Retrospring/app/controllers/ajax/question_controller.rb

# frozen_string_literal: true

require "digest"
require "errors"

class Ajax::QuestionController < AjaxController
  def destroy
    params.require :question

    question = Question.find params[:question]
    if question.nil?
      @response[:status] = :not_found
      @response[:message] = t(".notfound")
      return
    end

    if not (current_user.mod? or question.user == current_user)
      @response[:status] = :not_authorized
      @response[:message] = t(".noauth")
      return
    end

    question.destroy!

    @response[:status] = :okay
    @response[:message] = t(".success")
    @response[:success] = true
  end

  def create
    params.require :question
    params.require :anonymousQuestion
    params.require :rcpt

    is_never_anonymous = user_signed_in? && params[:rcpt] == 'followers'
    author_is_anonymous = is_never_anonymous ? false : params[:anonymousQuestion]

    begin
      question = Question.create!(content:             params[:question],
                                  author_is_anonymous: author_is_anonymous,
                                  author_identifier:   AnonymousBlock.get_identifier(request.ip),
                                  user:                current_user,
                                  direct:              params[:rcpt] != "followers")
    rescue ActiveRecord::RecordInvalid => e
      Sentry.capture_exception(e)
      @response[:status] = :rec_inv
      @response[:message] = t(".invalid")
      return
    end

    if !user_signed_in? && !question.author_is_anonymous
      question.delete
      return
    end

    unless current_user.nil?
      current_user.increment! :asked_count unless params[:anonymousQuestion] == 'true'
    end

    if params[:rcpt] == 'followers'
      QuestionWorker.perform_async(current_user.id, question.id) unless current_user.nil?
    else
      target_user = User.find_by(id: params[:rcpt])

      if target_user.nil?
        @response[:status] = :not_found
        @response[:message] = t(".notfound")
        question.delete
        return
      end

      if target_user.blocking?(current_user)
        question.delete
        raise Errors::AskingOtherBlockedSelf
      end
      if current_user&.blocking?(target_user)
        question.delete
        raise Errors::AskingSelfBlockedOther
      end

      if !target_user.privacy_allow_anonymous_questions && question.author_is_anonymous
        question.delete
        return
      end

      unless target_user.mute_rules.any? { |rule| rule.applies_to? question } ||
          (author_is_anonymous && target_user.anonymous_blocks.where(identifier: AnonymousBlock.get_identifier(request.ip)).any?)
        Inbox.create!(user_id: target_user.id, question_id: question.id, new: true)
      end
    end

    @response[:status] = :okay
    @response[:message] = t(".success")
    @response[:success] = true
  end
end
Appease the dog overlords 2022-06-12 04:46:48 -07:00			`# frozen_string_literal: true`

Rename `author_email` field to `author_identifier` 2022-06-14 07:11:00 -07:00			`require "digest"`
Appease the dog overlords 2022-06-12 04:46:48 -07:00			`require "errors"`
Disallow creating questions when blocked by the user being asked 2022-04-18 12:57:54 -07:00
Refactor Ajax::*Controllers Also removed the unused `Ajax::QuestionController#preview` method and route 2020-04-28 11:27:59 -07:00			`class Ajax::QuestionController < AjaxController`
Reporting and Deleting logic 2015-04-25 18:36:25 -07:00			`def destroy`
			`params.require :question`

			`question = Question.find params[:question]`
			`if question.nil?`
Refactor Ajax::*Controllers Also removed the unused `Ajax::QuestionController#preview` method and route 2020-04-28 11:27:59 -07:00			`@response[:status] = :not_found`
Add translations for question ajax controller 2022-07-06 02:23:54 -07:00			`@response[:message] = t(".notfound")`
Reporting and Deleting logic 2015-04-25 18:36:25 -07:00			`return`
			`end`

Check privilege 2015-04-25 18:39:51 -07:00			`if not (current_user.mod? or question.user == current_user)`
Refactor Ajax::*Controllers Also removed the unused `Ajax::QuestionController#preview` method and route 2020-04-28 11:27:59 -07:00			`@response[:status] = :not_authorized`
Add translations for question ajax controller 2022-07-06 02:23:54 -07:00			`@response[:message] = t(".noauth")`
Check privilege 2015-04-25 18:39:51 -07:00			`return`
			`end`

Reporting and Deleting logic 2015-04-25 18:36:25 -07:00			`question.destroy!`

Refactor Ajax::*Controllers Also removed the unused `Ajax::QuestionController#preview` method and route 2020-04-28 11:27:59 -07:00			`@response[:status] = :okay`
Add translations for question ajax controller 2022-07-06 02:23:54 -07:00			`@response[:message] = t(".success")`
Refactor Ajax::*Controllers Also removed the unused `Ajax::QuestionController#preview` method and route 2020-04-28 11:27:59 -07:00			`@response[:success] = true`
Reporting and Deleting logic 2015-04-25 18:36:25 -07:00			`end`

asking questions is now possible! …kinda. 2014-11-10 12:56:30 -08:00			`def create`
			`params.require :question`
			`params.require :anonymousQuestion`
			`params.require :rcpt`

