mirror of
https://github.com/basecamp/once-campfire.git
synced 2026-02-21 20:20:34 +09:00
30fe6ab121
This adds the ability to ban a user by their IP address. When an admin is viewing a user profile, a new "Ban user" button is present. Clicking on that will: - Create a ban on the IP addresses that were tracked for that user's sessions - Remove all the messages authored by that user - Log the user out immediately In addition, that user will no longer be shown in most user lists in the app. They are still shown to admins, in account settings. Viewing their profile from there will now show a "Remove ban" button which can be used to restore their access (it doesn't restore their messages though -- those are already gone -- it just removes the blocks so they can log in again).
83 lines
2.0 KiB
Ruby
83 lines
2.0 KiB
Ruby
class MessagesController < ApplicationController
|
|
include ActiveStorage::SetCurrent, RoomScoped
|
|
|
|
before_action :set_room, except: :create
|
|
before_action :set_message, only: %i[ show edit update destroy ]
|
|
before_action :ensure_can_administer, only: %i[ edit update destroy ]
|
|
|
|
layout false, only: :index
|
|
|
|
def index
|
|
@messages = find_paged_messages
|
|
|
|
if @messages.any?
|
|
fresh_when @messages
|
|
else
|
|
head :no_content
|
|
end
|
|
end
|
|
|
|
def create
|
|
set_room
|
|
@message = @room.messages.create_with_attachment!(message_params)
|
|
|
|
@message.broadcast_create
|
|
deliver_webhooks_to_bots
|
|
rescue ActiveRecord::RecordNotFound
|
|
render action: :room_not_found
|
|
end
|
|
|
|
def show
|
|
end
|
|
|
|
def edit
|
|
end
|
|
|
|
def update
|
|
@message.update!(message_params)
|
|
|
|
@message.broadcast_replace_to @room, :messages, target: [ @message, :presentation ], partial: "messages/presentation", attributes: { maintain_scroll: true }
|
|
redirect_to room_message_url(@room, @message)
|
|
end
|
|
|
|
def destroy
|
|
@message.destroy
|
|
@message.broadcast_remove
|
|
end
|
|
|
|
private
|
|
def set_message
|
|
@message = @room.messages.find(params[:id])
|
|
end
|
|
|
|
def ensure_can_administer
|
|
head :forbidden unless Current.user.can_administer?(@message)
|
|
end
|
|
|
|
|
|
def find_paged_messages
|
|
case
|
|
when params[:before].present?
|
|
@room.messages.with_creator.page_before(@room.messages.find(params[:before]))
|
|
when params[:after].present?
|
|
@room.messages.with_creator.page_after(@room.messages.find(params[:after]))
|
|
else
|
|
@room.messages.with_creator.last_page
|
|
end
|
|
end
|
|
|
|
|
|
def message_params
|
|
params.require(:message).permit(:body, :attachment, :client_message_id)
|
|
end
|
|
|
|
|
|
def deliver_webhooks_to_bots
|
|
bots_eligible_for_webhook.excluding(@message.creator).each { |bot| bot.deliver_webhook_later(@message) }
|
|
end
|
|
|
|
def bots_eligible_for_webhook
|
|
@room.direct? ? @room.users.active_bots : @message.mentionees.active_bots
|
|
end
|
|
end
|