mobilizon.chapril.org-mobil.../lib/graphql/resolvers/member.ex

defmodule Mobilizon.GraphQL.Resolvers.Member do
  @moduledoc """
  Handles the member-related GraphQL calls
  """

  import Mobilizon.Users.Guards
  alias Mobilizon.{Actors, Users}
  alias Mobilizon.Actors.{Actor, Member}
  alias Mobilizon.Federation.ActivityPub
  alias Mobilizon.Federation.ActivityPub.Refresher
  alias Mobilizon.Storage.Page
  alias Mobilizon.Users.User

  @doc """
  Find members for group.

  If actor requesting is not part of the group, we only return the number of members, not members
  """
  def find_members_for_group(
        %Actor{id: group_id} = group,
        %{page: page, limit: limit, roles: roles},
        %{
          context: %{current_user: %User{role: user_role} = user}
        } = _resolution
      ) do
    with %Actor{id: actor_id} <- Users.get_actor_for_user(user),
         {:member, true} <-
           {:member, Actors.is_member?(actor_id, group_id) or is_moderator(user_role)} do
      roles =
        case roles do
          "" ->
            []

          roles ->
            roles
            |> String.split(",")
            |> Enum.map(&String.downcase/1)
            |> Enum.map(&String.to_existing_atom/1)
        end

      %Page{} = page = Actors.list_members_for_group(group, roles, page, limit)
      {:ok, page}
    else
      {:member, false} ->
        # Actor is not member of group, fallback to public
        with %Page{} = page <- Actors.list_members_for_group(group) do
          {:ok, %Page{page | elements: []}}
        end
    end
  end

  def find_members_for_group(%Actor{} = group, _args, _resolution) do
    with %Page{} = page <- Actors.list_members_for_group(group) do
      {:ok, %Page{page | elements: []}}
    end
  end

  def invite_member(
        _parent,
        %{group_id: group_id, target_actor_username: target_actor_username},
        %{context: %{current_user: %User{} = user}}
      ) do
    with %Actor{id: actor_id} = actor <- Users.get_actor_for_user(user),
         {:ok, %Actor{} = group} <- Actors.get_group_by_actor_id(group_id),
         {:has_rights_to_invite, {:ok, %Member{role: role}}}
         when role in [:moderator, :administrator, :creator] <-
           {:has_rights_to_invite, Actors.get_member(actor_id, group_id)},
         {:target_actor_username, {:ok, %Actor{id: target_actor_id} = target_actor}} <-
           {:target_actor_username,
            ActivityPub.find_or_make_actor_from_nickname(target_actor_username)},
         true <- check_member_not_existant_or_rejected(target_actor_id, group.id),
         {:ok, _activity, %Member{} = member} <- ActivityPub.invite(group, actor, target_actor) do
      {:ok, member}
    else
      {:is_owned, nil} ->
        {:error, "Actor id is not owned by authenticated user"}

      {:error, :group_not_found} ->
        {:error, "Group id not found"}

      {:target_actor_username, _} ->
        {:error, "Actor invited doesn't exist"}

      {:has_rights_to_invite, {:error, :member_not_found}} ->
        {:error, "You are not a member of this group"}

      {:has_rights_to_invite, _} ->
        {:error, "You cannot invite to this group"}

      {:ok, %Member{}} ->
        {:error, "Actor is already a member of this group"}
    end
  end

  def accept_invitation(_parent, %{id: member_id}, %{context: %{current_user: %User{} = user}}) do
    with %Actor{id: actor_id} <- Users.get_actor_for_user(user),
         %Member{actor: %Actor{id: member_actor_id} = actor} = member <-
           Actors.get_member(member_id),
         {:is_same_actor, true} <- {:is_same_actor, member_actor_id === actor_id},
         {:ok, _activity, %Member{} = member} <-
           ActivityPub.accept(
             :invite,
             member,
             true
           ) do
      # Launch an async task to refresh the group profile, fetch resources, discussions, members
      Refresher.fetch_group(member.parent.url, actor)
      {:ok, member}
    end
  end

  def reject_invitation(_parent, %{id: member_id}, %{context: %{current_user: %User{} = user}}) do
    with %Actor{id: actor_id} <- Users.get_actor_for_user(user),
         %Member{actor: %Actor{id: member_actor_id}} = member <- Actors.get_member(member_id),
         {:is_same_actor, true} <- {:is_same_actor, member_actor_id === actor_id},
         {:ok, _activity, %Member{} = member} <-
           ActivityPub.reject(
             :invite,
             member,
             true
           ) do
      {:ok, member}
    end
  end

  def update_member(_parent, %{member_id: member_id, role: role}, %{
        context: %{current_user: %User{} = user}
      }) do
    with %Actor{} = moderator <- Users.get_actor_for_user(user),
         %Member{} = member <- Actors.get_member(member_id),
         {:ok, _activity, %Member{} = member} <-
           ActivityPub.update(member, %{role: role}, true, %{moderator: moderator}) do
      {:ok, member}
    else
      {:has_rights_to_update_role, {:error, :member_not_found}} ->
        {:error, "You are not a moderator or admin for this group"}

