discourse/app/services/user_activator.rb

# frozen_string_literal: true

class UserActivator
  attr_reader :user, :request, :session, :cookies, :message

  def initialize(user, request, session, cookies)
    @user = user
    @session = session
    @cookies = cookies
    @request = request
    @message = nil
  end

  def start
  end

  def finish
    @message = activator.activate
  end

  def success_message
    activator.success_message
  end

  private

  def activator
    factory.new(user, request, session, cookies)
  end

  def factory
    invite = Invite.find_by(email: Email.downcase(@user.email))

    if !user.active?
      EmailActivator
    elsif SiteSetting.must_approve_users? && !(invite.present? && invite.redeemable?)
      ApprovalActivator
    else
      LoginActivator
    end
  end
end

class ApprovalActivator < UserActivator
  def activate
    success_message
  end

  def success_message
    I18n.t("login.wait_approval")
  end
end

class EmailActivator < UserActivator
  def activate
    email_token = user.email_tokens.create!(email: user.email, scope: EmailToken.scopes[:signup])
    EmailToken.enqueue_signup_email(email_token)
    success_message
  end

  def success_message
    I18n.t("login.activate_email", email: Rack::Utils.escape_html(user.email))
  end
end

class LoginActivator < UserActivator
  include CurrentUser

  def activate
    log_on_user(user)
    user.enqueue_welcome_message("welcome_user")
    success_message
  end

  def success_message
    I18n.t("login.active")
  end
end
DEV: enable frozen string literal on all files This reduces chances of errors where consumers of strings mutate inputs and reduces memory usage of the app. Test suite passes now, but there may be some stuff left, so we will run a few sites on a branch prior to merging 2019-05-02 18:17:27 -04:00			`# frozen_string_literal: true`

Refactored user activation business logic out of UsersController and into a UserActivator class. 2013-08-18 10:37:38 -04:00			`class UserActivator`
Refactor UsersController#create * Simplify controller action * Extract service classes 2013-11-12 17:37:38 -05:00			`attr_reader :user, :request, :session, :cookies, :message`
add current_user_provider so people can override current_user bevior cleanly, see http://meta.discourse.org/t/amending-current-user-logic-in-discourse/10278 2013-10-09 00:10:37 -04:00
			`def initialize(user, request, session, cookies)`
Refactored user activation business logic out of UsersController and into a UserActivator class. 2013-08-18 10:37:38 -04:00			`@user = user`
			`@session = session`
			`@cookies = cookies`
add current_user_provider so people can override current_user bevior cleanly, see http://meta.discourse.org/t/amending-current-user-logic-in-discourse/10278 2013-10-09 00:10:37 -04:00			`@request = request`
Refactor UsersController#create * Simplify controller action * Extract service classes 2013-11-12 17:37:38 -05:00			`@message = nil`
Refactored user activation business logic out of UsersController and into a UserActivator class. 2013-08-18 10:37:38 -04:00			`end`

Refactor UsersController#create * Simplify controller action * Extract service classes 2013-11-12 17:37:38 -05:00			`def start`
			`end`

			`def finish`
			`@message = activator.activate`
Refactored user activation business logic out of UsersController and into a UserActivator class. 2013-08-18 10:37:38 -04:00			`end`

FEATURE: forgot_password_strict setting also prevents reporting that an email address is taken during signup 2017-10-03 14:08:37 -04:00			`def success_message`
			`activator.success_message`
			`end`

Refactored user activation business logic out of UsersController and into a UserActivator class. 2013-08-18 10:37:38 -04:00			`private`

			`def activator`
add current_user_provider so people can override current_user bevior cleanly, see http://meta.discourse.org/t/amending-current-user-logic-in-discourse/10278 2013-10-09 00:10:37 -04:00			`factory.new(user, request, session, cookies)`
Refactored user activation business logic out of UsersController and into a UserActivator class. 2013-08-18 10:37:38 -04:00			`end`

