src/privileges/users.js
'use strict';
const _ = require('lodash');
const user = require('../user');
const meta = require('../meta');
const groups = require('../groups');
const plugins = require('../plugins');
const helpers = require('./helpers');
const privsUsers = module.exports;
privsUsers.isAdministrator = async function (uid) {
return await isGroupMember(uid, 'administrators');
};
privsUsers.isGlobalModerator = async function (uid) {
return await isGroupMember(uid, 'Global Moderators');
};
async function isGroupMember(uid, groupName) {
return await groups[Array.isArray(uid) ? 'isMembers' : 'isMember'](uid, groupName);
}
privsUsers.isModerator = async function (uid, cid) {
if (Array.isArray(cid)) {
return await isModeratorOfCategories(cid, uid);
} else if (Array.isArray(uid)) {
return await isModeratorsOfCategory(cid, uid);
}
return await isModeratorOfCategory(cid, uid);
};
async function isModeratorOfCategories(cids, uid) {
if (parseInt(uid, 10) <= 0) {
return await filterIsModerator(cids, uid, cids.map(() => false));
}
const isGlobalModerator = await privsUsers.isGlobalModerator(uid);
if (isGlobalModerator) {
return await filterIsModerator(cids, uid, cids.map(() => true));
}
const uniqueCids = _.uniq(cids);
const isAllowed = await helpers.isAllowedTo('moderate', uid, uniqueCids);
const cidToIsAllowed = _.zipObject(uniqueCids, isAllowed);
const isModerator = cids.map(cid => cidToIsAllowed[cid]);
return await filterIsModerator(cids, uid, isModerator);
}
async function isModeratorsOfCategory(cid, uids) {
const [check1, check2, check3] = await Promise.all([
privsUsers.isGlobalModerator(uids),
groups.isMembers(uids, `cid:${cid}:privileges:moderate`),
groups.isMembersOfGroupList(uids, `cid:${cid}:privileges:groups:moderate`),
]);
const isModerator = uids.map((uid, idx) => check1[idx] || check2[idx] || check3[idx]);
return await filterIsModerator(cid, uids, isModerator);
}
async function isModeratorOfCategory(cid, uid) {
const result = await isModeratorOfCategories([cid], uid);
return result ? result[0] : false;
}
async function filterIsModerator(cid, uid, isModerator) {
const data = await plugins.hooks.fire('filter:user.isModerator', { uid: uid, cid: cid, isModerator: isModerator });
if ((Array.isArray(uid) || Array.isArray(cid)) && !Array.isArray(data.isModerator)) {
throw new Error('filter:user.isModerator - i/o mismatch');
}
return data.isModerator;
}
privsUsers.canEdit = async function (callerUid, uid) {
if (parseInt(callerUid, 10) === parseInt(uid, 10)) {
return true;
}
const [isAdmin, isGlobalMod, isTargetAdmin, isUserAllowedTo] = await Promise.all([
privsUsers.isAdministrator(callerUid),
privsUsers.isGlobalModerator(callerUid),
privsUsers.isAdministrator(uid),
helpers.isAllowedTo('admin:users', callerUid, [0]),
]);
const canManageUsers = isUserAllowedTo[0];
const data = await plugins.hooks.fire('filter:user.canEdit', {
isAdmin: isAdmin,
isGlobalMod: isGlobalMod,
isTargetAdmin: isTargetAdmin,
canManageUsers: canManageUsers,
canEdit: isAdmin || ((isGlobalMod || canManageUsers) && !isTargetAdmin),
callerUid: callerUid,
uid: uid,
});
return data.canEdit;
};
privsUsers.canBanUser = async function (callerUid, uid) {
const privsGlobal = require('./global');
const [canBan, isTargetAdmin] = await Promise.all([
privsGlobal.can('ban', callerUid),
privsUsers.isAdministrator(uid),
]);
const data = await plugins.hooks.fire('filter:user.canBanUser', {
canBan: canBan && !isTargetAdmin,
callerUid: callerUid,
uid: uid,
});
return data.canBan;
};
privsUsers.canMuteUser = async function (callerUid, uid) {
const privsGlobal = require('./global');
const [canMute, isTargetAdmin] = await Promise.all([
privsGlobal.can('mute', callerUid),
privsUsers.isAdministrator(uid),
]);
const data = await plugins.hooks.fire('filter:user.canMuteUser', {
canMute: canMute && !isTargetAdmin,
callerUid: callerUid,
uid: uid,
});
return data.canMute;
};
privsUsers.canFlag = async function (callerUid, uid) {
const [userReputation, targetPrivileged, reporterPrivileged] = await Promise.all([
user.getUserField(callerUid, 'reputation'),
user.isPrivileged(uid),
user.isPrivileged(callerUid),
]);
const minimumReputation = meta.config['min:rep:flag'];
let canFlag = reporterPrivileged || (userReputation >= minimumReputation);
if (targetPrivileged && !reporterPrivileged) {
canFlag = false;
}
return { flag: canFlag };
};
privsUsers.hasBanPrivilege = async uid => await hasGlobalPrivilege('ban', uid);
privsUsers.hasMutePrivilege = async uid => await hasGlobalPrivilege('mute', uid);
privsUsers.hasInvitePrivilege = async uid => await hasGlobalPrivilege('invite', uid);
async function hasGlobalPrivilege(privilege, uid) {
const privsGlobal = require('./global');
const privilegeName = privilege.split('-').map(word => word.slice(0, 1).toUpperCase() + word.slice(1)).join('');
let payload = { uid };
payload[`can${privilegeName}`] = await privsGlobal.can(privilege, uid);
payload = await plugins.hooks.fire(`filter:user.has${privilegeName}Privilege`, payload);
return payload[`can${privilegeName}`];
}