Dekescordes/spacebar
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

🎨 [Ban] use removeMember() + move ban in seperate file

Browse Source
This commit is contained in:
Flam3rboy 2021-02-22 15:50:31 +01:00
parent eb181ae41d
commit c16a221402
2 changed files with 114 additions and 236 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

82
src/routes/api/v8/guilds/#id/bans.ts Normal file
View File

@ -0,0 +1,82 @@
import { Request, Response, Router } from "express";
import { BanModel, getPermission, GuildBanAddEvent, GuildBanRemoveEvent, GuildModel } from "fosscord-server-util";
import { HTTPError } from "lambert-server";
import { getIpAdress } from "../../../../../middlewares/GlobalRateLimit";
import { BanCreateSchema } from "../../../../../schema/Ban";
import { emitEvent } from "../../../../../util/Event";
import { check } from "../../../../../util/instanceOf";
import { removeMember } from "../../../../../util/Member";
import { getPublicUser } from "../../../../../util/User";
const router: Router = Router();
router.get("/", async (req: Request, res: Response) => {
const guild_id = BigInt(req.params.id);
const guild = await GuildModel.findOne({ id: guild_id }).exec();
if (!guild) throw new HTTPError("Guild not found", 404);
var bans = await BanModel.find({ guild_id: guild_id }).exec();
return res.json(bans);
});
router.post("/:userid", check(BanCreateSchema), async (req: Request, res: Response) => {
const guild_id = BigInt(req.params.id);
const banned_user_id = BigInt(req.params.userid);
const banned_user = await getPublicUser(banned_user_id);
const perms = await getPermission(req.userid, guild_id);
if (!perms.has("BAN_MEMBERS")) throw new HTTPError("You don't have the permission to ban members", 403);
if (req.userid === banned_user_id) throw new HTTPError("You can't ban yourself", 400);
await removeMember(banned_user_id, guild_id);
const ban = await new BanModel({
user_id: banned_user_id,
guild_id: guild_id,
ip: getIpAdress(req),
executor_id: req.userid,
reason: req.body.reason, // || otherwise empty
}).save();
await emitEvent({
event: "GUILD_BAN_ADD",
data: {
guild_id: guild_id,
user: banned_user,
},
guild_id: guild_id,
} as GuildBanAddEvent);
return res.json(ban).send();
});
router.delete("/:userid", async (req: Request, res: Response) => {
var guild_id = BigInt(req.params.id);
var banned_user_id = BigInt(req.params.userid);
const banned_user = await getPublicUser(banned_user_id);
const guild = await GuildModel.findOne({ id: guild_id }).exec();
if (!guild) throw new HTTPError("Guild not found", 404);
const perms = await getPermission(req.userid, guild.id);
if (!perms.has("BAN_MEMBERS")) {
throw new HTTPError("No permissions", 403);
}
await BanModel.deleteOne({
user_id: banned_user_id,
guild_id: guild.id,
}).exec();
await emitEvent({
event: "GUILD_BAN_REMOVE",
data: {
guild_id: guild.id,
user: banned_user,
},
guild_id: guild.id,
} as GuildBanRemoveEvent);
return res.status(204).send();
});

266
src/routes/api/v8/guilds/index.ts
View File

@ -1,41 +1,31 @@
import { Router, Request, Response } from "express"; import { Router, Request, Response } from "express";
import { import {
GuildDeleteEvent, GuildDeleteEvent,
GuildCreateEvent,
GuildMemberAddEvent,
GuildMemberRemoveEvent,
RoleModel, RoleModel,
GuildModel, GuildModel,
MemberModel, MemberModel,
UserModel,
Snowflake, Snowflake,
getPermission, getPermission,
Guild, Guild,
Member, } from "fosscord-server-util";
PublicMember,
BanModel,
Ban,
GuildBanAddEvent,
GuildBanRemoveEvent,
} from "../channels/#channelid/node_modules/fosscord-server-util";
import { HTTPError } from "lambert-server"; import { HTTPError } from "lambert-server";
import { check } from "./../../../../util/instanceOf"; import { check } from "./../../../../util/instanceOf";
import { GuildCreateSchema, GuildUpdateSchema } from "../../../../schema/Guild"; import { GuildCreateSchema, GuildUpdateSchema } from "../../../../schema/Guild";
