module.exports = function(crowi, app) { 'use strict'; var debug = require('debug')('growi:routes:admin') , logger = require('@alias/logger')('growi:routes:admin') , fs = require('fs') , models = crowi.models , Page = models.Page , PageGroupRelation = models.PageGroupRelation , User = models.User , ExternalAccount = models.ExternalAccount , UserGroup = models.UserGroup , UserGroupRelation = models.UserGroupRelation , Config = models.Config , GlobalNotificationSetting = models.GlobalNotificationSetting , GlobalNotificationMailSetting = models.GlobalNotificationMailSetting , GlobalNotificationSlackSetting = models.GlobalNotificationSlackSetting , PluginUtils = require('../plugins/plugin-utils') , pluginUtils = new PluginUtils() , ApiResponse = require('../util/apiResponse') , recommendedXssWhiteList = require('../util/recommendedXssWhiteList') , MAX_PAGE_LIST = 50 , actions = {}; function createPager(total, limit, page, pagesCount, maxPageList) { const pager = { page: page, pagesCount: pagesCount, pages: [], total: total, previous: null, previousDots: false, next: null, nextDots: false, }; if (page > 1) { pager.previous = page - 1; } if (page < pagesCount) { pager.next = page + 1; } let pagerMin = Math.max(1, Math.ceil(page - maxPageList/2)); let pagerMax = Math.min(pagesCount, Math.floor(page + maxPageList/2)); if (pagerMin === 1) { if (MAX_PAGE_LIST < pagesCount) { pagerMax = MAX_PAGE_LIST; } else { pagerMax = pagesCount; } } if (pagerMax === pagesCount) { if ((pagerMax - MAX_PAGE_LIST) < 1) { pagerMin = 1; } else { pagerMin = pagerMax - MAX_PAGE_LIST; } } pager.previousDots = null; if (pagerMin > 1) { pager.previousDots = true; } pager.nextDots = null; if (pagerMax < pagesCount) { pager.nextDots = true; } for (let i = pagerMin; i <= pagerMax; i++) { pager.pages.push(i); } return pager; } actions.index = function(req, res) { return res.render('admin/index', { plugins: pluginUtils.listPlugins(crowi.rootDir), }); }; // app.get('/admin/app' , admin.app.index); actions.app = {}; actions.app.index = function(req, res) { var settingForm; settingForm = Config.setupCofigFormData('crowi', req.config); return res.render('admin/app', { settingForm: settingForm, }); }; actions.app.settingUpdate = function(req, res) { }; // app.get('/admin/security' , admin.security.index); actions.security = {}; actions.security.index = function(req, res) { const settingForm = Config.setupCofigFormData('crowi', req.config); return res.render('admin/security', { settingForm }); }; // app.get('/admin/markdown' , admin.markdown.index); actions.markdown = {}; actions.markdown.index = function(req, res) { const config = crowi.getConfig(); const markdownSetting = Config.setupCofigFormData('markdown', config); return res.render('admin/markdown', { markdownSetting: markdownSetting, recommendedXssWhiteList: recommendedXssWhiteList, }); }; // app.post('/admin/markdown/lineBreaksSetting' , admin.markdown.lineBreaksSetting); actions.markdown.lineBreaksSetting = function(req, res) { var markdownSetting = req.form.markdownSetting; req.session.markdownSetting = markdownSetting; if (req.form.isValid) { Config.updateNamespaceByArray('markdown', markdownSetting, function(err, config) { Config.updateConfigCache('markdown', config); req.session.markdownSetting = null; req.flash('successMessage', ['Successfully updated!']); return res.redirect('/admin/markdown'); }); } else { req.flash('errorMessage', req.form.errors); return res.redirect('/admin/markdown'); } }; // app.post('/admin/markdown/xss-setting' , admin.markdown.xssSetting); actions.markdown.xssSetting = function(req, res) { let xssSetting = req.form.markdownSetting; xssSetting['markdown:xss:tagWhiteList'] = stringToArray(xssSetting['markdown:xss:tagWhiteList']); xssSetting['markdown:xss:attrWhiteList'] = stringToArray(xssSetting['markdown:xss:attrWhiteList']); req.session.markdownSetting = xssSetting; if (req.form.isValid) { Config.updateNamespaceByArray('markdown', xssSetting, function(err, config) { Config.updateConfigCache('markdown', config); req.session.xssSetting = null; req.flash('successMessage', ['Successfully updated!']); return res.redirect('/admin/markdown'); }); } else { req.flash('errorMessage', req.form.errors); return res.redirect('/admin/markdown'); } }; const stringToArray = (string) => { const array = string.split(','); return array.map(item => item.trim()); }; // app.get('/admin/customize' , admin.customize.index); actions.customize = {}; actions.customize.index = function(req, res) { var settingForm; settingForm = Config.setupCofigFormData('crowi', req.config); const highlightJsCssSelectorOptions = { 'github': { name: '[Light] GitHub', border: false }, 'github-gist': { name: '[Light] GitHub Gist', border: true }, 'atom-one-light': { name: '[Light] Atom One Light', border: true }, 'xcode': { name: '[Light] Xcode', border: true }, 'vs': { name: '[Light] Vs', border: true }, 'atom-one-dark': { name: '[Dark] Atom One Dark', border: false }, 'hybrid': { name: '[Dark] Hybrid', border: false }, 'monokai': { name: '[Dark] Monokai', border: false }, 'tomorrow-night': { name: '[Dark] Tomorrow Night', border: false }, 'vs2015': { name: '[Dark] Vs 2015', border: false }, }; return res.render('admin/customize', { settingForm: settingForm, highlightJsCssSelectorOptions: highlightJsCssSelectorOptions }); }; // app.get('/admin/notification' , admin.notification.index); actions.notification = {}; actions.notification.index = async(req, res) => { const config = crowi.getConfig(); const UpdatePost = crowi.model('UpdatePost'); let slackSetting = Config.setupCofigFormData('notification', config); const hasSlackIwhUrl = Config.hasSlackIwhUrl(config); const hasSlackToken = Config.hasSlackToken(config); if (!Config.hasSlackIwhUrl(req.config)) { slackSetting['slack:incomingWebhookUrl'] = ''; } if (req.session.slackSetting) { slackSetting = req.session.slackSetting; req.session.slackSetting = null; } const globalNotifications = await GlobalNotificationSetting.findAll(); const userNotifications = await UpdatePost.findAll(); return res.render('admin/notification', { userNotifications, slackSetting, hasSlackIwhUrl, hasSlackToken, globalNotifications, }); }; // app.post('/admin/notification/slackSetting' , admin.notification.slackauth); actions.notification.slackSetting = function(req, res) { var slackSetting = req.form.slackSetting; req.session.slackSetting = slackSetting; if (req.form.isValid) { Config.updateNamespaceByArray('notification', slackSetting, function(err, config) { Config.updateConfigCache('notification', config); req.flash('successMessage', ['Successfully Updated!']); req.session.slackSetting = null; // Re-setup crowi.setupSlack().then(function() { return res.redirect('/admin/notification'); }); }); } else { req.flash('errorMessage', req.form.errors); return res.redirect('/admin/notification'); } }; // app.get('/admin/notification/slackAuth' , admin.notification.slackauth); actions.notification.slackAuth = function(req, res) { const code = req.query.code; const config = crowi.getConfig(); if (!code || !Config.hasSlackConfig(req.config)) { return res.redirect('/admin/notification'); } const slack = crowi.slack; slack.getOauthAccessToken(code) .then(data => { debug('oauth response', data); Config.updateNamespaceByArray('notification', {'slack:token': data.access_token}, function(err, config) { if (err) { req.flash('errorMessage', ['Failed to save access_token. Please try again.']); } else { Config.updateConfigCache('notification', config); req.flash('successMessage', ['Successfully Connected!']); } return res.redirect('/admin/notification'); }); }).catch(err => { debug('oauth response ERROR', err); req.flash('errorMessage', ['Failed to fetch access_token. Please do connect again.']); return res.redirect('/admin/notification'); }); }; actions.search = {}; actions.search.index = function(req, res) { return res.render('admin/search', { }); }; // app.post('/admin/notification/slackIwhSetting' , admin.notification.slackIwhSetting); actions.notification.slackIwhSetting = function(req, res) { var