bastodon/app/controllers/concerns/web_app_controller_concern.rb

# frozen_string_literal: true

module WebAppControllerConcern
  extend ActiveSupport::Concern

  included do
    vary_by 'Accept, Accept-Language, Cookie'

    before_action :redirect_unauthenticated_to_permalinks!
    before_action :set_app_body_class
  end

  def skip_csrf_meta_tags?
    !(ENV['ONE_CLICK_SSO_LOGIN'] == 'true' && ENV['OMNIAUTH_ONLY'] == 'true' && Devise.omniauth_providers.length == 1) && current_user.nil?
  end

  def set_app_body_class
    @body_classes = 'app-body'
  end

  def redirect_unauthenticated_to_permalinks!
    return if user_signed_in? && current_account.moved_to_account_id.nil?

    redirect_path = PermalinkRedirector.new(request.path).redirect_path
    return if redirect_path.blank?

    expires_in(15.seconds, public: true, stale_while_revalidate: 30.seconds, stale_if_error: 1.day) unless user_signed_in?
    redirect_to(redirect_path)
  end
end
Change public statuses pages to mount the web UI (#19301) 2022-10-06 02:26:34 +02:00			`# frozen_string_literal: true`

			`module WebAppControllerConcern`
			`extend ActiveSupport::Concern`

			`included do`
Fix caching logic with regards to Accept-Language, Cookie, and Signature (#24604) 2023-04-23 22:27:24 +02:00			`vary_by 'Accept, Accept-Language, Cookie'`
Fix Vary headers not being set on some redirects (#27272) 2023-10-05 09:50:08 +02:00
			`before_action :redirect_unauthenticated_to_permalinks!`
			`before_action :set_app_body_class`
Change public statuses pages to mount the web UI (#19301) 2022-10-06 02:26:34 +02:00			`end`

Fix anonymous visitors getting a session cookie on first visit (#24584) 2023-04-25 16:51:38 +02:00			`def skip_csrf_meta_tags?`
Fix #26849 by adding the domain of the current SSO provider to the form-action CSP (#26857) 2023-09-12 13:04:51 +02:00			`!(ENV['ONE_CLICK_SSO_LOGIN'] == 'true' && ENV['OMNIAUTH_ONLY'] == 'true' && Devise.omniauth_providers.length == 1) && current_user.nil?`
Fix anonymous visitors getting a session cookie on first visit (#24584) 2023-04-25 16:51:38 +02:00			`end`

Change public accounts pages to mount the web UI (#19319) * Change public accounts pages to mount the web UI * Fix handling of remote usernames in routes - When logged in, serve web app - When logged out, redirect to permalink - Fix `app-body` class not being set sometimes due to name conflict * Fix missing `multiColumn` prop * Fix failing test * Use `discoverable` attribute to control indexing directives * Fix `<ColumnLoading />` not using `multiColumn` * Add `noindex` to accounts in REST API * Change noindex directive to not be rendered by default before a route is mounted * Add loading indicator for detailed status in web UI * Fix missing indicator appearing while account is loading in web UI 2022-10-20 14:35:29 +02:00			`def set_app_body_class`
Change public statuses pages to mount the web UI (#19301) 2022-10-06 02:26:34 +02:00			`@body_classes = 'app-body'`
			`end`

Change public accounts pages to mount the web UI (#19319) * Change public accounts pages to mount the web UI * Fix handling of remote usernames in routes - When logged in, serve web app - When logged out, redirect to permalink - Fix `app-body` class not being set sometimes due to name conflict * Fix missing `multiColumn` prop * Fix failing test * Use `discoverable` attribute to control indexing directives * Fix `<ColumnLoading />` not using `multiColumn` * Add `noindex` to accounts in REST API * Change noindex directive to not be rendered by default before a route is mounted * Add loading indicator for detailed status in web UI * Fix missing indicator appearing while account is loading in web UI 2022-10-20 14:35:29 +02:00			`def redirect_unauthenticated_to_permalinks!`
Fix PermalinkRedirector not applying to users with moved accounts (#22497) Fixes #22262 2023-01-05 13:40:27 +01:00			`return if user_signed_in? && current_account.moved_to_account_id.nil?`
Change public accounts pages to mount the web UI (#19319) * Change public accounts pages to mount the web UI * Fix handling of remote usernames in routes - When logged in, serve web app - When logged out, redirect to permalink - Fix `app-body` class not being set sometimes due to name conflict * Fix missing `multiColumn` prop * Fix failing test * Use `discoverable` attribute to control indexing directives * Fix `<ColumnLoading />` not using `multiColumn` * Add `noindex` to accounts in REST API * Change noindex directive to not be rendered by default before a route is mounted * Add loading indicator for detailed status in web UI * Fix missing indicator appearing while account is loading in web UI 2022-10-20 14:35:29 +02:00
			`redirect_path = PermalinkRedirector.new(request.path).redirect_path`
Fix Vary headers not being set on some redirects (#27272) 2023-10-05 09:50:08 +02:00			`return if redirect_path.blank?`
Change public accounts pages to mount the web UI (#19319) * Change public accounts pages to mount the web UI * Fix handling of remote usernames in routes - When logged in, serve web app - When logged out, redirect to permalink - Fix `app-body` class not being set sometimes due to name conflict * Fix missing `multiColumn` prop * Fix failing test * Use `discoverable` attribute to control indexing directives * Fix `<ColumnLoading />` not using `multiColumn` * Add `noindex` to accounts in REST API * Change noindex directive to not be rendered by default before a route is mounted * Add loading indicator for detailed status in web UI * Fix missing indicator appearing while account is loading in web UI 2022-10-20 14:35:29 +02:00
Fix Vary headers not being set on some redirects (#27272) 2023-10-05 09:50:08 +02:00			`expires_in(15.seconds, public: true, stale_while_revalidate: 30.seconds, stale_if_error: 1.day) unless user_signed_in?`
			`redirect_to(redirect_path)`
Change public accounts pages to mount the web UI (#19319) * Change public accounts pages to mount the web UI * Fix handling of remote usernames in routes - When logged in, serve web app - When logged out, redirect to permalink - Fix `app-body` class not being set sometimes due to name conflict * Fix missing `multiColumn` prop * Fix failing test * Use `discoverable` attribute to control indexing directives * Fix `<ColumnLoading />` not using `multiColumn` * Add `noindex` to accounts in REST API * Change noindex directive to not be rendered by default before a route is mounted * Add loading indicator for detailed status in web UI * Fix missing indicator appearing while account is loading in web UI 2022-10-20 14:35:29 +02:00			`end`
Change public statuses pages to mount the web UI (#19301) 2022-10-06 02:26:34 +02:00			`end`