mastodon/app/controllers/application_controller.rb

# frozen_string_literal: true

class ApplicationController < ActionController::Base
  # Prevent CSRF attacks by raising an exception.
  # For APIs, you may want to use :null_session instead.
  protect_from_forgery with: :exception

  force_ssl if: :https_enabled?

  include Localized
  include UserTrackingConcern

  helper_method :current_account
  helper_method :current_session
  helper_method :current_theme
  helper_method :single_user_mode?
  helper_method :use_seamless_external_login?

  rescue_from ActionController::RoutingError, with: :not_found
  rescue_from ActiveRecord::RecordNotFound, with: :not_found
  rescue_from ActionController::InvalidAuthenticityToken, with: :unprocessable_entity
  rescue_from Mastodon::NotPermittedError, with: :forbidden

  before_action :store_current_location, except: :raise_not_found, unless: :devise_controller?
  before_action :check_suspension, if: :user_signed_in?

  def raise_not_found
    raise ActionController::RoutingError, "No route matches #{params[:unmatched_route]}"
  end

  private

  def https_enabled?
    Rails.env.production?
  end

  def store_current_location
    store_location_for(:user, request.url) unless request.format == :json
  end

  def require_admin!
    forbidden unless current_user&.admin?
  end

  def require_staff!
    forbidden unless current_user&.staff?
  end

  def check_suspension
    forbidden if current_user.account.suspended?
  end

  def after_sign_out_path_for(_resource_or_scope)
    new_user_session_path
  end

  protected

  def forbidden
    respond_with_error(403)
  end

  def not_found
    respond_with_error(404)
  end

  def gone
    respond_with_error(410)
  end

  def unprocessable_entity
    respond_with_error(422)
  end

  def single_user_mode?
    @single_user_mode ||= Rails.configuration.x.single_user_mode && Account.exists?
  end

  def use_seamless_external_login?
    Devise.pam_authentication || Devise.ldap_authentication
  end

  def current_account
    @current_account ||= current_user.try(:account)
  end

  def current_session
    @current_session ||= SessionActivation.find_by(session_id: cookies.signed['_session_id'])
  end

  def current_theme
    return Setting.default_settings['theme'] unless Themes.instance.names.include? current_user&.setting_theme
    current_user.setting_theme
  end

  def cache_collection(raw, klass)
    return raw unless klass.respond_to?(:with_includes)

    raw                    = raw.cache_ids.to_a if raw.is_a?(ActiveRecord::Relation)
    uncached_ids           = []
    cached_keys_with_value = Rails.cache.read_multi(*raw.map(&:cache_key))

    raw.each do |item|
      uncached_ids << item.id unless cached_keys_with_value.key?(item.cache_key)
    end

    klass.reload_stale_associations!(cached_keys_with_value.values) if klass.respond_to?(:reload_stale_associations!)

    unless uncached_ids.empty?
      uncached = klass.where(id: uncached_ids).with_includes.map { |item| [item.id, item] }.to_h

      uncached.each_value do |item|
        Rails.cache.write(item.cache_key, item)
      end
    end

    raw.map { |item| cached_keys_with_value[item.cache_key] || uncached[item.id] }.compact
  end

  def respond_with_error(code)
    respond_to do |format|
      format.any  { head code }
      format.html do
        set_locale
        render "errors/#{code}", layout: 'error', status: code
      end
    end
  end

  def render_cached_json(cache_key, **options)
    options[:expires_in] ||= 3.minutes
    cache_key              = cache_key.join(':') if cache_key.is_a?(Enumerable)
    cache_public           = options.key?(:public) ? options.delete(:public) : true
    content_type           = options.delete(:content_type) || 'application/json'

    data = Rails.cache.fetch(cache_key, { raw: true }.merge(options)) do
      yield.to_json
    end

    expires_in options[:expires_in], public: cache_public
    render json: data, content_type: content_type
  end

  def set_cache_headers
    response.headers['Vary'] = 'Accept'
  end

  def skip_session!
    request.session_options[:skip] = true
  end
end
Fix rubocop issues, introduce usage of frozen literal to improve performance 2016-11-15 07:56:29 -08:00			`# frozen_string_literal: true`

Initial commit 2016-02-20 13:53:20 -08:00			`class ApplicationController < ActionController::Base`
			`# Prevent CSRF attacks by raising an exception.`
			`# For APIs, you may want to use :null_session instead.`
			`protect_from_forgery with: :exception`
Fixing FanOutOnWriteService, fixing Sidekiq not having enough DB connections in the pool, adding a throttle of 60rpm per IP, adding mini profiler, adding admin status to users 2016-03-25 06:12:24 -07:00
Return force_ssl to the controller (#2380) 2017-04-23 17:44:05 -07:00			`force_ssl if: :https_enabled?`

