discourse/lib/email_updater.rb

# frozen_string_literal: true

class EmailUpdater
  include HasErrors

  attr_reader :user

  def initialize(guardian = nil, user = nil)
    @guardian = guardian
    @user = user
  end

  def self.human_attribute_name(name, options = {})
    User.human_attribute_name(name, options)
  end

  def authorize_both?
    @user.staff?
  end

  def change_to(email_input)
    @guardian.ensure_can_edit_email!(@user)

    email = Email.downcase(email_input.strip)
    EmailValidator.new(attributes: :email).validate_each(self, :email, email)

    if existing_user = User.find_by_email(email)
      if SiteSetting.hide_email_address_taken
        Jobs.enqueue(:critical_user_email, type: :account_exists, user_id: existing_user.id)
      else
        error_message = +'change_email.error'
        error_message << '_staged' if existing_user.staged?
        errors.add(:base, I18n.t(error_message))
      end
    end

    if errors.blank? && existing_user.nil?
      args = {
        old_email: @user.email,
        new_email: email,
      }

      if authorize_both?
        args[:change_state] = EmailChangeRequest.states[:authorizing_old]
        email_token = @user.email_tokens.create!(email: args[:old_email])
        args[:old_email_token] = email_token
      else
        args[:change_state] = EmailChangeRequest.states[:authorizing_new]
        email_token = @user.email_tokens.create!(email: args[:new_email])
        args[:new_email_token] = email_token
      end
      @user.email_change_requests.create!(args)

      if args[:change_state] == EmailChangeRequest.states[:authorizing_new]
        send_email(:confirm_new_email, email_token)
      elsif args[:change_state] == EmailChangeRequest.states[:authorizing_old]
        send_email(:confirm_old_email, email_token)
      end
    end
  end

  def confirm(token)
    confirm_result = nil
    change_req = nil

    User.transaction do
      result = EmailToken.atomic_confirm(token)
      if result[:success]
        token = result[:email_token]
        @user = token.user

        change_req = user.email_change_requests
          .where('old_email_token_id = :token_id OR new_email_token_id = :token_id', token_id: token.id)
          .first

        # Simple state machine
        case change_req.try(:change_state)
        when EmailChangeRequest.states[:authorizing_old]
          new_token = user.email_tokens.create(email: change_req.new_email)
          change_req.update_columns(change_state: EmailChangeRequest.states[:authorizing_new],
                                    new_email_token_id: new_token.id)
          send_email(:confirm_new_email, new_token)
          confirm_result = :authorizing_new
        when EmailChangeRequest.states[:authorizing_new]
          change_req.update_column(:change_state, EmailChangeRequest.states[:complete])
          user.primary_email.update!(email: token.email)
          user.set_automatic_groups
          confirm_result = :complete
        end
      else
        errors.add(:base, I18n.t('change_email.already_done'))
        confirm_result = :error
      end
    end

    if confirm_result == :complete && change_req.old_email_token_id.blank?
      notify_old(change_req.old_email, token.email)
    end

    confirm_result || :error
  end

  protected

  def notify_old(old_email, new_email)
    Jobs.enqueue :critical_user_email,
                 to_address: old_email,
                 type: :notify_old_email,
                 user_id: @user.id
  end

  def send_email(type, email_token)
    Jobs.enqueue :critical_user_email,
                 to_address: email_token.email,
                 type: type,
                 user_id: @user.id,
                 email_token: email_token.token
  end

end
DEV: enable frozen string literal on all files This reduces chances of errors where consumers of strings mutate inputs and reduces memory usage of the app. Test suite passes now, but there may be some stuff left, so we will run a few sites on a branch prior to merging 2019-05-02 18:17:27 -04:00			`# frozen_string_literal: true`

SECURITY: Support for confirm old as well as new email accounts 2016-03-07 14:40:11 -05:00			`class EmailUpdater`
			`include HasErrors`

			`attr_reader :user`

Add rubocop to our build. (#5004) 2017-07-27 21:20:09 -04:00			`def initialize(guardian = nil, user = nil)`
SECURITY: Support for confirm old as well as new email accounts 2016-03-07 14:40:11 -05:00			`@guardian = guardian`
			`@user = user`
			`end`

Add rubocop to our build. (#5004) 2017-07-27 21:20:09 -04:00			`def self.human_attribute_name(name, options = {})`
SECURITY: Support for confirm old as well as new email accounts 2016-03-07 14:40:11 -05:00			`User.human_attribute_name(name, options)`
			`end`

