scinote-web/app/controllers/assets_controller.rb

394 lines
12 KiB
Ruby
Raw Normal View History

# frozen_string_literal: true
2016-02-12 23:52:43 +08:00
class AssetsController < ApplicationController
2016-09-29 21:30:55 +08:00
include WopiUtil
2019-06-19 21:19:47 +08:00
include AssetsActions
include ActiveStorage::SetCurrent
2017-03-13 20:20:49 +08:00
include ActionView::Helpers::AssetTagHelper
include ActionView::Helpers::TextHelper
2017-03-13 20:20:49 +08:00
include ActionView::Helpers::UrlHelper
include ActionView::Context
include ActiveStorageFileUtil
include ApplicationHelper
2017-03-13 20:20:49 +08:00
include InputSanitizeHelper
include FileIconsHelper
include MyModulesHelper
2016-09-29 21:30:55 +08:00
2020-10-22 19:41:17 +08:00
helper_method :wopi_file_edit_button_status
2019-03-16 03:59:15 +08:00
before_action :load_vars, except: :create_wopi_file
before_action :check_read_permission, except: %i(edit destroy create_wopi_file toggle_view_mode)
before_action :check_edit_permission, only: %i(edit destroy toggle_view_mode)
2018-03-30 17:50:28 +08:00
def file_preview
2020-10-22 19:41:17 +08:00
render json: { html: render_to_string(
partial: 'shared/file_preview/content',
2020-10-22 19:41:17 +08:00
locals: {
asset: @asset,
can_edit: can_manage_asset?(@asset),
2020-11-26 22:35:06 +08:00
gallery: params[:gallery],
preview: params[:preview]
},
formats: :html
2020-10-22 19:41:17 +08:00
) }
end
def toggle_view_mode
2020-09-25 21:06:09 +08:00
@asset.view_mode = toggle_view_mode_params[:view_mode]
@asset.save!(touch: false)
2023-10-09 19:15:54 +08:00
render json: AssetSerializer.new(@asset, scope: { user: current_user }).as_json
end
def load_asset
gallery_view_id = if @assoc.is_a?(Step)
@assoc.id
elsif @assoc.is_a?(Result)
@assoc.my_module.id
end
render json: { html: render_to_string(partial: 'assets/asset',
locals: {
asset: @asset,
gallery_view_id: gallery_view_id
},
formats: :html) }
end
def move_targets
if @assoc.is_a?(Step)
protocol = @assoc.protocol
2023-08-25 15:46:53 +08:00
render json: { targets: protocol.steps.order(:position).where.not(id: @assoc.id).map { |i| [i.id, i.name] } }
elsif @assoc.is_a?(Result)
my_module = @assoc.my_module
render json: { targets: my_module.results.active.where.not(id: @assoc.id).map { |i| [i.id, i.name] } }
else
render json: { targets: [] }
end
end
def move
case @assoc
when Step
target = @assoc.protocol.steps.find_by(id: params[:target_id])
when Result
target = @assoc.my_module.results.active.find_by(id: params[:target_id])
return render_404 unless target
end
ActiveRecord::Base.transaction do
if @assoc.is_a?(Step)
object_to_update = @asset.step_asset
object_to_update.update!(step: target)
if @assoc.protocol.in_module?
log_step_activity(
@asset.file.metadata[:asset_type] == 'marvinjs' ? :move_chemical_structure_on_step : :task_step_file_moved,
@assoc,
@assoc.my_module.project,
my_module: @assoc.my_module.id,
file: @asset.file_name,
user: current_user.id,
step_position_original: @asset.step.position + 1,
step_original: @asset.step.id,
step_position_destination: target.position + 1,
step_destination: target.id
)
else
log_step_activity(
@asset.file.metadata[:asset_type] == 'marvinjs' ? :move_chemical_structure_on_step_in_repository : :protocol_step_file_moved,
@assoc,
nil,
protocol: @assoc.protocol.id,
file: @asset.file_name,
user: current_user.id,
step_position_original: @asset.step.position + 1,
step_original: @asset.step.id,
step_position_destination: target.position + 1,
step_destination: target.id
)
end
2023-08-30 17:48:16 +08:00
render json: {}
elsif @assoc.is_a?(Result)
object_to_update = @asset.result_asset
object_to_update.update!(result: target)
type_of = {
'marvinjs' => :move_chemical_structure_on_result,
'gene_sequence' => :sequence_on_result_moved
}.fetch(@asset.file.metadata[:asset_type], :result_file_moved)
2023-09-27 18:47:35 +08:00
log_result_activity(
type_of,
@assoc,
file: @asset.file_name,
user: current_user.id,
result_original: @assoc.id,
result_destination: target.id
)
2023-08-30 17:48:16 +08:00
render json: {}
end
rescue ActiveRecord::RecordInvalid
render json: object_to_update.errors, status: :unprocessable_entity
2023-08-30 17:48:16 +08:00
raise ActiveRecord::Rollback
end
end
def file_url
return render_404 unless @asset.file.attached?
