Role bans (#6703)

Content.Server/Database/ServerRoleBanDef.cs

@@ -0,0 +1,56 @@
+using System.Collections.Immutable;
+using System.Net;
+using Robust.Shared.Network;
+
+namespace Content.Server.Database;
+
+public sealed class ServerRoleBanDef
+{
+    public int? Id { get; }
+    public NetUserId? UserId { get; }
+    public (IPAddress address, int cidrMask)? Address { get; }
+    public ImmutableArray<byte>? HWId { get; }
+
+    public DateTimeOffset BanTime { get; }
+    public DateTimeOffset? ExpirationTime { get; }
+    public string Reason { get; }
+    public NetUserId? BanningAdmin { get; }
+    public ServerRoleUnbanDef? Unban { get; }
+    public string Role { get; }
+
+    public ServerRoleBanDef(
+        int? id,
+        NetUserId? userId,
+        (IPAddress, int)? address,
+        ImmutableArray<byte>? hwId,
+        DateTimeOffset banTime,
+        DateTimeOffset? expirationTime,
+        string reason,
+        NetUserId? banningAdmin,
+        ServerRoleUnbanDef? unban,
+        string role)
+    {
+        if (userId == null && address == null && hwId ==  null)
+        {
+            throw new ArgumentException("Must have at least one of banned user, banned address or hardware ID");
+        }
+
+        if (address is {} addr && addr.Item1.IsIPv4MappedToIPv6)
+        {
+            // Fix IPv6-mapped IPv4 addresses
+            // So that IPv4 addresses are consistent between separate-socket and dual-stack socket modes.
+            address = (addr.Item1.MapToIPv4(), addr.Item2 - 96);
+        }
+
+        Id = id;
+        UserId = userId;
+        Address = address;
+        HWId = hwId;
+        BanTime = banTime;
+        ExpirationTime = expirationTime;
+        Reason = reason;
+        BanningAdmin = banningAdmin;
+        Unban = unban;
+        Role = role;
+    }
+}