Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

✨ add experimental endpoint to search for status bodies #3065

Open
wants to merge 2 commits into
base: develop
Choose a base branch
from
Open

✨ add experimental endpoint to search for status bodies #3065

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
751c891
:sparkles: add experimental endpoint to search for status bodies
MrKrisKrisu Dec 29, 2024
2a48641
:recycle: centralize user filter logic and remove code duplication
MrKrisKrisu Jan 1, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
33 changes: 31 additions & 2 deletions app/Http/Controllers/API/v1/StatusController.php
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -18,6 +18,7 @@
use App\Models\Stopover;
use App\Models\Trip;
use Illuminate\Auth\Access\AuthorizationException;
use Illuminate\Database\Eloquent\Builder;
use Illuminate\Database\Eloquent\ModelNotFoundException;
use Illuminate\Http\JsonResponse;
use Illuminate\Http\Request;
Expand All @@ -29,7 +30,6 @@
use Illuminate\Validation\Rules\Enum;
use Illuminate\Validation\ValidationException;
use InvalidArgumentException;
use OpenApi\Annotations as OA;

class StatusController extends Controller
{
Expand Down Expand Up @@ -251,6 +251,35 @@ public function getLivePositionForStatus($ids): AnonymousResourceCollection {
return JsonResource::collection(StatusBackend::getLivePositionForStatus($ids));
}

/**
* Experimental - do not add to docs now.
*
* Used in Lokbuch for testing.
*/
public function list(Request $request): AnonymousResourceCollection {
$validated = $request->validate([
'body' => ['nullable', 'string', 'max:32'],
]);

$user = auth()->user();
$query = Status::query()->orderByDesc('created_at');

if (isset($validated['body'])) {
$query->where('body', 'like', '%' . $validated['body'] . '%');
}

$query->join('train_checkins', 'train_checkins.status_id', '=', 'statuses.id')
->join('users', 'statuses.user_id', '=', 'users.id')
->where(\App\Http\Controllers\Backend\Transport\StatusController::filterStatusVisibility($user))
->where('train_checkins.departure', '<', now()->addMinutes(20))
->whereNotIn('statuses.user_id', $user->mutedUsers()->select('muted_id'))
->whereNotIn('statuses.user_id', $user->blockedUsers()->select('blocked_id'))
->whereNotIn('statuses.user_id', $user->blockedByUsers()->select('user_id'))
->select('statuses.*');

return StatusResource::collection($query->cursorPaginate(20));
}

/**
* @OA\Get(
* path="/status/{id}",
Expand Down Expand Up @@ -419,7 +448,7 @@ public function update(Request $request, int $statusId): JsonResponse {
$this->authorize('update', $status);

//Check for disallowed status visibility changes
if(auth()->user()->can('disallow-status-visibility-change') && $validated['visibility'] !== StatusVisibility::PRIVATE->value) {
if (auth()->user()->can('disallow-status-visibility-change') && $validated['visibility'] !== StatusVisibility::PRIVATE->value) {
return $this->sendError('You are not allowed to change the visibility to anything else than private', 403);
}

Expand Down
35 changes: 35 additions & 0 deletions app/Http/Controllers/Backend/Transport/StatusController.php
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,11 +2,15 @@

namespace App\Http\Controllers\Backend\Transport;

use App\Enum\StatusVisibility;
use App\Http\Controllers\Backend\Support\MentionHelper;
use App\Http\Controllers\Controller;
use App\Models\Station;
use App\Models\Status;
use App\Models\Stopover;
use App\Models\User;
use Closure;
use Illuminate\Database\Eloquent\Builder;

abstract class StatusController extends Controller
{
Expand Down Expand Up @@ -42,4 +46,35 @@ public static function getPrintableEscapedBody(Status $status): string {
//Replace line breaks with <br> tags
return nl2br($body);
}

/**
* @param User|null $viewingUser The user who is viewing the statuses (null = guest)
*
* @return Closure
*/
public static function filterStatusVisibility(?User $viewingUser = null): Closure {
return function(Builder $query) use ($viewingUser) {
//Visibility checks: One of the following options must be true

//Option 1: User is public AND status is public
$query->where(function(Builder $query) use ($viewingUser) {
$query->where('users.private_profile', 0)
->whereIn('visibility', [StatusVisibility::PUBLIC->value] + ($viewingUser !== null ? [StatusVisibility::AUTHENTICATED->value] : []));
});

if ($viewingUser !== null) {
//Option 2: Status is from oneself
$query->orWhere('users.id', $viewingUser->id);

