i2_bot/lib/chatter/restricters.go

// i2_bot – Instinct PokememBro Bot
// Copyright (c) 2017-2018 Vladimir "fat0troll" Hodakov

package chatter

import (
	"strconv"
	"strings"

	"github.com/go-telegram-bot-api/telegram-bot-api"
	"github.com/fat0troll/i2_bot/lib/dbmapping"
)

func (ct *Chatter) userPrivilegesCheck(update *tgbotapi.Update, user *tgbotapi.User) bool {
	// There are two special chats, pointed by config, where any member of league may be
	defaultChatID, _ := strconv.ParseInt(c.Cfg.SpecialChats.DefaultID, 10, 64)
	bastionChatID, _ := strconv.ParseInt(c.Cfg.SpecialChats.BastionID, 10, 64)
	academyChatID, _ := strconv.ParseInt(c.Cfg.SpecialChats.AcademyID, 10, 64)
	hqChatID, _ := strconv.ParseInt(c.Cfg.SpecialChats.HeadquartersID, 10, 64)
	gamesChatID, _ := strconv.ParseInt(c.Cfg.SpecialChats.GamesID, 10, 64)

	if update.Message.Chat.ID == defaultChatID || update.Message.Chat.ID == hqChatID {
		return true
	}

	// There are special users, which will bypass these checks
	specialUsers := []string{"gantz_yaka", "agentpb", "pbhelp", "i2_bot", "i2_dev_bot", "grstatsbot"}

	for j := range specialUsers {
		if strings.Contains(strings.ToLower(user.UserName), specialUsers[j]) {
			// This is for PokememBro admins, they can join any chat at any time
			return true
		}
	}

	switch update.Message.Chat.ID {
	case academyChatID:
		c.Log.Debug("Checking user rights in academy chat...")
	case bastionChatID:
		c.Log.Debug("Checking user rights in bastion chat...")
	case gamesChatID:
		c.Log.Debug("Checking user rights in games chat...")
	case hqChatID:
		c.Log.Debug("Checking user rights in headquarters chat...")
	}

	if update.Message.Chat.ID == gamesChatID && user.IsBot {
		c.Log.Debug("Game bot with username @" + user.UserName + " passed filtration")
		return true
	}

	playerRaw, err := c.DataCache.GetPlayerByTelegramID(user.ID)
	if err != nil {
		c.Log.Error(err.Error())
		return false
	}

	if c.Users.PlayerBetterThan(playerRaw, "admin") {
		return true
	}

	// So, user is not a PokememBro admin. For Bastion and Academy she needs to be league player
	switch update.Message.Chat.ID {
	case academyChatID, bastionChatID, gamesChatID:
		if playerRaw.LeagueID == 1 && playerRaw.Status != "spy" && playerRaw.Status != "league_changed" && playerRaw.Status != "banned" {
			return true
		}
	default:
		availableChatsForUser := c.DataCache.GetAvailableSquadsChatsForUser(playerRaw.ID)
		for i := range availableChatsForUser {
			if update.Message.Chat.ID == availableChatsForUser[i].TelegramID {
				return true
			}
		}
	}

	c.Log.Debug("User failed to prove identity. Ban sequence arrived.")

	return false
}

// BanUserFromChat removes user from chat
func (ct *Chatter) BanUserFromChat(user *tgbotapi.User, chatRaw *dbmapping.Chat) {
	chatUserConfig := tgbotapi.ChatMemberConfig{
		ChatID: chatRaw.TelegramID,
		UserID: user.ID,
	}

	kickConfig := tgbotapi.KickChatMemberConfig{
		ChatMemberConfig: chatUserConfig,
		UntilDate:        1893456000,
	}

	c.Log.Info("Trying to ban user...")

	_, err := c.Bot.KickChatMember(kickConfig)
	if err != nil {
		c.Log.Error(err.Error())
	}

	bastionChatID, _ := strconv.ParseInt(c.Cfg.SpecialChats.BastionID, 10, 64)
	academyChatID, _ := strconv.ParseInt(c.Cfg.SpecialChats.AcademyID, 10, 64)
	hqChatID, _ := strconv.ParseInt(c.Cfg.SpecialChats.HeadquartersID, 10, 64)
	if (chatRaw.TelegramID != bastionChatID) || (chatRaw.TelegramID != academyChatID) {
		squad, err := c.DataCache.GetSquadByChatID(chatRaw.ID)
		if err != nil {
			c.Log.Error(err.Error())
		} else {
			// In Bastion notifications are public in default chat
			commanders := c.DataCache.GetCommandersForSquad(squad.ID)
			for i := range commanders {
				message := "Некто " + c.Users.GetPrettyName(user) + " попытался зайти в чат _" + chatRaw.Name + "_ и был изгнан ботом, так как не имеет права посещать этот чат."

