2020-10-17 15:07:04 -04:00
|
|
|
'use strict';
|
|
|
|
|
|
|
|
|
|
const validator = require('validator');
|
|
|
|
|
const _ = require('lodash');
|
|
|
|
|
|
2024-05-31 11:45:41 -04:00
|
|
|
const db = require('../database');
|
2020-10-17 15:07:04 -04:00
|
|
|
const utils = require('../utils');
|
2021-01-18 13:32:55 -05:00
|
|
|
const user = require('../user');
|
2020-10-17 15:07:04 -04:00
|
|
|
const posts = require('../posts');
|
2020-10-17 21:24:33 -04:00
|
|
|
const topics = require('../topics');
|
2020-10-17 15:07:04 -04:00
|
|
|
const groups = require('../groups');
|
2023-04-12 17:17:45 -04:00
|
|
|
const plugins = require('../plugins');
|
2020-10-17 15:07:04 -04:00
|
|
|
const meta = require('../meta');
|
|
|
|
|
const events = require('../events');
|
2020-10-17 21:24:33 -04:00
|
|
|
const privileges = require('../privileges');
|
2024-01-16 11:20:54 -05:00
|
|
|
const activitypub = require('../activitypub');
|
2020-10-17 15:07:04 -04:00
|
|
|
const apiHelpers = require('./helpers');
|
|
|
|
|
const websockets = require('../socket.io');
|
2021-01-18 15:31:14 -05:00
|
|
|
const socketHelpers = require('../socket.io/helpers');
|
2020-10-17 15:07:04 -04:00
|
|
|
|
|
|
|
|
const postsAPI = module.exports;
|
|
|
|
|
|
2020-12-28 19:38:00 -05:00
|
|
|
postsAPI.get = async function (caller, data) {
|
|
|
|
|
const [userPrivileges, post, voted] = await Promise.all([
|
|
|
|
|
privileges.posts.get([data.pid], caller.uid),
|
|
|
|
|
posts.getPostData(data.pid),
|
|
|
|
|
posts.hasVoted(data.pid, caller.uid),
|
|
|
|
|
]);
|
|
|
|
|
const userPrivilege = userPrivileges[0];
|
2023-04-12 17:17:45 -04:00
|
|
|
|
|
|
|
|
if (!post || !userPrivilege.read || !userPrivilege['topics:read']) {
|
2020-12-28 19:38:00 -05:00
|
|
|
return null;
|
|
|
|
|
}
|
|
|
|
|
|
2023-04-12 17:17:45 -04:00
|
|
|
Object.assign(post, voted);
|
2020-12-28 19:38:00 -05:00
|
|
|
post.ip = userPrivilege.isAdminOrMod ? post.ip : undefined;
|
2023-04-12 17:17:45 -04:00
|
|
|
|
2020-12-28 19:38:00 -05:00
|
|
|
const selfPost = caller.uid && caller.uid === parseInt(post.uid, 10);
|
|
|
|
|
if (post.deleted && !(userPrivilege.isAdminOrMod || selfPost)) {
|
2023-10-05 12:48:50 -04:00
|
|
|
post.content = '[[topic:post-is-deleted]]';
|
2020-12-28 19:38:00 -05:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return post;
|
|
|
|
|
};
|
|
|
|
|
|
2023-04-13 16:23:26 -04:00
|
|
|
postsAPI.getIndex = async (caller, { pid, sort }) => {
|
|
|
|
|
const tid = await posts.getPostField(pid, 'tid');
|
|
|
|
|
const topicPrivileges = await privileges.topics.get(tid, caller.uid);
|
|
|
|
|
if (!topicPrivileges.read || !topicPrivileges['topics:read']) {
|
|
|
|
|
return null;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return await posts.getPidIndex(pid, tid, sort);
|
|
|
|
|
};
|
|
|
|
|
|
2023-04-12 17:17:45 -04:00
|
|
|
postsAPI.getSummary = async (caller, { pid }) => {
|
|
|
|
|
const tid = await posts.getPostField(pid, 'tid');
|
|
|
|
|
const topicPrivileges = await privileges.topics.get(tid, caller.uid);
|
|
|
|
|
if (!topicPrivileges.read || !topicPrivileges['topics:read']) {
|
|
|
|
|
return null;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
const postsData = await posts.getPostSummaryByPids([pid], caller.uid, { stripTags: false });
|
|
|
|
|
posts.modifyPostByPrivilege(postsData[0], topicPrivileges);
|
|
|
|
|
return postsData[0];
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
postsAPI.getRaw = async (caller, { pid }) => {
|
|
|
|
|
const userPrivileges = await privileges.posts.get([pid], caller.uid);
|
|
|
|
|
const userPrivilege = userPrivileges[0];
|
|
|
|
|
if (!userPrivilege['topics:read']) {
|
|
|
|
|
return null;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
const postData = await posts.getPostFields(pid, ['content', 'deleted']);
|
|
|
|
|
const selfPost = caller.uid && caller.uid === parseInt(postData.uid, 10);
|
|
|
|
|
|
|
|
|
|
if (postData.deleted && !(userPrivilege.isAdminOrMod || selfPost)) {
|
|
|
|
|
return null;
|
|
|
|
|
}
|
|
|
|
|
postData.pid = pid;
|
|
|
|
|
const result = await plugins.hooks.fire('filter:post.getRawPost', { uid: caller.uid, postData: postData });
|
|
|
|
|
return result.postData.content;
|
|
|
|
|
};
|
|
|
|
|
|
2020-10-17 15:07:04 -04:00
|
|
|
postsAPI.edit = async function (caller, data) {
|
|
|
|
|
if (!data || !data.pid || (meta.config.minimumPostLength !== 0 && !data.content)) {
|
|
|
|
|
throw new Error('[[error:invalid-data]]');
|
|
|
|
|
}
|
2021-12-09 18:42:43 -05:00
|
|
|
if (!caller.uid) {
|
|
|
|
|
throw new Error('[[error:not-logged-in]]');
|
|
|
|
|
}
|
2024-08-13 15:12:57 -04:00
|
|
|
|
|
|
|
|
// Discard content for non-local posts
|
|
|
|
|
if (!utils.isNumber(data.pid)) {
|
|
|
|
|
data.content = null;
|
|
|
|
|
} else {
|
|
|
|
|
