writefreely
/
writefreely
mirror of https://github.com/writefreely/writefreely.git
2
0
Fork 0
Code Issues Releases 25 Wiki Activity
A clean, Markdown-based publishing platform made for writers. Write together, and build a community. https://writefreely.org
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
797 Commits
45 Branches
234 MiB
 
 
 
 
 
Tree: f846cada4b
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'f846cada4b'
${ noResults }
writefreely/invites.go

187 lines
4.3 KiB
Raw Blame History 

  1. /*

  2.  * Copyright © 2019 A Bunch Tell LLC.

  3.  *

  4.  * This file is part of WriteFreely.

  5.  *

  6.  * WriteFreely is free software: you can redistribute it and/or modify

  7.  * it under the terms of the GNU Affero General Public License, included

  8.  * in the LICENSE file in this source code package.

  9.  */

  10. 

  11. package writefreely

  12. 

  13. import (

  14. 	"database/sql"

  15. 	"html/template"

  16. 	"net/http"

  17. 	"strconv"

  18. 	"time"

  19. 

  20. 	"github.com/gorilla/mux"

  21. 	"github.com/writeas/impart"

  22. 	"github.com/writeas/nerds/store"

  23. 	"github.com/writeas/web-core/log"

  24. 	"github.com/writeas/writefreely/page"

  25. )

  26. 

  27. type Invite struct {

  28. 	ID       string

  29. 	MaxUses  sql.NullInt64

  30. 	Created  time.Time

  31. 	Expires  *time.Time

  32. 	Inactive bool

  33. 

  34. 	uses int64

  35. }

  36. 

  37. func (i Invite) Uses() int64 {

  38. 	return i.uses

  39. }

  40. 

  41. func (i Invite) Expired() bool {

  42. 	return i.Expires != nil && i.Expires.Before(time.Now())

  43. }

  44. 

  45. func (i Invite) ExpiresFriendly() string {

  46. 	return i.Expires.Format("January 2, 2006, 3:04 PM")

  47. }

  48. 

  49. func handleViewUserInvites(app *App, u *User, w http.ResponseWriter, r *http.Request) error {

  50. 	// Don't show page if instance doesn't allow it

  51. 	if !(app.cfg.App.UserInvites != "" && (u.IsAdmin() || app.cfg.App.UserInvites != "admin")) {

  52. 		return impart.HTTPError{http.StatusNotFound, ""}

  53. 	}

  54. 

  55. 	f, _ := getSessionFlashes(app, w, r, nil)

  56. 

  57. 	p := struct {

  58. 		*UserPage

  59. 		Invites  *[]Invite

  60. 		Silenced bool

  61. 	}{

  62. 		UserPage: NewUserPage(app, r, u, "Invite People", f),

  63. 	}

  64. 

  65. 	var err error

  66. 

  67. 	p.Silenced, err = app.db.IsUserSilenced(u.ID)

  68. 	if err != nil {

  69. 		log.Error("view invites: %v", err)

  70. 	}

  71. 

  72. 	p.Invites, err = app.db.GetUserInvites(u.ID)

  73. 	if err != nil {

  74. 		return err

  75. 	}

  76. 	for i := range *p.Invites {

  77. 		(*p.Invites)[i].uses = app.db.GetUsersInvitedCount((*p.Invites)[i].ID)

  78. 	}

  79. 

  80. 	showUserPage(w, "invite", p)

  81. 	return nil

  82. }

  83. 

  84. func handleCreateUserInvite(app *App, u *User, w http.ResponseWriter, r *http.Request) error {

  85. 	muVal := r.FormValue("uses")

  86. 	expVal := r.FormValue("expires")

  87. 

  88. 	if u.IsSilenced() {

  89. 		return ErrUserSilenced

  90. 	}

  91. 

  92. 	var err error

  93. 	var maxUses int

  94. 	if muVal != "0" {

  95. 		maxUses, err = strconv.Atoi(muVal)

  96. 		if err != nil {

  97. 			return impart.HTTPError{http.StatusBadRequest, "Invalid value for 'max_uses'"}

  98. 		}

  99. 	}

  100. 

  101. 	var expDate *time.Time

  102. 	var expires int

  103. 	if expVal != "0" {

  104. 		expires, err = strconv.Atoi(expVal)

  105. 		if err != nil {

  106. 			return impart.HTTPError{http.StatusBadRequest, "Invalid value for 'expires'"}

  107. 		}

  108. 		ed := time.Now().Add(time.Duration(expires) * time.Minute)

  109. 		expDate = &ed

  110. 	}

  111. 

  112. 	inviteID := store.GenerateRandomString("0123456789BCDFGHJKLMNPQRSTVWXYZbcdfghjklmnpqrstvwxyz", 6)

  113. 	err = app.db.CreateUserInvite(inviteID, u.ID, maxUses, expDate)

  114. 	if err != nil {

  115. 		return err

  116. 	}

  117. 

  118. 	return impart.HTTPError{http.StatusFound, "/me/invites"}

  119. }

  120. 

  121. func handleViewInvite(app *App, w http.ResponseWriter, r *http.Request) error {

  122. 	inviteCode := mux.Vars(r)["code"]

  123. 

  124. 	i, err := app.db.GetUserInvite(inviteCode)

  125. 	if err != nil {

  126. 		return err

  127. 	}

  128. 

  129. 	expired := i.Expired()

  130. 	if !expired && i.MaxUses.Valid && i.MaxUses.Int64 > 0 {

  131. 		// Invite has a max-use number, so check if we're past that limit

  132. 		i.uses = app.db.GetUsersInvitedCount(inviteCode)

  133. 		expired = i.uses >= i.MaxUses.Int64

  134. 	}

  135. 

  136. 	if u := getUserSession(app, r); u != nil {

  137. 		// check if invite belongs to another user

  138. 		// error can be ignored as not important in this case

  139. 		if ownInvite, _ := app.db.IsUsersInvite(inviteCode, u.ID); !ownInvite {

  140. 			addSessionFlash(app, w, r, "You're already registered and logged in.", nil)

  141. 			// show homepage

  142. 			return impart.HTTPError{http.StatusFound, "/me/settings"}

  143. 		}

  144. 

  145. 		// show invite instructions

  146. 		p := struct {

  147. 			*UserPage

  148. 			Invite  *Invite

  149. 			Expired bool

  150. 		}{

  151. 			UserPage: NewUserPage(app, r, u, "Invite to "+app.cfg.App.SiteName, nil),

  152. 			Invite:   i,

  153. 			Expired:  expired,

  154. 		}

  155. 		showUserPage(w, "invite-help", p)

  156. 		return nil

  157. 	}

  158. 

  159. 	p := struct {

  160. 		page.StaticPage

  161. 		Error   string

  162. 		Flashes []template.HTML

  163. 		Invite  string

  164. 	}{

  165. 		StaticPage: pageForReq(app, r),

  166. 		Invite:     inviteCode,

  167. 	}

  168. 

  169. 	if expired {

  170. 		p.Error = "This invite link has expired."

  171. 	}

  172. 

  173. 	// Get error messages

  174. 	session, err := app.sessionStore.Get(r, cookieName)

  175. 	if err != nil {

  176. 		// Ignore this

  177. 		log.Error("Unable to get session in handleViewInvite; ignoring: %v", err)

  178. 	}

  179. 	flashes, _ := getSessionFlashes(app, w, r, session)

  180. 	for _, flash := range flashes {

  181. 		p.Flashes = append(p.Flashes, template.HTML(flash))

  182. 	}

  183. 

  184. 	// Show landing page

  185. 	return renderPage(w, "signup.tmpl", p)

  186. }