fix: switch to new permissions enum

This commit is contained in:
Paul Makles
2022-02-22 20:34:23 +00:00
parent aab85fa143
commit 7befd77c5b
37 changed files with 128 additions and 174 deletions

2
Cargo.lock generated
View File

@@ -2163,7 +2163,7 @@ dependencies = [
[[package]] [[package]]
name = "optional_struct" name = "optional_struct"
version = "0.2.0" version = "0.2.0"
source = "git+https://github.com/insertish/OptionalStruct?rev=2011de17db6ecb210fddabe3d79ade865efaf4ee#2011de17db6ecb210fddabe3d79ade865efaf4ee" source = "git+https://github.com/insertish/OptionalStruct?rev=b57e8e8e77db6e1a7f68c715d0d1760cb64feb0c#b57e8e8e77db6e1a7f68c715d0d1760cb64feb0c"
dependencies = [ dependencies = [
"quote 0.3.15", "quote 0.3.15",
"syn 0.11.11", "syn 0.11.11",

View File

@@ -1,6 +1,6 @@
use revolt_quark::{ use revolt_quark::{
models::{server_member::MemberCompositeKey, Channel, Member, User}, models::{server_member::MemberCompositeKey, Channel, Member, User},
perms, ChannelPermission, Db, EmptyResponse, Error, Ref, Result, ServerPermission, perms, Db, EmptyResponse, Error, Permission, Ref, Result,
}; };
use rocket::serde::json::Json; use rocket::serde::json::Json;
@@ -34,13 +34,11 @@ pub async fn invite_bot(
let server = db.fetch_server(&server).await?; let server = db.fetch_server(&server).await?;
if !perms(&user) if !perms(&user)
.server(&server) .server(&server)
.calc_server(db) .calc(db)
.await .await
.get_manage_server() .can_manage_server()
{ {
return Err(Error::MissingPermission { return Error::from_permission(Permission::ManageServer);
permission: ServerPermission::ManageServer as i32,
});
} }
let member = Member { let member = Member {
@@ -57,13 +55,11 @@ pub async fn invite_bot(
let channel = db.fetch_channel(&group).await?; let channel = db.fetch_channel(&group).await?;
if !perms(&user) if !perms(&user)
.channel(&channel) .channel(&channel)
.calc_channel(db) .calc(db)
.await .await
.get_invite_others() .can_invite_others()
{ {
return Err(Error::MissingPermission { return Error::from_permission(Permission::InviteOthers);
permission: ChannelPermission::InviteOthers as i32,
});
} }
if let Channel::Group { id, .. } = channel { if let Channel::Group { id, .. } = channel {

View File

@@ -5,9 +5,9 @@ pub async fn req(db: &Db, user: User, target: Ref, message: Ref) -> Result<Empty
let channel = target.as_channel(db).await?; let channel = target.as_channel(db).await?;
if !perms(&user) if !perms(&user)
.channel(&channel) .channel(&channel)
.calc_channel(db) .calc(db)
.await .await
.get_view() .can_view_channel()
{ {
return Err(Error::NotFound); return Err(Error::NotFound);
} }

View File

@@ -1,14 +1,14 @@
use revolt_quark::{ use revolt_quark::{
models::{channel::PartialChannel, Channel, User}, models::{channel::PartialChannel, Channel, User},
perms, ChannelPermission, Db, EmptyResponse, Error, Ref, Result, perms, Db, EmptyResponse, Error, Permission, Ref, Result,
}; };
#[delete("/<target>")] #[delete("/<target>")]
pub async fn req(db: &Db, user: User, target: Ref) -> Result<EmptyResponse> { pub async fn req(db: &Db, user: User, target: Ref) -> Result<EmptyResponse> {
let channel = target.as_channel(db).await?; let channel = target.as_channel(db).await?;
let perm = perms(&user).channel(&channel).calc_channel(db).await; let perm = perms(&user).channel(&channel).calc(db).await;
if !perm.get_view() { if !perm.can_view_channel() {
return Err(Error::NotFound); return Err(Error::NotFound);
} }
@@ -30,12 +30,10 @@ pub async fn req(db: &Db, user: User, target: Ref) -> Result<EmptyResponse> {
.await .await
.map(|_| EmptyResponse), .map(|_| EmptyResponse),
Channel::TextChannel { .. } | Channel::VoiceChannel { .. } => { Channel::TextChannel { .. } | Channel::VoiceChannel { .. } => {
if perm.get_manage_channel() { if perm.can_manage_channel() {
channel.delete(db).await.map(|_| EmptyResponse) channel.delete(db).await.map(|_| EmptyResponse)
} else { } else {
Err(Error::MissingPermission { Error::from_permission(Permission::ManageChannel)
permission: ChannelPermission::ManageChannel as i32,
})
} }
} }
} }

