aaron_nad/cannery
1
0
Fork 0
forked from shibao/cannery
Code Pull Requests Activity

harden invite changesets

Browse Source
This commit is contained in:
shibao
2022-07-04 21:09:55 -04:00
parent ee6266be3f
commit dce04e4d7f
9 changed files with 46 additions and 44 deletions
Download Patch File Download Diff File Expand all files Collapse all files

22
lib/cannery/invites.ex
View File

@ -100,15 +100,14 @@ defmodule Cannery.Invites do
"""
@spec create_invite(User.t(), attrs :: map()) ::
{:ok, Invite.t()} | {:error, Changeset.t(Invite.new_invite())}
def create_invite(%User{id: user_id, role: :admin}, attrs) do
def create_invite(%User{role: :admin} = user, attrs) do
token =
:crypto.strong_rand_bytes(@invite_token_length)
|> Base.url_encode64()
|> binary_part(0, @invite_token_length)
attrs = attrs |> Map.merge(%{"user_id" => user_id, "token" => token})
%Invite{} |> Invite.create_changeset(attrs) |> Repo.insert()
attrs = attrs |> Map.put("token", token)
%Invite{} |> Invite.create_changeset(user, attrs) |> Repo.insert()
end
@doc """
@ -155,19 +154,4 @@ defmodule Cannery.Invites do
"""
@spec delete_invite!(Invite.t(), User.t()) :: Invite.t()
def delete_invite!(invite, %User{role: :admin}), do: invite |> Repo.delete!()
@doc """
Returns an `%Changeset{}` for tracking invite changes.
## Examples
iex> change_invite(invite)
%Changeset{data: %Invite{}}
"""
@spec change_invite(Invite.t() | Invite.new_invite()) ::
Changeset.t(Invite.t() | Invite.new_invite())
@spec change_invite(Invite.t() | Invite.new_invite(), attrs :: map()) ::
Changeset.t(Invite.t() | Invite.new_invite())
def change_invite(invite, attrs \\ %{}), do: invite |> Invite.update_changeset(attrs)
end

7
lib/cannery/invites/invite.ex
View File

@ -38,10 +38,11 @@ defmodule Cannery.Invites.Invite do
@type id :: UUID.t()
@doc false
@spec create_changeset(new_invite(), attrs :: map()) :: Changeset.t(new_invite())
def create_changeset(invite, attrs) do
@spec create_changeset(new_invite(), User.t(), attrs :: map()) :: Changeset.t(new_invite())
def create_changeset(invite, %User{id: user_id}, attrs) do
invite
|> cast(attrs, [:name, :token, :uses_left, :disabled_at, :user_id])
|> change(user_id: user_id)
|> cast(attrs, [:name, :token, :uses_left, :disabled_at])
|> validate_required([:name, :token, :user_id])
|> validate_number(:uses_left, greater_than_or_equal_to: 0)
end