gochan/pkg/gcsql/bans.go

package gcsql

import (
	"database/sql"
	"errors"
	"regexp"
	"strconv"
)

const (
	ipBanQueryBase = `SELECT
	id, staff_id, board_id, banned_for_post_id, copy_post_text, is_thread_ban,
	is_active, ip, issued_at, appeal_at, expires_at, permanent, staff_note,
	message, can_appeal
	FROM DBPREFIXip_ban`
)

var (
	ErrBanAlreadyInserted = errors.New("ban already submitted")
)

type Ban interface {
	IsGlobalBan() bool
	Deactivate(int) error
}

func NewIPBan(ban *IPBan) error {
	const query = `INSERT INTO DBPREFIXip_ban
	(staff_id, board_id, banned_for_post_id, copy_post_text, is_thread_ban, is_active, ip,
		appeal_at, expires_at, permanent, staff_note, message, can_appeal)
	VALUES(?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)`
	if ban.ID > 0 {
		return ErrBanAlreadyInserted
	}
	var err error
	ban.ID, err = getNextFreeID("DBPREFIXip_ban")
	if err != nil {
		return err
	}
	_, err = ExecSQL(query,
		ban.StaffID, ban.BoardID, ban.BannedForPostID, ban.CopyPostText, ban.IsThreadBan, ban.IsActive, ban.IP,
		ban.AppealAt, ban.ExpiresAt, ban.Permanent, ban.StaffNote, ban.Message, ban.CanAppeal)
	return err
}

// CheckIPBan returns the latest active IP ban for the given IP, as well as any errors. If the
// IPBan pointer is nil, the IP has no active bans
func CheckIPBan(ip string, boardID int) (*IPBan, error) {
	const query = ipBanQueryBase + ` WHERE ip = ? AND (board_id IS NULL OR board_id = ?) AND
		is_active AND (expires_at > CURRENT_TIMESTAMP OR permanent)
	ORDER BY id DESC LIMIT 1`
	var ban IPBan
	err := QueryRowSQL(query, interfaceSlice(ip, boardID), interfaceSlice(
		&ban.ID, &ban.StaffID, &ban.BoardID, &ban.BannedForPostID, &ban.CopyPostText, &ban.IsThreadBan,
		&ban.IsActive, &ban.IP, &ban.IssuedAt, &ban.AppealAt, &ban.ExpiresAt, &ban.Permanent, &ban.StaffNote,
		&ban.Message, &ban.CanAppeal))
	if err == sql.ErrNoRows {
		return nil, nil
	}
	return &ban, nil
}

func GetIPBanByID(id int) (*IPBan, error) {
	const query = ipBanQueryBase + " WHERE id = ?"
	var ban IPBan
	err := QueryRowSQL(query, interfaceSlice(id), interfaceSlice(
		&ban.ID, &ban.StaffID, &ban.BoardID, &ban.BannedForPostID, &ban.CopyPostText, &ban.IsThreadBan,
		&ban.IsActive, &ban.IP, &ban.IssuedAt, &ban.AppealAt, &ban.ExpiresAt, &ban.Permanent, &ban.StaffNote,
		&ban.Message, &ban.CanAppeal))
	if err != nil {
		return nil, err
	}
	return &ban, err
}

func GetIPBans(boardID int, limit int, onlyActive bool) ([]IPBan, error) {
	query := ipBanQueryBase
	if boardID > 0 {
		query += " WHERE board_id = ?"
	}
	query += " LIMIT " + strconv.Itoa(limit)
	var rows *sql.Rows
	var err error
	if boardID > 0 {
		rows, err = QuerySQL(query, boardID)
	} else {
		rows, err = QuerySQL(query)
	}
	if err != nil {
		return nil, err
	}
	defer rows.Close()
	var bans []IPBan
	for rows.Next() {
		var ban IPBan
		if err = rows.Scan(
			&ban.ID, &ban.StaffID, &ban.BoardID, &ban.BannedForPostID, &ban.CopyPostText, &ban.IsThreadBan,
			&ban.IsActive, &ban.IP, &ban.IssuedAt, &ban.AppealAt, &ban.ExpiresAt, &ban.Permanent, &ban.StaffNote,
			&ban.Message, &ban.CanAppeal,
		); err != nil {
			return nil, err
		}
		if onlyActive && !ban.IsActive {
			continue
		}
		bans = append(bans, ban)
	}
	return bans, nil
}