View File

@@ -3,7 +3,7 @@ use revolt_quark::{
channel::{Channel, FieldsChannel, PartialChannel}, channel::{Channel, FieldsChannel, PartialChannel},
File, User, File, User,
}, },
perms, ChannelPermission, Database, Error, Ref, Result, perms, Database, Error, Permission, Ref, Result,
}; };
use rocket::{serde::json::Json, State}; use rocket::{serde::json::Json, State};
@@ -40,13 +40,11 @@ pub async fn req(
let mut channel = target.as_channel(db).await?; let mut channel = target.as_channel(db).await?;
if !perms(&user) if !perms(&user)
.channel(&channel) .channel(&channel)
.calc_channel(db) .calc(db)
.await .await
.get_manage_channel() .can_manage_channel()
{ {
return Err(Error::MissingPermission { return Error::from_permission(Permission::ManageChannel);
permission: ChannelPermission::ManageChannel as i32,
});
} }
if data.name.is_none() if data.name.is_none()

View File

@@ -1,6 +1,6 @@
use revolt_quark::{ use revolt_quark::{
models::{Channel, User}, models::{Channel, User},
perms, ChannelPermission, Database, Error, Ref, Result, perms, Database, Error, Permission, Ref, Result,
}; };
use rocket::{serde::json::Json, State}; use rocket::{serde::json::Json, State};
@@ -11,14 +11,12 @@ pub async fn req(db: &State<Database>, user: User, target: Ref) -> Result<Json<C
if perms(&user) if perms(&user)
.channel(&target) .channel(&target)
.calc_channel(db) .calc(db)
.await .await
.get_view() .can_view_channel()
{ {
Ok(Json(target)) Ok(Json(target))
} else { } else {
Err(Error::MissingPermission { Error::from_permission(Permission::ViewChannel)
permission: ChannelPermission::View as i32,
})
} }
} }

View File

@@ -1,6 +1,6 @@
use revolt_quark::{ use revolt_quark::{
models::{Channel, User}, models::{Channel, User},
perms, ChannelPermission, Db, EmptyResponse, Error, Ref, Result, perms, Db, EmptyResponse, Error, Permission, Ref, Result,
}; };
#[put("/<target>/recipients/<member>")] #[put("/<target>/recipients/<member>")]
@@ -8,13 +8,11 @@ pub async fn req(db: &Db, user: User, target: Ref, member: Ref) -> Result<EmptyR
let channel = target.as_channel(db).await?; let channel = target.as_channel(db).await?;
if !perms(&user) if !perms(&user)
.channel(&channel) .channel(&channel)
.calc_channel(db) .calc(db)
.await .await
.get_invite_others() .can_invite_others()
{ {
return Err(Error::MissingPermission { return Error::from_permission(Permission::InviteOthers);
permission: ChannelPermission::InviteOthers as i32,
});
} }
match &channel { match &channel {

View File

@@ -1,6 +1,6 @@
use revolt_quark::{ use revolt_quark::{
models::{Channel, User}, models::{Channel, User},
Db, EmptyResponse, Error, Ref, Result, Db, EmptyResponse, Error, Permission, Ref, Result,
}; };
#[delete("/<target>/recipients/<member>")] #[delete("/<target>/recipients/<member>")]
@@ -12,7 +12,7 @@ pub async fn req(db: &Db, user: User, target: Ref, member: Ref) -> Result<EmptyR
owner, recipients, .. owner, recipients, ..
} => { } => {
if &user.id != owner { if &user.id != owner {
return Err(Error::MissingPermission { permission: 0 }); return Error::from_permission(Permission::ManageChannel);
} }
let member = member.as_user(db).await?; let member = member.as_user(db).await?;

