2016-02-12 23:52:43 +08:00
|
|
|
class CustomFieldsController < ApplicationController
|
|
|
|
|
before_action :load_vars_nested, only: [:create]
|
|
|
|
|
before_action :check_create_permissions, only: [:create]
|
|
|
|
|
|
|
|
|
|
def create
|
|
|
|
|
@custom_field = CustomField.new(custom_field_params)
|
|
|
|
|
@custom_field.organization = @organization
|
|
|
|
|
@custom_field.user = current_user
|
|
|
|
|
|
|
|
|
|
respond_to do |format|
|
|
|
|
|
if @custom_field.save
|
|
|
|
|
format.json {
|
|
|
|
|
render json: {
|
2016-12-02 23:18:11 +08:00
|
|
|
id: @custom_field.id,
|
|
|
|
|
name: @custom_field.name
|
2016-02-12 23:52:43 +08:00
|
|
|
},
|
|
|
|
|
status: :ok }
|
|
|
|
|
else
|
2016-09-22 23:26:55 +08:00
|
|
|
format.json do
|
|
|
|
|
render json: @custom_field.errors.to_json,
|
|
|
|
|
status: :unprocessable_entity
|
|
|
|
|
end
|
2016-02-12 23:52:43 +08:00
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
private
|
|
|
|
|
|
|
|
|
|
def load_vars_nested
|
|
|
|
|
@organization = Organization.find_by_id(params[:organization_id])
|
|
|
|
|
|
|
|
|
|
unless @organization
|
|
|
|
|
render_404
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
def check_create_permissions
|
|
|
|
|
unless can_create_custom_field_in_organization(@organization)
|
|
|
|
|
render_403
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
def custom_field_params
|
|
|
|
|
params.require(:custom_field).permit(:name)
|
|
|
|
|
end
|
|
|
|
|
end
|
