1 # Pleroma: A lightweight social networking server
2 # Copyright © 2017-2019 Pleroma Authors <https://pleroma.social/>
3 # SPDX-License-Identifier: AGPL-3.0-only
5 defmodule Pleroma.Web.AdminAPI.AdminAPIController do
8 use Pleroma.Web, :controller
10 alias Pleroma.Web.ActivityPub.Relay
11 alias Pleroma.Web.MastodonAPI.Admin.AccountView
13 import Pleroma.Web.ControllerHelper, only: [json_response: 3]
17 action_fallback(:errors)
19 def user_delete(conn, %{"nickname" => nickname}) do
20 User.get_by_nickname(nickname)
29 %{"nickname" => nickname, "email" => email, "password" => password}
36 password_confirmation: password,
40 changeset = User.register_changeset(%User{}, user_data, confirmed: true)
41 {:ok, user} = User.register(changeset)
44 |> json(user.nickname)
47 def user_toggle_activation(conn, %{"nickname" => nickname}) do
48 user = User.get_by_nickname(nickname)
50 {:ok, updated_user} = User.deactivate(user, !user.info.deactivated)
53 |> json(AccountView.render("show.json", %{user: updated_user}))
56 def tag_users(conn, %{"nicknames" => nicknames, "tags" => tags}) do
57 with {:ok, _} <- User.tag(nicknames, tags),
58 do: json_response(conn, :no_content, "")
61 def untag_users(conn, %{"nicknames" => nicknames, "tags" => tags}) do
62 with {:ok, _} <- User.untag(nicknames, tags),
63 do: json_response(conn, :no_content, "")
66 # def list_users(conn, params) do
67 # {page, page_size} = page_params(params)
69 # with {:ok, users, count} <- User.all_for_admin(page, page_size),
73 # AccountView.render("index.json",
76 # page_size: page_size
81 def list_users(%{assigns: %{user: admin}} = conn, params) do
82 {page, page_size} = page_params(params)
84 with {:ok, users, count} <-
85 User.search_for_admin(%{
86 query: params["query"],
88 local: params["local_only"] == "true",
95 AccountView.render("index.json",
103 def right_add(conn, %{"permission_group" => permission_group, "nickname" => nickname})
104 when permission_group in ["moderator", "admin"] do
105 user = User.get_by_nickname(nickname)
109 |> Map.put("is_" <> permission_group, true)
111 info_cng = User.Info.admin_api_update(user.info, info)
115 |> Ecto.Changeset.change()
116 |> Ecto.Changeset.put_embed(:info, info_cng)
118 {:ok, _user} = User.update_and_set_cache(cng)
123 def right_add(conn, _) do
126 |> json(%{error: "No such permission_group"})
129 def right_get(conn, %{"nickname" => nickname}) do
130 user = User.get_by_nickname(nickname)
134 is_moderator: user.info.is_moderator,
135 is_admin: user.info.is_admin
140 %{assigns: %{user: %User{:nickname => admin_nickname}}} = conn,
142 "permission_group" => permission_group,
143 "nickname" => nickname
146 when permission_group in ["moderator", "admin"] do
147 if admin_nickname == nickname do
150 |> json(%{error: "You can't revoke your own admin status."})
152 user = User.get_by_nickname(nickname)
156 |> Map.put("is_" <> permission_group, false)
158 info_cng = User.Info.admin_api_update(user.info, info)
161 Ecto.Changeset.change(user)
162 |> Ecto.Changeset.put_embed(:info, info_cng)
164 {:ok, _user} = User.update_and_set_cache(cng)
170 def right_delete(conn, _) do
173 |> json(%{error: "No such permission_group"})
176 def set_activation_status(conn, %{"nickname" => nickname, "status" => status}) do
177 with {:ok, status} <- Ecto.Type.cast(:boolean, status),
178 %User{} = user <- User.get_by_nickname(nickname),
179 {:ok, _} <- User.deactivate(user, !status),
180 do: json_response(conn, :no_content, "")
183 def relay_follow(conn, %{"relay_url" => target}) do
184 with {:ok, _message} <- Relay.follow(target) do
194 def relay_unfollow(conn, %{"relay_url" => target}) do
195 with {:ok, _message} <- Relay.unfollow(target) do
205 @doc "Sends registration invite via email"
206 def email_invite(%{assigns: %{user: user}} = conn, %{"email" => email} = params) do
208 Pleroma.Config.get([:instance, :invites_enabled]) &&
209 !Pleroma.Config.get([:instance, :registrations_open]),
210 {:ok, invite_token} <- Pleroma.UserInviteToken.create_token(),
212 Pleroma.UserEmail.user_invitation_email(user, invite_token, email, params["name"]),
213 {:ok, _} <- Pleroma.Mailer.deliver(email) do
214 json_response(conn, :no_content, "")
218 @doc "Get a account registeration invite token (base64 string)"
219 def get_invite_token(conn, _params) do
220 {:ok, token} = Pleroma.UserInviteToken.create_token()
226 @doc "Get a password reset token (base64 string) for given nickname"
227 def get_password_reset(conn, %{"nickname" => nickname}) do
228 (%User{local: true} = user) = User.get_by_nickname(nickname)
229 {:ok, token} = Pleroma.PasswordResetToken.create_token(user)
235 def errors(conn, {:param_cast, _}) do
238 |> json("Invalid parameters")
241 def errors(conn, _) do
244 |> json("Something went wrong")
247 defp page_params(params) do
248 {get_page(params["page"]), get_page_size(params["page_size"])}
251 defp get_page(page_string) when is_nil(page_string), do: 1
253 defp get_page(page_string) do
254 case Integer.parse(page_string) do
260 defp get_page_size(page_size_string) when is_nil(page_size_string), do: @users_page_size
262 defp get_page_size(page_size_string) do
263 case Integer.parse(page_size_string) do
264 {page_size, _} -> page_size
265 :error -> @users_page_size