				msg := tgbotapi.NewMessage(int64(commanders[i].TelegramID), message)
				msg.ParseMode = "Markdown"
				c.Bot.Send(msg)
			}
		}
	} else {
		message := "Некто " + c.Users.GetPrettyName(user) + " попытался зайти в один из общих чатов лиги и был изгнан ботом, так как не имеет права посещать этот чат."

		msg := tgbotapi.NewMessage(hqChatID, message)
		msg.ParseMode = "Markdown"
		c.Bot.Send(msg)
	}
}

// ProtectChat protects chats from unauthorized access
// Returns "protection_passed" if all protection checks passed
func (ct *Chatter) ProtectChat(update *tgbotapi.Update, playerRaw *dbmapping.Player, chatRaw *dbmapping.Chat) string {
	// Check on new user addition
	if update.Message.NewChatMembers != nil {
		newUsers := *update.Message.NewChatMembers
		if len(newUsers) > 0 {
			c.Log.Debug("New users joined/added to chat. Checking rights for them.")
			for i := range newUsers {
				newUserPassed := ct.userPrivilegesCheck(update, &newUsers[i])
				if !newUserPassed {
					c.Log.Debug("This user can't be here: removing from chat...")
					ct.BanUserFromChat(&newUsers[i], chatRaw)
				}
			}
		}
	}

	existingUserPassed := ct.userPrivilegesCheck(update, update.Message.From)
	if !existingUserPassed {
		c.Log.Debug("Existing chat user can't be here. Vanishing...")
		ct.BanUserFromChat(update.Message.From, chatRaw)
		return "fail"
	}

	return "ok"
}
-												New restrictions logic for all chats. Fixed filter for /send_league

											
										
										
											2017-12-23 17:03:26 +04:00
+								// i2_bot – Instinct PokememBro Bot
-												Add games chat

Games chat used to divide talks in Bastion from @gamee games and so on.

											
										
										
											2018-04-04 21:33:30 +04:00
+								// Copyright (c) 2017-2018 Vladimir "fat0troll" Hodakov
-												New restrictions logic for all chats. Fixed filter for /send_league

											
										
										
											2017-12-23 17:03:26 +04:00
 								package chatter
 								import (
 									"strconv"
 									"strings"
-												Add debug to restrictions workflow

											
										
										
											2018-03-31 17:44:12 +04:00
 									"github.com/go-telegram-bot-api/telegram-bot-api"
-												Move import path to Github

											
										
										
											2018-05-19 12:14:25 +04:00
+									"github.com/fat0troll/i2_bot/lib/dbmapping"
-												New restrictions logic for all chats. Fixed filter for /send_league

											
										
										
											2017-12-23 17:03:26 +04:00
+								)
 								func (ct *Chatter) userPrivilegesCheck(update *tgbotapi.Update, user *tgbotapi.User) bool {
 									// There are two special chats, pointed by config, where any member of league may be
-												PokememBroInstinkt chat bans fix

											
										
										
											2017-12-23 21:08:57 +04:00
+									defaultChatID, _ := strconv.ParseInt(c.Cfg.SpecialChats.DefaultID, 10, 64)
-												New restrictions logic for all chats. Fixed filter for /send_league

											
										
										
											2017-12-23 17:03:26 +04:00
+									bastionChatID, _ := strconv.ParseInt(c.Cfg.SpecialChats.BastionID, 10, 64)
 									academyChatID, _ := strconv.ParseInt(c.Cfg.SpecialChats.AcademyID, 10, 64)
-												Less restrictive policies for admins

											
										
										
											2017-12-24 04:36:23 +04:00
+									hqChatID, _ := strconv.ParseInt(c.Cfg.SpecialChats.HeadquartersID, 10, 64)
-												Add games chat

Games chat used to divide talks in Bastion from @gamee games and so on.

											
										
										
											2018-04-04 21:33:30 +04:00
+									gamesChatID, _ := strconv.ParseInt(c.Cfg.SpecialChats.GamesID, 10, 64)
-												PokememBroInstinkt chat bans fix

											
										
										
											2017-12-23 21:08:57 +04:00
-												Less restrictive policies for admins

											
										
										
											2017-12-24 04:36:23 +04:00
+									if update.Message.Chat.ID == defaultChatID || update.Message.Chat.ID == hqChatID {
-												PokememBroInstinkt chat bans fix

											
										
										
											2017-12-23 21:08:57 +04:00
+										return true
 									}
-												New restrictions logic for all chats. Fixed filter for /send_league

											
										
										
											2017-12-23 17:03:26 +04:00
+									// There are special users, which will bypass these checks
-												Add GrStatsBot to permitted users, add Numb13 to donaters

											
										