      {:is_only_admin, true} ->
        {:error,
         "You can't set yourself to a lower member role for this group because you are the only administrator"}
    end
  end

  def update_member(_parent, _args, _resolution),
    do: {:error, "You must be logged-in to update a member"}

  def remove_member(_parent, %{member_id: member_id, group_id: group_id}, %{
        context: %{current_user: %User{} = user}
      }) do
    with %Actor{id: moderator_id} = moderator <- Users.get_actor_for_user(user),
         %Member{} = member <- Actors.get_member(member_id),
         %Actor{type: :Group} = group <- Actors.get_actor(group_id),
         {:has_rights_to_invite, {:ok, %Member{role: role}}}
         when role in [:moderator, :administrator, :creator] <-
           {:has_rights_to_invite, Actors.get_member(moderator_id, group_id)},
         {:ok, _activity, %Member{}} <- ActivityPub.remove(member, group, moderator, true) do
      {:ok, member}
    end
  end

  # Rejected members can be invited again
  @spec check_member_not_existant_or_rejected(String.t() | integer, String.t() | integer()) ::
          boolean()
  defp check_member_not_existant_or_rejected(target_actor_id, group_id) do
    case Actors.get_member(target_actor_id, group_id) do
      {:ok, %Member{role: :rejected}} ->
        true

      {:error, :member_not_found} ->
        true

      _err ->
        false
    end
  end
end
Split GraphQL as separate context 2020-01-26 20:34:25 +01:00			`defmodule Mobilizon.GraphQL.Resolvers.Member do`
Various UI stuff (mainly implement mookup) Fix lint Disable modern mode Fixes UI fixes Fixes Ignore .po~ files Fixes Fix homepage Fixes Fixes Mix format Fix tests Fix tests (yeah…) Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2019-04-03 17:29:03 +02:00			`@moduledoc """`
			`Handles the member-related GraphQL calls`
			`"""`
Move API under GraphQL context 2020-01-26 21:11:16 +01:00
Add group admin profiles And other fixes Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2020-08-27 11:53:24 +02:00			`import Mobilizon.Users.Guards`
Introduce group basic federation, event new page and notifications Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2020-02-18 08:57:00 +01:00			`alias Mobilizon.{Actors, Users}`
			`alias Mobilizon.Actors.{Actor, Member}`
			`alias Mobilizon.Federation.ActivityPub`
Improve member adding and excluding flow Allow to exclude a member Send emails to the member when it's excluded Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2020-08-14 11:32:23 +02:00			`alias Mobilizon.Federation.ActivityPub.Refresher`
Introduce group basic federation, event new page and notifications Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2020-02-18 08:57:00 +01:00			`alias Mobilizon.Storage.Page`
			`alias Mobilizon.Users.User`
Various UI stuff (mainly implement mookup) Fix lint Disable modern mode Fixes UI fixes Fixes Ignore .po~ files Fixes Fix homepage Fixes Fixes Mix format Fix tests Fix tests (yeah…) Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2019-04-03 17:29:03 +02:00
			`@doc """`
Introduce group basic federation, event new page and notifications Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2020-02-18 08:57:00 +01:00			`Find members for group.`

