construct/modules/client/rooms/kick.cc

// Matrix Construct
//
// Copyright (C) Matrix Construct Developers, Authors & Contributors
// Copyright (C) 2016-2018 Jason Volk <jason@zemos.net>
//
// Permission to use, copy, modify, and/or distribute this software for any
// purpose with or without fee is hereby granted, provided that the above
// copyright notice and this permission notice is present in all copies. The
// full license for this software is available in the LICENSE file.

#include "rooms.h"

using namespace ircd;

m::resource::response
post__kick(client &client,
           const m::resource::request &request,
           const m::room::id &room_id)
{
	const m::user::id &user_id
	{
		unquote(request.at("user_id"))
	};

	const string_view &reason
	{
		unquote(request["reason"])
	};

	// Power levels will be checked again at some point during eval, however
	// it's fine to just check first and avoid all of the eval machinery. This
	// data is also cached.
	const m::room room{room_id};
	const m::room::power power{room};
	if(!power(request.user_id, "kick"))
		throw m::ACCESS_DENIED
		{
			"Your power level (%ld) is not high enough for kick (%ld)",
			power.level_user(request.user_id),
			power.level("kick")
		};

	// Check if the target user has any membership state at all. We don't
	// yet care *what* that state is, and whatever that is may also change,
	// but we can filter out clearly mistaken requests and typo'ed inputs.
	if(!room.has("m.room.member", user_id))
		throw m::error
		{
			http::NOT_MODIFIED, "M_TARGET_NOT_IN_ROOM",
			"The user %s has no membership state in %s",
			string_view{user_id},
			string_view{room_id},
		};

	const auto event_id
	{
		send(room, request.user_id, "m.room.member", user_id,
		{
			{ "membership",  "leave"  },
			{ "reason",      reason   },
		})
	};

	return m::resource::response
	{
		client, http::OK, json::members
		{
			{ "event_id", event_id }
		}
	};
}