* initial livekit support fix up code undo changes to compose file add back .env.example * move voice states to global * track current state * more stuff * fix redis key inconsistancy * split voice ops into its own library * feat(livekit): more permission handling * feat(livekit): push unfinished code * fix: include voice states in servercreate event feat: call started system message in dms * feat: implement missing permission syncs * fix: remove locked rocket version * fix: remove local testing values from config * chore: switch to ids for parameter * feat: make Channel::server return a reference * feat: support multiple voice nodes * fix: expose list of nodes * fix: respond with the url when joining a voice channel * feat: being moved between voice channels * fix: use existing node if someone is already in the voice channel * refactor: Remove VoiceChannel * chore: add pushd to debug image script * refactor: add error messages for Rabbit issues * docs: add some notes on overrides; fix defaults * fix: ensure limit is always at least 1 when sent to database * fix: change permission check for fetching channel webhooks * chore: mount API at /0.8/ as well * fix: ensure ratelimiter adjusts for version prefix * chore: bump version to 0.8.2 * chore: disable LTO because it likely overloads GitHub worker * fix: don't allow users to time themselves out closes #376 * fix: match new error type for status code * feat: init crond crate * feat: file deletion implementation * chore: fix version references * feat: add crond container definitions * chore: clarify cargo deny / tomls * feat: add company information to email footers * chore: bump version to 0.8.3 * fix: don't bump the lockfile version * fix: include `production` default value for config * chore: ignore python venv and dev script for user generation Signed-off-by: IAmTomahawkx <iamtomahawkx@gmail.com> * test: Add tests for invite/fetch Signed-off-by: phazeschift <51278042+phazeschift@users.noreply.github.com> * test: add utilities for common setup Signed-off-by: phazeschift <51278042+phazeschift@users.noreply.github.com> * test: add delete server channel test Signed-off-by: phazeschift <51278042+phazeschift@users.noreply.github.com> * feat: allow to set an icon when creating a group Signed-off-by: Nils Ponsard <nilsponsard@gmail.com> * fix: allow message pinning and unpinning for DM-like channels Signed-off-by: Bradlee Barnes <69256931+StupidRepo@users.noreply.github.com> * fix: remove SavedMessages and Group due to given permissions Signed-off-by: Bradlee Barnes <69256931+StupidRepo@users.noreply.github.com> * feat: allow bots to manage emojis (#407) * Remove bot check on emoji create Signed-off-by: Builderb <builderbgamer@gmail.com> * Remove bot check on emoji delete Signed-off-by: Builderb <builderbgamer@gmail.com> --------- Signed-off-by: Builderb <builderbgamer@gmail.com> * feat: add option to send message with missing replies Signed-off-by: ShaksterNano <54268387+shaksternano@users.noreply.github.com> * chore: bump version to 0.8.4 chore: enable webhooks in test builds * ci: downgrade lockfile * feat: Add Mass Mentions to the backend (#394) * feat: create base of push daemon Signed-off-by: IAmTomahawkx <iamtomahawkx@gmail.com> * Add outbound senders * Make web_push send to rabbit instead (temp stuff) * feat: stability and friend requests * make vapid fr stuff not suck * swap naming of queue * move pushd into daemons folder * fix cargo file for move into daemons folder * feat: probably working fcm push notifs * comment out fcm webpush stuff since the config keys dont exist * fix fcm, name queues according to their prod status and configure routing keys * add pushd to docker * mix: Remove old code, add stuff to pushd * fix: lockfile * feat: update rocket to 5.0.1 * fix: fix queues and ack bugs * Move rabbit messsage processing into ack queue * chore: update readme * chore: optimizations for ack database hits * pushd flowchart * misc: update flowchart * exit dependancy hell * add rocket_impl flag to authifier * make the tests file of delta actually compile * fix: don't silence every push message * fix: don't silence all messages * add debug logging for sending data to rabbit from message events * validate mentions at a server membership level * put back that import that was actually important * minor fix to lockfile * update delta authifier * feat: proper permissions for push