closed-social
/
mastodon
3
0
Fork 2
Code Issues 5 Pull Requests 0 Projects 0 Releases 3 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2720 Commits
4 Branches
567 MiB
Tree: 81584779cb
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '81584779cb'
${ noResults }
mastodon/app/controllers/application_controller.rb

104 lines
2.6 KiB
Raw Normal View History

Fix rubocop issues, introduce usage of frozen literal to improve performance
7 years ago
Initial commit
8 years ago
Fixing FanOutOnWriteService, fixing Sidekiq not having enough DB connections in the pool, adding a throttle of 60rpm per IP, adding mini profiler, adding admin status to users
8 years ago
Return force_ssl to the controller (#2380)
7 years ago
Fix #1165 - before_action was called before protect_from_forgery
7 years ago
Extract user tracking into concern (#2600)
7 years ago
Make file attachment on MediaAttachment optional (#1865) Create MediaAttachment but without actual file download when domain is blocked with reject_media set to true Clean up old media files when creating a new domain block with reject_media set to true Return remote_url in media attachments API if local file is not present Undo domain block action in admin UI Ability to enable reject_media from admin UI
7 years ago
Adding React.js, Redux, revamping dashboard
7 years ago
Fix local follows, 404 in logs
7 years ago
Add nice error page for CSRF errors/cookie issue, and fix error page handling altogether
7 years ago
Fix local follows, 404 in logs
7 years ago
Fix sign-in redirecting "back" to a missing image because missing static files hit the raise_not_found method
7 years ago
Add filters for suspended accounts
7 years ago
Redirect after sign in to previous page (unless it's a sign in/up/etc page)
7 years ago
Fix local follows, 404 in logs
7 years ago
Improve code style
7 years ago
Fix local follows, 404 in logs
7 years ago
Redirect after sign in to previous page (unless it's a sign in/up/etc page)
7 years ago
Return force_ssl to the controller (#2380)
7 years ago
Redirect after sign in to previous page (unless it's a sign in/up/etc page)
7 years ago
Add simple admin overview of PuSH subscriptions
7 years ago
Add filters for suspended accounts
7 years ago
Fix tests
7 years ago
Error responses cleanup (#2692) * Use respond_with_error for forbidden errors * Wrap up common error code into single method
7 years ago
Fix local follows, 404 in logs
7 years ago
Error responses cleanup (#2692) * Use respond_with_error for forbidden errors * Wrap up common error code into single method
7 years ago
Add nice error page for CSRF errors/cookie issue, and fix error page handling altogether
7 years ago
Error responses cleanup (#2692) * Use respond_with_error for forbidden errors * Wrap up common error code into single method
7 years ago
ActivityPub: Add basic, read-only support for Outboxes, Notes, and Create/Announce Activities (#2197) * Clean up collapsible components * Expose user Outboxes and AS2 representations of statuses * Save work thus far. * Fix bad merge. * Save my work * Clean up pagination. * First test working. * Add tests. * Add Forbidden error template. * Revert yarn.lock changes. * Fix code style deviations and use localized instead of hardcoded English text.
7 years ago
Add nice error page for CSRF errors/cookie issue, and fix error page handling altogether
7 years ago
Error responses cleanup (#2692) * Use respond_with_error for forbidden errors * Wrap up common error code into single method
7 years ago
Catching more exceptions that slipped through, removing AR logging from production as it's very verbose and not very useful
7 years ago
Give SINGLE_USER a chance to register (#1820) An attempt to open a brand new Mastodon instance configured as SINGLE_USER_MODE=true will cause an exception. Enable temporary registration if we have no users in the database Fixes #1817
7 years ago
Fix tests
7 years ago
Rename "publish" to "toot" in english locale, fix lightbox showing old image before loading new one, cache notifications API, fix missing follow button on public profiles
7 years ago
Fix tests
7 years ago
Unify collection caching code
7 years ago
Further abstract caching for includes
7 years ago
Fix #248 - Reload all accounts when fetching from cache
7 years ago
Unify collection caching code
7 years ago
Fix #248 - Reload all accounts when fetching from cache
7 years ago
Unify collection caching code
7 years ago
Fix #2195 - Set locale to error pages (#2255) * Fix #2195 - Set locale to error pages * Fix #2195 - Cut duplicate process into one method
7 years ago
Error responses cleanup (#2692) * Use respond_with_error for forbidden errors * Wrap up common error code into single method
7 years ago
Fix #2195 - Set locale to error pages (#2255) * Fix #2195 - Set locale to error pages * Fix #2195 - Cut duplicate process into one method
7 years ago
Initial commit
8 years ago
 
  1. # frozen_string_literal: true
  2. 

