overleaf/services/web/app/coffee/Features/Subscription/SubscriptionGroupController.coffee

SubscriptionGroupHandler = require("./SubscriptionGroupHandler")
logger = require("logger-sharelatex")
SubscriptionLocator = require("./SubscriptionLocator")
ErrorsController = require("../Errors/ErrorController")
SubscriptionDomainHandler = require("./SubscriptionDomainHandler")
AuthenticationController = require('../Authentication/AuthenticationController')
_ = require("underscore")
async = require("async")

module.exports =

	removeUserFromGroup: (req, res, next)->
		adminUserId = AuthenticationController.getLoggedInUserId(req)
		userToRemove_id = req.params.user_id
		getManagedSubscription adminUserId, (error, subscription) ->
			return next(error) if error?
			logger.log adminUserId:adminUserId, userToRemove_id:userToRemove_id, "removing user from group subscription"
			SubscriptionGroupHandler.removeUserFromGroup subscription._id, userToRemove_id, (err)->
				if err?
					logger.err err:err, adminUserId:adminUserId, userToRemove_id:userToRemove_id, "error removing user from group"
					return res.sendStatus 500
				res.send()

	removeSelfFromGroup: (req, res, next)->
		adminUserId = req.query.admin_user_id
		userToRemove_id = AuthenticationController.getLoggedInUserId(req)
		getManagedSubscription adminUserId, (error, subscription) ->
			return next(error) if error?
			logger.log adminUserId:adminUserId, userToRemove_id:userToRemove_id, "removing user from group subscription after self request"
			SubscriptionGroupHandler.removeUserFromGroup subscription._id, userToRemove_id, (err)->
				if err?
					logger.err err:err, userToRemove_id:userToRemove_id, adminUserId:adminUserId, "error removing self from group"
					return res.sendStatus 500
				res.send()

	exportGroupCsv: (req, res, next)->
		user_id = AuthenticationController.getLoggedInUserId(req)
		logger.log user_id: user_id, "exporting group csv"
		getManagedSubscription user_id, (err, subscription)->
			return next(error) if error?
			if !subscription.groupPlan
				return res.redirect("/")
			SubscriptionGroupHandler.getPopulatedListOfMembers subscription._id, (err, users)->
				groupCsv = ""
				for user in users
					groupCsv += user.email + "\n"
				res.header(
					"Content-Disposition",
					"attachment; filename=Group.csv"
				)
				res.contentType('text/csv')
				res.send(groupCsv)

	# legacy route
	redirectToSubscriptionGroupAdminPage: (req, res, next) ->
		user_id = AuthenticationController.getLoggedInUserId(req)
		getManagedSubscription user_id, (error, subscription) ->
			return next(error) if error?
			if !subscription?.groupPlan
				return res.redirect("/user/subscription")
			res.redirect("/manage/groups/#{subscription._id}/members")

getManagedSubscription = (managerId, callback) ->
	SubscriptionLocator.findManagedSubscription managerId, (err, subscription)->
		if subscription?
			logger.log managerId: managerId, "got managed subscription"
		else
			err ||= new Error("No subscription found managed by user #{managerId}")

		return callback(err, subscription)
Intial open source comment 2014-02-12 05:23:40 -05:00			`SubscriptionGroupHandler = require("./SubscriptionGroupHandler")`
			`logger = require("logger-sharelatex")`
			`SubscriptionLocator = require("./SubscriptionLocator")`
added tests around new endpoints for joining groups 2015-05-27 15:50:16 -04:00			`ErrorsController = require("../Errors/ErrorController")`
renamed SubscriptionDomainAllocator -> SubscriptionDomainHandler 2015-05-27 15:57:54 -04:00			`SubscriptionDomainHandler = require("./SubscriptionDomainHandler")`
WIP: refactor 2016-09-05 10:58:31 -04:00			`AuthenticationController = require('../Authentication/AuthenticationController')`
if you are alread in the group show the custom group page 2015-05-27 10:50:28 -04:00			`_ = require("underscore")`
if user has subscription before joining group is given option to cancel personal one 2016-03-22 12:59:47 -04:00			`async = require("async")`
v1 basic invite works, not pretty or tested 2015-05-22 08:57:15 -04:00
Intial open source comment 2014-02-12 05:23:40 -05:00			`module.exports =`

