mastodon/app/controllers/api/v1/reports_controller.rb

39 lines
953 B
Ruby

# frozen_string_literal: true
class Api::V1::ReportsController < Api::BaseController
before_action -> { doorkeeper_authorize! :write, :'write:reports' }, only: [:create]
before_action :require_user!
override_rate_limit_headers :create, family: :reports
def create
@report = ReportService.new.call(
current_account,
reported_account,
status_ids: reported_status_ids,
comment: report_params[:comment],
forward: report_params[:forward]
)
render json: @report, serializer: REST::ReportSerializer
end
private
def reported_status_ids
reported_account.statuses.with_discarded.permitted_for(reported_account, current_account).find(status_ids).pluck(:id)
end
def status_ids
Array(report_params[:status_ids])
end
def reported_account
Account.find(report_params[:account_id])
end
def report_params
params.permit(:account_id, :comment, :forward, status_ids: [])
end
end