jaculabilis/danbooru
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
Files
0997f5595e170ac4e19d3532fc34641f092a18a9
danbooru/app/controllers/forum_posts_controller.rb
evazion 2e9f4dc2f4 controllers: refactor rate limits. 
Refactor controllers so that endpoint rate limits are declared locally,
with the endpoint, instead of globally, in a single method in ApplicationController.

This way an endpoint's rate limit is declared in the same file as the
endpoint itself.

This is so we can add fine-grained rate limits for certain GET requests.
Before rate limits were only for non-GET requests.
2021-12-10 01:46:01 -06:00

65 lines
1.9 KiB
Ruby
Raw Blame History

class ForumPostsController < ApplicationController
respond_to :html, :xml, :json, :js
rate_limit :create, rate: 1.0/1.minute, burst: 50
def new
@forum_post = authorize ForumPost.new_reply(params)
respond_with(@forum_post)
end
def edit
@forum_post = authorize ForumPost.find(params[:id])
respond_with(@forum_post)
end
def index
@forum_posts = authorize ForumPost.visible(CurrentUser.user).paginated_search(params)
@forum_posts = @forum_posts.includes(:topic, :creator) if request.format.html?
respond_with(@forum_posts)
end
def search
end
def show
@forum_post = authorize ForumPost.find(params[:id])
respond_with(@forum_post) do |format|
format.html do
page = @forum_post.forum_topic_page
page = nil if page == 1
redirect_to forum_topic_path(@forum_post.topic, page: page, anchor: "forum_post_#{@forum_post.id}")
end
end
end
def create
@forum_post = authorize ForumPost.new(creator: CurrentUser.user, topic_id: params.dig(:forum_post, :topic_id))
@forum_post.update(permitted_attributes(@forum_post))
page = @forum_post.topic.last_page if @forum_post.topic.last_page > 1
respond_with(@forum_post, :location => forum_topic_path(@forum_post.topic, :page => page))
end
def update
@forum_post = authorize ForumPost.find(params[:id])
@forum_post.update(permitted_attributes(@forum_post))
page = @forum_post.forum_topic_page if @forum_post.forum_topic_page > 1
respond_with(@forum_post, :location => forum_topic_path(@forum_post.topic, :page => page, :anchor => "forum_post_#{@forum_post.id}"))
end
def destroy
@forum_post = authorize ForumPost.find(params[:id])
@forum_post.delete!
respond_with(@forum_post)
end
def undelete
@forum_post = authorize ForumPost.find(params[:id])
@forum_post.undelete!
respond_with(@forum_post)
end
end
Reference in New Issue View Git Blame Copy Permalink