From 0ca317cd0b62dff77bc48969407efc1d19277c14 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jonas=20Sch=C3=A4fer?= <jonas@wielicki.name>
Date: Mon, 22 Mar 2021 21:24:57 +0100
Subject: usermanager: expose set_roles through API

---
 core/usermanager.lua | 18 ++++++++++++++++++
 1 file changed, 18 insertions(+)

diff --git a/core/usermanager.lua b/core/usermanager.lua
index 11707450..b51833cc 100644
--- a/core/usermanager.lua
+++ b/core/usermanager.lua
@@ -158,6 +158,23 @@ local function get_roles(jid, host)
 	return roles;
 end
 
+local function set_roles(jid, host, roles)
+	if host and not hosts[host] then return false; end
+	if type(jid) ~= "string" then return false; end
+
+	jid = jid_bare(jid);
+	host = host or "*";
+
+	local actor_user, actor_host = jid_split(jid);
+
+	local authz_provider = (host ~= "*" and hosts[host].authz) or global_authz_provider;
+	if actor_user and actor_host == host then -- Local user
+		return authz_provider.set_user_roles(actor_user, roles)
+	else -- Remote entity
+		return authz_provider.set_jid_roles(jid, roles)
+	end
+end
+
 local function is_admin(jid, host)
 	local roles = get_roles(jid, host);
 	return roles and roles["prosody:admin"];
@@ -176,5 +193,6 @@ return {
 	get_sasl_handler = get_sasl_handler;
 	get_provider = get_provider;
 	get_roles = get_roles;
+	set_roles = set_roles;
 	is_admin = is_admin;
 };
-- 
cgit v1.2.3