1 # Pleroma: A lightweight social networking server
2 # Copyright © 2017-2018 Pleroma Authors <https://pleroma.social/>
3 # SPDX-License-Identifier: AGPL-3.0-only
5 defmodule Pleroma.Web.AdminAPI.AdminAPIController do
6 use Pleroma.Web, :controller
8 alias Pleroma.Web.ActivityPub.Relay
10 import Pleroma.Web.ControllerHelper, only: [json_response: 3]
14 action_fallback(:errors)
16 def user_delete(conn, %{"nickname" => nickname}) do
17 user = User.get_by_nickname(nickname)
19 if user.local == true do
31 %{"nickname" => nickname, "email" => email, "password" => password}
38 password_confirmation: password,
42 changeset = User.register_changeset(%User{}, user_data, confirmed: true)
43 {:ok, user} = User.register(changeset)
46 |> json(user.nickname)
49 def tag_users(conn, %{"nicknames" => nicknames, "tags" => tags}) do
50 with {:ok, _} <- User.tag(nicknames, tags),
51 do: json_response(conn, :no_content, "")
54 def untag_users(conn, %{"nicknames" => nicknames, "tags" => tags}) do
55 with {:ok, _} <- User.untag(nicknames, tags),
56 do: json_response(conn, :no_content, "")
59 def right_add(conn, %{"permission_group" => permission_group, "nickname" => nickname})
60 when permission_group in ["moderator", "admin"] do
61 user = User.get_by_nickname(nickname)
65 |> Map.put("is_" <> permission_group, true)
67 info_cng = User.Info.admin_api_update(user.info, info)
71 |> Ecto.Changeset.change()
72 |> Ecto.Changeset.put_embed(:info, info_cng)
74 {:ok, _user} = User.update_and_set_cache(cng)
79 def right_add(conn, _) do
82 |> json(%{error: "No such permission_group"})
85 def right_get(conn, %{"nickname" => nickname}) do
86 user = User.get_by_nickname(nickname)
90 is_moderator: user.info.is_moderator,
91 is_admin: user.info.is_admin
96 %{assigns: %{user: %User{:nickname => admin_nickname}}} = conn,
98 "permission_group" => permission_group,
99 "nickname" => nickname
102 when permission_group in ["moderator", "admin"] do
103 if admin_nickname == nickname do
106 |> json(%{error: "You can't revoke your own admin status."})
108 user = User.get_by_nickname(nickname)
112 |> Map.put("is_" <> permission_group, false)
114 info_cng = User.Info.admin_api_update(user.info, info)
117 Ecto.Changeset.change(user)
118 |> Ecto.Changeset.put_embed(:info, info_cng)
120 {:ok, _user} = User.update_and_set_cache(cng)
126 def right_delete(conn, _) do
129 |> json(%{error: "No such permission_group"})
132 def relay_follow(conn, %{"relay_url" => target}) do
133 with {:ok, _message} <- Relay.follow(target) do
143 def relay_unfollow(conn, %{"relay_url" => target}) do
144 with {:ok, _message} <- Relay.unfollow(target) do
154 @doc "Sends registration invite via email"
155 def email_invite(%{assigns: %{user: user}} = conn, %{"email" => email} = params) do
157 Pleroma.Config.get([:instance, :invites_enabled]) &&
158 !Pleroma.Config.get([:instance, :registrations_open]),
159 {:ok, invite_token} <- Pleroma.UserInviteToken.create_token(),
161 Pleroma.UserEmail.user_invitation_email(user, invite_token, email, params["name"]),
162 {:ok, _} <- Pleroma.Mailer.deliver(email) do
163 json_response(conn, :no_content, "")
167 @doc "Get a account registeration invite token (base64 string)"
168 def get_invite_token(conn, _params) do
169 {:ok, token} = Pleroma.UserInviteToken.create_token()
175 @doc "Get a password reset token (base64 string) for given nickname"
176 def get_password_reset(conn, %{"nickname" => nickname}) do
177 (%User{local: true} = user) = User.get_by_nickname(nickname)
178 {:ok, token} = Pleroma.PasswordResetToken.create_token(user)
184 def errors(conn, {:param_cast, _}) do
187 |> json("Invalid parameters")
190 def errors(conn, _) do
193 |> json("Something went wrong")