notifications * add unit test for mention sanitization * remove local file dependancy on authifier * update ports to proper defaults * fixTM the node bindings * Theoretically configure docker releases for pushd Signed-off-by: IAmTomahawkx <iamtomahawkx@gmail.com> * declare exchange in pushd and delta * fix createbuckets script Signed-off-by: IAmTomahawkx <iamtomahawkx@gmail.com> * fix: reference db implementation Signed-off-by: IAmTomahawkx <iamtomahawkx@gmail.com> * fix: remove finally redundant code Signed-off-by: IAmTomahawkx <iamtomahawkx@gmail.com> * fix: changes Signed-off-by: IAmTomahawkx <iamtomahawkx@gmail.com> * fix: other changes Signed-off-by: IAmTomahawkx <iamtomahawkx@gmail.com> * fix: make channel name return result Signed-off-by: IAmTomahawkx <iamtomahawkx@gmail.com> * Add role mention parsing * feat: update to mongo 3.1, add member generator. * integrate mass mentions into pushd * patch redis-rs with updated versions * feat: chunk role mentions * move permission bits to 37/38 to avoid livekit conflict * change role mention format to <%id> * fix the lockfile from merge * fix: PR change requests * feat: add tests * fix: i am a dumbass * fix: tests, again --------- Signed-off-by: IAmTomahawkx <iamtomahawkx@gmail.com> * fix: show full branch name on github webhook messages * fix: dont leak invisible presence to others * fix: add back missing early adopter badge * fix: update branch from main * fix: update branch from main * Merge remote-tracking branch 'origin/main' into livekit * feat: private livekit nodes * fix: remove node from channel voice state * fix: get_voice_state has incorrect unique_key and allowed_sources should be lowercase * chore: bump livekit dep * feat: ability to force disconnect existing voice connection * chore: cleanup code * feat: - track call length - move voice and video limits to config - seperate VoiceInformation into model and db model - fix build scripts * fix: move call system message to daemon, check max participants when creating a token to avoid giving tokens but erroring when attempting to join, check if the channel actually supports voice * fix: dont set max participants in livekit * fix: remove VoiceChannel channel type fix: calculate user overwrites correctly fix: dont include personal info in livekit user metadata fix: revoke video permissons on denied publish fix: add video to default permissions * fix: update migration * feat: Send push notifications for dm call start/end * chore: cleanup * feat: allow users to specify who is notified when starting a call * feat: track join time * merge: branch 'main' into feat/livekit * fix: include voice-ingress in build * fix: dont presume channel has a node * chore: add error logging to internal errors * chore: add debug logging to voice ingress * refactor: seperate out disconnect logic * fix: return correct error if user is already in a voice channel * fix: dont break on user not still being in channel and force disconnecting * fix: add Speak and Listen to default permissions * fix: include channel ids in UserMoveVoiceChannel * chore: add temp sentry logging system * fix: handle track_muted and track_unmuted * fix: dont set notification recipients when empty vec is passed * fix: only send UserMoveVoiceChannel to the user * fix: preserve order of replies in message (#447) Signed-off-by: Aeledfyr <aeledfyr@gmail.com> * fix: prevent timing out members which have TimeoutMembers permission * chore: update ci * fix: temporarily disable call started system messages See #457 * fix: update code from review
258 lines
8.4 KiB
Rust
258 lines
8.4 KiB
Rust
use std::collections::HashSet;
|
|
|
|
use revolt_database::{
|
|
events::client::EventV1,
|
|
util::{
|
|
permissions::{perms, DatabasePermissionQuery},
|
|
reference::Reference,
|
|
},
|
|
voice::{
|
|
get_channel_node, get_user_voice_channel_in_server, set_channel_node,
|
|
set_user_moved_from_voice, set_user_moved_to_voice, sync_user_voice_permissions,
|
|
VoiceClient,
|
|
},
|
|
Database, File, PartialMember, User,
|
|
};
|
|
use revolt_models::v0::{self, FieldsMember};
|
|
|
|
use revolt_permissions::{
|
|
calculate_channel_permissions, calculate_server_permissions, ChannelPermission,
|
|
};
|
|
use revolt_result::{create_error, Result};
|
|
use rocket::{form::validate::Contains, serde::json::Json, State};
|
|
use validator::Validate;
|
|
|
|
/// # Edit Member
|
|
///
|
|
/// Edit a member by their id.
