1 class DiaryEntriesController < ApplicationController
3 include PaginationMethods
5 layout "site", :except => :rss
7 before_action :authorize_web
8 before_action :set_locale
9 before_action :check_database_readable
13 before_action :lookup_user, :only => :show
14 before_action :check_database_writable, :only => [:new, :create, :edit, :update, :comment, :hide, :hidecomment, :subscribe, :unsubscribe]
16 allow_thirdparty_images :only => [:new, :create, :edit, :update, :index, :show]
19 if params[:display_name]
20 @user = User.active.find_by(:display_name => params[:display_name])
23 @title = t ".user_title", :user => @user.display_name
24 entries = @user.diary_entries
26 render_unknown_user params[:display_name]
29 elsif params[:friends]
31 @title = t ".title_friends"
32 entries = DiaryEntry.where(:user => current_user.friends)
39 @title = t ".title_nearby"
40 entries = DiaryEntry.where(:user => current_user.nearby)
46 entries = DiaryEntry.joins(:user).where(:users => { :status => %w[active confirmed] })
49 @title = t ".in_language_title", :language => Language.find(params[:language]).english_name
50 entries = entries.where(:language_code => params[:language])
52 candidate_codes = preferred_languages.flat_map(&:candidates).uniq.map(&:to_s)
53 @languages = Language.where(:code => candidate_codes).in_order_of(:code, candidate_codes)
58 entries = entries.visible unless can? :unhide, DiaryEntry
60 @params = params.permit(:display_name, :friends, :nearby, :language)
62 @entries, @newer_entries_id, @older_entries_id = get_page_items(entries, :includes => [:user, :language])
66 entries = @user.diary_entries
67 entries = entries.visible unless can? :unhide, DiaryEntry
68 @entry = entries.find_by(:id => params[:id])
70 @title = t ".title", :user => params[:display_name], :title => @entry.title
71 @og_image = @entry.body.image
72 @comments = can?(:unhidecomment, DiaryEntry) ? @entry.comments : @entry.visible_comments
74 @title = t "diary_entries.no_such_entry.title", :id => params[:id]
75 render :action => "no_such_entry", :status => :not_found
82 default_lang = current_user.preferences.find_by(:k => "diary.default_language")
83 lang_code = default_lang ? default_lang.v : current_user.preferred_language
84 @diary_entry = DiaryEntry.new(entry_params.merge(:language_code => lang_code))
86 render :action => "new"
91 @diary_entry = DiaryEntry.find(params[:id])
93 redirect_to diary_entry_path(@diary_entry.user, @diary_entry) if current_user != @diary_entry.user
96 rescue ActiveRecord::RecordNotFound
97 render :action => "no_such_entry", :status => :not_found
101 @title = t "diary_entries.new.title"
103 @diary_entry = DiaryEntry.new(entry_params)
104 @diary_entry.user = current_user
107 default_lang = current_user.preferences.find_by(:k => "diary.default_language")
109 default_lang.v = @diary_entry.language_code
112 current_user.preferences.create(:k => "diary.default_language", :v => @diary_entry.language_code)
115 # Subscribe user to diary comments
116 @diary_entry.subscriptions.create(:user => current_user)
118 redirect_to :action => "index", :display_name => current_user.display_name
120 render :action => "new"
125 @title = t "diary_entries.edit.title"
126 @diary_entry = DiaryEntry.find(params[:id])
128 if current_user != @diary_entry.user ||
129 (params[:diary_entry] && @diary_entry.update(entry_params))
130 redirect_to diary_entry_path(@diary_entry.user, @diary_entry)
133 render :action => "edit"
135 rescue ActiveRecord::RecordNotFound
136 render :action => "no_such_entry", :status => :not_found
140 @entry = DiaryEntry.find(params[:id])
141 @comments = @entry.visible_comments
142 @diary_comment = @entry.comments.build(comment_params)
143 @diary_comment.user = current_user
144 if @diary_comment.save
146 # Notify current subscribers of the new comment
147 @entry.subscribers.visible.each do |user|
148 UserMailer.diary_comment_notification(@diary_comment, user).deliver_later if current_user != user