										
											2018-04-08 22:32:51 +04:00
+									specialUsers := []string{"gantz_yaka", "agentpb", "pbhelp", "i2_bot", "i2_dev_bot", "grstatsbot"}
-												New restrictions logic for all chats. Fixed filter for /send_league

											
										
										
											2017-12-23 17:03:26 +04:00
 									for j := range specialUsers {
-												Add GrStatsBot to permitted users, add Numb13 to donaters

											
										
										
											2018-04-08 22:32:51 +04:00
+										if strings.Contains(strings.ToLower(user.UserName), specialUsers[j]) {
-												New restrictions logic for all chats. Fixed filter for /send_league

											
										
										
											2017-12-23 17:03:26 +04:00
+											// This is for PokememBro admins, they can join any chat at any time
 											return true
 										}
 									}
-												Add debug on ProtectChat sequence

											
										
										
											2018-04-07 17:22:00 +04:00
+									switch update.Message.Chat.ID {
 									case academyChatID:
 										c.Log.Debug("Checking user rights in academy chat...")
 									case bastionChatID:
 										c.Log.Debug("Checking user rights in bastion chat...")
 									case gamesChatID:
 										c.Log.Debug("Checking user rights in games chat...")
 									case hqChatID:
 										c.Log.Debug("Checking user rights in headquarters chat...")
 									}
-												Add GrStatsBot to permitted users, add Numb13 to donaters

											
										
										
											2018-04-08 22:32:51 +04:00
+									if update.Message.Chat.ID == gamesChatID && user.IsBot {
-												Fix debug message

											
										
										
											2018-04-07 17:26:18 +04:00
+										c.Log.Debug("Game bot with username @" + user.UserName + " passed filtration")
-												Add games chat

Games chat used to divide talks in Bastion from @gamee games and so on.

											
										
										
											2018-04-04 21:33:30 +04:00
+										return true
 									}
-												DataCache and changes for game update

Recent game update changed pokememes view in pokedeks, so we need to
reflect it by updating parser.

Introducing DataCache - a silver bullet for eliminating lags linked to
database queries. Less queries, more in RAM, faster work. Needs testing
in production environment.

											
										
										
											2018-01-29 23:50:25 +04:00
+									playerRaw, err := c.DataCache.GetPlayerByTelegramID(user.ID)
 									if err != nil {
 										c.Log.Error(err.Error())
-												New restrictions logic for all chats. Fixed filter for /send_league

											
										
										
											2017-12-23 17:03:26 +04:00
+										return false
 									}
-												DataCache and changes for game update

Recent game update changed pokememes view in pokedeks, so we need to
reflect it by updating parser.

Introducing DataCache - a silver bullet for eliminating lags linked to
database queries. Less queries, more in RAM, faster work. Needs testing
in production environment.

											
										
										
											2018-01-29 23:50:25 +04:00
+									if c.Users.PlayerBetterThan(playerRaw, "admin") {
-												Less restrictive policies for admins

											
										
										
											2017-12-24 04:36:23 +04:00
+										return true
 									}
-												New restrictions logic for all chats. Fixed filter for /send_league

											
										
										
											2017-12-23 17:03:26 +04:00
+									// So, user is not a PokememBro admin. For Bastion and Academy she needs to be league player
 									switch update.Message.Chat.ID {
-												Add games chat

Games chat used to divide talks in Bastion from @gamee games and so on.

											
										
										
											2018-04-04 21:33:30 +04:00
+									case academyChatID, bastionChatID, gamesChatID:
-												Squads and chats in DataCache, squads rework

Work in progress, bugs may vary

											
										
										
											2018-02-17 07:03:58 +04:00
+										if playerRaw.LeagueID == 1 && playerRaw.Status != "spy" && playerRaw.Status != "league_changed" && playerRaw.Status != "banned" {
-												New restrictions logic for all chats. Fixed filter for /send_league

											
										
										
											2017-12-23 17:03:26 +04:00
+											return true
 										}
 									default:
-												Squads and chats in DataCache, squads rework

Work in progress, bugs may vary

											
										
										
											2018-02-17 07:03:58 +04:00
+										availableChatsForUser := c.DataCache.GetAvailableSquadsChatsForUser(playerRaw.ID)
-												New restrictions logic for all chats. Fixed filter for /send_league

											
										
										
											2017-12-23 17:03:26 +04:00
+										for i := range availableChatsForUser {
 											if update.Message.Chat.ID == availableChatsForUser[i].TelegramID {
 												return true
 											}
 										}
 									}
-												Add debug on ProtectChat sequence

											
										
										
											2018-04-07 17:22:00 +04:00
+									c.Log.Debug("User failed to prove identity. Ban sequence arrived.")
-												New restrictions logic for all chats. Fixed filter for /send_league

