49a5725da3
Signed-off-by: Thomas Citharel <tcit@tcit.fr>
113 lines
3.4 KiB
Elixir
113 lines
3.4 KiB
Elixir
defmodule Mobilizon.GraphQL.Resolvers.Comment do
|
|
@moduledoc """
|
|
Handles the comment-related GraphQL calls.
|
|
"""
|
|
|
|
alias Mobilizon.{Actors, Admin, Discussions}
|
|
alias Mobilizon.Actors.Actor
|
|
alias Mobilizon.Discussions.Comment, as: CommentModel
|
|
alias Mobilizon.Users
|
|
alias Mobilizon.Users.User
|
|
import Mobilizon.Web.Gettext
|
|
|
|
alias Mobilizon.GraphQL.API.Comments
|
|
|
|
require Logger
|
|
|
|
def get_thread(_parent, %{id: thread_id}, _context) do
|
|
{:ok, Discussions.get_thread_replies(thread_id)}
|
|
end
|
|
|
|
def create_comment(
|
|
_parent,
|
|
%{actor_id: actor_id} = args,
|
|
%{
|
|
context: %{
|
|
current_user: %User{} = user
|
|
}
|
|
}
|
|
) do
|
|
with {:is_owned, %Actor{} = _organizer_actor} <- User.owns_actor(user, actor_id),
|
|
{:ok, _, %CommentModel{} = comment} <-
|
|
Comments.create_comment(args) do
|
|
{:ok, comment}
|
|
else
|
|
{:is_owned, nil} ->
|
|
{:error, dgettext("errors", "Profile is not owned by authenticated user")}
|
|
end
|
|
end
|
|
|
|
def create_comment(_parent, _args, _context) do
|
|
{:error, dgettext("errors", "You are not allowed to create a comment if not connected")}
|
|
end
|
|
|
|
def update_comment(
|
|
_parent,
|
|
%{text: text, comment_id: comment_id},
|
|
%{
|
|
context: %{
|
|
current_user: %User{} = user
|
|
}
|
|
}
|
|
) do
|
|
with {:actor, %Actor{id: actor_id} = _actor} <- {:actor, Users.get_actor_for_user(user)},
|
|
%CommentModel{actor_id: comment_actor_id} = comment <-
|
|
Mobilizon.Discussions.get_comment_with_preload(comment_id),
|
|
true <- actor_id === comment_actor_id,
|
|
{:ok, _, %CommentModel{} = comment} <- Comments.update_comment(comment, %{text: text}) do
|
|
{:ok, comment}
|
|
end
|
|
end
|
|
|
|
def edit_comment(_parent, _args, _context) do
|
|
{:error, dgettext("errors", "You are not allowed to update a comment if not connected")}
|
|
end
|
|
|
|
def delete_comment(
|
|
_parent,
|
|
%{comment_id: comment_id},
|
|
%{
|
|
context: %{
|
|
current_user: %User{role: role} = user
|
|
}
|
|
}
|
|
) do
|
|
with {:actor, %Actor{id: actor_id} = actor} <- {:actor, Users.get_actor_for_user(user)},
|
|
%CommentModel{deleted_at: nil} = comment <-
|
|
Discussions.get_comment_with_preload(comment_id) do
|
|
cond do
|
|
{:comment_can_be_managed, true} == CommentModel.can_be_managed_by(comment, actor_id) ->
|
|
do_delete_comment(comment, actor)
|
|
|
|
role in [:moderator, :administrator] ->
|
|
with {:ok, res} <- do_delete_comment(comment, actor),
|
|
%Actor{} = actor <- Actors.get_actor(actor_id) do
|
|
Admin.log_action(actor, "delete", comment)
|
|
|
|
{:ok, res}
|
|
end
|
|
|
|
true ->
|
|
{:error, dgettext("errors", "You cannot delete this comment")}
|
|
end
|
|
else
|
|
%CommentModel{deleted_at: deleted_at} when not is_nil(deleted_at) ->
|
|
{:error, dgettext("errors", "Comment is already deleted")}
|
|
|
|
{:is_owned, nil} ->
|
|
{:error, dgettext("errors", "Profile is not owned by authenticated user")}
|
|
end
|
|
end
|
|
|
|
def delete_comment(_parent, _args, %{}) do
|
|
{:error, dgettext("errors", "You are not allowed to delete a comment if not connected")}
|
|
end
|
|
|
|
defp do_delete_comment(%CommentModel{} = comment, %Actor{} = actor) do
|
|
with {:ok, _, %CommentModel{} = comment} <-
|
|
Comments.delete_comment(comment, actor) do
|
|
{:ok, comment}
|
|
end
|
|
end
|
|
end
|