# frozen_string_literal: true class Api::V2::SearchController < Api::BaseController include Authorization RESULTS_LIMIT = (ENV['MAX_SEARCH_RESULTS'] || 20).to_i before_action -> { authorize_if_got_token! :read, :'read:search' } before_action :validate_search_params! with_options unless: :user_signed_in? do before_action :query_pagination_error, if: :pagination_requested? before_action :remote_resolve_error, if: :remote_resolve_requested? end def index @search = Search.new(search_results) render json: @search, serializer: REST::SearchSerializer rescue Mastodon::SyntaxError unprocessable_entity rescue ActiveRecord::RecordNotFound not_found end private def validate_search_params! params.require(:q) end def query_pagination_error render json: { error: 'Search queries pagination is not supported without authentication' }, status: 401 end def remote_resolve_error render json: { error: 'Search queries that resolve remote resources are not supported without authentication' }, status: 401 end def remote_resolve_requested? truthy_param?(:resolve) end def pagination_requested? params[:offset].present? end def search_results SearchService.new.call( params[:q], current_account, limit_param(RESULTS_LIMIT), combined_search_params ) end def combined_search_params search_params.merge( resolve: truthy_param?(:resolve), exclude_unreviewed: truthy_param?(:exclude_unreviewed), following: truthy_param?(:following) ) end def search_params params.permit(:type, :offset, :min_id, :max_id, :account_id, :following) end end