2015-01-20 02:50:01 +08:00
|
|
|
require_dependency 'rate_limiter'
|
|
|
|
|
2013-02-06 03:16:51 +08:00
|
|
|
class Invite < ActiveRecord::Base
|
2017-05-02 17:43:33 +08:00
|
|
|
class UserExists < StandardError; end
|
2015-01-20 02:50:01 +08:00
|
|
|
include RateLimiter::OnCreateRecord
|
2013-05-07 12:39:01 +08:00
|
|
|
include Trashable
|
2013-02-07 23:45:24 +08:00
|
|
|
|
2015-01-20 02:50:01 +08:00
|
|
|
rate_limit :limit_invites_per_day
|
|
|
|
|
2013-02-06 03:16:51 +08:00
|
|
|
belongs_to :user
|
|
|
|
belongs_to :topic
|
2013-03-01 02:54:12 +08:00
|
|
|
belongs_to :invited_by, class_name: 'User'
|
2013-02-06 03:16:51 +08:00
|
|
|
|
2014-05-08 14:45:49 +08:00
|
|
|
has_many :invited_groups
|
|
|
|
has_many :groups, through: :invited_groups
|
2013-02-06 03:16:51 +08:00
|
|
|
has_many :topic_invites
|
2013-02-07 23:45:24 +08:00
|
|
|
has_many :topics, through: :topic_invites, source: :topic
|
2013-02-06 03:16:51 +08:00
|
|
|
validates_presence_of :invited_by_id
|
2014-10-09 22:44:15 +08:00
|
|
|
validates :email, email: true
|
2013-02-06 03:16:51 +08:00
|
|
|
|
|
|
|
before_create do
|
|
|
|
self.invite_key ||= SecureRandom.hex
|
|
|
|
end
|
|
|
|
|
2014-07-14 23:56:26 +08:00
|
|
|
before_validation do
|
|
|
|
self.email = Email.downcase(email) unless email.nil?
|
2013-02-06 03:16:51 +08:00
|
|
|
end
|
|
|
|
|
|
|
|
validate :user_doesnt_already_exist
|
|
|
|
attr_accessor :email_already_exists
|
2013-02-07 23:45:24 +08:00
|
|
|
|
2013-02-06 03:16:51 +08:00
|
|
|
def user_doesnt_already_exist
|
|
|
|
@email_already_exists = false
|
|
|
|
return if email.blank?
|
2014-05-06 21:41:59 +08:00
|
|
|
u = User.find_by("email = ?", Email.downcase(email))
|
2014-01-22 05:53:46 +08:00
|
|
|
if u && u.id != self.user_id
|
2013-02-06 03:16:51 +08:00
|
|
|
@email_already_exists = true
|
|
|
|
errors.add(:email)
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
def redeemed?
|
|
|
|
redeemed_at.present?
|
|
|
|
end
|
|
|
|
|
|
|
|
def expired?
|
|
|
|
created_at < SiteSetting.invite_expiry_days.days.ago
|
|
|
|
end
|
|
|
|
|
2014-01-22 05:53:46 +08:00
|
|
|
# link_valid? indicates whether the invite link can be used to log in to the site
|
|
|
|
def link_valid?
|
|
|
|
invalidated_at.nil?
|
|
|
|
end
|
|
|
|
|
2017-06-09 03:10:43 +08:00
|
|
|
def redeem(username: nil, name: nil, password: nil, user_custom_fields: nil)
|
|
|
|
InviteRedeemer.new(self, username, name, password, user_custom_fields).redeem unless expired? || destroyed? || !link_valid?
|
2013-02-06 03:16:51 +08:00
|
|
|
end
|
|
|
|
|
2015-03-03 03:25:25 +08:00
|
|
|
def self.extend_permissions(topic, user, invited_by)
|
|
|
|
if topic.private_message?
|
|
|
|
topic.grant_permission_to_user(user.email)
|
|
|
|
elsif topic.category && topic.category.groups.any?
