discourse/app/helpers/application_helper.rb

require 'current_user'
require 'canonical_url'
require_dependency 'guardian'
require_dependency 'unread'
require_dependency 'age_words'
require_dependency 'configurable_urls'
require_dependency 'mobile_detection'
require_dependency 'category_badge'
require_dependency 'global_path'

module ApplicationHelper
  include CurrentUser
  include CanonicalURL::Helpers
  include ConfigurableUrls
  include GlobalPath

  def shared_session_key
    if SiteSetting.long_polling_base_url != '/'.freeze && current_user
      sk = "shared_session_key"
      return request.env[sk] if request.env[sk]

      request.env[sk] = key = (session[sk] ||= SecureRandom.hex)
      $redis.setex "#{sk}_#{key}", 7.days, current_user.id.to_s
      key
    end
  end

  def script(*args)
    if SiteSetting.enable_cdn_js_debugging && GlobalSetting.cdn_url
      tags = javascript_include_tag(*args, "crossorigin" => "anonymous")
      tags.gsub!("/assets/", "/cdn_asset/#{Discourse.current_hostname.gsub(".","_")}/")
      tags.gsub!(".js\"", ".js?v=1&origin=#{CGI.escape request.base_url}\"")
      tags.html_safe
    else
      javascript_include_tag(*args)
    end
  end

  def discourse_csrf_tags
    # anon can not have a CSRF token cause these are all pages
    # that may be cached, causing a mismatch between session CSRF
    # and CSRF on page and horrible impossible to debug login issues
    if current_user
      csrf_meta_tags
    end
  end

  def html_classes
    "#{mobile_view? ? 'mobile-view' : 'desktop-view'} #{mobile_device? ? 'mobile-device' : 'not-mobile-device'} #{rtl_class}"
  end

  def rtl_class
    RTL.new(current_user).css_class
  end

  def escape_unicode(javascript)
    if javascript
      javascript = javascript.scrub
      javascript.gsub!(/\342\200\250/u, '&#x2028;')
      javascript.gsub!(/(<\/)/u, '\u003C/')
      javascript.html_safe
    else
      ''
    end
  end

  def with_format(format, &block)
    old_formats = formats
    self.formats = [format]
    block.call
    self.formats = old_formats
    nil
  end

  def age_words(secs)
    AgeWords.age_words(secs)
  end

  def guardian
    @guardian ||= Guardian.new(current_user)
  end

  def mini_profiler_enabled?
    defined?(Rack::MiniProfiler) && admin?
  end

  def admin?
    current_user.try(:admin?)
  end

  def moderator?
    current_user.try(:moderator?)
  end

  def staff?
    current_user.try(:staff?)
  end

  # Creates open graph and twitter card meta data
  def crawlable_meta_data(opts=nil)

    opts ||= {}
    opts[:image] ||= "#{Discourse.base_url}#{SiteSetting.logo_small_url}"
    opts[:url] ||= "#{Discourse.base_url}#{request.fullpath}"

    # Use the correct scheme for open graph
    if opts[:image].present? && opts[:image].start_with?("//")
      uri = URI(Discourse.base_url)
      opts[:image] = "#{uri.scheme}:#{opts[:image]}"
    end

    # Add opengraph tags
    result =  tag(:meta, property: 'og:site_name', content: SiteSetting.title) << "\n"

    result << tag(:meta, name: 'twitter:card', content: "summary")

    # I removed image related opengraph tags from here for now due to
    # https://meta.discourse.org/t/x/22744/18
    [:url, :title, :description].each do |property|
      if opts[property].present?
        escape = (property != :image)
        result << tag(:meta, {property: "og:#{property}", content: opts[property]}, nil, escape) << "\n"
        result << tag(:meta, {name: "twitter:#{property}", content: opts[property]}, nil, escape) << "\n"
      end
    end

    result
  end

  # Look up site content for a key. If the key is blank, you can supply a block and that
  # will be rendered instead.
  def markdown_content(key, replacements=nil)
    result = PrettyText.cook(SiteText.text_for(key, replacements || {})).html_safe
    if result.blank? && block_given?
      yield
      nil
    else
      result
    end
  end

  def application_logo_url
    @application_logo_url ||= (mobile_view? && SiteSetting.mobile_logo_url) || SiteSetting.logo_url
  end

  def login_path
    "#{Discourse::base_uri}/login"
  end

  def mobile_view?
    MobileDetection.resolve_mobile_view!(request.user_agent,params,session)
  end

