2013-07-11 00:17:38 +02:00
|
|
|
<?php
|
|
|
|
|
|
|
|
|
|
final class PhabricatorMetaMTAActorQuery extends PhabricatorQuery {
|
|
|
|
|
|
|
|
|
|
private $phids = array();
|
|
|
|
|
private $viewer;
|
|
|
|
|
|
|
|
|
|
public function setViewer(PhabricatorUser $viewer) {
|
|
|
|
|
$this->viewer = $viewer;
|
|
|
|
|
return $this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public function getViewer() {
|
|
|
|
|
return $this->viewer;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public function withPHIDs(array $phids) {
|
|
|
|
|
$this->phids = $phids;
|
|
|
|
|
return $this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public function execute() {
|
|
|
|
|
$phids = array_fuse($this->phids);
|
|
|
|
|
$actors = array();
|
|
|
|
|
$type_map = array();
|
|
|
|
|
foreach ($phids as $phid) {
|
|
|
|
|
$type_map[phid_get_type($phid)][] = $phid;
|
|
|
|
|
$actors[$phid] = id(new PhabricatorMetaMTAActor())->setPHID($phid);
|
|
|
|
|
}
|
|
|
|
|
|
2013-07-24 23:12:39 +02:00
|
|
|
// TODO: Move this to PhabricatorPHIDType, or the objects, or some
|
|
|
|
|
// interface.
|
2013-07-21 19:42:07 +02:00
|
|
|
|
2013-07-11 00:17:38 +02:00
|
|
|
foreach ($type_map as $type => $phids) {
|
|
|
|
|
switch ($type) {
|
2013-07-26 23:05:19 +02:00
|
|
|
case PhabricatorPeoplePHIDTypeUser::TYPECONST:
|
2013-07-11 00:17:38 +02:00
|
|
|
$this->loadUserActors($actors, $phids);
|
|
|
|
|
break;
|
2013-07-24 23:12:39 +02:00
|
|
|
case PhabricatorPeoplePHIDTypeExternal::TYPECONST:
|
2013-07-11 00:17:38 +02:00
|
|
|
$this->loadExternalUserActors($actors, $phids);
|
|
|
|
|
break;
|
2013-07-21 19:42:07 +02:00
|
|
|
case PhabricatorMailingListPHIDTypeList::TYPECONST:
|
2013-07-11 00:17:38 +02:00
|
|
|
$this->loadMailingListActors($actors, $phids);
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
$this->loadUnknownActors($actors, $phids);
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return $actors;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
private function loadUserActors(array $actors, array $phids) {
|
|
|
|
|
assert_instances_of($actors, 'PhabricatorMetaMTAActor');
|
|
|
|
|
|
|
|
|
|
$emails = id(new PhabricatorUserEmail())->loadAllWhere(
|
|
|
|
|
'userPHID IN (%Ls) AND isPrimary = 1',
|
|
|
|
|
$phids);
|
|
|
|
|
$emails = mpull($emails, null, 'getUserPHID');
|
|
|
|
|
|
|
|
|
|
$users = id(new PhabricatorPeopleQuery())
|
|
|
|
|
->setViewer($this->getViewer())
|
|
|
|
|
->withPHIDs($phids)
|
|
|
|
|
->execute();
|
|
|
|
|
$users = mpull($users, null, 'getPHID');
|
|
|
|
|
|
|
|
|
|
foreach ($phids as $phid) {
|
|
|
|
|
$actor = $actors[$phid];
|
|
|
|
|
|
|
|
|
|
$user = idx($users, $phid);
|
|
|
|
|
if (!$user) {
|
|
|
|
|
$actor->setUndeliverable(
|
|
|
|
|
pht('Unable to load user record for this PHID.'));
|
|
|
|
|
} else {
|
|
|
|
|
$actor->setName($this->getUserName($user));
|
|
|
|
|
if ($user->getIsDisabled()) {
|
|
|
|
|
$actor->setUndeliverable(
|
|
|
|
|
pht('This user is disabled; disabled users do not receive mail.'));
|
|
|
|
|
}
|
|
|
|
|
if ($user->getIsSystemAgent()) {
|
|
|
|
|
$actor->setUndeliverable(
|
|
|
|
|
pht('This user is a bot; bot accounts do not receive mail.'));
|
|
|
|
|
}
|
Improve handling of email verification and "activated" accounts
Summary:
Small step forward which improves existing stuff or lays groudwork for future stuff:
- Currently, to check for email verification, we have to single-query the email address on every page. Instead, denoramlize it into the user object.
- Migrate all the existing users.
- When the user verifies an email, mark them as `isEmailVerified` if the email is their primary email.
- Just make the checks look at the `isEmailVerified` field.
- Add a new check, `isUserActivated()`, to cover email-verified plus disabled. Currently, a non-verified-but-not-disabled user could theoretically use Conduit over SSH, if anyone deployed it. Tighten that up.