|
2017-02-03 01:38:25 +08:00
|
|
|
if Guardian.new(invited_by).can_invite_via_email?(topic)
|
2016-12-11 23:36:15 +08:00
|
|
|
(topic.category.groups - user.groups).each do |group|
|
|
|
|
group.add(user)
|
|
|
|
GroupActionLogger.new(Discourse.system_user, group).log_add_user_to_group(user)
|
|
|
|
end
|
2015-03-03 03:25:25 +08:00
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
2015-08-26 09:41:52 +08:00
|
|
|
|
2016-06-06 01:22:46 +08:00
|
|
|
def self.invite_by_email(email, invited_by, topic=nil, group_ids=nil, custom_message=nil)
|
2016-09-21 01:12:00 +08:00
|
|
|
create_invite_by_email(email, invited_by, {
|
|
|
|
topic: topic,
|
|
|
|
group_ids: group_ids,
|
|
|
|
custom_message: custom_message,
|
|
|
|
send_email: true
|
|
|
|
})
|
2015-08-31 22:06:13 +08:00
|
|
|
end
|
|
|
|
|
|
|
|
# generate invite link
|
|
|
|
def self.generate_invite_link(email, invited_by, topic=nil, group_ids=nil)
|
2016-09-21 01:12:00 +08:00
|
|
|
invite = create_invite_by_email(email, invited_by, {
|
|
|
|
topic: topic,
|
|
|
|
group_ids: group_ids,
|
|
|
|
send_email: false
|
|
|
|
})
|
2015-09-16 19:57:32 +08:00
|
|
|
return "#{Discourse.base_url}/invites/#{invite.invite_key}" if invite
|
2015-08-31 22:06:13 +08:00
|
|
|
end
|
|
|
|
|
2013-11-07 01:56:26 +08:00
|
|
|
# Create an invite for a user, supplying an optional topic
|
|
|
|
#
|
|
|
|
# Return the previously existing invite if already exists. Returns nil if the invite can't be created.
|
2016-09-21 01:12:00 +08:00
|
|
|
def self.create_invite_by_email(email, invited_by, opts=nil)
|
|
|
|
opts ||= {}
|
|
|
|
|
|
|
|
topic = opts[:topic]
|
|
|
|
group_ids = opts[:group_ids]
|
2016-10-07 15:24:11 +08:00
|
|
|
send_email = opts[:send_email].nil? ? true : opts[:send_email]
|
2016-09-21 01:12:00 +08:00
|
|
|
custom_message = opts[:custom_message]
|
|
|
|
|
2013-11-07 01:56:26 +08:00
|
|
|
lower_email = Email.downcase(email)
|
2014-05-09 09:45:18 +08:00
|
|
|
user = User.find_by(email: lower_email)
|
|
|
|
|
|
|
|
if user
|
2015-03-03 03:25:25 +08:00
|
|
|
extend_permissions(topic, user, invited_by) if topic
|
2017-05-02 17:43:33 +08:00
|
|
|
raise UserExists.new I18n.t("invite.user_exists", email: lower_email, username: user.username)
|
2014-05-09 09:45:18 +08:00
|
|
|
end
|
|
|
|
|
2014-01-22 04:13:55 +08:00
|
|
|
invite = Invite.with_deleted
|
2014-05-09 09:45:18 +08:00
|
|
|
.where(email: lower_email, invited_by_id: invited_by.id)
|
2014-01-22 04:13:55 +08:00
|
|
|
.order('created_at DESC')
|
|
|
|
.first
|
|
|
|
|
2014-05-09 09:45:18 +08:00
|
|
|
if invite && (invite.expired? || invite.deleted_at)
|
2014-01-22 04:13:55 +08:00
|
|
|
invite.destroy
|
|
|
|
invite = nil
|
|
|
|
end
|
2013-11-07 01:56:26 +08:00
|
|
|
|
2017-04-11 22:05:35 +08:00
|
|
|
invite.update_columns(created_at: Time.zone.now, updated_at: Time.zone.now) if invite
|
|
|
|
|
2014-05-09 09:45:18 +08:00
|
|
|
if !invite
|
2016-09-21 01:12:00 +08:00
|
|
|
create_args = { invited_by: invited_by, email: lower_email }
|
|
|
|
create_args[:moderator] = true if opts[:moderator]
|
2017-06-30 18:39:37 +08:00
|
|
|
create_args[:custom_message] = custom_message if custom_message
|
2016-09-21 01:12:00 +08:00
|
|
|
invite = Invite.create!(create_args)
|
2013-11-07 01:56:26 +08:00
|
|
|
end
|
|
|
|
|
2014-05-09 09:45:18 +08:00
|
|
|
if topic && !invite.topic_invites.pluck(:topic_id).include?(topic.id)
|
|
|
|
invite.topic_invites.create!(invite_id: invite.id, topic_id: topic.id)
|
|
|
|
# to correct association
|
|
|
|
topic.reload
|
|
|
|
end
|
|
|
|
|
|
|
|
if group_ids.present?
