]> git.openstreetmap.org Git - rails.git/blob - app/controllers/diary_entry_controller.rb
projects / rails.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
Escape message titles and bodies. This is an emergency fix as some genius
[rails.git] / app / controllers / diary_entry_controller.rb
1 class DiaryEntryController < ApplicationController
2   layout 'site'
3   
4   before_filter :authorize_web
5   before_filter :require_user, :only => [:new]
6
7   def new
8     @title = 'new diary entry'
9     if params[:diary_entry]     
10       @diary_entry = DiaryEntry.new(params[:diary_entry])
11       @diary_entry.user = @user
12       if @diary_entry.save 
13         redirect_to :controller => 'diary_entry', :action => 'list', :display_name => @user.display_name 
14       end
15     end
16   end
17   
18   def list
19     if params[:display_name]
20       @this_user = User.find_by_display_name(params[:display_name])
21       @title = @this_user.display_name + "'s diary"
22       if params[:id]
23         @entries=DiaryEntry.find(:all, :conditions => ['user_id = ? AND id = ?', @this_user.id, params[:id]])
24       else
25         @entries=DiaryEntry.find(:all, :conditions => ['user_id = ?', @this_user.id], :order => 'created_at DESC')
26       end
27     else
28       @title = 'recent diary entries'
29       @entries=DiaryEntry.find(:all, :order => 'created_at DESC', :limit => 20)
30     end
31   end
32
33   def rss
34     if params[:display_name]
35       @this_user = User.find_by_display_name(params[:display_name])
36       @entries=DiaryEntry.find(:all, :conditions => ['user_id = ?', @this_user.id], :order => 'created_at DESC', :limit => 20)
37       rss = OSM::GeoRSS.new("OpenStreetMap diary entries for #{@this_user.display_name}", "Recent OpenStreetmap diary entries from #{@this_user.display_name}", "http://www.openstreetmap.org/user/#{@this_user.display_name}/diary") 
38     else
39       @entries=DiaryEntry.find(:all, :order => 'created_at DESC', :limit => 20)
40       rss = OSM::GeoRSS.new('OpenStreetMap diary entries', 'Recent diary entries from users of OpenStreetMap', 'http://www.openstreetmap.org/diary') 
41     end
42
43     @entries.each do |entry|
44       rss.add(entry.latitude, entry.longitude, entry.title, entry.user.display_name, url_for({:controller => 'diary_entry', :action => 'list', :id => entry.id, :display_name => entry.user.display_name}), entry.body, entry.created_at)
45     end
46
47     render :text => rss.to_s, :content_type => "application/rss+xml"
48   end
49
50 end
The OpenStreetMap web site