// Trim and remove HTML (latter for composers that send in HTML, like redactor)
|
|
|
|
|
const contentLen = utils.stripHTMLTags(data.content).trim().length;
|
|
|
|
|
|
|
|
|
|
if (meta.config.minimumPostLength !== 0 && contentLen < meta.config.minimumPostLength) {
|
|
|
|
|
throw new Error(`[[error:content-too-short, ${meta.config.minimumPostLength}]]`);
|
|
|
|
|
} else if (contentLen > meta.config.maximumPostLength) {
|
|
|
|
|
throw new Error(`[[error:content-too-long, ${meta.config.maximumPostLength}]]`);
|
|
|
|
|
}
|
|
|
|
|
}
|
2020-10-17 15:07:04 -04:00
|
|
|
|
|
|
|
|
if (data.title && data.title.length < meta.config.minimumTitleLength) {
|
2021-02-03 23:59:08 -07:00
|
|
|
throw new Error(`[[error:title-too-short, ${meta.config.minimumTitleLength}]]`);
|
2020-10-17 15:07:04 -04:00
|
|
|
} else if (data.title && data.title.length > meta.config.maximumTitleLength) {
|
2021-02-03 23:59:08 -07:00
|
|
|
throw new Error(`[[error:title-too-long, ${meta.config.maximumTitleLength}]]`);
|
2023-08-21 14:00:36 -04:00
|
|
|
} else if (!await posts.canUserPostContentWithLinks(caller.uid, data.content)) {
|
|
|
|
|
throw new Error(`[[error:not-enough-reputation-to-post-links, ${meta.config['min:rep:post-links']}]]`);
|
2020-10-17 15:07:04 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
data.uid = caller.uid;
|
|
|
|
|
data.req = apiHelpers.buildReqObject(caller);
|
2021-03-31 00:51:23 +03:00
|
|
|
data.timestamp = parseInt(data.timestamp, 10) || Date.now();
|
2020-10-17 15:07:04 -04:00
|
|
|
|
|
|
|
|
const editResult = await posts.edit(data);
|
2020-12-01 10:37:42 -05:00
|
|
|
if (editResult.topic.isMainPost) {
|
2020-12-04 09:37:50 -05:00
|
|
|
await topics.thumbs.migrate(data.uuid, editResult.topic.tid);
|
2020-12-01 10:37:42 -05:00
|
|
|
}
|
2024-04-06 01:18:46 +02:00
|
|
|
const selfPost = parseInt(caller.uid, 10) === parseInt(editResult.post.uid, 10);
|
|
|
|
|
if (!selfPost && editResult.post.changed) {
|
|
|
|
|
await events.log({
|
2022-03-18 15:54:40 -04:00
|
|
|
type: `post-edit`,
|
|
|
|
|
uid: caller.uid,
|
|
|
|
|
ip: caller.ip,
|
|
|
|
|
pid: editResult.post.pid,
|
|
|
|
|
oldContent: editResult.post.oldContent,
|
|
|
|
|
newContent: editResult.post.newContent,
|
2024-04-06 01:18:46 +02:00
|
|
|
});
|
2022-03-18 15:54:40 -04:00
|
|
|
}
|
|
|
|
|
|
2020-10-17 15:07:04 -04:00
|
|
|
if (editResult.topic.renamed) {
|
|
|
|
|
await events.log({
|
|
|
|
|
type: 'topic-rename',
|
|
|
|
|
uid: caller.uid,
|
|
|
|
|
ip: caller.ip,
|
|
|
|
|
tid: editResult.topic.tid,
|
|
|
|
|
oldTitle: validator.escape(String(editResult.topic.oldTitle)),
|
|
|
|
|
newTitle: validator.escape(String(editResult.topic.title)),
|
|
|
|
|
});
|
|
|
|
|
}
|
2024-09-17 11:58:42 -04:00
|
|
|
const postObj = await posts.getPostSummaryByPids([editResult.post.pid], caller.uid, { parse: false, extraFields: ['edited'] });
|
|
|
|
|
postObj.content = editResult.post.content; // re-use already parsed html
|
2020-10-17 15:07:04 -04:00
|
|
|
const returnData = { ...postObj[0], ...editResult.post };
|
2020-10-27 08:04:07 -04:00
|
|
|
returnData.topic = { ...postObj[0].topic, ...editResult.post.topic };
|
2020-10-17 15:07:04 -04:00
|
|
|
|
|
|
|
|
if (!editResult.post.deleted) {
|
2021-02-03 23:59:08 -07:00
|
|
|
websockets.in(`topic_${editResult.topic.tid}`).emit('event:post_edited', editResult);
|
2024-09-17 11:58:42 -04:00
|
|
|
setTimeout(() => {
|
|
|
|
|
require('.').activitypub.update.note(caller, { post: postObj[0] });
|
|
|
|
|
}, 5000);
|
2024-01-30 11:25:45 -05:00
|
|
|
|
2020-10-17 15:07:04 -04:00
|
|
|
return returnData;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
const memberData = await groups.getMembersOfGroups([
|
|
|
|
|
'administrators',
|
|
|
|
|
'Global Moderators',
|
2021-02-03 23:59:08 -07:00
|
|
|
`cid:${editResult.topic.cid}:privileges:moderate`,
|
|
|
|
|
`cid:${editResult.topic.cid}:privileges:groups:moderate`,
|
2020-10-17 15:07:04 -04:00
|
|
|
]);
|
|
|
|
|
|
|
|
|
|
const uids = _.uniq(_.flatten(memberData).concat(String(caller.uid)));
|
2021-11-18 16:42:18 -05:00
|
|
|
uids.forEach(uid => websockets.in(`uid_${uid}`).emit('event:post_edited', editResult));
|
2024-01-30 11:25:45 -05:00
|
|
|
|
2020-10-17 15:07:04 -04:00
|
|
|
return returnData;
|
|
|
|
|
};
|
2020-10-17 21:24:33 -04:00
|
|
|
|
|
|
|
|
postsAPI.delete = async function (caller, data) {
|
|
|
|
|
await deleteOrRestore(caller, data, {
|
|
|
|
|
command: 'delete',
|
|
|
|
|
event: 'event:post_deleted',
|
|
|
|
|
type: 'post-delete',
|
|
|
|
|
});
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
postsAPI.restore = async function (caller, data) {
|
|
|
|
|
await deleteOrRestore(caller, data, {
|
|
|
|
|
command: 'restore',
|
|
|
|
|
event: 'event:post_restored',
|
|
|
|
|
type: 'post-restore',
|
|
|
|
|
});
