Review corrections

arkirchner · arkirchner · commit f32a3e7a44ba · 2025-06-05T16:45:52.000+02:00
diff --git a/app/mailers/report_mailer.rb b/app/mailers/report_mailer.rb
@@ -6,6 +6,6 @@ class ReportMailer < ApplicationMailer
   def report_content
     @reported_content = params.fetch(:reported_content)
 
-    mail(subject: "Spam Report: A #{@reported_content.class.name} on CodeOcean has been marked as inappropriate.")
+    mail(subject: I18n.t('report_mailer.report_content.subject', content_name: @reported_content.model_name.human))
   end
 end
diff --git a/app/policies/report_policy.rb b/app/policies/report_policy.rb
@@ -2,16 +2,24 @@
 
 class ReportPolicy < ApplicationPolicy
   def show?
-    reciever_awalible? && @user
+    receiver_available? && reportable_content? && reports_other_user?
   end
 
   def create?
-    reciever_awalible? && @user && [RequestForComment, Comment].include?(@record.class)
+    receiver_available? && reportable_content? && reports_other_user?
   end
 
   private
 
-  def reciever_awalible?
+  def reportable_content?
+    [RequestForComment, Comment].include?(@record.class)
+  end
+
+  def reports_other_user?
+    @record.user != @user
+  end
+
+  def receiver_available?
     ReportMailer.default_params.fetch(:to).present?
   end
 end
diff --git a/app/views/report_mailer/report_content.text.erb b/app/views/report_mailer/report_content.text.erb
@@ -1,15 +1,21 @@
-The following content has been reported as inappropriate:
+<%= t('.prolog') %>
 
 <% case @reported_content %>
   <% when Comment %>
     <%= @reported_content.text %>
+
+    <%= t('.take_action') %>
+
+    <%= rails_admin.show_url(
+          model_name: 'comment',
+          id: @reported_content.id) %>
   <% when RequestForComment %>
     <%= @reported_content.question %>
+
+    <%= t('.take_action') %>
+
+    <%= request_for_comment_url(@reported_content) %>
   <% else %>
     <% raise("Unexpected reported content: #{@reported_content.class.name}") %>
 <% end %>
 
-Please take action on the admin page if required.
-<%= rails_admin.show_url(
-      model_name: @reported_content.class.name.underscore,
-      id: @reported_content.id) %>
diff --git a/app/views/reports/_button.html.slim b/app/views/reports/_button.html.slim
@@ -1,4 +1,4 @@
-- if policy(:report).show?
+- if policy(:report, reported_content).show?
   = button_to t('reports.report'), reports_path,
       params: {global_content_id: reported_content.to_global_id},
       data: {confirm: t('reports.confirm')},
diff --git a/config/locales/de/report.yml b/config/locales/de/report.yml
@@ -4,3 +4,8 @@ de:
     confirm: Möchten Sie diesen Inhalt melden?
     report: melden
     reported: Vielen Dank, dass Sie uns auf dieses Problem aufmerksam gemacht haben. Wir werden uns in Kürze darum kümmern.
+  report_mailer:
+    report_content:
+      subject: "Spam Report: A %{content_name} on CodeOcean has been marked as inappropriate."
+      prolog: "Die folgenden Inhalte wurden als unangemessen gemeldet:"
+      take_action: Bitte ergreifen Sie gegebenenfalls Maßnahmen.
diff --git a/config/locales/en/report.yml b/config/locales/en/report.yml
@@ -4,3 +4,8 @@ en:
     confirm: Do you want to report this content?
     report: report
     reported: Thank you for letting us know about this issue. We look into the matter shorty.
+  report_mailer:
+    report_content:
+      subject: "Spam Report: A %{content_name} on CodeOcean has been marked as inappropriate."
+      prolog: "The following content has been reported as inappropriate:"
+      take_action: Please take action if required.
diff --git a/config/routes.rb b/config/routes.rb
@@ -150,6 +150,8 @@
 
   match '/forgot_password', as: 'forgot_password', to: 'internal_users#forgot_password', via: %i[get post]
 
+  resources :reports, only: :create
+
   resources :sessions, only: %i[create destroy new]
   resources :webauthn_credential_authentication, only: %i[new create]
 
@@ -196,8 +198,6 @@
   get 'service-worker', to: 'rails/pwa#service_worker', as: :pwa_service_worker, defaults: {format: :js}
   get 'manifest(.:file_extension)', to: 'rails/pwa#manifest', as: :pwa_manifest, defaults: {format: :webmanifest}, format: false, constraints: {file_extension: %w[json webmanifest]}
 
-  resources :reports, only: :create
-
   # Defines the root path route ("/")
   root to: 'application#welcome'
 end
diff --git a/docs/LOCAL_SETUP.md b/docs/LOCAL_SETUP.md
@@ -158,9 +158,6 @@ do
     cp config/$f.example config/$f
   fi
 done
-
-sed -i.bak 's/^# - mail@example.com/- mail@example.com/' config/code_ocean.yml
-rm config/code_ocean.yml.bak
 ```
 
 Then, you should check all config files manually and adjust settings where necessary for your environment.
diff --git a/spec/mailers/report_mailer_spec.rb b/spec/mailers/report_mailer_spec.rb
@@ -12,7 +12,7 @@
       let(:reported_content) { create(:rfc, question: 'Inappropriate content for RfC.') }
 
       it 'sets the correct subject' do
-        expect(mail.subject).to eq('Spam Report: A RequestForComment on CodeOcean has been marked as inappropriate.')
+        expect(mail.subject).to eq(I18n.t('report_mailer.report_content.subject', content_name: RequestForComment.model_name.human ))
       end
 
       it 'includes the reported content' do
@@ -25,7 +25,7 @@
     end
 
     it 'sets the correct subject' do
-      expect(mail.subject).to eq('Spam Report: A Comment on CodeOcean has been marked as inappropriate.')
+      expect(mail.subject).to eq(I18n.t('report_mailer.report_content.subject', content_name: Comment.model_name.human ))
     end
 
     it 'sets the correct receiver' do
diff --git a/spec/policies/report_policy_spec.rb b/spec/policies/report_policy_spec.rb
@@ -19,6 +19,12 @@
 
       expect(policy).not_to permit(user, Comment.new)
     end
+    
+    it 'dose not allow reports of your own content' do
+      user = build_stubbed(:external_user)
+
+      expect(policy).not_to permit(user, Comment.new(user: user))
+    end
   end
 
   permissions(:create?) do
@@ -28,6 +34,14 @@
       end
     end
 
+    it 'allows reports on RfCs and Comments' do
+      user = build_stubbed(:external_user)
+
+      expect(policy).to permit(user, Comment.new)
+      expect(policy).to permit(user, RequestForComment.new)
+      expect(policy).not_to permit(user, ExternalUser.new)
+    end
+
     it 'dose not allow reports when no report email is configured' do
       user = build_stubbed(:external_user)
 
@@ -36,12 +50,10 @@
       expect(policy).not_to permit(user, Comment.new)
     end
 
-    it 'allows reports on RfCs and Comments' do
+    it 'dose not allow reports of your own content' do
       user = build_stubbed(:external_user)
 
-      expect(policy).to permit(user, Comment.new)
-      expect(policy).to permit(user, RequestForComment.new)
-      expect(policy).not_to permit(user, ExternalUser.new)
+      expect(policy).not_to permit(user, Comment.new(user: user))
     end
   end
 end
diff --git a/spec/system/request_for_comments_filter_system_spec.rb b/spec/system/request_for_comments_filter_system_spec.rb
@@ -44,10 +44,10 @@
 
     expect do
       accept_confirm do
-        click_on 'report'
+        click_on I18n.t('reports.report')
       end
 
-      expect(page).to have_text('We have received your Report.')
+      expect(page).to have_text(I18n.t('reports.reported'))
     end.to have_enqueued_mail(ReportMailer, :report_content)
       .with(params: {reported_content: request_for_comment}, args: [])
   end

Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,4 @@`
`1`		`-- if policy(:report).show?`
	`1`	`+- if policy(:report, reported_content).show?`
`2`	`2`	`= button_to t('reports.report'), reports_path,`
`3`	`3`	`params: {global_content_id: reported_content.to_global_id},`
`4`	`4`	`data: {confirm: t('reports.confirm')},`