RocketChat · ggazzo · Mar 20, 2025 · Jan 28, 2025 · Jan 29, 2025 · Jan 29, 2025
@@ -1,8 +1,10 @@
 import type { IUpload, IUser } from '@rocket.chat/core-typings';
 import { Users } from '@rocket.chat/models';
 
+const isString = (value: unknown): value is string => typeof value === 'string';
+
 export async function addUserToFileObj(files: IUpload[]): Promise<(IUpload & { user?: Pick<IUser, '_id' | 'name' | 'username'> })[]> {
-	const uids = files.map(({ userId }) => userId).filter(Boolean);
+	const uids = files.map(({ userId }) => userId).filter(isString);
 
 	const users = await Users.findByIds(uids, { projection: { name: 1, username: 1 } }).toArray();
 

@@ -2,7 +2,7 @@ import type { IUser } from '@rocket.chat/core-typings';
 import { Users, Subscriptions } from '@rocket.chat/models';
 import { escapeRegExp } from '@rocket.chat/string-helpers';
 import type { Mongo } from 'meteor/mongo';
-import type { Filter, RootFilterOperators } from 'mongodb';
+import type { Filter, FindOptions, RootFilterOperators } from 'mongodb';
 
 import { hasPermissionAsync } from '../../../authorization/server/functions/hasPermission';
 import { settings } from '../../../settings/server';
@@ -21,7 +21,7 @@ export async function findUsersToAutocomplete({
 	const searchFields = settings.get<string>('Accounts_SearchFields').trim().split(',');
 	const exceptions = selector.exceptions || [];
 	const conditions = selector.conditions || {};
-	const options = {
+	const options: FindOptions<IUser> & { limit: number } = {
 		projection: {
 			name: 1,
 			username: 1,

@@ -1,5 +1,5 @@
 import { Team, Room } from '@rocket.chat/core-services';
-import { TEAM_TYPE, type IRoom, type ISubscription, type IUser, type RoomType } from '@rocket.chat/core-typings';
+import { TEAM_TYPE, type IRoom, type ISubscription, type IUser, type RoomType, type UserStatus } from '@rocket.chat/core-typings';
 import { Integrations, Messages, Rooms, Subscriptions, Uploads, Users } from '@rocket.chat/models';
 import {
 	isChannelsAddAllProps,
@@ -1013,7 +1013,7 @@ API.v1.addRoute(
 				},
 			];
 
-			const { cursor, totalCount } = await Rooms.findPaginated(ourQuery, {
+			const { cursor, totalCount } = Rooms.findPaginated(ourQuery, {
 				sort: sort || { name: 1 },
 				skip: offset,
 				limit: count,
@@ -1052,7 +1052,7 @@ API.v1.addRoute(
 				});
 			}
 
-			const { cursor, totalCount } = await Rooms.findPaginatedByTypeAndIds('c', rids, {
+			const { cursor, totalCount } = Rooms.findPaginatedByTypeAndIds('c', rids, {
 				sort: sort || { name: 1 },
 				skip: offset,
 				limit: count,
@@ -1103,7 +1103,7 @@ API.v1.addRoute(
 
 			const { cursor, totalCount } = await findUsersOfRoom({
 				rid: findResult._id,
-				...(status && { status: { $in: status } }),
+				...(status && { status: { $in: status as UserStatus[] } }),
 				skip,
 				limit,
 				filter,

@@ -1,5 +1,5 @@
 import { Team, isMeteorError } from '@rocket.chat/core-services';
-import type { IIntegration, IUser, IRoom, RoomType } from '@rocket.chat/core-typings';
+import type { IIntegration, IUser, IRoom, RoomType, UserStatus } from '@rocket.chat/core-typings';
 import { Integrations, Messages, Rooms, Subscriptions, Uploads, Users } from '@rocket.chat/models';
 import { isGroupsOnlineProps, isGroupsMessagesProps } from '@rocket.chat/rest-typings';
 import { check, Match } from 'meteor/check';
@@ -740,7 +740,7 @@ API.v1.addRoute(
 
 			const { cursor, totalCount } = await findUsersOfRoom({
 				rid: findResult.rid,
-				...(status && { status: { $in: status } }),
+				...(status && { status: { $in: status as UserStatus[] } }),
 				skip,
 				limit,
 				filter,