View File

@@ -1,6 +1,6 @@
use revolt_quark::{ use revolt_quark::{
models::{Invite, User}, models::{Invite, User},
perms, ChannelPermission, Db, Error, Ref, Result, perms, Db, Error, Permission, Ref, Result,
}; };
use rocket::serde::json::Json; use rocket::serde::json::Json;
@@ -11,13 +11,11 @@ pub async fn req(db: &Db, user: User, target: Ref) -> Result<Json<Invite>> {
if !perms(&user) if !perms(&user)
.channel(&channel) .channel(&channel)
.calc_channel(db) .calc(db)
.await .await
.get_invite_others() .can_invite_others()
{ {
return Err(Error::MissingPermission { return Error::from_permission(Permission::InviteOthers);
permission: ChannelPermission::InviteOthers as i32,
});
} }
Invite::create(db, &user, &channel).await.map(Json) Invite::create(db, &user, &channel).await.map(Json)

View File

@@ -10,9 +10,9 @@ pub async fn req(db: &Db, user: User, target: Ref) -> Result<Json<Vec<User>>> {
let channel = target.as_channel(db).await?; let channel = target.as_channel(db).await?;
if !perms(&user) if !perms(&user)
.channel(&channel) .channel(&channel)
.calc_channel(db) .calc(db)
.await .await
.get_view() .can_view_channel()
{ {
return Err(Error::NotFound); return Err(Error::NotFound);
} }

View File

@@ -1,4 +1,4 @@
use revolt_quark::{models::User, perms, ChannelPermission, Db, EmptyResponse, Error, Ref, Result}; use revolt_quark::{models::User, perms, Db, EmptyResponse, Error, Permission, Ref, Result};
#[delete("/<target>/messages/<msg>")] #[delete("/<target>/messages/<msg>")]
pub async fn req(db: &Db, user: User, target: Ref, msg: Ref) -> Result<EmptyResponse> { pub async fn req(db: &Db, user: User, target: Ref, msg: Ref) -> Result<EmptyResponse> {
@@ -11,14 +11,12 @@ pub async fn req(db: &Db, user: User, target: Ref, msg: Ref) -> Result<EmptyResp
|| !{ || !{
perms(&user) perms(&user)
.channel(&target.as_channel(db).await?) .channel(&target.as_channel(db).await?)
.calc_channel(db) .calc(db)
.await .await
.get_manage_messages() .can_manage_messages()
} }
{ {
return Err(Error::MissingPermission { return Error::from_permission(Permission::ManageMessages);
permission: ChannelPermission::ManageMessages as i32,
});
} }
message.delete(db).await.map(|_| EmptyResponse) message.delete(db).await.map(|_| EmptyResponse)

View File

@@ -10,9 +10,9 @@ pub async fn req(db: &Db, user: User, target: Ref, msg: Ref) -> Result<Json<Mess
let channel = target.as_channel(db).await?; let channel = target.as_channel(db).await?;
if !perms(&user) if !perms(&user)
.channel(&channel) .channel(&channel)
.calc_channel(db) .calc(db)
.await .await
.get_view() .can_view_channel()
{ {
return Err(Error::NotFound); return Err(Error::NotFound);
} }

View File

@@ -44,9 +44,9 @@ pub async fn req(
let channel = target.as_channel(db).await?; let channel = target.as_channel(db).await?;
if !perms(&user) if !perms(&user)
.channel(&channel) .channel(&channel)
.calc_channel(db) .calc(db)
.await .await
.get_view() .can_view_channel()
{ {
return Err(Error::NotFound); return Err(Error::NotFound);
} }

View File

@@ -41,9 +41,9 @@ pub async fn req(
let channel = target.as_channel(db).await?; let channel = target.as_channel(db).await?;
if !perms(&user) if !perms(&user)
.channel(&channel) .channel(&channel)
.calc_channel(db) .calc(db)
.await .await
.get_view() .can_view_channel()
{ {
return Err(Error::NotFound); return Err(Error::NotFound);
} }

