Turned off csrf and changed some files

Author: vb-cmd

app/admin/admin_users.rb

@@ -21,6 +21,14 @@
   end
 
   show do |admin_user|
+    panel 'Avatar' do
+      if admin_user.avatar.attached?
+        image_tag admin_user.avatar
+      else
+        para 'No avatar'
+      end
+    end
+
     panel 'Content' do
       admin_user.body
     end
@@ -57,6 +65,7 @@
       f.input :email
       f.input :name
       f.input :body
+      f.input :avatar, as: :file
       f.input :password
       f.input :password_confirmation
     end

app/admin/comments.rb

@@ -32,7 +32,7 @@
   filter :published
   filter :body
   filter :post
-  # filter :user, as: :select, collection: User.all.map { |u| [u.email, u.id] }
+  filter :user, as: :select, collection: User.all.map { |u| [u.email, u.id] }
   filter :updated_at
   filter :created_at
 

app/admin/likes.rb

@@ -10,7 +10,7 @@
     actions
   end
 
-  # filter :user, as: :select, collection: User.all.map { |u| [u.email, u.id] }
+  filter :user, as: :select, collection: User.all.map { |u| [u.email, u.id] }
   filter :record_type
   filter :created_at
   filter :updated_at
@@ -19,7 +19,8 @@
     f.inputs do
       f.semantic_errors
       f.input :user, collection: User.all.map { |u| [u.email, u.id] }
-      f.input :record, collection: Post.all
+      f.input :record_type, as: :hidden, input_html: { value: 'Post' }
+      f.input :record, collection: Post.all.map { |u| [u.title, u.id] }
     end
     f.actions
   end

app/controllers/blog/base_controller.rb

@@ -1,14 +1,5 @@
 module Blog
   class BaseController < ApplicationController
     layout 'blog/application'
-
-    # before_action :configure_permitted_parameters, if: :devise_controller?
-
-    # private
-
-    # def configure_permitted_parameters
-    #   devise_parameter_sanitizer.permit(:sign_up, keys: %i[name avatar body])
-    #   devise_parameter_sanitizer.permit(:account_update, keys: %i[name avatar body])
-    # end
   end
 end

app/controllers/blog/comments_controller.rb

@@ -15,10 +15,6 @@ def create
 
     private
 
-    def render_not_allowed
-      render_without_layout('messages', :forbidden, messages: [t('.not_allowed')])
-    end
-
     def can_create_comment?
       Post.find(params[:post_id]).comments_enabled?
     end
@@ -29,6 +25,10 @@ def comment_params
             .merge(post: Post.find(params[:post_id]), user: current_user)
     end
 
+    def render_not_allowed
+      render_without_layout('messages', :forbidden, messages: [t('.not_allowed')])
+    end
+
     def render_without_layout(partial, status, **locals)
       render partial:,
              locals:,

app/controllers/blog/likes_controller.rb

@@ -9,7 +9,7 @@ def update
       else
         @post.like(current_user)
       end
-      
+
       render partial: 'update', layout: false
     end
 

config/environments/production.rb

@@ -90,4 +90,6 @@
 
   # Do not dump schema after migrations.
   config.active_record.dump_schema_after_migration = false
+
+  config.action_controller.allow_forgery_protection = false
 end