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
async function deleteOrRestore(caller, data, params) {
|
|
|
|
|
if (!data || !data.pid) {
|
|
|
|
|
throw new Error('[[error:invalid-data]]');
|
|
|
|
|
}
|
|
|
|
|
const postData = await posts.tools[params.command](caller.uid, data.pid);
|
|
|
|
|
const results = await isMainAndLastPost(data.pid);
|
|
|
|
|
if (results.isMain && results.isLast) {
|
|
|
|
|
await deleteOrRestoreTopicOf(params.command, data.pid, caller);
|
|
|
|
|
}
|
|
|
|
|
|
2021-02-03 23:59:08 -07:00
|
|
|
websockets.in(`topic_${postData.tid}`).emit(params.event, postData);
|
2020-10-17 21:24:33 -04:00
|
|
|
|
|
|
|
|
await events.log({
|
|
|
|
|
type: params.type,
|
|
|
|
|
uid: caller.uid,
|
|
|
|
|
pid: data.pid,
|
|
|
|
|
tid: postData.tid,
|
|
|
|
|
ip: caller.ip,
|
|
|
|
|
});
|
2024-05-07 12:37:57 -04:00
|
|
|
|
|
|
|
|
// Explicitly non-awaited
|
2024-09-24 12:15:10 -04:00
|
|
|
posts.getPostSummaryByPids([data.pid], caller.uid, { extraFields: ['edited'] }).then(([post]) => {
|
2024-05-07 12:37:57 -04:00
|
|
|
require('.').activitypub.update.note(caller, { post });
|
|
|
|
|
});
|
2020-10-17 21:24:33 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
async function deleteOrRestoreTopicOf(command, pid, caller) {
|
2021-04-07 15:58:52 +03:00
|
|
|
const topic = await posts.getTopicFields(pid, ['tid', 'cid', 'deleted', 'scheduled']);
|
|
|
|
|
// exempt scheduled topics from being deleted/restored
|
|
|
|
|
if (topic.scheduled) {
|
|
|
|
|
return;
|
|
|
|
|
}
|
2020-10-17 21:24:33 -04:00
|
|
|
// command: delete/restore
|
2021-02-04 00:12:32 -07:00
|
|
|
await apiHelpers.doTopicAction(
|
|
|
|
|
command,
|
2020-10-17 21:24:33 -04:00
|
|
|
topic.deleted ? 'event:topic_restored' : 'event:topic_deleted',
|
|
|
|
|
caller,
|
|
|
|
|
{ tids: [topic.tid], cid: topic.cid }
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
postsAPI.purge = async function (caller, data) {
|
2024-05-10 11:28:12 -04:00
|
|
|
if (!data || !data.pid) {
|
2020-10-17 21:24:33 -04:00
|
|
|
throw new Error('[[error:invalid-data]]');
|
|
|
|
|
}
|
|
|
|
|
|
2024-05-09 15:48:58 -04:00
|
|
|
const [exists, { isMain, isLast }] = await Promise.all([
|
|
|
|
|
posts.exists(data.pid),
|
|
|
|
|
isMainAndLastPost(data.pid),
|
|
|
|
|
]);
|
|
|
|
|
if (!exists) {
|
|
|
|
|
throw new Error('[[error:no-post]]');
|
|
|
|
|
}
|
|
|
|
|
if (isMain && !isLast) {
|
2020-10-17 21:24:33 -04:00
|
|
|
throw new Error('[[error:cant-purge-main-post]]');
|
|
|
|
|
}
|
|
|
|
|
|
2024-05-09 15:48:58 -04:00
|
|
|
const isMainAndLast = isMain && isLast;
|
2020-10-17 21:24:33 -04:00
|
|
|
const postData = await posts.getPostFields(data.pid, ['toPid', 'tid']);
|
|
|
|
|
postData.pid = data.pid;
|
|
|
|
|
|
|
|
|
|
const canPurge = await privileges.posts.canPurge(data.pid, caller.uid);
|
|
|
|
|
if (!canPurge) {
|
|
|
|
|
throw new Error('[[error:no-privileges]]');
|
|
|
|
|
}
|
2024-05-28 12:01:30 -04:00
|
|
|
posts.clearCachedPost(data.pid);
|
2024-05-09 15:48:58 -04:00
|
|
|
await Promise.all([
|
|
|
|
|
posts.purge(data.pid, caller.uid),
|
|
|
|
|
require('.').activitypub.delete.note(caller, { pid: data.pid }),
|
|
|
|
|
]);
|
2020-10-17 21:24:33 -04:00
|
|
|
|
2021-02-03 23:59:08 -07:00
|
|
|
websockets.in(`topic_${postData.tid}`).emit('event:post_purged', postData);
|
2020-10-17 21:24:33 -04:00
|
|
|
const topicData = await topics.getTopicFields(postData.tid, ['title', 'cid']);
|
|
|
|
|
|
|
|
|
|
await events.log({
|
|
|
|
|
type: 'post-purge',
|
|
|
|
|
pid: data.pid,
|
|
|
|
|
uid: caller.uid,
|
|
|
|
|
ip: caller.ip,
|
|
|
|
|
tid: postData.tid,
|
|
|
|
|
title: String(topicData.title),
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
if (isMainAndLast) {
|
2021-02-04 00:12:32 -07:00
|
|
|
await apiHelpers.doTopicAction(
|
|
|
|
|
'purge',
|
|
|
|
|
'event:topic_purged',
|
2020-10-17 21:24:33 -04:00
|
|
|
caller,
|
|
|
|
|
{ tids: [postData.tid], cid: topicData.cid }
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
async function isMainAndLastPost(pid) {
|
|
|
|
|
const [isMain, topicData] = await Promise.all([
|
|
|
|
|
posts.isMain(pid),
|
|
|
|
|
posts.getTopicFields(pid, ['postcount']),
|
|
|
|
|
]);
|
|
|
|
|
return {
|
|
|
|
|
isMain: isMain,
|
|
|
|
|
isLast: topicData && topicData.postcount === 1,
|
|
|
|
|
};
|
|
|
|
|
}
|
|
|
|
|
|
2021-01-18 15:31:14 -05:00
|
|
|
postsAPI.move = async function (caller, data) {
|
2021-12-09 18:59:23 -05:00
|
|
|
if (!caller.uid) {
|
|
|
|
|
throw new Error('[[error:not-logged-in]]');
|
|
|
|
|
}
|
|
|
|
|
if (!data || !data.pid || !data.tid) {
|
|
|
|
|
throw new Error('[[error:invalid-data]]');
|
|
|
|
|
}
|
2021-01-18 15:31:14 -05:00
|
|
|
const canMove = await Promise.all([
|
|
|
|
|
privileges.topics.isAdminOrMod(data.tid, caller.uid),
|
|
|
|
|
