fix: check React permission on interactions

This commit is contained in:
Paul Makles
2022-08-14 11:31:36 +02:00
parent 0e0c6f2c3a
commit c1227e8e33
2 changed files with 10 additions and 3 deletions

View File

@@ -116,7 +116,7 @@ pub async fn message_send(
} }
// 3. Ensure interactions information is correct // 3. Ensure interactions information is correct
message.interactions.validate(db).await?; message.interactions.validate(db, &mut permissions).await?;
// 4. Verify replies are valid. // 4. Verify replies are valid.
let mut replies = HashSet::new(); let mut replies = HashSet::new();

View File

@@ -13,13 +13,14 @@ use crate::{
}, },
Channel, Emoji, Message, User, Channel, Emoji, Message, User,
}, },
permissions::PermissionCalculator,
presence::presence_filter_online, presence::presence_filter_online,
tasks::ack::AckEvent, tasks::ack::AckEvent,
types::{ types::{
january::{Embed, Text}, january::{Embed, Text},
push::PushNotification, push::PushNotification,
}, },
Database, Error, Result, Database, Error, Permission, Result,
}; };
impl Message { impl Message {
@@ -406,8 +407,14 @@ impl BulkMessageResponse {
impl Interactions { impl Interactions {
/// Validate interactions info is correct /// Validate interactions info is correct
pub async fn validate(&self, db: &Database) -> Result<()> { pub async fn validate(
&self,
db: &Database,
permissions: &mut PermissionCalculator<'_>,
) -> Result<()> {
if let Some(reactions) = &self.reactions { if let Some(reactions) = &self.reactions {
permissions.throw_permission(db, Permission::React).await?;
if reactions.len() > 20 { if reactions.len() > 20 {
return Err(Error::InvalidOperation); return Err(Error::InvalidOperation);
} }