2013-02-06 03:16:51 +08:00
|
|
|
class StaticController < ApplicationController
|
|
|
|
|
2013-06-05 06:32:36 +08:00
|
|
|
skip_before_filter :check_xhr, :redirect_to_login_if_required
|
2013-02-06 03:16:51 +08:00
|
|
|
|
|
|
|
def show
|
|
|
|
|
|
|
|
page = params[:id]
|
|
|
|
|
2013-06-18 22:52:04 +08:00
|
|
|
return redirect_to(SiteSetting.tos_url) if page == 'tos' and !SiteSetting.tos_url.blank?
|
|
|
|
return redirect_to(SiteSetting.privacy_policy_url) if page == 'privacy' and !SiteSetting.privacy_policy_url.blank?
|
|
|
|
|
2013-02-06 03:16:51 +08:00
|
|
|
# Don't allow paths like ".." or "/" or anything hacky like that
|
|
|
|
page.gsub!(/[^a-z0-9\_\-]/, '')
|
|
|
|
|
2013-03-03 23:27:32 +08:00
|
|
|
file = "static/#{page}.#{I18n.locale}"
|
|
|
|
|
|
|
|
# if we don't have a localized version, try the English one
|
|
|
|
if not lookup_context.find_all("#{file}.html").any?
|
|
|
|
file = "static/#{page}.en"
|
|
|
|
end
|
|
|
|
|
|
|
|
if lookup_context.find_all("#{file}.html").any?
|
|
|
|
render file, layout: !request.xhr?, formats: [:html]
|
2013-02-06 03:16:51 +08:00
|
|
|
return
|
|
|
|
end
|
|
|
|
|
2013-05-20 08:29:49 +08:00
|
|
|
raise Discourse::NotFound
|
2013-02-06 03:16:51 +08:00
|
|
|
end
|
|
|
|
|
2013-03-13 22:22:56 +08:00
|
|
|
# This method just redirects to a given url.
|
|
|
|
# It's used when an ajax login was successful but we want the browser to see
|
|
|
|
# a post of a login form so that it offers to remember your password.
|
|
|
|
def enter
|
|
|
|
params.delete(:username)
|
|
|
|
params.delete(:password)
|
|
|
|
|
2013-06-05 06:34:54 +08:00
|
|
|
redirect_to(
|
|
|
|
if params[:redirect].blank? || params[:redirect].match(login_path)
|
|
|
|
root_path
|
|
|
|
else
|
|
|
|
params[:redirect]
|
|
|
|
end
|
|
|
|
)
|
|
|
|
end
|
2013-02-07 23:45:24 +08:00
|
|
|
end
|