// IsGlobalBan returns true if BoardID is a nil int, meaning they are banned on all boards, as opposed to a specific one
func (ipb IPBan) IsGlobalBan() bool {
	return ipb.BoardID == nil
}

func (ipb *IPBan) Deactivate(staffID int) error {
	const deactivateQuery = `UPDATE DBPREFIXip_ban SET is_active = FALSE WHERE id = ?`
	const auditInsertQuery = `INSERT INTO DBPREFIXip_ban_audit
		(ip_ban_id, staff_id, is_active, is_thread_ban, expires_at, appeal_at, permanent, staff_note, message, can_appeal)
		SELECT
		id, staff_id, is_active, is_thread_ban, expires_at, appeal_at, permanent, staff_note, message, can_appeal
		FROM DBPREFIXip_ban WHERE id = ?`
	tx, err := BeginTx()
	if err != nil {
		return err
	}
	defer tx.Rollback()
	stmt1, err := PrepareSQL(deactivateQuery, tx)
	if err != nil {
		return err
	}
	defer stmt1.Close()

	if _, err = stmt1.Exec(ipb.ID); err != nil {
		return err
	}

	stmt2, err := PrepareSQL(auditInsertQuery, tx)
	if err != nil {
		return err
	}
	defer stmt2.Close()
	if _, err = stmt2.Exec(ipb.ID); err != nil {
		return err
	}
	return tx.Commit()
}

func checkUsernameOrFilename(usernameFilename string, check string, boardID int) (*filenameOrUsernameBanBase, error) {
	query := `SELECT
	id, board_id, staff_id, staff_note, issued_at, ` + usernameFilename + `, is_regex
	FROM DBPREFIX` + usernameFilename + `_ban WHERE (` + usernameFilename + ` = ? OR is_regex) AND (board_id IS NULL OR board_id = ?)`
	rows, err := QuerySQL(query, check, boardID)
	if err != nil {
		return nil, err
	}
	defer rows.Close()
	for rows.Next() {
		var ban filenameOrUsernameBanBase
		err = rows.Scan(&ban.ID, &ban.BoardID, &ban.StaffID, &ban.StaffNote, &ban.IssuedAt, &ban.check, &ban.IsRegex)
		if err == sql.ErrNoRows {
			return nil, nil
		} else if err != nil {
			return nil, err
		}
		if ban.IsRegex {
			match, err := regexp.MatchString(ban.check, check)
			if err != nil {
				return nil, err
			}
			if match {
				return &ban, nil
			}
		} else if ban.check == check {
			return &ban, nil
		}
	}
	return nil, nil
}

func CheckNameBan(name string, boardID int) (*UsernameBan, error) {
	banBase, err := checkUsernameOrFilename("username", name, boardID)
	if err != nil {
		return nil, err
	}
	if banBase == nil {
		return nil, nil
	}
	return &UsernameBan{
		Username:                  banBase.check,
		filenameOrUsernameBanBase: *banBase,
	}, nil
}