View File

@@ -5,7 +5,7 @@ use revolt_quark::{
message::{Content, Masquerade, Reply, SendableEmbed}, message::{Content, Masquerade, Reply, SendableEmbed},
Message, User, Message, User,
}, },
perms, ChannelPermission, Db, Error, Ref, Result, perms, Db, Error, Permission, Ref, Result,
}; };
use regex::Regex; use regex::Regex;
@@ -51,12 +51,10 @@ pub async fn message_send(
idempotency.consume_nonce(data.nonce).await?; idempotency.consume_nonce(data.nonce).await?;
let channel = target.as_channel(db).await?; let channel = target.as_channel(db).await?;
let permissions = perms(&user).channel(&channel).calc_channel(db).await; let permissions = perms(&user).channel(&channel).calc(db).await;
if !permissions.get_send_message() { if !permissions.can_send_message() {
return Err(Error::MissingPermission { return Error::from_permission(Permission::SendMessage);
permission: ChannelPermission::SendMessage as i32,
});
} }
if data.content.is_empty() if data.content.is_empty()
@@ -82,10 +80,8 @@ pub async fn message_send(
} }
// 2. Verify permissions for masquerade. // 2. Verify permissions for masquerade.
if data.masquerade.is_some() && !permissions.get_masquerade() { if data.masquerade.is_some() && !permissions.can_masquerade() {
return Err(Error::MissingPermission { return Error::from_permission(Permission::Masquerade);
permission: ChannelPermission::Masquerade as i32,
});
} }
// 3. Verify replies are valid. // 3. Verify replies are valid.
@@ -121,10 +117,8 @@ pub async fn message_send(
// 4. Add attachments to message. // 4. Add attachments to message.
let mut attachments = vec![]; let mut attachments = vec![];
if let Some(ids) = &data.attachments { if let Some(ids) = &data.attachments {
if !ids.is_empty() && !permissions.get_upload_files() { if !ids.is_empty() && !permissions.can_upload_files() {
return Err(Error::MissingPermission { return Error::from_permission(Permission::UploadFiles);
permission: ChannelPermission::UploadFiles as i32,
});
} }
// ! FIXME: move this to app config // ! FIXME: move this to app config

View File

@@ -3,7 +3,7 @@ use serde::{Deserialize, Serialize};
use revolt_quark::{ use revolt_quark::{
models::{Channel, User}, models::{Channel, User},
perms, ChannelPermission, Db, Error, Ref, Result, perms, Db, Error, Permission, Ref, Result,
}; };
#[derive(Serialize, Deserialize)] #[derive(Serialize, Deserialize)]
@@ -22,15 +22,15 @@ pub async fn req(
let mut channel = target.as_channel(db).await?; let mut channel = target.as_channel(db).await?;
if !perms(&user) if !perms(&user)
.channel(&channel) .channel(&channel)
.calc_channel(db) .calc(db)
.await .await
.get_manage_channel() .can_manage_permissions()
{ {
return Err(Error::MissingPermission { return Error::from_permission(Permission::ManageChannel);
permission: ChannelPermission::ManageChannel as i32,
});
} }
// ! FIXME_PERMISSIONS
channel channel
.set_role_permission(db, &role, data.permissions) .set_role_permission(db, &role, data.permissions)
.await?; .await?;

View File

@@ -3,7 +3,7 @@ use serde::{Deserialize, Serialize};
use revolt_quark::{ use revolt_quark::{
models::{channel::PartialChannel, Channel, User}, models::{channel::PartialChannel, Channel, User},
perms, ChannelPermission, Db, Error, Ref, Result, perms, Db, Error, Permission, Ref, Result,
}; };
#[derive(Serialize, Deserialize)] #[derive(Serialize, Deserialize)]
@@ -16,13 +16,11 @@ pub async fn req(db: &Db, user: User, target: Ref, data: Json<Data>) -> Result<J
let mut channel = target.as_channel(db).await?; let mut channel = target.as_channel(db).await?;
if !perms(&user) if !perms(&user)
.channel(&channel) .channel(&channel)
.calc_channel(db) .calc(db)
.await .await
.get_manage_channel() .can_manage_permissions()
{ {
return Err(Error::MissingPermission { return Error::from_permission(Permission::ManagePermissions);
permission: ChannelPermission::ManageChannel as i32,
});
} }
match &channel { match &channel {
@@ -39,6 +37,8 @@ pub async fn req(db: &Db, user: User, target: Ref, data: Json<Data>) -> Result<J
.await?; .await?;
} }
Channel::TextChannel { .. } | Channel::VoiceChannel { .. } => { Channel::TextChannel { .. } | Channel::VoiceChannel { .. } => {
// ! FIXME_PERMISSIONS
channel channel
.update( .update(
db, db,

