miteruzo
/
btrc-hub
1
0
Fork 0
Code Issues 36 Pull Requests 0 Releases 0 Wiki Activity
ぼざクリ タグ広場 https://hub.nizika.monster
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
30 Commits
2 Branches
40 MiB
 
 
 
 
 
 
Tree: 5b8a560024
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '5b8a560024'
${ noResults }
btrc-hub/backend/app/controllers/posts_controller.rb

98 lines
2.5 KiB
Raw Blame History 

  1. require 'open-uri'

  2. require 'nokogiri'

  3. 

  4. 

  5. class PostsController < ApplicationController

  6.   before_action :set_post, only: %i[ show update destroy ]

  7. 

  8.   # GET /posts

  9.   def index

  10.     if params[:tags].present?

  11.       tag_names = params[:tags].split(',')

  12.       match_type = params[:match]

  13.       if match_type == 'any'

  14.         posts = Post.joins(:tags).where(tags: { name: tag_names }).distinct

  15.       else

  16.         posts = Post.joins(:tags)

  17.         tag_names.each do |tag|

  18.           posts = posts.where(id: Post.joins(:tags).where(tags: { name: tag }))

  19.         end

  20.         posts = posts.distinct

  21.       end

  22.     else

  23.       posts = Post.all

  24.     end

  25.     render json: posts.as_json(include: { tags: { only: [:id, :name, :category] } })

  26.   end

  27. 

  28.   # GET /posts/1

  29.   def show

  30.     post = Post.includes(:tags).find(params[:id])

  31.     viewed = current_user&.viewed?(post)

  32.     render json: (post

  33.                   .as_json(include: { tags: { only: [:id, :name, :category] } })

  34.                   .merge(viewed: viewed))

  35.   end

  36. 

  37.   # POST /posts

  38.   def create

  39.     return head :unauthorized unless current_user

  40.     return head :forbidden unless ['admin', 'member'].include?(current_user.role)

  41. 

  42.     # TODO: URL が正規のものがチェック,不正ならエラー

  43.     title = params[:title]

  44.     post = Post.new(title: title, url: params[:url], thumbnail_base: '', uploaded_user: current_user)

  45.     post.thumbnail.attach(params[:thumbnail])

  46.     if post.save

  47.       post.resized_thumbnail!

  48.       if params[:tags].present?

  49.         tag_ids = JSON.parse(params[:tags])

  50.         post.tags = Tag.where(id: tag_ids)

  51.       end

  52.       render json: post, status: :created

  53.     else

  54.       render json: { errors: post.errors.full_messages }, status: :unprocessable_entity

  55.     end

  56.   end

  57. 

  58.   def viewed

  59.     return head :unauthorized unless current_user

  60. 

  61.     current_user.viewed_posts << Post.find(params[:id])

  62.     head :no_content

  63.   end

  64. 

  65.   def unviewed

  66.     return head :unauthorized unless current_user

  67. 

  68.     current_user.viewed_posts.delete(Post.find(params[:id]))

  69.     head :no_content

  70.   end

  71. 

  72.   # PATCH/PUT /posts/1

  73.   def update

  74.     if @post.update(post_params)

  75.       render json: @post

  76.     else

  77.       render json: @post.errors, status: :unprocessable_entity

  78.     end

  79.   end

  80. 

  81.   # DELETE /posts/1

  82.   def destroy

  83.     @post.destroy!

  84.   end

  85. 

  86.   private

  87. 

  88.   # Use callbacks to share common setup or constraints between actions.

  89.   def set_post

  90.     @post = Post.find(params.expect(:id))

  91.   end

  92. 

  93.   # Only allow a list of trusted parameters through.

  94.   def post_params

  95.     params.expect(post: [ :title, :body ])

  96.   end

  97. end