slackIwhSetting = req.form.slackIwhSetting; if (req.form.isValid) { Config.updateNamespaceByArray('notification', slackIwhSetting, function(err, config) { Config.updateConfigCache('notification', config); req.flash('successMessage', ['Successfully Updated!']); // Re-setup crowi.setupSlack().then(function() { return res.redirect('/admin/notification#slack-incoming-webhooks'); }); }); } else { req.flash('errorMessage', req.form.errors); return res.redirect('/admin/notification#slack-incoming-webhooks'); } }; // app.post('/admin/notification/slackSetting/disconnect' , admin.notification.disconnectFromSlack); actions.notification.disconnectFromSlack = function(req, res) { const config = crowi.getConfig(); const slack = crowi.slack; Config.updateNamespaceByArray('notification', {'slack:token': ''}, function(err, config) { Config.updateConfigCache('notification', config); req.flash('successMessage', ['Successfully Disconnected!']); return res.redirect('/admin/notification'); }); }; actions.globalNotification = {}; actions.globalNotification.detail = async(req, res) => { const notificationSettingId = req.params.id; let renderVars = {}; if (notificationSettingId) { try { renderVars.setting = await GlobalNotificationSetting.findOne({_id: notificationSettingId}); } catch (err) { logger.error(`Error in finding a global notification setting with {_id: ${notificationSettingId}}`); } } return res.render('admin/global-notification-detail', renderVars); }; actions.globalNotification.create = (req, res) => { const form = req.form.notificationGlobal; let setting; switch (form.notifyToType) { case 'mail': setting = new GlobalNotificationMailSetting(crowi); setting.toEmail = form.toEmail; break; // case 'slack': // setting = new GlobalNotificationSlackSetting(crowi); // setting.slackChannels = form.slackChannels; // break; default: logger.error('GlobalNotificationSetting Type Error: undefined type'); req.flash('errorMessage', 'Error occurred in creating a new global notification setting: undefined notification type'); return res.redirect('/admin/notification#global-notification'); } setting.triggerPath = form.triggerPath; setting.triggerEvents = getNotificationEvents(form); setting.save(); return res.redirect('/admin/notification#global-notification'); }; actions.globalNotification.update = async(req, res) => { const form = req.form.notificationGlobal; const setting = await GlobalNotificationSetting.findOne({_id: form.id}); switch (form.notifyToType) { case 'mail': setting.toEmail = form.toEmail; break; // case 'slack': // setting.slackChannels = form.slackChannels; // break; default: logger.error('GlobalNotificationSetting Type Error: undefined type'); req.flash('errorMessage', 'Error occurred in updating the global notification setting: undefined notification type'); return res.redirect('/admin/notification#global-notification'); } setting.triggerPath = form.triggerPath; setting.triggerEvents = getNotificationEvents(form); setting.save(); return res.redirect('/admin/notification#global-notification'); }; actions.globalNotification.remove = async(req, res) => { const id = req.params.id; try { await GlobalNotificationSetting.findOneAndRemove({_id: id}); return res.redirect('/admin/notification#global-notification'); } catch (err) { req.flash('errorMessage', 'Error in deleting global notification setting'); return res.redirect('/admin/notification#global-notification'); } }; const getNotificationEvents = (form) => { let triggerEvents = []; const triggerEventKeys = Object.keys(form).filter(key => key.match(/^triggerEvent/)); triggerEventKeys.forEach(key => { if (form[key]) { triggerEvents.push(form[key]); } }); return triggerEvents; }; actions.search.buildIndex = function(req, res) { var search = crowi.getSearcher(); if (!search) { return res.redirect('/admin'); } return new Promise(function(resolve, reject) { search.deleteIndex() .then(function(data) { debug('Index deleted.'); resolve(); }).catch(function(err) { debug('Delete index Error, but if it is initialize, its