import { BanCreateSchema } from "../../../../schema/Ban";
import { emitEvent } from "../../../../util/Event"; import { emitEvent } from "../../../../util/Event";
import { getIpAdress } from "../../../../middlewares/GlobalRateLimit";
import Config from "../../../../util/Config"; import Config from "../../../../util/Config";
import { getPublicUser } from "../../../../util/User";
import { addMember } from "../../../../util/Member";
const router: Router = Router(); const router: Router = Router();
router.get("/:id", async (req: Request, res: Response) => { router.get("/:id", async (req: Request, res: Response) => {
const guild_id = BigInt(req.params.id); const guild_id = BigInt(req.params.id);
const guild = await GuildModel.findOne({ id: guild_id }).exec(); const guild = await GuildModel.findOne({ id: guild_id }).exec();
if (!guild) throw new HTTPError("Guild doesn't exist"); if (!guild) throw new HTTPError("Guild does not exist");
const member = await MemberModel.findOne({ guild_id: guild_id, id: req.userid }, "id").exec(); const member = await MemberModel.findOne({ guild_id: guild_id, id: req.userid }, "id").exec();
if (!member) throw new HTTPError("You are not a member of the guild you are trying to access", 401);
if (!member) throw new HTTPError("you arent a member of the guild you are trying to access", 401);
return res.json(guild); return res.json(guild);
}); });
@ -44,34 +34,27 @@ router.patch("/:id", check(GuildUpdateSchema), async (req: Request, res: Respons
const body = req.body as GuildUpdateSchema; const body = req.body as GuildUpdateSchema;
const guild_id = BigInt(req.params.id); const guild_id = BigInt(req.params.id);
// // TODO: check permission of member const guild = await GuildModel.findOne({ id: guild_id }).exec();
const perms = await getPermission(req.userid, guild_id); if (!guild) throw new HTTPError("This guild does not exist", 404);
if (!perms.has("MANAGE_GUILD")) throw new HTTPError("User is missing the 'MANAGE_GUILD' permission", 401);
const perms = await getPermission(req.userid, guild_id);
if (!perms.has("MANAGE_GUILD")) throw new HTTPError("You do not have the MANAGE_GUILD permission", 401);
const guild = await GuildModel.findOne({ id: guild_id, owner_id: req.userid }).exec();
if (!guild) throw new HTTPError("This guild doesnt exist or you arent the owner", 404);
await GuildModel.updateOne({ id: guild_id }, body).exec(); await GuildModel.updateOne({ id: guild_id }, body).exec();
return res.status(204); return res.status(204);
}); });
// // TODO: finish POST route
router.post("/", check(GuildCreateSchema), async (req: Request, res: Response) => { router.post("/", check(GuildCreateSchema), async (req: Request, res: Response) => {
const body = req.body as GuildCreateSchema; const body = req.body as GuildCreateSchema;
// // TODO: check if user is in more than (config max guilds)
const { maxGuilds } = Config.get().limits.user; const { maxGuilds } = Config.get().limits.user;
const user = await UserModel.findOne( const user = await getPublicUser(req.userid, { guilds: true });
{ id: req.userid },
"guilds username discriminator id public_flags avatar"
).exec();
if (!user) throw new HTTPError("User not found", 404);
if (user.guilds.length >= maxGuilds) { if (user.guilds.length >= maxGuilds) {
throw new HTTPError("User is already in 100 guilds", 403); throw new HTTPError(`Maximum number of guilds reached ${maxGuilds}`, 403);
} }
const guildID = Snowflake.generate(); const guild_id = Snowflake.generate();
const guild: Guild = { const guild: Guild = {
name: body.name, name: body.name,
region: body.region || "en-US", region: body.region || "en-US",
@ -87,13 +70,13 @@ router.post("/", check(GuildCreateSchema), async (req: Request, res: Response) =
discovery_splash: undefined, discovery_splash: undefined,
