Make it impossible to add roles with evaluated permissions to self service (because people are stupid enough to do so apparently)

2017-10-19 23:55:09 +02:00 · 2017-10-19 23:55:09 +02:00 · 73f29a5cf1
commit 73f29a5cf1
parent 75c699e25b
1 changed files with 14 additions and 0 deletions
--- a/Geekbot.net/Commands/Role.cs
+++ b/Geekbot.net/Commands/Role.cs
@ -93,6 +93,20 @@ namespace Geekbot.net.Commands
        {
            try
            {
+                if (role.IsManaged)
+                {
+                    await ReplyAsync("You can't add a role that is managed by discord");
+                    return;
+                }
+                if (role.Permissions.ManageRoles
+                    || role.Permissions.Administrator
+                    || role.Permissions.ManageGuild
+                    || role.Permissions.BanMembers
+                    || role.Permissions.KickMembers)
+                {
+                    await ReplyAsync("Woah, i don't think you want to add that role to self service as it contains some dangerous permissions");
+                    return;
+                }
                _redis.HashSet($"{Context.Guild.Id}:RoleWhitelist", new HashEntry[] { new HashEntry(roleName, role.Id.ToString()) });
                await ReplyAsync($"Added {role.Name} to the whitelist");
            }