privileges.posts.canMove(data.pid, caller.uid),
|
|
|
|
|
]);
|
|
|
|
|
if (!canMove.every(Boolean)) {
|
|
|
|
|
throw new Error('[[error:no-privileges]]');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
await topics.movePostToTopic(caller.uid, data.pid, data.tid);
|
|
|
|
|
|
|
|
|
|
const [postDeleted, topicDeleted] = await Promise.all([
|
|
|
|
|
posts.getPostField(data.pid, 'deleted'),
|
|
|
|
|
topics.getTopicField(data.tid, 'deleted'),
|
2022-03-18 15:54:40 -04:00
|
|
|
await events.log({
|
|
|
|
|
type: `post-move`,
|
|
|
|
|
uid: caller.uid,
|
|
|
|
|
ip: caller.ip,
|
|
|
|
|
pid: data.pid,
|
|
|
|
|
toTid: data.tid,
|
|
|
|
|
}),
|
2021-01-18 15:31:14 -05:00
|
|
|
]);
|
|
|
|
|
|
|
|
|
|
if (!postDeleted && !topicDeleted) {
|
2023-12-21 09:59:36 -05:00
|
|
|
socketHelpers.sendNotificationToPostOwner(data.pid, caller.uid, 'move', 'notifications:moved-your-post');
|
2025-03-11 15:06:01 -04:00
|
|
|
|
2025-03-11 15:17:10 -04:00
|
|
|
// ideally we should federate a "move" activity instead, then can capture remote posts too. tbd
|
|
|
|
|
if (utils.isNumber(data.pid)) {
|
|
|
|
|
const { activity } = await activitypub.mocks.activities.create(data.pid, caller.uid);
|
|
|
|
|
await activitypub.feps.announce(data.pid, activity);
|
|
|
|
|
}
|
2021-01-18 15:31:14 -05:00
|
|
|
}
|
|
|
|
|
};
|
|
|
|
|
|
2020-10-17 22:59:12 -04:00
|
|
|
postsAPI.upvote = async function (caller, data) {
|
2023-10-05 12:48:50 -04:00
|
|
|
return await apiHelpers.postCommand(caller, 'upvote', 'voted', 'notifications:upvoted-your-post-in', data);
|
2020-10-17 22:59:12 -04:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
postsAPI.downvote = async function (caller, data) {
|
|
|
|
|
return await apiHelpers.postCommand(caller, 'downvote', 'voted', '', data);
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
postsAPI.unvote = async function (caller, data) {
|
|
|
|
|
return await apiHelpers.postCommand(caller, 'unvote', 'voted', '', data);
|
|
|
|
|
};
|
|
|
|
|
|
2024-05-31 11:45:41 -04:00
|
|
|
postsAPI.getVoters = async function (caller, data) {
|
|
|
|
|
if (!data || !data.pid) {
|
|
|
|
|
throw new Error('[[error:invalid-data]]');
|
|
|
|
|
}
|
|
|
|
|
const { pid } = data;
|
|
|
|
|
const cid = await posts.getCidByPid(pid);
|
2024-07-17 17:43:31 -04:00
|
|
|
const [canSeeUpvotes, canSeeDownvotes] = await Promise.all([
|
|
|
|
|
canSeeVotes(caller.uid, cid, 'upvoteVisibility'),
|
|
|
|
|
canSeeVotes(caller.uid, cid, 'downvoteVisibility'),
|
|
|
|
|
]);
|
|
|
|
|
|
|
|
|
|
if (!canSeeUpvotes && !canSeeDownvotes) {
|
2024-05-31 11:45:41 -04:00
|
|
|
throw new Error('[[error:no-privileges]]');
|
|
|
|
|
}
|
2024-07-17 17:43:31 -04:00
|
|
|
const repSystemDisabled = meta.config['reputation:disabled'];
|
|
|
|
|
const showUpvotes = canSeeUpvotes && !repSystemDisabled;
|
|
|
|
|
const showDownvotes = canSeeDownvotes && !meta.config['downvote:disabled'] && !repSystemDisabled;
|
2024-05-31 11:45:41 -04:00
|
|
|
const [upvoteUids, downvoteUids] = await Promise.all([
|
2024-07-17 17:43:31 -04:00
|
|
|
showUpvotes ? db.getSetMembers(`pid:${data.pid}:upvote`) : [],
|
2024-05-31 11:45:41 -04:00
|
|
|
showDownvotes ? db.getSetMembers(`pid:${data.pid}:downvote`) : [],
|
|
|
|
|
]);
|
|
|
|
|
|
|
|
|
|
const [upvoters, downvoters] = await Promise.all([
|
|
|
|
|
user.getUsersFields(upvoteUids, ['username', 'userslug', 'picture']),
|
|
|
|
|
user.getUsersFields(downvoteUids, ['username', 'userslug', 'picture']),
|
|
|
|
|
]);
|
|
|
|
|
|
|
|
|
|
return {
|
|
|
|
|
upvoteCount: upvoters.length,
|
|
|
|
|
downvoteCount: downvoters.length,
|
2024-07-17 17:43:31 -04:00
|
|
|
showUpvotes: showUpvotes,
|
2024-05-31 11:45:41 -04:00
|
|
|
showDownvotes: showDownvotes,
|
|
|
|
|
upvoters: upvoters,
|
|
|
|
|
downvoters: downvoters,
|
|
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
postsAPI.getUpvoters = async function (caller, data) {
|
|
|
|
|
if (!data.pid) {
|
|
|
|
|
throw new Error('[[error:invalid-data]]');
|
|
|
|
|
}
|
|
|
|
|
const { pid } = data;
|
|
|
|
|
const cid = await posts.getCidByPid(pid);
|
2024-07-17 17:43:31 -04:00
|
|
|
if (!await canSeeVotes(caller.uid, cid, 'upvoteVisibility')) {
|
2024-05-31 11:45:41 -04:00
|
|
|
throw new Error('[[error:no-privileges]]');
|
|
|
|
|
}
|
|
|
|
|
|
2024-06-17 11:18:48 -04:00
|
|
|
const upvotedUids = (await posts.getUpvotedUidsByPids([pid]))[0];
|
|
|
|
|
return await getTooltipData(upvotedUids);
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
async function getTooltipData(uids) {
|
2024-05-31 11:45:41 -04:00
|
|
|
const cutoff = 6;
|
2024-06-17 11:18:48 -04:00
|
|
|
if (!uids.length) {
|
2024-05-31 11:45:41 -04:00
|
|
|
return {
|
|
|
|
|
otherCount: 0,
|
|
|
|
|
usernames: [],
|
|
|
|
|
cutoff,
|
|
|
|
|
};
|
|
|
|
|
}
|
|
|
|
|
let otherCount = 0;