|
|
#[openapi(tag = "Server Members")]
|
|
#[patch("/<server>/members/<member>", data = "<data>")]
|
|
pub async fn edit(
|
|
db: &State<Database>,
|
|
voice_client: &State<VoiceClient>,
|
|
user: User,
|
|
server: Reference<'_>,
|
|
member: Reference<'_>,
|
|
data: Json<v0::DataMemberEdit>,
|
|
) -> Result<Json<v0::Member>> {
|
|
let data = data.into_inner();
|
|
data.validate().map_err(|error| {
|
|
create_error!(FailedValidation {
|
|
error: error.to_string()
|
|
})
|
|
})?;
|
|
|
|
// Fetch server and member
|
|
let mut server = server.as_server(db).await?;
|
|
let target_user = member.as_user(db).await?;
|
|
let mut member = member.as_member(db, &server.id).await?;
|
|
|
|
// Fetch our currrent permissions
|
|
let mut query = DatabasePermissionQuery::new(db, &user).server(&server);
|
|
let permissions = calculate_server_permissions(&mut query).await;
|
|
|
|
// Fetch target permissions
|
|
let mut target_query = DatabasePermissionQuery::new(db, &target_user).server(&server).member(&member);
|
|
let target_permissions = calculate_server_permissions(&mut target_query).await;
|
|
|
|
// Check permissions in server
|
|
if data.nickname.is_some() || data.remove.contains(&v0::FieldsMember::Nickname) {
|
|
if user.id == member.id.user {
|
|
permissions.throw_if_lacking_channel_permission(ChannelPermission::ChangeNickname)?;
|
|
} else {
|
|
permissions.throw_if_lacking_channel_permission(ChannelPermission::ManageNicknames)?;
|
|
}
|
|
}
|
|
|
|
if data.avatar.is_some() || data.remove.contains(&v0::FieldsMember::Avatar) {
|
|
if user.id == member.id.user {
|
|
permissions.throw_if_lacking_channel_permission(ChannelPermission::ChangeAvatar)?;
|
|
} else {
|
|
return Err(create_error!(InvalidOperation));
|
|
}
|
|
}
|
|
|
|
if data.roles.is_some() || data.remove.contains(&v0::FieldsMember::Roles) {
|
|
permissions.throw_if_lacking_channel_permission(ChannelPermission::AssignRoles)?;
|
|
}
|
|
|
|
if data.timeout.is_some() || data.remove.contains(&v0::FieldsMember::Timeout) {
|
|
if data.timeout.is_some() {
|
|
if member.id.user == user.id {
|
|
return Err(create_error!(CannotTimeoutYourself));
|
|
}
|
|
|
|
if target_permissions.has_channel_permission(ChannelPermission::TimeoutMembers) {
|
|
return Err(create_error!(IsElevated))
|
|
}
|
|
}
|
|
|
|
permissions.throw_if_lacking_channel_permission(ChannelPermission::TimeoutMembers)?;
|
|
}
|
|
|
|
if data.can_publish.is_some() {
|
|
permissions.throw_if_lacking_channel_permission(ChannelPermission::MuteMembers)?;
|
|
}
|
|
|
|
if data.can_receive.is_some() {
|
|
permissions.throw_if_lacking_channel_permission(ChannelPermission::DeafenMembers)?;
|
|
}
|
|
|
|
let new_voice_channel = if let Some(new_channel) = &data.voice_channel {
|
|
if !voice_client.is_enabled() {
|
|
return Err(create_error!(LiveKitUnavailable));
|
|
};
|
|
|
|
permissions.throw_if_lacking_channel_permission(ChannelPermission::MoveMembers)?;
|
|
|
|
// ensure the channel we are moving them to is in the server and is a voice channel
|
|
|
|
let channel = Reference::from_unchecked(new_channel)
|
|
.as_channel(db)
|
|
.await
|
|
.map_err(|_| create_error!(UnknownChannel))?;
|
|
|
|
if channel.server().is_none_or(|v| v != member.id.server) {
|
|
Err(create_error!(UnknownChannel))?
|
|
}
|
|
|
|
if get_user_voice_channel_in_server(&target_user.id, &server.id)
|
|
.await?
|
|
.is_none()
|
|
{
|
|
Err(create_error!(NotConnected))?