@@ -1,7 +1,7 @@
 /**
  * Docs: https://github.com/RocketChat/developer-docs/blob/master/reference/api/rest-api/endpoints/team-collaboration-endpoints/im-endpoints
  */
-import type { IMessage, IRoom, ISubscription } from '@rocket.chat/core-typings';
+import type { IMessage, IRoom, ISubscription, IUser } from '@rocket.chat/core-typings';
 import { Subscriptions, Uploads, Messages, Rooms, Users } from '@rocket.chat/models';
 import {
 	isDmDeleteProps,
@@ -13,6 +13,7 @@ import {
 } from '@rocket.chat/rest-typings';
 import { Match, check } from 'meteor/check';
 import { Meteor } from 'meteor/meteor';
+import type { FindOptions } from 'mongodb';
 
 import { eraseRoom } from '../../../../server/lib/eraseRoom';
 import { openRoom } from '../../../../server/lib/openRoom';
@@ -338,7 +339,7 @@ API.v1.addRoute(
 				room._id,
 			);
 
-			const options = {
+			const options: FindOptions<IUser> = {
 				projection: {
 					_id: 1,
 					username: 1,

@@ -233,9 +233,7 @@ API.v1.addRoute(
 				});
 			}
 
-			let user = await (async (): Promise<
-				Pick<IUser, '_id' | 'roles' | 'username' | 'name' | 'status' | 'statusText'> | undefined | null
-			> => {
+			let user = await (async (): Promise<Pick<IUser, '_id' | 'username'> | undefined | null> => {
 				if (isUserFromParams(this.bodyParams, this.userId, this.user)) {
 					return Users.findOneById(this.userId);
 				}
@@ -269,9 +267,11 @@ API.v1.addRoute(
 			const sentTheUserByFormData = fields.userId || fields.username;
 			if (sentTheUserByFormData) {
 				if (fields.userId) {
-					user = await Users.findOneById(fields.userId, { projection: { username: 1 } });
+					user = await Users.findOneById<Pick<IUser, '_id' | 'username'>>(fields.userId, { projection: { username: 1 } });
 				} else if (fields.username) {
-					user = await Users.findOneByUsernameIgnoringCase(fields.username, { projection: { username: 1 } });
+					user = await Users.findOneByUsernameIgnoringCase<Pick<IUser, '_id' | 'username'>>(fields.username, {
+						projection: { username: 1 },
+					});
 				}
 
 				if (!user) {

@@ -1,5 +1,5 @@
 import { LivechatVoip } from '@rocket.chat/core-services';
-import type { ILivechatAgent, IVoipRoom } from '@rocket.chat/core-typings';
+import type { IVoipRoom } from '@rocket.chat/core-typings';
 import { VoipRoom, LivechatVisitors, Users } from '@rocket.chat/models';
 import { Random } from '@rocket.chat/random';
 import { isVoipRoomProps, isVoipRoomsProps, isVoipRoomCloseProps } from '@rocket.chat/rest-typings';
@@ -128,7 +128,7 @@ API.v1.addRoute(
 					return API.v1.failure('agent-not-found');
 				}
 
-				const agentObj: ILivechatAgent = await Users.findOneAgentById(agentId, {
+				const agentObj = await Users.findOneAgentById(agentId, {
 					projection: { username: 1 },
 				});
 				if (!agentObj?.username) {

@@ -1,6 +1,7 @@
 import type { IAppServerOrchestrator, AppStatus } from '@rocket.chat/apps';
 import type { ProxiedApp } from '@rocket.chat/apps-engine/server/ProxiedApp';
 import { AppActivationBridge as ActivationBridge } from '@rocket.chat/apps-engine/server/bridges/AppActivationBridge';
+import { UserStatus } from '@rocket.chat/core-typings';
 import { Users } from '@rocket.chat/models';
 
 export class AppActivationBridge extends ActivationBridge {
@@ -29,7 +30,7 @@ export class AppActivationBridge extends ActivationBridge {
 	}
 
