-import * as express from 'express'
+import express from 'express'
+import { body } from 'express-validator'
+import { HttpStatusCode } from '../../../shared/models/http/http-error-codes'
+import { isHostValid, isValidContactBody } from '../../helpers/custom-validators/servers'
+import { isUserDisplayNameValid } from '../../helpers/custom-validators/users'
import { logger } from '../../helpers/logger'
-import { areValidationErrors } from './utils'
-import { isHostValid } from '../../helpers/custom-validators/servers'
+import { CONFIG, isEmailEnabled } from '../../initializers/config'
+import { Redis } from '../../lib/redis'
import { ServerModel } from '../../models/server/server'
-import { body } from 'express-validator/check'
+import { areValidationErrors } from './shared'
const serverGetValidator = [
body('host').custom(isHostValid).withMessage('Should have a valid host'),
const server = await ServerModel.loadByHost(req.body.host)
if (!server) {
- return res.status(404)
- .send({ error: 'Server host not found.' })
- .end()
+ return res.fail({
+ status: HttpStatusCode.NOT_FOUND_404,
+ message: 'Server host not found.'
+ })
}
res.locals.server = server
}
]
+const contactAdministratorValidator = [
+ body('fromName')
+ .custom(isUserDisplayNameValid).withMessage('Should have a valid name'),
+ body('fromEmail')
+ .isEmail().withMessage('Should have a valid email'),
+ body('body')
+ .custom(isValidContactBody).withMessage('Should have a valid body'),
+
+ async (req: express.Request, res: express.Response, next: express.NextFunction) => {
+ logger.debug('Checking contactAdministratorValidator parameters', { parameters: req.body })
+
+ if (areValidationErrors(req, res)) return
+
+ if (CONFIG.CONTACT_FORM.ENABLED === false) {
+ return res.fail({
+ status: HttpStatusCode.CONFLICT_409,
+ message: 'Contact form is not enabled on this instance.'
+ })
+ }
+
+ if (isEmailEnabled() === false) {
+ return res.fail({
+ status: HttpStatusCode.CONFLICT_409,
+ message: 'Emailer is not enabled on this instance.'
+ })
+ }
+
+ if (await Redis.Instance.doesContactFormIpExist(req.ip)) {
+ logger.info('Refusing a contact form by %s: already sent one recently.', req.ip)
+
+ return res.fail({
+ status: HttpStatusCode.FORBIDDEN_403,
+ message: 'You already sent a contact form recently.'
+ })
+ }
+
+ return next()
+ }
+]
+
// ---------------------------------------------------------------------------
export {
- serverGetValidator
+ serverGetValidator,
+ contactAdministratorValidator
}