jfederico / greenlight

# BigBlueButton open source conferencing system - http://www.bigbluebutton.org/.

#

# Copyright (c) 2018 BigBlueButton Inc. and by respective authors (see below).

#

# This program is free software; you can redistribute it and/or modify it under the

# terms of the GNU Lesser General Public License as published by the Free Software

# Foundation; either version 3.0 of the License, or (at your option) any later

# version.

#

# BigBlueButton is distributed in the hope that it will be useful, but WITHOUT ANY

# WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A

# PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details.

#

# You should have received a copy of the GNU Lesser General Public License along

# with BigBlueButton; if not, see <http://www.gnu.org/licenses/>.

class RoomsController < ApplicationController

  include RecordingsHelper

  include Pagy::Backend

  include Recorder

  before_action :validate_accepted_terms, unless: -> { !Rails.configuration.terms }

  before_action :validate_verified_email, except: [:show, :join],

                unless: -> { !Rails.configuration.enable_email_verification }

  before_action :find_room, except: [:create, :join_specific_room]

  before_action :verify_room_ownership, except: [:create, :show, :join, :logout, :login, :join_specific_room]

  before_action :verify_room_owner_verified, only: [:show, :join],

                unless: -> { !Rails.configuration.enable_email_verification }

  before_action :verify_user_not_admin, only: [:show]

  # POST /

  def create

    redirect_to(root_path) && return unless current_user

    return redirect_to current_user.main_room, flash: { alert: I18n.t("room.room_limit") } if room_limit_exceeded

    @room = Room.new(name: room_params[:name], access_code: room_params[:access_code])

    @room.owner = current_user

    @room.room_settings = create_room_settings_string(room_params[:mute_on_join],

      room_params[:require_moderator_approval], room_params[:anyone_can_start], room_params[:all_join_moderator])

    if @room.save

      if room_params[:auto_join] == "1"

        start

      else

        flash[:success] = I18n.t("room.create_room_success")

        redirect_to @room

      end

    else

      flash[:alert] = I18n.t("room.create_room_error")

      redirect_to current_user.main_room

    end

  end

  # GET /:room_uid

  def show

    @is_running = @room.running?

    @anyone_can_start = JSON.parse(@room[:room_settings])["anyoneCanStart"]

    if current_user && @room.owned_by?(current_user)

      if current_user.highest_priority_role.can_create_rooms

        @search, @order_column, @order_direction, recs =

          recordings(@room.bbb_id, @user_domain, params.permit(:search, :column, :direction), true)

        @pagy, @recordings = pagy_array(recs)

      else

        render :cant_create_rooms

      end

    else

      # Get users name

      @name = if current_user

        current_user.name

      elsif cookies.encrypted[:greenlight_name]

        cookies.encrypted[:greenlight_name]

      else

        ""

      end

      @search, @order_column, @order_direction, pub_recs =

        public_recordings(@room.bbb_id, @user_domain, params.permit(:search, :column, :direction), true)

      @pagy, @public_recordings = pagy_array(pub_recs)

      render :join

    end

  end

  # PATCH /:room_uid

  def update

    if params[:setting] == "rename_block"

      @room = Room.find_by!(uid: params[:room_block_uid])

      update_room_attributes("name")

    elsif params[:setting] == "rename_header"

      update_room_attributes("name")

    elsif params[:setting] == "rename_recording"

      @room.update_recording(params[:record_id], "meta_name" => params[:record_name])

    end

    if request.referrer

      redirect_to request.referrer

    else

      redirect_to room_path

    end

  end

  # POST /:room_uid

  def join

    return redirect_to root_path,

      flash: { alert: I18n.t("administrator.site_settings.authentication.user-info") } if auth_required

    opts = default_meeting_options

    unless @room.owned_by?(current_user)

      # Don't allow users to join unless they have a valid access code or the room doesn't

      # have an access code

      if @room.access_code && [email protected]_code.empty? && @room.access_code != session[:access_code]

        return redirect_to room_path(room_uid: params[:room_uid]), flash: { alert: I18n.t("room.access_code_required") }

      end

      # Assign join name if passed.

      if params[@room.invite_path]

        @join_name = params[@room.invite_path][:join_name]

      elsif !params[:join_name]

        # Join name not passed.

        return

      end

    end

    # create or update cookie with join name

    cookies.encrypted[:greenlight_name] = @join_name unless cookies.encrypted[:greenlight_name] == @join_name

    join_room(opts)

  end

  # DELETE /:room_uid

  def destroy

    # Don't delete the users home room.

    @room.destroy if @room.owned_by?(current_user) && @room != current_user.main_room

    redirect_to current_user.main_room

  end

  # POST room/join

  # POST /:room_uid/start

  def start

    # Join the user in and start the meeting.

    opts = default_meeting_options

    opts[:user_is_moderator] = true

    # Include the user's choices for the room settings

    room_settings = JSON.parse(@room[:room_settings])

    opts[:mute_on_start] = room_settings["muteOnStart"] if room_settings["muteOnStart"]

    opts[:require_moderator_approval] = room_settings["requireModeratorApproval"]

    begin

      redirect_to @room.join_path(current_user.name, opts, current_user.uid)

    rescue BigBlueButton::BigBlueButtonException => e

      redirect_to room_path, alert: I18n.t(e.key.to_s.underscore, default: I18n.t("bigbluebutton_exception"))

    end

    # Notify users that the room has started.

    # Delay 5 seconds to allow for server start, although the request will retry until it succeeds.

    NotifyUserWaitingJob.set(wait: 5.seconds).perform_later(@room)

  end

  # POST /:room_uid/update_settings

  def update_settings

    begin

      raise "Room name can't be blank" if room_params[:name].empty?

