forked from fedi/mastodon
1f6ed4f86a
* Add more granular OAuth scopes * Add human-readable descriptions of the new scopes * Ensure new scopes look good on the app UI * Add tests * Group scopes in screen and color-code dangerous ones * Fix wrong extra scope
78 lines
1.7 KiB
Ruby
78 lines
1.7 KiB
Ruby
# frozen_string_literal: true
|
|
|
|
class Api::V1::Statuses::FavouritedByAccountsController < Api::BaseController
|
|
include Authorization
|
|
|
|
before_action -> { authorize_if_got_token! :read, :'read:accounts' }
|
|
before_action :set_status
|
|
after_action :insert_pagination_headers
|
|
|
|
respond_to :json
|
|
|
|
def index
|
|
@accounts = load_accounts
|
|
render json: @accounts, each_serializer: REST::AccountSerializer
|
|
end
|
|
|
|
private
|
|
|
|
def load_accounts
|
|
default_accounts.merge(paginated_favourites).to_a
|
|
end
|
|
|
|
def default_accounts
|
|
Account
|
|
.includes(:favourites)
|
|
.references(:favourites)
|
|
.where(favourites: { status_id: @status.id })
|
|
end
|
|
|
|
def paginated_favourites
|
|
Favourite.paginate_by_max_id(
|
|
limit_param(DEFAULT_ACCOUNTS_LIMIT),
|
|
params[:max_id],
|
|
params[:since_id]
|
|
)
|
|
end
|
|
|
|
def insert_pagination_headers
|
|
set_pagination_headers(next_path, prev_path)
|
|
end
|
|
|
|
def next_path
|
|
if records_continue?
|
|
api_v1_status_favourited_by_index_url pagination_params(max_id: pagination_max_id)
|
|
end
|
|
end
|
|
|
|
def prev_path
|
|
unless @accounts.empty?
|
|
api_v1_status_favourited_by_index_url pagination_params(since_id: pagination_since_id)
|
|
end
|
|
end
|
|
|
|
def pagination_max_id
|
|
@accounts.last.favourites.last.id
|
|
end
|
|
|
|
def pagination_since_id
|
|
@accounts.first.favourites.first.id
|
|
end
|
|
|
|
def records_continue?
|
|
@accounts.size == limit_param(DEFAULT_ACCOUNTS_LIMIT)
|
|
end
|
|
|
|
def set_status
|
|
@status = Status.find(params[:status_id])
|
|
authorize @status, :show?
|
|
rescue Mastodon::NotPermittedError
|
|
# Reraise in order to get a 404 instead of a 403 error code
|
|
raise ActiveRecord::RecordNotFound
|
|
end
|
|
|
|
def pagination_params(core_params)
|
|
params.slice(:limit).permit(:limit).merge(core_params)
|
|
end
|
|
end
|