htwkmooc/codeocean
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
4cbf9970b13362efd4588392cafe4f7fd7cb31c3
codeocean/app/controllers/internal_users_controller.rb

132 lines
4.0 KiB
Ruby
Raw Blame History

class InternalUsersController < ApplicationController
before_action :require_activation_token, only: :activate
before_action :require_reset_password_token, only: :reset_password
before_action :set_user, only: MEMBER_ACTIONS
skip_before_action :verify_authenticity_token, only: :activate
skip_after_action :verify_authorized, only: [:activate, :forgot_password, :reset_password]
def activate
if request.patch? || request.put?
respond_to do |format|
if @user.update(params[:internal_user].permit(:password, :password_confirmation))
@user.activate!
format.html { redirect_to(sign_in_path, notice: t('.success')) }
format.json { render(nothing: true, status: :ok) }
else
format.html { render(:activate) }
format.json { render(json: @user.errors, status: :unprocessable_entity) }
end
end
end
end
def authorize!
authorize(@user || @users)
end
private :authorize!
def create
@user = InternalUser.new(internal_user_params)
authorize!
@user.send(:setup_activation)
respond_to do |format|
if @user.save
@user.send(:send_activation_needed_email!)
format.html { redirect_to(@user, notice: t('shared.object_created', model: InternalUser.model_name.human)) }
format.json { render(:show, location: @user, status: :created) }
else
format.html { render(:new) }
format.json { render(json: @user.errors, status: :unprocessable_entity) }
end
end
end
def destroy
@user.destroy
respond_to do |format|
format.html { redirect_to(internal_users_url, notice: t('shared.object_destroyed', model: InternalUser.model_name.human)) }
format.json { head(:no_content) }
end
end
def edit
end
def forgot_password
if request.get? && current_user
flash[:warning] = t('shared.already_signed_in')
redirect_to(:root)
elsif request.post?
if params[:email].present?
InternalUser.find_by(email: params[:email]).try(:deliver_reset_password_instructions!)
flash[:notice] = t('.success')
redirect_to(:root)
end
end
end
def index
@search = InternalUser.search(params[:q])
@users = @search.result.order(:name)
authorize!
end
def internal_user_params
params[:internal_user].permit(:consumer_id, :email, :name, :role)
end
private :internal_user_params
def new
@user = InternalUser.new
authorize!
end
def require_activation_token
@user = InternalUser.load_from_activation_token(params[:token] || params[:internal_user].try(:[], :activation_token))
render_not_authorized unless @user
end
private :require_activation_token
def require_reset_password_token
@user = InternalUser.load_from_reset_password_token(params[:token] || params[:internal_user].try(:[], :reset_password_token))
render_not_authorized unless @user
end
private :require_reset_password_token
def reset_password
if request.patch? || request.put?
respond_to do |format|
if @user.update(params[:internal_user].permit(:password, :password_confirmation))
@user.change_password!(params[:internal_user][:password])
format.html { redirect_to(sign_in_path, notice: t('.success')) }
format.json { render(nothing: true, status: :ok) }
else
format.html { render(:reset_password) }
format.json { render(json: @user.errors, status: :unprocessable_entity) }
end
end
end
end
def set_user
@user = InternalUser.find(params[:id])
authorize!
end
private :set_user
def show
end
def update
respond_to do |format|
if @user.update(internal_user_params)
format.html { redirect_to(@user, notice: t('shared.object_updated', model: InternalUser.model_name.human)) }
format.json { render(:show, location: @user, status: :ok) }
else
format.html { render(:edit) }
format.json { render(json: @user.errors, status: :unprocessable_entity) }
end
end
end
end
Reference in New Issue View Git Blame Copy Permalink