View File

@@ -1,6 +1,6 @@
use revolt_quark::{ use revolt_quark::{
models::{Invite, User}, models::{Invite, User},
perms, Db, EmptyResponse, Error, Ref, Result, ServerPermission, perms, Db, EmptyResponse, Error, Permission, Ref, Result,
}; };
#[delete("/<target>")] #[delete("/<target>")]
@@ -15,13 +15,11 @@ pub async fn req(db: &Db, user: User, target: Ref) -> Result<EmptyResponse> {
let server = db.fetch_server(&server).await?; let server = db.fetch_server(&server).await?;
if !perms(&user) if !perms(&user)
.server(&server) .server(&server)
.calc_server(db) .calc(db)
.await .await
.get_manage_server() .can_manage_server()
{ {
return Err(Error::MissingPermission { return Error::from_permission(Permission::ManageServer);
permission: ServerPermission::ManageServer as i32,
});
} }
db.delete_invite(&code).await db.delete_invite(&code).await

View File

@@ -1,6 +1,6 @@
use revolt_quark::{ use revolt_quark::{
models::{ServerBan, User}, models::{ServerBan, User},
perms, Db, Error, Ref, Result, ServerPermission, perms, Db, Error, Permission, Ref, Result,
}; };
use rocket::serde::json::Json; use rocket::serde::json::Json;
@@ -28,17 +28,15 @@ pub async fn req(
let server = server.as_server(db).await?; let server = server.as_server(db).await?;
if !perms(&user) if !perms(&user)
.server(&server) .server(&server)
.calc_server(db) .calc(db)
.await .await
.get_ban_members() .can_ban_members()
{ {
return Err(Error::MissingPermission { return Error::from_permission(Permission::BanMembers);
permission: ServerPermission::BanMembers as i32,
});
} }
let member = target.as_member(db, &server.id).await?; let member = target.as_member(db, &server.id).await?;
// ! FIXME: calculate permission against member // ! FIXME_PERMISSIONS
let ban = ServerBan { let ban = ServerBan {
id: member.id, id: member.id,

View File

@@ -1,5 +1,5 @@
use revolt_quark::models::{File, ServerBan, User}; use revolt_quark::models::{File, ServerBan, User};
use revolt_quark::{perms, Db, Error, Ref, Result, ServerPermission}; use revolt_quark::{perms, Db, Error, Permission, Ref, Result};
use rocket::serde::json::Json; use rocket::serde::json::Json;
use serde::{Deserialize, Serialize}; use serde::{Deserialize, Serialize};
@@ -16,13 +16,11 @@ pub async fn req(db: &Db, user: User, target: Ref) -> Result<Json<Vec<ServerBan>
let server = target.as_server(db).await?; let server = target.as_server(db).await?;
if !perms(&user) if !perms(&user)
.server(&server) .server(&server)
.calc_server(db) .calc(db)
.await .await
.get_ban_members() .can_ban_members()
{ {
return Err(Error::MissingPermission { return Error::from_permission(Permission::BanMembers);
permission: ServerPermission::BanMembers as i32,
});
} }
db.fetch_bans(&server.id).await.map(Json) db.fetch_bans(&server.id).await.map(Json)

View File

@@ -1,17 +1,15 @@
use revolt_quark::{models::User, perms, Db, EmptyResponse, Error, Ref, Result, ServerPermission}; use revolt_quark::{models::User, perms, Db, EmptyResponse, Error, Permission, Ref, Result};
#[delete("/<server>/bans/<target>")] #[delete("/<server>/bans/<target>")]
pub async fn req(db: &Db, user: User, server: Ref, target: Ref) -> Result<EmptyResponse> { pub async fn req(db: &Db, user: User, server: Ref, target: Ref) -> Result<EmptyResponse> {
let server = server.as_server(db).await?; let server = server.as_server(db).await?;
if !perms(&user) if !perms(&user)
.server(&server) .server(&server)
.calc_server(db) .calc(db)
.await .await
.get_ban_members() .can_ban_members()
{ {
return Err(Error::MissingPermission { return Error::from_permission(Permission::BanMembers);
permission: ServerPermission::BanMembers as i32,
});
} }
let ban = target.as_ban(db, &server.id).await?; let ban = target.as_ban(db, &server.id).await?;

