biovision-post 0.2.180325 → 0.21.190513.0

data/app/controllers/news_controller.rb

@@ -1,21 +1,37 @@
 class NewsController < ApplicationController
-  before_action :set_category, only: [:category]
-  before_action :set_entity, only: [:show]
+  before_action :set_category, only: :category
+  before_action :set_entity, only: :show
 
   # get /news
   def index
     post_type   = PostType.find_by(slug: 'news')
     @collection = post_type.posts.for_language(current_language).page_for_visitors(current_page)
+    respond_to do |format|
+      format.html
+      format.json { render('posts/index') }
+    end
   end
 
   # get /news/:category_slug
   def category
-    @collection = @category.posts.for_language(current_language).page_for_visitors(current_page)
+    @collection = Post.in_category_branch(@category).for_language(current_language).page_for_visitors(current_page)
+    respond_to do |format|
+      format.html
+      format.json { render('posts/index') }
+    end
   end
 
   # get /news/:post_id-:post_slug
   def show
-    @entity.increment!(:view_count)
+    @entity.increment :view_count
+    @entity.increment :rating, 0.0025
+    @entity.save
+  end
+
+  # get /news/tagged/:tag_name
+  def tagged
+    post_type   = PostType.find_by(slug: 'news')
+    @collection = post_type.posts.tagged(params[:tag_name]).page_for_visitors(current_page)
   end
 
   private
@@ -23,15 +39,11 @@ class NewsController < ApplicationController
   def set_category
     type      = PostType.find_by(slug: 'news')
     @category = type.post_categories.find_by(long_slug: params[:category_slug])
-    if @category.nil?
-      handle_http_404('Cannot find post category (news)')
-    end
+    handle_http_404('Cannot find post category (news)') if @category.nil?
   end
 
   def set_entity
-    @entity = Post.visible.find_by(id: params[:post_id])
-    if @entity.nil?
-      handle_http_404('Cannot find news')
-    end
+    @entity = Post.list_for_visitors.find_by(id: params[:post_id])
+    handle_http_404('Cannot find news') if @entity.nil?
   end
 end

data/app/controllers/post_categories_controller.rb

@@ -11,14 +11,9 @@ class PostCategoriesController < AdminController
   def create
     @entity = PostCategory.new(creation_parameters)
     if @entity.save
-      next_page = admin_post_category_path(id: @entity.id)
-      respond_to do |format|
-        format.html { redirect_to(next_page) }
-        format.json { render json: { links: { self: next_page } } }
-        format.js { render(js: "document.location.href = '#{next_page}'") }
-      end
+      form_processed_ok(admin_post_category_path(id: @entity.id))
     else
-      render :new, status: :bad_request
+      form_processed_with_error(:new)
     end
   end
 
@@ -29,14 +24,9 @@ class PostCategoriesController < AdminController
   # patch /post_categories/:id
   def update
     if @entity.update entity_parameters
-      next_page = admin_post_category_path(id: @entity.id)
-      respond_to do |format|
-        format.html { redirect_to(next_page, notice: t('post_categories.update.success')) }
-        format.json { render json: { links: { self: next_page } } }
-        format.js { render(js: "document.location.href = '#{next_page}'") }
-      end
+      form_processed_ok(admin_post_category_path(id: @entity.id))
     else
-      render :edit, status: :bad_request
+      form_processed_with_error(:edit)
     end
   end
 

