scinote-web/app/controllers/user_my_modules_controller.rb
ajugo 9d4c97f191
Add task assignment API [SCI-6846] (#4123)
* Add user assignment to task API [SCI-6846]

* Add test for task assignments [SCI-6846]
2022-06-03 10:09:42 +02:00

143 lines
3.4 KiB
Ruby

# frozen_string_literal: true
class UserMyModulesController < ApplicationController
include InputSanitizeHelper
before_action :load_vars
before_action :check_view_permissions, except: %i(create destroy)
before_action :check_manage_permissions, only: %i(create destroy)
def index_old
@user_my_modules = @my_module.user_my_modules
respond_to do |format|
format.json do
render json: {
html: render_to_string(
partial: 'index_old.html.erb'
),
my_module_id: @my_module.id,
counter: @my_module.designated_users.count # Used for counter badge
}
end
end
end
def index
respond_to do |format|
format.json do
render json: {
html: render_to_string(
partial: 'index.html.erb'
)
}
end
end
end
def index_edit
@user_my_modules = @my_module.user_my_modules
@undesignated_users = @my_module.undesignated_users.order(full_name: :asc)
@new_um = UserMyModule.new(my_module: @my_module)
respond_to do |format|
format.json do
render json: {
my_module: @my_module,
html: render_to_string(
partial: 'index_edit.html.erb'
)
}
end
end
end
def create
@um = UserMyModule.new(um_params.merge(my_module: @my_module))
@um.assigned_by = current_user
if @um.save
@um.log_activity(:designate_user_to_my_module, current_user)
respond_to do |format|
format.json do
render json: {
user: {
id: @um.user.id,
full_name: @um.user.full_name,
avatar_url: avatar_path(@um.user, :icon_small),
user_module_id: @um.id
}, status: :ok
}
end
end
else
respond_to do |format|
format.json do
render json: {
errors: @um.errors
}, status: :unprocessable_entity
end
end
end
end
def destroy
if @um.destroy
@um.log_activity(:undesignate_user_from_my_module, current_user)
respond_to do |format|
format.json do
render json: {}, status: :ok
end
end
else
respond_to do |format|
format.json do
render json: {
errors: @um.errors
}, status: :unprocessable_entity
end
end
end
end
def search
users = @my_module.users
.where.not(id: @my_module.designated_users.select(:id))
.search(false, params[:query])
.limit(Constants::SEARCH_LIMIT)
users = users.map do |user|
{
value: user.id,
label: sanitize_input(user.full_name),
params: { avatar_url: avatar_path(user, :icon_small) }
}
end
render json: users
end
private
def load_vars
@my_module = MyModule.find(params[:my_module_id])
@project = @my_module.experiment.project
@um = UserMyModule.find(params[:id]) if action_name == 'destroy'
rescue ActiveRecord::RecordNotFound
render_404
end
def check_view_permissions
render_403 unless can_read_my_module?(@my_module)
end
def check_manage_permissions
render_403 unless can_manage_my_module_designated_users?(@my_module)
end
def um_params
params.require(:user_my_module).permit(:user_id, :my_module_id)
end
end