# frozen_string_literal: true class FinishInstallationController < ApplicationController skip_before_action :check_xhr, :preload_json, :redirect_to_login_if_required layout "finish_installation" before_action :ensure_no_admins, except: %w[confirm_email resend_email] def index end def register @allowed_emails = find_allowed_emails @user = User.new if request.post? email = params[:email].strip raise Discourse::InvalidParameters.new if @allowed_emails.exclude?(email) if existing_user = User.find_by_email(email) @user = existing_user send_signup_email return redirect_confirm(email) end @user.email = email @user.username = params[:username] @user.password = params[:password] @user.password_required! if @user.save @user.change_trust_level!(1) if @user.trust_level < 1 send_signup_email redirect_confirm(@user.email) end end end def confirm_email @email = session[:registered_email] end def resend_email @email = session[:registered_email] @user = User.find_by_email(@email) send_signup_email if @user.present? end protected def send_signup_email return if @user.active && @user.email_confirmed? email_token = @user.email_tokens.create!(email: @user.email, scope: EmailToken.scopes[:signup]) EmailToken.enqueue_signup_email(email_token) end def redirect_confirm(email) session[:registered_email] = email redirect_to(finish_installation_confirm_email_path) end def find_allowed_emails unless GlobalSetting.respond_to?(:developer_emails) && GlobalSetting.developer_emails.present? return [] end GlobalSetting.developer_emails.split(",").map(&:strip) end def ensure_no_admins preload_anonymous_data raise Discourse::InvalidAccess.new unless SiteSetting.has_login_hint? end end