Fix #1165 - before_action was called before protect_from_forgery 2017-04-07 17:30:50 -07:00			`include Localized`
Extract user tracking into concern (#2600) 2017-04-29 15:28:16 -07:00			`include UserTrackingConcern`
Make file attachment on MediaAttachment optional (#1865) Create MediaAttachment but without actual file download when domain is blocked with reject_media set to true Clean up old media files when creating a new domain block with reject_media set to true Return remote_url in media attachments API if local file is not present Undo domain block action in admin UI Ability to enable reject_media from admin UI 2017-04-16 03:51:30 -07:00
			`helper_method :current_account`
Bind web UI access tokens to sessions (#3940) * Add overview of active sessions * Better display of browser/platform name * Improve how browser information is stored and displayed for sessions overview * Fix test * Fix #2347 - Bind web UI access token to session When you logout, session also destroys the access token, so it's no longer valid. If access token is destroyed some other way, the session is also destroyed, requiring a re-login. Fix #1681 - Add scheduler to remove revoked access tokens and grants * Fix test 2017-06-25 14:51:32 -07:00			`helper_method :current_session`
Add support for multiple themes (#4959) * Add support for selecting a theme * Fix codeclimate issues * Look up site default style if current user is not available due to e.g. not being logged in * Remove outdated comment in common.js * Address requested changes in themes PR * Fix codeclimate issues * Explicitly check current_account in application controller and only check theme availability if non-nil * codeclimate * explicit precedence with && * Fix code style in application_controller according to @nightpool's suggestion, use default style in embedded.html.haml * codeclimate: indentation + return 2017-09-19 07:36:23 -07:00			`helper_method :current_theme`
Make file attachment on MediaAttachment optional (#1865) Create MediaAttachment but without actual file download when domain is blocked with reject_media set to true Clean up old media files when creating a new domain block with reject_media set to true Return remote_url in media attachments API if local file is not present Undo domain block action in admin UI Ability to enable reject_media from admin UI 2017-04-16 03:51:30 -07:00			`helper_method :single_user_mode?`
Fix #942: Seamless LDAP login (#6556) 2018-02-28 10:04:53 -08:00			`helper_method :use_seamless_external_login?`
Adding React.js, Redux, revamping dashboard 2016-08-24 08:56:44 -07:00
Fix local follows, 404 in logs 2016-09-07 17:40:51 -07:00			`rescue_from ActionController::RoutingError, with: :not_found`
			`rescue_from ActiveRecord::RecordNotFound, with: :not_found`
Add nice error page for CSRF errors/cookie issue, and fix error page handling altogether 2017-01-14 15:30:23 -08:00			`rescue_from ActionController::InvalidAuthenticityToken, with: :unprocessable_entity`
Add moderator role and add pundit policies for admin actions (#5635) * Add moderator role and add pundit policies for admin actions * Add rake task for turning user into mod and revoking it again * Fix handling of unauthorized exception * Deliver new report e-mails to staff, not just admins * Add promote/demote to admin UI, hide some actions conditionally * Fix unused i18n 2017-11-11 11:23:33 -08:00			`rescue_from Mastodon::NotPermittedError, with: :forbidden`
Fix local follows, 404 in logs 2016-09-07 17:40:51 -07:00
Fix sign-in redirecting "back" to a missing image because missing static files hit the raise_not_found method 2016-10-06 06:42:00 -07:00			`before_action :store_current_location, except: :raise_not_found, unless: :devise_controller?`
Add filters for suspended accounts 2016-12-06 09:03:30 -08:00			`before_action :check_suspension, if: :user_signed_in?`
Redirect after sign in to previous page (unless it's a sign in/up/etc page) 2016-10-02 08:11:08 -07:00
Fix local follows, 404 in logs 2016-09-07 17:40:51 -07:00			`def raise_not_found`
Improve code style 2016-09-29 12:28:21 -07:00			`raise ActionController::RoutingError, "No route matches #{params[:unmatched_route]}"`
Fix local follows, 404 in logs 2016-09-07 17:40:51 -07:00			`end`

Redirect after sign in to previous page (unless it's a sign in/up/etc page) 2016-10-02 08:11:08 -07:00			`private`

Return force_ssl to the controller (#2380) 2017-04-23 17:44:05 -07:00			`def https_enabled?`
Fix force_ssl conditional (#6201) 2018-01-07 06:19:23 -08:00			`Rails.env.production?`
Return force_ssl to the controller (#2380) 2017-04-23 17:44:05 -07:00			`end`

