nekobus
/
mastodon_neko
forked from closed-social/mastodon
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
闭社主体 forked from https://github.com/tootsuite/mastodon
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3333 Commits
2 Branches
112 MiB
Tree: bb911043de
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'bb911043de'
${ noResults }
mastodon_neko/app/controllers/media_controller.rb

24 lines
544 B
Raw Normal View History

Fix rubocop issues, introduce usage of frozen literal to improve performance
8 years ago
Adding media controller, 1 webm/compose form allowed, previews generated
8 years ago
Extract authorization policy for viewing statuses (#3150)
7 years ago
Media controller specs (#2022) * Add spec for media controller * Add MediaAttachment.attached scope * Simplify methods in media controller
7 years ago
Adding media controller, 1 webm/compose form allowed, previews generated
8 years ago
Media controller specs (#2022) * Add spec for media controller * Add MediaAttachment.attached scope * Simplify methods in media controller
7 years ago
Adding media controller, 1 webm/compose form allowed, previews generated
8 years ago
Media controller specs (#2022) * Add spec for media controller * Add MediaAttachment.attached scope * Simplify methods in media controller
7 years ago
Extract authorization policy for viewing statuses (#3150)
7 years ago
Adding media controller, 1 webm/compose form allowed, previews generated
8 years ago
 
  1. # frozen_string_literal: true
  2. 

  3. class MediaController < ApplicationController
  4.   include Authorization
  5. 

  6.   before_action :verify_permitted_status
  7. 

  8.   def show
  9.     redirect_to media_attachment.file.url(:original)
  10.   end
  11. 

  12.   private
  13. 

  14.   def media_attachment
  15.     MediaAttachment.attached.find_by!(shortcode: params[:id])
  16.   end
  17. 

  18.   def verify_permitted_status
  19.     authorize media_attachment.status, :show?
  20.   rescue Mastodon::NotPermittedError
  21.     # Reraise in order to get a 404 instead of a 403 error code
  22.     raise ActiveRecord::RecordNotFound
  23.   end
  24. end