|
|
|
|
group_ids = group_ids - invite.invited_groups.pluck(:group_id)
|
|
|
|
group_ids.each do |group_id|
|
|
|
|
invite.invited_groups.create!(group_id: group_id)
|
|
|
|
end
|
2015-03-03 03:25:25 +08:00
|
|
|
else
|
|
|
|
if topic && topic.category # && Guardian.new(invited_by).can_invite_to?(topic)
|
|
|
|
group_ids = topic.category.groups.pluck(:id) - invite.invited_groups.pluck(:group_id)
|
|
|
|
group_ids.each { |group_id| invite.invited_groups.create!(group_id: group_id) }
|
|
|
|
end
|
2014-05-09 09:45:18 +08:00
|
|
|
end
|
2013-11-07 01:56:26 +08:00
|
|
|
|
2017-06-30 18:39:37 +08:00
|
|
|
Jobs.enqueue(:invite_email, invite_id: invite.id) if send_email
|
2014-05-09 09:45:18 +08:00
|
|
|
|
|
|
|
invite.reload
|
2013-11-07 01:56:26 +08:00
|
|
|
invite
|
|
|
|
end
|
|
|
|
|
2014-07-14 23:56:26 +08:00
|
|
|
# generate invite tokens without email
|
|
|
|
def self.generate_disposable_tokens(invited_by, quantity=nil, group_names=nil)
|
|
|
|
invite_tokens = []
|
|
|
|
quantity ||= 1
|
|
|
|
group_ids = get_group_ids(group_names)
|
|
|
|
|
|
|
|
quantity.to_i.times do
|
|
|
|
invite = Invite.create!(invited_by: invited_by)
|
|
|
|
group_ids = group_ids - invite.invited_groups.pluck(:group_id)
|
|
|
|
group_ids.each do |group_id|
|
|
|
|
invite.invited_groups.create!(group_id: group_id)
|
|
|
|
end
|
|
|
|
invite_tokens.push(invite.invite_key)
|
|
|
|
end
|
|
|
|
|
|
|
|
invite_tokens
|
|
|
|
end
|
|
|
|
|
|
|
|
def self.get_group_ids(group_names)
|
|
|
|
group_ids = []
|
|
|
|
if group_names
|
|
|
|
group_names = group_names.split(',')
|
|
|
|
group_names.each { |group_name|
|
|
|
|
group_detail = Group.find_by_name(group_name)
|
|
|
|
group_ids.push(group_detail.id) if group_detail
|
|
|
|
}
|
|
|
|
end
|
|
|
|
group_ids
|
|
|
|
end
|
|
|
|
|
2015-08-25 03:03:25 +08:00
|
|
|
def self.find_all_invites_from(inviter, offset=0, limit=SiteSetting.invites_per_page)
|
2013-11-09 03:11:41 +08:00
|
|
|
Invite.where(invited_by_id: inviter.id)
|
2015-08-26 09:41:52 +08:00
|
|
|
.where('invites.email IS NOT NULL')
|
2013-11-09 03:11:41 +08:00
|
|
|
.includes(:user => :user_stat)
|
|
|
|
.order('CASE WHEN invites.user_id IS NOT NULL THEN 0 ELSE 1 END',
|
|
|
|
'user_stats.time_read DESC',
|
|
|
|
'invites.redeemed_at DESC')
|
2015-08-25 03:03:25 +08:00
|
|
|
.limit(limit)
|
2014-08-01 19:06:31 +08:00
|
|
|
.offset(offset)
|
2013-11-09 03:11:41 +08:00
|
|
|
.references('user_stats')
|
|
|
|
end
|
|
|
|
|
2015-07-11 20:09:12 +08:00
|
|
|
def self.find_pending_invites_from(inviter, offset=0)
|
|
|
|
