# frozen_string_literal: true class Api::V1::ReportsController < Api::BaseController before_action -> { doorkeeper_authorize! :write, :'write:reports' }, only: [:create] before_action :require_user! override_rate_limit_headers :create, family: :reports def create @report = ReportService.new.call( current_account, reported_account, status_ids: reported_status_ids, comment: report_params[:comment], forward: report_params[:forward] ) render json: @report, serializer: REST::ReportSerializer end private def reported_status_ids reported_account.statuses.with_discarded.permitted_for(reported_account, current_account).find(status_ids).pluck(:id) end def status_ids Array(report_params[:status_ids]) end def reported_account Account.find(report_params[:account_id]) end def report_params params.permit(:account_id, :comment, :forward, status_ids: []) end end