trabajo-afectivo/app/controllers/organizations_controller.rb

# Copyright (C) 2012-2014 Zammad Foundation, http://zammad-foundation.org/

class OrganizationsController < ApplicationController
  before_action :authentication_check

=begin

Format:
JSON

Example:
{
  "id":1,
  "name":"Znuny GmbH",
  "note":"",
  "active":true,
  "shared":true,
  "updated_at":"2012-09-14T17:51:53Z",
  "created_at":"2012-09-14T17:51:53Z",
  "created_by_id":2,
}

=end

=begin

Resource:
GET /api/v1/organizations

Response:
[
  {
    "id": 1,
    "name": "some_name1",
    ...
  },
  {
    "id": 2,
    "name": "some_name2",
    ...
  }
]

Test:
curl http://localhost/api/v1/organizations -v -u #{login}:#{password}

=end

  def index
    offset = 0
    per_page = 1000

    if params[:page] && params[:per_page]
      offset = (params[:page].to_i - 1) * params[:per_page].to_i
      per_page = params[:per_page].to_i
    end

    # only allow customer to fetch his own organization
    organizations = []
    if role?(Z_ROLENAME_CUSTOMER) && !role?(Z_ROLENAME_ADMIN) && !role?(Z_ROLENAME_AGENT)
      if current_user.organization_id
        organizations = Organization.where(id: current_user.organization_id).offset(offset).limit(per_page)
      end
    else
      organizations = Organization.all.offset(offset).limit(per_page)
    end

    if params[:expand]
      list = []
      organizations.each {|organization|
        list.push organization.attributes_with_relation_names
      }
      render json: list, status: :ok
      return
    end

    if params[:full]
      assets = {}
      item_ids = []
      organizations.each {|item|
        item_ids.push item.id
        assets = item.assets(assets)
      }
      render json: {
        record_ids: item_ids,
        assets: assets,
      }, status: :ok
      return
    end

    render json: organizations
  end

=begin

Resource:
GET /api/v1/organizations/#{id}

Response:
{
  "id": 1,
  "name": "name_1",
  ...
}

Test:
curl http://localhost/api/v1/organizations/#{id} -v -u #{login}:#{password}

=end

  def show

    # only allow customer to fetch his own organization
    if role?(Z_ROLENAME_CUSTOMER) && !role?(Z_ROLENAME_ADMIN) && !role?(Z_ROLENAME_AGENT)
      if !current_user.organization_id
        render json: {}
        return
      end
      if params[:id].to_i != current_user.organization_id
        response_access_deny
        return
      end
    end

    if params[:expand]
      organization = Organization.find(params[:id]).attributes_with_relation_names
      render json: organization, status: :ok
      return
    end

    if params[:full]
      full = Organization.full(params[:id])
      render json: full
      return
    end

    model_show_render(Organization, params)
  end

=begin

Resource:
POST /api/v1/organizations

Payload:
{
  "name": "some_name",
  "active": true,
  "note": "some note",
  "shared": true
}

Response:
{
  "id": 1,
  "name": "some_name",
  ...
}

Test:
curl http://localhost/api/v1/organizations -v -u #{login}:#{password} -H "Content-Type: application/json" -X POST -d '{"name": "some_name","active": true,"shared": true,"note": "some note"}'

=end

  def create
    return if deny_if_not_role(Z_ROLENAME_AGENT)
    model_create_render(Organization, params)
  end

=begin

Resource:
PUT /api/v1/organizations/{id}

Payload:
{
  "id": 1
  "name": "some_name",
  "active": true,
  "note": "some note",
  "shared": true
}

Response:
{
  "id": 1,
  "name": "some_name",
  ...
}

Test:
curl http://localhost/api/v1/organizations -v -u #{login}:#{password} -H "Content-Type: application/json" -X PUT -d '{"id": 1,"name": "some_name","active": true,"shared": true,"note": "some note"}'

=end

  def update
    return if deny_if_not_role(Z_ROLENAME_AGENT)
    model_update_render(Organization, params)
  end

=begin

Resource:
DELETE /api/v1/organization/{id}

Response:
{}

Test:
curl http://localhost/api/v1/organization/{id} -v -u #{login}:#{password} -H "Content-Type: application/json" -X DELETE -d '{}'

=end

  def destroy
    return if deny_if_not_role(Z_ROLENAME_AGENT)
    return if model_references_check(Organization, params)
    model_destory_render(Organization, params)
  end

  # GET /api/v1/organizations/search
  def search

    if role?(Z_ROLENAME_CUSTOMER) && !role?(Z_ROLENAME_ADMIN) && !role?(Z_ROLENAME_AGENT)
      response_access_deny
      return
    end

    # set limit for pagination if needed
    if params[:page] && params[:per_page]
      params[:limit] = params[:page].to_i * params[:per_page].to_i
    end

    query_params = {
      query: params[:term],
      limit: params[:limit],
      current_user: current_user,
    }
    if params[:role_ids] && !params[:role_ids].empty?
      query_params[:role_ids] = params[:role_ids]
    end

    # do query
    organization_all = Organization.search(query_params)

    # do pagination if needed
    if params[:page] && params[:per_page]
      offset = (params[:page].to_i - 1) * params[:per_page].to_i
      organization_all = organization_all.slice(offset, params[:per_page].to_i) || []
    end

    if params[:expand]
      list = []
      organization_all.each {|organization|
        list.push organization.attributes_with_relation_names
      }
      render json: list, status: :ok
      return
    end

    # build result list
    if !params[:full]
      organizations = []
      organization_all.each { |organization|
        a = { id: organization.id, label: organization.name }
        organizations.push a
      }

      # return result
      render json: organizations
      return
    end

    organization_ids = []
    assets = {}
    organization_all.each { |organization|
      assets = organization.assets(assets)
      organization_ids.push organization.id
    }

    # return result
    render json: {
      assets: assets,
      organization_ids: organization_ids.uniq,
    }
  end

  # GET /api/v1/organizations/history/1
  def history

    # permission check
    if !role?(Z_ROLENAME_ADMIN) && !role?(Z_ROLENAME_AGENT)
      response_access_deny
      return
    end

    # get organization data
    organization = Organization.find(params[:id])

    # get history of organization
    history = organization.history_get(true)

    # return result
    render json: history
  end

end
Updated header. 2014-02-03 19:24:49 +00:00			`# Copyright (C) 2012-2014 Zammad Foundation, http://zammad-foundation.org/`
Code reformattingand code layout beautying. 2013-06-12 15:59:58 +00:00
Init version. 2012-04-10 14:06:46 +00:00			`class OrganizationsController < ApplicationController`
Corrected with rubocop cop 'Rails/ActionFilter'. 2015-05-07 11:23:55 +00:00			`before_action :authentication_check`
Init version. 2012-04-10 14:06:46 +00:00
Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00			`=begin`

			`Format:`
			`JSON`

			`Example:`
			`{`
			`"id":1,`
			`"name":"Znuny GmbH",`
			`"note":"",`
			`"active":true,`
			`"shared":true,`
			`"updated_at":"2012-09-14T17:51:53Z",`
			`"created_at":"2012-09-14T17:51:53Z",`
			`"created_by_id":2,`
			`}`
Code reformattingand code layout beautying. 2013-06-12 15:59:58 +00:00
Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00			`=end`

			`=begin`

			`Resource:`
Streamline of rest api (added missing destroy backends). 2016-06-06 06:34:15 +00:00			`GET /api/v1/organizations`
Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00
			`Response:`
			`[`
			`{`
			`"id": 1,`
			`"name": "some_name1",`
			`...`
			`},`
			`{`
			`"id": 2,`
			`"name": "some_name2",`
			`...`
			`}`
			`]`

			`Test:`
Streamline of rest api (added missing destroy backends). 2016-06-06 06:34:15 +00:00			`curl http://localhost/api/v1/organizations -v -u #{login}:#{password}`
Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00
			`=end`
Init version. 2012-04-10 14:06:46 +00:00
Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00			`def index`
Streamline of rest api for tickets, users and organisations. Added pagination for search and index. Added auto lookup for id values (e. g. use group: 'some name', backend will automatically replace "group: 'some name'" by "group_id: 123"). 2016-06-06 15:26:37 +00:00			`offset = 0`
			`per_page = 1000`

			`if params[:page] && params[:per_page]`
			`offset = (params[:page].to_i - 1) * params[:per_page].to_i`
			`per_page = params[:per_page].to_i`
			`end`
Improved rest permission checks. 2013-07-19 14:21:44 +00:00
			`# only allow customer to fetch his own organization`
			`organizations = []`
- Corrected with rubocop cop 'Style/PredicateName'. - Removed application_module method 'is_not_role', was never used. - Renamed Sessions::Backend::Collections methods is_role_set to roles_add. - Renamed Sessions::Backend::Collections methods is_not_role_set to not_roles_add. 2015-05-08 08:15:45 +00:00			`if role?(Z_ROLENAME_CUSTOMER) && !role?(Z_ROLENAME_ADMIN) && !role?(Z_ROLENAME_AGENT)`
Improved rest permission checks. 2013-07-19 14:21:44 +00:00			`if current_user.organization_id`
Streamline of rest api for tickets, users and organisations. Added pagination for search and index. Added auto lookup for id values (e. g. use group: 'some name', backend will automatically replace "group: 'some name'" by "group_id: 123"). 2016-06-06 15:26:37 +00:00			`organizations = Organization.where(id: current_user.organization_id).offset(offset).limit(per_page)`
Improved rest permission checks. 2013-07-19 14:21:44 +00:00			`end`
			`else`
Streamline of rest api for tickets, users and organisations. Added pagination for search and index. Added auto lookup for id values (e. g. use group: 'some name', backend will automatically replace "group: 'some name'" by "group_id: 123"). 2016-06-06 15:26:37 +00:00			`organizations = Organization.all.offset(offset).limit(per_page)`
			`end`

Added expand format for data rest api (deliver records with filled reverences for "group_id: 123" add automatically "group: 'some name'"). 2016-06-08 04:56:05 +00:00			`if params[:expand]`
			`list = []`
			`organizations.each {\|organization\|`
			`list.push organization.attributes_with_relation_names`
			`}`
			`render json: list, status: :ok`
			`return`
			`end`

Streamline of rest api for tickets, users and organisations. Added pagination for search and index. Added auto lookup for id values (e. g. use group: 'some name', backend will automatically replace "group: 'some name'" by "group_id: 123"). 2016-06-06 15:26:37 +00:00			`if params[:full]`
			`assets = {}`
			`item_ids = []`
			`organizations.each {\|item\|`
			`item_ids.push item.id`
			`assets = item.assets(assets)`
			`}`
			`render json: {`
			`record_ids: item_ids,`
			`assets: assets,`
			`}, status: :ok`
			`return`
Improved rest permission checks. 2013-07-19 14:21:44 +00:00			`end`
Streamline of rest api for tickets, users and organisations. Added pagination for search and index. Added auto lookup for id values (e. g. use group: 'some name', backend will automatically replace "group: 'some name'" by "group_id: 123"). 2016-06-06 15:26:37 +00:00
Corrected with rubocop cop 'Style/HashSyntax'. 2015-04-27 13:42:53 +00:00			`render json: organizations`
Init version. 2012-04-10 14:06:46 +00:00			`end`

Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00			`=begin`

			`Resource:`
Streamline of rest api (added missing destroy backends). 2016-06-06 06:34:15 +00:00			`GET /api/v1/organizations/#{id}`
Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00
			`Response:`
			`{`
			`"id": 1,`
			`"name": "name_1",`
			`...`
			`}`
Init version. 2012-04-10 14:06:46 +00:00
Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00			`Test:`
Streamline of rest api (added missing destroy backends). 2016-06-06 06:34:15 +00:00			`curl http://localhost/api/v1/organizations/#{id} -v -u #{login}:#{password}`
Code reformattingand code layout beautying. 2013-06-12 15:59:58 +00:00
Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00			`=end`

			`def show`
Improved rest permission checks. 2013-07-19 14:21:44 +00:00
			`# only allow customer to fetch his own organization`
- Corrected with rubocop cop 'Style/PredicateName'. - Removed application_module method 'is_not_role', was never used. - Renamed Sessions::Backend::Collections methods is_role_set to roles_add. - Renamed Sessions::Backend::Collections methods is_not_role_set to not_roles_add. 2015-05-08 08:15:45 +00:00			`if role?(Z_ROLENAME_CUSTOMER) && !role?(Z_ROLENAME_ADMIN) && !role?(Z_ROLENAME_AGENT)`
Improved rest permission checks. 2013-07-19 14:21:44 +00:00			`if !current_user.organization_id`
Corrected with rubocop cop 'Style/HashSyntax'. 2015-04-27 13:42:53 +00:00			`render json: {}`
Improved rest permission checks. 2013-07-19 14:21:44 +00:00			`return`
			`end`
			`if params[:id].to_i != current_user.organization_id`
			`response_access_deny`
			`return`
			`end`
			`end`
Added expand format for data rest api (deliver records with filled reverences for "group_id: 123" add automatically "group: 'some name'"). 2016-06-08 04:56:05 +00:00
			`if params[:expand]`
			`organization = Organization.find(params[:id]).attributes_with_relation_names`
			`render json: organization, status: :ok`
			`return`
			`end`

Moved to .full in backend, frontend and REST for models. 2014-08-13 00:12:38 +00:00			`if params[:full]`
Refactoring of ticket zoom (less rerendering, just rerender particular area's instant of whole view). Added live broadcasting of tag and links. 2016-06-07 19:22:08 +00:00			`full = Organization.full(params[:id])`
Corrected with rubocop cop 'Style/HashSyntax'. 2015-04-27 13:42:53 +00:00			`render json: full`
Moved to .full in backend, frontend and REST for models. 2014-08-13 00:12:38 +00:00			`return`
			`end`
Added expand format for data rest api (deliver records with filled reverences for "group_id: 123" add automatically "group: 'some name'"). 2016-06-08 04:56:05 +00:00
Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00			`model_show_render(Organization, params)`
Init version. 2012-04-10 14:06:46 +00:00			`end`

Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00			`=begin`

			`Resource:`
Streamline of rest api (added missing destroy backends). 2016-06-06 06:34:15 +00:00			`POST /api/v1/organizations`
Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00
			`Payload:`
			`{`
			`"name": "some_name",`
			`"active": true,`
			`"note": "some note",`
			`"shared": true`
			`}`

			`Response:`
			`{`
			`"id": 1,`
			`"name": "some_name",`
			`...`
			`}`

			`Test:`
Streamline of rest api (added missing destroy backends). 2016-06-06 06:34:15 +00:00			`curl http://localhost/api/v1/organizations -v -u #{login}:#{password} -H "Content-Type: application/json" -X POST -d '{"name": "some_name","active": true,"shared": true,"note": "some note"}'`
Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00
			`=end`

Init version. 2012-04-10 14:06:46 +00:00			`def create`
more refactoring 2015-02-15 10:01:12 +00:00			`return if deny_if_not_role(Z_ROLENAME_AGENT)`
Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00			`model_create_render(Organization, params)`
Init version. 2012-04-10 14:06:46 +00:00			`end`

Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00			`=begin`

			`Resource:`
Streamline of rest api (added missing destroy backends). 2016-06-06 06:34:15 +00:00			`PUT /api/v1/organizations/{id}`
Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00
			`Payload:`
			`{`
			`"id": 1`
			`"name": "some_name",`
			`"active": true,`
			`"note": "some note",`
			`"shared": true`
			`}`
Init version. 2012-04-10 14:06:46 +00:00
Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00			`Response:`
			`{`
			`"id": 1,`
			`"name": "some_name",`
			`...`
			`}`

			`Test:`
Streamline of rest api (added missing destroy backends). 2016-06-06 06:34:15 +00:00			`curl http://localhost/api/v1/organizations -v -u #{login}:#{password} -H "Content-Type: application/json" -X PUT -d '{"id": 1,"name": "some_name","active": true,"shared": true,"note": "some note"}'`
Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00
			`=end`

			`def update`
more refactoring 2015-02-15 10:01:12 +00:00			`return if deny_if_not_role(Z_ROLENAME_AGENT)`
Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00			`model_update_render(Organization, params)`
Init version. 2012-04-10 14:06:46 +00:00			`end`

Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00			`=begin`

			`Resource:`
Streamline of rest api (added missing destroy backends). 2016-06-06 06:34:15 +00:00			`DELETE /api/v1/organization/{id}`
Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00
			`Response:`
Streamline of rest api (added missing destroy backends). 2016-06-06 06:34:15 +00:00			`{}`
Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00
			`Test:`
Streamline of rest api (added missing destroy backends). 2016-06-06 06:34:15 +00:00			`curl http://localhost/api/v1/organization/{id} -v -u #{login}:#{password} -H "Content-Type: application/json" -X DELETE -d '{}'`
Code reformattingand code layout beautying. 2013-06-12 15:59:58 +00:00
Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00			`=end`
Init version. 2012-04-10 14:06:46 +00:00
Code reformattingand code layout beautying. 2013-06-12 15:59:58 +00:00			`def destroy`
Streamline of rest api (added missing destroy backends). 2016-06-06 06:34:15 +00:00			`return if deny_if_not_role(Z_ROLENAME_AGENT)`
			`return if model_references_check(Organization, params)`
Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00			`model_destory_render(Organization, params)`
Init version. 2012-04-10 14:06:46 +00:00			`end`
Init version of organization zoom. 2014-07-22 09:00:29 +00:00
Added expand format for data rest api (deliver records with filled reverences for "group_id: 123" add automatically "group: 'some name'"). 2016-06-08 04:56:05 +00:00			`# GET /api/v1/organizations/search`
Streamline of rest api for tickets, users and organisations. Added pagination for search and index. Added auto lookup for id values (e. g. use group: 'some name', backend will automatically replace "group: 'some name'" by "group_id: 123"). 2016-06-06 15:26:37 +00:00			`def search`

			`if role?(Z_ROLENAME_CUSTOMER) && !role?(Z_ROLENAME_ADMIN) && !role?(Z_ROLENAME_AGENT)`
			`response_access_deny`
			`return`
			`end`

			`# set limit for pagination if needed`
			`if params[:page] && params[:per_page]`
			`params[:limit] = params[:page].to_i * params[:per_page].to_i`
			`end`

			`query_params = {`
			`query: params[:term],`
			`limit: params[:limit],`
			`current_user: current_user,`
			`}`
			`if params[:role_ids] && !params[:role_ids].empty?`
			`query_params[:role_ids] = params[:role_ids]`
			`end`

			`# do query`
			`organization_all = Organization.search(query_params)`

			`# do pagination if needed`
			`if params[:page] && params[:per_page]`
			`offset = (params[:page].to_i - 1) * params[:per_page].to_i`
			`organization_all = organization_all.slice(offset, params[:per_page].to_i) \|\| []`
			`end`

			`if params[:expand]`
Added expand format for data rest api (deliver records with filled reverences for "group_id: 123" add automatically "group: 'some name'"). 2016-06-08 04:56:05 +00:00			`list = []`
			`organization_all.each {\|organization\|`
			`list.push organization.attributes_with_relation_names`
			`}`
			`render json: list, status: :ok`
Streamline of rest api for tickets, users and organisations. Added pagination for search and index. Added auto lookup for id values (e. g. use group: 'some name', backend will automatically replace "group: 'some name'" by "group_id: 123"). 2016-06-06 15:26:37 +00:00			`return`
			`end`

			`# build result list`
			`if !params[:full]`
			`organizations = []`
			`organization_all.each { \|organization\|`
			`a = { id: organization.id, label: organization.name }`
			`organizations.push a`
			`}`

			`# return result`
			`render json: organizations`
			`return`
			`end`

			`organization_ids = []`
			`assets = {}`
			`organization_all.each { \|organization\|`
			`assets = organization.assets(assets)`
			`organization_ids.push organization.id`
			`}`

			`# return result`
			`render json: {`
			`assets: assets,`
			`organization_ids: organization_ids.uniq,`
			`}`
			`end`

Init version of organization zoom. 2014-07-22 09:00:29 +00:00			`# GET /api/v1/organizations/history/1`
			`def history`

Fixed typo. 2016-01-27 18:26:10 +00:00			`# permission check`
- Corrected with rubocop cop 'Style/PredicateName'. - Removed application_module method 'is_not_role', was never used. - Renamed Sessions::Backend::Collections methods is_role_set to roles_add. - Renamed Sessions::Backend::Collections methods is_not_role_set to not_roles_add. 2015-05-08 08:15:45 +00:00			`if !role?(Z_ROLENAME_ADMIN) && !role?(Z_ROLENAME_AGENT)`
Init version of organization zoom. 2014-07-22 09:00:29 +00:00			`response_access_deny`
			`return`
			`end`

			`# get organization data`
Streamline of rest api (added missing destroy backends). 2016-06-06 06:34:15 +00:00			`organization = Organization.find(params[:id])`
Init version of organization zoom. 2014-07-22 09:00:29 +00:00
			`# get history of organization`
			`history = organization.history_get(true)`

			`# return result`
Corrected with rubocop cop 'Style/HashSyntax'. 2015-04-27 13:42:53 +00:00			`render json: history`
Init version of organization zoom. 2014-07-22 09:00:29 +00:00			`end`

Applied rubocop Style/TrailingBlankLines. 2015-04-27 14:15:29 +00:00			`end`