func GetFileBans(boardID int, limit int) ([]FileBan, error) {
	query := `SELECT id, board_id, staff_id, staff_note, issued_at, checksum FROM DBPREFIXfile_ban`
	limitStr := ""
	if limit > 0 {
		limitStr = " LIMIT " + strconv.Itoa(limit)
	}
	var rows *sql.Rows
	var err error
	if boardID > 0 {
		query += " WHERE board_id = ?"
		rows, err = QuerySQL(query+limitStr, boardID)
	} else {
		rows, err = QuerySQL(query + limitStr)
	}
	if err != nil {
		return nil, err
	}
	defer rows.Close()
	var bans []FileBan
	for rows.Next() {
		var ban FileBan
		if err = rows.Scan(&ban.ID, &ban.BoardID, &ban.StaffID, &ban.StaffNote, &ban.IssuedAt, &ban.Checksum); err != nil {
			return nil, err
		}
		bans = append(bans, ban)
	}
	return bans, nil
}

func GetFilenameBans(boardID int, limit int) ([]FilenameBan, error) {
	query := `SELECT id, board_id, staff_id, staff_note, issued_at, filename FROM DBPREFIXfilename_ban`
	limitStr := ""
	if limit > 0 {
		limitStr = " LIMIT " + strconv.Itoa(limit)
	}
	var rows *sql.Rows
	var err error
	if boardID > 0 {
		query += " WHERE board_id = ?"
		rows, err = QuerySQL(query+limitStr, boardID)
	} else {
		rows, err = QuerySQL(query + limitStr)
	}
	if err != nil {
		return nil, err
	}
	defer rows.Close()
	var bans []FilenameBan
	for rows.Next() {
		var ban FilenameBan
		if err = rows.Scan(&ban.ID, &ban.BoardID, &ban.StaffID, &ban.StaffNote, &ban.IssuedAt, &ban.Filename); err != nil {
			return nil, err
		}
		bans = append(bans, ban)
	}
	return bans, nil
}

func (ub filenameOrUsernameBanBase) IsGlobalBan() bool {
	return ub.BoardID == nil
}

func (fnb *FilenameBan) Deactivate(staffID int) error {
	const deleteQuery = `DELETE FROM DBPREFIXfilename_ban WHERE id = ?`
	_, err := ExecSQL(deleteQuery, fnb.ID)
	return err
}

func (fnb *UsernameBan) Deactivate(staffID int) error {
	const deleteQuery = `DELETE FROM DBPREFIXusername_ban WHERE id = ?`
	_, err := ExecSQL(deleteQuery, fnb.ID)
	return err
}

func CheckFilenameBan(filename string, boardID int) (*FilenameBan, error) {
	banBase, err := checkUsernameOrFilename("filename", filename, boardID)
	if err != nil {
		return nil, err
	}
	if banBase == nil {
		return nil, nil
	}
	return &FilenameBan{
		Filename:                  banBase.check,
		filenameOrUsernameBanBase: *banBase,
	}, nil
}

// CheckFileChecksumBan checks to see if the given checksum is banned on the given boardID, or on all boards.
// It returns the ban info (or nil if it is not banned) and any errors
func CheckFileChecksumBan(checksum string, boardID int) (*FileBan, error) {
	const query = `SELECT
	id, board_id, staff_id, staff_note, issued_at, checksum
	FROM DBPREFIXfile_ban
	WHERE checksum = ? AND (board_id IS NULL OR board_id = ?) ORDER BY id DESC LIMIT 1`
	var ban FileBan
	err := QueryRowSQL(query, interfaceSlice(checksum, boardID), interfaceSlice(
		&ban.ID, &ban.BoardID, &ban.StaffID, &ban.StaffNote, &ban.IssuedAt, &ban.Checksum,
	))
	if err == sql.ErrNoRows {
		return nil, nil
	}
	if err != nil {
		return nil, err
	}
	return &ban, err
}