find_all_invites_from(inviter, offset).where('invites.user_id IS NULL').order('invites.created_at DESC')
|
|
|
|
end
|
|
|
|
|
2014-08-01 19:06:31 +08:00
|
|
|
def self.find_redeemed_invites_from(inviter, offset=0)
|
2015-07-11 20:09:12 +08:00
|
|
|
find_all_invites_from(inviter, offset).where('invites.user_id IS NOT NULL').order('invites.redeemed_at DESC')
|
2013-11-09 03:11:41 +08:00
|
|
|
end
|
|
|
|
|
2015-08-25 03:03:25 +08:00
|
|
|
def self.find_pending_invites_count(inviter)
|
|
|
|
find_all_invites_from(inviter, 0, nil).where('invites.user_id IS NULL').count
|
|
|
|
end
|
|
|
|
|
|
|
|
def self.find_redeemed_invites_count(inviter)
|
|
|
|
find_all_invites_from(inviter, 0, nil).where('invites.user_id IS NOT NULL').count
|
|
|
|
end
|
|
|
|
|
2013-11-09 03:11:41 +08:00
|
|
|
def self.filter_by(email_or_username)
|
|
|
|
if email_or_username
|
|
|
|
where(
|
|
|
|
'(LOWER(invites.email) LIKE :filter) or (LOWER(users.username) LIKE :filter)',
|
|
|
|
filter: "%#{email_or_username.downcase}%"
|
|
|
|
)
|
|
|
|
else
|
2014-02-18 00:44:28 +08:00
|
|
|
all
|
2013-11-09 03:11:41 +08:00
|
|
|
end
|
|
|
|
end
|
2014-01-22 05:53:46 +08:00
|
|
|
|
|
|
|
def self.invalidate_for_email(email)
|
2014-05-06 21:41:59 +08:00
|
|
|
i = Invite.find_by(email: Email.downcase(email))
|
2014-01-22 05:53:46 +08:00
|
|
|
if i
|
|
|
|
i.invalidated_at = Time.zone.now
|
|
|
|
i.save
|
|
|
|
end
|
|
|
|
i
|
|
|
|
end
|
2014-05-28 04:14:37 +08:00
|
|
|
|
2014-07-04 04:06:49 +08:00
|
|
|
def self.redeem_from_email(email)
|
|
|
|
invite = Invite.find_by(email: Email.downcase(email))
|
|
|
|
if invite
|
|
|
|
InviteRedeemer.new(invite).redeem
|
|
|
|
end
|
|
|
|
invite
|
|
|
|
end
|
|
|
|
|
2014-07-15 19:10:35 +08:00
|
|
|
def self.redeem_from_token(token, email, username=nil, name=nil, topic_id=nil)
|
2014-07-14 23:56:26 +08:00
|
|
|
invite = Invite.find_by(invite_key: token)
|
|
|
|
if invite
|
|
|
|
invite.update_column(:email, email)
|
2014-07-17 05:40:38 +08:00
|
|
|
invite.topic_invites.create!(invite_id: invite.id, topic_id: topic_id) if topic_id && Topic.find_by_id(topic_id) && !invite.topic_invites.pluck(:topic_id).include?(topic_id)
|
2014-07-14 23:56:26 +08:00
|
|
|
user = InviteRedeemer.new(invite, username, name).redeem
|
|
|
|
end
|
|
|
|
user
|
|
|
|
end
|
|
|
|
|
2014-10-07 02:48:56 +08:00
|
|
|
def resend_invite
|
|
|
|
self.update_columns(created_at: Time.zone.now, updated_at: Time.zone.now)
|
|
|
|
Jobs.enqueue(:invite_email, invite_id: self.id)
|
|
|
|
end
|
|
|
|
|
2016-06-03 03:09:02 +08:00
|
|
|
