akkoma/lib/pleroma/web/admin_api/controllers/invite_controller.ex

# Pleroma: A lightweight social networking server
# Copyright © 2017-2021 Pleroma Authors <https://pleroma.social/>
# SPDX-License-Identifier: AGPL-3.0-only

defmodule Pleroma.Web.AdminAPI.InviteController do
  use Pleroma.Web, :controller

  import Pleroma.Web.ControllerHelper, only: [json_response: 3]

  alias Pleroma.Config
  alias Pleroma.UserInviteToken
  alias Pleroma.Web.Plugs.OAuthScopesPlug

  require Logger

  plug(Pleroma.Web.ApiSpec.CastAndValidate)
  plug(OAuthScopesPlug, %{scopes: ["admin:read:invites"]} when action == :index)

  plug(
    OAuthScopesPlug,
    %{scopes: ["admin:write:invites"]} when action in [:create, :revoke, :email]
  )

  action_fallback(Pleroma.Web.AdminAPI.FallbackController)

  defdelegate open_api_operation(action), to: Pleroma.Web.ApiSpec.Admin.InviteOperation

  @doc "Get list of created invites"
  def index(conn, _params) do
    invites = UserInviteToken.list_invites()

    render(conn, "index.json", invites: invites)
  end

  @doc "Create an account registration invite token"
  def create(%{body_params: params} = conn, _) do
    {:ok, invite} = UserInviteToken.create_invite(params)

    render(conn, "show.json", invite: invite)
  end

  @doc "Revokes invite by token"
  def revoke(%{body_params: %{token: token}} = conn, _) do
    with {:ok, invite} <- UserInviteToken.find_by_token(token),
         {:ok, updated_invite} = UserInviteToken.update_invite(invite, %{used: true}) do
      render(conn, "show.json", invite: updated_invite)
    else
      nil -> {:error, :not_found}
      error -> error
    end
  end

  @doc "Sends registration invite via email"
  def email(%{assigns: %{user: user}, body_params: %{email: email} = params} = conn, _) do
    with {_, false} <- {:registrations_open, Config.get([:instance, :registrations_open])},
         {_, true} <- {:invites_enabled, Config.get([:instance, :invites_enabled])},
         {:ok, invite_token} <- UserInviteToken.create_invite(),
         {:ok, _} <-
           user
           |> Pleroma.Emails.UserEmail.user_invitation_email(
             invite_token,
             email,
             params[:name]
           )
           |> Pleroma.Emails.Mailer.deliver() do
      json_response(conn, :no_content, "")
    else
      {:registrations_open, _} ->
        {:error, "To send invites you need to set the `registrations_open` option to false."}

      {:invites_enabled, _} ->
        {:error, "To send invites you need to set the `invites_enabled` option to true."}

      {:error, error} ->
        {:error, error}
    end
  end
end
Move invite actions to AdminAPI.InviteTokenController 2020-05-26 09:13:39 +00:00			`# Pleroma: A lightweight social networking server`
Bump Copyright to 2021 grep -rl '# Copyright © .* Pleroma' * \| xargs sed -i 's;Copyright © .* Pleroma .*;Copyright © 2017-2021 Pleroma Authors <https://pleroma.social/>;' 2021-01-13 06:49:20 +00:00			`# Copyright © 2017-2021 Pleroma Authors <https://pleroma.social/>`
Move invite actions to AdminAPI.InviteTokenController 2020-05-26 09:13:39 +00:00			`# SPDX-License-Identifier: AGPL-3.0-only`

Add AdminAPI.InviteView 2020-05-26 11:21:33 +00:00			`defmodule Pleroma.Web.AdminAPI.InviteController do`
Move invite actions to AdminAPI.InviteTokenController 2020-05-26 09:13:39 +00:00			`use Pleroma.Web, :controller`

			`import Pleroma.Web.ControllerHelper, only: [json_response: 3]`

			`alias Pleroma.Config`
			`alias Pleroma.UserInviteToken`
alias alphabetically order 2020-06-24 10:07:47 +00:00			`alias Pleroma.Web.Plugs.OAuthScopesPlug`
Move invite actions to AdminAPI.InviteTokenController 2020-05-26 09:13:39 +00:00
			`require Logger`

Add OpenAPI spec for AdminAPI.InviteTokenController 2020-05-26 11:02:51 +00:00			`plug(Pleroma.Web.ApiSpec.CastAndValidate)`
OAuthScopesPlug: remove transform_scopes in favor of explicit admin scope definitions Transforming scopes is no longer necessary since we are dropping support for accessing admin api without `admin:` prefix in scopes. 2021-02-17 18:37:23 +00:00			`plug(OAuthScopesPlug, %{scopes: ["admin:read:invites"]} when action == :index)`
Move invite actions to AdminAPI.InviteTokenController 2020-05-26 09:13:39 +00:00
			`plug(`
			`OAuthScopesPlug,`
OAuthScopesPlug: remove transform_scopes in favor of explicit admin scope definitions Transforming scopes is no longer necessary since we are dropping support for accessing admin api without `admin:` prefix in scopes. 2021-02-17 18:37:23 +00:00			`%{scopes: ["admin:write:invites"]} when action in [:create, :revoke, :email]`
Move invite actions to AdminAPI.InviteTokenController 2020-05-26 09:13:39 +00:00			`)`