func GetChecksumBans(boardID int, limit int) ([]FileBan, error) {
	query := `SELECT
	id, board_id, staff_id, staff_note, issued_at, checksum
	FROM DBPREFIXfile_ban`
	if boardID > 0 {
		query += " WHERE board_id = ?"
	}
	query += " LIMIT " + strconv.Itoa(limit)
	var rows *sql.Rows
	var err error
	if boardID > 0 {
		rows, err = QuerySQL(query, boardID)
	} else {
		rows, err = QuerySQL(query)
	}
	if err != nil {
		return nil, err
	}
	defer rows.Close()
	var bans []FileBan
	for rows.Next() {
		var ban FileBan
		if err = rows.Scan(
			&ban.ID, &ban.BoardID, &ban.StaffID, &ban.StaffNote, &ban.IssuedAt, &ban.Checksum,
		); err != nil {
			return nil, err
		}
		bans = append(bans, ban)
	}
	return bans, nil
}

func (fb *FileBan) IsGlobalBan() bool {
	return fb.BoardID == nil
}

func (fb *FileBan) Deactivate(staffID int) error {
	const deleteQuery = `DELETE FROM DBPREFIXfile_ban WHERE id = ?`
	_, err := ExecSQL(deleteQuery, fb.ID)
	return err
}

// DeleteFileBanByID deletes the ban, given the id column value
func DeleteFileBanByID(id int) error {
	_, err := ExecSQL("DELETE FROM DBPREFIXfile_ban WHERE id = ?", id)
	return err
}
Add IP ban checking function 2022-11-02 16:26:15 -07:00			`package gcsql`

Add filename and username banning, add more de-deprecation stuff to posting/post.go 2022-11-07 12:56:51 -08:00			`import (`
			`"database/sql"`
Make ban adding (sorta) work again 2022-11-17 16:32:28 -08:00			`"errors"`
Add filename and username banning, add more de-deprecation stuff to posting/post.go 2022-11-07 12:56:51 -08:00			`"regexp"`
Update IP ban interface for new gcsql API 2022-11-16 15:11:55 -08:00			`"strconv"`
Add filename and username banning, add more de-deprecation stuff to posting/post.go 2022-11-07 12:56:51 -08:00			`)`

Make ban adding (sorta) work again 2022-11-17 16:32:28 -08:00			`const (`
			ipBanQueryBase = `SELECT
			`id, staff_id, board_id, banned_for_post_id, copy_post_text, is_thread_ban,`
			`is_active, ip, issued_at, appeal_at, expires_at, permanent, staff_note,`
			`message, can_appeal`
			FROM DBPREFIXip_ban`
			`)`

			`var (`
			`ErrBanAlreadyInserted = errors.New("ban already submitted")`
			`)`

Add filename and username banning, add more de-deprecation stuff to posting/post.go 2022-11-07 12:56:51 -08:00			`type Ban interface {`
			`IsGlobalBan() bool`
Add ban deactivateion, with auditing, related to issue #28 and issue #31 2022-11-18 15:42:58 -08:00			`Deactivate(int) error`
Add filename and username banning, add more de-deprecation stuff to posting/post.go 2022-11-07 12:56:51 -08:00			`}`
Add IP ban checking function 2022-11-02 16:26:15 -07:00
Make ban adding (sorta) work again 2022-11-17 16:32:28 -08:00			`func NewIPBan(ban *IPBan) error {`
			const query = `INSERT INTO DBPREFIXip_ban
			`(staff_id, board_id, banned_for_post_id, copy_post_text, is_thread_ban, is_active, ip,`
			`appeal_at, expires_at, permanent, staff_note, message, can_appeal)`
			VALUES(?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)`
			`if ban.ID > 0 {`
			`return ErrBanAlreadyInserted`
			`}`
			`var err error`
			`ban.ID, err = getNextFreeID("DBPREFIXip_ban")`
			`if err != nil {`
			`return err`
			`}`
			`_, err = ExecSQL(query,`
			`ban.StaffID, ban.BoardID, ban.BannedForPostID, ban.CopyPostText, ban.IsThreadBan, ban.IsActive, ban.IP,`
			`ban.AppealAt, ban.ExpiresAt, ban.Permanent, ban.StaffNote, ban.Message, ban.CanAppeal)`
			`return err`
			`}`

