apitech
/
Rocket.Chat
mirror of https://github.com/RocketChat/Rocket.Chat
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
The communications platform that puts data protection first.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2451 Commits
704 Branches
1176 Tags
2.1 GiB
Tag: Branch: Tree: 8b6085df51
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '8b6085df51'
${ noResults }
Rocket.Chat/server/methods/createChannel.coffee

60 lines
1.6 KiB
Raw Normal View History Unescape

all room types
11 years ago
Meteor.methods
createChannel: (name, members) ->
several performance improvements
11 years ago
if not Meteor.userId()
throw new Meteor.Error 'invalid-user', "[methods] createChannel -> Invalid user"
Chinese Character supported
10 years ago
if not /^[0-9a-zA-Z-_\u00C0-\u017F\u4e00-\u9fa5]+$/.test name
Restrict changing channel name
11 years ago
throw new Meteor.Error 'name-invalid'
Create RocketChat authorization package that handles role and permission based authorization Leverages alanning:roles package to associate a user to a role. Uses alanning:roles optional "group" parameter to limit the role's scope to either the global level or room level. The global level is applicable to users that can perform administrative functions. The room level is applicable to users that can perform room specific administrative functions (like a moderator). A role can have zero or more permissions. Permissions and their association to roles are defined by this package Authorization checks are based on whether or not the user has a role or permission. The roles, permissions, and their association are statically defined at this time. Eventually, there should be an API to dynamically create a role and associate it to static permission(s). Old 'isAdmin' and '.admin is true' checks have been replaced with corresponding hasPermission authorization checks. Additionally, code that automatically assigned admin privileges are updated to assign 'admin' role instead. channel/direct message/private group code checks authorization to edit properties (e.g. title) and edit/delete messages (regardless of the system level allow edit/delete settings). - user with 'admin' role are authorized to do anything - room creator is assigned 'moderator' role that can edit the room and edit/delete messages - members can only edit/delete their own messages IF system wide settings permit them to. v19 migration will - add 'admin' role to users with admin:true property - add 'moderator' role scoped to room for room creators - add 'user' role to all users. There are known issues unrelated to the changes made - If a user with edit/delete message room permissions logs out then a user without edit/delete message room permissions logs in, then they will see edit/delete icons. The server will deny execution - edit/delete icons are not reactive Thus if the system level allow edit/delete message setting is toggled, the icons will not reflect it. The server will deny execution.
10 years ago
if RocketChat.authz.hasPermission(Meteor.userId(), 'create-c') isnt true
throw new Meteor.Error 'not-authorized', '[methods] createChannel -> Not authorized'
several performance improvements
11 years ago
console.log '[methods] createChannel -> '.green, 'userId:', Meteor.userId(), 'arguments:', arguments
all room types
11 years ago
now = new Date()
Fix minor bugs in irc plugin.
11 years ago
user = Meteor.user()
all room types
11 years ago
Fix minor bugs in irc plugin.
11 years ago
members.push user.username
all room types
11 years ago
Fix RocketChat/Rocket.Chat#329. Check for duplicate name before creating channel or private group Queried ChatRoom for Room with same name and returned a descriptive error if one was found when creating a Channel or Private Group.
11 years ago
# avoid duplicate names
Replace all ChatRoom.findOne
10 years ago
if RocketChat.models.Rooms.findOneByName name
Fix RocketChat/Rocket.Chat#329. Check for duplicate name when creating private group and channel. Check for illegal name for private group. - Use il8n for error messages - Add il8n english error message for duplicate channel/private group name - Add illegal name serverside check to createPrivateGroup method - Add logic to handle different error types on privateGroupsFlex page
11 years ago
throw new Meteor.Error 'duplicate-name'
Fix RocketChat/Rocket.Chat#329. Check for duplicate name before creating channel or private group Queried ChatRoom for Room with same name and returned a descriptive error if one was found when creating a Channel or Private Group.