explicit_content_filter: undefined, explicit_content_filter: undefined,
features: [], features: [],
id: guildID, id: guild_id,
large: undefined, large: undefined,
max_members: 250000, max_members: 250000,
max_presences: 250000, max_presences: 250000,
max_video_channel_users: 25, max_video_channel_users: 25,
presence_count: 0, presence_count: 0,
member_count: 1, // TODO: if a addMemberToGuild() function will be used in the future, set this to 0 and automatically increment this number member_count: 0, // will automatically be increased by addMember()
mfa_level: 0, mfa_level: 0,
preferred_locale: "en-US", preferred_locale: "en-US",
premium_subscription_count: 0, premium_subscription_count: 0,
@ -110,12 +93,11 @@ router.post("/", check(GuildCreateSchema), async (req: Request, res: Response) =
widget_enabled: false, widget_enabled: false,
}; };
try { await Promise.all([
await new GuildModel(guild).save(); await new GuildModel(guild).save(),
// // TODO: insert default everyone role
await new RoleModel({ await new RoleModel({
id: guildID, id: guild_id,
guild_id: guildID, guild_id: guild_id,
color: 0, color: 0,
hoist: false, hoist: false,
managed: true, managed: true,
@ -124,226 +106,40 @@ router.post("/", check(GuildCreateSchema), async (req: Request, res: Response) =
permissions: 2251804225n, permissions: 2251804225n,
position: 0, position: 0,
tags: null, tags: null,
}).save(); }).save(),
]);
// // TODO: automatically add user to guild await addMember(req.userid, guild_id, { guild });
const member = {
id: req.userid,
guild_id: guildID,
nick: undefined,
roles: [guildID],
joined_at: Date.now(),
premium_since: undefined,
deaf: false,
mute: false,
pending: false,
permissions: 8n,
};
await new MemberModel({
...member,
settings: {
channel_overrides: [],
message_notifications: 0,
mobile_push: true,
mute_config: null,
muted: false,
suppress_everyone: false,
suppress_roles: false,
version: 0,
},
}).save();
// TODO: I don't know why the bigint needs to be converted to a string in order to save the model.
// But the weird thing is, that it gets saved as a Long/bigint in the database
// @ts-ignore
user.guilds.push(guildID.toString());
await user.save();
// // TODO: emit Event
await emitEvent({
event: "GUILD_MEMBER_ADD",
data: {
...member,
user: {
username: user.username,
discriminator: user.discriminator,
id: user.id,
publicFlags: user.public_flags,
avatar: user.avatar,
},
guild_id: guildID,
},
guild_id: guildID,
} as GuildMemberAddEvent);
await emitEvent({
event: "GUILD_CREATE",
data: guild,
guild_id: guildID,
} as GuildCreateEvent);
res.status(201).json({ id: guild.id }); res.status(201).json({ id: guild.id });
} catch (error) {
throw new HTTPError("Couldnt create Guild", 500);
}
}); });
router.delete("/:id", async (req: Request, res: Response) => { router.delete("/:id", async (req: Request, res: Response) => {
try { var guild_id = BigInt(req.params.id);
var guildID = BigInt(req.params.id);
} catch (error) {
throw new HTTPError("Invalid id format", 400);
}
const guild = await GuildModel.findOne({ id: BigInt(req.params.id) }, "owner_id").exec(); const guild = await GuildModel.findOne({ id: BigInt(req.params.id) }, "owner_id").exec();
if (!guild) throw new HTTPError("This guild doesnt exist", 404); if (!guild) throw new HTTPError("This guild does not exist", 404);
if (guild.owner_id !== req.userid) throw new HTTPError("You arent the owner of this guild", 401); if (guild.owner_id !== req.userid) throw new HTTPError("You are not the owner of this guild", 401);
await emitEvent({ await emitEvent({
event: "GUILD_DELETE", event: "GUILD_DELETE",
data: { data: {
id: guildID, id: guild_id,
}, },
guild_id: guildID, guild_id: guild_id,
} as GuildDeleteEvent); } as GuildDeleteEvent);
await GuildModel.deleteOne({ id: guildID }).exec(); await GuildModel.deleteOne({ id: guild_id }).exec();