Add IP ban checking function 2022-11-02 16:26:15 -07:00			`// CheckIPBan returns the latest active IP ban for the given IP, as well as any errors. If the`
			`// IPBan pointer is nil, the IP has no active bans`
Add filename and username banning, add more de-deprecation stuff to posting/post.go 2022-11-07 12:56:51 -08:00			`func CheckIPBan(ip string, boardID int) (*IPBan, error) {`
Make ban adding (sorta) work again 2022-11-17 16:32:28 -08:00			const query = ipBanQueryBase + ` WHERE ip = ? AND (board_id IS NULL OR board_id = ?) AND
Add filename and username banning, add more de-deprecation stuff to posting/post.go 2022-11-07 12:56:51 -08:00			`is_active AND (expires_at > CURRENT_TIMESTAMP OR permanent)`
Add IP ban checking function 2022-11-02 16:26:15 -07:00			ORDER BY id DESC LIMIT 1`
			`var ban IPBan`
Add filename and username banning, add more de-deprecation stuff to posting/post.go 2022-11-07 12:56:51 -08:00			`err := QueryRowSQL(query, interfaceSlice(ip, boardID), interfaceSlice(`
Add IP ban checking function 2022-11-02 16:26:15 -07:00			`&ban.ID, &ban.StaffID, &ban.BoardID, &ban.BannedForPostID, &ban.CopyPostText, &ban.IsThreadBan,`
			`&ban.IsActive, &ban.IP, &ban.IssuedAt, &ban.AppealAt, &ban.ExpiresAt, &ban.Permanent, &ban.StaffNote,`
			`&ban.Message, &ban.CanAppeal))`
			`if err == sql.ErrNoRows {`
			`return nil, nil`
			`}`
			`return &ban, nil`
			`}`

Make ban adding (sorta) work again 2022-11-17 16:32:28 -08:00			`func GetIPBanByID(id int) (*IPBan, error) {`
			`const query = ipBanQueryBase + " WHERE id = ?"`
			`var ban IPBan`
			`err := QueryRowSQL(query, interfaceSlice(id), interfaceSlice(`
			`&ban.ID, &ban.StaffID, &ban.BoardID, &ban.BannedForPostID, &ban.CopyPostText, &ban.IsThreadBan,`
			`&ban.IsActive, &ban.IP, &ban.IssuedAt, &ban.AppealAt, &ban.ExpiresAt, &ban.Permanent, &ban.StaffNote,`
			`&ban.Message, &ban.CanAppeal))`
			`if err != nil {`
			`return nil, err`
			`}`
			`return &ban, err`
			`}`

Update IP ban interface for new gcsql API 2022-11-16 15:11:55 -08:00			`func GetIPBans(boardID int, limit int, onlyActive bool) ([]IPBan, error) {`
Make ban adding (sorta) work again 2022-11-17 16:32:28 -08:00			`query := ipBanQueryBase`
Update IP ban interface for new gcsql API 2022-11-16 15:11:55 -08:00			`if boardID > 0 {`
			`query += " WHERE board_id = ?"`
			`}`
			`query += " LIMIT " + strconv.Itoa(limit)`
			`var rows *sql.Rows`
			`var err error`
			`if boardID > 0 {`
			`rows, err = QuerySQL(query, boardID)`
			`} else {`
			`rows, err = QuerySQL(query)`
			`}`
			`if err != nil {`
			`return nil, err`
			`}`
			`defer rows.Close()`
			`var bans []IPBan`
			`for rows.Next() {`
			`var ban IPBan`
			`if err = rows.Scan(`
			`&ban.ID, &ban.StaffID, &ban.BoardID, &ban.BannedForPostID, &ban.CopyPostText, &ban.IsThreadBan,`
			`&ban.IsActive, &ban.IP, &ban.IssuedAt, &ban.AppealAt, &ban.ExpiresAt, &ban.Permanent, &ban.StaffNote,`
			`&ban.Message, &ban.CanAppeal,`
			`); err != nil {`
			`return nil, err`
			`}`
			`if onlyActive && !ban.IsActive {`
			`continue`
			`}`
			`bans = append(bans, ban)`
			`}`
			`return bans, nil`
			`}`

