Merge remote-tracking branch 'glitch/master' into production

author: reverite <samantha@chalker.io> 2019-03-15 05:54:30 -0700
committer: reverite <samantha@chalker.io> 2019-03-15 05:54:30 -0700
commit: 75eeb003b09c53d3b4e98046d1c20b0ad8a887bb (patch)
tree: d2ae669ee583c613a474f8698b7ea718da803819 /app/controllers/settings
parent: 41d1369391d70a9cd25bdf96cfe567975793ef5a (diff)
parent: c2fa0f7c40bcc4064e8baaa221665eadd391c001 (diff)
1 files changed, 16 insertions, 2 deletions
diff --git a/app/controllers/settings/exports_controller.rb b/app/controllers/settings/exports_controller.rb
index cf8745576..7f76668d5 100644
--- a/app/controllers/settings/exports_controller.rb
+++ b/app/controllers/settings/exports_controller.rb
@@ -9,11 +9,25 @@ class Settings::ExportsController < Settings::BaseController
   end
 
   def create
-    authorize :backup, :create?
+    raise Mastodon::NotPermittedError unless user_signed_in?
+
+    backup = nil
+
+    RedisLock.acquire(lock_options) do |lock|
+      if lock.acquired?
+        authorize :backup, :create?
+        backup = current_user.backups.create!
+      else
+        raise Mastodon::RaceConditionError
+      end
+    end
 
-    backup = current_user.backups.create!
     BackupWorker.perform_async(backup.id)
 
     redirect_to settings_export_path
   end
+
+  def lock_options
+    { redis: Redis.current, key: "backup:#{current_user.id}" }
+  end
 end
author	reverite <samantha@chalker.io>	2019-03-15 05:54:30 -0700
committer	reverite <samantha@chalker.io>	2019-03-15 05:54:30 -0700
commit	75eeb003b09c53d3b4e98046d1c20b0ad8a887bb (patch)
tree	d2ae669ee583c613a474f8698b7ea718da803819 /app/controllers/settings
parent	41d1369391d70a9cd25bdf96cfe567975793ef5a (diff)
parent	c2fa0f7c40bcc4064e8baaa221665eadd391c001 (diff)