app/controllers/comments_controller.rb

class CommentsController < ApplicationController
  before_action :authenticate_user!, only: [:create, :update, :destroy]
  before_action :check_tenant_subscription, only: [:create, :update, :destroy]

  def index
    comments = Comment
      .select(
        :id,
        :body,
        :parent_id,
        :is_post_update,
        :created_at,
        :updated_at,
        'users.id as user_id', # required for avatar_url
        'users.full_name as user_full_name',
        'users.email as user_email',
        'users.role as user_role',
      )
      .where(post_id: params[:post_id])
      .left_outer_joins(:user)
      .order(created_at: :desc)
      .includes(user: { avatar_attachment: :blob }) # Preload avatars

    comments = comments.map do |comment|
      user_avatar_url = comment.user.avatar.attached? ? comment.user.avatar.blob.url : nil
      attachment_urls = comment.attachments.order(:created_at).map { |attachment| attachment.blob.url }

      comment.attributes.merge(
        attachment_urls: attachment_urls,
        user_avatar: user_avatar_url
      )
    end

    render json: comments
  end

  def create
    @comment = Comment.new
    @comment.assign_attributes(comment_create_params)

    # handle attachments
    if Current.tenant.tenant_setting.allow_attachment_upload && params[:comment][:attachments].present?
      @comment.attachments.attach(params[:comment][:attachments])
    end

    if @comment.save
      SendNotificationForCommentWorkflow.new(comment: @comment).run

      render json: @comment.attributes.merge(
        {
          attachment_urls: @comment.attachments.order(:created_at).map { |attachment| attachment.blob.url },
          user_full_name: current_user.full_name,
          user_email: current_user.email,
          user_avatar: current_user.avatar.attached? ? current_user.avatar.blob.url : nil,
          user_role: current_user.role_before_type_cast
        }
      ), status: :created
    else
      render json: {
        error: @comment.errors.full_messages
      }, status: :unprocessable_entity
    end
  end

  def update
    @comment = Comment.find(params[:id])
    authorize @comment

    @comment.assign_attributes(comment_update_params)

    # handle attachment deletion
    if params[:comment][:attachments_to_delete].present? && @comment.attachments.attached?
      @comment.attachments.order(:created_at).each_with_index do |attachment, index|
        attachment.purge if params[:comment][:attachments_to_delete].include?(index.to_s)
      end
    end

    # handle attachments
    if Current.tenant.tenant_setting.allow_attachment_upload && params[:comment][:attachments].present?
      @comment.attachments.attach(params[:comment][:attachments])
    end

    if @comment.save
      render json: @comment.attributes.merge(
        {
          attachment_urls: @comment.attachments.order(:created_at).map { |attachment| attachment.blob.url },
          user_full_name: @comment.user.full_name,
          user_email: @comment.user.email,
          user_avatar: @comment.user.avatar.attached? ? @comment.user.avatar.blob.url : nil,
          user_role: @comment.user.role_before_type_cast
        }
      )
    else
      render json: {
        error: @comment.errors.full_messages
      }, status: :unprocessable_entity
    end
  end

  def destroy
    @comment = Comment.find(params[:id])
    authorize @comment

    if @comment.destroy
      render json: {
        id: @comment.id,
      }, status: :accepted
    else
      render json: {
        error: @comment.errors.full_messages
      }, status: :unprocessable_entity
    end
  end

  private

    def comment_create_params
      params
        .require(:comment)
        .permit(policy(@comment).permitted_attributes_for_create)
        .merge(
          user_id: current_user.id,
          post_id: params[:post_id]
        )
    end