Remove "ask a group" feature 2020-05-25 09:33:09 -07:00			`is_never_anonymous = user_signed_in? && params[:rcpt] == 'followers'`
Prevent anon questions from being sent while blocked 2022-06-14 13:51:31 -07:00			`author_is_anonymous = is_never_anonymous ? false : params[:anonymousQuestion]`
add spec for Ajax::QuestionController also fix some minor annoyances 2020-04-30 13:49:15 -07:00
question#content now has a validation. 2014-12-08 06:34:37 -08:00			`begin`
Rename `author_email` field to `author_identifier` 2022-06-14 07:11:00 -07:00			`question = Question.create!(content: params[:question],`
Prevent anon questions from being sent while blocked 2022-06-14 13:51:31 -07:00			`author_is_anonymous: author_is_anonymous,`
			`author_identifier: AnonymousBlock.get_identifier(request.ip),`
Rename `author_email` field to `author_identifier` 2022-06-14 07:11:00 -07:00			`user: current_user,`
Appease the dog overlords 2022-06-14 15:17:02 -07:00			`direct: params[:rcpt] != "followers")`
New Relic be like: notices your errors OwO what's this? 2020-04-28 11:32:36 -07:00			`rescue ActiveRecord::RecordInvalid => e`
Replace New Relic with Sentry 2021-12-28 09:32:03 -08:00			`Sentry.capture_exception(e)`
Refactor Ajax::*Controllers Also removed the unused `Ajax::QuestionController#preview` method and route 2020-04-28 11:27:59 -07:00			`@response[:status] = :rec_inv`
Add translations for question ajax controller 2022-07-06 02:23:54 -07:00			`@response[:message] = t(".invalid")`
question#content now has a validation. 2014-12-08 06:34:37 -08:00			`return`
			`end`
asking questions is now possible! …kinda. 2014-11-10 12:56:30 -08:00
add spec for Ajax::QuestionController also fix some minor annoyances 2020-04-30 13:49:15 -07:00			`if !user_signed_in? && !question.author_is_anonymous`
			`question.delete`
			`return`
			`end`

now incrementing asked_count 2014-11-10 22:18:34 -08:00			`unless current_user.nil?`
			`current_user.increment! :asked_count unless params[:anonymousQuestion] == 'true'`
			`end`

implemented "ask your followers" 2014-12-07 11:13:45 -08:00			`if params[:rcpt] == 'followers'`
Remove "ask a group" feature 2020-05-25 09:33:09 -07:00			`QuestionWorker.perform_async(current_user.id, question.id) unless current_user.nil?`
implemented "ask your followers" 2014-12-07 11:13:45 -08:00			`else`
Disallow creating questions when blocked by the user being asked 2022-04-18 12:57:54 -07:00			`target_user = User.find_by(id: params[:rcpt])`

			`if target_user.nil?`
Refactor Ajax::*Controllers Also removed the unused `Ajax::QuestionController#preview` method and route 2020-04-28 11:27:59 -07:00			`@response[:status] = :not_found`
Add translations for question ajax controller 2022-07-06 02:23:54 -07:00			`@response[:message] = t(".notfound")`
add spec for Ajax::QuestionController also fix some minor annoyances 2020-04-30 13:49:15 -07:00			`question.delete`
			`return`
			`end`

Add tests for asking questions while blocked 2022-06-12 12:19:37 -07:00			`if target_user.blocking?(current_user)`
			`question.delete`
			`raise Errors::AskingOtherBlockedSelf`
			`end`
			`if current_user&.blocking?(target_user)`
			`question.delete`
			`raise Errors::AskingSelfBlockedOther`
			`end`
Update question controller block handling to account for users not being logged in 2022-06-12 00:28:40 -07:00
Disallow creating questions when blocked by the user being asked 2022-04-18 12:57:54 -07:00			`if !target_user.privacy_allow_anonymous_questions && question.author_is_anonymous`
add spec for Ajax::QuestionController also fix some minor annoyances 2020-04-30 13:49:15 -07:00			`question.delete`
Moved ask all + ask group to worker, validates user_id for ask person now 2015-07-26 23:59:56 -07:00			`return`
			`end`

Prevent other user's anon blocks from affecting each other 2022-06-15 03:38:14 -07:00			`unless target_user.mute_rules.any? { \|rule\| rule.applies_to? question } \|\|`
			`(author_is_anonymous && target_user.anonymous_blocks.where(identifier: AnonymousBlock.get_identifier(request.ip)).any?)`
Disallow creating questions when blocked by the user being asked 2022-04-18 12:57:54 -07:00			`Inbox.create!(user_id: target_user.id, question_id: question.id, new: true)`
Apply mute filters to questions asked directly 2021-12-22 10:45:08 -08:00			`end`
implemented "ask your followers" 2014-12-07 11:13:45 -08:00			`end`
asking questions is now possible! …kinda. 2014-11-10 12:56:30 -08:00
Refactor Ajax::*Controllers Also removed the unused `Ajax::QuestionController#preview` method and route 2020-04-28 11:27:59 -07:00			`@response[:status] = :okay`
Add translations for question ajax controller 2022-07-06 02:23:54 -07:00			`@response[:message] = t(".success")`
Refactor Ajax::*Controllers Also removed the unused `Ajax::QuestionController#preview` method and route 2020-04-28 11:27:59 -07:00			`@response[:success] = true`
Markdown preview through AJAX (/ajax/preview) 2015-04-18 15:17:13 -07:00			`end`
asking questions is now possible! …kinda. 2014-11-10 12:56:30 -08:00			`end`