FediMovies/fedimovies
1
1
Fork 0
Code Issues 3 Pull requests Projects Releases Packages Activity

Hide posts that user is not allowed to view from search results

Browse source
This commit is contained in:
silverpill 2022-02-08 18:00:08 +00:00
parent a63da82b85
commit 7d89f65b37
3 changed files with 40 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

27
docs/openapi.yaml
View file

@ -508,6 +508,33 @@ paths:
type: array type: array
items: items:
$ref: '#/components/schemas/Status' $ref: '#/components/schemas/Status'
/api/v2/search:
get:
summary: Search for profiles or posts
parameters:
- name: q
in: query
description: The search query
required: true
schema:
type: string
responses:
200:
description: Successful operation
content:
application/json:
schema:
description: Search results
type: object
properties:
accounts:
type: array
items:
$ref: '#/components/schemas/Account'
statuses:
type: array
items:
$ref: '#/components/schemas/Status'
components: components:
securitySchemes: securitySchemes:

5
src/mastodon_api/search/helpers.rs
View file

@ -9,6 +9,7 @@ use crate::config::Config;
use crate::errors::{ValidationError, HttpError}; use crate::errors::{ValidationError, HttpError};
use crate::mastodon_api::accounts::types::Account; use crate::mastodon_api::accounts::types::Account;
use crate::mastodon_api::statuses::types::Status; use crate::mastodon_api::statuses::types::Status;
use crate::models::posts::helpers::can_view_post;
use crate::models::posts::types::Post; use crate::models::posts::types::Post;
use crate::models::profiles::queries::{ use crate::models::profiles::queries::{
search_profile, search_profile,
@ -18,6 +19,7 @@ use crate::models::profiles::types::DbActorProfile;
use crate::models::users::types::{ use crate::models::users::types::{
validate_wallet_address, validate_wallet_address,
WALLET_CURRENCY_CODE, WALLET_CURRENCY_CODE,
User,
}; };
use super::types::SearchResults; use super::types::SearchResults;
@ -118,6 +120,7 @@ async fn search_note(
pub async fn search( pub async fn search(
config: &Config, config: &Config,
current_user: &User,
db_client: &mut impl GenericClient, db_client: &mut impl GenericClient,
search_query: &str, search_query: &str,
) -> Result<SearchResults, HttpError> { ) -> Result<SearchResults, HttpError> {
@ -130,8 +133,10 @@ pub async fn search(
SearchQuery::Url(url) => { SearchQuery::Url(url) => {
let maybe_post = search_note(config, db_client, url).await?; let maybe_post = search_note(config, db_client, url).await?;
if let Some(post) = maybe_post { if let Some(post) = maybe_post {
if can_view_post(db_client, Some(current_user), &post).await? {
posts = vec![post]; posts = vec![post];
}; };
};
}, },
SearchQuery::WalletAddress(address) => { SearchQuery::WalletAddress(address) => {
// Search is case insensitive // Search is case insensitive

9
src/mastodon_api/search/views.rs
View file

@ -17,8 +17,13 @@ async fn search_view(
query_params: web::Query<SearchQueryParams>, query_params: web::Query<SearchQueryParams>,
) -> Result<HttpResponse, HttpError> { ) -> Result<HttpResponse, HttpError> {
let db_client = &mut **get_database_client(&db_pool).await?; let db_client = &mut **get_database_client(&db_pool).await?;
get_current_user(db_client, auth.token()).await?; let current_user = get_current_user(db_client, auth.token()).await?;
let results = search(&config, db_client, query_params.q.trim()).await?; let results = search(
&config,
&current_user,
db_client,
query_params.q.trim(),
).await?;
Ok(HttpResponse::Ok().json(results)) Ok(HttpResponse::Ok().json(results))
} }