			`If actor requesting is not part of the group, we only return the number of members, not members`
Various UI stuff (mainly implement mookup) Fix lint Disable modern mode Fixes UI fixes Fixes Ignore .po~ files Fixes Fix homepage Fixes Fixes Mix format Fix tests Fix tests (yeah…) Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2019-04-03 17:29:03 +02:00			`"""`
Introduce group basic federation, event new page and notifications Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2020-02-18 08:57:00 +01:00			`def find_members_for_group(`
			`%Actor{id: group_id} = group,`
Introduce group posts Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2020-07-09 17:24:28 +02:00			`%{page: page, limit: limit, roles: roles},`
Introduce group basic federation, event new page and notifications Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2020-02-18 08:57:00 +01:00			`%{`
Add group admin profiles And other fixes Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2020-08-27 11:53:24 +02:00			`context: %{current_user: %User{role: user_role} = user}`
Introduce group basic federation, event new page and notifications Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2020-02-18 08:57:00 +01:00			`} = _resolution`
			`) do`
			`with %Actor{id: actor_id} <- Users.get_actor_for_user(user),`
Add group admin profiles And other fixes Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2020-08-27 11:53:24 +02:00			`{:member, true} <-`
			`{:member, Actors.is_member?(actor_id, group_id) or is_moderator(user_role)} do`
Introduce group posts Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2020-07-09 17:24:28 +02:00			`roles =`
			`case roles do`
			`"" ->`
			`[]`

			`roles ->`
			`roles`
			`\|> String.split(",")`
			`\|> Enum.map(&String.downcase/1)`
			`\|> Enum.map(&String.to_existing_atom/1)`
			`end`

			`%Page{} = page = Actors.list_members_for_group(group, roles, page, limit)`
Introduce group basic federation, event new page and notifications Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2020-02-18 08:57:00 +01:00			`{:ok, page}`
			`else`
			`{:member, false} ->`
			`# Actor is not member of group, fallback to public`
			`with %Page{} = page <- Actors.list_members_for_group(group) do`
			`{:ok, %Page{page \| elements: []}}`
			`end`
			`end`
			`end`

			`def find_members_for_group(%Actor{} = group, _args, _resolution) do`
			`with %Page{} = page <- Actors.list_members_for_group(group) do`
			`{:ok, %Page{page \| elements: []}}`
			`end`
			`end`

			`def invite_member(`
			`_parent,`
			`%{group_id: group_id, target_actor_username: target_actor_username},`
			`%{context: %{current_user: %User{} = user}}`
			`) do`
			`with %Actor{id: actor_id} = actor <- Users.get_actor_for_user(user),`
			`{:ok, %Actor{} = group} <- Actors.get_group_by_actor_id(group_id),`
			`{:has_rights_to_invite, {:ok, %Member{role: role}}}`
			`when role in [:moderator, :administrator, :creator] <-`
			`{:has_rights_to_invite, Actors.get_member(actor_id, group_id)},`
			`{:target_actor_username, {:ok, %Actor{id: target_actor_id} = target_actor}} <-`
			`{:target_actor_username,`
			`ActivityPub.find_or_make_actor_from_nickname(target_actor_username)},`
Improve member adding and excluding flow Allow to exclude a member Send emails to the member when it's excluded Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2020-08-14 11:32:23 +02:00			`true <- check_member_not_existant_or_rejected(target_actor_id, group.id),`
Introduce group basic federation, event new page and notifications Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2020-02-18 08:57:00 +01:00			`{:ok, _activity, %Member{} = member} <- ActivityPub.invite(group, actor, target_actor) do`
			`{:ok, member}`
			`else`
			`{:is_owned, nil} ->`
			`{:error, "Actor id is not owned by authenticated user"}`

			`{:error, :group_not_found} ->`
			`{:error, "Group id not found"}`

			`{:target_actor_username, _} ->`
			`{:error, "Actor invited doesn't exist"}`

			`{:has_rights_to_invite, {:error, :member_not_found}} ->`
			`{:error, "You are not a member of this group"}`

			`{:has_rights_to_invite, _} ->`
			`{:error, "You cannot invite to this group"}`

			`{:ok, %Member{}} ->`
			`{:error, "Actor is already a member of this group"}`
			`end`
			`end`

			`def accept_invitation(_parent, %{id: member_id}, %{context: %{current_user: %User{} = user}}) do`
			`with %Actor{id: actor_id} <- Users.get_actor_for_user(user),`
Improve member adding and excluding flow Allow to exclude a member Send emails to the member when it's excluded Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2020-08-14 11:32:23 +02:00			`%Member{actor: %Actor{id: member_actor_id} = actor} = member <-`
			`Actors.get_member(member_id),`
Introduce group basic federation, event new page and notifications Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2020-02-18 08:57:00 +01:00			`{:is_same_actor, true} <- {:is_same_actor, member_actor_id === actor_id},`
			`{:ok, _activity, %Member{} = member} <-`
			`ActivityPub.accept(`
			`:invite,`
			`member,`
			`true`
			`) do`
			`# Launch an async task to refresh the group profile, fetch resources, discussions, members`
Improve member adding and excluding flow Allow to exclude a member Send emails to the member when it's excluded Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2020-08-14 11:32:23 +02:00			`Refresher.fetch_group(member.parent.url, actor)`
			`{:ok, member}`
			`end`
			`end`