config/locales/en.yml

@@ -4,7 +4,6 @@ en:
     navbar:
       home: Home
       search: Search
-  
   blog:
     search:
       index:
@@ -46,171 +45,4 @@ en:
           keywords: '%{name}, profile %{name}, account %{name}, my %{name}, blog'
           description: 'Hello everyone! My name is %{name}. It is my official account on %{site_name}.'
     likes:
-      update: 'Likes: %{count}'
-  admin:
-    dashboards:
-      index:
-        meta:
-          title: Dashboard
-      statistics:
-        meta:
-          title: Statistics
-    categories:
-      edit:
-        title: 'Edit a category'
-        meta:
-          title: 'Edit a category: %{title}'
-      index:
-        meta:
-          title: 'All categories'
-        table:
-          number: '#'
-          title: 'Title'
-          posts: 'Posts'
-          meta: 'Meta data'
-          management: 'Management'
-      new:
-        meta:
-          title: 'Create a new category'
-        title: 'Create a new category'
-      posts:
-        meta:
-          title: 'All posts from the category: %{title}'
-      form:
-        title: 'Name: '
-        description: 'Description: '
-        meta: 'Meta data' 
-        meta_description: 'Description: '
-        meta_keywords: 'Keywords: '
-        meta_title: 'Title: '
-        submit: 'Send'
-    comments:
-      form:
-        body: 'Comment: '
-        publish: 'Published: '
-        user: 'Choose a user: '
-        post: 'Choose a post: '
-        submit: 'Send'
-      table:
-        number: '#'
-        body: 'Comment'
-        published: 'Published'
-        user: 'User'
-        post: 'Post'
-        management: 'Management'
-      edit:
-        title: 'Edit a comment'
-        meta:
-          title: 'Edit a comment'
-      index:
-        meta:
-          title: 'All comments'
-      new:
-        meta:
-          title: 'Create a new comment'
-        title: 'Create a new comment'
-    pages:
-      form:
-        title: 'Name: '
-        body: 'Content: '
-        published: 'Published: '
-        meta_description: 'Description: '
-        meta_keywords: 'Keywords: '
-        meta_title: 'Title: '
-        meta: 'Meta data: '
-        submit: 'Send'
-      edit:
-        title: 'Edit a page'
-        meta:
-          title: 'Edit a page: %{title}'
-      index:
-        meta:
-          title: 'All pages'
-        table:
-          number: '#'
-          title: 'Title'
-          published: 'Published'
-          meta: 'Meta data'
-          management: 'Management'
-      new:
-        meta:
-          title: 'Create a new page'
-        title: 'Create a new page'
-    panel:
-      management_links:
-        show: 'Show'
-        edit: 'Edit'
-        delete: 'Destroy'
-    posts:
-      form:
-        title: 'Name: '
-        description: 'Description: '
-        body: 'Content: '
-        published: 'Published: '
-        comments_enabled: 'Allow commenting on this post: '
-        category: 'Category: '
-        meta_description: 'Description: '
-        meta_keywords: 'Keywords: '
-        meta_title: 'Title: '
-        meta: 'Meta data: '
-        submit: 'Send'
-      table:
-        number: '#'
-        title: 'Title'
-        published: 'Published'
-        comments_enabled: 'Comments enabled'
-        comments: 'Comments'
-        category: 'Category'
-        meta: 'Meta data'
-        management: 'Management'
-      comments:
-        meta:
-          title: 'All comments from the post: %{title}'
-      edit:
-        title: 'Edit a post'
-        meta:
-          title: 'Edit a post: %{title}'
-      index:
-        meta:
-          title: 'All posts'
-      new:
-        meta:
-          title: 'Create a new post'
-        title: 'Create a new post'
-    users:
-      form:
-        email: 'Email: '
-        password: 'Password: '
-        password_confirmation: 'Password confirmation: '
-        name: 'Name: '
-        role: 'Role: '
-        body: 'Content: '
-        avatar: 'Avatar: '
-        submit: 'Send'
-      comments:
-        meta:
-          title: 'All comments from the user: %{name}'
-      edit:
-        title: 'Edit a user'
-        meta:
-          title: 'Edit a user: %{name}'
-      index:
-        meta:
-          title: 'All users'
-        table:
-          number: '#'
-          email: 'Email'
-          name: 'Name'
-          posts: 'Posts'
-          comments: 'Comments'
-          management: 'Management'
-      new:
-        meta:
-          title: 'Create a new user'
-        title: 'Create a new user'
-      posts:
-        meta:
-          title: 'All posts from the user: %{name}'
-      show:
-        meta:
-          title: 'User: %{name}'
+      update: 'Likes: %{count}'