scinote-web/app/controllers/api/v1/steps_controller.rb

74 lines
2.3 KiB
Ruby
Raw Normal View History

# frozen_string_literal: true
module Api
module V1
class StepsController < BaseController
include Api::V1::ExtraParams
before_action :load_team, :load_project, :load_experiment, :load_task, :load_protocol
before_action only: :show do
load_step(:id)
end
before_action :load_step_for_managing, only: %i(update destroy)
def index
steps = @protocol.steps.page(params.dig(:page, :number)).per(params.dig(:page, :size))
render jsonapi: steps, each_serializer: StepSerializer,
include: include_params,
2020-08-07 22:51:57 +08:00
rte_rendering: render_rte?,
team: @team
end
def show
render jsonapi: @step, serializer: StepSerializer,
include: include_params,
2020-08-07 22:51:57 +08:00
rte_rendering: render_rte?,
team: @team
end
def create
raise PermissionError.new(Protocol, :create) unless can_manage_protocol_in_module?(@protocol)
step = @protocol.steps.create!(step_params.merge!(completed: false,
user: current_user,
position: @protocol.number_of_steps))
render jsonapi: step, serializer: StepSerializer, status: :created
end
def update
@step.assign_attributes(step_params)
if @step.changed? && @step.save!
render jsonapi: @step, serializer: StepSerializer, status: :ok
else
render body: nil, status: :no_content
end
end
def destroy
@step.destroy!
render body: nil
end
private
def step_params
raise TypeError unless params.require(:data).require(:type) == 'steps'
params.require(:data).require(:attributes).permit(:name, :description, :completed)
end
def permitted_includes
%w(tables assets checklists checklists.checklist_items comments user)
end
def load_step_for_managing
@step = @protocol.steps.find(params.require(:id))
raise PermissionError.new(Protocol, :manage) unless can_manage_protocol_in_module?(@step.protocol)
end
end
end
end