mirrors
/
wekan
mirror of https://github.com/wekan/wekan.git


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107
							import { ReactiveCache } from '/imports/reactiveCache';

// Method to find locked users and release them if needed
Meteor.methods({
  getLockedUsers() {
    // Check if user has admin rights
    const userId = Meteor.userId();
    if (!userId) {
      throw new Meteor.Error('error-invalid-user', 'Invalid user');
    }
    const user = ReactiveCache.getUser(userId);
    if (!user || !user.isAdmin) {
      throw new Meteor.Error('error-not-allowed', 'Not allowed');
    }

    // Current time to check against unlockTime
    const currentTime = Number(new Date());

    // Find users that are locked (known users)
    const lockedUsers = Meteor.users.find(
      {
        'services.accounts-lockout.unlockTime': {
          $gt: currentTime,
        }
      },
      {
        fields: {
          _id: 1,
          username: 1,
          emails: 1,
          'services.accounts-lockout.unlockTime': 1,
          'services.accounts-lockout.failedAttempts': 1
        }
      }
    ).fetch();

    // Format the results for the UI
    return lockedUsers.map(user => {
      const email = user.emails && user.emails.length > 0 ? user.emails[0].address : 'No email';
      const remainingLockTime = Math.round((user.services['accounts-lockout'].unlockTime - currentTime) / 1000);

      return {
        _id: user._id,
        username: user.username || 'No username',
        email,
        failedAttempts: user.services['accounts-lockout'].failedAttempts || 0,
        unlockTime: user.services['accounts-lockout'].unlockTime,
        remainingLockTime // in seconds
      };
    });
  },

  unlockUser(userId) {
    // Check if user has admin rights
    const adminId = Meteor.userId();
    if (!adminId) {
      throw new Meteor.Error('error-invalid-user', 'Invalid user');
    }
    const admin = ReactiveCache.getUser(adminId);
    if (!admin || !admin.isAdmin) {
      throw new Meteor.Error('error-not-allowed', 'Not allowed');
    }

    // Make sure the user to unlock exists
    const userToUnlock = Meteor.users.findOne(userId);
    if (!userToUnlock) {
      throw new Meteor.Error('error-user-not-found', 'User not found');
    }

    // Unlock the user
    Meteor.users.update(
      { _id: userId },
      {
        $unset: {
          'services.accounts-lockout': 1
        }
      }
    );

    return true;
  },

  unlockAllUsers() {
    // Check if user has admin rights
    const adminId = Meteor.userId();
    if (!adminId) {
      throw new Meteor.Error('error-invalid-user', 'Invalid user');
    }
    const admin = ReactiveCache.getUser(adminId);
    if (!admin || !admin.isAdmin) {
      throw new Meteor.Error('error-not-allowed', 'Not allowed');
    }

    // Unlock all users
    Meteor.users.update(
      { 'services.accounts-lockout.unlockTime': { $exists: true } },
      {
        $unset: {
          'services.accounts-lockout': 1
        }
      },
      { multi: true }
    );

    return true;
  }
});