View File

@@ -2,7 +2,7 @@ use std::collections::HashMap;
use revolt_quark::{ use revolt_quark::{
models::{server::PartialServer, Channel, User}, models::{server::PartialServer, Channel, User},
perms, Db, Error, Ref, Result, ServerPermission, perms, Db, Error, Permission, Ref, Result,
}; };
use rocket::serde::json::Json; use rocket::serde::json::Json;
@@ -43,13 +43,11 @@ pub async fn req(db: &Db, user: User, target: Ref, info: Json<Data>) -> Result<J
let mut server = target.as_server(db).await?; let mut server = target.as_server(db).await?;
if !perms(&user) if !perms(&user)
.server(&server) .server(&server)
.calc_server(db) .calc(db)
.await .await
.get_manage_channels() .can_manage_channel()
{ {
return Err(Error::MissingPermission { return Error::from_permission(Permission::ManageChannel);
permission: ServerPermission::ManageChannels as i32,
});
} }
let id = Ulid::new().to_string(); let id = Ulid::new().to_string();

View File

@@ -1,6 +1,6 @@
use revolt_quark::{ use revolt_quark::{
models::{Invite, User}, models::{Invite, User},
perms, Db, Error, Ref, Result, ServerPermission, perms, Db, Error, Permission, Ref, Result,
}; };
use rocket::serde::json::Json; use rocket::serde::json::Json;
@@ -19,13 +19,11 @@ pub async fn req(db: &Db, user: User, target: Ref) -> Result<Json<Vec<Invite>>>
let server = target.as_server(db).await?; let server = target.as_server(db).await?;
if !perms(&user) if !perms(&user)
.server(&server) .server(&server)
.calc_server(db) .calc(db)
.await .await
.get_manage_server() .can_manage_server()
{ {
return Err(Error::MissingPermission { return Error::from_permission(Permission::ManageServer);
permission: ServerPermission::ManageServer as i32,
});
} }
db.fetch_invites_for_server(&server.id).await.map(Json) db.fetch_invites_for_server(&server.id).await.map(Json)

View File

@@ -33,8 +33,8 @@ pub async fn req(
.map_err(|error| Error::FailedValidation { error })?; .map_err(|error| Error::FailedValidation { error })?;
let server = server.as_server(db).await?; let server = server.as_server(db).await?;
let permissions = perms(&user).server(&server).calc_server(db).await; let permissions = perms(&user).server(&server).calc(db).await;
if !permissions.get_view() { if !permissions.can_view_channel() {
return Err(Error::NotFound); return Err(Error::NotFound);
} }

View File

@@ -9,9 +9,9 @@ pub async fn req(db: &Db, user: User, target: Ref, member: Ref) -> Result<Json<M
let server = target.as_server(db).await?; let server = target.as_server(db).await?;
if !perms(&user) if !perms(&user)
.server(&server) .server(&server)
.calc_server(db) .calc(db)
.await .await
.get_view() .can_view_channel()
{ {
return Err(Error::NotFound); return Err(Error::NotFound);
} }

View File

@@ -7,9 +7,9 @@ pub async fn req(db: &Db, user: User, target: Ref) -> Result<Value> {
let server = target.as_server(db).await?; let server = target.as_server(db).await?;
if !perms(&user) if !perms(&user)
.server(&server) .server(&server)
.calc_server(db) .calc(db)
.await .await
.get_view() .can_view_channel()
{ {
return Err(Error::NotFound); return Err(Error::NotFound);
} }

