trabajo-afectivo/app/controllers/organizations_controller.rb

# Copyright (C) 2012-2013 Zammad Foundation, http://zammad-foundation.org/

class OrganizationsController < ApplicationController
  before_filter :authentication_check

=begin

Format:
JSON

Example:
{
  "id":1,
  "name":"Znuny GmbH",
  "note":"",
  "active":true,
  "shared":true,
  "updated_at":"2012-09-14T17:51:53Z",
  "created_at":"2012-09-14T17:51:53Z",
  "created_by_id":2,
}

=end

=begin

Resource:
GET /api/organizations.json

Response:
[
  {
    "id": 1,
    "name": "some_name1",
    ...
  },
  {
    "id": 2,
    "name": "some_name2",
    ...
  }
]

Test:
curl http://localhost/api/organizations.json -v -u #{login}:#{password}

=end

  def index

    # only allow customer to fetch his own organization
    organizations = []
    if is_role('Customer') && !is_role('Admin') && !is_role('Agent')
      if current_user.organization_id
        organizations = Organization.where( :id => current_user.organization_id )
      end
    else
      organizations = Organization.all
    end
    render :json => organizations
  end

=begin

Resource:
GET /api/organizations/#{id}.json

Response:
{
  "id": 1,
  "name": "name_1",
  ...
}

Test:
curl http://localhost/api/organizations/#{id}.json -v -u #{login}:#{password}

=end

  def show

    # only allow customer to fetch his own organization
    if is_role('Customer') && !is_role('Admin') && !is_role('Agent')
      if !current_user.organization_id
        render :json => {}
        return
      end
      if params[:id].to_i != current_user.organization_id
        response_access_deny
        return
      end
    end
    model_show_render(Organization, params)
  end

=begin

Resource:
POST /api/organizations.json

Payload:
{
  "name": "some_name",
  "active": true,
  "note": "some note",
  "shared": true
}

Response:
{
  "id": 1,
  "name": "some_name",
  ...
}

Test:
curl http://localhost/api/organizations.json -v -u #{login}:#{password} -H "Content-Type: application/json" -X POST -d '{"name": "some_name","active": true,"shared": true,"note": "some note"}'

=end

  def create
    return if deny_if_not_role('Agent')
    model_create_render(Organization, params)
  end

=begin

Resource:
PUT /api/organizations/{id}.json

Payload:
{
  "id": 1
  "name": "some_name",
  "active": true,
  "note": "some note",
  "shared": true
}

Response:
{
  "id": 1,
  "name": "some_name",
  ...
}

Test:
curl http://localhost/api/organizations.json -v -u #{login}:#{password} -H "Content-Type: application/json" -X PUT -d '{"id": 1,"name": "some_name","active": true,"shared": true,"note": "some note"}'

=end

  def update
    return if deny_if_not_role('Agent')
    model_update_render(Organization, params)
  end

=begin

Resource:

Response:

Test:

=end

  def destroy
    return if deny_if_not_role('Agent')
    model_destory_render(Organization, params)
  end
end
Code reformattingand code layout beautying. 2013-06-12 15:59:58 +00:00			`# Copyright (C) 2012-2013 Zammad Foundation, http://zammad-foundation.org/`

Init version. 2012-04-10 14:06:46 +00:00			`class OrganizationsController < ApplicationController`
			`before_filter :authentication_check`

Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00			`=begin`

			`Format:`
			`JSON`

			`Example:`
			`{`
			`"id":1,`
			`"name":"Znuny GmbH",`
			`"note":"",`
			`"active":true,`
			`"shared":true,`
			`"updated_at":"2012-09-14T17:51:53Z",`
			`"created_at":"2012-09-14T17:51:53Z",`
			`"created_by_id":2,`
			`}`
Code reformattingand code layout beautying. 2013-06-12 15:59:58 +00:00
Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00			`=end`

			`=begin`

			`Resource:`
			`GET /api/organizations.json`

			`Response:`
			`[`
			`{`
			`"id": 1,`
			`"name": "some_name1",`
			`...`
			`},`
			`{`
			`"id": 2,`
			`"name": "some_name2",`
			`...`
			`}`
			`]`

