Mercurial > hg > soundsoftware-site

annotate app/controllers/users_controller.rb @ 1600:ed9c467ef922 dockerise

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Add hggit extension
author Chris Cannam
date Wed, 23 Aug 2017 11:32:50 +0100
parents a1bdbf8a87d5
children
rev   line source
Chris@0 1 # Redmine - project management software
Chris@1494 2 # Copyright (C) 2006-2014 Jean-Philippe Lang
Chris@0 3 #
Chris@0 4 # This program is free software; you can redistribute it and/or
Chris@0 5 # modify it under the terms of the GNU General Public License
Chris@0 6 # as published by the Free Software Foundation; either version 2
Chris@0 7 # of the License, or (at your option) any later version.
Chris@909 8 #
Chris@0 9 # This program is distributed in the hope that it will be useful,
Chris@0 10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
Chris@0 11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
Chris@0 12 # GNU General Public License for more details.
Chris@909 13 #
Chris@0 14 # You should have received a copy of the GNU General Public License
Chris@0 15 # along with this program; if not, write to the Free Software
Chris@0 16 # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
Chris@0 17
Chris@0 18 class UsersController < ApplicationController
Chris@0 19 layout 'admin'
Chris@909 20
Chris@0 21 before_filter :require_admin, :except => :show
Chris@128 22 before_filter :find_user, :only => [:show, :edit, :update, :destroy, :edit_membership, :destroy_membership]
Chris@507 23 accept_api_auth :index, :show, :create, :update, :destroy
Chris@0 24
Chris@0 25 helper :sort
Chris@0 26 include SortHelper
Chris@0 27 helper :custom_fields
Chris@909 28 include CustomFieldsHelper
Chris@0 29
Chris@0 30 def index
Chris@0 31 sort_init 'login', 'asc'
Chris@0 32 sort_update %w(login firstname lastname mail admin created_on last_login_on)
Chris@909 33
Chris@117 34 case params[:format]
Chris@117 35 when 'xml', 'json'
Chris@117 36 @offset, @limit = api_offset_and_limit
Chris@117 37 else
Chris@117 38 @limit = per_page_option
Chris@117 39 end
Chris@909 40
Chris@1115 41 @status = params[:status] || 1
Chris@909 42
Chris@1115 43 scope = User.logged.status(@status)
Chris@1115 44 scope = scope.like(params[:name]) if params[:name].present?
Chris@1115 45 scope = scope.in_group(params[:group_id]) if params[:group_id].present?
Chris@0 46
Chris@1115 47 @user_count = scope.count
Chris@1464 48 @user_pages = Paginator.new @user_count, @limit, params['page']
Chris@1464 49 @offset ||= @user_pages.offset
Chris@1464 50 @users = scope.order(sort_clause).limit(@limit).offset(@offset).all
Chris@0 51
Chris@441 52 respond_to do |format|
Chris@441 53 format.html {
Chris@441 54 @groups = Group.all.sort
Chris@441 55 render :layout => !request.xhr?
Chris@441 56 }
Chris@117 57 format.api
Chris@1464 58 end
Chris@0 59 end
Chris@909 60
Chris@0 61 def show
luisf@92 62
luisf@92 63 if @user.ssamr_user_detail != nil
luisf@92 64 @description = @user.ssamr_user_detail.description
chris@1217 65 @institution_name = @user.ssamr_user_detail.institution_name
luisf@92 66 end
chris@37 67
Chris@14 68 # show projects based on current user visibility
Chris@1464 69 @memberships = @user.memberships.where(Project.visible_condition(User.current)).all
Chris@909 70
Chris@0 71 events = Redmine::Activity::Fetcher.new(User.current, :author => @user).events(nil, nil, :limit => 10)
Chris@0 72 @events_by_day = events.group_by(&:event_date)
Chris@909 73
Chris@0 74 unless User.current.admin?
Chris@0 75 if !@user.active? || (@user != User.current && @memberships.empty? && events.empty?)
