# █ █ ▀ █▄▀ ▄▀█ █▀█ ▀ ▄▀█ ▀█▀ ▄▀█ █▀▄▀█ ▄▀█
# █▀█ █ █ █ █▀█ █▀▄ █ ▄ █▀█ █ █▀█ █ ▀ █ █▀█
#
# © Copyright 2022
#
# https://t.me/hikariatama
#
# 🔒 Licensed under the GNU GPLv3
# 🌐 https://www.gnu.org/licenses/agpl-3.0.html
# scope: inline
from types import FunctionType
from typing import List, Union
from telethon.tl.types import Message, User, PeerUser
from .. import loader, utils, main, security
from telethon.utils import get_display_name
import logging
import aiogram
from ..security import (
SUDO,
SUPPORT,
GROUP_OWNER,
GROUP_ADMIN_ADD_ADMINS,
GROUP_ADMIN_CHANGE_INFO,
GROUP_ADMIN_BAN_USERS,
GROUP_ADMIN_DELETE_MESSAGES,
GROUP_ADMIN_PIN_MESSAGES,
GROUP_ADMIN_INVITE_USERS,
GROUP_ADMIN,
GROUP_MEMBER,
PM,
DEFAULT_PERMISSIONS,
EVERYONE,
)
logger = logging.getLogger(__name__)
@loader.tds
class HikkaSecurityMod(loader.Module):
"""Control security settings"""
strings = {
"name": "HikkaSecurity",
"no_command": "🚫 Command {} not found!",
"permissions": "🔐 Here you can configure permissions for {}{}",
"close_menu": "🙈 Close this menu",
"global": "🔐 Here you can configure global bounding mask. If the permission is excluded here, it is excluded everywhere!",
"owner": "🤴 Owner",
"sudo": "🤵 Sudo",
"support": "💁♂️ Support",
"group_owner": "🧛♂️ Group owner",
"group_admin_add_admins": "👨💻 Admin (add members)",
"group_admin_change_info": "👨💻 Admin (change info)",
"group_admin_ban_users": "👨💻 Admin (ban)",
"group_admin_delete_messages": "👨💻 Admin (delete msgs)",
"group_admin_pin_messages": "👨💻 Admin (pin)",
"group_admin_invite_users": "👨💻 Admin (invite)",
"group_admin": "👨💻 Admin (any)",
"group_member": "👥 In group",
"pm": "🤙 In PM",
"everyone": "🌍 Everyone",
"owner_list": "🤴 Users in group owner:\n\n{}",
"sudo_list": "🤵♀️ Users in group sudo:\n\n{}",
"support_list": "🙋♂️ Users in group support:\n\n{}",
"no_owner": "🤴 There is no users in group owner",
"no_sudo": "🤵♀️ There is no users in group sudo",
"no_support": "🙋♂️ There is no users in group support",
"owner_added": '🤴 {} added to group owner',
"sudo_added": '🤵♀️ {} added to group sudo',
"support_added": '🙋♂️ {} added to group support',
"owner_removed": '🤴 {} removed from group owner',
"sudo_removed": '🤵♀️ {} removed from group sudo',
"support_removed": '🙋♂️ {} removed from group support',
"no_user": "🚫 Specify user to permit",
"not_a_user": "🚫 Specified entity is not a user",
"li": '⦿ {}',
"warning": (
'⚠️ Please, confirm, that you want to add {} '
"to group {}!\nThis action may reveal personal info and grant "
"full or partial access to userbot to this user"
),
"cancel": "🚫 Cancel",
"confirm": "👑 Confirm",
"self": "🚫 You can't promote/demote yourself!",
"restart": "🔄 Restart may be required to commit changes",
}
async def client_ready(self, client, db) -> None:
self._db = db
self._client = client
self.prefix = utils.escape_html(
(self._db.get(main.__name__, "command_prefix", False) or ".")
