2021-12-26 23:27:48 +00:00
|
|
|
# Pleroma: A lightweight social networking server
|
2022-02-26 06:11:42 +00:00
|
|
|
# Copyright © 2017-2022 Pleroma Authors <https://pleroma.social/>
|
2021-12-26 23:27:48 +00:00
|
|
|
# SPDX-License-Identifier: AGPL-3.0-only
|
|
|
|
|
|
|
|
defmodule Pleroma.Web.Plugs.EnsureStaffPrivilegedPlug do
|
|
|
|
@moduledoc """
|
2021-12-27 23:18:26 +00:00
|
|
|
Ensures staff are privileged enough to do certain tasks.
|
2021-12-26 23:27:48 +00:00
|
|
|
"""
|
|
|
|
import Pleroma.Web.TranslationHelpers
|
|
|
|
import Plug.Conn
|
|
|
|
|
|
|
|
alias Pleroma.Config
|
2021-12-27 00:12:32 +00:00
|
|
|
alias Pleroma.User
|
2021-12-26 23:27:48 +00:00
|
|
|
|
|
|
|
def init(options) do
|
|
|
|
options
|
|
|
|
end
|
|
|
|
|
|
|
|
def call(%{assigns: %{user: %User{is_admin: true}}} = conn, _), do: conn
|
|
|
|
|
2021-12-27 23:18:26 +00:00
|
|
|
def call(%{assigns: %{user: %User{is_moderator: true}}} = conn, _) do
|
2021-12-26 23:27:48 +00:00
|
|
|
if Config.get!([:instance, :privileged_staff]) do
|
|
|
|
conn
|
|
|
|
else
|
|
|
|
conn
|
|
|
|
|> render_error(:forbidden, "User is not an admin.")
|
|
|
|
|> halt()
|
|
|
|
end
|
|
|
|
end
|
2021-12-27 23:18:26 +00:00
|
|
|
|
|
|
|
def call(conn, _) do
|
|
|
|
conn
|
|
|
|
|> render_error(:forbidden, "User is not a staff member.")
|
|
|
|
|> halt()
|
|
|
|
end
|
2021-12-26 23:27:48 +00:00
|
|
|
end
|