151 # Add the commenter to the subscribers if necessary
152 @entry.subscriptions.create(:user => current_user) unless @entry.subscribers.exists?(current_user.id)
154 redirect_to diary_entry_path(@entry.user, @entry)
156 render :action => "show"
158 rescue ActiveRecord::RecordNotFound
159 render :action => "no_such_entry", :status => :not_found
163 @diary_entry = DiaryEntry.find(params[:id])
166 @diary_entry.subscriptions.create(:user => current_user) unless @diary_entry.subscribers.exists?(current_user.id)
168 redirect_to diary_entry_path(@diary_entry.user, @diary_entry)
170 rescue ActiveRecord::RecordNotFound
171 render :action => "no_such_entry", :status => :not_found
175 @diary_entry = DiaryEntry.find(params[:id])
178 @diary_entry.subscriptions.where(:user => current_user).delete_all if @diary_entry.subscribers.exists?(current_user.id)
180 redirect_to diary_entry_path(@diary_entry.user, @diary_entry)
182 rescue ActiveRecord::RecordNotFound
183 render :action => "no_such_entry", :status => :not_found
187 if params[:display_name]
188 user = User.active.find_by(:display_name => params[:display_name])
191 @entries = user.diary_entries
192 @title = t("diary_entries.feed.user.title", :user => user.display_name)
193 @description = t("diary_entries.feed.user.description", :user => user.display_name)
194 @link = url_for :action => "index", :display_name => user.display_name, :host => Settings.server_url, :protocol => Settings.server_protocol
200 @entries = DiaryEntry.joins(:user).where(:users => { :status => %w[active confirmed] })
202 # Items can't be flagged as deleted in the RSS format.
203 # For the general feeds, allow a delay before publishing, to help spam fighting
204 @entries = @entries.where("created_at < :time", :time => Settings.diary_feed_delay.hours.ago)
207 @entries = @entries.where(:language_code => params[:language])
208 @title = t("diary_entries.feed.language.title", :language_name => Language.find(params[:language]).english_name)
209 @description = t("diary_entries.feed.language.description", :language_name => Language.find(params[:language]).english_name)
210 @link = url_for :action => "index", :language => params[:language], :host => Settings.server_url, :protocol => Settings.server_protocol
212 @title = t("diary_entries.feed.all.title")
213 @description = t("diary_entries.feed.all.description")
214 @link = url_for :action => "index", :host => Settings.server_url, :protocol => Settings.server_protocol
217 @entries = @entries.visible.includes(:user).order("created_at DESC").limit(20)
221 entry = DiaryEntry.find(params[:id])
222 entry.update(:visible => false)
223 redirect_to :action => "index", :display_name => entry.user.display_name
227 entry = DiaryEntry.find(params[:id])
228 entry.update(:visible => true)
229 redirect_to :action => "index", :display_name => entry.user.display_name
233 comment = DiaryComment.find(params[:comment])
234 comment.update(:visible => false)
235 redirect_to diary_entry_path(comment.diary_entry.user, comment.diary_entry)
239 comment = DiaryComment.find(params[:comment])
240 comment.update(:visible => true)
241 redirect_to diary_entry_path(comment.diary_entry.user, comment.diary_entry)
247 # return permitted diary entry parameters
249 params.require(:diary_entry).permit(:title, :body, :language_code, :latitude, :longitude)
250 rescue ActionController::ParameterMissing
251 ActionController::Parameters.new.permit(:title, :body, :language_code, :latitude, :longitude)
255 # return permitted diary comment parameters
257 params.require(:diary_comment).permit(:body)
261 # decide on a location for the diary entry map
263 if @diary_entry.latitude && @diary_entry.longitude
264 @lon = @diary_entry.longitude
265 @lat = @diary_entry.latitude
267 elsif !current_user.home_location?
268 @lon = params[:lon] || -0.1
269 @lat = params[:lat] || 51.5
270 @zoom = params[:zoom] || 4
272 @lon = current_user.home_lon
273 @lat = current_user.home_lat