render plain: @asset.file.blob.url
end
def download
redirect_to rails_blob_path(@asset.file, disposition: 'attachment')
end
def show
if @asset
render json: @asset, serializer: AssetSerializer, user: current_user
else
render json: { error: 'Asset not found' }, status: :not_found
end
end
def edit
action = @asset.file_size.zero? && !@asset.locked? ? 'editnew' : 'edit'
@action_url = append_wd_params(@asset.get_action_url(current_user, action, false))
2016-09-29 18:19:29 +08:00
@favicon_url = @asset.favicon_url('edit')
tkn = current_user.get_wopi_token
@token = tkn.token
@ttl = (tkn.ttl * 1000).to_s
2020-10-22 19:41:17 +08:00
@asset.step&.protocol&.update(updated_at: Time.zone.now)
2016-09-29 21:30:55 +08:00
create_wopi_file_activity(current_user, true)
2016-10-04 02:02:13 +08:00
render layout: false
end
def view
@action_url = append_wd_params(@asset.get_action_url(current_user, 'view', false))
2016-09-29 18:19:29 +08:00
@favicon_url = @asset.favicon_url('view')
tkn = current_user.get_wopi_token
@token = tkn.token
@ttl = (tkn.ttl * 1000).to_s
2016-10-04 02:02:13 +08:00
render layout: false
end
def pdf_preview
return render plain: '', status: :not_acceptable unless previewable_document?(@asset.blob)
return render plain: '', status: :accepted unless @asset.pdf_preview_ready?
redirect_to @asset.file_pdf_preview.url
end
2019-06-19 21:19:47 +08:00
def create_start_edit_image_activity
create_edit_image_activity(@asset, current_user, :start_editing)
end
2018-10-19 16:00:58 +08:00
def update_image
@asset = Asset.find(params[:id])
orig_file_size = @asset.file_size
orig_file_name = @asset.file_name
2018-10-19 16:00:58 +08:00
return render_403 unless can_read_team?(@asset.team)
@asset.last_modified_by = current_user
@asset.file.attach(io: params.require(:image), filename: orig_file_name)
2018-10-19 16:00:58 +08:00
@asset.save!
2019-06-19 21:19:47 +08:00
create_edit_image_activity(@asset, current_user, :finish_editing)
# release previous image space
@asset.team.release_space(orig_file_size)
2018-10-19 16:00:58 +08:00
# Post process file here
@asset.post_process_file
2020-10-22 19:41:17 +08:00
@asset.step&.protocol&.update(updated_at: Time.zone.now)
render_html = if [Result, Step].include?(@assoc.class)
gallery_view_id = if @assoc.is_a?(Step)
@assoc.id
elsif @assoc.is_a?(Result)
@assoc.my_module.id
end
2019-09-26 22:49:56 +08:00
render_to_string(
partial: 'assets/asset',
locals: {
asset: @asset,
gallery_view_id: gallery_view_id
},
2019-09-26 22:49:56 +08:00
formats: :html
)
else
render_to_string(
partial: 'assets/asset_link',
locals: { asset: @asset, display_image_tag: true },
formats: :html
)
end
render json: { html: render_html }
2018-10-19 16:00:58 +08:00
end
2019-03-18 02:23:17 +08:00
# POST: create_wopi_file_path
2019-03-16 03:59:15 +08:00
def create_wopi_file
2019-03-18 02:23:17 +08:00
# Presence validation
2019-03-21 15:47:52 +08:00
params.require(%i(element_type element_id file_type))
2019-03-19 17:19:27 +08:00
2019-03-18 02:23:17 +08:00
# File type validation
2019-03-19 17:19:27 +08:00
render_403 && return unless %w(docx xlsx pptx).include?(params[:file_type])
2019-03-18 02:23:17 +08:00
# Asset validation
2019-10-04 20:24:19 +08:00
asset = Asset.new(created_by: current_user, team: current_team)
asset.file.attach(io: StringIO.new,
filename: "#{params[:file_name]}.#{params[:file_type]}",
content_type: wopi_content_type(params[:file_type]))
2019-03-18 02:23:17 +08:00
2019-03-21 15:47:52 +08:00
unless asset.valid?(:wopi_file_creation)
render json: {
message: asset.errors
2020-09-25 21:06:09 +08:00
}, status: :bad_request and return
2019-03-19 17:19:27 +08:00
end
2019-03-18 02:23:17 +08:00
2019-03-19 17:19:27 +08:00
# Create file depending on the type
2019-03-18 02:23:17 +08:00
if params[:element_type] == 'Step'
step = Step.find(params[:element_id].to_i)
render_403 && return unless can_manage_step?(step)
2019-03-18 02:23:17 +08:00
step_asset = StepAsset.create!(step: step, asset: asset)
asset.update!(view_mode: step.assets_view_mode)
2020-10-22 19:41:17 +08:00
step.protocol&.update(updated_at: Time.zone.now)
2019-03-18 02:23:17 +08:00
edit_url = edit_asset_url(step_asset.asset_id)
elsif params[:element_type] == 'Result'
result = Result.find(params[:element_id].to_i)
render_403 and return unless can_manage_result?(result)
2019-03-18 02:23:17 +08:00
result_asset = ResultAsset.create!(result: result, asset: asset)
asset.update!(view_mode: result.assets_view_mode)
2019-03-18 02:23:17 +08:00
edit_url = edit_asset_url(result_asset.asset_id)
else
2019-03-21 15:47:52 +08:00
render_404 and return
end
2019-03-18 02:23:17 +08:00
# Return edit url and asset info
render json: asset, scope: { user: current_user }
2018-10-19 16:00:58 +08:00
end
2020-11-04 20:08:40 +08:00
def destroy
if @asset.destroy
case @assoc
when Step
if @assoc.protocol.in_module?