Add IP ban checking function 2022-11-02 16:26:15 -07:00			`// IsGlobalBan returns true if BoardID is a nil int, meaning they are banned on all boards, as opposed to a specific one`
Add filename and username banning, add more de-deprecation stuff to posting/post.go 2022-11-07 12:56:51 -08:00			`func (ipb IPBan) IsGlobalBan() bool {`
Add IP ban checking function 2022-11-02 16:26:15 -07:00			`return ipb.BoardID == nil`
			`}`
Add filename and username banning, add more de-deprecation stuff to posting/post.go 2022-11-07 12:56:51 -08:00
Add ban deactivateion, with auditing, related to issue #28 and issue #31 2022-11-18 15:42:58 -08:00			`func (ipb *IPBan) Deactivate(staffID int) error {`
			const deactivateQuery = `UPDATE DBPREFIXip_ban SET is_active = FALSE WHERE id = ?`
			const auditInsertQuery = `INSERT INTO DBPREFIXip_ban_audit
			`(ip_ban_id, staff_id, is_active, is_thread_ban, expires_at, appeal_at, permanent, staff_note, message, can_appeal)`
			`SELECT`
			`id, staff_id, is_active, is_thread_ban, expires_at, appeal_at, permanent, staff_note, message, can_appeal`
			FROM DBPREFIXip_ban WHERE id = ?`
			`tx, err := BeginTx()`
			`if err != nil {`
			`return err`
			`}`
			`defer tx.Rollback()`
			`stmt1, err := PrepareSQL(deactivateQuery, tx)`
			`if err != nil {`
			`return err`
			`}`
			`defer stmt1.Close()`

			`if _, err = stmt1.Exec(ipb.ID); err != nil {`
			`return err`
			`}`

			`stmt2, err := PrepareSQL(auditInsertQuery, tx)`
			`if err != nil {`
			`return err`
			`}`
			`defer stmt2.Close()`
			`if _, err = stmt2.Exec(ipb.ID); err != nil {`
			`return err`
			`}`
			`return tx.Commit()`
			`}`

Add filename and username banning, add more de-deprecation stuff to posting/post.go 2022-11-07 12:56:51 -08:00			`func checkUsernameOrFilename(usernameFilename string, check string, boardID int) (*filenameOrUsernameBanBase, error) {`
			query := `SELECT
			id, board_id, staff_id, staff_note, issued_at, ` + usernameFilename + `, is_regex
			FROM DBPREFIX` + usernameFilename + `_ban WHERE (` + usernameFilename + ` = ? OR is_regex) AND (board_id IS NULL OR board_id = ?)`
			`rows, err := QuerySQL(query, check, boardID)`
			`if err != nil {`
			`return nil, err`
			`}`
			`defer rows.Close()`
			`for rows.Next() {`
			`var ban filenameOrUsernameBanBase`
			`err = rows.Scan(&ban.ID, &ban.BoardID, &ban.StaffID, &ban.StaffNote, &ban.IssuedAt, &ban.check, &ban.IsRegex)`
			`if err == sql.ErrNoRows {`
			`return nil, nil`
			`} else if err != nil {`
			`return nil, err`
			`}`
			`if ban.IsRegex {`
			`match, err := regexp.MatchString(ban.check, check)`
			`if err != nil {`
			`return nil, err`
			`}`
			`if match {`
			`return &ban, nil`
			`}`
			`} else if ban.check == check {`
			`return &ban, nil`
			`}`
			`}`
			`return nil, nil`
			`}`