 	protected async appStatusChanged(app: ProxiedApp, status: AppStatus): Promise<void> {
-		const userStatus = ['auto_enabled', 'manually_enabled'].includes(status) ? 'online' : 'offline';
+		const userStatus = ['auto_enabled', 'manually_enabled'].includes(status) ? UserStatus.ONLINE : UserStatus.OFFLINE;
 
 		await Users.updateStatusByAppId(app.getID(), userStatus);
 

diff --git a/apps/meteor/app/e2e/server/methods/setUserPublicAndPrivateKeys.ts b/apps/meteor/app/e2e/server/methods/setUserPublicAndPrivateKeys.ts
@@ -11,6 +11,10 @@ declare module '@rocket.chat/ddp-client' {
 	}
 }
 
+const isKeysResult = (result: any): result is { public_key: string; private_key: string } => {
+	return result.private_key && result.public_key;
+};
+
 Meteor.methods<ServerMethods>({
 	async 'e2e.setUserPublicAndPrivateKeys'(keyPair) {
 		const userId = Meteor.userId();
@@ -24,7 +28,7 @@ Meteor.methods<ServerMethods>({
 		if (!keyPair.force) {
 			const keys = await Users.fetchKeysByUserId(userId);
 
-			if (keys.private_key && keys.public_key) {
+			if (isKeysResult(keys)) {
 				throw new Meteor.Error('error-keys-already-set', 'Keys already set', {
 					method: 'e2e.setUserPublicAndPrivateKeys',
 				});

diff --git a/apps/meteor/app/importer/server/classes/converters/ConverterCache.ts b/apps/meteor/app/importer/server/classes/converters/ConverterCache.ts
@@ -215,7 +215,9 @@ export class ConverterCache {
 		}
 
 		const user = await Users.findOneByUsername<Pick<IUser, '_id'>>(username, { projection: { _id: 1 } });
-		this.addUsernameToId(username, user?._id);
+		if (user) {
+			this.addUsernameToId(username, user._id);
+		}
 
 		return user?._id;
 	}

diff --git a/apps/meteor/app/importer/server/classes/converters/UserConverter.ts b/apps/meteor/app/importer/server/classes/converters/UserConverter.ts
@@ -127,7 +127,7 @@ export class UserConverter extends RecordConverter<IImportUserRecord, UserConver
 		return newIds;
 	}
 
-	async findExistingUser(data: IImportUser): Promise<IUser | undefined> {
+	async findExistingUser(data: IImportUser): Promise<IUser | null | undefined> {
 		if (data.emails.length) {
 			const emailUser = await Users.findOneByEmailAddress(data.emails[0], {});
 
@@ -138,7 +138,7 @@ export class UserConverter extends RecordConverter<IImportUserRecord, UserConver
 
 		// If we couldn't find one by their email address, try to find an existing user by their username
 		if (data.username) {
-			return Users.findOneByUsernameIgnoringCase(data.username, {});
+			return Users.findOneByUsernameIgnoringCase<IUser>(data.username, {});
 		}
 	}
 
@@ -221,7 +221,7 @@ export class UserConverter extends RecordConverter<IImportUserRecord, UserConver
 		subset(userData.customFields, 'customFields');
 	}
 
-	async insertOrUpdateUser(existingUser: IUser | undefined, data: IImportUser): Promise<void> {
+	async insertOrUpdateUser(existingUser: IUser | null | undefined, data: IImportUser): Promise<void> {
 		if (!data.username && !existingUser?.username) {
 			const emails = data.emails.filter(Boolean).map((email) => ({ address: email }));
 			data.username = await generateUsernameSuggestion({

diff --git a/apps/meteor/app/lib/server/functions/updateGroupDMsName.ts b/apps/meteor/app/lib/server/functions/updateGroupDMsName.ts
@@ -1,4 +1,5 @@
 import type { IUser } from '@rocket.chat/core-typings';
+import { isNotUndefined } from '@rocket.chat/core-typings';
 import { Rooms, Subscriptions, Users } from '@rocket.chat/models';
 import type { ClientSession } from 'mongodb';
 
@@ -13,8 +14,8 @@ async function getUsersWhoAreInTheSameGroupDMsAs(user: IUser) {
 		return;
 	}
 