ok.', err); resolve(); }); }) .then(function() { return search.buildIndex(); }) .then(function(data) { if (!data.errors) { debug('Index created.'); } return search.addAllPages(); }) .then(function(data) { if (!data.errors) { debug('Data is successfully indexed.'); req.flash('successMessage', 'Data is successfully indexed.'); } else { debug('Data index error.', data.errors); req.flash('errorMessage', `Data index error: ${data.errors}`); } return res.redirect('/admin/search'); }) .catch(function(err) { debug('Error', err); req.flash('errorMessage', `Error: ${err}`); return res.redirect('/admin/search'); }); }; actions.user = {}; actions.user.index = function(req, res) { var page = parseInt(req.query.page) || 1; User.findUsersWithPagination({page: page}, function(err, result) { const pager = createPager(result.total, result.limit, result.page, result.pages, MAX_PAGE_LIST); return res.render('admin/users', { users: result.docs, pager: pager }); }); }; actions.user.invite = function(req, res) { var form = req.form.inviteForm; var toSendEmail = form.sendEmail || false; if (req.form.isValid) { User.createUsersByInvitation(form.emailList.split('\n'), toSendEmail, function(err, userList) { if (err) { req.flash('errorMessage', req.form.errors.join('\n')); } else { req.flash('createdUser', userList); } return res.redirect('/admin/users'); }); } else { req.flash('errorMessage', req.form.errors.join('\n')); return res.redirect('/admin/users'); } }; actions.user.makeAdmin = function(req, res) { var id = req.params.id; User.findById(id, function(err, userData) { userData.makeAdmin(function(err, userData) { if (err === null) { req.flash('successMessage', userData.name + 'さんのアカウントを管理者に設定しました。'); } else { req.flash('errorMessage', '更新に失敗しました。'); debug(err, userData); } return res.redirect('/admin/users'); }); }); }; actions.user.removeFromAdmin = function(req, res) { var id = req.params.id; User.findById(id, function(err, userData) { userData.removeFromAdmin(function(err, userData) { if (err === null) { req.flash('successMessage', userData.name + 'さんのアカウントを管理者から外しました。'); } else { req.flash('errorMessage', '更新に失敗しました。'); debug(err, userData); } return res.redirect('/admin/users'); }); }); }; actions.user.activate = function(req, res) { var id = req.params.id; User.findById(id, function(err, userData) { userData.statusActivate(function(err, userData) { if (err === null) { req.flash('successMessage', userData.name + 'さんのアカウントを有効化しました'); } else { req.flash('errorMessage', '更新に失敗しました。'); debug(err, userData); } return res.redirect('/admin/users'); }); }); }; actions.user.suspend = function(req, res) { var id = req.params.id; User.findById(id, function(err, userData) { userData.statusSuspend(function(err, userData) { if (err === null) { req.flash('successMessage', userData.name + 'さんのアカウントを利用停止にしました'); } else { req.flash('errorMessage', '更新に失敗しました。'); debug(err, userData); } return res.redirect('/admin/users'); }); }); }; actions.user.remove = function(req, res) { const id = req.params.id; let username = ''; return new Promise((resolve, reject) => { User.findById(id, (err, userData) => { username = userData.username; return resolve(userData); }); }) .then((userData) => { return new Promise((resolve, reject) => { userData.statusDelete((err, userData) => { if (err) { reject(err); } resolve(userData); }); }); }) .then((userData) => { // remove all External Accounts return ExternalAccount.remove({user: userData}).then(() => userData); }) .then((userData) => { return Page.removePageByPath(`/user/${username}`).then(() => userData); }) .then((userData) => { req.flash('successMessage', `${username} さんのアカウントを削除しました`); return res.redirect('/admin/users'); }) .catch((err) => { req.flash('errorMessage', '削除に失敗しました。'); return res.redirect('/admin/users'); }); }; // これやったときの relation の挙動未確認 actions.user.removeCompletely = function(req, res) { // ユーザーの物理削除 var id = req.params.id; User.removeCompletelyById(id, function(err, removed) { if (err) { debug('Error while removing user.', err, id); req.flash('errorMessage', '完全な削除に失敗しました。'); } else { req.flash('successMessage', '削除しました'); } return res.redirect('/admin/users'); }); }; // app.post('/_api/admin/users.resetPassword' , admin.api.usersResetPassword); actions.user.resetPassword = function(req, res) { const id = req.body.user_id; const User = crowi.model('User'); User.resetPasswordByRandomString(id) .then(function(data) { data.user = User.filterToPublicFields(data.user); return res.json(ApiResponse.success(data)); }).catch(function(err) { debug('Error on reseting password', err); return res.json(ApiResponse.error('Error')); }); }; actions.externalAccount = {}; actions.externalAccount.index = function(req, res) { const page = parseInt(req.query.page) || 1; ExternalAccount.findAllWithPagination({page}) .then((result) => { const pager = createPager(result.total, result.limit, result.page, result.pages, MAX_PAGE_LIST); return res.render('admin/external-accounts', { accounts: result.docs, pager: pager }); }); }; actions.externalAccount.remove = function(req, res) { const accountId = req.params.id; ExternalAccount.findOneAndRemove({accountId}) .then((result) => { if (result == null) { req.flash('errorMessage', '削除に失敗しました。'); return res.redirect('/admin/users/external-accounts'); } else { req.flash('successMessage', `外部アカウント '${accountId}' を削除しました`); return res.redirect('/admin/users/external-accounts'); } }); }; actions.userGroup = {}; actions.userGroup.index = function(req, res) { var page = parseInt(req.query.page) || 1; var renderVar = { userGroups: [], userGroupRelations: new Map(), pager: null, }; UserGroup.findUserGroupsWithPagination({ page: page }) .then((result) => { const pager = createPager(result.total, result.limit, result.page, result.pages, MAX_PAGE_LIST); var userGroups = result.docs; renderVar.userGroups = userGroups; renderVar.pager = pager; return userGroups.map((userGroup) => { return new Promise((resolve, reject) => { UserGroupRelation.findAllRelationForUserGroup(userGroup) .then((relations) => { return resolve([userGroup, relations]); }); }); }); }) .then((allRelationsPromise) => { return Promise.all(allRelationsPromise); }) .then((relations) => { renderVar.userGroupRelations = new Map(relations); debug('in findUserGroupsWithPagination findAllRelationForUserGroupResult', renderVar.userGroupRelations); return res.render('admin/user-groups', renderVar); }) .catch( function(err) { debug('Error on find all relations', err); return res.json(ApiResponse.error('Error')); }); }; // グループ詳細 actions.userGroup.detail = function(req, res) { const userGroupId = req.params.id; const renderVar = { userGroup: null, userGroupRelations: [], pageGroupRelations: [], notRelatedusers: [] }; let targetUserGroup = null; UserGroup.findOne({ _id: userGroupId}) .then(function(userGroup) { targetUserGroup = userGroup; if (targetUserGroup == null) { req.flash('errorMessage', 'グループがありません'); throw new Error('no userGroup is exists. ', name); } else { renderVar.userGroup = targetUserGroup; return Promise.all([ // get all user and group relations UserGroupRelation.findAllRelationForUserGroup(targetUserGroup), // get all page and group relations PageGroupRelation.findAllRelationForUserGroup(targetUserGroup), // get all not related users for group UserGroupRelation.findUserByNotRelatedGroup(targetUserGroup), ]); } }) .then((resolves) => { renderVar.userGroupRelations = resolves[0]; renderVar.pageGroupRelations = resolves[1]; renderVar.notRelatedusers = resolves[2]; debug('notRelatedusers', renderVar.notRelatedusers); return res.render('admin/user-group-detail', renderVar); }) .catch((err) => { req.flash('errorMessage', 'ユーザグループの検索に失敗しました'); debug('Error on get userGroupDetail', err); return res.redirect('/admin/user-groups'); }); }; //グループの生成 actions.userGroup.create = function(req, res) { const form = req.form.createGroupForm; if (req.form.isValid) { const userGroupName = crowi.xss.process(form.userGroupName); UserGroup.createGroupByName(userGroupName) .then((newUserGroup) => { req.flash('successMessage', newUserGroup.name); req.flash('createdUserGroup', newUserGroup); return