Class: EmailUpdater

Inherits:
Object
  • Object
show all
Includes:
HasErrors
Defined in:
lib/email_updater.rb

Instance Attribute Summary collapse

Attributes included from HasErrors

#conflict, #errors, #forbidden, #not_found

Class Method Summary collapse

Instance Method Summary collapse

Methods included from HasErrors

#add_error, #add_errors_from, #rollback_from_errors!, #rollback_with!, #validate_child

Constructor Details

#initialize(guardian: nil, user: nil) ⇒ EmailUpdater

Returns a new instance of EmailUpdater.



13
14
15
16
 
# File 'lib/email_updater.rb', line 13

def initialize(guardian: nil, user: nil)
  @guardian = guardian
  @user = user
end

Instance Attribute Details

#change_reqObject (readonly)

Returns the value of attribute change_req.



7
8
9
 
# File 'lib/email_updater.rb', line 7

def change_req
  @change_req
end

#userObject (readonly)

Returns the value of attribute user.



6
7
8
 
# File 'lib/email_updater.rb', line 6

def user
  @user
end

Class Method Details

.human_attribute_name(name, options = {}) ⇒ Object 



9
10
11
 
# File 'lib/email_updater.rb', line 9

def self.human_attribute_name(name, options = {})
  User.human_attribute_name(name, options)
end

Instance Method Details

#change_to(email, add: false) ⇒ Object 



18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
 
# File 'lib/email_updater.rb', line 18

def change_to(email, add: false)
  @guardian.ensure_can_edit_email!(@user)

  email = Email.downcase(email.strip)
  EmailValidator.new(attributes: :email).validate_each(self, :email, email)
  return if errors.present?

  if existing_user = User.find_by_email(email)
    if SiteSetting.hide_email_address_taken
      Jobs.enqueue(:critical_user_email, type: "account_exists", user_id: existing_user.id)
    else
      error_message = +"change_email.error"
      error_message << "_staged" if existing_user.staged?
      errors.add(:base, I18n.t(error_message))
    end
  end

  if add
    secondary_emails_count = @user.secondary_emails.count
    if secondary_emails_count >= SiteSetting.max_allowed_secondary_emails
      errors.add(:base, I18n.t("change_email.max_secondary_emails_error"))
    end
  else
    old_email = @user.email
  end

  return if errors.present? || existing_user.present?

  if @guardian.is_staff? && @guardian.user != @user
    StaffActionLogger.new(@guardian.user).log_add_email(@user)
  else
    UserHistory.create!(action: UserHistory.actions[:add_email], acting_user_id: @user.id)
  end

  @change_req = EmailChangeRequest.find_or_initialize_by(user_id: @user.id, new_email: email)

  if @change_req.new_record?
    @change_req.requested_by = @guardian.user
    @change_req.old_email = old_email
    @change_req.new_email = email
  end

  if @change_req.change_state.blank? ||
       @change_req.change_state == EmailChangeRequest.states[:complete]
    @change_req.change_state =
      if SiteSetting.require_change_email_confirmation || @user.staff?
        EmailChangeRequest.states[:authorizing_old]
      else
        EmailChangeRequest.states[:authorizing_new]
      end
  end

  if @change_req.change_state == EmailChangeRequest.states[:authorizing_old]
    @change_req.old_email_token =
      @user.email_tokens.create!(email: @user.email, scope: EmailToken.scopes[:email_update])
    send_email(add ? "confirm_old_email_add" : "confirm_old_email", @change_req.old_email_token)
  elsif @change_req.change_state == EmailChangeRequest.states[:authorizing_new]
    @change_req.new_email_token =
      @user.email_tokens.create!(email: email, scope: EmailToken.scopes[:email_update])
    send_email("confirm_new_email", @change_req.new_email_token)
  end

  @change_req.save!
  @change_req
end

#confirm(token) ⇒ Object 



84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
 
# File 'lib/email_updater.rb', line 84

def confirm(token)
  confirm_result = nil

  User.transaction do
    email_token = EmailToken.confirmable(token, scope: EmailToken.scopes[:email_update])
    if email_token.blank?
      errors.add(:base, I18n.t("change_email.already_done"))
      confirm_result = :error
      next
    end

    email_token.update!(confirmed: true)

    @user = email_token.user
    @change_req =
      @user
        .email_change_requests
        .where(
          "old_email_token_id = :token_id OR new_email_token_id = :token_id",
          token_id: email_token.id,
        )
        .first

    case @change_req.try(:change_state)
    when EmailChangeRequest.states[:authorizing_old]
      @change_req.update!(
        change_state: EmailChangeRequest.states[:authorizing_new],
        new_email_token:
          @user.email_tokens.create!(
            email: @change_req.new_email,
            scope: EmailToken.scopes[:email_update],
          ),
      )
      send_email("confirm_new_email", @change_req.new_email_token)
      confirm_result = :authorizing_new
    when EmailChangeRequest.states[:authorizing_new]
      @change_req.update!(change_state: EmailChangeRequest.states[:complete])
      if !@user.staff?
        # Send an email notification only to users who did not confirm old
        # email.
        send_email_notification(@change_req.old_email, @change_req.new_email)
      end
      update_user_email(@change_req.old_email, @change_req.new_email)
      confirm_result = :complete
    end
  end

  confirm_result || :error
end

#update_user_email(old_email, new_email) ⇒ Object 



134
135
136
137
138
139
140
141
142
143
144
 
# File 'lib/email_updater.rb', line 134

def update_user_email(old_email, new_email)
  if old_email.present?
    @user.user_emails.find_by(email: old_email).update!(email: new_email)
  else
    @user.user_emails.create!(email: new_email)
  end
  @user.reload

  DiscourseEvent.trigger(:user_updated, @user)
  @user.set_automatic_groups
end