mirror of
https://github.com/TryGhost/Ghost.git
synced 2025-01-27 22:49:56 -05:00
f02c2acd71
* Ensures that posts listing only shows posts that the current user authored, if they only have the Author role. * Do not transition into the posts.post route if the current user is not the author (but has the Author role). This is needed because the API server will always return the post (regardless of the current user).
67 lines
1.9 KiB
JavaScript
67 lines
1.9 KiB
JavaScript
import loadingIndicator from 'ghost/mixins/loading-indicator';
|
|
import ShortcutsRoute from 'ghost/mixins/shortcuts-route';
|
|
|
|
var PostsPostRoute = Ember.Route.extend(SimpleAuth.AuthenticatedRouteMixin, loadingIndicator, ShortcutsRoute, {
|
|
model: function (params) {
|
|
var self = this,
|
|
post,
|
|
postId,
|
|
paginationSettings;
|
|
|
|
postId = Number(params.post_id);
|
|
|
|
if (!_.isNumber(postId) || !_.isFinite(postId) || postId % 1 !== 0 || postId <= 0)
|
|
{
|
|
return this.transitionTo('error404', params.post_id);
|
|
}
|
|
|
|
post = this.store.getById('post', postId);
|
|
|
|
if (post) {
|
|
return post;
|
|
}
|
|
|
|
paginationSettings = {
|
|
id: postId,
|
|
status: 'all',
|
|
staticPages: 'all'
|
|
};
|
|
|
|
return this.store.find('user', 'me').then(function (user) {
|
|
if (user.get('isAuthor')) {
|
|
paginationSettings.author = user.get('slug');
|
|
}
|
|
|
|
return self.store.find('post', paginationSettings).then(function (records) {
|
|
var post = records.get('firstObject');
|
|
|
|
if (user.get('isAuthor') && user.get('id') !== post.get('author_id')) {
|
|
// do not show the post if they are an author but not this posts author
|
|
post = null;
|
|
}
|
|
|
|
if (post) {
|
|
return post;
|
|
}
|
|
|
|
return self.transitionTo('posts.index');
|
|
});
|
|
});
|
|
},
|
|
setupController: function (controller, model) {
|
|
this._super(controller, model);
|
|
|
|
this.controllerFor('posts').set('currentPost', model);
|
|
},
|
|
|
|
shortcuts: {
|
|
'enter': 'openEditor'
|
|
},
|
|
actions: {
|
|
openEditor: function () {
|
|
this.transitionTo('editor.edit', this.get('controller.model'));
|
|
}
|
|
}
|
|
});
|
|
|
|
export default PostsPostRoute;
|