  def mobile_device?
    MobileDetection.mobile_device?(request.user_agent)
  end

  def customization_disabled?
    session[:disable_customization]
  end

  def loading_admin?
    controller.class.name.split("::").first == "Admin"
  end

  def category_badge(category, opts=nil)
    CategoryBadge.html_for(category, opts).html_safe
  end

end
Initial release of Discourse 2013-02-06 03:16:51 +08:00			`require 'current_user'`
use canonical-url plugin to make view more clean 2013-02-13 19:04:43 +08:00			`require 'canonical_url'`
Initial release of Discourse 2013-02-06 03:16:51 +08:00			`require_dependency 'guardian'`
			`require_dependency 'unread'`
			`require_dependency 'age_words'`
Use tos_url site setting in flag modal if it's set 2013-05-01 23:48:42 +08:00			`require_dependency 'configurable_urls'`
BUGFIX: mobile ui was being cached for anon views 2014-01-09 11:08:42 +08:00			`require_dependency 'mobile_detection'`
UX: Update 404 page category badge to use centralized helper and style 2015-01-29 03:56:18 +08:00			`require_dependency 'category_badge'`
Use a mixin for the `path` function to DRY it up 2015-03-10 03:24:16 +08:00			`require_dependency 'global_path'`
Initial release of Discourse 2013-02-06 03:16:51 +08:00
			`module ApplicationHelper`
			`include CurrentUser`
use canonical-url plugin to make view more clean 2013-02-13 19:04:43 +08:00			`include CanonicalURL::Helpers`
Use tos_url site setting in flag modal if it's set 2013-05-01 23:48:42 +08:00			`include ConfigurableUrls`
Use a mixin for the `path` function to DRY it up 2015-03-10 03:24:16 +08:00			`include GlobalPath`
Initial release of Discourse 2013-02-06 03:16:51 +08:00
FEATURE: allow long polling to go to a different url Added the site setting long_polling_base_url , this allows you to farm long polling to a different server. This setting is very important if a CDN is serving dynamic content. 2014-10-24 10:38:00 +08:00			`def shared_session_key`
			`if SiteSetting.long_polling_base_url != '/'.freeze && current_user`
			`sk = "shared_session_key"`
			`return request.env[sk] if request.env[sk]`

			`request.env[sk] = key = (session[sk] \|\|= SecureRandom.hex)`
			`$redis.setex "#{sk}_#{key}", 7.days, current_user.id.to_s`
			`key`
			`end`
			`end`

FEATURE: get window.onerror working for CDNs 2014-05-15 10:59:26 +08:00			`def script(*args)`
BUGFIX: re-enable CDN js debugging in a robust way May be disabled if needed via site setting 2014-05-19 06:46:09 +08:00			`if SiteSetting.enable_cdn_js_debugging && GlobalSetting.cdn_url`
			`tags = javascript_include_tag(*args, "crossorigin" => "anonymous")`
			`tags.gsub!("/assets/", "/cdn_asset/#{Discourse.current_hostname.gsub(".","_")}/")`
FIX: disable x accl redirect for CDN assets We need to keep headers in tact 2014-07-10 14:32:06 +08:00			`tags.gsub!(".js\"", ".js?v=1&origin=#{CGI.escape request.base_url}\"")`
BUGFIX: re-enable CDN js debugging in a robust way May be disabled if needed via site setting 2014-05-19 06:46:09 +08:00			`tags.html_safe`
			`else`
FEATURE: get window.onerror working for CDNs 2014-05-15 10:59:26 +08:00			`javascript_include_tag(*args)`
BUGFIX: re-enable CDN js debugging in a robust way May be disabled if needed via site setting 2014-05-19 06:46:09 +08:00			`end`
FEATURE: get window.onerror working for CDNs 2014-05-15 10:59:26 +08:00			`end`

we can't trust CSRF for anon the way it is designed. The page they have loaded may be cached we need a different way of delivering the CSRF potentially 2013-05-03 14:43:11 +08:00			`def discourse_csrf_tags`
			`# anon can not have a CSRF token cause these are all pages`
FIX: Again, try to get a flexible absolute logo_url 2013-06-06 06:23:43 +08:00			`# that may be cached, causing a mismatch between session CSRF`
we can't trust CSRF for anon the way it is designed. The page they have loaded may be cached we need a different way of delivering the CSRF potentially 2013-05-03 14:43:11 +08:00			`# and CSRF on page and horrible impossible to debug login issues`
			`if current_user`
			`csrf_meta_tags`
			`end`
			`end`

