trabajo-afectivo/app/controllers/organizations_controller.rb

302 lines
6 KiB
Ruby
Raw Normal View History

2014-02-03 19:24:49 +00:00
# Copyright (C) 2012-2014 Zammad Foundation, http://zammad-foundation.org/
2012-04-10 14:06:46 +00:00
class OrganizationsController < ApplicationController
before_action :authentication_check
2012-04-10 14:06:46 +00:00
=begin
Format:
JSON
Example:
{
"id":1,
"name":"Znuny GmbH",
"note":"",
"active":true,
"shared":true,
"updated_at":"2012-09-14T17:51:53Z",
"created_at":"2012-09-14T17:51:53Z",
"created_by_id":2,
}
=end
=begin
Resource:
GET /api/v1/organizations
Response:
[
{
"id": 1,
"name": "some_name1",
...
},
{
"id": 2,
"name": "some_name2",
...
}
]
Test:
curl http://localhost/api/v1/organizations -v -u #{login}:#{password}
=end
2012-04-10 14:06:46 +00:00
def index
offset = 0
per_page = 500
if params[:page] && params[:per_page]
offset = (params[:page].to_i - 1) * params[:per_page].to_i
per_page = params[:per_page].to_i
end
2013-07-19 14:21:44 +00:00
# only allow customer to fetch his own organization
organizations = []
if role?(Z_ROLENAME_CUSTOMER) && !role?(Z_ROLENAME_ADMIN) && !role?(Z_ROLENAME_AGENT)
2013-07-19 14:21:44 +00:00
if current_user.organization_id
organizations = Organization.where(id: current_user.organization_id).offset(offset).limit(per_page)
2013-07-19 14:21:44 +00:00
end
else
organizations = Organization.all.offset(offset).limit(per_page)
end
if params[:expand]
list = []
organizations.each {|organization|
list.push organization.attributes_with_relation_names
}
render json: list, status: :ok
return
end
if params[:full]
assets = {}
item_ids = []
organizations.each {|item|
item_ids.push item.id
assets = item.assets(assets)
}
render json: {
record_ids: item_ids,
assets: assets,
}, status: :ok
return
2013-07-19 14:21:44 +00:00
end
render json: organizations
2012-04-10 14:06:46 +00:00
end
=begin
Resource:
GET /api/v1/organizations/#{id}
Response:
{
"id": 1,
"name": "name_1",
...
}
2012-04-10 14:06:46 +00:00
Test:
curl http://localhost/api/v1/organizations/#{id} -v -u #{login}:#{password}
=end
def show
2013-07-19 14:21:44 +00:00
# only allow customer to fetch his own organization
if role?(Z_ROLENAME_CUSTOMER) && !role?(Z_ROLENAME_ADMIN) && !role?(Z_ROLENAME_AGENT)
2013-07-19 14:21:44 +00:00
if !current_user.organization_id
render json: {}
2013-07-19 14:21:44 +00:00
return
end
raise Exceptions::NotAuthorized if params[:id].to_i != current_user.organization_id
2013-07-19 14:21:44 +00:00
end
if params[:expand]
organization = Organization.find(params[:id]).attributes_with_relation_names
render json: organization, status: :ok
return
end
if params[:full]
full = Organization.full(params[:id])
render json: full
return
end
model_show_render(Organization, params)
2012-04-10 14:06:46 +00:00
end
=begin
Resource:
POST /api/v1/organizations
Payload:
{
"name": "some_name",
"active": true,
"note": "some note",
"shared": true
}
Response:
{
"id": 1,
"name": "some_name",
...
}
Test:
curl http://localhost/api/v1/organizations -v -u #{login}:#{password} -H "Content-Type: application/json" -X POST -d '{"name": "some_name","active": true,"shared": true,"note": "some note"}'
=end
2012-04-10 14:06:46 +00:00
def create
deny_if_not_role(Z_ROLENAME_AGENT)
model_create_render(Organization, params)
2012-04-10 14:06:46 +00:00
end
=begin
Resource:
PUT /api/v1/organizations/{id}
Payload:
{
"id": 1
"name": "some_name",
"active": true,
"note": "some note",
"shared": true
}
2012-04-10 14:06:46 +00:00
Response:
{
"id": 1,
"name": "some_name",
...
}
Test:
curl http://localhost/api/v1/organizations -v -u #{login}:#{password} -H "Content-Type: application/json" -X PUT -d '{"id": 1,"name": "some_name","active": true,"shared": true,"note": "some note"}'
=end
def update
deny_if_not_role(Z_ROLENAME_AGENT)
model_update_render(Organization, params)
2012-04-10 14:06:46 +00:00
end
=begin
Resource:
DELETE /api/v1/organization/{id}
Response:
{}
Test:
curl http://localhost/api/v1/organization/{id} -v -u #{login}:#{password} -H "Content-Type: application/json" -X DELETE -d '{}'
=end
2012-04-10 14:06:46 +00:00
def destroy
deny_if_not_role(Z_ROLENAME_AGENT)
model_references_check(Organization, params)
model_destory_render(Organization, params)
2012-04-10 14:06:46 +00:00
end
2014-07-22 09:00:29 +00:00
# GET /api/v1/organizations/search
def search
if role?(Z_ROLENAME_CUSTOMER) && !role?(Z_ROLENAME_ADMIN) && !role?(Z_ROLENAME_AGENT)
raise Exceptions::NotAuthorized
end
# set limit for pagination if needed
if params[:page] && params[:per_page]
params[:limit] = params[:page].to_i * params[:per_page].to_i
end
query_params = {
query: params[:term],
limit: params[:limit],
current_user: current_user,
}
if params[:role_ids] && !params[:role_ids].empty?
query_params[:role_ids] = params[:role_ids]
end
# do query
organization_all = Organization.search(query_params)
# do pagination if needed
if params[:page] && params[:per_page]
offset = (params[:page].to_i - 1) * params[:per_page].to_i
organization_all = organization_all.slice(offset, params[:per_page].to_i) || []
end
if params[:expand]
list = []
organization_all.each {|organization|
list.push organization.attributes_with_relation_names
}
render json: list, status: :ok
return
end
# build result list
if !params[:full]
organizations = []
organization_all.each { |organization|
a = { id: organization.id, label: organization.name }
organizations.push a
}
# return result
render json: organizations
return
end
organization_ids = []
assets = {}
organization_all.each { |organization|
assets = organization.assets(assets)
organization_ids.push organization.id
}
# return result
render json: {
assets: assets,
organization_ids: organization_ids.uniq,
}
end
2014-07-22 09:00:29 +00:00
# GET /api/v1/organizations/history/1
def history
2016-01-27 18:26:10 +00:00
# permission check
if !role?(Z_ROLENAME_ADMIN) && !role?(Z_ROLENAME_AGENT)
raise Exceptions::NotAuthorized
2014-07-22 09:00:29 +00:00
end
# get organization data
organization = Organization.find(params[:id])
2014-07-22 09:00:29 +00:00
# get history of organization
history = organization.history_get(true)
# return result
render json: history
2014-07-22 09:00:29 +00:00
end
end