website/pkg/controller/account/deactivate.go

package account

import (
	"net/http"
	"strings"

	"code.nonshy.com/nonshy/website/pkg/models"
	"code.nonshy.com/nonshy/website/pkg/session"
	"code.nonshy.com/nonshy/website/pkg/templates"
)

// Deactivate account page (self service).
func Deactivate() http.HandlerFunc {
	tmpl := templates.Must("account/deactivate.html")
	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
		currentUser, err := session.CurrentUser(r)
		if err != nil {
			session.FlashError(w, r, "Couldn't get your current user: %s", err)
			templates.Redirect(w, "/")
			return
		}

		// Confirm deletion.
		if r.Method == http.MethodPost {
			var password = strings.TrimSpace(r.PostFormValue("password"))
			if err := currentUser.CheckPassword(password); err != nil {
				session.FlashError(w, r, "You must enter your correct account password to delete your account.")
				templates.Redirect(w, r.URL.Path)
				return
			}

			// Deactivate their account!
			currentUser.Status = models.UserStatusDisabled
			if err := currentUser.Save(); err != nil {
				session.FlashError(w, r, "Error while deactivating your account: %s", err)
				templates.Redirect(w, r.URL.Path)
				return
			}

			// Sign them out.
			session.LogoutUser(w, r)
			session.Flash(w, r, "Your account has been deactivated and you are now logged out. If you wish to re-activate your account, sign in again with your username and password.")
			templates.Redirect(w, "/")

			// Log the change.
			models.LogEvent(currentUser, nil, models.ChangeLogLifecycle, "users", currentUser.ID, "Deactivated their account.")
			return
		}

		var vars = map[string]interface{}{}
		if err := tmpl.Execute(w, r, vars); err != nil {
			http.Error(w, err.Error(), http.StatusInternalServerError)
			return
		}
	})
}

// Reactivate account page
func Reactivate() http.HandlerFunc {
	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
		currentUser, err := session.CurrentUser(r)
		if err != nil {
			session.FlashError(w, r, "Couldn't get your current user: %s", err)
			templates.Redirect(w, "/")
			return
		}

		if currentUser.Status != models.UserStatusDisabled {
			session.FlashError(w, r, "Your account was not disabled in the first place!")
			templates.Redirect(w, "/")
			return
		}

		// Reactivate them.
		currentUser.Status = models.UserStatusActive
		if err := currentUser.Save(); err != nil {
			session.FlashError(w, r, "Error while reactivating your account: %s", err)
			templates.Redirect(w, "/")
			return
		}

		session.Flash(w, r, "Welcome back! Your account has been reactivated.")
		templates.Redirect(w, "/")

		// Log the change.
		models.LogEvent(currentUser, nil, models.ChangeLogLifecycle, "users", currentUser.ID, "Reactivated their account.")
	})
}
Deactivate Account; Friends Lists on Profiles * Add a way for users to temporarily deactivate their accounts, in a recoverable way should they decide to return later. * A deactivated account may log in but have limited options: to reactivate their account, permanently delete it, or log out. * Fix several bugs around the display of comments, messages and forum threads for disabled, banned, or blocked users: * Messages (inbox and sentbox) will be hidden and the unread indicator will not count unread messages the user can't access. * Comments on photos and forum posts are hidden, and top-level threads on the "Newest" tab will show "[unavailable]" for their text and username. * Your historical notifications will hide users who are blocked, banned or disabled. * Add a "Friends" tab to user profile pages, to see other users' friends. * The page is Certification Required so non-cert users can't easily discover any members on the site. 2023-10-22 22:02:24 +00:00			`package account`

			`import (`
			`"net/http"`
			`"strings"`

			`"code.nonshy.com/nonshy/website/pkg/models"`
			`"code.nonshy.com/nonshy/website/pkg/session"`
			`"code.nonshy.com/nonshy/website/pkg/templates"`
			`)`

			`// Deactivate account page (self service).`
			`func Deactivate() http.HandlerFunc {`
			`tmpl := templates.Must("account/deactivate.html")`
			`return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {`
			`currentUser, err := session.CurrentUser(r)`
			`if err != nil {`
			`session.FlashError(w, r, "Couldn't get your current user: %s", err)`
			`templates.Redirect(w, "/")`
			`return`
			`}`

			`// Confirm deletion.`
			`if r.Method == http.MethodPost {`
			`var password = strings.TrimSpace(r.PostFormValue("password"))`
			`if err := currentUser.CheckPassword(password); err != nil {`
			`session.FlashError(w, r, "You must enter your correct account password to delete your account.")`
			`templates.Redirect(w, r.URL.Path)`
			`return`
			`}`