|
2024-06-17 11:18:48 -04:00
|
|
|
if (uids.length > cutoff) {
|
|
|
|
|
otherCount = uids.length - (cutoff - 1);
|
|
|
|
|
uids = uids.slice(0, cutoff - 1);
|
2024-05-31 11:45:41 -04:00
|
|
|
}
|
|
|
|
|
|
2025-01-08 09:45:52 -05:00
|
|
|
const users = await user.getUsersFields(uids, ['username']);
|
2024-05-31 11:45:41 -04:00
|
|
|
return {
|
|
|
|
|
otherCount,
|
2025-01-03 09:37:57 -05:00
|
|
|
usernames: users.map(user => user.displayname),
|
2024-05-31 11:45:41 -04:00
|
|
|
cutoff,
|
|
|
|
|
};
|
2024-06-17 11:18:48 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
postsAPI.getAnnouncers = async (caller, data) => {
|
|
|
|
|
if (!data.pid) {
|
|
|
|
|
throw new Error('[[error:invalid-data]]');
|
|
|
|
|
}
|
|
|
|
|
if (!meta.config.activitypubEnabled) {
|
|
|
|
|
return [];
|
|
|
|
|
}
|
|
|
|
|
const { pid } = data;
|
|
|
|
|
const cid = await posts.getCidByPid(pid);
|
|
|
|
|
if (!await privileges.categories.isUserAllowedTo('topics:read', cid, caller.uid)) {
|
|
|
|
|
throw new Error('[[error:no-privileges]]');
|
|
|
|
|
}
|
|
|
|
|
const notes = require('../activitypub/notes');
|
|
|
|
|
const announcers = await notes.announce.list({ pid });
|
|
|
|
|
const uids = announcers.map(ann => ann.actor);
|
|
|
|
|
if (data.tooltip) {
|
|
|
|
|
return await getTooltipData(uids);
|
|
|
|
|
}
|
|
|
|
|
return {
|
|
|
|
|
announceCount: uids.length,
|
|
|
|
|
announcers: await user.getUsersFields(uids, ['username', 'userslug', 'picture']),
|
|
|
|
|
};
|
2024-05-31 11:45:41 -04:00
|
|
|
};
|
|
|
|
|
|
2024-07-17 17:43:31 -04:00
|
|
|
async function canSeeVotes(uid, cids, type) {
|
2024-05-31 11:45:41 -04:00
|
|
|
const isArray = Array.isArray(cids);
|
|
|
|
|
if (!isArray) {
|
|
|
|
|
cids = [cids];
|
|
|
|
|
}
|
|
|
|
|
const uniqCids = _.uniq(cids);
|
|
|
|
|
const [canRead, isAdmin, isMod] = await Promise.all([
|
|
|
|
|
privileges.categories.isUserAllowedTo(
|
|
|
|
|
'topics:read', uniqCids, uid
|
|
|
|
|
),
|
|
|
|
|
privileges.users.isAdministrator(uid),
|
|
|
|
|
privileges.users.isModerator(uid, cids),
|
|
|
|
|
]);
|
|
|
|
|
const cidToAllowed = _.zipObject(uniqCids, canRead);
|
|
|
|
|
const checks = cids.map(
|
|
|
|
|
(cid, index) => isAdmin || isMod[index] ||
|
|
|
|
|
(
|
|
|
|
|
cidToAllowed[cid] &&
|
|
|
|
|
(
|
2024-07-17 17:43:31 -04:00
|
|
|
meta.config[type] === 'all' ||
|
|
|
|
|
(meta.config[type] === 'loggedin' && parseInt(uid, 10) > 0)
|
2024-05-31 11:45:41 -04:00
|
|
|
)
|
|
|
|
|
)
|
|
|
|
|
);
|
|
|
|
|
return isArray ? checks : checks[0];
|
|
|
|
|
}
|
|
|
|
|
|
2020-10-17 22:59:12 -04:00
|
|
|
postsAPI.bookmark = async function (caller, data) {
|
|
|
|
|
return await apiHelpers.postCommand(caller, 'bookmark', 'bookmarked', '', data);
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
postsAPI.unbookmark = async function (caller, data) {
|
|
|
|
|
return await apiHelpers.postCommand(caller, 'unbookmark', 'bookmarked', '', data);
|
|
|
|
|
};
|
2021-01-18 13:32:55 -05:00
|
|
|
|
|
|
|
|
async function diffsPrivilegeCheck(pid, uid) {
|
|
|
|
|
const [deleted, privilegesData] = await Promise.all([
|
|
|
|
|
posts.getPostField(pid, 'deleted'),
|
|
|
|
|
privileges.posts.get([pid], uid),
|
|
|
|
|
]);
|
|
|
|
|
|
|
|
|
|
const allowed = privilegesData[0]['posts:history'] && (deleted ? privilegesData[0]['posts:view_deleted'] : true);
|
|
|
|
|
if (!allowed) {
|
|
|
|
|
throw new Error('[[error:no-privileges]]');
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
postsAPI.getDiffs = async (caller, data) => {
|
|
|
|
|
await diffsPrivilegeCheck(data.pid, caller.uid);
|
|
|
|
|
const timestamps = await posts.diffs.list(data.pid);
|
|
|
|
|
const post = await posts.getPostFields(data.pid, ['timestamp', 'uid']);
|
|
|
|
|
|
|
|
|
|
const diffs = await posts.diffs.get(data.pid);
|
|
|
|
|
const uids = diffs.map(diff => diff.uid || null);
|
|
|
|
|
uids.push(post.uid);
|
|
|
|
|
let usernames = await user.getUsersFields(uids, ['username']);
|
|
|
|
|
usernames = usernames.map(userObj => (userObj.uid ? userObj.username : null));
|
|
|
|
|
|
2021-01-28 21:42:10 +03:00
|
|
|
const cid = await posts.getCidByPid(data.pid);
|
2021-02-02 14:52:24 +03:00
|
|
|
const [isAdmin, isModerator] = await Promise.all([
|
|
|
|
|
user.isAdministrator(caller.uid),
|
|
|
|
|
privileges.users.isModerator(caller.uid, cid),
|
|
|
|
|
]);
|
2021-01-18 13:32:55 -05:00
|
|
|
|
2021-02-03 12:34:13 +03:00
|
|
|
// timestamps returned by posts.diffs.list are strings
|
|
|
|
|
timestamps.push(String(post.timestamp));
|
2021-01-18 13:32:55 -05:00
|
|
|
|
|
|
|
|
return {
|
|
|
|
|
timestamps: timestamps,
|
|
|
|
|
revisions: timestamps.map((timestamp, idx) => ({
|
|
|
|
|
timestamp: timestamp,
|
|
|
|
|
username: usernames[idx],
|
|
|
|
|
})),
|
2021-02-02 14:52:24 +03:00
|
|
|