Chris@0 76 render_404
Chris@0 77 return
Chris@0 78 end
Chris@0 79 end
Chris@909 80
Chris@117 81 respond_to do |format|
Chris@117 82 format.html { render :layout => 'base' }
Chris@117 83 format.api
Chris@117 84 end
Chris@0 85 end
Chris@0 86
luisf@61 87 def new
Chris@117 88 @user = User.new(:language => Setting.default_language, :mail_notification => Setting.default_notification_option)
Chris@1464 89 @user.safe_attributes = params[:user]
Chris@1464 90 @auth_sources = AuthSource.all
luisf@60 91 @ssamr_user_details = SsamrUserDetail.new
chris@37 92 end
Chris@909 93
chris@37 94 def create
Chris@117 95 @user = User.new(:language => Setting.default_language, :mail_notification => Setting.default_notification_option)
Chris@117 96 @user.safe_attributes = params[:user]
luisf@60 97 @user = User.new(params[:user])
chris@37 98 @user.admin = params[:user][:admin] || false
chris@37 99 @user.login = params[:user][:login]
Chris@117 100 @user.password, @user.password_confirmation = params[:user][:password], params[:user][:password_confirmation] unless @user.auth_source_id
Chris@909 101 # TODO: Similar to My#account
Chris@909 102 @user.pref.attributes = params[:pref]
Chris@909 103 @user.pref[:no_self_notified] = (params[:no_self_notified] == '1')
Chris@909 104
luisf@61 105 @ssamr_user_details = SsamrUserDetail.new(params[:ssamr_user_details])
luisf@61 106
luisf@61 107 # associates the 2 objects
luisf@61 108 @user.ssamr_user_detail = @ssamr_user_details
luisf@61 109
Chris@1494 110
chris@37 111 if @user.save
chris@37 112 @user.pref.save
luisf@60 113 @ssamr_user_details.save!
Chris@909 114
Chris@1464 115 Mailer.account_information(@user, @user.password).deliver if params[:send_information]
Chris@909 116
Chris@117 117 respond_to do |format|
Chris@117 118 format.html {
Chris@1115 119 flash[:notice] = l(:notice_user_successful_create, :id => view_context.link_to(@user.login, user_path(@user)))
Chris@1464 120 if params[:continue]
Chris@1464 121 attrs = params[:user].slice(:generate_password)
Chris@1464 122 redirect_to new_user_path(:user => attrs)
Chris@1464 123 else
Chris@1464 124 redirect_to edit_user_path(@user)
Chris@1464 125 end
Chris@117 126 }
Chris@117 127 format.api { render :action => 'show', :status => :created, :location => user_url(@user) }
Chris@117 128 end
Chris@0 129 else
Chris@1464 130 @auth_sources = AuthSource.all
Chris@117 131 # Clear password input
Chris@117 132 @user.password = @user.password_confirmation = nil
chris@37 133
Chris@117 134 respond_to do |format|
Chris@117 135 format.html { render :action => 'new' }
Chris@117 136 format.api { render_validation_errors(@user) }
Chris@117 137 end
Chris@0 138 end
Chris@0 139 end
Chris@0 140
Chris@0 141 def edit
Chris@1464 142 @auth_sources = AuthSource.all
luisf@55 143
luisf@60 144 @ssamr_user_details = @user.ssamr_user_detail
luisf@161 145
luisf@185 146 if @user.ssamr_user_detail == nil
luisf@185 147 @selected_institution_id = nil
luisf@185 148 else
luisf@185 149 @selected_institution_id = @user.ssamr_user_detail.institution_id.to_i
luisf@185 150 end
luisf@60 151
Chris@0 152 @membership ||= Member.new
chris@37 153 end
Chris@909 154
chris@37 155 def update
chris@37 156 @user.admin = params[:user][:admin] if params[:user][:admin]
chris@37 157 @user.login = params[:user][:login] if params[:user][:login]
Chris@117 158 if params[:user][:password].present? && (@user.auth_source_id.nil? || params[:user][:auth_source_id].blank?)