Redirect after sign in to previous page (unless it's a sign in/up/etc page) 2016-10-02 08:11:08 -07:00			`def store_current_location`
Fix #6526: Only store redirect location if not in JSON format (#6528) 2018-02-21 15:51:30 -08:00			`store_location_for(:user, request.url) unless request.format == :json`
Redirect after sign in to previous page (unless it's a sign in/up/etc page) 2016-10-02 08:11:08 -07:00			`end`

Add simple admin overview of PuSH subscriptions 2016-11-28 09:45:13 -08:00			`def require_admin!`
Improve require_admin! and require_staff! filters (#7018) Previously these returns 302 redirects instead of 403s, which meant posting links to admin pages in slack caused them to unfurl, rather than stay as a link. Additionally, require_admin! doesn't appear to be actively used, on require_staff! 2018-04-03 04:07:32 -07:00			`forbidden unless current_user&.admin?`
Add simple admin overview of PuSH subscriptions 2016-11-28 09:45:13 -08:00			`end`

Add moderator role and add pundit policies for admin actions (#5635) * Add moderator role and add pundit policies for admin actions * Add rake task for turning user into mod and revoking it again * Fix handling of unauthorized exception * Deliver new report e-mails to staff, not just admins * Add promote/demote to admin UI, hide some actions conditionally * Fix unused i18n 2017-11-11 11:23:33 -08:00			`def require_staff!`
Improve require_admin! and require_staff! filters (#7018) Previously these returns 302 redirects instead of 403s, which meant posting links to admin pages in slack caused them to unfurl, rather than stay as a link. Additionally, require_admin! doesn't appear to be actively used, on require_staff! 2018-04-03 04:07:32 -07:00			`forbidden unless current_user&.staff?`
Add moderator role and add pundit policies for admin actions (#5635) * Add moderator role and add pundit policies for admin actions * Add rake task for turning user into mod and revoking it again * Fix handling of unauthorized exception * Deliver new report e-mails to staff, not just admins * Add promote/demote to admin UI, hide some actions conditionally * Fix unused i18n 2017-11-11 11:23:33 -08:00			`end`

Add filters for suspended accounts 2016-12-06 09:03:30 -08:00			`def check_suspension`
Show error message to suspended user (#3281) 2017-05-24 07:39:09 -07:00			`forbidden if current_user.account.suspended?`
Add filters for suspended accounts 2016-12-06 09:03:30 -08:00			`end`

Add "signed in as" header to some pages (#4523) 2017-08-04 19:24:58 -07:00			`def after_sign_out_path_for(_resource_or_scope)`
			`new_user_session_path`
			`end`

Fix tests 2016-08-18 08:13:41 -07:00			`protected`

Error responses cleanup (#2692) * Use respond_with_error for forbidden errors * Wrap up common error code into single method 2017-05-01 13:24:36 -07:00			`def forbidden`
			`respond_with_error(403)`
Fix local follows, 404 in logs 2016-09-07 17:40:51 -07:00			`end`

Error responses cleanup (#2692) * Use respond_with_error for forbidden errors * Wrap up common error code into single method 2017-05-01 13:24:36 -07:00			`def not_found`
			`respond_with_error(404)`
Add nice error page for CSRF errors/cookie issue, and fix error page handling altogether 2017-01-14 15:30:23 -08:00			`end`

Error responses cleanup (#2692) * Use respond_with_error for forbidden errors * Wrap up common error code into single method 2017-05-01 13:24:36 -07:00			`def gone`
			`respond_with_error(410)`
ActivityPub: Add basic, read-only support for Outboxes, Notes, and Create/Announce Activities (#2197) * Clean up collapsible components * Expose user Outboxes and AS2 representations of statuses * Save work thus far. * Fix bad merge. * Save my work * Clean up pagination. * First test working. * Add tests. * Add Forbidden error template. * Revert yarn.lock changes. * Fix code style deviations and use localized instead of hardcoded English text. 2017-04-22 20:21:10 -07:00			`end`

Add nice error page for CSRF errors/cookie issue, and fix error page handling altogether 2017-01-14 15:30:23 -08:00			`def unprocessable_entity`
Error responses cleanup (#2692) * Use respond_with_error for forbidden errors * Wrap up common error code into single method 2017-05-01 13:24:36 -07:00			`respond_with_error(422)`
Catching more exceptions that slipped through, removing AR logging from production as it's very verbose and not very useful 2016-10-05 04:26:44 -07:00			`end`