											
										
										
											2017-12-23 17:03:26 +04:00
+									return false
 								}
 								// BanUserFromChat removes user from chat
 								func (ct *Chatter) BanUserFromChat(user *tgbotapi.User, chatRaw *dbmapping.Chat) {
 									chatUserConfig := tgbotapi.ChatMemberConfig{
 										ChatID: chatRaw.TelegramID,
 										UserID: user.ID,
 									}
 									kickConfig := tgbotapi.KickChatMemberConfig{
 										ChatMemberConfig: chatUserConfig,
 										UntilDate:        1893456000,
 									}
 									c.Log.Info("Trying to ban user...")
 									_, err := c.Bot.KickChatMember(kickConfig)
 									if err != nil {
 										c.Log.Error(err.Error())
 									}
 									bastionChatID, _ := strconv.ParseInt(c.Cfg.SpecialChats.BastionID, 10, 64)
 									academyChatID, _ := strconv.ParseInt(c.Cfg.SpecialChats.AcademyID, 10, 64)
 									hqChatID, _ := strconv.ParseInt(c.Cfg.SpecialChats.HeadquartersID, 10, 64)
 									if (chatRaw.TelegramID != bastionChatID) || (chatRaw.TelegramID != academyChatID) {
-												Squads and chats in DataCache, squads rework

Work in progress, bugs may vary

											
										
										
											2018-02-17 07:03:58 +04:00
+										squad, err := c.DataCache.GetSquadByChatID(chatRaw.ID)
 										if err != nil {
 											c.Log.Error(err.Error())
 										} else {
 											// In Bastion notifications are public in default chat
 											commanders := c.DataCache.GetCommandersForSquad(squad.ID)
-												New restrictions logic for all chats. Fixed filter for /send_league

											
										
										
											2017-12-23 17:03:26 +04:00
+											for i := range commanders {
 												message := "Некто " + c.Users.GetPrettyName(user) + " попытался зайти в чат _" + chatRaw.Name + "_ и был изгнан ботом, так как не имеет права посещать этот чат."
 												msg := tgbotapi.NewMessage(int64(commanders[i].TelegramID), message)
 												msg.ParseMode = "Markdown"
 												c.Bot.Send(msg)
 											}
 										}
 									} else {
 										message := "Некто " + c.Users.GetPrettyName(user) + " попытался зайти в один из общих чатов лиги и был изгнан ботом, так как не имеет права посещать этот чат."
 										msg := tgbotapi.NewMessage(hqChatID, message)
 										msg.ParseMode = "Markdown"
 										c.Bot.Send(msg)
 									}
 								}
 								// ProtectChat protects chats from unauthorized access
 								// Returns "protection_passed" if all protection checks passed
 								func (ct *Chatter) ProtectChat(update *tgbotapi.Update, playerRaw *dbmapping.Player, chatRaw *dbmapping.Chat) string {
 									// Check on new user addition
 									if update.Message.NewChatMembers != nil {
 										newUsers := *update.Message.NewChatMembers
 										if len(newUsers) > 0 {
-												Add debug to restrictions workflow

											
										
										
											2018-03-31 17:44:12 +04:00
+											c.Log.Debug("New users joined/added to chat. Checking rights for them.")
-												New restrictions logic for all chats. Fixed filter for /send_league

											
										
										
											2017-12-23 17:03:26 +04:00
+											for i := range newUsers {
 												newUserPassed := ct.userPrivilegesCheck(update, &newUsers[i])
 												if !newUserPassed {
-												Add debug to restrictions workflow

											
										
										
											2018-03-31 17:44:12 +04:00
+													c.Log.Debug("This user can't be here: removing from chat...")
-												New restrictions logic for all chats. Fixed filter for /send_league

											
										
										
											2017-12-23 17:03:26 +04:00
+													ct.BanUserFromChat(&newUsers[i], chatRaw)
 												}
 											}
 										}
 									}
 									existingUserPassed := ct.userPrivilegesCheck(update, update.Message.From)
 									if !existingUserPassed {
-												Add debug to restrictions workflow

											
										
										
											2018-03-31 17:44:12 +04:00
+										c.Log.Debug("Existing chat user can't be here. Vanishing...")
-												New restrictions logic for all chats. Fixed filter for /send_league

											
										
										
											2017-12-23 17:03:26 +04:00
+										ct.BanUserFromChat(update.Message.From, chatRaw)
 										return "fail"
 									}
-												Squads and chats in DataCache, squads rework

Work in progress, bugs may vary

											
										
										
											2018-02-17 07:03:58 +04:00
+									return "ok"
-												New restrictions logic for all chats. Fixed filter for /send_league

											
										
										
											2017-12-23 17:03:26 +04:00
+								}