data/app/controllers/post_groups_controller.rb

@@ -0,0 +1,76 @@
+# frozen_string_literal: true
+
+# Handling post groups
+class PostGroupsController < ApplicationController
+  before_action :restrict_access, except: :show
+  before_action :set_entity, only: %i[edit update destroy]
+
+  layout 'admin', except: :show
+
+  # post /post_groups/check
+  def check
+    @entity = PostGroup.instance_for_check(params[:entity_id], entity_parameters)
+
+    render 'shared/forms/check'
+  end
+
+  # get /post_groups/new
+  def new
+    @entity = PostGroup.new
+  end
+
+  # post /post_groups
+  def create
+    @entity = PostGroup.new(entity_parameters)
+    if @entity.save
+      form_processed_ok(admin_post_group_path(id: @entity.id))
+    else
+      form_processed_with_error(:new)
+    end
+  end
+
+  # get /post_groups/:id/edit
+  def edit
+  end
+
+  # patch /post_groups/:id
+  def update
+    if @entity.update(entity_parameters)
+      form_processed_ok(admin_post_group_path(id: @entity.id))
+    else
+      form_processed_with_error(:edit)
+    end
+  end
+
+  # delete /post_groups/:id
+  def destroy
+    flash[:notice] = t('post_groups.destroy.success') if @entity.destroy
+
+    redirect_to post_groups_admin_post_type_path(id: @entity.post_type_id)
+  end
+
+  # get /post_groups/:id
+  def show
+    @entity = PostGroup.visible.find_by(slug: params[:id])
+    if @entity.nil?
+      handle_http_404('Cannot find post_group')
+    else
+      @collection = @entity.posts_page(current_page)
+    end
+  end
+
+  private
+
+  def set_entity
+    @entity = PostGroup.find_by(id: params[:id])
+    handle_http_404('Cannot find post_group') if @entity.nil?
+  end
+
+  def restrict_access
+    require_privilege :chief_editor
+  end
+
+  def entity_parameters
+    params.require(:post_group).permit(PostGroup.entity_parameters)
+  end
+end

data/app/controllers/post_illustrations_controller.rb

@@ -0,0 +1,22 @@
+# frozen_string_literal: true
+
+# Handling inline post image uploads
+class PostIllustrationsController < ApplicationController
+  before_action :restrict_access
+  skip_before_action :verify_authenticity_token
+
+  # post /post_illustrations
+  def create
+    render json: PostIllustration.ckeditor_upload!(ckeditor_parameters)
+  end
+
+  private
+
+  def restrict_access
+    require_privilege_group :editors
+  end
+
+  def ckeditor_parameters
+    { image: params[:upload] }.merge(owner_for_entity(true))
+  end
+end

data/app/controllers/post_images_controller.rb

@@ -0,0 +1,62 @@
+class PostImagesController < AdminController
+  before_action :set_entity, only: [:edit, :update, :destroy]
+  before_action :restrict_editing, only: [:edit, :update, :destroy]
+
+  # post /post_images
+  def create
+    @entity = PostImage.new(creation_parameters)
+    if @entity.save
+      form_processed_ok(images_admin_post_path(id: @entity.post_id))
+    else
+      form_processed_with_error(:new)
+    end
+  end
+
+  # get /post_images/:id/edit
+  def edit
+  end
+
+  # patch /post_images/:id
+  def update
+    if @entity.update(entity_parameters)
+      form_processed_ok(admin_post_image_path(id: @entity.id))
+    else
+      form_processed_with_error(:edit)
+    end
+  end
+
+  # delete /post_images/:id
+  def destroy
+    if @entity.destroy
+      flash[:notice] = t('post_images.destroy.success')
+    end
+    redirect_to admin_post_path(id: @entity.post_id)
+  end
+
+  private
+
+  def set_entity
+    @entity = PostImage.find_by(id: params[:id])
+    if @entity.nil?
+      handle_http_404('Cannot find post_image')
+    end
+  end
+
+  def restrict_access
+    require_privilege_group :editors
+  end
+
+  def restrict_editing
+    unless @entity.editable_by?(current_user)
+      handle_http_401('Post image is not editable by current user')
+    end
+  end
+
+  def entity_parameters
+    params.require(:post_image).permit(PostImage.entity_parameters)
+  end
+
+  def creation_parameters
+    params.require(:post_image).permit(PostImage.creation_parameters)
+  end
+end