)
self._me = (await client.get_me()).id
self._is_hikka = hasattr(self, "inline")
async def inline__switch_perm(
self,
call: aiogram.types.CallbackQuery,
command: str,
group: str,
level: bool,
is_inline: bool,
) -> None:
cmd = (
self.allmodules.commands[command]
if not is_inline
else self.allmodules.inline_handlers[command]
)
mask = self._db.get(security.__name__, "masks", {}).get(
f"{cmd.__module__}.{cmd.__name__}",
getattr(cmd, "security", security.DEFAULT_PERMISSIONS),
)
bit = security.BITMAP[group.upper()]
if level:
mask |= bit
else:
mask &= ~bit
masks = self._db.get(security.__name__, "masks", {})
masks[f"{cmd.__module__}.{cmd.__name__}"] = mask
self._db.set(security.__name__, "masks", masks)
await call.answer("Security value set!")
await call.edit(
self.strings("permissions").format(
self.prefix if not is_inline else f"@{self.inline.bot_username} ",
command,
),
reply_markup=self._build_markup(cmd, is_inline),
)
async def inline__switch_perm_bm(
self,
call: aiogram.types.CallbackQuery,
group: str,
level: bool,
) -> None:
mask = self._db.get(security.__name__, "bounding_mask", DEFAULT_PERMISSIONS)
bit = security.BITMAP[group.upper()]
if level:
mask |= bit
else:
mask &= ~bit
self._db.set(security.__name__, "bounding_mask", mask)
await call.answer("Bounding mask value set!")
await call.edit(
self.strings("global"), reply_markup=self._build_markup_global()
)
@staticmethod
async def inline_close(call: aiogram.types.CallbackQuery) -> None:
await call.delete()
def _build_markup(
self,
command: FunctionType,
is_inline: bool = False,
) -> List[List[dict]]:
perms = self._get_current_perms(command, is_inline)
if not is_inline:
return utils.chunks(
[
{
"text": f"{('🚫' if not level else '✅')} {self.strings[group]}",
"callback": self.inline__switch_perm,
"args": (
command.__name__[:-3],
group,
not level,
is_inline,
),
}
for group, level in perms.items()
],
2,
) + [[{"text": self.strings("close_menu"), "callback": self.inline_close}]]
return utils.chunks(
[
{
"text": f"{('🚫' if not level else '✅')} {self.strings[group]}",
"callback": self.inline__switch_perm,
"args": (
command.__name__[:-15],
group,
not level,
is_inline,
),
}
for group, level in perms.items()
],
2,
) + [[{"text": self.strings("close_menu"), "callback": self.inline_close}]]
def _build_markup_global(self) -> List[List[dict]]:
perms = self._get_current_bm()
return utils.chunks(
[
{
"text": f"{('🚫' if not level else '✅')} {self.strings[group]}",
"callback": self.inline__switch_perm_bm,
"args": (group, not level),
}
for group, level in perms.items()
],
2,
) + [[{"text": self.strings("close_menu"), "callback": self.inline_close}]]
def _get_current_bm(self) -> dict:
return self._perms_map(
self._db.get(security.__name__, "bounding_mask", DEFAULT_PERMISSIONS), False
)
@staticmethod
def _perms_map(perms: int, is_inline: bool) -> dict:
return (
{
"sudo": bool(perms & SUDO),
"support": bool(perms & SUPPORT),
"group_owner": bool(perms & GROUP_OWNER),
"group_admin_add_admins": bool(perms & GROUP_ADMIN_ADD_ADMINS),
"group_admin_change_info": bool(perms & GROUP_ADMIN_CHANGE_INFO),
"group_admin_ban_users": bool(perms & GROUP_ADMIN_BAN_USERS),
"group_admin_delete_messages": bool(
perms & GROUP_ADMIN_DELETE_MESSAGES
),
"group_admin_pin_messages": bool(perms & GROUP_ADMIN_PIN_MESSAGES),
"group_admin_invite_users": bool(perms & GROUP_ADMIN_INVITE_USERS),
"group_admin": bool(perms & GROUP_ADMIN),
"group_member": bool(perms & GROUP_MEMBER),
"pm": bool(perms & PM),
}
if not is_inline
else {
"sudo": bool(perms & SUDO),
"support": bool(perms & SUPPORT),
"everyone": bool(perms & EVERYONE),
}
)
def _get_current_perms(
self, command: FunctionType, is_inline: bool = False
) -> dict:
config = self._db.get(security.__name__, "masks", {}).get(
f"{command.__module__}.{command.__name__}",
getattr(command, "security", self._client.dispatcher.security._default),
)
return self._perms_map(config, is_inline)
async def securitycmd(self, message: Message) -> None:
"""[command] - Configure command's security settings"""
args = utils.get_args_raw(message).lower().strip()
if args and args not in self.allmodules.commands:
await utils.answer(message, self.strings("no_command").format(args))
return
if not args:
await self.inline.form(
self.strings("global"),
reply_markup=self._build_markup_global(),
message=message,
ttl=5 * 60,
)
return
cmd = self.allmodules.commands[args]
await self.inline.form(
self.strings("permissions").format(self.prefix, args),