11 years ago
Restrict changing channel name
11 years ago
# name = s.slugify name
all room types
11 years ago
Replace all ChatRoom.insert
10 years ago
RocketChat.callbacks.run 'beforeCreateChannel', user,
all room types
11 years ago
t: 'c'
replacing "by" for "u"
11 years ago
name: name
Replace all ChatRoom.insert
10 years ago
ts: now
usernames: members
Create channels working
11 years ago
u:
Replace all ChatRoom.insert
10 years ago
_id: user._id
Fix minor bugs in irc plugin.
11 years ago
username: user.username
all room types
11 years ago
Update rocketchat-irc * Auto create direct room when not exist * Sync room member list between irc and rocketchat * Avoid callback loop * Add logoutCleanUp hook * Add login error check * Add connect when close
11 years ago
# create new room
Replace all ChatRoom.insert
10 years ago
room = RocketChat.models.Rooms.createWithTypeNameUserAndUsernames 'c', name, user, members,
ts: now
Create RocketChat authorization package that handles role and permission based authorization Leverages alanning:roles package to associate a user to a role. Uses alanning:roles optional "group" parameter to limit the role's scope to either the global level or room level. The global level is applicable to users that can perform administrative functions. The room level is applicable to users that can perform room specific administrative functions (like a moderator). A role can have zero or more permissions. Permissions and their association to roles are defined by this package Authorization checks are based on whether or not the user has a role or permission. The roles, permissions, and their association are statically defined at this time. Eventually, there should be an API to dynamically create a role and associate it to static permission(s). Old 'isAdmin' and '.admin is true' checks have been replaced with corresponding hasPermission authorization checks. Additionally, code that automatically assigned admin privileges are updated to assign 'admin' role instead. channel/direct message/private group code checks authorization to edit properties (e.g. title) and edit/delete messages (regardless of the system level allow edit/delete settings). - user with 'admin' role are authorized to do anything - room creator is assigned 'moderator' role that can edit the room and edit/delete messages - members can only edit/delete their own messages IF system wide settings permit them to. v19 migration will - add 'admin' role to users with admin:true property - add 'moderator' role scoped to room for room creators - add 'user' role to all users. There are known issues unrelated to the changes made - If a user with edit/delete message room permissions logs out then a user without edit/delete message room permissions logs in, then they will see edit/delete icons. The server will deny execution - edit/delete icons are not reactive Thus if the system level allow edit/delete message setting is toggled, the icons will not reflect it. The server will deny execution.
10 years ago
# set creator as channel moderator. permission limited to channel by scoping to rid
Replace all Subscription.insert
10 years ago
RocketChat.authz.addUsersToRoles(Meteor.userId(), 'moderator', room._id)
Update rocketchat-irc * Auto create direct room when not exist * Sync room member list between irc and rocketchat * Avoid callback loop * Add logoutCleanUp hook * Add login error check * Add connect when close
11 years ago
Create channels working
11 years ago
for username in members
Replace all Meteor.users.findOne
10 years ago
member = RocketChat.models.Users.findOneByUsername username
Create channels working
11 years ago
if not member?
continue
Replace all Subscription.insert
10 years ago
extra = {}
all room types
11 years ago
Fix minor bugs in irc plugin.
11 years ago
if username is user.username
Replace all Subscription.insert
10 years ago
extra.ls = now
extra.open = true
all room types
11 years ago
Replace all Subscription.insert
10 years ago
RocketChat.models.Subscriptions.createWithRoomAndUser room, member, extra
all room types
11 years ago
Update rocketchat-irc * Auto create direct room when not exist * Sync room member list between irc and rocketchat * Avoid callback loop * Add logoutCleanUp hook * Add login error check * Add connect when close
11 years ago
Meteor.defer ->
Fix minor bugs in irc plugin.
11 years ago
RocketChat.callbacks.run 'afterCreateChannel', user, room
Update rocketchat-irc * Auto create direct room when not exist * Sync room member list between irc and rocketchat * Avoid callback loop * Add logoutCleanUp hook * Add login error check * Add connect when close
11 years ago
all room types
11 years ago
return {
Replace all Subscription.insert
10 years ago
rid: room._id
all room types
11 years ago
}