			`action_fallback(Pleroma.Web.AdminAPI.FallbackController)`

Add AdminAPI.InviteView 2020-05-26 11:21:33 +00:00			`defdelegate open_api_operation(action), to: Pleroma.Web.ApiSpec.Admin.InviteOperation`
Add OpenAPI spec for AdminAPI.InviteTokenController 2020-05-26 11:02:51 +00:00
Move invite actions to AdminAPI.InviteTokenController 2020-05-26 09:13:39 +00:00			`@doc "Get list of created invites"`
			`def index(conn, _params) do`
			`invites = UserInviteToken.list_invites()`

Add AdminAPI.InviteView 2020-05-26 11:21:33 +00:00			`render(conn, "index.json", invites: invites)`
Move invite actions to AdminAPI.InviteTokenController 2020-05-26 09:13:39 +00:00			`end`

			`@doc "Create an account registration invite token"`
Add OpenAPI spec for AdminAPI.InviteTokenController 2020-05-26 11:02:51 +00:00			`def create(%{body_params: params} = conn, _) do`
			`{:ok, invite} = UserInviteToken.create_invite(params)`
Move invite actions to AdminAPI.InviteTokenController 2020-05-26 09:13:39 +00:00
Add AdminAPI.InviteView 2020-05-26 11:21:33 +00:00			`render(conn, "show.json", invite: invite)`
Move invite actions to AdminAPI.InviteTokenController 2020-05-26 09:13:39 +00:00			`end`

			`@doc "Revokes invite by token"`
Add OpenAPI spec for AdminAPI.InviteTokenController 2020-05-26 11:02:51 +00:00			`def revoke(%{body_params: %{token: token}} = conn, _) do`
Move invite actions to AdminAPI.InviteTokenController 2020-05-26 09:13:39 +00:00			`with {:ok, invite} <- UserInviteToken.find_by_token(token),`
			`{:ok, updated_invite} = UserInviteToken.update_invite(invite, %{used: true}) do`
Add AdminAPI.InviteView 2020-05-26 11:21:33 +00:00			`render(conn, "show.json", invite: updated_invite)`
Move invite actions to AdminAPI.InviteTokenController 2020-05-26 09:13:39 +00:00			`else`
			`nil -> {:error, :not_found}`
Add AdminAPI.InviteView 2020-05-26 11:21:33 +00:00			`error -> error`
Move invite actions to AdminAPI.InviteTokenController 2020-05-26 09:13:39 +00:00			`end`
			`end`

			`@doc "Sends registration invite via email"`
Add OpenAPI spec for AdminAPI.InviteTokenController 2020-05-26 11:02:51 +00:00			`def email(%{assigns: %{user: user}, body_params: %{email: email} = params} = conn, _) do`
Move invite actions to AdminAPI.InviteTokenController 2020-05-26 09:13:39 +00:00			`with {_, false} <- {:registrations_open, Config.get([:instance, :registrations_open])},`
			`{_, true} <- {:invites_enabled, Config.get([:instance, :invites_enabled])},`
			`{:ok, invite_token} <- UserInviteToken.create_invite(),`
Add AdminAPI.InviteView 2020-05-26 11:21:33 +00:00			`{:ok, _} <-`
			`user`
			`\|> Pleroma.Emails.UserEmail.user_invitation_email(`
Move invite actions to AdminAPI.InviteTokenController 2020-05-26 09:13:39 +00:00			`invite_token,`
			`email,`
Add OpenAPI spec for AdminAPI.InviteTokenController 2020-05-26 11:02:51 +00:00			`params[:name]`
Add AdminAPI.InviteView 2020-05-26 11:21:33 +00:00			`)`
			`\|> Pleroma.Emails.Mailer.deliver() do`
Move invite actions to AdminAPI.InviteTokenController 2020-05-26 09:13:39 +00:00			`json_response(conn, :no_content, "")`
			`else`
			`{:registrations_open, _} ->`
			{:error, "To send invites you need to set the `registrations_open` option to false."}

			`{:invites_enabled, _} ->`
			{:error, "To send invites you need to set the `invites_enabled` option to true."}
Add AdminAPI.InviteView 2020-05-26 11:21:33 +00:00
			`{:error, error} ->`
			`{:error, error}`
Move invite actions to AdminAPI.InviteTokenController 2020-05-26 09:13:39 +00:00			`end`
			`end`
			`end`