scinote-eln/scinote-web
1
1
Fork 0
mirror of https://github.com/scinote-eln/scinote-web.git synced 2024-09-21 23:46:21 +08:00
Code Issues Packages Projects Releases Wiki Activity
scinote-web/app/controllers/api/v1/inventory_items_controller.rb

141 lines
4.6 KiB
Ruby
Raw Blame History

# frozen_string_literal: true
module Api
module V1
class InventoryItemsController < BaseController
before_action :load_team
before_action :load_inventory
before_action :load_inventory_item, only: %i(show update destroy)
before_action :check_manage_permissions, only: %i(create update destroy)
def index
items =
@inventory.repository_rows
.includes(repository_cells: :repository_column)
.includes(
repository_cells: Extends::REPOSITORY_SEARCH_INCLUDES
).page(params.dig(:page, :number))
.per(params.dig(:page, :size))
incl = params[:include] == 'inventory_cells' ? :inventory_cells : nil
render jsonapi: items,
each_serializer: InventoryItemSerializer,
include: incl
end
def create
attributes = inventory_item_params.merge(
created_by: current_user,
last_modified_by: current_user
)
if inventory_cells_params.present?
inventory_cells_params
.each { |p| p.require(:attributes).require(%i(column_id value)) }
item = @inventory.repository_rows.new(attributes)
item.transaction do
item.save!
inventory_cells_params.each do |cell_params|
cell_attributes = cell_params[:attributes]
column =
@inventory.repository_columns.find(cell_attributes[:column_id])
RepositoryCell.create_with_value!(
item, column, cell_attributes[:value], current_user
)
end
end
else
item = @inventory.repository_rows.create!(attributes)
end
render jsonapi: item,
serializer: InventoryItemSerializer,
include: :inventory_cells,
status: :created
end
def show
render jsonapi: @inventory_item,
serializer: InventoryItemSerializer,
include: :inventory_cells
end
def update
item_changed = false
if inventory_cells_params.present?
inventory_cells_params.each do |p|
p.require(%i(id attributes))
p.require(:attributes).require(:value)
end
@inventory_item.transaction do
inventory_cells_params.each do |cell_params|
cell = @inventory_item.repository_cells.find(cell_params[:id])
cell_value = cell_params.dig(:attributes, :value)
next unless cell.value.data_changed?(cell_value)
cell.value.update_data!(cell_value, current_user)
item_changed = true
end
end
end
@inventory_item.attributes = update_inventory_item_params
item_changed = true if @inventory_item.changed?
if item_changed
@inventory_item.last_modified_by = current_user
@inventory_item.save!
render jsonapi: @inventory_item,
serializer: InventoryItemSerializer,
include: :inventory_cells
else
render body: nil
end
end
def destroy
@inventory_item.destroy!
render body: nil
end
private
def load_team
@team = Team.find(params.require(:team_id))
render jsonapi: {}, status: :forbidden unless can_read_team?(@team)
end
def load_inventory
@inventory = @team.repositories.find(params.require(:inventory_id))
end
def load_inventory_item
@inventory_item = @inventory.repository_rows.find(params[:id].to_i)
end
def check_manage_permissions
unless can_manage_repository_rows?(@team)
render body: nil, status: :forbidden
end
end
def inventory_item_params
unless params.require(:data).require(:type) == 'inventory_items'
raise ActionController::BadRequest,
'Wrong object type within parameters'
end
params.require(:data).require(:attributes)
params.permit(data: { attributes: %i(name uid) })[:data]
end
def update_inventory_item_params
unless params.require(:data).require(:id).to_i == params[:id].to_i
raise ActionController::BadRequest,
'Object ID mismatch in URL and request body'
end
inventory_item_params[:attributes]
end
# Partially implement sideposting draft
# https://github.com/json-api/json-api/pull/1197
def inventory_cells_params
params[:included]&.select { |el| el[:type] == 'inventory_cells' }
end
end
end
end
Reference in a new issue View git blame Copy permalink