upd: handle failed id verifications

2024-09-14 00:04:59 +02:00 · 2024-09-14 00:04:59 +02:00 · 737b919c33
commit 737b919c33
parent 63368deab9
6 changed files with 65 additions and 3 deletions
--- a/packages/backend/src/core/GlobalEventService.ts
+++ b/packages/backend/src/core/GlobalEventService.ts
@ -166,6 +166,10 @@ export interface AdminEventTypes {
 		reporterId: MiUser['id'],
 		comment: string;
 	};
+	failedIdCheck: {
+		userId: MiUser['id'],
+		comment: string;
+	};
 }

 export interface ReversiEventTypes {
--- a/packages/backend/src/server/StripeHookServerService.ts
+++ b/packages/backend/src/server/StripeHookServerService.ts
@ -7,6 +7,7 @@ import { Inject, Injectable } from '@nestjs/common';
 import { IsNull } from 'typeorm';
 import { DI } from '@/di-symbols.js';
 import type {
+	UserProfilesRepository,
 	UsersRepository,
 } from '@/models/_.js';
 import type { Config } from '@/config.js';
@ -18,6 +19,8 @@ import type { FastifyInstance, FastifyRequest, FastifyReply, FastifyPluginOption
 import Stripe from 'stripe';
 import type Logger from '@/logger.js';
 import { LoggerService } from '@/core/LoggerService.js';
+import { RoleService } from '@/core/RoleService.js';
+import { GlobalEventService } from '@/core/GlobalEventService.js';

@Injectable()
 export class StripeHookServerService {
@ -30,7 +33,12 @@ export class StripeHookServerService {
 		@Inject(DI.usersRepository)
 		private usersRepository: UsersRepository,

+		@Inject(DI.userProfilesRepository)
+		private userProfilesRepository: UserProfilesRepository,
+
 		private loggerService: LoggerService,
+		private globalEventService: GlobalEventService,
+		private roleService: RoleService,
 	) {
 		this.logger = this.loggerService.getLogger('stripe', 'gray');
 	}
@ -98,6 +106,48 @@ export class StripeHookServerService {

 				await this.usersRepository.update(user.id, { idCheckRequired: false, idVerified: true });

+				break;
+			}
+			case 'identity.verification_session.requires_input': {
+				// Verification failed for some reason
+				const verificationSession = event.data.object;
+
+				const user = await this.usersRepository.findOneBy({
+					id: verificationSession.metadata.user_id,
+					host: IsNull(),
+				}) as MiLocalUser;
+		
+				if (user == null) {
+					return error(404, {
+						id: '6cc579cc-885d-43d8-95c2-b8c7fc963280',
+					});
+				}
+		
+				if (user.isSuspended) {
+					return error(403, {
+						id: 'e03a5f46-d309-4865-9b69-56282d94e1eb',
+					});
+				}
+
+				this.logger.succ(`${user.username} has failed ID Verification via Session ${verificationSession.id}`);
+
+				await this.usersRepository.update(user.id, { idCheckRequired: false });
+
+				await this.userProfilesRepository.update(user.id, { moderationNote: 'ADM/IDFAIL: Possibly underage' });
+
+				const moderatorIds = await this.roleService.getModeratorIds(true, true);
+
+				for (const moderatorId of moderatorIds) {
+					this.globalEventService.publishAdminStream(
+						moderatorId,
+						'failedIdCheck',
+						{
+							userId: user.id,
+							comment: 'ID Check Failed',
+						},
+					);
+				}
+
 				break;
 			}
 		}