res.redirect('/admin/user-groups'); }) .catch((err) => { debug('create userGroup error:', err); req.flash('errorMessage', '同じグループ名が既に存在します。'); }); } else { req.flash('errorMessage', req.form.errors.join('\n')); return res.redirect('/admin/user-groups'); } }; // actions.userGroup.update = function(req, res) { const userGroupId = req.params.userGroupId; const name = crowi.xss.process(req.body.name); UserGroup.findById(userGroupId) .then((userGroupData) => { if (userGroupData == null) { req.flash('errorMessage', 'グループの検索に失敗しました。'); return new Promise(); } else { // 名前存在チェック return UserGroup.isRegisterableName(name) .then((isRegisterableName) => { // 既に存在するグループ名に更新しようとした場合はエラー if (!isRegisterableName) { req.flash('errorMessage', 'グループ名が既に存在します。'); } else { return userGroupData.updateName(name) .then(() => { req.flash('successMessage', 'グループ名を更新しました。'); }) .catch((err) => { req.flash('errorMessage', 'グループ名の更新に失敗しました。'); }); } }); } }) .then(() => { return res.redirect('/admin/user-group-detail/' + userGroupId); }); }; actions.userGroup.uploadGroupPicture = function(req, res) { var fileUploader = require('../util/fileUploader')(crowi, app); //var storagePlugin = new pluginService('storage'); //var storage = require('../service/storage').StorageService(config); var userGroupId = req.params.userGroupId; var tmpFile = req.file || null; if (!tmpFile) { return res.json({ 'status': false, 'message': 'File type error.' }); } UserGroup.findById(userGroupId, function(err, userGroupData) { if (!userGroupData) { return res.json({ 'status': false, 'message': 'UserGroup error.' }); } var tmpPath = tmpFile.path; var filePath = UserGroup.createUserGroupPictureFilePath(userGroupData, tmpFile.filename + tmpFile.originalname); var acceptableFileType = /image\/.+/; if (!tmpFile.mimetype.match(acceptableFileType)) { return res.json({ 'status': false, 'message': 'File type error. Only image files is allowed to set as user picture.', }); } var tmpFileStream = fs.createReadStream(tmpPath, { flags: 'r', encoding: null, fd: null, mode: '0666', autoClose: true }); fileUploader.uploadFile(filePath, tmpFile.mimetype, tmpFileStream, {}) .then(function(data) { var imageUrl = fileUploader.generateUrl(filePath); userGroupData.updateImage(imageUrl) .then(() => { fs.unlink(tmpPath, function(err) { if (err) { debug('Error while deleting tmp file.', err); } return res.json({ 'status': true, 'url': imageUrl, 'message': '', }); }); }); }).catch(function(err) { debug('Uploading error', err); return res.json({ 'status': false, 'message': 'Error while uploading to ', }); }); }); }; actions.userGroup.deletePicture = function(req, res) { const userGroupId = req.params.userGroupId; let userGroupName = null; UserGroup.findById(userGroupId) .then((userGroupData) => { if (userGroupData == null) { return Promise.reject(); } else { userGroupName = userGroupData.name; return userGroupData.deleteImage(); } }) .then((updated) => { req.flash('successMessage', 'Deleted group picture'); return res.redirect('/admin/user-group-detail/' + userGroupId); }) .catch((err) => { debug('An error occured.', err); req.flash('errorMessage', 'Error while deleting group picture'); if (userGroupName == null) { return res.redirect('/admin/user-groups/'); } else { return res.redirect('/admin/user-group-detail/' + userGroupId); } }); }; // app.post('/_api/admin/user-group/delete' , admin.userGroup.removeCompletely); actions.userGroup.removeCompletely = function(req, res) { const id = req.body.user_group_id; const fileUploader = require('../util/fileUploader')(crowi, app); UserGroup.removeCompletelyById(id) //// TODO remove attachments // couldn't remove because filePath includes '/uploads/uploads' // Error: ENOENT: no such file or directory, unlink 'C:\dev\growi\public\uploads\uploads\userGroup\5b1df18ab69611651cc71495.png // // .then(removed => { // if (removed.image != null) { // fileUploader.deleteFile(null, removed.image); // } // }) .then(() => { req.flash('successMessage', '削除しました'); return