7610-after-ray.patch on Ticket #7610 – Attachment – BuddyPress Trac

src/bp-groups/actions/join.php

diff --git a/src/bp-groups/actions/join.php b/src/bp-groups/actions/join.php
index 31b35b34f..4e19c3fb9 100644

  function groups_action_join_group() {
         // Skip if banned or already a member.
         if ( !groups_is_user_member( bp_loggedin_user_id(), $bp->groups->current_group->id ) && !groups_is_user_banned( bp_loggedin_user_id(), $bp->groups->current_group->id ) ) {
                 // User wants to join a group that is not public.
                 if ( bp_current_user_can( 'groups_join_group', array( 'group_id' => $bp->groups->current_group->id ) ) ) {
+                // User wants to join a group that requires an invitation to join.
+                if ( ! bp_current_user_can( 'groups_join_group', array( 'group_id' => $bp->groups->current_group->id ) ) ) {
                         if ( !groups_check_user_has_invite( bp_loggedin_user_id(), $bp->groups->current_group->id ) ) {
                                 bp_core_add_message( __( 'There was an error joining the group.', 'buddypress' ), 'error' );
                                 bp_core_redirect( bp_get_group_permalink( $bp->groups->current_group ) );
-…
+ function groups_action_join_group() {
          */
         bp_core_load_template( apply_filters( 'groups_template_group_home', 'groups/single/home' ) );
+}
+add_action( 'bp_actions', 'groups_action_join_group' );
+ No newline at end of file
+add_action( 'bp_actions', 'groups_action_join_group' );

src/bp-groups/bp-groups-filters.php

diff --git a/src/bp-groups/bp-groups-filters.php b/src/bp-groups/bp-groups-filters.php
index f7920a352..d0a42a003 100644

  function bp_groups_user_can_filter( $retval, $user_id, $capability, $site_id, $a
                                 break;
+                        }
+                        // Set to false to begin with.
+                        $retval = false;
                         // The group must allow joining, and the user should not currently be a member.
                         $group = groups_get_group( $group_id );
                         if ( 'public' === bp_get_group_status( $group )
+                        if ( ( 'public' === bp_get_group_status( $group )
                                 && ! groups_is_user_member( $user_id, $group->id )
+                                && ! groups_is_user_banned( $user_id, $group->id )
+                                && ! groups_is_user_banned( $user_id, $group->id ) )
+                                // Site admins can join any group they are not a member of.
+                                || ( bp_user_can( $user_id, 'bp_moderate' )
+                                && ! groups_is_user_member( $user_id, $group->id ) )
                         ) {
                                 $retval = true;
+                        }
-…
+ function bp_groups_user_can_filter( $retval, $user_id, $capability, $site_id, $a
                                 break;
+                        }
+                        // Set to false to begin with.
+                        $retval = false;
                         /*
                         * The group must accept membership requests, and the user should not
                         * currently be a member, have an active request, or be banned.
-…
+ function bp_groups_user_can_filter( $retval, $user_id, $capability, $site_id, $a
                         * The group must allow invitations, and the user should not
                         * currently be a member or be banned from the group.
                         */
-                        $group = groups_get_group( $group_id );
                         // Users with the 'bp_moderate' cap can always send invitations.
                         if ( bp_user_can( $user_id, 'bp_moderate' ) ) {
                                 $retval = true;
-…
+ function bp_groups_user_can_filter( $retval, $user_id, $capability, $site_id, $a
                                 break;
+                        }
+                        // Set to false to begin with.
+                        $retval = false;
                         /*
                         * The group must allow invitations, and the user should not
                         * currently be a member or be banned from the group.

tests/phpunit/testcases/groups/user_can.php

diff --git a/tests/phpunit/testcases/groups/user_can.php b/tests/phpunit/testcases/groups/user_can.php
index 19df3a0d9..8a7a1d5e1 100644

  class BP_Tests_Groups_User_Can_Filter extends BP_UnitTestCase {
                 $this->assertFalse( bp_user_can( $u1, 'groups_join_group', array( 'group_id' => $g1 ) ) );
+        }
+        /**
+         * @ticket BP7610
+         */
+        public function test_user_cannot_join_public_group_if_already_member_even_superadmin() {
+                $g1 = $this->factory->group->create( array(
+                        'status'      => 'public'
+                ) );
+                $u1 = $this->factory->user->create();
+                $this->add_user_to_group( $u1, $g1 );
+                // Grant super admin status.
+                grant_super_admin( $u1 );
+                $this->assertFalse( bp_user_can( $u1, 'groups_join_group', array( 'group_id' => $g1 ) ) );
+        }
         public function test_user_cannot_join_private_group() {
                 $g1 = $this->factory->group->create( array(
                         'status'      => 'private'
-…
+ class BP_Tests_Groups_User_Can_Filter extends BP_UnitTestCase {
                 $this->assertFalse( bp_user_can( $u1, 'groups_receive_invitation', array( 'group_id' => $g1 ) ) );
+        }
+        /**
+         * @ticket BP7610
+         */
+        public function test_user_cannot_receive_invitation_to_private_group_if_already_member_even_superadmin() {
+                $g1 = $this->factory->group->create( array(
+                        'status'      => 'private'
+                ) );
+                $u1 = $this->factory->user->create();
+                $this->add_user_to_group( $u1, $g1 );
+                // Grant super admin status.
+                grant_super_admin( $u1 );
+                $this->assertFalse( bp_user_can( $u1, 'groups_receive_invitation', array( 'group_id' => $g1 ) ) );
+        }
         public function test_user_cannot_receive_invitation_to_private_group_if_banned() {
                 $g1 = $this->factory->group->create( array(
-…
+ class BP_Tests_Groups_User_Can_Filter extends BP_UnitTestCase {
                 $this->assertTrue( bp_user_can( $u1, 'groups_see_group', array( 'group_id' => $g1 ) ) );
+        }
+        /**
+         * @ticket BP7610
+         */
+        public function test_user_can_groups_request_membership_for_super_admin() {
+                if ( ! is_multisite() ) {
+                        return;
+                }
+                $g1 = $this->factory->group->create( array(
+                        'status' => 'public'
+                ) );
+                $u1 = $this->factory->user->create();
+                $this->add_user_to_group( $u1, $g1 );
+                // Grant super admin status.
+                grant_super_admin( $u1 );
+                // Assert false since public groups shouldn't be able to request membership.
+                $this->assertFalse( bp_user_can( $u1, 'groups_request_membership', array( 'group_id' => $g1 ) ) );
+        }
+}

BuddyPress.org

Context Navigation

Ticket #7610: 7610-after-ray.patch

src/bp-groups/actions/join.php

src/bp-groups/bp-groups-filters.php

tests/phpunit/testcases/groups/user_can.php

Download in other formats: