mirror of
https://github.com/discourse/discourse.git
synced 2024-12-30 08:04:53 +08:00
25 lines
764 B
Ruby
25 lines
764 B
Ruby
# frozen_string_literal: true
|
|
|
|
class AddSecureToUploads < ActiveRecord::Migration[5.2]
|
|
def up
|
|
add_column :uploads, :secure, :boolean, default: false, null: false
|
|
|
|
prevent_anons_from_downloading_files =
|
|
DB.query_single(
|
|
"SELECT value FROM site_settings WHERE name = 'prevent_anons_from_downloading_files'",
|
|
).first == "t"
|
|
|
|
execute(<<-SQL) if prevent_anons_from_downloading_files
|
|
UPDATE uploads SET secure = 't' WHERE id IN (
|
|
SELECT DISTINCT(uploads.id) FROM uploads
|
|
INNER JOIN post_uploads ON post_uploads.upload_id = uploads.id
|
|
WHERE LOWER(original_filename) NOT SIMILAR TO '%\.(jpg|jpeg|png|gif|svg|ico)'
|
|
)
|
|
SQL
|
|
end
|
|
|
|
def down
|
|
remove_column :uploads, :secure
|
|
end
|
|
end
|