mirror of
https://github.com/LemmyNet/lemmy.git
synced 2024-11-15 17:03:59 +00:00
8a27978ee1
* Removing checking permissions when editing posts and comments. Fixes #2714 * Running cargo fmt again. * Adding back in community ban checks.
121 lines
3.2 KiB
Rust
121 lines
3.2 KiB
Rust
use crate::PerformCrud;
|
|
use actix_web::web::Data;
|
|
use lemmy_api_common::{
|
|
comment::{CommentResponse, EditComment},
|
|
context::LemmyContext,
|
|
utils::{
|
|
check_community_ban,
|
|
get_local_user_view_from_jwt,
|
|
is_mod_or_admin,
|
|
local_site_to_slur_regex,
|
|
},
|
|
websocket::{
|
|
send::{send_comment_ws_message, send_local_notifs},
|
|
UserOperationCrud,
|
|
},
|
|
};
|
|
use lemmy_db_schema::{
|
|
source::{
|
|
actor_language::CommunityLanguage,
|
|
comment::{Comment, CommentUpdateForm},
|
|
local_site::LocalSite,
|
|
},
|
|
traits::Crud,
|
|
utils::naive_now,
|
|
};
|
|
use lemmy_db_views::structs::CommentView;
|
|
use lemmy_utils::{
|
|
error::LemmyError,
|
|
utils::{remove_slurs, scrape_text_for_mentions},
|
|
ConnectionId,
|
|
};
|
|
|
|
#[async_trait::async_trait(?Send)]
|
|
impl PerformCrud for EditComment {
|
|
type Response = CommentResponse;
|
|
|
|
#[tracing::instrument(skip(context, websocket_id))]
|
|
async fn perform(
|
|
&self,
|
|
context: &Data<LemmyContext>,
|
|
websocket_id: Option<ConnectionId>,
|
|
) -> Result<CommentResponse, LemmyError> {
|
|
let data: &EditComment = self;
|
|
let local_user_view =
|
|
get_local_user_view_from_jwt(&data.auth, context.pool(), context.secret()).await?;
|
|
let local_site = LocalSite::read(context.pool()).await?;
|
|
|
|
let comment_id = data.comment_id;
|
|
let orig_comment = CommentView::read(context.pool(), comment_id, None).await?;
|
|
|
|
check_community_ban(
|
|
local_user_view.person.id,
|
|
orig_comment.community.id,
|
|
context.pool(),
|
|
)
|
|
.await?;
|
|
|
|
// Verify that only the creator can edit
|
|
if local_user_view.person.id != orig_comment.creator.id {
|
|
return Err(LemmyError::from_message("no_comment_edit_allowed"));
|
|
}
|
|
|
|
if data.distinguished.is_some() {
|
|
// Verify that only a mod or admin can distinguish a comment
|
|
is_mod_or_admin(
|
|
context.pool(),
|
|
local_user_view.person.id,
|
|
orig_comment.community.id,
|
|
)
|
|
.await?;
|
|
}
|
|
|
|
let language_id = self.language_id;
|
|
CommunityLanguage::is_allowed_community_language(
|
|
context.pool(),
|
|
language_id,
|
|
orig_comment.community.id,
|
|
)
|
|
.await?;
|
|
|
|
// Update the Content
|
|
let content_slurs_removed = data
|
|
.content
|
|
.as_ref()
|
|
.map(|c| remove_slurs(c, &local_site_to_slur_regex(&local_site)));
|
|
let comment_id = data.comment_id;
|
|
let form = CommentUpdateForm::builder()
|
|
.content(content_slurs_removed)
|
|
.distinguished(data.distinguished)
|
|
.language_id(data.language_id)
|
|
.updated(Some(Some(naive_now())))
|
|
.build();
|
|
let updated_comment = Comment::update(context.pool(), comment_id, &form)
|
|
.await
|
|
.map_err(|e| LemmyError::from_error_message(e, "couldnt_update_comment"))?;
|
|
|
|
// Do the mentions / recipients
|
|
let updated_comment_content = updated_comment.content.clone();
|
|
let mentions = scrape_text_for_mentions(&updated_comment_content);
|
|
let recipient_ids = send_local_notifs(
|
|
mentions,
|
|
&updated_comment,
|
|
&local_user_view.person,
|
|
&orig_comment.post,
|
|
false,
|
|
context,
|
|
)
|
|
.await?;
|
|
|
|
send_comment_ws_message(
|
|
data.comment_id,
|
|
UserOperationCrud::EditComment,
|
|
websocket_id,
|
|
data.form_id.clone(),
|
|
None,
|
|
recipient_ids,
|
|
context,
|
|
)
|
|
.await
|
|
}
|
|
}
|