			`def reject_invitation(_parent, %{id: member_id}, %{context: %{current_user: %User{} = user}}) do`
			`with %Actor{id: actor_id} <- Users.get_actor_for_user(user),`
			`%Member{actor: %Actor{id: member_actor_id}} = member <- Actors.get_member(member_id),`
			`{:is_same_actor, true} <- {:is_same_actor, member_actor_id === actor_id},`
			`{:ok, _activity, %Member{} = member} <-`
			`ActivityPub.reject(`
			`:invite,`
			`member,`
			`true`
			`) do`
			`{:ok, member}`
			`end`
			`end`

Allow to update a member role Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2020-08-20 10:54:58 +02:00			`def update_member(_parent, %{member_id: member_id, role: role}, %{`
Improve member adding and excluding flow Allow to exclude a member Send emails to the member when it's excluded Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2020-08-14 11:32:23 +02:00			`context: %{current_user: %User{} = user}`
			`}) do`
			`with %Actor{} = moderator <- Users.get_actor_for_user(user),`
Allow to update a member role Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2020-08-20 10:54:58 +02:00			`%Member{} = member <- Actors.get_member(member_id),`
			`{:ok, _activity, %Member{} = member} <-`
			`ActivityPub.update(member, %{role: role}, true, %{moderator: moderator}) do`
			`{:ok, member}`
			`else`
			`{:has_rights_to_update_role, {:error, :member_not_found}} ->`
			`{:error, "You are not a moderator or admin for this group"}`

			`{:is_only_admin, true} ->`
			`{:error,`
			`"You can't set yourself to a lower member role for this group because you are the only administrator"}`
			`end`
			`end`

			`def update_member(_parent, _args, _resolution),`
			`do: {:error, "You must be logged-in to update a member"}`

			`def remove_member(_parent, %{member_id: member_id, group_id: group_id}, %{`
			`context: %{current_user: %User{} = user}`
			`}) do`
			`with %Actor{id: moderator_id} = moderator <- Users.get_actor_for_user(user),`
Improve member adding and excluding flow Allow to exclude a member Send emails to the member when it's excluded Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2020-08-14 11:32:23 +02:00			`%Member{} = member <- Actors.get_member(member_id),`
			`%Actor{type: :Group} = group <- Actors.get_actor(group_id),`
Allow to update a member role Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2020-08-20 10:54:58 +02:00			`{:has_rights_to_invite, {:ok, %Member{role: role}}}`
			`when role in [:moderator, :administrator, :creator] <-`
			`{:has_rights_to_invite, Actors.get_member(moderator_id, group_id)},`
Improve member adding and excluding flow Allow to exclude a member Send emails to the member when it's excluded Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2020-08-14 11:32:23 +02:00			`{:ok, _activity, %Member{}} <- ActivityPub.remove(member, group, moderator, true) do`
Introduce group basic federation, event new page and notifications Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2020-02-18 08:57:00 +01:00			`{:ok, member}`
			`end`
Various UI stuff (mainly implement mookup) Fix lint Disable modern mode Fixes UI fixes Fixes Ignore .po~ files Fixes Fix homepage Fixes Fixes Mix format Fix tests Fix tests (yeah…) Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2019-04-03 17:29:03 +02:00			`end`
Improve member adding and excluding flow Allow to exclude a member Send emails to the member when it's excluded Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2020-08-14 11:32:23 +02:00
			`# Rejected members can be invited again`
			`@spec check_member_not_existant_or_rejected(String.t() \| integer, String.t() \| integer()) ::`
			`boolean()`
			`defp check_member_not_existant_or_rejected(target_actor_id, group_id) do`
			`case Actors.get_member(target_actor_id, group_id) do`
			`{:ok, %Member{role: :rejected}} ->`
			`true`

			`{:error, :member_not_found} ->`
			`true`

Add group admin profiles And other fixes Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2020-08-27 11:53:24 +02:00			`_err ->`
Improve member adding and excluding flow Allow to exclude a member Send emails to the member when it's excluded Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2020-08-14 11:32:23 +02:00			`false`
			`end`
			`end`
Various UI stuff (mainly implement mookup) Fix lint Disable modern mode Fixes UI fixes Fixes Ignore .po~ files Fixes Fix homepage Fixes Fixes Mix format Fix tests Fix tests (yeah…) Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2019-04-03 17:29:03 +02:00			`end`