View File

@@ -1,21 +1,19 @@
use revolt_quark::{models::User, perms, Db, EmptyResponse, Error, Ref, Result, ServerPermission}; use revolt_quark::{models::User, perms, Db, EmptyResponse, Error, Permission, Ref, Result};
#[delete("/<target>/members/<member>")] #[delete("/<target>/members/<member>")]
pub async fn req(db: &Db, user: User, target: Ref, member: Ref) -> Result<EmptyResponse> { pub async fn req(db: &Db, user: User, target: Ref, member: Ref) -> Result<EmptyResponse> {
let server = target.as_server(db).await?; let server = target.as_server(db).await?;
if !perms(&user) if !perms(&user)
.server(&server) .server(&server)
.calc_server(db) .calc(db)
.await .await
.get_kick_members() .can_kick_members()
{ {
return Err(Error::MissingPermission { return Error::from_permission(Permission::KickMembers);
permission: ServerPermission::KickMembers as i32,
});
} }
let member = member.as_member(db, &server.id).await?; let member = member.as_member(db, &server.id).await?;
// ! FIXME: calculate permission against member // ! FIXME_PERMISSIONS
member.delete(db).await.map(|_| EmptyResponse) member.delete(db).await.map(|_| EmptyResponse)
} }

View File

@@ -28,9 +28,9 @@ pub async fn req(
let mut server = target.as_server(db).await?; let mut server = target.as_server(db).await?;
if !perms(&user) if !perms(&user)
.server(&server) .server(&server)
.calc_server(db) .calc(db)
.await .await
.get_manage_roles() .can_manage_permissions()
{ {
return Err(Error::NotFound); return Err(Error::NotFound);
} }

View File

@@ -24,9 +24,9 @@ pub async fn req(db: &Db, user: User, target: Ref, data: Json<Data>) -> Result<J
let mut server = target.as_server(db).await?; let mut server = target.as_server(db).await?;
if !perms(&user) if !perms(&user)
.server(&server) .server(&server)
.calc_server(db) .calc(db)
.await .await
.get_manage_roles() .can_manage_permissions()
{ {
return Err(Error::NotFound); return Err(Error::NotFound);
} }

View File

@@ -1,6 +1,6 @@
use revolt_quark::{ use revolt_quark::{
models::{server::Role, User}, models::{server::Role, User},
perms, Db, Error, Ref, Result, DEFAULT_PERMISSION_CHANNEL_SERVER, DEFAULT_SERVER_PERMISSION, perms, Db, Error, Ref, Result,
}; };
use rocket::serde::json::{Json, Value}; use rocket::serde::json::{Json, Value};
@@ -22,19 +22,16 @@ pub async fn req(db: &Db, user: User, target: Ref, data: Json<Data>) -> Result<V
let server = target.as_server(db).await?; let server = target.as_server(db).await?;
if !perms(&user) if !perms(&user)
.server(&server) .server(&server)
.calc_server(db) .calc(db)
.await .await
.get_manage_roles() .can_manage_roles()
{ {
return Err(Error::NotFound); return Err(Error::NotFound);
} }
let role = Role { let role = Role {
name: data.name, name: data.name,
permissions: ( permissions: (0_i32, 0_i32),
*DEFAULT_SERVER_PERMISSION as i32,
*DEFAULT_PERMISSION_CHANNEL_SERVER as i32,
),
..Default::default() ..Default::default()
}; };

View File

@@ -5,14 +5,14 @@ pub async fn req(db: &Db, user: User, target: Ref, role_id: String) -> Result<Em
let mut server = target.as_server(db).await?; let mut server = target.as_server(db).await?;
if !perms(&user) if !perms(&user)
.server(&server) .server(&server)
.calc_server(db) .calc(db)
.await .await
.get_manage_roles() .can_manage_roles()
{ {
return Err(Error::NotFound); return Err(Error::NotFound);
} }
// ! FIXME: check perms against role // ! FIXME_PERMISSIONS
if let Some(role) = server.roles.remove(&role_id) { if let Some(role) = server.roles.remove(&role_id) {
role.delete(db, &server.id, &role_id) role.delete(db, &server.id, &role_id)

View File

@@ -37,9 +37,9 @@ pub async fn req(
let mut server = target.as_server(db).await?; let mut server = target.as_server(db).await?;
if !perms(&user) if !perms(&user)
.server(&server) .server(&server)
.calc_server(db) .calc(db)
.await .await
.get_manage_roles() .can_manage_roles()
{ {
return Err(Error::NotFound); return Err(Error::NotFound);
} }