data/app/controllers/post_links_controller.rb

@@ -0,0 +1,37 @@
+class PostLinksController < AdminController
+  before_action :set_entity, only: :destroy
+
+  # post /post_links
+  def create
+    @entity = PostLink.new(entity_parameters)
+    if @entity.save
+      render status: :created
+    else
+      render json: { errors: @entity.errors }, status: :bad_request
+    end
+  end
+
+  # delete /post_links/:id
+  def destroy
+    @entity.destroy
+
+    head :no_content
+  end
+
+  private
+
+  def restrict_access
+    require_privilege_group :editors
+  end
+
+  def entity_parameters
+    params.require(:post_link).permit(PostLink.creation_parameters)
+  end
+
+  def set_entity
+    @entity = PostLink.find_by(id: params[:id])
+    if @entity.nil?
+      handle_http_404('Cannot find post_link')
+    end
+  end
+end

data/app/controllers/post_tags_controller.rb

@@ -0,0 +1,41 @@
+# frozen_string_literal: true
+
+# Handling post tags
+class PostTagsController < AdminController
+  before_action :set_entity, only: %i[edit update destroy]
+
+  # get /post_tags/:id/edit
+  def edit
+  end
+
+  # patch /post_tags/:id
+  def update
+    if @entity.update(entity_parameters)
+      form_processed_ok(admin_post_tag_path(id: @entity.id))
+    else
+      form_processed_with_error(:edit)
+    end
+  end
+
+  # delete /post_tags/:id
+  def destroy
+    flash[:notice] = t('post_tags.destroy.success') if @entity.destroy
+
+    redirect_to post_tags_admin_post_type_path(id: @entity.post_type_id)
+  end
+
+  private
+
+  def set_entity
+    @entity = PostTag.find_by(id: params[:id])
+    handle_http_404('Cannot find post_tag') if @entity.nil?
+  end
+
+  def restrict_access
+    require_privilege_group :editors
+  end
+
+  def entity_parameters
+    params.require(:post_tag).permit(PostTag.entity_parameters)
+  end
+end

data/app/controllers/posts_controller.rb

@@ -1,30 +1,41 @@
+# frozen_string_literal: true
+
+# Posts management
 class PostsController < ApplicationController
-  before_action :restrict_access, only: [:new, :create]
-  before_action :set_entity, only: [:edit, :update, :destroy]
-  before_action :restrict_editing, only: [:edit, :update, :destroy]
+  before_action :restrict_access, only: %i[new create]
+  before_action :set_entity, only: %i[edit update destroy]
+  before_action :restrict_editing, only: %i[edit update destroy]
 
-  layout 'admin', only: [:new, :edit]
+  layout 'admin', only: %i[new edit]
 
   # get /posts
   def index
-    @collection = Post.page_for_visitors(current_page)
+    excluded = param_from_request(:x).split(',').map(&:to_i)
+    @collection = Post.exclude_ids(excluded).page_for_visitors(current_page)
   end
 
   # post /posts
   def create
     @entity = Post.new(creation_parameters)
     if @entity.save
-      form_processed_ok(PostManager.handler(@entity).post_path)
+      apply_post_tags
+      apply_post_categories
+      PostBodyParserJob.perform_later(@entity.id)
+      form_processed_ok(PostManager.new(@entity).post_path)
     else
       form_processed_with_error(:new)
     end
   end
 
-  # get /posts/:id
+  # get /posts/:id(-:slug)
   def show
     @entity = Post.list_for_visitors.find_by(id: params[:id])
     if @entity.nil?
       handle_http_404("Cannot find non-deleted post #{params[:id]}")
+    else
+      @entity.increment :view_count
+      @entity.increment :rating, 0.0025
+      @entity.save
     end
   end
 
@@ -35,7 +46,10 @@ class PostsController < ApplicationController
   # patch /posts/:id
   def update
     if @entity.update(entity_parameters)
-      form_processed_ok(PostManager.handler(@entity).post_path)
+      apply_post_tags
+      apply_post_categories
+      PostBodyParserJob.perform_later(@entity.id)
+      form_processed_ok(PostManager.new(@entity).post_path)
     else
       form_processed_with_error(:edit)
     end
@@ -49,13 +63,54 @@ class PostsController < ApplicationController
     redirect_to admin_posts_path
   end
 