  3. class ApplicationController < ActionController::Base
  4.   # Prevent CSRF attacks by raising an exception.
  5.   # For APIs, you may want to use :null_session instead.
  6.   protect_from_forgery with: :exception
  7. 

  8.   force_ssl if: :https_enabled?
  9. 

  10.   include Localized
  11.   include UserTrackingConcern
  12. 

  13.   helper_method :current_account
  14.   helper_method :single_user_mode?
  15. 

  16.   rescue_from ActionController::RoutingError, with: :not_found
  17.   rescue_from ActiveRecord::RecordNotFound, with: :not_found
  18.   rescue_from ActionController::InvalidAuthenticityToken, with: :unprocessable_entity
  19. 

  20.   before_action :store_current_location, except: :raise_not_found, unless: :devise_controller?
  21.   before_action :check_suspension, if: :user_signed_in?
  22. 

  23.   def raise_not_found
  24.     raise ActionController::RoutingError, "No route matches #{params[:unmatched_route]}"
  25.   end
  26. 

  27.   private
  28. 

  29.   def https_enabled?
  30.     Rails.env.production? && ENV['LOCAL_HTTPS'] == 'true'
  31.   end
  32. 

  33.   def store_current_location
  34.     store_location_for(:user, request.url)
  35.   end
  36. 

  37.   def require_admin!
  38.     redirect_to root_path unless current_user&.admin?
  39.   end
  40. 

  41.   def check_suspension
  42.     head 403 if current_user.account.suspended?
  43.   end
  44. 

  45.   protected
  46. 

  47.   def forbidden
  48.     respond_with_error(403)
  49.   end
  50. 

  51.   def not_found
  52.     respond_with_error(404)
  53.   end
  54. 

  55.   def gone
  56.     respond_with_error(410)
  57.   end
  58. 

  59.   def unprocessable_entity
  60.     respond_with_error(422)
  61.   end
  62. 

  63.   def single_user_mode?
  64.     @single_user_mode ||= Rails.configuration.x.single_user_mode && Account.first
  65.   end
  66. 

  67.   def current_account
  68.     @current_account ||= current_user.try(:account)
  69.   end
  70. 

  71.   def cache_collection(raw, klass)
  72.     return raw unless klass.respond_to?(:with_includes)
  73. 

  74.     raw                    = raw.cache_ids.to_a if raw.is_a?(ActiveRecord::Relation)
  75.     uncached_ids           = []
  76.     cached_keys_with_value = Rails.cache.read_multi(*raw.map(&:cache_key))
  77. 

  78.     raw.each do |item|
  79.       uncached_ids << item.id unless cached_keys_with_value.key?(item.cache_key)
  80.     end
  81. 

  82.     klass.reload_stale_associations!(cached_keys_with_value.values) if klass.respond_to?(:reload_stale_associations!)
  83. 

  84.     unless uncached_ids.empty?
  85.       uncached = klass.where(id: uncached_ids).with_includes.map { |item| [item.id, item] }.to_h
  86. 

  87.       uncached.values.each do |item|
  88.         Rails.cache.write(item.cache_key, item)
  89.       end
  90.     end
  91. 

  92.     raw.map { |item| cached_keys_with_value[item.cache_key] || uncached[item.id] }.compact
  93.   end
  94. 

  95.   def respond_with_error(code)
  96.     respond_to do |format|
  97.       format.any  { head code }
  98.       format.html do
  99.         set_locale
  100.         render "errors/#{code}", layout: 'error', status: code
  101.       end
  102.     end
  103.   end
  104. end