Give SINGLE_USER a chance to register (#1820) An attempt to open a brand new Mastodon instance configured as SINGLE_USER_MODE=true will cause an exception. Enable temporary registration if we have no users in the database Fixes #1817 2017-04-15 07:46:27 -07:00			`def single_user_mode?`
Change "Account.any?" to "Account.exists?" (#3217) 2017-05-22 06:02:30 -07:00			`@single_user_mode \|\|= Rails.configuration.x.single_user_mode && Account.exists?`
Give SINGLE_USER a chance to register (#1820) An attempt to open a brand new Mastodon instance configured as SINGLE_USER_MODE=true will cause an exception. Enable temporary registration if we have no users in the database Fixes #1817 2017-04-15 07:46:27 -07:00			`end`

Fix #942: Seamless LDAP login (#6556) 2018-02-28 10:04:53 -08:00			`def use_seamless_external_login?`
			`Devise.pam_authentication \|\| Devise.ldap_authentication`
pam authentication (#5303) * add pam support, without extra column * bugfixes for pam login * document options * fix code style * fix codestyle * fix tests * don't call remember_me without password * fix codestyle * improve checks for pam usage (should fix tests) * fix remember_me part 1 * add remember_token column because :rememberable requires either a password or this column. * migrate db for remember_token * move pam_authentication to the right place, fix logic bug in edit.html.haml * fix tests * fix pam authentication, improve username lookup, add comment * valid? is sometimes not honored, return nil instead trying to authenticate with pam * update devise_pam_authenticatable2 and adjust code. Fixes sideeffects observed in tests * update devise_pam_authenticatable gem, fixes for codeconventions, fix finding user * codeconvention fixes * code convention fixes * fix idention * update dependency, explicit conflict check * fix disabled password updates if in pam mode * fix check password if password is present, fix templates * block registration if account is maintained by pam * Revert "block registration if account is maintained by pam" This reverts commit 8e7a083d650240b6fac414926744b4b90b435f20. * fix identation error introduced by rebase * block usernames maintained by pam * document pam settings better * fix code style 2018-02-02 01:18:55 -08:00			`end`

Fix tests 2016-08-18 08:13:41 -07:00			`def current_account`
Rename "publish" to "toot" in english locale, fix lightbox showing old image before loading new one, cache notifications API, fix missing follow button on public profiles 2016-11-23 00:20:34 -08:00			`@current_account \|\|= current_user.try(:account)`
Fix tests 2016-08-18 08:13:41 -07:00			`end`
Unify collection caching code 2016-11-29 06:49:39 -08:00
Bind web UI access tokens to sessions (#3940) * Add overview of active sessions * Better display of browser/platform name * Improve how browser information is stored and displayed for sessions overview * Fix test * Fix #2347 - Bind web UI access token to session When you logout, session also destroys the access token, so it's no longer valid. If access token is destroyed some other way, the session is also destroyed, requiring a re-login. Fix #1681 - Add scheduler to remove revoked access tokens and grants * Fix test 2017-06-25 14:51:32 -07:00			`def current_session`
Fix #4058 - Use a long-lived cookie to keep track of user-level sessions (#4091) * Fix #4058 - Use a long-lived cookie to keep track of user-level sessions * Fix tests, smooth migrate from previous session-based identifier 2017-07-07 14:25:15 -07:00			`@current_session \|\|= SessionActivation.find_by(session_id: cookies.signed['_session_id'])`
Bind web UI access tokens to sessions (#3940) * Add overview of active sessions * Better display of browser/platform name * Improve how browser information is stored and displayed for sessions overview * Fix test * Fix #2347 - Bind web UI access token to session When you logout, session also destroys the access token, so it's no longer valid. If access token is destroyed some other way, the session is also destroyed, requiring a re-login. Fix #1681 - Add scheduler to remove revoked access tokens and grants * Fix test 2017-06-25 14:51:32 -07:00			`end`

Add support for multiple themes (#4959) * Add support for selecting a theme * Fix codeclimate issues * Look up site default style if current user is not available due to e.g. not being logged in * Remove outdated comment in common.js * Address requested changes in themes PR * Fix codeclimate issues * Explicitly check current_account in application controller and only check theme availability if non-nil * codeclimate * explicit precedence with && * Fix code style in application_controller according to @nightpool's suggestion, use default style in embedded.html.haml * codeclimate: indentation + return 2017-09-19 07:36:23 -07:00			`def current_theme`
			`return Setting.default_settings['theme'] unless Themes.instance.names.include? current_user&.setting_theme`
			`current_user.setting_theme`
			`end`

