Nemcio/NodeBB
1
0
Fork 0
mirror of https://github.com/NodeBB/NodeBB.git synced 2025-11-10 16:05:49 +01:00
Code Issues Packages Projects Releases Wiki Activity

fix: #6806

Browse Source 
3 new global privileges
view:users
view:tags
view:groups
This commit is contained in:
Barış Soner Uşaklı
2019-02-05 12:08:18 -05:00
parent ae779ea4f9
commit c72da5595a
22 changed files with 160 additions and 88 deletions
Download Patch File Download Diff File Expand all files Collapse all files

39
src/controllers/user.js
View File

@@ -13,6 +13,7 @@ var meta = require('../meta');
var posts = require('../posts');
var batch = require('../batch');
var events = require('../events');
var privileges = require('../privileges');
var accountHelpers = require('./accounts/helpers');
var userController = module.exports;
@@ -84,27 +85,33 @@ userController.getUserDataByField = function (callerUid, field, fieldValue, call
};
userController.getUserDataByUID = function (callerUid, uid, callback) {
if (parseInt(callerUid, 10) <= 0 && meta.config.privateUserInfo) {
return callback(new Error('[[error:no-privileges]]'));
}
if (!parseInt(uid, 10)) {
return callback(new Error('[[error:no-user]]'));
}
async.waterfall([
function (next) {
privileges.global.can('view:users', callerUid, next);
},
function (canView, next) {
if (!canView) {
return next(new Error('[[error:no-privileges]]'));
}
async.parallel({
userData: async.apply(user.getUserData, uid),
settings: async.apply(user.getSettings, uid),
}, next);
},
function (results, next) {
if (!results.userData) {
return next(new Error('[[error:no-user]]'));
}
async.parallel({
userData: async.apply(user.getUserData, uid),
settings: async.apply(user.getSettings, uid),
}, function (err, results) {
if (err || !results.userData) {
return callback(err || new Error('[[error:no-user]]'));
}
results.userData.email = results.settings.showemail && !meta.config.hideEmail ? results.userData.email : undefined;
results.userData.fullname = results.settings.showfullname && !meta.config.hideFullname ? results.userData.fullname : undefined;
results.userData.email = results.settings.showemail && !meta.config.hideEmail ? results.userData.email : undefined;
results.userData.fullname = results.settings.showfullname && !meta.config.hideFullname ? results.userData.fullname : undefined;
callback(null, results.userData);
});
next(null, results.userData);
},
], callback);
};
userController.exportPosts = function (req, res, next) {