Retrospring/app/controllers/application_controller.rb

class ApplicationController < ActionController::Base
  include Pundit::Authorization
  # Prevent CSRF attacks by raising an exception.
  # For APIs, you may want to use :null_session instead.
  protect_from_forgery with: :exception

  before_action :sentry_user_context
  before_action :configure_permitted_parameters, if: :devise_controller?
  around_action :switch_locale
  before_action :banned?
  before_action :find_active_announcements
  before_action :set_has_new_reports

  # check if user wants to read
  def switch_locale(&)
    locale = params[:lang] || current_user&.locale || cookies[:lang] || "en"
    if params[:lang] && current_user.present?
      current_user.locale = locale
      current_user.save
    end

    cookies[:lang] = locale

    I18n.with_locale(locale, &)
  end

  # check if user got hit by the banhammer of doom
  def banned?
    if current_user.present? && current_user.banned?
      name = current_user.screen_name
      # obligatory '2001: A Space Odyssey' reference
      flash[:notice] = t("user.sessions.create.banned", name:)
      current_ban = current_user.bans.current.first
      flash[:notice] += "\n#{t('user.sessions.create.reason', reason: current_ban.reason)}" unless current_ban&.reason&.empty?

      flash[:notice] += if current_ban&.permanent?
                          "\n#{t('user.sessions.create.permanent')}"
                        else
                          # TODO: format banned_until
                          "\n#{t('user.sessions.create.until', time: current_ban.expires_at)}"
                        end

      sign_out current_user
      redirect_to new_user_session_path
    end
  end

  def find_active_announcements
    @active_announcements ||= Announcement.find_active
  end

  def set_has_new_reports
    return unless current_user&.mod?

    @has_new_reports = if current_user.last_reports_visit.nil?
                         true
                       else
                         Report.where(deleted: false)
                               .where("created_at > ?", current_user.last_reports_visit)
                               .count.positive?
                       end
  end

  include ApplicationHelper

  protected

  def configure_permitted_parameters
    devise_parameter_sanitizer.permit(:sign_up) { |u| u.permit(:screen_name, :email, :password, :password_confirmation, :remember_me) }
    devise_parameter_sanitizer.permit(:sign_in) { |u| u.permit(:login, :screen_name, :email, :password, :remember_me) }
    devise_parameter_sanitizer.permit(:account_update) { |u| u.permit(:screen_name, :email, :password, :password_confirmation, :current_password) }
  end

  def sentry_user_context
    if current_user.present?
      Sentry.set_user({ id: current_user.id })
    else
      Sentry.set_user({ ip_address: request.remote_ip })
    end
  end
end
first commit 2014-08-01 02:23:47 -07:00			`class ApplicationController < ActionController::Base`
Set up Pundit 2022-11-18 13:50:35 -08:00			`include Pundit::Authorization`
first commit 2014-08-01 02:23:47 -07:00			`# Prevent CSRF attacks by raising an exception.`
			`# For APIs, you may want to use :null_session instead.`
			`protect_from_forgery with: :exception`
fix not shown ban reason 2015-05-05 09:09:26 -07:00
Set Sentry user context 2021-12-28 10:19:05 -08:00			`before_action :sentry_user_context`
Upgrade to Rails 5.2 2020-04-18 16:45:50 -07:00			`before_action :configure_permitted_parameters, if: :devise_controller?`
re-add locale switching logic based on https://guides.rubyonrails.org/i18n.html\#managing-the-locale-across-requests 2023-01-05 06:20:24 -08:00			`around_action :switch_locale`
Upgrade to Rails 5.2 2020-04-18 16:45:50 -07:00			`before_action :banned?`
Add announcements to the top of the application template 2020-04-19 13:38:21 -07:00			`before_action :find_active_announcements`
Set `has_new_reports` global in ApplicationController 2024-03-01 13:11:18 -08:00			`before_action :set_has_new_reports`
implemented basic functionality of YE OLDE BANHAMMER! 2015-01-12 13:44:13 -08:00
[skip ci] fix comments 2015-05-25 20:31:06 -07:00			`# check if user wants to read`
add integration specs for changing locales 2023-01-06 04:37:22 -08:00			`def switch_locale(&)`
re-add locale switching logic based on https://guides.rubyonrails.org/i18n.html\#managing-the-locale-across-requests 2023-01-05 06:20:24 -08:00			`locale = params[:lang] \|\| current_user&.locale \|\| cookies[:lang] \|\| "en"`
			`if params[:lang] && current_user.present?`
			`current_user.locale = locale`
			`current_user.save`
			`end`
Some adjustmenets to locale logic, add 'jp.language: 日本語', regenerate schema 2015-07-04 00:31:46 -07:00
re-add locale switching logic based on https://guides.rubyonrails.org/i18n.html\#managing-the-locale-across-requests 2023-01-05 06:20:24 -08:00			`cookies[:lang] = locale`

