Community

How do I add custom user fields to my theme?

Developer FAQ
  • julianJ

    If you have a custom theme that introduces custom user fields into the edit page, you might have noticed that the fields don't seem to show up on the frontend even if they're saved in the database.
    Likewise, if you have some custom data you want to maintain on a per-user basis, and you tried using user.updateProfile, you might've noticed that your fields don't seem to save.

    The reason for this behaviour is that the the user fields getter and setter are protected so that values in the user hash are not unintentionally overwritten, or that fields are retrieved that should not be.

    For example:

    nodebb-plugin-foobar saves a private user token in the user's hash. It is not meant to be retrieved. Another plugin calls user.getUsersFields() and that method naively returns everything in the user hash. The private key would then be considered leaked if it is accidentally exposed to the end user, even if unintentionally.

    Getter (retrieving user data)

    If you've saved a custom field into the user hash and you wish to retrieve it via User.getUsersFields(), you will have to explicitly whitelist it by attaching a hook listener to filter:user.whitelistFields. That plugin hook sends in { uids, whitelist }, where uids is an array of uids (requested by the calling script), and whitelist, which is an array containing user field properties.

    You can add a new entry to the whitelist thusly:

    plugin.json

    {
  ...
  "hooks": [
    { "hook": "filter:user.whitelistFields", "method": "addUserField" },
  ]
  ...
}

    library.js

    library.addUserField = async ({ uids, whitelist }) => {
  whitelist.push('customField');

  return { uids, whitelist };
};

    After doing so, a call to user.getUsersFields(uids, ['customField']); will have the customField property show up as it has been explicitly allowed.

    Setter (saving user data)

    Setting user data is comparatively simpler. We recommend using the user.updateProfile() method, as that has some sanity checks and special handling for certain fields. To allow the saving of a certain field, you will need to pass it in to the third argument of user.updateProfile():

    await User.updateProfile(callerUid, {
  uid,
  customField: 'value',
}, ['customField']);
    0

Suggested Topics

  • djensen47D

    Place a widget/ad after the first post

    Moved Solved Developer FAQ
    0 Votes
    4 Posts
    107 Views
    djensen47D

    Awesome! Thank you.

  • nullpointerN

    How to add main post content of topic to topic lists?

    Moved Solved Developer FAQ
    0 Votes
    3 Posts
    180 Views
    nullpointerN

    @baris thank you! I'll try your solution and update here

  • julianJ

    How to restrict access to categories based on outside privileges?

    Developer FAQ
    3 Votes
    1 Posts
    66 Views
    julianJ

    Let's say you have your own site and member database, with its own gated access to content, and you want to mimic this sort of arrangement with your forum.

    e.g. On member site, you have free users and paid users, and you want to only allow access to a couple super special categories on community site to paid users, while free users get the regular set of categories.

    The good news is, the Session Sharing plugin has had support for this since 2018!

    You'll want to enable the options in the session sharing plugin:

    2022-11-15_09-49.png

    You can opt to only add users to groups, only remove users from groups, or both. You can also specify which groups that the automatic group syncing applies to

    Once enabled, you need only update your shared cookie to contain a groups property, which is of type Array. This array contains the group names in NodeBB that the user should be a part of.

    If group leaving is enabled, then the user will be removed from any groups that are not in this array, upon login/revalidation.

    Once you have your group memberships sorted out, you'll want to restrict access to specific categories based on user group membership.

    You can do that from the ACP > Manage > Privileges page. Simply remove access for the registered-users groups from your choice of categories, and grant those viewing/posting privileges to the paid users group.

  • julianJ

    What are all the options for `./nodebb upgrade`?

    Developer FAQ
    1 Votes
    2 Posts
    422 Views
    omegaO

    Cool and for context a link to the upgrade doc section - https://docs.nodebb.org/configuring/upgrade/

  • N

    Plugin DB Search - Limitation?

    Moved Developer FAQ
    0 Votes
    10 Posts
    509 Views
    N

    I would really like to get this working.
    Does anyone have any thoughts on why this code above might not work?
    The board was converted from phpbb using a plugin. Is it possible that left something behind that is breaking the code shared above?

Copyright © 2023 NodeBB | Contributors