			`def factory`
FIX: mark user as approved if an invite is already present 2015-06-25 15:51:26 -04:00			`invite = Invite.find_by(email: Email.downcase(@user.email))`
FIX: Users should be able to activate their emails even if unapproved Note in discourse `active` means "Email is active" - they still can't login until approved 2017-09-12 15:04:39 -04:00
			`if !user.active?`
Refactored user activation business logic out of UsersController and into a UserActivator class. 2013-08-18 10:37:38 -04:00			`EmailActivator`
FEATURE: Allow using invites when DiscourseConnect SSO is enabled (#12419) This PR allows invitations to be used when the DiscourseConnect SSO is enabled for a site (`enable_discourse_connect`) and local logins are disabled. Previously invites could not be accepted with SSO enabled simply because we did not have the code paths to handle that logic. The invitation methods that are supported include: * Inviting people to groups via email address * Inviting people to topics via email address * Using invitation links generated by the Invite Users UI in the /my/invited/pending route The flow works like this: 1. User visits an invite URL 2. The normal invitation validations (redemptions/expiry) happen at that point 3. We store the invite key in a secure session 4. The user clicks "Accept Invitation and Continue" (see below) 5. The user is redirected to /session/sso then to the SSO provider URL then back to /session/sso_login 6. We retrieve the invite based on the invite key in secure session. We revalidate the invitation. We show an error to the user if it is not valid. An additional check here for invites with an email specified is to check the SSO email matches the invite email 7. If the invite is OK we create the user via the normal SSO methods 8. We redeem the invite and activate the user. We clear the invite key in secure session. 9. If the invite had a topic we redirect the user there, otherwise we redirect to / Note that we decided for SSO-based invites the `must_approve_users` site setting is ignored, because the invite is a form of pre-approval, and because regular non-staff users cannot send out email invites or generally invite to the forum in this case. Also deletes some group invite checks as per https://github.com/discourse/discourse/pull/12353 2021-03-18 20:20:10 -04:00			`elsif SiteSetting.must_approve_users? && !(invite.present? && invite.redeemable?)`
FIX: Users should be able to activate their emails even if unapproved Note in discourse `active` means "Email is active" - they still can't login until approved 2017-09-12 15:04:39 -04:00			`ApprovalActivator`
Refactored user activation business logic out of UsersController and into a UserActivator class. 2013-08-18 10:37:38 -04:00			`else`
			`LoginActivator`
			`end`
Refactor UsersController#create * Simplify controller action * Extract service classes 2013-11-12 17:37:38 -05:00			`end`
Refactored user activation business logic out of UsersController and into a UserActivator class. 2013-08-18 10:37:38 -04:00			`end`

			`class ApprovalActivator < UserActivator`
			`def activate`
FEATURE: forgot_password_strict setting also prevents reporting that an email address is taken during signup 2017-10-03 14:08:37 -04:00			`success_message`
			`end`

			`def success_message`
Refactored user activation business logic out of UsersController and into a UserActivator class. 2013-08-18 10:37:38 -04:00			`I18n.t("login.wait_approval")`
			`end`
			`end`

			`class EmailActivator < UserActivator`
			`def activate`
DEV: Hash tokens stored from email_tokens (#14493) This commit adds token_hash and scopes columns to email_tokens table. token_hash is a replacement for the token column to avoid storing email tokens in plaintext as it can pose a security risk. The new scope column ensures that email tokens cannot be used to perform a different action than the one intended. To sum up, this commit: * Adds token_hash and scope to email_tokens * Reuses code that schedules critical_user_email * Refactors EmailToken.confirm and EmailToken.atomic_confirm methods * Periodically cleans old, unconfirmed or expired email tokens 2021-11-25 02:34:39 -05:00			`email_token = user.email_tokens.create!(email: user.email, scope: EmailToken.scopes[:signup])`
			`EmailToken.enqueue_signup_email(email_token)`
FEATURE: forgot_password_strict setting also prevents reporting that an email address is taken during signup 2017-10-03 14:08:37 -04:00			`success_message`
			`end`

			`def success_message`
SECURITY: XSS issue on Admin users list 2016-08-05 12:01:16 -04:00			`I18n.t("login.activate_email", email: Rack::Utils.escape_html(user.email))`
Refactored user activation business logic out of UsersController and into a UserActivator class. 2013-08-18 10:37:38 -04:00			`end`
			`end`

			`class LoginActivator < UserActivator`
			`include CurrentUser`

			`def activate`
			`log_on_user(user)`
			`user.enqueue_welcome_message("welcome_user")`
FEATURE: forgot_password_strict setting also prevents reporting that an email address is taken during signup 2017-10-03 14:08:37 -04:00			`success_message`
			`end`

			`def success_message`
Refactored user activation business logic out of UsersController and into a UserActivator class. 2013-08-18 10:37:38 -04:00			`I18n.t("login.active")`
			`end`
			`end`