// Only admins, global mods and moderator of that cid can delete a diff
|
|
|
|
|
deletable: isAdmin || isModerator,
|
|
|
|
|
// These and post owners can restore to a different post version
|
|
|
|
|
editable: isAdmin || isModerator || parseInt(caller.uid, 10) === parseInt(post.uid, 10),
|
2021-01-18 13:32:55 -05:00
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
postsAPI.loadDiff = async (caller, data) => {
|
|
|
|
|
await diffsPrivilegeCheck(data.pid, caller.uid);
|
|
|
|
|
return await posts.diffs.load(data.pid, data.since, caller.uid);
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
postsAPI.restoreDiff = async (caller, data) => {
|
|
|
|
|
const cid = await posts.getCidByPid(data.pid);
|
2021-02-02 14:52:24 +03:00
|
|
|
const canEdit = await privileges.categories.can('posts:edit', cid, caller.uid);
|
2021-01-18 13:32:55 -05:00
|
|
|
if (!canEdit) {
|
|
|
|
|
throw new Error('[[error:no-privileges]]');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
const edit = await posts.diffs.restore(data.pid, data.since, caller.uid, apiHelpers.buildReqObject(caller));
|
2021-02-03 23:59:08 -07:00
|
|
|
websockets.in(`topic_${edit.topic.tid}`).emit('event:post_edited', edit);
|
2021-01-18 13:32:55 -05:00
|
|
|
};
|
Bootstrap5 (#10894)
* chore: up deps
* chore: up composer
* fix(deps): bump 2factor to v7
* chore: up harmony
* chore: up harmony
* fix: missing await
* feat: allow middlewares to pass in template values via res.locals
* feat: buildAccountData middleware automatically added ot all account routes
* fix: properly allow values in res.locals.templateValues to be added to the template data
* refactor: user/blocks
* refactor(accounts): categories and consent
* feat: automatically 404 if exposeUid or exposeGroupName come up empty
* refactor: remove calls to getUserDataByUserSlug for most account routes, since it is populated via middleware now
* fix: allow exposeUid and exposeGroupName to work with slugs with mixed capitalization
* fix: move reputation removal check to accountHelpers method
* test: skip i18n tests if ref branch when present is not develop
* fix(deps): bump theme versions
* fix(deps): bump ntfy and 2factor
* chore: up harmony
* fix: add missing return
* fix: #11191, only focus on search input on md environments and up
* feat: allow file uploads on mobile chat
closes https://github.com/NodeBB/NodeBB/issues/11217
* chore: up themes
* chore: add lang string
* fix(deps): bump ntfy to 1.0.15
* refactor: use new if/each syntax
* chore: up composer
* fix: regression from user helper refactor
* chore: up harmony
* chore: up composer
* chore: up harmony
* chore: up harmony
* chore: up harmony
* chore: fix composer version
* feat: add increment helper
* chore: up harmony
* fix: #11228 no timestamps in future :hourglass:
* chore: up harmony
* check config.theme as well
fire action:posts.loaded after processing dom
* chore: up harmony
* chore: up harmony
* chore: up harmony
* chore: up themes
* chore: up harmony
* remove extra class
* refactor: move these to core from harmony
* chore: up widgets
* chore: up widgets
* height auto
* fix: closes #11238
* dont focus inputs, annoying on mobile
* fix: dont focus twice, only focus on chat input on desktop
dont wrap widget footer in row
* chore: up harmony
* chore: up harmony
* update chat window
* chore: up themes
* fix cache buster for skins
* chat fixes
* chore: up harmony
* chore: up composer
* refactor: change hook logs to debug
* fix: scroll to post right after adding to dom
* fix: hash scrolling and highlighting correct post
* test: re-enable read API schema tests
* fix: add back schema changes for 179faa2270f2ad955dcc4a7b04755acce59e6ffd and c3920ccb10d8ead2dcd9914bb1784bed3f6adfd4
* fix: schema changes from 488f0978a4aa1ca1e4d2a1f2e8c7ef7a681f2f27
* fix: schema changes for f4cf482a874701ce80c0f306c49d8788cec66f87
* fix: schema update for be6bbabd0e2551fbe9571dcf3ee40ad721764543
* fix: schema changes for 69c96078ea78ee2c45885a90a6f6a59f9042a33c
* fix: schema changes for d1364c313021e48a879a818b24947e1457c062f7
* fix: schema changes for 84ff1152f7552dd866e25a90972d970b9861107e
* fix: schema changes for b860c2605c209e0650ef98f4c80d842ea23a51ce
* fix: schema changes for 23cb67a1126481848fac39aafd1e253441e76d7f
* fix: schema changes for b916e42f400dac8aa51670b15e439f87f0eb8939
* fix: schema change for a9bbb586fcb3a1c61b5fb69052236e78cdf7d743
* fix: schema changes for 4b738c8cd36c936a1dbe2bb900c694bf6c5520ec
* fix: schema changes for 58b5781cea9acb129e6604a82ab5a5bfc0d8394d
* fix: schema changes for 794bf01b21709c4be06584d576d706b3d6342057
* fix: schema changes for 80ea12c1c1963f5b39fb64841e4f3c8da3c87af2, e368feef51e0766f119c9710fb4db8f64724725c, and 52ead114bec961c62fa2eb0786540e229f6e4873
* fix: composer-default object in config?
