catstodon/app/controllers/api/v1/follow_requests_controller.rb
Eugen b89f007862 Make public timelines API not require user context/app credentials (#1291)
* Make /api/v1/timelines/public and /api/v1/timelines/tag/:id public
Fix #1156 - respect query params when generating pagination links in API

* Apply pagination fix to more APIs
2017-04-08 23:39:31 +02:00

33 lines
1.1 KiB
Ruby

# frozen_string_literal: true
class Api::V1::FollowRequestsController < ApiController
before_action -> { doorkeeper_authorize! :follow }
before_action :require_user!
def index
results = FollowRequest.where(target_account: current_account).paginate_by_max_id(DEFAULT_ACCOUNTS_LIMIT, params[:max_id], params[:since_id])
accounts = Account.where(id: results.map(&:account_id)).map { |a| [a.id, a] }.to_h
@accounts = results.map { |f| accounts[f.account_id] }
next_path = api_v1_follow_requests_url(pagination_params(max_id: results.last.id)) if results.size == DEFAULT_ACCOUNTS_LIMIT
prev_path = api_v1_follow_requests_url(pagination_params(since_id: results.first.id)) unless results.empty?
set_pagination_headers(next_path, prev_path)
end
def authorize
AuthorizeFollowService.new.call(Account.find(params[:id]), current_account)
render_empty
end
def reject
RejectFollowService.new.call(Account.find(params[:id]), current_account)
render_empty
end
private
def pagination_params(core_params)
params.permit(:limit).merge(core_params)
end
end