    def comment_update_params
      params
        .require(:comment)
        .permit(policy(@comment).permitted_attributes_for_update)
    end
end
Add comments controller and routes 2019-09-16 18:02:52 +02:00			`class CommentsController < ApplicationController`
Add edit and delete actions to posts and comments (#125) 2022-06-22 10:17:42 +02:00			`before_action :authenticate_user!, only: [:create, :update, :destroy]`
Add billing (#329) 2024-05-03 18:11:07 +02:00			`before_action :check_tenant_subscription, only: [:create, :update, :destroy]`
Add New Comment on your post notifications This notification is sent only to the post owner, unless this person turned off the notifications. A simple first step into the notifications by mail world :) The mail contains a link to user profile The link to the user profile is required to give an easy access to notifications disabling. Also having a preview for the notify_post_owner method We can `Comment.first` because it is part of the db:seeds method. So there should, in development, always be one. 2021-01-29 00:49:27 +01:00
Add comments controller and routes 2019-09-16 18:02:52 +02:00			`def index`
			`comments = Comment`
Add gravatar picture to comments 2019-09-30 23:28:52 +02:00			`.select(`
			`:id,`
			`:body,`
			`:parent_id,`
Add post updates 2019-10-01 19:15:03 +02:00			`:is_post_update,`
Add edit and delete actions to posts and comments (#125) 2022-06-22 10:17:42 +02:00			`:created_at,`
Add gravatar picture to comments 2019-09-30 23:28:52 +02:00			`:updated_at,`
init activestorage and add avatar upload in user profile 2025-01-03 18:09:03 +01:00			`'users.id as user_id', # required for avatar_url`
Add gravatar picture to comments 2019-09-30 23:28:52 +02:00			`'users.full_name as user_full_name',`
			`'users.email as user_email',`
Add staff badge near comment author (#280) 2024-02-14 19:40:39 +01:00			`'users.role as user_role',`
Add gravatar picture to comments 2019-09-30 23:28:52 +02:00			`)`
Add comments controller and routes 2019-09-16 18:02:52 +02:00			`.where(post_id: params[:post_id])`
			`.left_outer_joins(:user)`
Add edit and delete actions to posts and comments (#125) 2022-06-22 10:17:42 +02:00			`.order(created_at: :desc)`
init activestorage and add avatar upload in user profile 2025-01-03 18:09:03 +01:00			`.includes(user: { avatar_attachment: :blob }) # Preload avatars`

			`comments = comments.map do \|comment\|`
switch from url_for to blob.url 2025-01-23 12:47:35 +01:00			`user_avatar_url = comment.user.avatar.attached? ? comment.user.avatar.blob.url : nil`
add attachments to comments + add attachment upload on comment create 2025-02-05 15:36:47 +01:00			`attachment_urls = comment.attachments.order(:created_at).map { \|attachment\| attachment.blob.url }`

			`comment.attributes.merge(`
			`attachment_urls: attachment_urls,`
			`user_avatar: user_avatar_url`
			`)`
init activestorage and add avatar upload in user profile 2025-01-03 18:09:03 +01:00			`end`
Add comments controller and routes 2019-09-16 18:02:52 +02:00
			`render json: comments`
			`end`
Add basic version of Comments component 2019-09-17 11:33:18 +02:00
			`def create`
Add edit and delete actions to posts and comments (#125) 2022-06-22 10:17:42 +02:00			`@comment = Comment.new`
			`@comment.assign_attributes(comment_create_params)`
Add basic version of Comments component 2019-09-17 11:33:18 +02:00
add attachments to comments + add attachment upload on comment create 2025-02-05 15:36:47 +01:00			`# handle attachments`
			`if Current.tenant.tenant_setting.allow_attachment_upload && params[:comment][:attachments].present?`
			`@comment.attachments.attach(params[:comment][:attachments])`
			`end`

Add edit and delete actions to posts and comments (#125) 2022-06-22 10:17:42 +02:00			`if @comment.save`
			`SendNotificationForCommentWorkflow.new(comment: @comment).run`
Add New Comment on your post notifications This notification is sent only to the post owner, unless this person turned off the notifications. A simple first step into the notifications by mail world :) The mail contains a link to user profile The link to the user profile is required to give an easy access to notifications disabling. Also having a preview for the notify_post_owner method We can `Comment.first` because it is part of the db:seeds method. So there should, in development, always be one. 2021-01-29 00:49:27 +01:00
Add edit and delete actions to posts and comments (#125) 2022-06-22 10:17:42 +02:00			`render json: @comment.attributes.merge(`
Show avatar if present, otherwise fallback to gravatar 2025-01-09 10:55:44 +01:00			`{`
add attachments to comments + add attachment upload on comment create 2025-02-05 15:36:47 +01:00			`attachment_urls: @comment.attachments.order(:created_at).map { \|attachment\| attachment.blob.url },`
Show avatar if present, otherwise fallback to gravatar 2025-01-09 10:55:44 +01:00			`user_full_name: current_user.full_name,`
			`user_email: current_user.email,`
switch from url_for to blob.url 2025-01-23 12:47:35 +01:00			`user_avatar: current_user.avatar.attached? ? current_user.avatar.blob.url : nil,`
Show avatar if present, otherwise fallback to gravatar 2025-01-09 10:55:44 +01:00			`user_role: current_user.role_before_type_cast`
			`}`
Add gravatar picture to comments 2019-09-30 23:28:52 +02:00			`), status: :created`
Add basic version of Comments component 2019-09-17 11:33:18 +02:00			`else`
New comments can be created 2019-09-18 13:40:00 +02:00			`render json: {`
Add edit and delete actions to posts and comments (#125) 2022-06-22 10:17:42 +02:00			`error: @comment.errors.full_messages`
New comments can be created 2019-09-18 13:40:00 +02:00			`}, status: :unprocessable_entity`
Add basic version of Comments component 2019-09-17 11:33:18 +02:00			`end`
			`end`