return res.status(204).send(); return res.status(204).send();
}); });
router.get("/:id/bans", async (req: Request, res: Response) => { // TODO: needs pagination/only send over websocket
const guild = await GuildModel.findOne({ id: BigInt(req.params.id) }).exec();
if (!guild) throw new HTTPError("Guild not found", 404);
var bans = await BanModel.find({ guild_id: BigInt(req.params.id) }).exec();
return res.json(bans);
});
router.get("/:id/members", async (req: Request, res: Response) => { router.get("/:id/members", async (req: Request, res: Response) => {
const guild = await GuildModel.findOne({ id: BigInt(req.params.id) }).exec(); const guild = await GuildModel.findOne({ id: BigInt(req.params.id) }).exec();
if (!guild) throw new HTTPError("Guild not found", 404); if (!guild) throw new HTTPError("Guild not found", 404);
var members = await MemberModel.find({ guild_id: BigInt(req.params.id) }).exec(); var members = await MemberModel.find({ guild_id: BigInt(req.params.id) }).exec();
return res.json(members); return res.json(members);
}); });
router.post("/:id/bans/:userid", check(BanCreateSchema), async (req: Request, res: Response) => {
try {
var guildID = BigInt(req.params.id);
var bannedUserID = BigInt(req.params.userid);
} catch (error) {
throw new HTTPError("Invalid id format", 400);
}
const user = await UserModel.findOne(
{ id: bannedUserID },
"guilds username discriminator id public_flags avatar"
).exec();
if (!user) throw new HTTPError("User not found", 404);
const guild = await GuildModel.findOne({ id: guildID }).exec();
if (!guild) throw new HTTPError("Guild not found", 404);
const member = await MemberModel.findOne(
{
id: BigInt(user.id),
guild_id: guild.id,
},
"id"
).exec();
if (!member) throw new HTTPError("Member not found", 404);
/*const perms = await getPermission(req.userid, guild.id);
if (!perms.has("BAN_MEMBERS")) {
throw new HTTPError("No permissions", 403);
}*/
if (req.userid === user.id) throw new HTTPError("Invalid Request, you can't ban yourself", 400);
if (user.id === guild.owner_id) throw new HTTPError("Invalid Request, you can't ban the guild owner", 400);
var ban = await new BanModel({
user_id: BigInt(user.id),
guild_id: guild.id,
ip: getIpAdress(req),
executor_id: req.userid,
reason: req.body.reason || "No Reason",
}).save();
await MemberModel.deleteOne({
id: BigInt(user.id),
guild_id: guild.id,
}).exec();
await UserModel.findOneAndUpdate({ id: user.id }, { $pull: { guilds: guild.id } }).exec();
await emitEvent({
event: "GUILD_BAN_ADD",
data: {
guild_id: guild.id,
user: user,
},
guild_id: guild.id,
} as GuildBanAddEvent);
await emitEvent({
event: "GUILD_DELETE",
data: {
id: guild.id,
},
user_id: user.id,
} as GuildDeleteEvent);
await emitEvent({
event: "GUILD_MEMBER_REMOVE",
data: {
guild_id: guild.id,
user: user,
},
guild_id: guild.id,
} as GuildMemberRemoveEvent);
return res.json(ban).send();
});
router.delete("/:id/bans/:userid", async (req: Request, res: Response) => {
try {
var guildID = BigInt(req.params.id);
var bannedUserID = BigInt(req.params.userid);
} catch (error) {
throw new HTTPError("Invalid id format", 400);
}
const user = await UserModel.findOne(
{ id: bannedUserID },
"guilds username discriminator id public_flags avatar"
).exec();
if (!user) throw new HTTPError("User not found", 404);
const guild = await GuildModel.findOne({ id: guildID }).exec();
if (!guild) throw new HTTPError("Guild not found", 404);
/*const perms = await getPermission(req.userid, guild.id);
if (!perms.has("BAN_MEMBERS")) {
throw new HTTPError("No permissions", 403);
}*/
await BanModel.deleteOne({
user_id: BigInt(user.id),
guild_id: guild.id,
}).exec();
await emitEvent({
event: "GUILD_BAN_REMOVE",
data: {
guild_id: guild.id,
user: user,
},
guild_id: guild.id,
} as GuildBanRemoveEvent);
return res.status(204).send();
});
export default router; export default router;