OAuth2: Add 'report' scope (works for 'hide' too)

2026-04-27 03:00:12 -04:00 · 2014-02-11 17:30:35 -08:00
parent 6ae5866162
commit 4ae88aae40
2 changed files with 9 additions and 0 deletions
--- a/r2/r2/controllers/api.py
+++ b/r2/r2/controllers/api.py
@@ -1245,6 +1245,7 @@ class ApiController(RedditController, OAuth2ResourceController):
        sr._commit()
        jquery.refresh()

+    @require_oauth2_scope("report")
    @noresponse(VUser(), VModhash(),
                thing = VByName('id'))
    @api_doc(api_section.links_and_comments)
@@ -2491,6 +2492,7 @@ class ApiController(RedditController, OAuth2ResourceController):
    def POST_read_message(self, things):
        self.unread_handler(things, False)

+    @require_oauth2_scope("report")
    @noresponse(VUser(),
                VModhash(),
                thing = VByName('id', thing_cls=Link))
@@ -2506,6 +2508,7 @@ class ApiController(RedditController, OAuth2ResourceController):
        if not thing: return
        thing._hide(c.user)

+    @require_oauth2_scope("report")
    @noresponse(VUser(),
                VModhash(),
                thing = VByName('id'))
--- a/r2/r2/models/token.py
+++ b/r2/r2/models/token.py
@@ -173,6 +173,12 @@ class OAuth2Scope:
            "name": _("Read Content"),
            "description": _("Access posts and comments through my account."),
        },
+        "report": {
+            "id": "report",
+            "name": _("Report content"),
+            "description": _("Report content for rules violations. "
+                             "Hide & show individual submissions."),
+        },
        "save": {
            "id": "save",
            "name": _("Save Content"),