res.redirect('/admin/user-groups'); }) .catch((err) => { debug('Error while removing userGroup.', err, id); req.flash('errorMessage', '完全な削除に失敗しました。'); return res.redirect('/admin/user-groups'); }); }; actions.userGroupRelation = {}; actions.userGroupRelation.index = function(req, res) { }; actions.userGroupRelation.create = function(req, res) { const User = crowi.model('User'); const UserGroup = crowi.model('UserGroup'); const UserGroupRelation = crowi.model('UserGroupRelation'); // req params const userName = req.body.user_name; const userGroupId = req.body.user_group_id; let user = null; let userGroup = null; Promise.all([ // ユーザグループをIDで検索 UserGroup.findById(userGroupId), // ユーザを名前で検索 User.findUserByUsername(userName), ]) .then((resolves) => { userGroup = resolves[0]; user = resolves[1]; // Relation を作成 UserGroupRelation.createRelation(userGroup, user); }) .then((result) => { return res.redirect('/admin/user-group-detail/' + userGroup.id); }).catch((err) => { debug('Error on create user-group relation', err); req.flash('errorMessage', 'Error on create user-group relation'); return res.redirect('/admin/user-group-detail/' + userGroup.id); }); }; actions.userGroupRelation.remove = function(req, res) { const UserGroupRelation = crowi.model('UserGroupRelation'); const userGroupId = req.params.id; const relationId = req.params.relationId; UserGroupRelation.removeById(relationId) .then(() =>{ return res.redirect('/admin/user-group-detail/' + userGroupId); }) .catch((err) => { debug('Error on remove user-group-relation', err); req.flash('errorMessage', 'グループのユーザ削除に失敗しました。'); }); }; actions.api = {}; actions.api.appSetting = function(req, res) { var form = req.form.settingForm; if (req.form.isValid) { debug('form content', form); // mail setting ならここで validation if (form['mail:from']) { validateMailSetting(req, form, function(err, data) { debug('Error validate mail setting: ', err, data); if (err) { req.form.errors.push('SMTPを利用したテストメール送信に失敗しました。設定をみなおしてください。'); return res.json({status: false, message: req.form.errors.join('\n')}); } return saveSetting(req, res, form); }); } else { return saveSetting(req, res, form); } } else { return res.json({status: false, message: req.form.errors.join('\n')}); } }; actions.api.securitySetting = function(req, res) { const form = req.form.settingForm; if (req.form.isValid) { debug('form content', form); return saveSetting(req, res, form); } else { return res.json({status: false, message: req.form.errors.join('\n')}); } }; actions.api.securityPassportLdapSetting = function(req, res) { var form = req.form.settingForm; if (!req.form.isValid) { return res.json({status: false, message: req.form.errors.join('\n')}); } debug('form content', form); return saveSettingAsync(form) .then(() => { const config = crowi.getConfig(); // reset strategy crowi.passportService.resetLdapStrategy(); // setup strategy if (Config.isEnabledPassportLdap(config)) { crowi.passportService.setupLdapStrategy(true); } return; }) .then(() => { res.json({status: true}); }); }; actions.api.securityPassportGoogleSetting = async(req, res) => { const form = req.form.settingForm; if (!req.form.isValid) { return res.json({status: false, message: req.form.errors.join('\n')}); } debug('form content', form); await saveSettingAsync(form); const config = await crowi.getConfig(); // reset strategy await crowi.passportService.resetGoogleStrategy(); // setup strategy if (Config.isEnabledPassportGoogle(config)) { try { await crowi.passportService.setupGoogleStrategy(true); } catch (err) { // reset await crowi.passportService.resetGoogleStrategy(); return res.json({status: false, message: err.message}); } } return res.json({status: true}); }; actions.api.securityPassportGitHubSetting = async(req, res) => { const form = req.form.settingForm; if (!req.form.isValid) { return res.json({status: false, message: req.form.errors.join('\n')}); } debug('form content', form); await saveSettingAsync(form); const config = await