Add button to toggle comment is post update 2019-10-02 16:43:13 +02:00			`def update`
Add edit and delete actions to posts and comments (#125) 2022-06-22 10:17:42 +02:00			`@comment = Comment.find(params[:id])`
			`authorize @comment`
Add button to toggle comment is post update 2019-10-02 16:43:13 +02:00
enable comment edit attachments 2025-02-05 22:53:22 +01:00			`@comment.assign_attributes(comment_update_params)`

			`# handle attachment deletion`
			`if params[:comment][:attachments_to_delete].present? && @comment.attachments.attached?`
			`@comment.attachments.order(:created_at).each_with_index do \|attachment, index\|`
			`attachment.purge if params[:comment][:attachments_to_delete].include?(index.to_s)`
			`end`
			`end`

			`# handle attachments`
			`if Current.tenant.tenant_setting.allow_attachment_upload && params[:comment][:attachments].present?`
			`@comment.attachments.attach(params[:comment][:attachments])`
			`end`

			`if @comment.save`
Add edit and delete actions to posts and comments (#125) 2022-06-22 10:17:42 +02:00			`render json: @comment.attributes.merge(`
Show avatar if present, otherwise fallback to gravatar 2025-01-09 10:55:44 +01:00			`{`
enable comment edit attachments 2025-02-05 22:53:22 +01:00			`attachment_urls: @comment.attachments.order(:created_at).map { \|attachment\| attachment.blob.url },`
Show avatar if present, otherwise fallback to gravatar 2025-01-09 10:55:44 +01:00			`user_full_name: @comment.user.full_name,`
			`user_email: @comment.user.email,`
switch from url_for to blob.url 2025-01-23 12:47:35 +01:00			`user_avatar: @comment.user.avatar.attached? ? @comment.user.avatar.blob.url : nil,`
Show avatar if present, otherwise fallback to gravatar 2025-01-09 10:55:44 +01:00			`user_role: @comment.user.role_before_type_cast`
			`}`
Add button to toggle comment is post update 2019-10-02 16:43:13 +02:00			`)`
			`else`
			`render json: {`
Add edit and delete actions to posts and comments (#125) 2022-06-22 10:17:42 +02:00			`error: @comment.errors.full_messages`
			`}, status: :unprocessable_entity`
			`end`
			`end`

			`def destroy`
			`@comment = Comment.find(params[:id])`
			`authorize @comment`

			`if @comment.destroy`
			`render json: {`
			`id: @comment.id,`
			`}, status: :accepted`
			`else`
			`render json: {`
			`error: @comment.errors.full_messages`
Add button to toggle comment is post update 2019-10-02 16:43:13 +02:00			`}, status: :unprocessable_entity`
			`end`
			`end`

Add basic version of Comments component 2019-09-17 11:33:18 +02:00			`private`
Post follow and updates notifications V1 (#111) * It is now possible to follow a post in order to receive updates about it * Notifications are now sent when updates are published * Post status changes are now tracked * Update sidebar now shows the post status history * Mark a comment as a post update using the comment form * ... more ... 2022-05-28 11:03:36 +02:00
Add edit and delete actions to posts and comments (#125) 2022-06-22 10:17:42 +02:00			`def comment_create_params`
Improve rails controllers (#118) 2022-06-10 12:03:33 +02:00			`params`
			`.require(:comment)`
Add edit and delete actions to posts and comments (#125) 2022-06-22 10:17:42 +02:00			`.permit(policy(@comment).permitted_attributes_for_create)`
Improve rails controllers (#118) 2022-06-10 12:03:33 +02:00			`.merge(`
			`user_id: current_user.id,`
			`post_id: params[:post_id]`
			`)`
Add basic version of Comments component 2019-09-17 11:33:18 +02:00			`end`
Add edit and delete actions to posts and comments (#125) 2022-06-22 10:17:42 +02:00
			`def comment_update_params`
			`params`
			`.require(:comment)`
			`.permit(policy(@comment).permitted_attributes_for_update)`
			`end`
Add comments controller and routes 2019-09-16 18:02:52 +02:00			`end`