Use the id in methods that modify a subscription This will make it easier to allow a user to manage multiple groups. 2018-07-11 04:31:57 -04:00			`removeUserFromGroup: (req, res, next)->`
WIP: refactor 2016-09-05 10:58:31 -04:00			`adminUserId = AuthenticationController.getLoggedInUserId(req)`
Intial open source comment 2014-02-12 05:23:40 -05:00			`userToRemove_id = req.params.user_id`
Remove SubscriptionLocator.getManagedSubscription It was used as a kind of access control check, but it's clearer if the check is in the only controller that actually needs it. 2018-07-13 06:47:26 -04:00			`getManagedSubscription adminUserId, (error, subscription) ->`
Use the id in methods that modify a subscription This will make it easier to allow a user to manage multiple groups. 2018-07-11 04:31:57 -04:00			`return next(error) if error?`
			`logger.log adminUserId:adminUserId, userToRemove_id:userToRemove_id, "removing user from group subscription"`
			`SubscriptionGroupHandler.removeUserFromGroup subscription._id, userToRemove_id, (err)->`
			`if err?`
			`logger.err err:err, adminUserId:adminUserId, userToRemove_id:userToRemove_id, "error removing user from group"`
			`return res.sendStatus 500`
			`res.send()`
WIP: refactor 2016-09-05 10:58:31 -04:00
Use the id in methods that modify a subscription This will make it easier to allow a user to manage multiple groups. 2018-07-11 04:31:57 -04:00			`removeSelfFromGroup: (req, res, next)->`
add leave group button for group subscriptions 2016-02-19 07:27:01 -05:00			`adminUserId = req.query.admin_user_id`
WIP: refactor 2016-09-05 10:58:31 -04:00			`userToRemove_id = AuthenticationController.getLoggedInUserId(req)`
Remove SubscriptionLocator.getManagedSubscription It was used as a kind of access control check, but it's clearer if the check is in the only controller that actually needs it. 2018-07-13 06:47:26 -04:00			`getManagedSubscription adminUserId, (error, subscription) ->`
Use the id in methods that modify a subscription This will make it easier to allow a user to manage multiple groups. 2018-07-11 04:31:57 -04:00			`return next(error) if error?`
			`logger.log adminUserId:adminUserId, userToRemove_id:userToRemove_id, "removing user from group subscription after self request"`
			`SubscriptionGroupHandler.removeUserFromGroup subscription._id, userToRemove_id, (err)->`
			`if err?`
			`logger.err err:err, userToRemove_id:userToRemove_id, adminUserId:adminUserId, "error removing self from group"`
			`return res.sendStatus 500`
			`res.send()`
Intial open source comment 2014-02-12 05:23:40 -05:00
Merge pull request #1045 from sharelatex/bg-fix-missing-next-in-subscription-group-controller fix missing next argument GitOrigin-RevId: 290741a98a3fb7463d6a6dd052f90c8ffe4e62ce 2018-10-24 09:50:55 -04:00			`exportGroupCsv: (req, res, next)->`
WIP: refactor 2016-09-05 10:58:31 -04:00			`user_id = AuthenticationController.getLoggedInUserId(req)`
add export csv group feature 2015-05-28 15:54:41 -04:00			`logger.log user_id: user_id, "exporting group csv"`
Remove SubscriptionLocator.getManagedSubscription It was used as a kind of access control check, but it's clearer if the check is in the only controller that actually needs it. 2018-07-13 06:47:26 -04:00			`getManagedSubscription user_id, (err, subscription)->`
Use the id in methods that modify a subscription This will make it easier to allow a user to manage multiple groups. 2018-07-11 04:31:57 -04:00			`return next(error) if error?`
Check that the subscription is a group before exporting it to csv I removed this check by mistake, just taking it back. 2018-07-11 07:10:38 -04:00			`if !subscription.groupPlan`
			`return res.redirect("/")`
Use the id in methods that modify a subscription This will make it easier to allow a user to manage multiple groups. 2018-07-11 04:31:57 -04:00			`SubscriptionGroupHandler.getPopulatedListOfMembers subscription._id, (err, users)->`
add export csv group feature 2015-05-28 15:54:41 -04:00			`groupCsv = ""`
			`for user in users`
			`groupCsv += user.email + "\n"`
			`res.header(`
			`"Content-Disposition",`
			`"attachment; filename=Group.csv"`
			`)`
			`res.contentType('text/csv')`
			`res.send(groupCsv)`
Remove SubscriptionLocator.getManagedSubscription It was used as a kind of access control check, but it's clearer if the check is in the only controller that actually needs it. 2018-07-13 06:47:26 -04:00
refactor to use config file 2018-10-11 13:56:14 -04:00			`# legacy route`
Merge pull request #1045 from sharelatex/bg-fix-missing-next-in-subscription-group-controller fix missing next argument GitOrigin-RevId: 290741a98a3fb7463d6a6dd052f90c8ffe4e62ce 2018-10-24 09:50:55 -04:00			`redirectToSubscriptionGroupAdminPage: (req, res, next) ->`
refactor to use config file 2018-10-11 13:56:14 -04:00			`user_id = AuthenticationController.getLoggedInUserId(req)`
			`getManagedSubscription user_id, (error, subscription) ->`
			`return next(error) if error?`
			`if !subscription?.groupPlan`
			`return res.redirect("/user/subscription")`
			`res.redirect("/manage/groups/#{subscription._id}/members")`
Remove SubscriptionLocator.getManagedSubscription It was used as a kind of access control check, but it's clearer if the check is in the only controller that actually needs it. 2018-07-13 06:47:26 -04:00
			`getManagedSubscription = (managerId, callback) ->`
			`SubscriptionLocator.findManagedSubscription managerId, (err, subscription)->`
			`if subscription?`
			`logger.log managerId: managerId, "got managed subscription"`
			`else`
			`err \|\|= new Error("No subscription found managed by user #{managerId}")`

			`return callback(err, subscription)`