Added ability to delete account

This commit is contained in:
laituan245 2015-02-20 06:14:34 +09:00
parent 178082d4e8
commit d325623699
5 changed files with 80 additions and 4 deletions

View file

@ -604,13 +604,17 @@
autosave: "Changes Save Automatically"
me_tab: "Me"
picture_tab: "Picture"
delete_account_tab: "Delete Your Account"
wrong_email: "Wrong Email"
upload_picture: "Upload a picture"
delete_this_account: "Delete this account permanently"
god_mode: "God Mode"
password_tab: "Password"
emails_tab: "Emails"
admin: "Admin"
new_password: "New Password"
new_password_verify: "Verify"
type_in_email: "Type in your email to confirm the deletion"
email_subscriptions: "Email Subscriptions"
email_subscriptions_none: "No Email Subscriptions."
email_announcements: "Announcements"

View file

@ -34,6 +34,9 @@
font-size: 20px
color: #F00
//- Panel specific stuff

View file

@ -48,6 +48,16 @@ else
label.control-label(for="password2", data-i18n="account_settings.new_password_verify") Verify
input#password2.form-control(name="password2", type="password")
label.control-label(for="email1", data-i18n="account_settings.type_in_email") Type in your email to confirm the deletion
input#email1.form-control(name="email1", type="text")

View file

@ -4,6 +4,8 @@ template = require 'templates/account/account-settings-view'
forms = require 'core/forms'
User = require 'models/User'
AuthModal = require 'views/core/AuthModal'
ConfirmModal = require 'views/editor/modal/ConfirmModal'
{logoutUser, me} = require('core/auth')
module.exports = class AccountSettingsView extends CocoView
id: 'account-settings-view'
@ -16,6 +18,7 @@ module.exports = class AccountSettingsView extends CocoView
'click #toggle-all-button': 'toggleEmailSubscriptions'
'click .profile-photo': 'onEditProfilePhoto'
'click #upload-photo-button': 'onEditProfilePhoto'
'click #delete-account-button': 'confirmAccountDeletion'
constructor: (options) ->
super options
@ -35,10 +38,12 @@ module.exports = class AccountSettingsView extends CocoView
#- Form input callbacks
onInputChanged: (e) ->
$( 'changed'
@trigger 'input-changed'
if (JSON.stringify(document.getElementById('email1').className)).indexOf("changed") > -1
$( 'changed'
@trigger 'input-changed'
toggleEmailSubscriptions: =>
subs = @getSubscriptions()
@ -61,7 +66,50 @@ module.exports = class AccountSettingsView extends CocoView
#- Just copied from OptionsView, TODO refactor
confirmAccountDeletion: ->
myEmail = me.get 'email'
email1 = document.getElementById('email1').value
if Boolean(email1) and email1 is myEmail
renderData =
'confirmTitle': 'Are you really sure?'
'confirmBody': 'This will completely delete your account. This action CANNOT be undone. Are you entirely sure?'
'confirmDecline': 'Not really'
'confirmConfirm': 'Definitely'
confirmModal = new ConfirmModal renderData
confirmModal.on 'confirm', @deleteAccount
@openModalView confirmModal
message = $.i18n.t('account_settings.wrong_email', defaultValue: 'Wrong Email.')
err = [message: message, property: 'email1', formatted: true]
forms.applyErrorsToForm(@$el, err)
$('.nano').nanoScroller({scrollTo: @$el.find('.has-error')})
deleteAccount: ->
myID =
type: 'DELETE'
success: ->
timeout: 5000
text: 'Your account is gone.'
type: 'success'
layout: 'topCenter'
_.delay ->
Backbone.Mediator.publish("auth:logging-out", {})
window.tracker?.trackEvent 'Log Out', category:'Homepage', ['Google Analytics'] if @id is 'home-view'
window.location = '../';
, 500
error: (jqXHR, status, error) ->
console.error jqXHR
timeout: 5000
text: "Deleting account failed with error code #{jqXHR.status}"
type: 'error'
layout: 'topCenter'
url: "/db/user/#{myID}"
onEditProfilePhoto: (e) ->
return if window.application.isIPadApp # TODO: have an iPad-native way of uploading a photo, since we don't want to load FilePicker on iPad (memory)
photoContainer = @$el.find('.profile-photo')

View file

@ -28,6 +28,8 @@ candidateProperties = [
UserHandler = class UserHandler extends Handler
modelClass: User
allowedMethods: ['GET', 'POST', 'PUT', 'PATCH', 'DELETE']
getEditableProperties: (req, document) ->
props = super req, document
props.push 'permissions' unless config.isProduction
@ -211,11 +213,20 @@ UserHandler = class UserHandler extends Handler
@put(req, res)
hasAccessToDocument: (req, document) ->
if req.route.method in ['put', 'post', 'patch']
if req.route.method in ['put', 'post', 'patch', 'delete']
return true if req.user?.isAdmin()
return req.user?._id.equals(document._id)
return true
delete: (req, res, userID) ->
@getDocumentForIdOrSlug userID, (err, user) => # Check first
return @sendDatabaseError res, err if err
return @sendNotFoundError res unless user
return @sendForbiddenError res unless @hasAccessToDocument(req, user)
user.remove (err, user) =>
return @sendDatabaseError(res, err) if err
@sendNoContent res
getByRelationship: (req, res, args...) ->
return @agreeToCLA(req, res) if args[1] is 'agreeToCLA'
return @agreeToEmployerAgreement(req, res) if args[1] is 'agreeToEmployerAgreement'