|
|
};
|
|
|
|
Some(channel)
|
|
} else {
|
|
None
|
|
};
|
|
|
|
// Resolve our ranking
|
|
let our_ranking = query.get_member_rank().unwrap_or(i64::MIN);
|
|
|
|
// Check that we have permissions to act against this member
|
|
if member.id.user != user.id
|
|
&& member.get_ranking(query.server_ref().as_ref().unwrap()) <= our_ranking
|
|
{
|
|
return Err(create_error!(NotElevated));
|
|
}
|
|
|
|
// Check permissions against roles in diff
|
|
if let Some(roles) = &data.roles {
|
|
let current_roles = member.roles.iter().collect::<HashSet<&String>>();
|
|
|
|
let new_roles = roles.iter().collect::<HashSet<&String>>();
|
|
let added_roles: Vec<&&String> = new_roles.difference(¤t_roles).collect();
|
|
|
|
for role_id in added_roles {
|
|
if let Some(role) = server.roles.remove(*role_id) {
|
|
if role.rank <= our_ranking {
|
|
return Err(create_error!(NotElevated));
|
|
}
|
|
} else {
|
|
return Err(create_error!(InvalidRole));
|
|
}
|
|
}
|
|
}
|
|
|
|
// Apply edits to the member object
|
|
let v0::DataMemberEdit {
|
|
nickname,
|
|
avatar,
|
|
roles,
|
|
timeout,
|
|
remove,
|
|
can_publish,
|
|
can_receive,
|
|
voice_channel: _,
|
|
} = data;
|
|
|
|
let mut partial = PartialMember {
|
|
nickname,
|
|
roles,
|
|
timeout,
|
|
can_publish,
|
|
can_receive,
|
|
..Default::default()
|
|
};
|
|
|
|
// 1. Remove fields from object
|
|
if remove.contains(&v0::FieldsMember::Avatar) {
|
|
if let Some(avatar) = &member.avatar {
|
|
db.mark_attachment_as_deleted(&avatar.id).await?;
|
|
}
|
|
}
|
|
|
|
// 2. Apply new avatar
|
|
if let Some(avatar) = avatar {
|
|
partial.avatar = Some(File::use_user_avatar(db, &avatar, &user.id, &user.id).await?);
|
|
}
|
|
|
|
let remove_contains_voice = remove.contains(FieldsMember::CanPublish) || remove.contains(FieldsMember::CanReceive);
|
|
|
|
member
|
|
.update(db, partial, remove.into_iter().map(Into::into).collect())
|
|
.await?;
|
|
|
|
if let Some(new_voice_channel) = new_voice_channel {
|
|
if let Some(channel) = get_user_voice_channel_in_server(&target_user.id, &server.id).await?
|
|
{
|
|
let old_node = get_channel_node(&channel).await?.unwrap();
|
|
|
|
let new_node = match get_channel_node(new_voice_channel.id()).await? {
|
|
Some(node) => node,
|
|
None => {
|
|
set_channel_node(new_voice_channel.id(), &old_node).await?;
|
|
old_node.clone()
|
|
}
|
|
};
|
|
|
|
set_user_moved_from_voice(&channel, new_voice_channel.id(), &target_user.id).await?;
|
|
set_user_moved_to_voice(new_voice_channel.id(), &channel, &target_user.id).await?;
|
|
|
|
let mut query = perms(db, &target_user).channel(&new_voice_channel);
|
|
let permissions = calculate_channel_permissions(&mut query).await;
|
|
|
|
voice_client
|
|
.create_room(&new_node, &new_voice_channel)
|
|
.await?;
|
|
let token = voice_client
|
|
.create_token(&new_node, db, &target_user, permissions, &new_voice_channel)
|
|
.await?;
|
|
|
|
voice_client
|
|
.remove_user(&old_node, &target_user.id, &channel)
|
|
.await?;
|
|
|
|
EventV1::UserMoveVoiceChannel {
|
|
node: new_node,
|
|
from: channel,
|
|
to: new_voice_channel.id().to_string(),
|
|
token,
|
|
}
|
|
.private(target_user.id.clone())
|
|
.await;
|
|
};
|
|
} else if can_publish.is_some() || can_receive.is_some() || remove_contains_voice {
|
|
if let Some(channel) = get_user_voice_channel_in_server(&target_user.id, &server.id).await?
|
|
{
|
|
let node = get_channel_node(&channel).await?.unwrap();
|
|
let channel = Reference::from_unchecked(&channel).as_channel(db).await?;
|
|
|
|
sync_user_voice_permissions(
|
|
db,
|
|
voice_client,
|
|
&node,
|
|
&user,
|
|
&channel,
|
|
Some(&server),
|
|
None,
|
|
)
|
|
.await?;
|
|
};
|
|
};
|
|
|
|
Ok(Json(member.into()))
|
|
}
|