Retrospring/app/controllers/ajax/question_controller.rb

# frozen_string_literal: true

require "digest"
require "errors"

class Ajax::QuestionController < AjaxController
  def destroy
    params.require :question

    question = Question.find params[:question]
    if question.nil?
      @response[:status] = :not_found
      @response[:message] = I18n.t('messages.question.destroy.not_found')
      return
    end

    if not (current_user.mod? or question.user == current_user)
      @response[:status] = :not_authorized
      @response[:message] = I18n.t('messages.question.destroy.not_authorized')
      return
    end

    question.destroy!

    @response[:status] = :okay
    @response[:message] = I18n.t('messages.question.destroy.okay')
    @response[:success] = true
  end

  def create
    params.require :question
    params.require :anonymousQuestion
    params.require :rcpt

    is_never_anonymous = user_signed_in? && params[:rcpt] == 'followers'
    author_is_anonymous = is_never_anonymous ? false : params[:anonymousQuestion]

    begin
      question = Question.create!(content:             params[:question],
                                  author_is_anonymous: author_is_anonymous,
                                  author_identifier:   AnonymousBlock.get_identifier(request.ip),
                                  user:                current_user,
                                  direct:              params[:rcpt] != 'followers')
    rescue ActiveRecord::RecordInvalid => e
      Sentry.capture_exception(e)
      @response[:status] = :rec_inv
      @response[:message] = I18n.t('messages.question.create.rec_inv')
      return
    end

    if !user_signed_in? && !question.author_is_anonymous
      question.delete
      return
    end

    unless current_user.nil?
      current_user.increment! :asked_count unless params[:anonymousQuestion] == 'true'
    end

    if params[:rcpt] == 'followers'
      QuestionWorker.perform_async(current_user.id, question.id) unless current_user.nil?
    else
      target_user = User.find_by(id: params[:rcpt])

      if target_user.nil?
        @response[:status] = :not_found
        @response[:message] = I18n.t('messages.question.create.not_found')
        question.delete
        return
      end

      if target_user.blocking?(current_user)
        question.delete
        raise Errors::AskingOtherBlockedSelf
      end
      if current_user&.blocking?(target_user)
        question.delete
        raise Errors::AskingSelfBlockedOther
      end

      if !target_user.privacy_allow_anonymous_questions && question.author_is_anonymous
        question.delete
        return
      end

      unless MuteRule.where(user: target_user).any? { |rule| rule.applies_to? question } ||
          (author_is_anonymous && AnonymousBlock.where(identifier: AnonymousBlock.get_identifier(request.ip)).any?)
        Inbox.create!(user_id: target_user.id, question_id: question.id, new: true)
      end
    end

    @response[:status] = :okay
    @response[:message] = I18n.t('messages.question.create.okay')
    @response[:success] = true
  end
end