Revert "Re-apply with fixes: Stop using user agent to detect mobile devices. Use a media query and yepnope to load the appropriate css and customizations." 2013-12-19 03:47:22 +08:00			`def html_classes`
Enable RTL direction in emails. 2014-08-27 19:38:03 +08:00			`"#{mobile_view? ? 'mobile-view' : 'desktop-view'} #{mobile_device? ? 'mobile-device' : 'not-mobile-device'} #{rtl_class}"`
			`end`

			`def rtl_class`
			`RTL.new(current_user).css_class`
Revert "Re-apply with fixes: Stop using user agent to detect mobile devices. Use a media query and yepnope to load the appropriate css and customizations." 2013-12-19 03:47:22 +08:00			`end`

FIX: Invalid Unicode in preload store JSON 2013-07-03 08:43:52 +08:00			`def escape_unicode(javascript)`
			`if javascript`
FEATURE: backport a minimal String#scrub BUGFIX: invalid byte sequence in email would explode all processing 2013-12-30 11:05:25 +08:00			`javascript = javascript.scrub`
fix encoding bug 2013-09-10 14:01:36 +08:00			`javascript.gsub!(/\342\200\250/u, ' ')`
			`javascript.gsub!(/(<\/)/u, '\u003C/')`
			`javascript.html_safe`
FIX: Invalid Unicode in preload store JSON 2013-07-03 08:43:52 +08:00			`else`
			`''`
			`end`
			`end`

Initial release of Discourse 2013-02-06 03:16:51 +08:00			`def with_format(format, &block)`
			`old_formats = formats`
			`self.formats = [format]`
			`block.call`
			`self.formats = old_formats`
			`nil`
			`end`

			`def age_words(secs)`
			`AgeWords.age_words(secs)`
			`end`

			`def guardian`
			`@guardian \|\|= Guardian.new(current_user)`
			`end`

			`def mini_profiler_enabled?`
enforce coding convention replaced every `and` by `&&` and every `or` by `\|\|` 2013-03-05 08:42:44 +08:00			`defined?(Rack::MiniProfiler) && admin?`
Initial release of Discourse 2013-02-06 03:16:51 +08:00			`end`

			`def admin?`
			`current_user.try(:admin?)`
			`end`

moderators now have teeth, more at http://meta.discourse.org/t/moderator-permission-set/6307/5 allow pms to be targetted at groups 2013-05-02 13:15:17 +08:00			`def moderator?`
			`current_user.try(:moderator?)`
			`end`

:s/moderator?/staff/g ... our naming was kind of crazy, renamed moderator? to staff 2013-05-02 15:22:27 +08:00			`def staff?`
			`current_user.try(:staff?)`
			`end`

User Profile enhancements: - Added PreloadStore support to avoid duplicate requests - preliminary SEO - Support for opengraph/twitter cards 2013-03-09 04:04:37 +08:00			`# Creates open graph and twitter card meta data`
			`def crawlable_meta_data(opts=nil)`

			`opts \|\|= {}`
First stab at oneboxing of meta.discourse.org 2013-03-09 04:58:37 +08:00			`opts[:image] \|\|= "#{Discourse.base_url}#{SiteSetting.logo_small_url}"`
User Profile enhancements: - Added PreloadStore support to avoid duplicate requests - preliminary SEO - Support for opengraph/twitter cards 2013-03-09 04:04:37 +08:00			`opts[:url] \|\|= "#{Discourse.base_url}#{request.fullpath}"`
Add opengraph and twitter card support to topics 2013-03-08 06:31:06 +08:00
FIX: Don't return protocol relative URLs for open graph images - we can't be sure our site supports what protocol a remote site is requesting. 2014-08-08 00:58:26 +08:00			`# Use the correct scheme for open graph`
			`if opts[:image].present? && opts[:image].start_with?("//")`
			`uri = URI(Discourse.base_url)`
			`opts[:image] = "#{uri.scheme}:#{opts[:image]}"`
			`end`

