feat: support gdpr export, anonymize and deletion

FriendsOfFlarum · Oct 31, 2023 · 0e18e29 · 0e18e29
1 parent a4ce369
commit 0e18e29
Show file tree

Hide file tree

Showing 4 changed files with 63 additions and 3 deletions.
diff --git a/composer.json b/composer.json
@@ -19,7 +19,7 @@
         }
     ],
     "require": {
-        "flarum/core": "^1.2.0"
+        "flarum/core": "^1.8.3"
     },
     "authors": [
         {
@@ -51,7 +51,8 @@
                 "flarum/suspend",
                 "flarum/flags",
                 "flarum/tags",
-                "flarum/approval"
+                "flarum/approval",
+                "blomstra/gdpr"
             ]
         },
         "flagrow": {
@@ -89,6 +90,7 @@
     },
     "require-dev": {
         "flarum/testing": "^1.0.0",
-        "flarum/phpstan": "*"
+        "flarum/phpstan": "*",
+        "blomstra/gdpr": "@beta"
     }
 }
diff --git a/extend.php b/extend.php
@@ -11,6 +11,7 @@
 
 namespace FoF\BanIPs;
 
+use Blomstra\Gdpr\Extend\UserData;
 use Flarum\Api\Controller;
 use Flarum\Api\Serializer;
 use Flarum\Api\Serializer\AbstractSerializer;
@@ -108,4 +109,10 @@
 
     (new Extend\Filter(Search\BannedIPFilterer::class))
         ->addFilter(Search\NxGambit::class),
+
+    (new Extend\Conditional())
+        ->whenExtensionEnabled('blomstra-gdpr', fn () => [
+            (new UserData())
+                ->addType(Data\BannedIPData::class),
+        ]),
 ];
diff --git a/resources/locale/en.yml b/resources/locale/en.yml
@@ -75,3 +75,9 @@ fof-ban-ips:
     address_label: IP Address
     reason_label: Reason
 
+blomstra-gdpr:
+  lib:
+    data:
+      bannedipdata:
+        export_description: "If an IP ban record is associated with a user (i.e. the user was banned by IP), the user's IP address will be included in the export, along with the reason for the ban and the creation date."
+        anonymize_description: "Any IP addresses linked to the user are decoupled, but the IP itself will remain banned, along with the reason. Ensure no PII data is stored in the 'reason' field."
diff --git a/src/Data/BannedIPData.php b/src/Data/BannedIPData.php
@@ -0,0 +1,45 @@
+<?php
+
+namespace FoF\BanIPs\Data;
+
+use Blomstra\Gdpr\Data\Type;
+use FoF\BanIPs\BannedIP;
+use Illuminate\Support\Arr;
+
+class BannedIPData extends Type
+{
+    public function export(): ?array
+    {
+        $exportData = [];
+
+        BannedIP::query()
+            ->where('user_id', $this->user->id)
+            ->each(function (BannedIP $bannedIp) use (&$exportData) {
+                $exportData[] = ["bannedIP/{$bannedIp->id}.json" => $this->sanitize($bannedIp)];
+            });
+
+        return $exportData;
+    }
+
+    public function sanitize(BannedIP $bannedIP): array
+    {
+        return Arr::except($bannedIP, ['id', 'creator_id', 'user_id']);
+    }
+
+    public function anonymize(): void
+    {
+        BannedIP::query()
+            ->where('user_id', $this->user->id)
+            ->update(['user_id' => null]);
+    }
+
+    public static function deleteDescription(): string
+    {
+        return self::anonymizeDescription();
+    }
+
+    public function delete(): void
+    {
+        $this->anonymize();
+    }
+}