* fix: schema changes for 9acdc6808c070555352951c651921df181b10993 and 093093420027999df3c67bf0ea6024f6dbf81d2d
* fix: schema changes for c0a52924f1f7ef8caeaacda67363ac269b56042c
* fix: schema change for aba420a3f3b774e949c2539c73f3dc0e1ae79a38, move loggedInUser to optional props
* fix: schema changes for 8c67031609da30d788561459f8bb76e9a69253de
* fix: schema changes for 27e53b42f3ce48fa61d3754375715cd41ffe808d
* fix: schema changes for 28359665187b0a3b9ec6226dca1234ebdbd725a5
* fix: breaking test for email confirmation API call
* fix: schema changes for refactored search page
* fix: schema changes for user object
* fix: schema changes for 9f531f957e08eabb4bae844ddd67bde14d9b59f0
* fix: schema changes for c4042c70decd628e5b880bd109515b47e4e16164 and 23175110a29640e6fa052db1079bfedb34a61055
* fix: schema changes for 9b3616b10392e247974eb0c1e6225a1582bf6c69
* fix: schema changes for 5afd5de07d42fd33f039a6f85ded3b4992200e5a
* fix: schema change for 1d7baf12171cffbd3af8914bef4e6297d1160d49
* fix: schema changes for 57bfb37c55a839662144e684875003ab52315ecc and be6bbabd0e2551fbe9571dcf3ee40ad721764543
* fix: schema changes for 6e86b4afa20d662af8b9f1c07518df2d8c258105 and 3efad2e13b7319eb9a1f4fda7af047be43ebc11f and 68f66223e73a72f378f193c83a9b5546bede2cda
* fix: allowing optional qs prop in pagination keys (not sure why this didn't break before)
* fix: re-login on email change
* fix: schema changes for c926358d734a2fa410de87f4e4a91744215fc14a
* fix: schema changes for 388a8270c9882892bad5c8141f65da8d59eac0fd
* fix: schema change for 2658bcc821c22e137a6eeb9bb74098856a642eaf
* fix: no need to call account middlewares for chats routes
* fix: schema changes for 71743affc3e58dc85d4ffa15ce043d4d9ddd3d67
* fix: final schema changes
* test: support for anyOf and oneOf
* fix: check thumb
* dont scroll to top on back press
* remove group log
* fix: add top margin to merged and deleted alerts
* chore: up widgets
* fix: improve fix-lists mixin
* chore: up harmony/composer
* feat: allow hiding quicksearch results during search
* dont record searches made by composer
* chore: up 54
* chore: up spam be gone
* feat: add prev/next page and page count into mobile paginator
* chore: up harmony
* chore: up harmony
* use old style for IS
* fix: hide entire toolbar row if no posts or not singlePost
* fix: updated messaging for post-queue template, #11206
* fix: btn-sm on post queue back button
* fix: bump harmony, closes #11206
* fix: remove unused alert module import
* fix: bump harmony
* fix: bump harmony
* chore: up harmony
* refactor: IS scrolltop
* fix: update users:search-user-for-chat source string
* feat: support for mark-read toggle on chats dropdown and recent chats list
* feat: api v3 calls to mark chat read/unread
* feat: send event:chats.mark socket event on mark read or unread
* refactor: allow frontend to mark chats as unread, use new API v3 routes instead of socket calls, better frontend event handling
* docs: openapi schema updates for chat marking
* fix: allow unread state toggling in chats dropdown too
* fix: issue where repeated openings of the chats dropdown would continually add events for mark-read/unread
* fix: debug log
* refactor: move userSearch filter to a module
* feat(routes): allow remounting /categories (#11230)
* feat: send flags count to frontend on flags list page
* refactor: filter form client-side js to extract out some logic
* fix: applyFilters to not take any arguments, update selectedCids in updateButton instead of onHidden
* fix: use userFilter module for assignee, reporterId, targetUid
* fix(openapi): schema changes for updated flags page
* fix: dont allow adding duplicates to userFilter
* use same var
* remove log
* fix: closes #11282
* feat: lang key for x-topics
* chore: up harmony
* chore: up emoji
* chore: up harmony
* fix: update userFilter to allow new option `selectedBlock`
* fix: wrong block name passed to userFilter
* fix: https://github.com/NodeBB/NodeBB/issues/11283
* fix: chats, allow multiple dropdowns like in harmony
* chore: up harmony
* refactor: flag note adding/editing, closes #11285
* fix: remove old prepareEdit logic
* chore: add caveat about hacky code block in userFilter module
* fix: placeholders for userFilter module
* refactor: navigator so it works with multiple thumbs/navigators
* chore: up harmony
* fix: closes #11287, destroy quick reply autocomplete
on navigation
* fix: filter disabled categories on user categories page count
* chore: up harmony
* docs: update openapi spec to include info about passing in timestamps for topic creation, removing timestamp as valid request param for topic replying
* fix: send back null values on ACP search dashboard for startDate and endDate if not expicitly passed in, fix tests
* fix: tweak table order in ACP dash searches
* fix: only invoke navigator click drag on left mouse button
* feat: add back unread indicator to navigator
* clear bookmark on mark unread
* fix: navigator crash on ajaxify
* better thumb top calculation
* fix: reset user bookmark when topic is marked unread
* Revert "fix: reset user bookmark when topic is marked unread"
This reverts commit 9bcd85c2c6848c3d325d32027261809da6e11c9e.