Unify collection caching code 2016-11-29 06:49:39 -08:00			`def cache_collection(raw, klass)`
Further abstract caching for includes 2016-11-30 06:57:56 -08:00			`return raw unless klass.respond_to?(:with_includes)`

Fix #248 - Reload all accounts when fetching from cache 2016-12-03 09:21:26 -08:00			`raw = raw.cache_ids.to_a if raw.is_a?(ActiveRecord::Relation)`
Unify collection caching code 2016-11-29 06:49:39 -08:00			`uncached_ids = []`
			`cached_keys_with_value = Rails.cache.read_multi(*raw.map(&:cache_key))`

			`raw.each do \|item\|`
			`uncached_ids << item.id unless cached_keys_with_value.key?(item.cache_key)`
			`end`

Fix #248 - Reload all accounts when fetching from cache 2016-12-03 09:21:26 -08:00			`klass.reload_stale_associations!(cached_keys_with_value.values) if klass.respond_to?(:reload_stale_associations!)`

Unify collection caching code 2016-11-29 06:49:39 -08:00			`unless uncached_ids.empty?`
			`uncached = klass.where(id: uncached_ids).with_includes.map { \|item\| [item.id, item] }.to_h`

Fix some rubocop style issues (#5730) 2017-11-16 17:06:26 -08:00			`uncached.each_value do \|item\|`
Unify collection caching code 2016-11-29 06:49:39 -08:00			`Rails.cache.write(item.cache_key, item)`
			`end`
			`end`

			`raw.map { \|item\| cached_keys_with_value[item.cache_key] \|\| uncached[item.id] }.compact`
			`end`
Fix #2195 - Set locale to error pages (#2255) * Fix #2195 - Set locale to error pages * Fix #2195 - Cut duplicate process into one method 2017-04-21 09:11:20 -07:00
			`def respond_with_error(code)`
Error responses cleanup (#2692) * Use respond_with_error for forbidden errors * Wrap up common error code into single method 2017-05-01 13:24:36 -07:00			`respond_to do \|format\|`
			`format.any { head code }`
			`format.html do`
			`set_locale`
			`render "errors/#{code}", layout: 'error', status: code`
			`end`
			`end`
Fix #2195 - Set locale to error pages (#2255) * Fix #2195 - Set locale to error pages * Fix #2195 - Cut duplicate process into one method 2017-04-21 09:11:20 -07:00			`end`
Add more instance stats APIs (#6125) * Add GET /api/v1/instance/peers API to reveal known domains * Add GET /api/v1/instance/activity API * Make new APIs disableable, exclude private statuses from activity stats * Fix code style issue * Fix week timestamps 2017-12-29 10:52:04 -08:00
			`def render_cached_json(cache_key, **options)`
Cache JSON of immutable ActivityPub representations (#6171) 2018-01-03 16:21:38 -08:00			`options[:expires_in] \|\|= 3.minutes`
			`cache_key = cache_key.join(':') if cache_key.is_a?(Enumerable)`
Fix unintended cache (#6214) 2018-01-07 06:12:59 -08:00			`cache_public = options.key?(:public) ? options.delete(:public) : true`
Cache JSON of immutable ActivityPub representations (#6171) 2018-01-03 16:21:38 -08:00			`content_type = options.delete(:content_type) \|\| 'application/json'`

Add more instance stats APIs (#6125) * Add GET /api/v1/instance/peers API to reveal known domains * Add GET /api/v1/instance/activity API * Make new APIs disableable, exclude private statuses from activity stats * Fix code style issue * Fix week timestamps 2017-12-29 10:52:04 -08:00			`data = Rails.cache.fetch(cache_key, { raw: true }.merge(options)) do`
			`yield.to_json`
			`end`

Fix unintended cache (#6214) 2018-01-07 06:12:59 -08:00			`expires_in options[:expires_in], public: cache_public`
Cache JSON of immutable ActivityPub representations (#6171) 2018-01-03 16:21:38 -08:00			`render json: data, content_type: content_type`
			`end`

			`def set_cache_headers`
			`response.headers['Vary'] = 'Accept'`
			`end`

			`def skip_session!`
			`request.session_options[:skip] = true`
Add more instance stats APIs (#6125) * Add GET /api/v1/instance/peers API to reveal known domains * Add GET /api/v1/instance/activity API * Make new APIs disableable, exclude private statuses from activity stats * Fix code style issue * Fix week timestamps 2017-12-29 10:52:04 -08:00			`end`
Initial commit 2016-02-20 13:53:20 -08:00			`end`