log_step_activity(
:task_step_file_deleted,
@assoc,
@assoc.my_module.project,
my_module: @assoc.my_module.id,
file: @asset.file_name
)
else
log_step_activity(
:protocol_step_file_deleted,
@assoc,
nil,
protocol: @assoc.protocol.id,
file: @asset.file_name
)
end
when Result
log_result_activity(
@asset.file.metadata[:asset_type] == 'gene_sequence' ? :sequence_on_result_deleted : :result_file_deleted,
@assoc,
file: @asset.file_name
)
end
render json: { flash: I18n.t('assets.file_deleted', file_name: escape_input(@asset.file_name)) }
2020-11-04 20:08:40 +08:00
else
render json: {}, status: :unprocessable_entity
end
end
def checksum
render json: { checksum: @asset.file.blob.checksum }
end
2016-02-12 23:52:43 +08:00
private
def load_vars
2020-09-25 21:06:09 +08:00
@asset = Asset.find_by(id: params[:id])
return render_404 unless @asset
2016-02-12 23:52:43 +08:00
current_user.permission_team = @asset.team
@assoc ||= @asset.step
@assoc ||= @asset.result
@assoc ||= @asset.repository_cell
2016-02-12 23:52:43 +08:00
2016-07-21 19:11:15 +08:00
if @assoc.class == Step
@protocol = @asset.step.protocol
2018-03-10 00:04:54 +08:00
elsif @assoc.class == Result
2016-07-21 19:11:15 +08:00
@my_module = @assoc.my_module
elsif @assoc.class == RepositoryCell
@repository = @assoc.repository_column.repository
2016-07-21 19:11:15 +08:00
end
2016-02-12 23:52:43 +08:00
end
def check_read_permission
render_403 and return unless can_read_asset?(@asset)
2016-02-12 23:52:43 +08:00
end
def check_edit_permission
render_403 and return unless can_manage_asset?(@asset)
2020-10-22 19:41:17 +08:00
end
2016-10-05 00:00:08 +08:00
def append_wd_params(url)
exclude_params = %w(wdPreviousSession wdPreviousCorrelation)
wd_params = params.as_json.select { |key, _value| key[/^wd.*/] && !(exclude_params.include? key) }.to_query
url + '&' + wd_params
2016-10-05 00:00:08 +08:00
end
def asset_params
params.permit(:file)
end
2017-03-13 20:20:49 +08:00
def toggle_view_mode_params
params.require(:asset).permit(:view_mode)
end
2017-03-13 20:20:49 +08:00
def asset_data_type(asset)
return 'wopi' if wopi_file?(asset)
2019-06-28 14:17:09 +08:00
return 'image' if asset.image?
2017-03-13 20:20:49 +08:00
'file'
end
def log_step_activity(type_of, step, project = nil, message_items = {})
default_items = { step: step.id,
step_position: { id: step.id, value_for: 'position_plus_one' } }
message_items = default_items.merge(message_items)
Activities::CreateActivityService
.call(activity_type: type_of,
owner: current_user,
subject: step.protocol,
team: step.protocol.team,
project: project,
message_items: message_items)
end
def log_result_activity(type_of, result, message_items)
Activities::CreateActivityService
.call(activity_type: type_of,
owner: current_user,
subject: result,
team: result.my_module.team,
project: result.my_module.project,
message_items: {
result: result.id
}.merge(message_items))
end
2016-07-21 19:11:15 +08:00
end