			`func CheckNameBan(name string, boardID int) (*UsernameBan, error) {`
			`banBase, err := checkUsernameOrFilename("username", name, boardID)`
			`if err != nil {`
			`return nil, err`
			`}`
			`if banBase == nil {`
			`return nil, nil`
			`}`
			`return &UsernameBan{`
			`Username: banBase.check,`
			`filenameOrUsernameBanBase: *banBase,`
			`}, nil`
			`}`

readd filename banning page Related to issue #28 2022-11-18 16:47:25 -08:00			`func GetFileBans(boardID int, limit int) ([]FileBan, error) {`
			query := `SELECT id, board_id, staff_id, staff_note, issued_at, checksum FROM DBPREFIXfile_ban`
			`limitStr := ""`
			`if limit > 0 {`
			`limitStr = " LIMIT " + strconv.Itoa(limit)`
			`}`
			`var rows *sql.Rows`
			`var err error`
			`if boardID > 0 {`
			`query += " WHERE board_id = ?"`
			`rows, err = QuerySQL(query+limitStr, boardID)`
			`} else {`
			`rows, err = QuerySQL(query + limitStr)`
			`}`
			`if err != nil {`
			`return nil, err`
			`}`
			`defer rows.Close()`
			`var bans []FileBan`
			`for rows.Next() {`
			`var ban FileBan`
			`if err = rows.Scan(&ban.ID, &ban.BoardID, &ban.StaffID, &ban.StaffNote, &ban.IssuedAt, &ban.Checksum); err != nil {`
			`return nil, err`
			`}`
			`bans = append(bans, ban)`
			`}`
			`return bans, nil`
			`}`

			`func GetFilenameBans(boardID int, limit int) ([]FilenameBan, error) {`
			query := `SELECT id, board_id, staff_id, staff_note, issued_at, filename FROM DBPREFIXfilename_ban`
			`limitStr := ""`
			`if limit > 0 {`
			`limitStr = " LIMIT " + strconv.Itoa(limit)`
			`}`
			`var rows *sql.Rows`
			`var err error`
			`if boardID > 0 {`
			`query += " WHERE board_id = ?"`
			`rows, err = QuerySQL(query+limitStr, boardID)`
			`} else {`
			`rows, err = QuerySQL(query + limitStr)`
			`}`
			`if err != nil {`
			`return nil, err`
			`}`
			`defer rows.Close()`
			`var bans []FilenameBan`
			`for rows.Next() {`
			`var ban FilenameBan`
			`if err = rows.Scan(&ban.ID, &ban.BoardID, &ban.StaffID, &ban.StaffNote, &ban.IssuedAt, &ban.Filename); err != nil {`
			`return nil, err`
			`}`
			`bans = append(bans, ban)`
			`}`
			`return bans, nil`
			`}`

Add filename and username banning, add more de-deprecation stuff to posting/post.go 2022-11-07 12:56:51 -08:00			`func (ub filenameOrUsernameBanBase) IsGlobalBan() bool {`
			`return ub.BoardID == nil`
			`}`

Add ban deactivateion, with auditing, related to issue #28 and issue #31 2022-11-18 15:42:58 -08:00			`func (fnb *FilenameBan) Deactivate(staffID int) error {`
			const deleteQuery = `DELETE FROM DBPREFIXfilename_ban WHERE id = ?`
			`_, err := ExecSQL(deleteQuery, fnb.ID)`
			`return err`
			`}`

			`func (fnb *UsernameBan) Deactivate(staffID int) error {`
			const deleteQuery = `DELETE FROM DBPREFIXusername_ban WHERE id = ?`
			`_, err := ExecSQL(deleteQuery, fnb.ID)`
			`return err`
			`}`

