1 # Pleroma: A lightweight social networking server
2 # Copyright © 2017-2019 Pleroma Authors <https://pleroma.social/>
3 # SPDX-License-Identifier: AGPL-3.0-only
5 defmodule Pleroma.Web.AdminAPI.AdminAPIController do
6 use Pleroma.Web, :controller
8 alias Pleroma.Web.ActivityPub.Relay
10 import Pleroma.Web.ControllerHelper, only: [json_response: 3]
14 action_fallback(:errors)
16 def user_delete(conn, %{"nickname" => nickname}) do
17 User.get_by_nickname(nickname)
26 %{"nickname" => nickname, "email" => email, "password" => password}
33 password_confirmation: password,
37 changeset = User.register_changeset(%User{}, user_data, confirmed: true)
38 {:ok, user} = User.register(changeset)
41 |> json(user.nickname)
44 def tag_users(conn, %{"nicknames" => nicknames, "tags" => tags}) do
45 with {:ok, _} <- User.tag(nicknames, tags),
46 do: json_response(conn, :no_content, "")
49 def untag_users(conn, %{"nicknames" => nicknames, "tags" => tags}) do
50 with {:ok, _} <- User.untag(nicknames, tags),
51 do: json_response(conn, :no_content, "")
54 def right_add(conn, %{"permission_group" => permission_group, "nickname" => nickname})
55 when permission_group in ["moderator", "admin"] do
56 user = User.get_by_nickname(nickname)
60 |> Map.put("is_" <> permission_group, true)
62 info_cng = User.Info.admin_api_update(user.info, info)
66 |> Ecto.Changeset.change()
67 |> Ecto.Changeset.put_embed(:info, info_cng)
69 {:ok, _user} = User.update_and_set_cache(cng)
74 def right_add(conn, _) do
77 |> json(%{error: "No such permission_group"})
80 def right_get(conn, %{"nickname" => nickname}) do
81 user = User.get_by_nickname(nickname)
85 is_moderator: user.info.is_moderator,
86 is_admin: user.info.is_admin
91 %{assigns: %{user: %User{:nickname => admin_nickname}}} = conn,
93 "permission_group" => permission_group,
94 "nickname" => nickname
97 when permission_group in ["moderator", "admin"] do
98 if admin_nickname == nickname do
101 |> json(%{error: "You can't revoke your own admin status."})
103 user = User.get_by_nickname(nickname)
107 |> Map.put("is_" <> permission_group, false)
109 info_cng = User.Info.admin_api_update(user.info, info)
112 Ecto.Changeset.change(user)
113 |> Ecto.Changeset.put_embed(:info, info_cng)
115 {:ok, _user} = User.update_and_set_cache(cng)
121 def right_delete(conn, _) do
124 |> json(%{error: "No such permission_group"})
127 def relay_follow(conn, %{"relay_url" => target}) do
128 with {:ok, _message} <- Relay.follow(target) do
138 def relay_unfollow(conn, %{"relay_url" => target}) do
139 with {:ok, _message} <- Relay.unfollow(target) do
149 @doc "Sends registration invite via email"
150 def email_invite(%{assigns: %{user: user}} = conn, %{"email" => email} = params) do
152 Pleroma.Config.get([:instance, :invites_enabled]) &&
153 !Pleroma.Config.get([:instance, :registrations_open]),
154 {:ok, invite_token} <- Pleroma.UserInviteToken.create_token(),
156 Pleroma.UserEmail.user_invitation_email(user, invite_token, email, params["name"]),
157 {:ok, _} <- Pleroma.Mailer.deliver(email) do
158 json_response(conn, :no_content, "")
162 @doc "Get a account registeration invite token (base64 string)"
163 def get_invite_token(conn, _params) do
164 {:ok, token} = Pleroma.UserInviteToken.create_token()
170 @doc "Get a password reset token (base64 string) for given nickname"
171 def get_password_reset(conn, %{"nickname" => nickname}) do
172 (%User{local: true} = user) = User.get_by_nickname(nickname)
173 {:ok, token} = Pleroma.PasswordResetToken.create_token(user)
179 def errors(conn, {:param_cast, _}) do
182 |> json("Invalid parameters")
185 def errors(conn, _) do
188 |> json("Something went wrong")