add RequestStore gem, support universal only param for api endpoints (fixes #4068)

2019-04-17 12:00:19 -07:00
parent c18cf5480d
commit a12f6badde
6 changed files with 38 additions and 2 deletions
--- a/1
+++ b/1
@@ -52,6 +52,7 @@ gem 'jquery-rails'
 gem 'webpacker', '>= 4.0.x'
 gem 'retriable'
 gem 'redis'
 gem 'request_store'
 # needed for looser jpeg header compat
 gem 'ruby-imagespec', :require => "image_spec", :git => "https://github.com/r888888888/ruby-imagespec.git", :branch => "exif-fixes"
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -319,6 +319,8 @@ GEM
    ref (2.0.0)
    representable (2.3.0)
      uber (~> 0.0.7)
    request_store (1.4.1)
      rack (>= 1.4)
    responders (2.4.0)
      actionpack (>= 4.2.0, < 5.3)
      railties (>= 4.2.0, < 5.3)
@@ -492,6 +494,7 @@ DEPENDENCIES
  rakismet
  recaptcha
  redis
  request_store
  responders
  retriable
  ruby-imagespec!
--- a/app/controllers/application_controller.rb
+++ b/app/controllers/application_controller.rb
@@ -10,6 +10,7 @@ class ApplicationController < ActionController::Base
  before_action :api_check
  before_action :set_safe_mode
  before_action :set_variant
  before_action :track_only_param
  # before_action :secure_cookies_check
  layout "default"
  helper_method :show_moderation_notice?
@@ -48,6 +49,12 @@ class ApplicationController < ActionController::Base
    end
  end
  def track_only_param
    if params[:only]
      RequestStore[:only_param] = params[:only].split(/,/)
    end
  end
  def api_check
    if !CurrentUser.is_anonymous? && !request.get? && !request.head?
      if CurrentUser.user.token_bucket.nil?
--- a/app/controllers/post_versions_controller.rb
+++ b/app/controllers/post_versions_controller.rb
@@ -7,7 +7,7 @@ class PostVersionsController < ApplicationController
    @post_versions = PostArchive.includes(:updater, post: [:versions]).search(search_params).paginate(params[:page], :limit => params[:limit], :search_count => params[:search])
    respond_with(@post_versions) do |format|
      format.xml do
-        render :xml => @post_versions.to_xml(:root => "post-versions")
+        render xml: @post_versions.to_xml(root: "post-versions")
      end
    end
  end
--- a/app/controllers/posts_controller.rb
+++ b/app/controllers/posts_controller.rb
@@ -14,7 +14,7 @@ class PostsController < ApplicationController
      respond_with(@posts) do |format|
        format.atom
        format.xml do
-          render :xml => @posts.to_xml(:root => "posts")
+          render xml: @posts.to_xml(root: "posts")
        end
      end
    end
--- a/app/models/application_record.rb
+++ b/app/models/application_record.rb
@@ -149,12 +149,25 @@ class ApplicationRecord < ActiveRecord::Base
    def as_json(options = {})
      options ||= {}
      options[:except] ||= []
      options[:except] += hidden_attributes
      options[:methods] ||= []
      options[:methods] += method_attributes
      if !options.key?(:only) && RequestStore.exist?(:only_param)
        options[:only] = RequestStore[:only_param]
      end
      if options[:only].is_a?(String)
        options[:only] = options[:only].split(/,/)
      end
      if options[:only]
        options[:methods] = options[:methods] & options[:only]
      end
      super(options)
    end
@@ -167,6 +180,18 @@ class ApplicationRecord < ActiveRecord::Base
      options[:methods] ||= []
      options[:methods] += method_attributes
      if !options.key?(:only) && RequestStore.exist?(:only_param)
        options[:only] = RequestStore[:only_param]
      end
      if options[:only].is_a?(String)
        options[:only] = options[:only].split(/,/)
      end
      if options[:only]
        options[:methods] = options[:methods] & options[:only]
      end
      super(options, &block)
    end