      @room = Room.find_by!(uid: params[:room_uid])

      # Update the rooms settings

      update_room_attributes("settings")

      # Update the rooms name if it has been changed

      update_room_attributes("name") if @room.name != room_params[:name]

      # Update the room's access code if it has changed

      update_room_attributes("access_code") if @room.access_code != room_params[:access_code]

    rescue StandardError

      flash[:alert] = I18n.t("room.update_settings_error")

    else

      flash[:success] = I18n.t("room.update_settings_success")

    end

    redirect_to room_path

  end

  # GET /:room_uid/logout

  def logout

    # Redirect the correct page.

    redirect_to @room

  end

  # POST /:room_uid/login

  def login

    session[:access_code] = room_params[:access_code]

    flash[:alert] = I18n.t("room.access_code_required") if session[:access_code] != @room.access_code

    redirect_to room_path(@room.uid)

  end

  private

  def update_room_attributes(update_type)

    if @room.owned_by?(current_user) && @room != current_user.main_room

      if update_type.eql? "name"

        @room.update_attributes(name: params[:room_name] || room_params[:name])

      elsif update_type.eql? "settings"

        room_settings_string = create_room_settings_string(room_params[:mute_on_join],

          room_params[:require_moderator_approval], room_params[:anyone_can_start], room_params[:all_join_moderator])

        @room.update_attributes(room_settings: room_settings_string)

      elsif update_type.eql? "access_code"

        @room.update_attributes(access_code: room_params[:access_code])

      end

    end

  end

  def create_room_settings_string(mute_res, require_approval_res, start_res, join_mod)

    room_settings = {}

    room_settings["muteOnStart"] = mute_res == "1"

    room_settings["requireModeratorApproval"] = require_approval_res == "1"

    room_settings["anyoneCanStart"] = start_res == "1"

    room_settings["joinModerator"] = join_mod == "1"

    room_settings.to_json

  end

  def room_params

    params.require(:room).permit(:name, :auto_join, :mute_on_join, :access_code,

      :require_moderator_approval, :anyone_can_start, :all_join_moderator)

  end

  # Find the room from the uid.

  def find_room

    @room = Room.find_by!(uid: params[:room_uid])

  end

  # Ensure the user is logged into the room they are accessing.

  def verify_room_ownership

    bring_to_room unless @room.owned_by?(current_user)

  end

  # Redirects a user to their room.

  def bring_to_room

    if current_user

      # Redirect authenticated users to their room.

      redirect_to room_path(current_user.main_room)

    else

      # Redirect unauthenticated users to root.

      redirect_to root_path

    end

  end

  def validate_accepted_terms

    if current_user

      redirect_to terms_path unless current_user.accepted_terms

    end

  end

  def validate_verified_email

    if current_user

      redirect_to account_activation_path(current_user) unless current_user.activated?

    end

  end

  def verify_room_owner_verified

    unless @room.owner.activated?

      flash[:alert] = t("room.unavailable")

      if current_user && [email protected]_by?(current_user)

        redirect_to current_user.main_room

      else

        redirect_to root_path

      end

    end

  end

  def verify_user_not_admin

    redirect_to admins_path if current_user && current_user&.has_role?(:super_admin)

  end

    Setting.find_or_create_by!(provider: user_settings_provider).get_value("Room Authentication") == "true" &&

      current_user.nil?

  end

    limit = Setting.find_or_create_by!(provider: user_settings_provider).get_value("Room Limit").to_i

    # Does not apply to admin

    # 15+ option is used as unlimited

    return false if current_user&.has_role?(:admin) || limit == 15

    current_user.rooms.count >= limit

  end

  def join_room(opts)

    room_settings = JSON.parse(@room[:room_settings])

    if @room.running? || @room.owned_by?(current_user) || room_settings["anyoneCanStart"]

      # Determine if the user needs to join as a moderator.

      opts[:user_is_moderator] = @room.owned_by?(current_user) || room_settings["joinModerator"]

      opts[:require_moderator_approval] = room_settings["requireModeratorApproval"]

      if current_user

        redirect_to @room.join_path(current_user.name, opts, current_user.uid)

      else

        join_name = params[:join_name] || params[@room.invite_path][:join_name]

        redirect_to @room.join_path(join_name, opts)

      end

    else

      search_params = params[@room.invite_path] || params

      @search, @order_column, @order_direction, pub_recs =

        public_recordings(@room.bbb_id, @user_domain, search_params.permit(:search, :column, :direction), true)

      @pagy, @public_recordings = pagy_array(pub_recs)

      # They need to wait until the meeting begins.

      render :wait

    end

  end

end