2016-03-07 13:40:11 -06:00
|
|
|
require_dependency 'email'
|
|
|
|
require_dependency 'has_errors'
|
|
|
|
require_dependency 'email_validator'
|
|
|
|
|
|
|
|
class EmailUpdater
|
|
|
|
include HasErrors
|
|
|
|
|
|
|
|
attr_reader :user
|
|
|
|
|
2017-07-27 20:20:09 -05:00
|
|
|
def initialize(guardian = nil, user = nil)
|
2016-03-07 13:40:11 -06:00
|
|
|
@guardian = guardian
|
|
|
|
@user = user
|
|
|
|
end
|
|
|
|
|
2017-07-27 20:20:09 -05:00
|
|
|
def self.human_attribute_name(name, options = {})
|
2016-03-07 13:40:11 -06:00
|
|
|
User.human_attribute_name(name, options)
|
|
|
|
end
|
|
|
|
|
|
|
|
def authorize_both?
|
|
|
|
@user.staff?
|
|
|
|
end
|
|
|
|
|
|
|
|
def change_to(email_input)
|
|
|
|
@guardian.ensure_can_edit_email!(@user)
|
|
|
|
|
|
|
|
email = Email.downcase(email_input.strip)
|
|
|
|
EmailValidator.new(attributes: :email).validate_each(self, :email, email)
|
|
|
|
|
2016-03-21 13:36:26 -05:00
|
|
|
if existing_user = User.find_by_email(email)
|
2017-10-04 10:41:08 -05:00
|
|
|
if SiteSetting.hide_email_address_taken
|
|
|
|
Jobs.enqueue(:critical_user_email, type: :account_exists, user_id: existing_user.id)
|
|
|
|
else
|
|
|
|
error_message = 'change_email.error'
|
|
|
|
error_message << '_staged' if existing_user.staged?
|
|
|
|
errors.add(:base, I18n.t(error_message))
|
|
|
|
end
|
2016-03-21 13:36:26 -05:00
|
|
|
end
|
2016-03-07 13:40:11 -06:00
|
|
|
|
2017-10-04 10:41:08 -05:00
|
|
|
if errors.blank? && existing_user.nil?
|
2016-03-07 13:40:11 -06:00
|
|
|
args = {
|
|
|
|
old_email: @user.email,
|
|
|
|
new_email: email,
|
|
|
|
}
|
|
|
|
|
|
|
|
if authorize_both?
|
|
|
|
args[:change_state] = EmailChangeRequest.states[:authorizing_old]
|
2016-12-21 03:00:45 -06:00
|
|
|
email_token = @user.email_tokens.create!(email: args[:old_email])
|
2016-03-07 13:40:11 -06:00
|
|
|
args[:old_email_token] = email_token
|
|
|
|
else
|
|
|
|
args[:change_state] = EmailChangeRequest.states[:authorizing_new]
|
2016-12-21 03:00:45 -06:00
|
|
|
email_token = @user.email_tokens.create!(email: args[:new_email])
|
2016-03-07 13:40:11 -06:00
|
|
|
args[:new_email_token] = email_token
|
|
|
|
end
|
2016-12-21 03:00:45 -06:00
|
|
|
@user.email_change_requests.create!(args)
|
2016-03-07 13:40:11 -06:00
|
|
|
|
|
|
|
if args[:change_state] == EmailChangeRequest.states[:authorizing_new]
|
|
|
|
send_email(:confirm_new_email, email_token)
|
|
|
|
elsif args[:change_state] == EmailChangeRequest.states[:authorizing_old]
|
|
|
|
send_email(:confirm_old_email, email_token)
|
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
def confirm(token)
|
|
|
|
confirm_result = nil
|
|
|
|
change_req = nil
|
|
|
|
|
|
|
|
User.transaction do
|
|
|
|
result = EmailToken.atomic_confirm(token)
|
|
|
|
if result[:success]
|
|
|
|
token = result[:email_token]
|
|
|
|
@user = token.user
|
|
|
|
|
|
|
|
change_req = user.email_change_requests
|
2017-07-27 20:20:09 -05:00
|
|
|
.where('old_email_token_id = :token_id OR new_email_token_id = :token_id', token_id: token.id)
|
|
|
|
.first
|
2016-03-07 13:40:11 -06:00
|
|
|
|
|
|
|
# Simple state machine
|
|
|
|
case change_req.try(:change_state)
|
|
|
|
when EmailChangeRequest.states[:authorizing_old]
|
|
|
|
new_token = user.email_tokens.create(email: change_req.new_email)
|
|
|
|
change_req.update_columns(change_state: EmailChangeRequest.states[:authorizing_new],
|
|
|
|
new_email_token_id: new_token.id)
|
|
|
|
send_email(:confirm_new_email, new_token)
|
|
|
|
confirm_result = :authorizing_new
|
|
|
|
when EmailChangeRequest.states[:authorizing_new]
|
|
|
|
change_req.update_column(:change_state, EmailChangeRequest.states[:complete])
|
2017-11-07 21:35:53 -06:00
|
|
|
user.primary_email.update!(email: token.email)
|
2016-03-07 13:40:11 -06:00
|
|
|
confirm_result = :complete
|
|
|
|
end
|
|
|
|
else
|
|
|
|
errors.add(:base, I18n.t('change_email.already_done'))
|
|
|
|
confirm_result = :error
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
if confirm_result == :complete && change_req.old_email_token_id.blank?
|
|
|
|
notify_old(change_req.old_email, token.email)
|
|
|
|
end
|
|
|
|
|
|
|
|
confirm_result || :error
|
|
|
|
end
|
|
|
|
|
|
|
|
protected
|
|
|
|
|
|
|
|
def notify_old(old_email, new_email)
|
2016-04-06 23:38:43 -05:00
|
|
|
Jobs.enqueue :critical_user_email,
|
2016-03-07 13:40:11 -06:00
|
|
|
to_address: old_email,
|
|
|
|
type: :notify_old_email,
|
|
|
|
user_id: @user.id
|
|
|
|
end
|
|
|
|
|
|
|
|
def send_email(type, email_token)
|
2016-04-06 23:38:43 -05:00
|
|
|
Jobs.enqueue :critical_user_email,
|
2016-03-07 13:40:11 -06:00
|
|
|
to_address: email_token.email,
|
|
|
|
type: type,
|
|
|
|
user_id: @user.id,
|
|
|
|
email_token: email_token.token
|
|
|
|
end
|
|
|
|
|
|
|
|
end
|