Commit 2af93f44 authored by JC Brand's avatar JC Brand

modtools: settings for which roles/affiliations may be queried or assigned

parent e5341d54
...@@ -18,6 +18,8 @@ ...@@ -18,6 +18,8 @@
- #1839: Headline messages are shown in controlbox - #1839: Headline messages are shown in controlbox
- Allow ignore bootstrap modules at build using environment variable: BOOTSTRAP_IGNORE_MODULES="Modal,Dropdown". - Allow ignore bootstrap modules at build using environment variable: BOOTSTRAP_IGNORE_MODULES="Modal,Dropdown".
example: export BOOTSTRAP_IGNORE_MODULES="Modal,Dropdown" && make dist example: export BOOTSTRAP_IGNORE_MODULES="Modal,Dropdown" && make dist
- New config option [modtools_disable_query](https://conversejs.org/docs/html/configuration.html#modtools-disable-query)
- New config option [modtools_disable_assign](https://conversejs.org/docs/html/configuration.html#modtools-disable-assign)
## 6.0.0 (2020-01-09) ## 6.0.0 (2020-01-09)
......
...@@ -1039,6 +1039,26 @@ and it's trivial for an attacker to bypass this restriction. ...@@ -1039,6 +1039,26 @@ and it's trivial for an attacker to bypass this restriction.
You should therefore also configure your XMPP server to limit message sizes. You should therefore also configure your XMPP server to limit message sizes.
modtools_disable_assign
-----------------------
* Default: ``false``
* Possible Values: ``true``, ``false``, ``['owner', 'admin', 'member', 'outcast', 'none', 'moderator', 'participant', 'visitor']``
This setting allows you to disable (either completely, or fine-grained) which affiliations and or roles
may be assigned in the moderator tools modal.
modtools_disable_query
----------------------
* Default: ``[]``
* Possible Values: ``['owner', 'admin', 'member', 'outcast', 'none', 'moderator', 'participant', 'visitor']``
This setting allows you to disable which affiliations or roles may be queried in the moderator tools modal.
If all roles or all affiliations are disabled, then the relevant tab won't be
showed at all.
muc_disable_slash_commands muc_disable_slash_commands
-------------------------- --------------------------
......
...@@ -41,7 +41,8 @@ ...@@ -41,7 +41,8 @@
_converse.connection.IQ_stanzas = []; _converse.connection.IQ_stanzas = [];
tab.click(); tab.click();
let select = modal.el.querySelector('.select-affiliation'); let select = modal.el.querySelector('.select-affiliation');
expect(select.value).toBe('admin'); expect(select.value).toBe('owner');
select.value = 'admin';
let button = modal.el.querySelector('.btn-primary[name="users_with_affiliation"]'); let button = modal.el.querySelector('.btn-primary[name="users_with_affiliation"]');
button.click(); button.click();
await u.waitUntil(() => !modal.loading_users_with_affiliation); await u.waitUntil(() => !modal.loading_users_with_affiliation);
......
...@@ -40,7 +40,7 @@ const { Strophe, sizzle, $iq, $pres } = converse.env; ...@@ -40,7 +40,7 @@ const { Strophe, sizzle, $iq, $pres } = converse.env;
const u = converse.env.utils; const u = converse.env.utils;
const ROLES = ['moderator', 'participant', 'visitor']; const ROLES = ['moderator', 'participant', 'visitor'];
const AFFILIATIONS = ['admin', 'member', 'outcast', 'owner']; const AFFILIATIONS = ['owner', 'admin', 'member', 'outcast', 'none'];
const OWNER_COMMANDS = ['owner']; const OWNER_COMMANDS = ['owner'];
const ADMIN_COMMANDS = ['admin', 'ban', 'deop', 'destroy', 'member', 'op', 'revoke']; const ADMIN_COMMANDS = ['admin', 'ban', 'deop', 'destroy', 'member', 'op', 'revoke'];
const MODERATOR_COMMANDS = ['kick', 'mute', 'voice', 'modtools']; const MODERATOR_COMMANDS = ['kick', 'mute', 'voice', 'modtools'];
...@@ -101,16 +101,18 @@ converse.plugins.add('converse-muc-views', { ...@@ -101,16 +101,18 @@ converse.plugins.add('converse-muc-views', {
'auto_list_rooms': false, 'auto_list_rooms': false,
'cache_muc_messages': true, 'cache_muc_messages': true,
'locked_muc_nickname': false, 'locked_muc_nickname': false,
'show_retraction_warning': true, 'modtools_disable_query': [],
'modtools_disable_assign': false,
'muc_disable_slash_commands': false, 'muc_disable_slash_commands': false,
'muc_show_join_leave': true,
'muc_show_join_leave_status': true,