//Option 3: Status is from a followed BUT not unlisted or private
$query->orWhere(function(Builder $query) use ($viewingUser) {
$query->whereIn('users.id', $viewingUser->follows()->select('follow_id'))
->whereNotIn('statuses.visibility', [
StatusVisibility::UNLISTED->value,
StatusVisibility::PRIVATE->value,
]);
});
}
};
}
}
27 changes: 2 additions & 25 deletions app/Http/Controllers/Backend/User/DashboardController.php
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3,12 +3,12 @@
namespace App\Http\Controllers\Backend\User;

use App\Enum\StatusVisibility;
use App\Http\Controllers\Backend\Transport\StatusController;
use App\Http\Controllers\Controller;
use App\Models\Status;
use App\Models\User;
use Carbon\Carbon;
use Illuminate\Contracts\Pagination\Paginator;
use Illuminate\Database\Eloquent\Builder;

abstract class DashboardController extends Controller
{
Expand Down Expand Up @@ -59,30 +59,7 @@ public static function getGlobalDashboard(User $user): Paginator {
])
->join('train_checkins', 'train_checkins.status_id', '=', 'statuses.id')
->join('users', 'statuses.user_id', '=', 'users.id')
->where(function(Builder $query) use ($user) {
//Visibility checks: One of the following options must be true

//Option 1: User is public AND status is public
$query->where(function(Builder $query) {
$query->where('users.private_profile', 0)
->whereIn('visibility', [
StatusVisibility::PUBLIC->value,
StatusVisibility::AUTHENTICATED->value
]);
});

//Option 2: Status is from oneself
$query->orWhere('users.id', $user->id);

//Option 3: Status is from a followed BUT not unlisted or private
$query->orWhere(function(Builder $query) use ($user) {
$query->whereIn('users.id', $user->follows()->select('follow_id'))
->whereNotIn('statuses.visibility', [
StatusVisibility::UNLISTED->value,
StatusVisibility::PRIVATE->value,
]);
});
})
->where(StatusController::filterStatusVisibility($user))
->where('train_checkins.departure', '<', Carbon::now()->addMinutes(20))
->whereNotIn('statuses.user_id', $user->mutedUsers()->select('muted_id'))
->whereNotIn('statuses.user_id', $user->blockedUsers()->select('blocked_id'))
Expand Down
29 changes: 1 addition & 28 deletions app/Http/Controllers/StatusController.php
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -216,34 +216,7 @@ public static function getStatusesByEvent(Event $event): array {
->select('statuses.*')
->join('users', 'statuses.user_id', '=', 'users.id')
->join('train_checkins', 'statuses.id', '=', 'train_checkins.status_id')
->where(function(Builder $query) {
//Visibility checks: One of the following options must be true

//Option 1: User is public AND status is public
$query->where(function(Builder $query) {
$visibilities = [StatusVisibility::PUBLIC->value];
if (auth()->check()) {
$visibilities[] = StatusVisibility::AUTHENTICATED->value;
}

$query->where('users.private_profile', 0)
->whereIn('visibility', $visibilities);
});

if (auth()->check()) {
//Option 2: Status is from oneself
$query->orWhere('users.id', auth()->id());

//Option 3: Status is from a followed BUT not unlisted or private
$query->orWhere(function(Builder $query) {
$query->whereIn('users.id', auth()->user()->follows()->select('follow_id'))
->whereNotIn('visibility', [
StatusVisibility::UNLISTED->value,
StatusVisibility::PRIVATE->value,
]);
});
}
})
->where(Backend\Transport\StatusController::filterStatusVisibility(auth()->user()))
->orderBy('train_checkins.departure', 'desc');

if (auth()->check()) {
Expand Down
1 change: 1 addition & 0 deletions routes/api.php
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -196,6 +196,7 @@
Route::get('statuses', [StatusController::class, 'enRoute']);
Route::get('positions', [StatusController::class, 'livePositions']);
Route::get('positions/{ids}', [StatusController::class, 'getLivePositionForStatus']);
Route::get('status', [StatusController::class, 'list']);
Route::get('status/{id}', [StatusController::class, 'show']);
Route::get('status/{id}/likes', [LikesController::class, 'show']);
Route::get('status/{statusId}/tags', [StatusTagController::class, 'index']);
Expand Down
Loading