reply_markup=self._build_markup(cmd),
message=message,
ttl=5 * 60,
)
async def inlineseccmd(self, message: Message) -> None:
"""[command] - Configure inline command's security settings"""
args = utils.get_args_raw(message).lower().strip()
if args not in self.allmodules.inline_handlers:
await utils.answer(message, self.strings("no_command").format(args))
return
i_handler = self.allmodules.inline_handlers[args]
await self.inline.form(
self.strings("permissions").format(f"@{self.inline.bot_username} ", args),
reply_markup=self._build_markup(i_handler, True),
message=message,
ttl=5 * 60,
)
async def _resolve_user(self, message: Message) -> None:
reply = await message.get_reply_message()
args = utils.get_args_raw(message)
if not args and not reply:
await utils.answer(message, self.strings("no_user"))
return
user = None
if args:
try:
if str(args).isdigit():
args = int(args)
user = await self._client.get_entity(args)
except Exception:
pass
if user is None:
user = await self._client.get_entity(reply.sender_id)
if not isinstance(user, (User, PeerUser)):
await utils.answer(message, self.strings("not_a_user"))
return
if user.id == self._me:
await utils.answer(message, self.strings("self"))
return
return user
async def _add_to_group(
self,
message: Union[Message, "aigoram.types.CallbackQuery"], # noqa: F821
group: str,
confirmed: bool = False,
user: int = None,
) -> None:
if user is None:
user = await self._resolve_user(message)
if not user:
return
if isinstance(user, int):
user = await self._client.get_entity(user)
if self._is_hikka and not confirmed:
await self.inline.form(
self.strings("warning").format(
user.id, utils.escape_html(get_display_name(user)), group
),
message=message,
ttl=10 * 60,
reply_markup=[
[
{
"text": self.strings("cancel"),
"callback": self.inline_close,
},
{
"text": self.strings("confirm"),
"callback": self._add_to_group,
"args": (group, True, user.id),
},
]
],
)
return
self._db.set(
security.__name__,
group,
list(set(self._db.get(security.__name__, group, []) + [user.id])),
)
m = self.strings(f"{group}_added").format(
user.id,
utils.escape_html(get_display_name(user)),
)
if not self._is_hikka:
m += f"\n\n{self.strings('restart')}"
if isinstance(message, Message):
await utils.answer(
message,
m,
)
else:
await message.edit(m)
async def _remove_from_group(self, message: Message, group: str) -> None:
user = await self._resolve_user(message)
if not user:
return
self._db.set(
security.__name__,
group,
list(set(self._db.get(security.__name__, group, [])) - set([user.id])),
)
m = self.strings(f"{group}_removed").format(
user.id,
utils.escape_html(get_display_name(user)),
)
if not self._is_hikka:
m += f"\n\n{self.strings('restart')}"
await utils.answer(message, m)
async def _list_group(self, message: Message, group: str) -> None:
_resolved_users = []
for user in self._db.get(security.__name__, group, []) + (
[self._me] if group == "owner" else []
):
try:
_resolved_users += [await self._client.get_entity(user)]
except Exception:
pass
if _resolved_users:
await utils.answer(
message,
self.strings(f"{group}_list").format(
"\n".join(
[
self.strings("li").format(
i.id, utils.escape_html(get_display_name(i))
)
for i in _resolved_users
]
)
),
)
else:
await utils.answer(message, self.strings(f"no_{group}"))
async def sudoaddcmd(self, message: Message) -> None:
""" - Add user to `sudo`"""
await self._add_to_group(message, "sudo")
async def owneraddcmd(self, message: Message) -> None:
""" - Add user to `owner`"""
await self._add_to_group(message, "owner")
async def supportaddcmd(self, message: Message) -> None:
""" - Add user to `support`"""
await self._add_to_group(message, "support")
async def sudormcmd(self, message: Message) -> None:
""" - Remove user from `sudo`"""
await self._remove_from_group(message, "sudo")
async def ownerrmcmd(self, message: Message) -> None:
""" - Remove user from `owner`"""
await self._remove_from_group(message, "owner")
async def supportrmcmd(self, message: Message) -> None:
""" - Remove user from `support`"""
await self._remove_from_group(message, "support")
async def sudolistcmd(self, message: Message) -> None:
"""List users in `sudo`"""
await self._list_group(message, "sudo")
async def ownerlistcmd(self, message: Message) -> None:
"""List users in `owner`"""
await self._list_group(message, "owner")
async def supportlistcmd(self, message: Message) -> None:
"""List users in `support`"""
await self._list_group(message, "support")