crowi.getConfig(); // reset strategy await crowi.passportService.resetGitHubStrategy(); // setup strategy if (Config.isEnabledPassportGitHub(config)) { try { await crowi.passportService.setupGitHubStrategy(true); } catch (err) { // reset await crowi.passportService.resetGitHubStrategy(); return res.json({status: false, message: err.message}); } } return res.json({status: true}); }; actions.api.customizeSetting = function(req, res) { const form = req.form.settingForm; if (req.form.isValid) { debug('form content', form); return saveSetting(req, res, form); } else { return res.json({status: false, message: req.form.errors.join('\n')}); } }; actions.api.customizeSetting = function(req, res) { const form = req.form.settingForm; if (req.form.isValid) { debug('form content', form); return saveSetting(req, res, form); } else { return res.json({status: false, message: req.form.errors.join('\n')}); } }; // app.post('/_api/admin/notifications.add' , admin.api.notificationAdd); actions.api.notificationAdd = function(req, res) { var UpdatePost = crowi.model('UpdatePost'); var pathPattern = req.body.pathPattern; var channel = req.body.channel; debug('notification.add', pathPattern, channel); UpdatePost.create(pathPattern, channel, req.user) .then(function(doc) { debug('Successfully save updatePost', doc); // fixme: うーん doc.creator = doc.creator._id.toString(); return res.json(ApiResponse.success({updatePost: doc})); }).catch(function(err) { debug('Failed to save updatePost', err); return res.json(ApiResponse.error()); }); }; // app.post('/_api/admin/notifications.remove' , admin.api.notificationRemove); actions.api.notificationRemove = function(req, res) { var UpdatePost = crowi.model('UpdatePost'); var id = req.body.id; UpdatePost.remove(id) .then(function() { debug('Successfully remove updatePost'); return res.json(ApiResponse.success({})); }).catch(function(err) { debug('Failed to remove updatePost', err); return res.json(ApiResponse.error()); }); }; // app.get('/_api/admin/users.search' , admin.api.userSearch); actions.api.usersSearch = function(req, res) { const User = crowi.model('User'); const email =req.query.email; User.findUsersByPartOfEmail(email, {}) .then(users => { const result = { data: users }; return res.json(ApiResponse.success(result)); }).catch(err => { return res.json(ApiResponse.error()); }); }; actions.api.toggleIsEnabledForGlobalNotification = async(req, res) => { const id = req.query.id; const isEnabled = (req.query.isEnabled == 'true'); try { if (isEnabled) { await GlobalNotificationSetting.enable(id); } else { await GlobalNotificationSetting.disable(id); } return res.json(ApiResponse.success()); } catch (err) { return res.json(ApiResponse.error()); } }; /** * save settings, update config cache, and response json * * @param {any} req * @param {any} res * @param {any} form */ function saveSetting(req, res, form) { Config.updateNamespaceByArray('crowi', form, function(err, config) { Config.updateConfigCache('crowi', config); return res.json({status: true}); }); } /** * save settings, update config cache ONLY. (this method don't response json) * * @param {any} form * @returns */ function saveSettingAsync(form) { return new Promise((resolve, reject) => { Config.updateNamespaceByArray('crowi', form, (err, config) => { if (err) { return reject(err); } Config.updateConfigCache('crowi', config); return resolve(); }); }); } function validateMailSetting(req, form, callback) { var mailer = crowi.mailer; var option = { host: form['mail:smtpHost'], port: form['mail:smtpPort'], }; if (form['mail:smtpUser'] && form['mail:smtpPassword']) { option.auth = { user: form['mail:smtpUser'], pass: form['mail:smtpPassword'], }; } if (option.port === 465) { option.secure = true; } var smtpClient = mailer.createSMTPClient(option); debug('mailer setup for validate SMTP setting', smtpClient); smtpClient.sendMail({ from: form['mail:from'], to: req.user.email, subject: 'Wiki管理設定のアップデートによるメール通知', text: 'このメールは、WikiのSMTP設定のアップデートにより送信されています。' }, callback); } return actions; };