Ghost/ghost/admin/app/controllers/settings/staff/user.js

321 lines
11 KiB
JavaScript
Raw Normal View History

import Controller from '@ember/controller';
import DeleteUserModal from '../../../components/settings/staff/modals/delete-user';
import RegenerateStaffTokenModal from '../../../components/settings/staff/modals/regenerate-staff-token';
import SelectRoleModal from '../../../components/settings/staff/modals/select-role';
import SuspendUserModal from '../../../components/settings/staff/modals/suspend-user';
import TransferOwnershipModal from '../../../components/settings/staff/modals/transfer-ownership';
import UnsuspendUserModal from '../../../components/settings/staff/modals/unsuspend-user';
import UploadImageModal from '../../../components/settings/staff/modals/upload-image';
import boundOneWay from 'ghost-admin/utils/bound-one-way';
import copyTextToClipboard from 'ghost-admin/utils/copy-text-to-clipboard';
import isNumber from 'ghost-admin/utils/isNumber';
import windowProxy from 'ghost-admin/utils/window-proxy';
import {TrackedObject} from 'tracked-built-ins';
import {action, computed} from '@ember/object';
import {alias, and, not, or, readOnly} from '@ember/object/computed';
import {run} from '@ember/runloop';
import {inject as service} from '@ember/service';
import {task, taskGroup, timeout} from 'ember-concurrency';
import {tracked} from '@glimmer/tracking';
export default Controller.extend({
ajax: service(),
config: service(),
ghostPaths: service(),
membersUtils: service(),
modals: service(),
notifications: service(),
session: service(),
slugGenerator: service(),
utils: service(),
personalToken: null,
personalTokenRegenerated: false,
dirtyAttributes: false,
init() {
this._super(...arguments);
this.clearScratchValues();
},
scratchValues: tracked(),
saveHandlers: taskGroup().enqueue(),
user: alias('model'),
currentUser: alias('session.user'),
email: readOnly('user.email'),
slugValue: boundOneWay('user.slug'),
canChangeEmail: not('isAdminUserOnOwnerProfile'),
canChangePassword: not('isAdminUserOnOwnerProfile'),
canToggleMemberAlerts: or('currentUser.isOwnerOnly', 'isAdminUserOnOwnProfile'),
isAdminUserOnOwnProfile: and('currentUser.isAdminOnly', 'isOwnProfile'),
canMakeOwner: and('currentUser.isOwnerOnly', 'isNotOwnProfile', 'user.isAdminOnly', 'isNotSuspended'),
isAdminUserOnOwnerProfile: and('currentUser.isAdminOnly', 'user.isOwnerOnly'),
isNotOwnersProfile: not('user.isOwnerOnly'),
isNotSuspended: not('user.isSuspended'),
rolesDropdownIsVisible: and('currentUser.isAdmin', 'isNotOwnProfile', 'isNotOwnersProfile'),
userActionsAreVisible: or('deleteUserActionIsVisible', 'canMakeOwner'),
isNotOwnProfile: not('isOwnProfile'),
isOwnProfile: computed('user.id', 'currentUser.id', function () {
return this.get('user.id') === this.get('currentUser.id');
}),
deleteUserActionIsVisible: computed('currentUser.{isAdmin,isEditor}', 'user.{isOwnerOnly,isAuthorOrContributor}', 'isOwnProfile', function () {
// users can't delete themselves
if (this.isOwnProfile) {
return false;
}
if (
// owners/admins can delete any non-owner user
(this.currentUser.get('isAdmin') && !this.user.isOwnerOnly) ||
// editors can delete any author or contributor
(this.currentUser.get('isEditor') && this.user.isAuthorOrContributor)
) {
return true;
}
return false;
}),
coverTitle: computed('user.name', function () {
return `${this.get('user.name')}'s Cover Image`;
}),
roles: computed(function () {
return this.store.query('role', {permissions: 'assign'});
}),
actions: {
// TODO: remove those mutation actions once we have better
// inline validations that auto-clear errors on input
updatePassword(password) {
this.set('user.password', password);
this.get('user.hasValidated').removeObject('password');
this.get('user.errors').remove('password');
},
updateNewPassword(password) {
this.set('user.newPassword', password);
this.get('user.hasValidated').removeObject('newPassword');
this.get('user.errors').remove('newPassword');
},
updateNe2Password(password) {
this.set('user.ne2Password', password);
this.get('user.hasValidated').removeObject('ne2Password');
this.get('user.errors').remove('ne2Password');
}
},
deleteUser: action(async function () {
if (this.deleteUserActionIsVisible) {
await this.modals.open(DeleteUserModal, {
user: this.model
});
}
}),
suspendUser: action(async function () {
if (this.deleteUserActionIsVisible) {
await this.modals.open(SuspendUserModal, {
user: this.model,
saveTask: this.save
});
}
}),
unsuspendUser: action(async function () {
if (this.deleteUserActionIsVisible) {
await this.modals.open(UnsuspendUserModal, {