+  # get /posts/tagged/:tag_name
+  def tagged
+    @collection = Post.tagged(params[:tag_name]).page_for_visitors(current_page)
+  end
+
+  # get /posts/:category_slug
+  def category
+    @collection = Post.in_category(params[:category_slug]).page_for_visitors(current_page)
+    @category = @collection.first&.post_category
+
+    handle_http_404('Cannot find post category in collection') if @category.nil?
+
+    respond_to do |format|
+      format.html
+      format.json { render('posts/index') }
+    end
+  end
+
+  # get /posts/search?q=
+  def search
+    @collection = params.key?(:q) ? search_posts(param_from_request(:q)) : []
+  end
+
+  # get /posts/rss/zen.xml
+  def zen
+    @collection = Post.for_language(current_language).list_for_visitors.posted_after(3.days.ago)
+  end
+
+  # get /posts/rss.xml
+  def rss
+    @collection = Post.for_language(current_language).list_for_visitors.first(20)
+  end
+
+  # get /posts/archive/(:year)(-:month)(-:day)
+  def archive
+    if params.key?(:day)
+      archive_day
+    else
+      collect_dates
+      archive_group if params[:year]
+    end
+  end
+
   private
 
   def set_entity
     @entity = Post.find_by(id: params[:id])
-    if @entity.nil?
-      handle_http_404('Cannot find post')
-    end
+    handle_http_404('Cannot find post') if @entity.nil?
   end
 
   def restrict_access
@@ -64,16 +119,66 @@ class PostsController < ApplicationController
 
   def restrict_editing
     if @entity.locked? || !@entity.editable_by?(current_user)
-       handle_http_403('Post is locked or not editable by current user')
+      handle_http_403('Post is locked or not editable by current user')
     end
   end
 
   def entity_parameters
-    params.require(:post).permit(Post.entity_parameters)
+    params.require(:post).permit(Post.entity_parameters).merge(owner_for_post)
   end
 
   def creation_parameters
     parameters = params.require(:post).permit(Post.creation_parameters)
-    parameters.merge(owner_for_entity(true))
+    parameters.merge(owner_for_entity(true)).merge(owner_for_post)
+  end
+
+  def apply_post_tags
+    @entity.tags_string = param_from_request(:tags_string)
+  end
+
+  def apply_post_categories
+    if params.key?(:post_category_ids)
+      @entity.post_category_ids = Array(params[:post_category_ids])
+    else
+      @entity.post_post_categories.destroy_all
+    end
+  end
+
+  def owner_for_post
+    key    = :user_for_entity
+    result = {}
+    if current_user_has_privilege?(:chief_editor) && params.key?(key)
+      result[:user_id] = param_from_request(key)
+    end
+    result
+  end
+
+  def collect_dates
+    array  = Post.for_language(current_language).visible.published.archive
+    @dates = Post.archive_dates(array)
+  end
+
+  def archive_day
+    date        = Date.parse("#{params[:year]}-#{params[:month]}-#{params[:day]}")
+    selection   = Post.for_language(current_language).pubdate(date)
+    @collection = selection.page_for_visitors(current_page)
+    render 'archive_day'
+  end
+
+  def archive_group
+    year = params[:year].to_i
+    @dates.select! { |k, _| k == year }
+    return unless params.key?(:month)
+
+    @dates[year]&.select! { |k, _| k == params[:month].to_i }
+  end
+
+  # @param [String] q
+  def search_posts(q)
+    if Post.respond_to?(:search)
+      Post.search(q).records.first(50).select(&:visible_to_visitors?)
+    else
+      Post.where('title ilike ?', "%#{q}%").list_for_visitors.first(50)
+    end
   end
 end