closed-social
/
mastodon
3
0
Fork 2
Code Issues 5 Pull Requests 0 Projects 0 Releases 3 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8000 Commits
4 Branches
567 MiB
Tree: ebe574d5b5
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'ebe574d5b5'
${ noResults }
mastodon/app/controllers/media_controller.rb

46 lines
1.1 KiB
Raw Normal View History

Fix rubocop issues, introduce usage of frozen literal to improve performance
8 years ago
Adding media controller, 1 webm/compose form allowed, previews generated
8 years ago
Extract authorization policy for viewing statuses (#3150)
7 years ago
Fix login sometimes redirecting to paths that are not pages (#11019) Fix #11016
5 years ago
Fix redirecting non-functional accounts on public pages (#11978) Fix #11969
5 years ago
Fix login sometimes redirecting to paths that are not pages (#11019) Fix #11016
5 years ago
Add whitelist mode (#11291)
5 years ago
Save video metadata and improve video OpenGraph tags (#6481) * Save metadata from video attachments, put correct dimensions into OG tags * Add twitter:player for videos * Fix code style and test
6 years ago
Add audio uploads (#11123) * Add audio uploads Fix #4827 Accept uploads of OGG, WAV, FLAC, OPUS and MP3 files, and converts them to OGG. Media attachments get a new `audio` type. In the UI, audio uploads are displayed identically to video uploads. * Improve code style
5 years ago
Adding media controller, 1 webm/compose form allowed, previews generated
8 years ago
fix CSP / X-Frame-Options for media embeds (#9558)
5 years ago
Adding media controller, 1 webm/compose form allowed, previews generated
8 years ago
Save video metadata and improve video OpenGraph tags (#6481) * Save metadata from video attachments, put correct dimensions into OG tags * Add twitter:player for videos * Fix code style and test
6 years ago
Adding media controller, 1 webm/compose form allowed, previews generated
8 years ago
Save video metadata and improve video OpenGraph tags (#6481) * Save metadata from video attachments, put correct dimensions into OG tags * Add twitter:player for videos * Fix code style and test
6 years ago
Media controller specs (#2022) * Add spec for media controller * Add MediaAttachment.attached scope * Simplify methods in media controller
7 years ago
Save video metadata and improve video OpenGraph tags (#6481) * Save metadata from video attachments, put correct dimensions into OG tags * Add twitter:player for videos * Fix code style and test
6 years ago
Extract authorization policy for viewing statuses (#3150)
7 years ago
Adding media controller, 1 webm/compose form allowed, previews generated
8 years ago
Add audio uploads (#11123) * Add audio uploads Fix #4827 Accept uploads of OGG, WAV, FLAC, OPUS and MP3 files, and converts them to OGG. Media attachments get a new `audio` type. In the UI, audio uploads are displayed identically to video uploads. * Improve code style
5 years ago
Adding media controller, 1 webm/compose form allowed, previews generated
8 years ago
 
  1. # frozen_string_literal: true
  2. 

  3. class MediaController < ApplicationController
  4.   include Authorization
  5. 

  6.   skip_before_action :store_current_location
  7.   skip_before_action :require_functional!
  8. 

  9.   before_action :authenticate_user!, if: :whitelist_mode?
  10.   before_action :set_media_attachment
  11.   before_action :verify_permitted_status!
  12.   before_action :check_playable, only: :player
  13.   before_action :allow_iframing, only: :player
  14. 

  15.   content_security_policy only: :player do |p|
  16.     p.frame_ancestors(false)
  17.   end
  18. 

  19.   def show
  20.     redirect_to @media_attachment.file.url(:original)
  21.   end
  22. 

  23.   def player
  24.     @body_classes = 'player'
  25.   end
  26. 

  27.   private
  28. 

  29.   def set_media_attachment
  30.     @media_attachment = MediaAttachment.attached.find_by!(shortcode: params[:id] || params[:medium_id])
  31.   end
  32. 

  33.   def verify_permitted_status!
  34.     authorize @media_attachment.status, :show?
  35.   rescue Mastodon::NotPermittedError
  36.     raise ActiveRecord::RecordNotFound
  37.   end
  38. 

  39.   def check_playable
  40.     not_found unless @media_attachment.larger_media_format?
  41.   end
  42. 

  43.   def allow_iframing
  44.     response.headers['X-Frame-Options'] = 'ALLOWALL'
  45.   end
  46. end