philomena/lib/philomena_web/controllers/admin/user/erase_controller.ex

72 lines
1.7 KiB
Elixir
Raw Permalink Normal View History

2024-07-19 22:35:07 +02:00
defmodule PhilomenaWeb.Admin.User.EraseController do
use PhilomenaWeb, :controller
alias Philomena.Users.User
alias Philomena.Users
plug :verify_authorized
plug :load_resource,
model: User,
id_name: "user_id",
id_field: "slug",
persisted: true,
preload: [:roles]
2024-08-26 03:10:34 +02:00
plug :prevent_deleting_nonexistent_users
2024-07-19 22:35:07 +02:00
plug :prevent_deleting_privileged_users
plug :prevent_deleting_verified_users
def new(conn, _params) do
render(conn, "new.html", title: "Erase user")
end
def create(conn, _params) do
{:ok, user} = Users.erase_user(conn.assigns.user, conn.assigns.current_user)
conn
|> put_flash(:info, "User erase started")
|> redirect(to: ~p"/profiles/#{user}")
end
defp verify_authorized(conn, _opts) do
case Canada.Can.can?(conn.assigns.current_user, :index, User) do
true -> conn
_false -> PhilomenaWeb.NotAuthorizedPlug.call(conn)
end
end
2024-08-26 03:10:34 +02:00
defp prevent_deleting_nonexistent_users(conn, _opts) do
if is_nil(conn.assigns.user) do
conn
|> put_flash(:error, "Couldn't find that username. Was it already erased?")
|> redirect(to: ~p"/admin/users")
|> Plug.Conn.halt()
else
conn
end
end
2024-07-19 22:35:07 +02:00
defp prevent_deleting_privileged_users(conn, _opts) do
if conn.assigns.user.role != "user" do
conn
|> put_flash(:error, "Cannot erase a privileged user")
|> redirect(to: ~p"/profiles/#{conn.assigns.user}")
|> Plug.Conn.halt()
else
conn
end
end
defp prevent_deleting_verified_users(conn, _opts) do
if conn.assigns.user.verified do
conn
|> put_flash(:error, "Cannot erase a verified user")
|> redirect(to: ~p"/profiles/#{conn.assigns.user}")
|> Plug.Conn.halt()
else
conn
end
end
end