			`Test:`
			`curl http://localhost/api/organizations.json -v -u #{login}:#{password}`

			`=end`
Init version. 2012-04-10 14:06:46 +00:00
Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00			`def index`
Improved rest permission checks. 2013-07-19 14:21:44 +00:00
			`# only allow customer to fetch his own organization`
			`organizations = []`
			`if is_role('Customer') && !is_role('Admin') && !is_role('Agent')`
			`if current_user.organization_id`
			`organizations = Organization.where( :id => current_user.organization_id )`
			`end`
			`else`
			`organizations = Organization.all`
			`end`
			`render :json => organizations`
Init version. 2012-04-10 14:06:46 +00:00			`end`

Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00			`=begin`

			`Resource:`
			`GET /api/organizations/#{id}.json`

			`Response:`
			`{`
			`"id": 1,`
			`"name": "name_1",`
			`...`
			`}`
Init version. 2012-04-10 14:06:46 +00:00
Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00			`Test:`
			`curl http://localhost/api/organizations/#{id}.json -v -u #{login}:#{password}`
Code reformattingand code layout beautying. 2013-06-12 15:59:58 +00:00
Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00			`=end`

			`def show`
Improved rest permission checks. 2013-07-19 14:21:44 +00:00
			`# only allow customer to fetch his own organization`
			`if is_role('Customer') && !is_role('Admin') && !is_role('Agent')`
			`if !current_user.organization_id`
			`render :json => {}`
			`return`
			`end`
			`if params[:id].to_i != current_user.organization_id`
			`response_access_deny`
			`return`
			`end`
			`end`
Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00			`model_show_render(Organization, params)`
Init version. 2012-04-10 14:06:46 +00:00			`end`

Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00			`=begin`

			`Resource:`
			`POST /api/organizations.json`

			`Payload:`
			`{`
			`"name": "some_name",`
			`"active": true,`
			`"note": "some note",`
			`"shared": true`
			`}`

			`Response:`
			`{`
			`"id": 1,`
			`"name": "some_name",`
			`...`
			`}`

			`Test:`
			`curl http://localhost/api/organizations.json -v -u #{login}:#{password} -H "Content-Type: application/json" -X POST -d '{"name": "some_name","active": true,"shared": true,"note": "some note"}'`

			`=end`

Init version. 2012-04-10 14:06:46 +00:00			`def create`
Improved rest permission checks. 2013-07-19 14:21:44 +00:00			`return if deny_if_not_role('Agent')`
Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00			`model_create_render(Organization, params)`
Init version. 2012-04-10 14:06:46 +00:00			`end`

Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00			`=begin`

			`Resource:`
			`PUT /api/organizations/{id}.json`

			`Payload:`
			`{`
			`"id": 1`
			`"name": "some_name",`
			`"active": true,`
			`"note": "some note",`
			`"shared": true`
			`}`
Init version. 2012-04-10 14:06:46 +00:00
Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00			`Response:`
			`{`
			`"id": 1,`
			`"name": "some_name",`
			`...`
			`}`

			`Test:`
			`curl http://localhost/api/organizations.json -v -u #{login}:#{password} -H "Content-Type: application/json" -X PUT -d '{"id": 1,"name": "some_name","active": true,"shared": true,"note": "some note"}'`

			`=end`

			`def update`
Improved rest permission checks. 2013-07-19 14:21:44 +00:00			`return if deny_if_not_role('Agent')`
Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00			`model_update_render(Organization, params)`
Init version. 2012-04-10 14:06:46 +00:00			`end`

Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00			`=begin`

			`Resource:`

			`Response:`

			`Test:`
Code reformattingand code layout beautying. 2013-06-12 15:59:58 +00:00
Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00			`=end`
Init version. 2012-04-10 14:06:46 +00:00
Code reformattingand code layout beautying. 2013-06-12 15:59:58 +00:00			`def destroy`
Improved rest permission checks. 2013-07-19 14:21:44 +00:00			`return if deny_if_not_role('Agent')`
Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00			`model_destory_render(Organization, params)`
Init version. 2012-04-10 14:06:46 +00:00			`end`
			`end`