scinote-web/app/controllers/user_my_modules_controller.rb
2017-05-09 10:22:01 +02:00

164 lines
3.7 KiB
Ruby

class UserMyModulesController < ApplicationController
before_action :load_vars
before_action :check_view_permissions, only: :index
before_action :check_edit_permissions, only: :index_edit
before_action :check_create_permissions, only: :create
before_action :check_delete_permisisons, only: :destroy
def index
@user_my_modules = @my_module.user_my_modules
respond_to do |format|
format.json do
render json: {
html: render_to_string(
partial: 'index.html.erb'
),
my_module_id: @my_module.id,
counter: @my_module.users.count # Used for counter badge
}
end
end
end
def index_edit
@user_my_modules = @my_module.user_my_modules
@unassigned_users = @my_module.unassigned_users
@new_um = UserMyModule.new(my_module: @my_module)
respond_to do |format|
format.json do
render json: {
my_module: @my_module,
html: render_to_string(
partial: 'index_edit.html.erb'
)
}
end
end
end
def create
@um = UserMyModule.new(um_params.merge(my_module: @my_module))
@um.assigned_by = current_user
if @um.save
# Create activity
message = t(
"activities.assign_user_to_module",
assigned_user: @um.user.full_name,
module: @my_module.name,
assigned_by_user: current_user.full_name
)
Activity.create(
user: current_user,
project: @um.my_module.experiment.project,
experiment: @um.my_module.experiment,
my_module: @um.my_module,
message: message,
type_of: :assign_user_to_module
)
respond_to do |format|
format.json {
redirect_to :action => :index_edit, :format => :json
}
end
else
respond_to do |format|
format.json {
render :json => {
:errors => [
flash_error]
}
}
end
end
end
def destroy
if @um.destroy
# Create activity
message = t(
"activities.unassign_user_from_module",
unassigned_user: @um.user.full_name,
module: @my_module.name,
unassigned_by_user: current_user.full_name
)
Activity.create(
user: current_user,
project: @um.my_module.experiment.project,
experiment: @um.my_module.experiment,
my_module: @um.my_module,
message: message,
type_of: :unassign_user_from_module
)
respond_to do |format|
format.json {
redirect_to my_module_users_edit_path(format: :json), :status => 303
}
end
else
respond_to do |format|
format.json {
render :json => {
:errors => [
flash_error
]
}
}
end
end
end
private
def load_vars
@my_module = MyModule.find_by_id(params[:my_module_id])
if @my_module
@project = @my_module.experiment.project
else
render_404
end
if action_name == "destroy"
@um = UserMyModule.find_by_id(params[:id])
unless @um
render_404
end
end
end
def check_view_permissions
unless can_view_module_users(@my_module)
render_403
end
end
def check_edit_permissions
unless can_edit_users_on_module(@my_module)
render_403
end
end
def check_create_permissions
unless can_add_user_to_module(@my_module)
render_403
end
end
def check_delete_permisisons
unless can_remove_user_from_module(@my_module)
render_403
end
end
def init_gui
@users = @my_module.unassigned_users
end
def um_params
params.require(:user_my_module).permit(:user_id, :my_module_id)
end
end