user: this.model,
saveTask: this.save
});
}
}),
transferOwnership: action(async function () {
if (this.canMakeOwner) {
await this.modals.open(TransferOwnershipModal, {
user: this.model
});
}
}),
regenerateStaffToken: action(async function () {
const apiToken = await this.modals.open(RegenerateStaffTokenModal);
if (apiToken) {
this.set('personalToken', apiToken);
this.set('personalTokenRegenerated', true);
}
}),
selectRole: action(async function () {
const newRole = await this.modals.open(SelectRoleModal, {
currentRole: this.model.role
});
if (newRole) {
this.user.role = newRole;
this.set('dirtyAttributes', true);
}
}),
changeCoverImage: action(async function () {
await this.modals.open(UploadImageModal, {
model: this.model,
modelProperty: 'coverImage'
});
}),
changeProfileImage: action(async function () {
await this.modals.open(UploadImageModal, {
model: this.model,
modelProperty: 'profileImage'
});
}),
setScratchValue: action(function (property, value) {
this.scratchValues[property] = value;
}),
clearScratchValues() {
this.scratchValues = new TrackedObject();
},
reset: action(function () {
this.user.rollbackAttributes();
this.user.password = '';
this.user.newPassword = '';
this.user.ne2Password = '';
this.set('slugValue', this.user.slug);
this.set('dirtyAttributes', false);
this.clearScratchValues();
}),
toggleCommentNotifications: action(function (event) {
this.user.commentNotifications = event.target.checked;
}),
toggleMemberEmailAlerts: action(function (type, event) {
if (type === 'free-signup') {
this.user.freeMemberSignupNotification = event.target.checked;
} else if (type === 'paid-started') {
this.user.paidSubscriptionStartedNotification = event.target.checked;
} else if (type === 'paid-canceled') {
this.user.paidSubscriptionCanceledNotification = event.target.checked;
}
}),
updateSlug: task(function* (newSlug) {
let slug = this.get('user.slug');
newSlug = newSlug || slug;
newSlug = newSlug.trim();
// Ignore unchanged slugs or candidate slugs that are empty
if (!newSlug || slug === newSlug) {
this.set('slugValue', slug);
return true;
}
let serverSlug = yield this.slugGenerator.generateSlug('user', newSlug);
// If after getting the sanitized and unique slug back from the API
// we end up with a slug that matches the existing slug, abort the change
if (serverSlug === slug) {
return true;
}
// Because the server transforms the candidate slug by stripping
// certain characters and appending a number onto the end of slugs
// to enforce uniqueness, there are cases where we can get back a
// candidate slug that is a duplicate of the original except for
// the trailing incrementor (e.g., this-is-a-slug and this-is-a-slug-2)
// get the last token out of the slug candidate and see if it's a number
let slugTokens = serverSlug.split('-');
let check = Number(slugTokens.pop());
// if the candidate slug is the same as the existing slug except
// for the incrementor then the existing slug should be used
if (isNumber(check) && check > 0) {
if (slug === slugTokens.join('-') && serverSlug !== newSlug) {
this.set('slugValue', slug);
return true;
}
}
this.set('slugValue', serverSlug);
this.set('dirtyAttributes', true);
return true;
}).group('saveHandlers'),
save: task(function* () {
let user = this.user;
let slugValue = this.slugValue;
let slugChanged;
if (user.get('slug') !== slugValue) {
slugChanged = true;
user.set('slug', slugValue);
}
try {
user = yield user.save();
this.clearScratchValues();
// If the user's slug has changed, change the URL and replace
// the history so refresh and back button still work
if (slugChanged) {
let currentPath = window.location.hash;
let newPath = currentPath.split('/');
newPath[newPath.length - 1] = user.get('slug');
newPath = newPath.join('/');
windowProxy.replaceState({path: newPath}, '', newPath);
}
this.set('dirtyAttributes', false);
this.notifications.closeAlerts('user.update');
return user;
} catch (error) {
// validation engine returns undefined so we have to check
// before treating the failure as an API error
if (error) {
this.notifications.showAPIError(error, {key: 'user.update'});
}
}
}).group('saveHandlers'),
saveViaKeyboard: action(function (event) {
event.preventDefault();
// trigger any set-on-blur actions
const focusedElement = document.activeElement;
focusedElement?.blur();
// schedule save for when set-on-blur actions have finished
run.schedule('actions', this, function () {
focusedElement?.focus();
this.save.perform();
});
}),
copyContentKey: task(function* () {
copyTextToClipboard(this.personalToken);
yield timeout(this.isTesting ? 50 : 3000);
})
});