- Add an `isApproved` flag, which is always true for now. In a future diff, I want to add a default-on admin approval queue for new accounts, to prevent configuration mistakes. The way it will work is:
- When the queue is enabled, registering users are created with `isApproved = false`.
- Admins are sent an email, "[Phabricator] New User Approval (alincoln)", telling them that a new user is waiting for approval.
- They go to the web UI and approve the user.
- Manually-created accounts are auto-approved.
- The email will have instructions for disabling the queue.
I think this queue will be helpful for new installs and give them peace of mind, and when you go to disable it we have a better opportunity to warn you about exactly what that means.
Generally, I want to improve the default safety of registration, since if you just blindly coast through the path of least resistance right now your install ends up pretty open, and realistically few installs are on VPNs.
Test Plan:
- Ran migration, verified `isEmailVerified` populated correctly.
- Created a new user, checked DB for verified (not verified).
- Verified, checked DB (now verified).
- Used Conduit, People, Diffusion.
Reviewers: btrahan
Reviewed By: btrahan
CC: chad, aran
Differential Revision: https://secure.phabricator.com/D7572
2013-11-12 23:37:04 +01:00
|
|
|
|
|
|
|
|
// NOTE: We do send email to unapproved users, and to unverified users,
|
|
|
|
|
// because it would otherwise be impossible to get them to verify their
|
|
|
|
|
// email addresses. Possibly we should white-list this kind of mail and
|
|
|
|
|
// deny all other types of mail.
|
2013-07-11 00:17:38 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$email = idx($emails, $phid);
|
|
|
|
|
if (!$email) {
|
|
|
|
|
$actor->setUndeliverable(
|
|
|
|
|
pht('Unable to load email record for this PHID.'));
|
|
|
|
|
} else {
|
|
|
|
|
$actor->setEmailAddress($email->getAddress());
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
private function loadExternalUserActors(array $actors, array $phids) {
|
|
|
|
|
assert_instances_of($actors, 'PhabricatorMetaMTAActor');
|
|
|
|
|
|
|
|
|
|
$xusers = id(new PhabricatorExternalAccountQuery())
|
|
|
|
|
->setViewer($this->getViewer())
|
|
|
|
|
->withPHIDs($phids)
|
|
|
|
|
->execute();
|
|
|
|
|
$xusers = mpull($xusers, null, 'getPHID');
|
|
|
|
|
|
|
|
|
|
foreach ($phids as $phid) {
|
|
|
|
|
$actor = $actors[$phid];
|
|
|
|
|
|
|
|
|
|
$xuser = idx($xusers, $phid);
|
|
|
|
|
if (!$xuser) {
|
|
|
|
|
$actor->setUndeliverable(
|
|
|
|
|
pht('Unable to load external user record for this PHID.'));
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$actor->setName($xuser->getDisplayName());
|
|
|
|
|
|
|
|
|
|
if ($xuser->getAccountType() != 'email') {
|
|
|
|
|
$actor->setUndeliverable(
|
|
|
|
|
pht(
|
|
|
|
|
'Only external accounts of type "email" are deliverable; this '.
|
|
|
|
|
'account has a different type.'));
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$actor->setEmailAddress($xuser->getAccountID());
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
private function loadMailingListActors(array $actors, array $phids) {
|
|
|
|
|
assert_instances_of($actors, 'PhabricatorMetaMTAActor');
|
|
|
|
|
|
2013-07-21 19:42:07 +02:00
|
|
|
$lists = id(new PhabricatorMailingListQuery())
|
|
|
|
|
->setViewer($this->getViewer())
|
|
|
|
|
->withPHIDs($phids)
|
|
|
|
|
->execute();
|
Move outbound mail lists to CLI and enhance details
Summary: Finish off moving all this stuff to the CLI. Ref T3306.
Test Plan:
PROPERTIES
ID: 6483
Status: void
Retry Count: 0
Next Retry: 1373494457
Related PHID: PHID-DREV-5bnb33yeuhuaulyc3exg
Message: Message has no valid recipients: all To/Cc are disabled, invalid, or configured not to receive this mail.