Chris@117 159 @user.password, @user.password_confirmation = params[:user][:password], params[:user][:password_confirmation]
chris@37 160 end
Chris@117 161 @user.safe_attributes = params[:user]
chris@37 162 # Was the account actived ? (do it before User#save clears the change)
chris@37 163 was_activated = (@user.status_change == [User::STATUS_REGISTERED, User::STATUS_ACTIVE])
chris@37 164 # TODO: Similar to My#account
chris@37 165 @user.pref.attributes = params[:pref]
chris@37 166
luisf@92 167 if @user.ssamr_user_detail == nil
luisf@92 168 @ssamr_user_details = SsamrUserDetail.new()
luisf@92 169 @user.ssamr_user_detail = @ssamr_user_details
luisf@92 170 else
luisf@92 171 @ssamr_user_details = @user.ssamr_user_detail
luisf@92 172 end
luisf@108 173
luisf@63 174 if params[:ssamr_user_details].nil? or params[:ssamr_user_details].empty?
luisf@63 175 @ssamr_user_details.description = @user.ssamr_user_detail.description
luisf@108 176 @ssamr_user_details.institution_id = @user.ssamr_user_detail.institution_id
luisf@158 177 @ssamr_user_details.other_institution = @user.ssamr_user_detail.other_institution
luisf@158 178 @ssamr_user_details.institution_type = @user.ssamr_user_detail.institution_type
luisf@158 179
luisf@63 180 else
luisf@63 181 @ssamr_user_details.description = params[:ssamr_user_details][:description]
luisf@108 182 @ssamr_user_details.institution_id = params[:ssamr_user_details][:institution_id]
luisf@158 183 @ssamr_user_details.other_institution = params[:ssamr_user_details][:other_institution]
luisf@158 184 @ssamr_user_details.institution_type = params[:ssamr_user_details][:institution_type]
luisf@63 185 end
luisf@63 186
chris@37 187 if @user.save
chris@37 188 @user.pref.save
chris@37 189
chris@37 190 if was_activated
Chris@1115 191 Mailer.account_activated(@user).deliver
Chris@1464 192 elsif @user.active? && params[:send_information] && @user.password.present? && @user.auth_source_id.nil?
Chris@1464 193 Mailer.account_information(@user, @user.password).deliver
chris@37 194 end
Chris@909 195
Chris@117 196 respond_to do |format|
Chris@117 197 format.html {
Chris@117 198 flash[:notice] = l(:notice_successful_update)
Chris@1115 199 redirect_to_referer_or edit_user_path(@user)
Chris@117 200 }
Chris@1115 201 format.api { render_api_ok }
Chris@117 202 end
chris@37 203 else
Chris@1464 204 @auth_sources = AuthSource.all
chris@37 205 @membership ||= Member.new
Chris@117 206 # Clear password input
Chris@117 207 @user.password = @user.password_confirmation = nil
chris@37 208
Chris@117 209 respond_to do |format|
Chris@117 210 format.html { render :action => :edit }
Chris@117 211 format.api { render_validation_errors(@user) }
Chris@117 212 end
chris@37 213 end
Chris@0 214 end
chris@37 215
Chris@128 216 def destroy
Chris@128 217 @user.destroy
Chris@128 218 respond_to do |format|
Chris@1464 219 format.html { redirect_back_or_default(users_path) }
Chris@1115 220 format.api { render_api_ok }
Chris@128 221 end
Chris@128 222 end
Chris@128 223
Chris@0 224 def edit_membership
Chris@0 225 @membership = Member.edit_membership(params[:membership_id], params[:membership], @user)
Chris@1115 226 @membership.save
Chris@0 227 respond_to do |format|
Chris@1464 228 format.html { redirect_to edit_user_path(@user, :tab => 'memberships') }
Chris@1115 229 format.js
Chris@14 230 end
Chris@0 231 end
Chris@909 232
Chris@0 233 def destroy_membership
Chris@0 234 @membership = Member.find(params[:membership_id])
Chris@1115 235 if @membership.deletable?
Chris@0 236 @membership.destroy
Chris@0 237 end
Chris@0 238 respond_to do |format|
Chris@1464 239 format.html { redirect_to edit_user_path(@user, :tab => 'memberships') }
Chris@1115 240 format.js
Chris@0 241 end
Chris@0 242 end
Chris@909 243
Chris@117 244 private
Chris@909 245
Chris@117 246 def find_user
Chris@117 247 if params[:id] == 'current'
Chris@117 248 require_login || return
Chris@117 249 @user = User.current
Chris@117 250 else
Chris@117 251 @user = User.find(params[:id])
Chris@117 252 end
Chris@117 253 rescue ActiveRecord::RecordNotFound
Chris@117 254 render_404
Chris@117 255 end
Chris@0 256 end