-	const userIds = new Set();
-	const users = new Map();
+	const userIds = new Set<string>();
+	const users = new Map<string, IUser>();
 
 	const rooms = Rooms.findGroupDMsByUids([user._id], { projection: { uids: 1 } });
 	await rooms.forEach((room) => {
@@ -25,9 +26,7 @@ async function getUsersWhoAreInTheSameGroupDMsAs(user: IUser) {
 		room.uids.forEach((uid) => uid !== user._id && userIds.add(uid));
 	});
 
-	(await Users.findByIds([...userIds], { projection: { username: 1, name: 1 } }).toArray()).forEach((user: IUser) =>
-		users.set(user._id, user),
-	);
+	(await Users.findByIds([...userIds], { projection: { username: 1, name: 1 } }).toArray()).forEach((user) => users.set(user._id, user));
 
 	return users;
 }
@@ -59,7 +58,7 @@ export const updateGroupDMsName = async (
 	const rooms = Rooms.findGroupDMsByUids([userThatChangedName._id], { projection: { uids: 1 }, session });
 
 	// eslint-disable-next-line @typescript-eslint/explicit-function-return-type
-	const getMembers = (uids: string[]) => uids.map((uid) => users.get(uid)).filter(Boolean);
+	const getMembers = (uids: string[]) => uids.map((uid) => users.get(uid)).filter(isNotUndefined);
 
 	// loop rooms to update the subscriptions from them all
 	for await (const room of rooms) {

@@ -51,7 +51,7 @@ async function findUsers({
 			sortedResults,
 			totalCount: [{ total } = { total: 0 }],
 		},
-	] = await Users.findAgentsWithDepartments<ILivechatAgent>(role, query, {
+	] = await Users.findAgentsWithDepartments(role, query, {
 		sort: sort || { name: 1 },
 		skip: offset,
 		limit: count,

@@ -1,4 +1,5 @@
 import type { AtLeast, ILivechatAgentStatus, ILivechatBusinessHour, ILivechatDepartment } from '@rocket.chat/core-typings';
+import { UserStatus } from '@rocket.chat/core-typings';
 import type { ILivechatBusinessHoursModel, IUsersModel } from '@rocket.chat/model-typings';
 import { LivechatBusinessHours, Users } from '@rocket.chat/models';
 import type { IWorkHoursCronJobsWrapper } from '@rocket.chat/models';
@@ -55,7 +56,7 @@ export abstract class AbstractBusinessHourBehavior {
 			status,
 			// Why this works: statusDefault is the property set when a user manually changes their status
 			// So if it's set to offline, we can be sure the user will be offline after login and we can skip the update
-			{ livechatStatusSystemModified: true, statusDefault: { $ne: 'offline' } },
+			{ livechatStatusSystemModified: true, statusDefault: { $ne: UserStatus.OFFLINE } },
 			{ livechatStatusSystemModified: true },
 		);
 

@@ -49,7 +49,7 @@ export const createDefaultBusinessHourIfNotExists = async (): Promise<void> => {
 	}
 };
 
-export async function makeAgentsUnavailableBasedOnBusinessHour(agentIds: string[] | null = null) {
+export async function makeAgentsUnavailableBasedOnBusinessHour(agentIds?: string[]) {
 	const results = await Users.findAgentsAvailableWithoutBusinessHours(agentIds).toArray();
 
 	const update = await Users.updateLivechatStatusByAgentIds(
@@ -75,7 +75,7 @@ export async function makeAgentsUnavailableBasedOnBusinessHour(agentIds: string[
 	);
 }
 
-export async function makeOnlineAgentsAvailable(agentIds: string[] | null = null) {
+export async function makeOnlineAgentsAvailable(agentIds?: string[]) {
 	const results = await Users.findOnlineButNotAvailableAgents(agentIds).toArray();
 
 	const update = await Users.updateLivechatStatusByAgentIds(

@@ -1,4 +1,5 @@
 import type { IUser } from '@rocket.chat/core-typings';
+import { isNotUndefined } from '@rocket.chat/core-typings';
 import { LivechatContacts, Users } from '@rocket.chat/models';
 import type { PaginatedResult, ILivechatContactWithManagerData } from '@rocket.chat/rest-typings';
 import type { FindCursor, Sort } from 'mongodb';
@@ -25,7 +26,7 @@ export async function getContacts(params: GetContactsParams): Promise<PaginatedR
 
 	const [rawContacts, total] = await Promise.all([cursor.toArray(), totalCount]);
 
