mirror of
https://framagit.org/tykayn/mastodon.git
synced 2023-08-25 08:33:12 +02:00
a22e6a3683
Conflicts: - `app/controllers/statuses_controller.rb`: Upstream disabled the embed controller for reblogs. Not a real conflict, but glitch-soc has an extra line to deal with its theming system. Ported upstream changes. - `app/javascript/packs/public.js`: Upstream made changes to get rid of most inline CSS, this changes javascript for public pages, which in glitch are split between different files. Ported those changes. - `app/models/status.rb`: Upstream changed the block check in `Status#permitted_for` to include domain-block checks. Not a real conflict with glitch-soc, but our scope is slightly different, as our scope for unauthenticated access do not include instance-local toots. Ported upstream changes. - `app/serializers/rest/instance_serializer.rb`: Not a real conflict, upstream added a new field to the instance serializer, the conflict is one line above since we added more of that. Ported upstream changes. - `app/views/settings/profiles/show.html.haml`: Upstream got rid of most inline CSS and moved hidden elements to data attributes in the process, in fields were we have different values. Ported upstream changes while keeping our glitch-specific values. - `app/views/statuses/_simple_status.html.haml`: Upstream got rid of inline CSS on an HAML line we treat differently, stripping empty text nodes. Ported upstream changes to the style attribute, keeping the empty text node stripping behavior.
103 lines
3.8 KiB
Ruby
103 lines
3.8 KiB
Ruby
# frozen_string_literal: true
|
|
|
|
class Api::V1::StatusesController < Api::BaseController
|
|
include Authorization
|
|
|
|
before_action -> { authorize_if_got_token! :read, :'read:statuses' }, except: [:create, :destroy]
|
|
before_action -> { doorkeeper_authorize! :write, :'write:statuses' }, only: [:create, :destroy]
|
|
before_action :require_user!, except: [:show, :context]
|
|
before_action :set_status, only: [:show, :context]
|
|
before_action :set_thread, only: [:create]
|
|
|
|
override_rate_limit_headers :create, family: :statuses
|
|
|
|
# This API was originally unlimited, pagination cannot be introduced without
|
|
# breaking backwards-compatibility. Arbitrarily high number to cover most
|
|
# conversations as quasi-unlimited, it would be too much work to render more
|
|
# than this anyway
|
|
CONTEXT_LIMIT = 4_096
|
|
|
|
def show
|
|
@status = cache_collection([@status], Status).first
|
|
render json: @status, serializer: REST::StatusSerializer
|
|
end
|
|
|
|
def context
|
|
ancestors_results = @status.in_reply_to_id.nil? ? [] : @status.ancestors(CONTEXT_LIMIT, current_account)
|
|
descendants_results = @status.descendants(CONTEXT_LIMIT, current_account)
|
|
loaded_ancestors = cache_collection(ancestors_results, Status)
|
|
loaded_descendants = cache_collection(descendants_results, Status)
|
|
|
|
@context = Context.new(ancestors: loaded_ancestors, descendants: loaded_descendants)
|
|
statuses = [@status] + @context.ancestors + @context.descendants
|
|
|
|
render json: @context, serializer: REST::ContextSerializer, relationships: StatusRelationshipsPresenter.new(statuses, current_user&.account_id)
|
|
end
|
|
|
|
def create
|
|
@status = PostStatusService.new.call(current_user.account,
|
|
text: status_params[:status],
|
|
thread: @thread,
|
|
media_ids: status_params[:media_ids],
|
|
sensitive: status_params[:sensitive],
|
|
spoiler_text: status_params[:spoiler_text],
|
|
visibility: status_params[:visibility],
|
|
scheduled_at: status_params[:scheduled_at],
|
|
application: doorkeeper_token.application,
|
|
poll: status_params[:poll],
|
|
content_type: status_params[:content_type],
|
|
idempotency: request.headers['Idempotency-Key'],
|
|
with_rate_limit: true)
|
|
|
|
render json: @status, serializer: @status.is_a?(ScheduledStatus) ? REST::ScheduledStatusSerializer : REST::StatusSerializer
|
|
end
|
|
|
|
def destroy
|
|
@status = Status.where(account_id: current_user.account).find(params[:id])
|
|
authorize @status, :destroy?
|
|
|
|
@status.discard
|
|
RemovalWorker.perform_async(@status.id, redraft: true)
|
|
|
|
render json: @status, serializer: REST::StatusSerializer, source_requested: true
|
|
end
|
|
|
|
private
|
|
|
|
def set_status
|
|
@status = Status.find(params[:id])
|
|
authorize @status, :show?
|
|
rescue Mastodon::NotPermittedError
|
|
not_found
|
|
end
|
|
|
|
def set_thread
|
|
@thread = status_params[:in_reply_to_id].blank? ? nil : Status.find(status_params[:in_reply_to_id])
|
|
rescue ActiveRecord::RecordNotFound
|
|
render json: { error: I18n.t('statuses.errors.in_reply_not_found') }, status: 404
|
|
end
|
|
|
|
def status_params
|
|
params.permit(
|
|
:status,
|
|
:in_reply_to_id,
|
|
:sensitive,
|
|
:spoiler_text,
|
|
:visibility,
|
|
:scheduled_at,
|
|
:content_type,
|
|
media_ids: [],
|
|
poll: [
|
|
:multiple,
|
|
:hide_totals,
|
|
:expires_in,
|
|
options: [],
|
|
]
|
|
)
|
|
end
|
|
|
|
def pagination_params(core_params)
|
|
params.slice(:limit).permit(:limit).merge(core_params)
|
|
end
|
|
end
|