			`def authorize_both?`
			`@user.staff?`
			`end`

			`def change_to(email_input)`
			`@guardian.ensure_can_edit_email!(@user)`

			`email = Email.downcase(email_input.strip)`
			`EmailValidator.new(attributes: :email).validate_each(self, :email, email)`

improve error message when trying to change email address to one used by a staged user 2016-03-21 14:36:26 -04:00			`if existing_user = User.find_by_email(email)`
FEATURE: the hide_email_address_taken setting works with the change email address form in user preferences 2017-10-04 11:41:08 -04:00			`if SiteSetting.hide_email_address_taken`
			`Jobs.enqueue(:critical_user_email, type: :account_exists, user_id: existing_user.id)`
			`else`
DEV: enable frozen string literal on all files This reduces chances of errors where consumers of strings mutate inputs and reduces memory usage of the app. Test suite passes now, but there may be some stuff left, so we will run a few sites on a branch prior to merging 2019-05-02 18:17:27 -04:00			`error_message = +'change_email.error'`
FEATURE: the hide_email_address_taken setting works with the change email address form in user preferences 2017-10-04 11:41:08 -04:00			`error_message << '_staged' if existing_user.staged?`
			`errors.add(:base, I18n.t(error_message))`
			`end`
improve error message when trying to change email address to one used by a staged user 2016-03-21 14:36:26 -04:00			`end`
SECURITY: Support for confirm old as well as new email accounts 2016-03-07 14:40:11 -05:00
FEATURE: the hide_email_address_taken setting works with the change email address form in user preferences 2017-10-04 11:41:08 -04:00			`if errors.blank? && existing_user.nil?`
SECURITY: Support for confirm old as well as new email accounts 2016-03-07 14:40:11 -05:00			`args = {`
			`old_email: @user.email,`
			`new_email: email,`
			`}`

			`if authorize_both?`
			`args[:change_state] = EmailChangeRequest.states[:authorizing_old]`
FIX: Don't allow invalid email to be saved. 2016-12-21 04:00:45 -05:00			`email_token = @user.email_tokens.create!(email: args[:old_email])`
SECURITY: Support for confirm old as well as new email accounts 2016-03-07 14:40:11 -05:00			`args[:old_email_token] = email_token`
			`else`
			`args[:change_state] = EmailChangeRequest.states[:authorizing_new]`
FIX: Don't allow invalid email to be saved. 2016-12-21 04:00:45 -05:00			`email_token = @user.email_tokens.create!(email: args[:new_email])`
SECURITY: Support for confirm old as well as new email accounts 2016-03-07 14:40:11 -05:00			`args[:new_email_token] = email_token`
			`end`
FIX: Don't allow invalid email to be saved. 2016-12-21 04:00:45 -05:00			`@user.email_change_requests.create!(args)`
SECURITY: Support for confirm old as well as new email accounts 2016-03-07 14:40:11 -05:00
			`if args[:change_state] == EmailChangeRequest.states[:authorizing_new]`
			`send_email(:confirm_new_email, email_token)`
			`elsif args[:change_state] == EmailChangeRequest.states[:authorizing_old]`
			`send_email(:confirm_old_email, email_token)`
			`end`
			`end`
			`end`

			`def confirm(token)`
			`confirm_result = nil`
			`change_req = nil`

			`User.transaction do`
			`result = EmailToken.atomic_confirm(token)`
			`if result[:success]`
			`token = result[:email_token]`
			`@user = token.user`

			`change_req = user.email_change_requests`
Add rubocop to our build. (#5004) 2017-07-27 21:20:09 -04:00			`.where('old_email_token_id = :token_id OR new_email_token_id = :token_id', token_id: token.id)`
			`.first`
SECURITY: Support for confirm old as well as new email accounts 2016-03-07 14:40:11 -05:00
			`# Simple state machine`
			`case change_req.try(:change_state)`
			`when EmailChangeRequest.states[:authorizing_old]`
			`new_token = user.email_tokens.create(email: change_req.new_email)`
			`change_req.update_columns(change_state: EmailChangeRequest.states[:authorizing_new],`
			`new_email_token_id: new_token.id)`
			`send_email(:confirm_new_email, new_token)`
			`confirm_result = :authorizing_new`
			`when EmailChangeRequest.states[:authorizing_new]`
			`change_req.update_column(:change_state, EmailChangeRequest.states[:complete])`
FIX: Don't skip validations when updating user's email. 2017-11-07 22:35:53 -05:00			`user.primary_email.update!(email: token.email)`
FIX: Automatically add user to groups after updating email address 2018-05-08 15:23:45 -04:00			`user.set_automatic_groups`
SECURITY: Support for confirm old as well as new email accounts 2016-03-07 14:40:11 -05:00			`confirm_result = :complete`
			`end`
			`else`
			`errors.add(:base, I18n.t('change_email.already_done'))`
			`confirm_result = :error`
			`end`
			`end`

			`if confirm_result == :complete && change_req.old_email_token_id.blank?`
			`notify_old(change_req.old_email, token.email)`
			`end`

			`confirm_result \|\| :error`
			`end`

			`protected`

Make rubocop happy again. 2018-06-07 01:28:18 -04:00			`def notify_old(old_email, new_email)`
			`Jobs.enqueue :critical_user_email,`
			`to_address: old_email,`
			`type: :notify_old_email,`
			`user_id: @user.id`
			`end`
SECURITY: Support for confirm old as well as new email accounts 2016-03-07 14:40:11 -05:00
Make rubocop happy again. 2018-06-07 01:28:18 -04:00			`def send_email(type, email_token)`
			`Jobs.enqueue :critical_user_email,`
			`to_address: email_token.email,`
			`type: type,`
			`user_id: @user.id,`
			`email_token: email_token.token`
			`end`
SECURITY: Support for confirm old as well as new email accounts 2016-03-07 14:40:11 -05:00
			`end`