apitech
/
Rocket.Chat
mirror of https://github.com/RocketChat/Rocket.Chat
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
The communications platform that puts data protection first.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7340 Commits
706 Branches
1178 Tags
2.1 GiB
 
 
 
 
 
Tag: Branch: Tree: a2d250412e
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'a2d250412e'
${ noResults }
Rocket.Chat/packages/rocketchat-integrations/server/lib/validation.coffee

90 lines
3.5 KiB
Raw Blame History

RocketChat.integrations.validateOutgoing = (integration, userId) ->
if integration.channel?.trim? and integration.channel.trim() is ''
delete integration.channel
if integration.username.trim() is ''
throw new Meteor.Error 'error-invalid-username', 'Invalid username', { method: 'addOutgoingIntegration' }
if not Match.test integration.urls, [String]
throw new Meteor.Error 'error-invalid-urls', 'Invalid URLs', { method: 'addOutgoingIntegration' }
for url, index in integration.urls
delete integration.urls[index] if url.trim() is ''
integration.urls = _.without integration.urls, [undefined]
if integration.urls.length is 0
throw new Meteor.Error 'error-invalid-urls', 'Invalid URLs', { method: 'addOutgoingIntegration' }
channels = if integration.channel then _.map(integration.channel.split(','), (channel) -> s.trim(channel)) else []
scopedChannels = ['all_public_channels', 'all_private_groups', 'all_direct_messages']
for channel in channels
if channel[0] not in ['@', '#'] and channel not in scopedChannels
throw new Meteor.Error 'error-invalid-channel-start-with-chars', 'Invalid channel. Start with @ or #', { method: 'updateIncomingIntegration' }
if integration.triggerWords?
if not Match.test integration.triggerWords, [String]
throw new Meteor.Error 'error-invalid-triggerWords', 'Invalid triggerWords', { method: 'addOutgoingIntegration' }
for triggerWord, index in integration.triggerWords
delete integration.triggerWords[index] if triggerWord.trim() is ''
integration.triggerWords = _.without integration.triggerWords, [undefined]
if integration.scriptEnabled is true and integration.script? and integration.script.trim() isnt ''
try
babelOptions = Babel.getDefaultOptions({ runtime: false })
babelOptions = _.extend(babelOptions, { compact: true, minified: true, comments: false })
integration.scriptCompiled = Babel.compile(integration.script, babelOptions).code
integration.scriptError = undefined
catch e
integration.scriptCompiled = undefined
integration.scriptError = _.pick e, 'name', 'message', 'stack'
for channel in channels
if channel in scopedChannels
if channel is 'all_public_channels'
#No special permissions needed to add integration to public channels
else if not RocketChat.authz.hasPermission userId, 'manage-integrations'
throw new Meteor.Error 'error-invalid-channel', 'Invalid Channel', { method: 'addOutgoingIntegration' }
else
record = undefined
channelType = channel[0]
channel = channel.substr(1)
switch channelType
when '#'
record = RocketChat.models.Rooms.findOne
$or: [
{_id: channel}
{name: channel}
]
when '@'
record = RocketChat.models.Users.findOne
$or: [
{_id: channel}
{username: channel}
]
if record is undefined
throw new Meteor.Error 'error-invalid-room', 'Invalid room', { method: 'addOutgoingIntegration' }
if record.usernames? and
(not RocketChat.authz.hasPermission userId, 'manage-integrations') and
(RocketChat.authz.hasPermission userId, 'manage-own-integrations') and
Meteor.user()?.username not in record.usernames
throw new Meteor.Error 'error-invalid-channel', 'Invalid Channel', { method: 'addOutgoingIntegration' }
user = RocketChat.models.Users.findOne({username: integration.username})
if not user?
throw new Meteor.Error 'error-invalid-user', 'Invalid user', { method: 'addOutgoingIntegration' }
integration.type = 'webhook-outgoing'
integration.userId = user._id
integration.channel = channels
return integration