* fix: update unread indicator on scroll, add unread count
* chore: bump harmony
* fix: crash on navigator unread update when backing out of a topic
* fix: closes #11183
* fix: update topics:recent zset when rescheduling a topic
* fix: dupe quote button, increase delay, hide immediately on empty selection
* fix: navigator not showing up on first load
* refactor: remove glance
assorted fixes to navigator
dont reduce remaning count if user scrolls down and up quickly
only call topic.navigatorCallback when index changes
* more sanity checks for bookmark
dont allow setting bookmark higher than topic postcount
* closes #11218, :train:
* Revert "fix: update topics:recent zset when rescheduling a topic"
This reverts commit 737973cca9e94b6cb3867492a09e1e0b1af391d5.
* fix: #11306, show proper error if queued post doesn't exist
was showing no-privileges if someone else accepted the post
* https://github.com/NodeBB/NodeBB/issues/11307
dont use li
* chore: up harmony
* chore: bump version string
* fix: copy paste fail
* feat: closes #7382, tag filtering
add client side support for filtering by tags on /category, /recent and /unread
* chore: up harmony
* chore: up harmony
* Revert "fix: add back req.query fallback for backwards compatibility" [breaking]
This reverts commit cf6cc2c454dc35c330393c62ee8ce67b42d8eefb.
This commit is no longer required as passing in a CSRF token via query parameter is no longer supported as of NodeBB v3.x
This is a breaking change.
* fix: pass csrf token in form data, re: NodeBB/NodeBB#11309
* chore: up deps
* fix: tests, use x-csrf-token query param removed
* test: fix csrf_token
* lint: remove unused
* feat: add itemprop="image" to avatar helper
* fix: get chat upload button in chat modal
* breaking: remove deprecated socket.io methods
* test: update messaging tests to not use sockets
* fix: parent post links
* fix: prevent post tooltip if mouse leaves before data/tpl is loaded
* chore: up harmony
* chore: up harmony
* chore: up harmony
* chore: up harmony
* fix: nested replies indices
* fix(deps): bump 2factor
* feat: add loggedIn user to all api routes
* chore: up themes
* refactor: audit admin v3 write api routes as per #11321
* refactor: audit category v3 write api routes as per #11321 [breaking]
docs: fix open api spec for #11321
* refactor: audit chat v3 write api routes as per #11321
* refactor: audit files v3 write api routes as per #11321
* refactor: audit flags v3 write api routes as per #11321
* refactor: audit posts v3 write api routes as per #11321
* refactor: audit topics v3 write api routes as per #11321
* refactor: audit users v3 write api routes as per #11321
* fix: lang string
* remove min height
* fix: empty topic/labels taking up space
* fix: tag filtering when changing filter to watched topics
or changing popular time limit to month
* chore: up harmony
* fix: closes #11354, show no post error if queued post already accepted/rejected
* test: #11354
* test: #11354
* fix(deps): bump 2factor
* fix: #11357 clear cache on thumb remove
* fix: thumb remove on windows, closes #11357
* test: openapi for thumbs
* test: fix openapi
---------
Co-authored-by: Julian Lam <julian@nodebb.org>
Co-authored-by: Opliko <opliko.reg@protonmail.com>
2023-03-17 11:58:31 -04:00
|
|
|
|
|
|
|
|
postsAPI.deleteDiff = async (caller, { pid, timestamp }) => {
|
|
|
|
|
const cid = await posts.getCidByPid(pid);
|
|
|
|
|
const [isAdmin, isModerator] = await Promise.all([
|
|
|
|
|
privileges.users.isAdministrator(caller.uid),
|
|
|
|
|
privileges.users.isModerator(caller.uid, cid),
|
|
|
|
|
]);
|
|
|
|
|
|
|
|
|
|
if (!(isAdmin || isModerator)) {
|
|
|
|
|
throw new Error('[[error:no-privileges]]');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
await posts.diffs.delete(pid, timestamp, caller.uid);
|
|
|
|
|
};
|
2023-04-17 14:15:20 -04:00
|
|
|
|
|
|
|
|
postsAPI.getReplies = async (caller, { pid }) => {
|
2024-01-16 11:20:54 -05:00
|
|
|
if (!utils.isNumber(pid) && !activitypub.helpers.isUri(pid)) {
|
2023-05-04 09:47:58 -04:00
|
|
|
throw new Error('[[error:invalid-data]]');
|
|
|
|
|
}
|
2023-04-17 14:15:20 -04:00
|
|
|
const { uid } = caller;
|
|
|
|
|
const canRead = await privileges.posts.can('topics:read', pid, caller.uid);
|
|
|
|
|
if (!canRead) {
|
|
|
|
|
return null;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
const { topicPostSort } = await user.getSettings(uid);
|
|
|
|
|
const pids = await posts.getPidsFromSet(`pid:${pid}:replies`, 0, -1, topicPostSort === 'newest_to_oldest');
|
|
|
|
|
|
|
|
|
|
let [postData, postPrivileges] = await Promise.all([
|
|
|
|
|
posts.getPostsByPids(pids, uid),
|
|
|
|
|
privileges.posts.get(pids, uid),
|
|
|
|
|
]);
|
|
|
|
|
postData = await topics.addPostData(postData, uid);
|
|
|
|
|
postData.forEach((postData, index) => posts.modifyPostByPrivilege(postData, postPrivileges[index]));
|
|
|
|
|
postData = postData.filter((postData, index) => postData && postPrivileges[index].read);
|
|
|
|
|
postData = await user.blocks.filter(uid, postData);
|
|
|
|
|
|
|
|
|
|
return postData;
|
|
|
|
|
};
|
