|
|
},
|
|
|
|
|
function(isAdminOrGlobalMod, next) {
|
|
|
|
|
if (!isAdminOrGlobalMod) {
|
|
|
|
|
return next(new Error('[[error:no-privileges]]'));
|
|
|
|
|
}
|
|
|
|
|
if (data.note) {
|
|
|
|
|
user.setUserField(data.uid, 'moderationNote', data.note, next);
|
|
|
|
|
} else {
|
|
|
|
|
db.deleteObjectField('user:' + data.uid, 'moderationNote', next);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
], callback);
|
|
|
|
|
};
|
2014-01-09 22:46:51 -05:00
|
|
|
|
2014-04-10 20:31:57 +01:00
|
|
|
module.exports = SocketUser;
|