-	const managerIds = [...new Set(rawContacts.map(({ contactManager }) => contactManager))];
+	const managerIds = [...new Set(rawContacts.map(({ contactManager }) => contactManager))].filter(isNotUndefined);
 	const managersCursor: FindCursor<[string, Pick<IUser, '_id' | 'name' | 'username'>]> = Users.findByIds(managerIds, {
 		projection: { name: 1, username: 1 },
 	}).map((manager) => [manager._id, manager]);

@@ -1,6 +1,6 @@
-import type { IMessage } from '@rocket.chat/core-typings';
+import type { IMessage, IUser } from '@rocket.chat/core-typings';
 import { Users } from '@rocket.chat/models';
 
-export async function isMessageFromBot(message: IMessage): Promise<boolean> {
+export async function isMessageFromBot(message: IMessage): Promise<Pick<IUser, '_id' | 'roles'> | null> {
 	return Users.isUserInRole(message.u._id, 'bot');
 }
@@ -33,7 +33,7 @@ class LoadRotation {
 			ignoreAgentId,
 			settings.get<boolean>('Livechat_enabled_when_agent_idle'),
 		);
-		if (!nextAgent) {
+		if (!nextAgent?.username) {
 			return;
 		}
 

diff --git a/apps/meteor/ee/server/lib/ldap/Manager.ts b/apps/meteor/ee/server/lib/ldap/Manager.ts
@@ -291,6 +291,10 @@ export class LDAPEEManager extends LDAPManager {
 		const roomOwner = settings.get<string>('LDAP_Sync_User_Data_Channels_Admin') || '';
 
 		const user = await Users.findOneByUsernameIgnoringCase(roomOwner);
+		if (!user) {
+			logger.error(`Unable to find user '${roomOwner}' to be the owner of the channel '${channel}'.`);
+			return;
+		}
 
 		const room = await createRoom('c', channel, user, [], false, false, {
 			customFields: { ldap: true },

diff --git a/apps/meteor/imports/personal-access-tokens/server/api/methods/regenerateToken.ts b/apps/meteor/imports/personal-access-tokens/server/api/methods/regenerateToken.ts
@@ -1,6 +1,7 @@
 import { Meteor } from 'meteor/meteor';
 import type { ServerMethods } from '@rocket.chat/ddp-client';
 import { Users } from '@rocket.chat/models';
+import { isPersonalAccessToken } from '@rocket.chat/core-typings';
 
 import { hasPermissionAsync } from '../../../../../app/authorization/server/functions/hasPermission';
 import { twoFactorRequired } from '../../../../../app/2fa/server/twoFactorRequired';
@@ -33,8 +34,14 @@ export const regeneratePersonalAccessTokenOfUser = async (tokenName: string, use
 
 	await removePersonalAccessTokenOfUser(tokenName, userId);
 
-	return generatePersonalAccessTokenOfUser({ tokenName, userId, bypassTwoFactor: tokenExist.bypassTwoFactor || false });
-}
+	const tokenObject = tokenExist.services?.resume?.loginTokens?.find((token) => isPersonalAccessToken(token) && token.name === tokenName);
+
+	return generatePersonalAccessTokenOfUser({
+		tokenName,
+		userId,
+		bypassTwoFactor: (tokenObject && isPersonalAccessToken(tokenObject) && tokenObject.bypassTwoFactor) || false,
+	});
+};
 
 Meteor.methods<ServerMethods>({
 	'personalAccessTokens:regenerateToken': twoFactorRequired(async function ({ tokenName }) {
@@ -44,7 +51,7 @@ Meteor.methods<ServerMethods>({
 				method: 'personalAccessTokens:regenerateToken',
 			});
 		}
-		
+
 		return regeneratePersonalAccessTokenOfUser(tokenName, uid);
 	}),
 });