obey the dog 2023-01-06 01:01:14 -08:00			`I18n.with_locale(locale, &)`
Basic locale check 2015-05-25 20:26:40 -07:00			`end`

[skip ci] fix comments 2015-05-25 20:31:06 -07:00			`# check if user got hit by the banhammer of doom`
implemented basic functionality of YE OLDE BANHAMMER! 2015-01-12 13:44:13 -08:00			`def banned?`
			`if current_user.present? && current_user.banned?`
			`name = current_user.screen_name`
			`# obligatory '2001: A Space Odyssey' reference`
Use full locale path for ban flash message 2022-07-30 07:29:12 -07:00			`flash[:notice] = t("user.sessions.create.banned", name:)`
Update usages of bans 2021-12-29 15:20:09 -08:00			`current_ban = current_user.bans.current.first`
Fix rubocop nits 2023-12-10 16:33:27 -08:00			`flash[:notice] += "\n#{t('user.sessions.create.reason', reason: current_ban.reason)}" unless current_ban&.reason&.empty?`

			`flash[:notice] += if current_ban&.permanent?`
			`"\n#{t('user.sessions.create.permanent')}"`
			`else`
			`# TODO: format banned_until`
			`"\n#{t('user.sessions.create.until', time: current_ban.expires_at)}"`
			`end`
Disclose permanent ban duration in login notice 2023-12-10 16:20:02 -08:00
implemented basic functionality of YE OLDE BANHAMMER! 2015-01-12 13:44:13 -08:00			`sign_out current_user`
			`redirect_to new_user_session_path`
			`end`
			`end`
FUCK this!!!!! 2014-12-28 12:14:10 -08:00
Add announcements to the top of the application template 2020-04-19 13:38:21 -07:00			`def find_active_announcements`
			`@active_announcements \|\|= Announcement.find_active`
			`end`

Set `has_new_reports` global in ApplicationController 2024-03-01 13:11:18 -08:00			`def set_has_new_reports`
			`return unless current_user&.mod?`

			`@has_new_reports = if current_user.last_reports_visit.nil?`
Fix rubocop nits 2024-03-01 13:23:44 -08:00			`true`
Set `has_new_reports` global in ApplicationController 2024-03-01 13:11:18 -08:00			`else`
Fix rubocop nits 2024-03-01 13:23:44 -08:00			`Report.where(deleted: false)`
			`.where("created_at > ?", current_user.last_reports_visit)`
			`.count.positive?`
Set `has_new_reports` global in ApplicationController 2024-03-01 13:11:18 -08:00			`end`
			`end`

FUCK this!!!!! 2014-12-28 12:14:10 -08:00			`include ApplicationHelper`

added authentication and everything 2014-08-01 06:27:08 -07:00			`protected`

			`def configure_permitted_parameters`
Fixes for devise 4.x 2019-03-29 14:37:10 -07:00			`devise_parameter_sanitizer.permit(:sign_up) { \|u\| u.permit(:screen_name, :email, :password, :password_confirmation, :remember_me) }`
			`devise_parameter_sanitizer.permit(:sign_in) { \|u\| u.permit(:login, :screen_name, :email, :password, :remember_me) }`
			`devise_parameter_sanitizer.permit(:account_update) { \|u\| u.permit(:screen_name, :email, :password, :password_confirmation, :current_password) }`
added authentication and everything 2014-08-01 06:27:08 -07:00			`end`
Set Sentry user context 2021-12-28 10:19:05 -08:00
			`def sentry_user_context`
			`if current_user.present?`
			`Sentry.set_user({ id: current_user.id })`
			`else`
use remote_ip 2023-02-04 13:31:53 -08:00			`Sentry.set_user({ ip_address: request.remote_ip })`
Set Sentry user context 2021-12-28 10:19:05 -08:00			`end`
			`end`
first commit 2014-08-01 02:23:47 -07:00			`end`