Add filename and username banning, add more de-deprecation stuff to posting/post.go 2022-11-07 12:56:51 -08:00			`func CheckFilenameBan(filename string, boardID int) (*FilenameBan, error) {`
			`banBase, err := checkUsernameOrFilename("filename", filename, boardID)`
			`if err != nil {`
			`return nil, err`
			`}`
			`if banBase == nil {`
			`return nil, nil`
			`}`
			`return &FilenameBan{`
			`Filename: banBase.check,`
			`filenameOrUsernameBanBase: *banBase,`
			`}, nil`
			`}`
Add file checksum verification/ban 2022-11-07 16:37:53 -08:00
Update IP ban interface for new gcsql API 2022-11-16 15:11:55 -08:00			`// CheckFileChecksumBan checks to see if the given checksum is banned on the given boardID, or on all boards.`
			`// It returns the ban info (or nil if it is not banned) and any errors`
			`func CheckFileChecksumBan(checksum string, boardID int) (*FileBan, error) {`
Add file checksum verification/ban 2022-11-07 16:37:53 -08:00			const query = `SELECT
			`id, board_id, staff_id, staff_note, issued_at, checksum`
			`FROM DBPREFIXfile_ban`
			WHERE checksum = ? AND (board_id IS NULL OR board_id = ?) ORDER BY id DESC LIMIT 1`
			`var ban FileBan`
			`err := QueryRowSQL(query, interfaceSlice(checksum, boardID), interfaceSlice(`
			`&ban.ID, &ban.BoardID, &ban.StaffID, &ban.StaffNote, &ban.IssuedAt, &ban.Checksum,`
			`))`
			`if err == sql.ErrNoRows {`
			`return nil, nil`
			`}`
			`if err != nil {`
			`return nil, err`
			`}`
			`return &ban, err`
			`}`

Update IP ban interface for new gcsql API 2022-11-16 15:11:55 -08:00			`func GetChecksumBans(boardID int, limit int) ([]FileBan, error) {`
			query := `SELECT
			`id, board_id, staff_id, staff_note, issued_at, checksum`
			FROM DBPREFIXfile_ban`
			`if boardID > 0 {`
			`query += " WHERE board_id = ?"`
			`}`
			`query += " LIMIT " + strconv.Itoa(limit)`
			`var rows *sql.Rows`
			`var err error`
			`if boardID > 0 {`
			`rows, err = QuerySQL(query, boardID)`
			`} else {`
			`rows, err = QuerySQL(query)`
			`}`
			`if err != nil {`
			`return nil, err`
			`}`
			`defer rows.Close()`
			`var bans []FileBan`
			`for rows.Next() {`
			`var ban FileBan`
			`if err = rows.Scan(`
			`&ban.ID, &ban.BoardID, &ban.StaffID, &ban.StaffNote, &ban.IssuedAt, &ban.Checksum,`
			`); err != nil {`
			`return nil, err`
			`}`
			`bans = append(bans, ban)`
			`}`
			`return bans, nil`
			`}`

Add file checksum verification/ban 2022-11-07 16:37:53 -08:00			`func (fb *FileBan) IsGlobalBan() bool {`
			`return fb.BoardID == nil`
			`}`
Update IP ban interface for new gcsql API 2022-11-16 15:11:55 -08:00
Add ban deactivateion, with auditing, related to issue #28 and issue #31 2022-11-18 15:42:58 -08:00			`func (fb *FileBan) Deactivate(staffID int) error {`
			const deleteQuery = `DELETE FROM DBPREFIXfile_ban WHERE id = ?`
			`_, err := ExecSQL(deleteQuery, fb.ID)`
			`return err`
			`}`

Update IP ban interface for new gcsql API 2022-11-16 15:11:55 -08:00			`// DeleteFileBanByID deletes the ban, given the id column value`
			`func DeleteFileBanByID(id int) error {`
			`_, err := ExecSQL("DELETE FROM DBPREFIXfile_ban WHERE id = ?", id)`
			`return err`
			`}`