class RepositoryRowsController < ApplicationController include InputSanitizeHelper include ActionView::Helpers::TextHelper include ApplicationHelper before_action :load_vars, only: %i(edit update) before_action :load_repository, only: %i(create delete_records) before_action :check_create_permissions, only: :create before_action :check_edit_permissions, only: %i(edit update) before_action :check_destroy_permissions, only: :delete_records def create record = RepositoryRow.new(repository: @repository, created_by: current_user, last_modified_by: current_user) errors = { default_fields: [], repository_cells: [] } record.transaction do record.name = record_params[:name] unless record_params[:name].blank? unless record.save errors[:default_fields] = record.errors.messages raise ActiveRecord::RecordInvalid end if params[:repository_cells] params[:repository_cells].each do |key, value| column = @repository.repository_columns.detect do |c| c.id == key.to_i end cell_value = RepositoryTextValue.new( data: value, created_by: current_user, last_modified_by: current_user, repository_cell_attributes: { repository_row: record, repository_column: column } ) unless cell_value.save errors[:repository_cells] << { "#{cell.repository_column.id}": cell_value.errors.messages } raise ActiveRecord::RecordInvalid end record_annotation_notification(record, cell_value.repository_cell) end end end respond_to do |format| format.json do render json: { id: record.id, flash: t('repositories.create.success_flash', record: escape_input(record.name), repository: escape_input(@repository.name)) }, status: :ok end end rescue respond_to do |format| format.json { render json: errors, status: :bad_request } end end def edit json = { repository_row: { name: escape_input(@record.name), repository_cells: {} } } # Add custom cells ids as key (easier lookup on js side) @record.repository_cells.each do |cell| json[:repository_row][:repository_cells][cell.repository_column_id] = { repository_cell_id: cell.id, value: escape_input(cell.value.data) } end respond_to do |format| format.html format.json { render json: json } end end def update errors = { default_fields: [], repository_cells: [] } @record.transaction do @record.name = record_params[:name].blank? ? nil : record_params[:name] unless @record.save errors[:default_fields] = @record.errors.messages raise ActiveRecord::RecordInvalid end if params[:repository_cells] params[:repository_cells].each do |key, value| existing = @record.repository_cells.detect do |c| c.repository_column_id == key.to_i end if existing # Cell exists and new value present, so update value existing.value.data = value unless existing.value.save errors[:repository_cells] << { "#{cell.repository_column_id}": existing.value.errors.messages } raise ActiveRecord::RecordInvalid end record_annotation_notification(@record, existing) else # Looks like it is a new cell, so we need to create new value, cell # will be created automatically column = @repository.repository_columns.detect do |c| c.id == key.to_i end value = RepositoryTextValue.new( data: value, created_by: current_user, last_modified_by: current_user, repository_cell_attributes: { repository_row: @record, repository_column: column } ) unless value.save errors[:repository_cells] << { "#{cell.repository_column_id}": value.errors.messages } raise ActiveRecord::RecordInvalid end record_annotation_notification(@record, value.repository_cell) end end # Clean up empty cells, not present in updated record @record.repository_cells.each do |cell| cell.value.destroy unless params[:repository_cells] .key?(cell.repository_column_id.to_s) end else @record.repository_cells.each { |c| c.value.destroy } end end # Row sucessfully updated, so sending response to client respond_to do |format| format.json do render json: { id: @record.id, flash: t( 'repositories.update.success_flash', record: escape_input(@record.name), repository: escape_input(@repository.name) ) }, status: :ok end end rescue respond_to do |format| format.json { render json: errors, status: :bad_request } end end def delete_records deleted_count = 0 if params[:selected_rows] params[:selected_rows].each do |row_id| row = @repository.repository_rows.find_by_id(row_id) if row && can_delete_repository_record(row) row.destroy && deleted_count += 1 end end if deleted_count.zero? flash = t('repositories.destroy.no_deleted_records_flash') elsif deleted_count != params[:selected_rows].count not_deleted_count = params[:selected_rows].count - deleted_count flash = t('repositories.destroy.contains_other_records_flash', records_number: deleted_count, other_records_number: not_deleted_count) else flash = t('repositories.destroy.success_flash', records_number: deleted_count) end respond_to do |format| format.json { render json: { flash: flash }, status: :ok } end else respond_to do |format| format.json do render json: { flash: t('repositories.destroy.no_records_selected_flash') }, status: :bad_request end end end end private def load_vars @repository = Repository.eager_load(:repository_columns) .find_by_id(params[:repository_id]) @record = RepositoryRow.eager_load(:repository_columns) .find_by_id(params[:id]) render_404 unless @repository && @record end def load_repository @repository = Repository.find_by_id(params[:repository_id]) render_404 unless @repository end def check_create_permissions render_403 unless can_create_repository_records(@repository) end def check_edit_permissions render_403 unless can_edit_repository_records(@repository) end def check_destroy_permissions render_403 unless can_delete_repository_records(@repository) end def record_params params.require(:repository_row).permit(:name) end def record_annotation_notification(record, cell, old_text = nil) table_url = params.fetch(:request_url) { :request_url_must_be_present } smart_annotation_notification( old_text: (old_text if old_text), new_text: cell.value.data, title: t('notifications.repository_annotation_title', user: current_user.full_name, column: cell.repository_column.name, record: record.name, repository: record.repository), message: t('notifications.repository_annotation_message_html', record: link_to(record.name, table_url), column: link_to(cell.repository_column.name, table_url)) ) end end