Add opengraph and twitter card support to topics 2013-03-08 06:31:06 +08:00			`# Add opengraph tags`
			`result = tag(:meta, property: 'og:site_name', content: SiteSetting.title) << "\n"`
User Profile enhancements: - Added PreloadStore support to avoid duplicate requests - preliminary SEO - Support for opengraph/twitter cards 2013-03-09 04:04:37 +08:00
FIX: Twitter tags were using `property` instead of `name`. 2013-03-16 03:42:21 +08:00			`result << tag(:meta, name: 'twitter:card', content: "summary")`
FIX: Don't return protocol relative URLs for open graph images - we can't be sure our site supports what protocol a remote site is requesting. 2014-08-08 00:58:26 +08:00
remove image opengraph tags 2014-12-24 16:30:55 +08:00			`# I removed image related opengraph tags from here for now due to`
			`# https://meta.discourse.org/t/x/22744/18`
			`[:url, :title, :description].each do \|property\|`
User Profile enhancements: - Added PreloadStore support to avoid duplicate requests - preliminary SEO - Support for opengraph/twitter cards 2013-03-09 04:04:37 +08:00			`if opts[property].present?`
Oops escape everything but image urls 2013-03-09 05:17:56 +08:00			`escape = (property != :image)`
			`result << tag(:meta, {property: "og:#{property}", content: opts[property]}, nil, escape) << "\n"`
FIX: Twitter tags were using `property` instead of `name`. 2013-03-16 03:42:21 +08:00			`result << tag(:meta, {name: "twitter:#{property}", content: opts[property]}, nil, escape) << "\n"`
User Profile enhancements: - Added PreloadStore support to avoid duplicate requests - preliminary SEO - Support for opengraph/twitter cards 2013-03-09 04:04:37 +08:00			`end`
			`end`
Add opengraph and twitter card support to topics 2013-03-08 06:31:06 +08:00
			`result`
			`end`

Support for custom Privacy Policies 2013-06-26 22:57:35 +08:00			`# Look up site content for a key. If the key is blank, you can supply a block and that`
			`# will be rendered instead.`
Can change TOS content via site content editor 2013-04-06 03:21:55 +08:00			`def markdown_content(key, replacements=nil)`
Renaming site contents to site text 2014-09-25 02:45:35 +08:00			`result = PrettyText.cook(SiteText.text_for(key, replacements \|\| {})).html_safe`
Don't double render faq and privacy policy 2013-07-03 23:57:17 +08:00			`if result.blank? && block_given?`
			`yield`
			`nil`
			`else`
			`result`
			`end`
Can change TOS content via site content editor 2013-04-06 03:21:55 +08:00			`end`

FIX: Support text only logos when activating account. 2015-02-26 00:35:47 +08:00			`def application_logo_url`
			`@application_logo_url \|\|= (mobile_view? && SiteSetting.mobile_logo_url) \|\| SiteSetting.logo_url`
			`end`

Logging in with username and password does not work in prefixed discourse 2013-03-20 00:15:14 +08:00			`def login_path`
do not customize the admin section 2013-11-14 23:41:16 +08:00			`"#{Discourse::base_uri}/login"`
Logging in with username and password does not work in prefixed discourse 2013-03-20 00:15:14 +08:00			`end`
Detect whether to use mobile view. Session var mobile_view can override automatic detection. 2013-08-28 02:57:42 +08:00
Revert "Re-apply with fixes: Stop using user agent to detect mobile devices. Use a media query and yepnope to load the appropriate css and customizations." 2013-12-19 03:47:22 +08:00			`def mobile_view?`
BUGFIX: mobile ui was being cached for anon views 2014-01-09 11:08:42 +08:00			`MobileDetection.resolve_mobile_view!(request.user_agent,params,session)`
Revert "Re-apply with fixes: Stop using user agent to detect mobile devices. Use a media query and yepnope to load the appropriate css and customizations." 2013-12-19 03:47:22 +08:00			`end`

			`def mobile_device?`
BUGFIX: mobile ui was being cached for anon views 2014-01-09 11:08:42 +08:00			`MobileDetection.mobile_device?(request.user_agent)`
Add link in hamburger menu to switch between mobile and desktop views 2013-08-30 03:19:28 +08:00			`end`
do not customize the admin section 2013-11-14 23:41:16 +08:00
			`def customization_disabled?`
use the view instead 2015-02-21 01:21:19 +08:00			`session[:disable_customization]`
do not customize the admin section 2013-11-14 23:41:16 +08:00			`end`

FIX: only remove custom CSS in admin on first load 2015-03-03 06:31:04 +08:00			`def loading_admin?`
			`controller.class.name.split("::").first == "Admin"`
			`end`

UX: Update 404 page category badge to use centralized helper and style 2015-01-29 03:56:18 +08:00			`def category_badge(category, opts=nil)`
			`CategoryBadge.html_for(category, opts).html_safe`
			`end`
BUGFIX: mobile ui was being cached for anon views 2014-01-09 11:08:42 +08:00
Initial release of Discourse 2013-02-06 03:16:51 +08:00			`end`