mirror of
https://github.com/yu-i-i/overleaf-cep.git
synced 2026-05-31 04:41:32 +02:00
c74a3b3437
Add script for bulk account suspension GitOrigin-RevId: 434ac819c12a2a33c26baf963d8d8874b1864928
78 lines
2.2 KiB
JavaScript
78 lines
2.2 KiB
JavaScript
const OError = require('@overleaf/o-error')
|
|
const { UserAuditLogEntry } = require('../../models/UserAuditLogEntry')
|
|
const { callbackify } = require('util')
|
|
|
|
function _canHaveNoIpAddressId(operation) {
|
|
if (operation === 'join-group-subscription') return true
|
|
if (operation === 'leave-group-subscription') return true
|
|
if (operation === 'must-reset-password-set') return true
|
|
return false
|
|
}
|
|
|
|
function _canHaveNoInitiatorId(operation, info) {
|
|
if (operation === 'reset-password') return true
|
|
if (operation === 'unlink-sso' && info.providerId === 'collabratec')
|
|
return true
|
|
if (operation === 'unlink-sso' && info.script === true) return true
|
|
if (operation === 'unlink-institution-sso-not-migrated') return true
|
|
if (operation === 'remove-email' && info.script) return true
|
|
if (operation === 'join-group-subscription') return true
|
|
if (operation === 'leave-group-subscription') return true
|
|
if (operation === 'must-reset-password-set') return true
|
|
if (operation === 'must-reset-password-unset') return true
|
|
if (operation === 'account-suspension' && info.script) return true
|
|
}
|
|
|
|
/**
|
|
* Add an audit log entry
|
|
*
|
|
* The entry should include at least the following fields:
|
|
*
|
|
* - userId: the user on behalf of whom the operation was performed
|
|
* - operation: a string identifying the type of operation
|
|
* - initiatorId: who performed the operation
|
|
* - ipAddress: the IP address of the initiator
|
|
* - info: an object detailing what happened
|
|
*/
|
|
async function addEntry(userId, operation, initiatorId, ipAddress, info = {}) {
|
|
if (!operation) {
|
|
throw new OError('missing operation for audit log', {
|
|
initiatorId,
|
|
ipAddress,
|
|
})
|
|
}
|
|
|
|
if (!ipAddress && !_canHaveNoIpAddressId(operation, info)) {
|
|
throw new OError('missing ipAddress for audit log', {
|
|
operation,
|
|
initiatorId,
|
|
})
|
|
}
|
|
|
|
if (!initiatorId && !_canHaveNoInitiatorId(operation, info)) {
|
|
throw new OError('missing initiatorId for audit log', {
|
|
operation,
|
|
ipAddress,
|
|
})
|
|
}
|
|
|
|
const entry = {
|
|
userId,
|
|
operation,
|
|
initiatorId,
|
|
info,
|
|
ipAddress,
|
|
}
|
|
|
|
await UserAuditLogEntry.create(entry)
|
|
}
|
|
|
|
const UserAuditLogHandler = {
|
|
addEntry: callbackify(addEntry),
|
|
promises: {
|
|
addEntry,
|
|
},
|
|
}
|
|
|
|
module.exports = UserAuditLogHandler
|