lemmy/crates/api/src/site/purge/person.rs

use actix_web::web::{Data, Json};
use lemmy_api_common::{
  context::LemmyContext,
  request::delete_image_from_pictrs,
  site::PurgePerson,
  utils::is_admin,
  SuccessResponse,
};
use lemmy_db_schema::{
  source::{
    images::LocalImage,
    moderator::{AdminPurgePerson, AdminPurgePersonForm},
    person::{Person, PersonUpdateForm},
  },
  traits::Crud,
};
use lemmy_db_views::structs::LocalUserView;
use lemmy_utils::error::LemmyError;

#[tracing::instrument(skip(context))]
pub async fn purge_person(
  data: Json<PurgePerson>,
  context: Data<LemmyContext>,
  local_user_view: LocalUserView,
) -> Result<Json<SuccessResponse>, LemmyError> {
  // Only let admin purge an item
  is_admin(&local_user_view)?;

  // Read the person to get their images
  let person_id = data.person_id;

  if let Ok(local_user) = LocalUserView::read_person(&mut context.pool(), person_id).await {
    let pictrs_uploads =
      LocalImage::get_all_by_local_user_id(&mut context.pool(), &local_user.local_user.id).await?;

    for upload in pictrs_uploads {
      delete_image_from_pictrs(&upload.pictrs_alias, &upload.pictrs_delete_token, &context)
        .await
        .ok();
    }
  }

  // Clear profile data.
  Person::delete_account(&mut context.pool(), person_id).await?;
  // Keep person record, but mark as banned to prevent login or refetching from home instance.
  Person::update(
    &mut context.pool(),
    person_id,
    &PersonUpdateForm {
      banned: Some(true),
      ..Default::default()
    },
  )
  .await?;

  // Mod tables
  let form = AdminPurgePersonForm {
    admin_person_id: local_user_view.person.id,
    reason: data.reason.clone(),
  };

  AdminPurgePerson::create(&mut context.pool(), &form).await?;

  Ok(Json(SuccessResponse::default()))
}