'muc_mention_autocomplete_min_chars': 0,
'muc_mention_autocomplete_filter': 'contains', 'muc_mention_autocomplete_filter': 'contains',
'muc_mention_autocomplete_min_chars': 0,
'muc_mention_autocomplete_show_avatar': true, 'muc_mention_autocomplete_show_avatar': true,
'roomconfig_whitelist': [],
'muc_roomid_policy': null, 'muc_roomid_policy': null,
'muc_roomid_policy_hint': null, 'muc_roomid_policy_hint': null,
'muc_show_join_leave': true,
'muc_show_join_leave_status': true,
'roomconfig_whitelist': [],
'show_retraction_warning': true,
'visible_toolbar_buttons': { 'visible_toolbar_buttons': {
'toggle_occupants': true 'toggle_occupants': true
} }
...@@ -248,26 +250,17 @@ converse.plugins.add('converse-muc-views', { ...@@ -248,26 +250,17 @@ converse.plugins.add('converse-muc-views', {
}, },
toHTML () { toHTML () {
const allowed_commands = this.chatroomview.getAllowedCommands(); const occupant = this.chatroomview.model.occupants.findWhere({'jid': _converse.bare_jid});
const allowed_affiliations = allowed_commands.map(c => COMMAND_TO_AFFILIATION[c]).filter(c => c);
const allowed_roles = [...new Set(allowed_commands
.filter((value, i, list) => list.indexOf(value) == i)
.map(c => COMMAND_TO_ROLE[c])
.filter(c => c))];
allowed_affiliations.sort();
allowed_roles.sort();
return tpl_moderator_tools_modal(Object.assign(this.model.toJSON(), { return tpl_moderator_tools_modal(Object.assign(this.model.toJSON(), {
allowed_affiliations,
allowed_roles,
'affiliations': [...AFFILIATIONS, 'none'],
'assignAffiliation': ev => this.assignAffiliation(ev), 'assignAffiliation': ev => this.assignAffiliation(ev),
'assignRole': ev => this.assignRole(ev), 'assignRole': ev => this.assignRole(ev),
'loading_users_with_affiliation': this.loading_users_with_affiliation, 'loading_users_with_affiliation': this.loading_users_with_affiliation,
'queryAffiliation': ev => this.queryAffiliation(ev), 'queryAffiliation': ev => this.queryAffiliation(ev),
'queryRole': ev => this.queryRole(ev), 'queryRole': ev => this.queryRole(ev),
'roles': ROLES, 'queryable_affiliations': AFFILIATIONS.filter(a => !_converse.modtools_disable_query.includes(a)),
'queryable_roles': ROLES.filter(a => !_converse.modtools_disable_query.includes(a)),
'assignable_affiliations': this.getAssignableAffiliations(occupant),
'assignable_roles': this.getAssignableRoles(occupant),
'switchTab': ev => this.switchTab(ev), 'switchTab': ev => this.switchTab(ev),
'toggleForm': ev => this.toggleForm(ev), 'toggleForm': ev => this.toggleForm(ev),
'users_with_affiliation': this.users_with_affiliation, 'users_with_affiliation': this.users_with_affiliation,
...@@ -275,6 +268,30 @@ converse.plugins.add('converse-muc-views', { ...@@ -275,6 +268,30 @@ converse.plugins.add('converse-muc-views', {
})); }));
}, },
getAssignableAffiliations (occupant) {
const disabled = _converse.modtools_disable_assign;
if (!Array.isArray(disabled)) {
return disabled ? [] : AFFILIATIONS;
} else if (occupant.get('affiliation') === 'owner') {
return AFFILIATIONS.filter(a => !disabled.includes(a));
} else if (occupant.get('affiliation') === 'admin') {
return AFFILIATIONS.filter(a => !['owner', ...disabled].includes(a));
} else {
return [];
}
},
getAssignableRoles (occupant) {
const disabled = _converse.modtools_disable_assign;
if (!Array.isArray(disabled)) {
return disabled ? [] : ROLES;
} else if (occupant.get('role') === 'moderator') {
return ROLES.filter(r => !disabled.includes(r));
} else {
return [];
}
},
shouldFetchAffiliationsList () { shouldFetchAffiliationsList () {
const affiliation = this.model.get('affiliation'); const affiliation = this.model.get('affiliation');
if (affiliation === 'none') { if (affiliation === 'none') {
......
This diff is collapsed.
...@@ -23,6 +23,8 @@ ...@@ -23,6 +23,8 @@
auto_away: 300, auto_away: 300,
auto_register_muc_nickname: true, auto_register_muc_nickname: true,
loglevel: 'debug', loglevel: 'debug',
modtools_disable_assign: ['owner', 'moderator', 'participant', 'visitor'],
modtools_disable_query: ['moderator', 'participant', 'visitor'],
enable_smacks: true, enable_smacks: true,
i18n: 'en', i18n: 'en',
message_archiving: 'always', message_archiving: 'always',
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment