2016-10-19 03:11:36 +00:00
|
|
|
# Copyright (C) 2012-2016 Zammad Foundation, http://zammad-foundation.org/
|
2015-12-17 11:49:40 +00:00
|
|
|
|
|
|
|
|
class ExternalCredentialsController < ApplicationController
|
2018-09-26 09:51:53 +00:00
|
|
|
prepend_before_action :permission_check
|
2015-12-17 11:49:40 +00:00
|
|
|
|
|
|
|
|
def index
|
|
|
|
|
model_index_render(ExternalCredential, params)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
def show
|
|
|
|
|
model_show_render(ExternalCredential, params)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
def create
|
2015-12-21 00:48:49 +00:00
|
|
|
model_create_render(ExternalCredential, params)
|
2015-12-17 11:49:40 +00:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
def update
|
2015-12-21 00:48:49 +00:00
|
|
|
model_update_render(ExternalCredential, params)
|
2015-12-17 11:49:40 +00:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
def destroy
|
2016-11-30 10:30:03 +00:00
|
|
|
model_destroy_render(ExternalCredential, params)
|
2015-12-17 11:49:40 +00:00
|
|
|
end
|
|
|
|
|
|
2015-12-21 00:48:49 +00:00
|
|
|
def app_verify
|
2018-12-03 14:10:36 +00:00
|
|
|
render json: { attributes: ExternalCredential.app_verify(params.permit!.to_h) }, status: :ok
|
2015-12-21 00:48:49 +00:00
|
|
|
rescue => e
|
|
|
|
|
render json: { error: e.message }, status: :ok
|
|
|
|
|
end
|
|
|
|
|
|
2015-12-17 11:49:40 +00:00
|
|
|
def link_account
|
|
|
|
|
provider = params[:provider].downcase
|
2015-12-30 13:24:13 +00:00
|
|
|
attributes = ExternalCredential.request_account_to_link(provider)
|
2015-12-17 11:49:40 +00:00
|
|
|
session[:request_token] = attributes[:request_token]
|
|
|
|
|
redirect_to attributes[:authorize_url]
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
def callback
|
|
|
|
|
provider = params[:provider].downcase
|
2018-12-03 14:10:36 +00:00
|
|
|
channel = ExternalCredential.link_account(provider, session[:request_token], params.permit!.to_h)
|
2015-12-17 11:49:40 +00:00
|
|
|
session[:request_token] = nil
|
2015-12-21 00:48:49 +00:00
|
|
|
redirect_to app_url(provider, channel.id)
|
2015-12-17 11:49:40 +00:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
private
|
|
|
|
|
|
|
|
|
|
def callback_url(provider)
|
2015-12-30 13:24:13 +00:00
|
|
|
ExternalCredential.callback_url(provider)
|
2015-12-17 11:49:40 +00:00
|
|
|
end
|
|
|
|
|
|
2015-12-21 00:48:49 +00:00
|
|
|
def app_url(provider, channel_id)
|
2015-12-30 13:24:13 +00:00
|
|
|
ExternalCredential.app_url(provider, channel_id)
|
2015-12-21 00:48:49 +00:00
|
|
|
end
|
|
|
|
|
|
2018-09-26 09:51:53 +00:00
|
|
|
def permission_check
|
|
|
|
|
if params[:id].present? && ExternalCredential.exists?(params[:id])
|
|
|
|
|
external_credential = ExternalCredential.find(params[:id])
|
|
|
|
|
raise 'No such ExternalCredential!' if !external_credential
|
2018-10-09 06:17:41 +00:00
|
|
|
|
2018-09-26 09:51:53 +00:00
|
|
|
authentication_check(permission: ["admin.channel_#{external_credential.name}"])
|
|
|
|
|
return
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
if params[:name].present? || params[:provider].present?
|
|
|
|
|
if params[:name].present?
|
|
|
|
|
name = params[:name].downcase
|
|
|
|
|
elsif params[:provider].present?
|
|
|
|
|
name = params[:provider].downcase
|
|
|
|
|
else
|
|
|
|
|
raise 'Missing name/provider!'
|
|
|
|
|
end
|
|
|
|
|
authentication_check(permission: ["admin.channel_#{name}"])
|
|
|
|
|
return
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
authentication_check(permission: ['admin'])
|
|
|
|
|
end
|
|
|
|
|
|
2015-12-17 11:49:40 +00:00
|
|
|
end
|