			`// Deactivate their account!`
			`currentUser.Status = models.UserStatusDisabled`
			`if err := currentUser.Save(); err != nil {`
			`session.FlashError(w, r, "Error while deactivating your account: %s", err)`
			`templates.Redirect(w, r.URL.Path)`
			`return`
			`}`

			`// Sign them out.`
			`session.LogoutUser(w, r)`
			`session.Flash(w, r, "Your account has been deactivated and you are now logged out. If you wish to re-activate your account, sign in again with your username and password.")`
			`templates.Redirect(w, "/")`
Change Log Updates * Delete all change logs AboutUserID on account deletion, and export them in the data export zip. * Log admin changes to ban/admin status of other users. * Log user deactivations/reactivations and deletions (self serve or admin deletion). 2024-02-26 01:28:40 +00:00
			`// Log the change.`
Dedicated ChangeLog events for ban/lifecycle/admin changes 2024-02-26 01:36:01 +00:00			`models.LogEvent(currentUser, nil, models.ChangeLogLifecycle, "users", currentUser.ID, "Deactivated their account.")`
Deactivate Account; Friends Lists on Profiles * Add a way for users to temporarily deactivate their accounts, in a recoverable way should they decide to return later. * A deactivated account may log in but have limited options: to reactivate their account, permanently delete it, or log out. * Fix several bugs around the display of comments, messages and forum threads for disabled, banned, or blocked users: * Messages (inbox and sentbox) will be hidden and the unread indicator will not count unread messages the user can't access. * Comments on photos and forum posts are hidden, and top-level threads on the "Newest" tab will show "[unavailable]" for their text and username. * Your historical notifications will hide users who are blocked, banned or disabled. * Add a "Friends" tab to user profile pages, to see other users' friends. * The page is Certification Required so non-cert users can't easily discover any members on the site. 2023-10-22 22:02:24 +00:00			`return`
			`}`

			`var vars = map[string]interface{}{}`
			`if err := tmpl.Execute(w, r, vars); err != nil {`
			`http.Error(w, err.Error(), http.StatusInternalServerError)`
			`return`
			`}`
			`})`
			`}`

			`// Reactivate account page`
			`func Reactivate() http.HandlerFunc {`
			`return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {`
			`currentUser, err := session.CurrentUser(r)`
			`if err != nil {`
			`session.FlashError(w, r, "Couldn't get your current user: %s", err)`
			`templates.Redirect(w, "/")`
			`return`
			`}`

			`if currentUser.Status != models.UserStatusDisabled {`
			`session.FlashError(w, r, "Your account was not disabled in the first place!")`
			`templates.Redirect(w, "/")`
			`return`
			`}`

			`// Reactivate them.`
			`currentUser.Status = models.UserStatusActive`
			`if err := currentUser.Save(); err != nil {`
			`session.FlashError(w, r, "Error while reactivating your account: %s", err)`
			`templates.Redirect(w, "/")`
			`return`
			`}`

			`session.Flash(w, r, "Welcome back! Your account has been reactivated.")`
			`templates.Redirect(w, "/")`
Change Log Updates * Delete all change logs AboutUserID on account deletion, and export them in the data export zip. * Log admin changes to ban/admin status of other users. * Log user deactivations/reactivations and deletions (self serve or admin deletion). 2024-02-26 01:28:40 +00:00
			`// Log the change.`
Dedicated ChangeLog events for ban/lifecycle/admin changes 2024-02-26 01:36:01 +00:00			`models.LogEvent(currentUser, nil, models.ChangeLogLifecycle, "users", currentUser.ID, "Reactivated their account.")`
Deactivate Account; Friends Lists on Profiles * Add a way for users to temporarily deactivate their accounts, in a recoverable way should they decide to return later. * A deactivated account may log in but have limited options: to reactivate their account, permanently delete it, or log out. * Fix several bugs around the display of comments, messages and forum threads for disabled, banned, or blocked users: * Messages (inbox and sentbox) will be hidden and the unread indicator will not count unread messages the user can't access. * Comments on photos and forum posts are hidden, and top-level threads on the "Newest" tab will show "[unavailable]" for their text and username. * Your historical notifications will hide users who are blocked, banned or disabled. * Add a "Friends" tab to user profile pages, to see other users' friends. * The page is Certification Required so non-cert users can't easily discover any members on the site. 2023-10-22 22:02:24 +00:00			`})`
			`}`