def self.resend_all_invites_from(user_id)
|
|
|
|
Invite.where('invites.user_id IS NULL AND invites.email IS NOT NULL AND invited_by_id = ?', user_id).find_each do |invite|
|
2017-07-02 00:20:34 +08:00
|
|
|
invite.resend_invite
|
2016-06-03 03:09:02 +08:00
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2017-06-29 22:32:07 +08:00
|
|
|
def self.rescind_all_invites_from(user)
|
|
|
|
Invite.where('invites.user_id IS NULL AND invites.email IS NOT NULL AND invited_by_id = ?', user.id).find_each do |invite|
|
2017-07-02 00:20:34 +08:00
|
|
|
invite.trash!(user)
|
2017-06-29 22:32:07 +08:00
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2015-01-20 02:50:01 +08:00
|
|
|
def limit_invites_per_day
|
2015-02-11 14:45:46 +08:00
|
|
|
RateLimiter.new(invited_by, "invites-per-day", SiteSetting.max_invites_per_day, 1.day.to_i)
|
2015-01-20 02:50:01 +08:00
|
|
|
end
|
|
|
|
|
2014-05-28 04:14:37 +08:00
|
|
|
def self.base_directory
|
2014-11-26 00:55:09 +08:00
|
|
|
File.join(Rails.root, "public", "uploads", "csv", RailsMultisite::ConnectionManagement.current_db)
|
2014-05-28 04:14:37 +08:00
|
|
|
end
|
|
|
|
|
2016-12-05 00:06:35 +08:00
|
|
|
def self.create_csv(file, name)
|
|
|
|
extension = File.extname(file.original_filename)
|
|
|
|
path = "#{Invite.base_directory}/#{name}#{extension}"
|
|
|
|
FileUtils.mkdir_p(Pathname.new(path).dirname)
|
|
|
|
File.open(path, "wb") { |f| f << file.tempfile.read }
|
|
|
|
path
|
2014-05-28 04:14:37 +08:00
|
|
|
end
|
2013-02-06 03:16:51 +08:00
|
|
|
end
|
2013-05-24 10:48:32 +08:00
|
|
|
|
|
|
|
# == Schema Information
|
|
|
|
#
|
|
|
|
# Table name: invites
|
|
|
|
#
|
2014-02-07 08:07:36 +08:00
|
|
|
# id :integer not null, primary key
|
|
|
|
# invite_key :string(32) not null
|
2016-02-23 07:33:53 +08:00
|
|
|
# email :string
|
2014-02-07 08:07:36 +08:00
|
|
|
# invited_by_id :integer not null
|
|
|
|
# user_id :integer
|
|
|
|
# redeemed_at :datetime
|
2014-08-27 13:19:25 +08:00
|
|
|
# created_at :datetime not null
|
|
|
|
# updated_at :datetime not null
|
2014-02-07 08:07:36 +08:00
|
|
|
# deleted_at :datetime
|
|
|
|
# deleted_by_id :integer
|
|
|
|
# invalidated_at :datetime
|
2016-10-31 17:32:11 +08:00
|
|
|
# moderator :boolean default(FALSE), not null
|
2017-06-30 18:39:37 +08:00
|
|
|
# custom_message :text
|
2013-05-24 10:48:32 +08:00
|
|
|
#
|
|
|
|
# Indexes
|
|
|
|
#
|
2014-07-30 01:57:08 +08:00
|
|
|
# index_invites_on_email_and_invited_by_id (email,invited_by_id)
|
2013-05-24 10:48:32 +08:00
|
|
|
# index_invites_on_invite_key (invite_key) UNIQUE
|
|
|
|
#
|