PARAMETERS
from: PHID-USER-lqiz3yd7wmk64ejugvov
is-html:
parent-message-id: null
thread-id: differential-rev-PHID-DREV-5bnb33yeuhuaulyc3exg-req
is-first-message: null
is-bulk: 1
mailtags: ["differential-comment"]
cc: ["PHID-USER-cluwcdowc35gmperlkbi"]
subject: D22: quack quack
subject-prefix: [Differential]
vary-subject-prefix: [Commented On]
worker-task: 936546
HEADERS
Thread-Topic: D22: quack quack
X-Herald-Rules: none
X-Differential-Author: <PHID-USER-lqiz3yd7wmk64ejugvov>
X-Differential-CC: <PHID-USER-ly3pvrtdkw7lbgs72jvr>
X-Differential-CC: <PHID-USER-cluwcdowc35gmperlkbi>
X-Differential-CC: <PHID-MLST-wkxaantg3q6pgdkty5pt>
X-Differential-CC: <PHID-USER-aeabc4ipqbifny3rw4ok>
X-Differential-CC: <PHID-USER-zqxtb3oi4pouwxnxlv3f>
X-Differential-CC: <PHID-USER-cknqtm2dzw7twnwyiaye>
X-Differential-CCs: <PHID-USER-ly3pvrtdkw7lbgs72jvr>, <PHID-USER-cluwcdowc35gmperlkbi>, <PHID-MLST-wkxaantg3q6pgdkty5pt>, <PHID-USER-aeabc4ipqbifny3rw4ok>, <PHID-USER-zqxtb3oi4pouwxnxlv3f>, <PHID-USER-cknqtm2dzw7twnwyiaye>
X-Differential-Explicit-CC: <PHID-USER-ly3pvrtdkw7lbgs72jvr>
X-Differential-Explicit-CC: <PHID-USER-cluwcdowc35gmperlkbi>
X-Differential-Explicit-CC: <PHID-MLST-wkxaantg3q6pgdkty5pt>
X-Differential-Explicit-CC: <PHID-USER-aeabc4ipqbifny3rw4ok>
X-Differential-Explicit-CC: <PHID-USER-zqxtb3oi4pouwxnxlv3f>
X-Differential-Explicit-CC: <PHID-USER-cknqtm2dzw7twnwyiaye>
X-Differential-Explicit-CCs: <PHID-USER-ly3pvrtdkw7lbgs72jvr>, <PHID-USER-cluwcdowc35gmperlkbi>, <PHID-MLST-wkxaantg3q6pgdkty5pt>, <PHID-USER-aeabc4ipqbifny3rw4ok>, <PHID-USER-zqxtb3oi4pouwxnxlv3f>, <PHID-USER-cknqtm2dzw7twnwyiaye>
X-Phabricator-To: <PHID-USER-lqiz3yd7wmk64ejugvov>
X-Phabricator-Cc: <PHID-USER-ly3pvrtdkw7lbgs72jvr>
X-Phabricator-Cc: <PHID-USER-cluwcdowc35gmperlkbi>
X-Phabricator-Cc: <PHID-MLST-wkxaantg3q6pgdkty5pt>
X-Phabricator-Cc: <PHID-USER-aeabc4ipqbifny3rw4ok>
X-Phabricator-Cc: <PHID-USER-zqxtb3oi4pouwxnxlv3f>
X-Phabricator-Cc: <PHID-USER-cknqtm2dzw7twnwyiaye>
RECIPIENTS
! dog (dog)
- This user is disabled; disabled users do not receive mail.
BODY
epriestley has commented on the revision "quack quack".
zxcbzxcb
REVISION DETAIL
http://local.aphront.com:8080/D22
To: epriestley
Cc: Unknown User, dog, list, duck, epriestley992, asana
Reviewers: btrahan
Reviewed By: btrahan
CC: aran
Maniphest Tasks: T3306
Differential Revision: https://secure.phabricator.com/D6423
2013-07-11 03:52:22 +02:00
|
|
|
$lists = mpull($lists, null, 'getPHID');
|
2013-07-11 00:17:38 +02:00
|
|
|
|
|
|
|
|
foreach ($phids as $phid) {
|
|
|
|
|
$actor = $actors[$phid];
|
|
|
|
|
|
|
|
|
|
$list = idx($lists, $phid);
|
|
|
|
|
if (!$list) {
|
|
|
|
|
$actor->setUndeliverable(
|
|
|
|
|
pht(
|
|
|
|
|
'Unable to load mailing list record for this PHID.'));
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$actor->setName($list->getName());
|
|
|
|
|
$actor->setEmailAddress($list->getEmail());
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
private function loadUnknownActors(array $actors, array $phids) {
|
|
|
|
|
foreach ($phids as $phid) {
|
|
|
|
|
$actor = $actors[$phid];
|
|
|
|
|
$actor->setUndeliverable(pht('This PHID type is not mailable.'));
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Small helper function to make sure we format the username properly as
|
|
|
|
|
* specified by the `metamta.user-address-format` configuration value.
|
|
|
|
|
*/
|
|
|
|
|
private function getUserName(PhabricatorUser $user) {
|
|
|
|
|
$format = PhabricatorEnv::getEnvConfig('metamta.user-address-format');
|
|
|
|
|
|
|
|
|
|
switch ($format) {
|
|
|
|
|
case 'short':
|
|
|
|
|
$name = $user->getUserName();
|
|
|
|
|
break;
|
|
|
|
|
case 'real':
|
|
|
|
|
$name = $user->getRealName();
|
|
|
|
|
break;
|
|
|
|
|
case 'full':
|
|
|
|
|
default:
|
|
|
|
|
$name = $user->getFullName();
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return $name;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
}
|