View File

@@ -5,9 +5,9 @@ pub async fn req(db: &Db, user: User, target: Ref) -> Result<EmptyResponse> {
let server = target.as_server(db).await?; let server = target.as_server(db).await?;
if !perms(&user) if !perms(&user)
.server(&server) .server(&server)
.calc_server(db) .calc(db)
.await .await
.get_view() .can_view_channel()
{ {
return Err(Error::NotFound); return Err(Error::NotFound);
} }

View File

@@ -2,7 +2,7 @@ use std::collections::HashMap;
use revolt_quark::{ use revolt_quark::{
models::{server_member::MemberCompositeKey, Channel, Member, Server, User}, models::{server_member::MemberCompositeKey, Channel, Member, Server, User},
Db, Error, Result, DEFAULT_PERMISSION_CHANNEL_SERVER, DEFAULT_SERVER_PERMISSION, Db, Error, Result,
}; };
use rocket::serde::json::Json; use rocket::serde::json::Json;
@@ -66,10 +66,7 @@ pub async fn req(db: &Db, user: User, info: Json<Data>) -> Result<Json<Server>>
description, description,
channels: vec![channel_id], channels: vec![channel_id],
nsfw: nsfw.unwrap_or(false), nsfw: nsfw.unwrap_or(false),
default_permissions: ( default_permissions: (0_i32, 0_i32),
*DEFAULT_SERVER_PERMISSION as i32,
*DEFAULT_PERMISSION_CHANNEL_SERVER as i32,
),
..Default::default() ..Default::default()
}; };

View File

@@ -3,7 +3,7 @@ use revolt_quark::{
server::{Category, FieldsServer, PartialServer, SystemMessageChannels}, server::{Category, FieldsServer, PartialServer, SystemMessageChannels},
File, Server, User, File, Server, User,
}, },
perms, Db, Error, Ref, Result, ServerPermission, perms, Db, Error, Permission, Ref, Result,
}; };
use rocket::serde::json::Json; use rocket::serde::json::Json;
@@ -38,8 +38,8 @@ pub async fn req(db: &Db, user: User, target: Ref, data: Json<Data>) -> Result<J
.map_err(|error| Error::FailedValidation { error })?; .map_err(|error| Error::FailedValidation { error })?;
let mut server = target.as_server(db).await?; let mut server = target.as_server(db).await?;
let permissions = perms(&user).server(&server).calc_server(db).await; let permissions = perms(&user).server(&server).calc(db).await;
if !permissions.get_view() { if !permissions.can_view_channel() {
return Err(Error::NotFound); return Err(Error::NotFound);
} }
@@ -63,15 +63,11 @@ pub async fn req(db: &Db, user: User, target: Ref, data: Json<Data>) -> Result<J
|| data.nsfw.is_some() || data.nsfw.is_some()
|| data.analytics.is_some() || data.analytics.is_some()
|| data.remove.is_some()) || data.remove.is_some())
&& !permissions.get_manage_server() && !permissions.can_manage_server()
{ {
return Err(Error::MissingPermission { return Error::from_permission(Permission::ManageServer);
permission: ServerPermission::ManageServer as i32, } else if (data.categories.is_some()) && !permissions.can_manage_channel() {
}); return Error::from_permission(Permission::ManageChannel);
} else if (data.categories.is_some()) && !permissions.get_manage_channels() {
return Err(Error::MissingPermission {
permission: ServerPermission::ManageChannels as i32,
});
} }
let Data { let Data {

View File

@@ -9,9 +9,9 @@ pub async fn req(db: &Db, user: User, target: Ref) -> Result<Json<Server>> {
let server = target.as_server(db).await?; let server = target.as_server(db).await?;
if !perms(&user) if !perms(&user)
.server(&server) .server(&server)
.calc_server(db) .calc(db)
.await .await
.get_view() .can_view_channel()
{ {
return Err(Error::NotFound); return Err(Error::NotFound);
} }

View File

@@ -30,6 +30,6 @@ pub async fn req(db: &State<Database>, user: User, target: Ref) -> Result<Json<C
new_channel.create(db).await?; new_channel.create(db).await?;
Ok(Json(new_channel)) Ok(Json(new_channel))
} else { } else {
Error::from_permission(UserPermission::SendMessage) Error::from_user_permission(UserPermission::SendMessage)
} }
} }