Class: UsersController

Inherits:

ApplicationController

• Object
• ActionController::Base
• BarkestCore::ApplicationControllerBase
• ApplicationController
• UsersController

Defined in:

app/controllers/users_controller.rb

Overview

This is a user management controller.

This includes all the actions necessary to create, list, edit, disable, and destroy users.

Instance Method Summary

• #create ⇒ Object

  Creates a new user account after verifying the user is not a robot.

• #destroy ⇒ Object

  Destroys a user account that has been disabled for at least 15 days as long as the requesting user is an admin.

• #disable ⇒ Object

  Disables a user account as long as the requesting user is an administrator and provides a reason the account is being disabled.

• #disable_confirm ⇒ Object

  Shows a form requesting a reason to disable a user and allowing the administrator a chance to cancel the action.

• #edit ⇒ Object

  Shows a form to edit the user profile.

• #enable ⇒ Object

  Enables a previosly disabled user as long as the requesting user is an administrator.

• #index ⇒ Object

  Shows a list of all users.

• #new ⇒ Object

  Shows the signup form for a new user.

• #show ⇒ Object

  Shows a specific user profile.

• #update ⇒ Object

  Updates a user profile.

Methods inherited from BarkestCore::ApplicationControllerBase

#authorize!, #show_denial_reason?

Methods included from BarkestCore::StatusHelper

#clear_system_status, #show_system_status, #status_button_label, #status_redirect_url

Methods included from BarkestCore::RecaptchaHelper

#add_recaptcha_challenge, #verify_recaptcha_challenge

Methods included from BarkestCore::SessionsHelper

#current_user, #current_user?, #forget, #log_in, #log_out, #logged_in?, #redirect_back_or, #remember, #store_location, #store_location_and_redirect_to, #system_admin?

Instance Method Details

#create ⇒ Object

Creates a new user account after verifying the user is not a robot.

# File 'app/controllers/users_controller.rb', line 46

def create
  @user = User.new(user_params)
  if @user.valid? && verify_recaptcha_challenge(@user)
    if @user.save
      @user.send_activation_email request.remote_ip
      flash[:safe_info] = 'Your account has been created, but needs to be activated before you can use it.<br/>Please check your email to activate your account.'
      redirect_to root_url and return
    end
  end
  render 'new'
end

#destroy ⇒ Object

Destroys a user account that has been disabled for at least 15 days as long as the requesting user is an admin.

# File 'app/controllers/users_controller.rb', line 81

def destroy
  if @user.enabled?
    flash[:danger] = 'Cannot delete an enabled user.'
  elsif @user.disabled_at.blank? || @user.disabled_at > 15.days.ago
    flash[:danger] = 'Cannot delete a user within 15 days of being disabled.'
  else
    @user.destroy
    flash[:success] = "User #{@user.name} has been deleted."
  end
  redirect_to users_path
end

#disable ⇒ Object

Disables a user account as long as the requesting user is an administrator and provides a reason the account is being disabled.

# File 'app/controllers/users_controller.rb', line 109

def disable
  load_disable_user

  if @disable.valid?
    if @disable.user.disable(current_user, @disable.reason)
      flash[:success] = "User #{@disable.user.name} has been disabled."
      redirect_to users_path and return
    else
      @disable.errors.add(:user, 'was unable to be updated')
    end
  end

  render 'disable_confirm'
end

#disable_confirm ⇒ Object

Shows a form requesting a reason to disable a user and allowing the administrator a chance to cancel the action.

# File 'app/controllers/users_controller.rb', line 97

def disable_confirm
  load_disable_user
  unless @disable.user.enabled?
    flash[:warning] = "User #{@disable.user.name} is already disabled."
    redirect_to users_path
  end
end

#edit ⇒ Object

Shows a form to edit the user profile.

# File 'app/controllers/users_controller.rb', line 61

def edit

end

#enable ⇒ Object

Enables a previosly disabled user as long as the requesting user is an administrator.

# File 'app/controllers/users_controller.rb', line 128

def enable
  if @user.enabled?
    flash[:warning] = "User #{@user.name} is already enabled."
    redirect_to users_path and return
  end

  if @user.enable
    flash[:success] = "User #{@user.name} has been enabled."
  else
    flash[:danger] = "Failed to enable user #{@user.name}."
  end

  redirect_to users_path
end

#index ⇒ Object

Shows a list of all users.

Admin users are shown all users including disabled and inactive. Other users only see the enabled users.

# File 'app/controllers/users_controller.rb', line 25

def index
  @users = (current_user.system_admin? ? User.known.sorted : User.known.enabled.sorted).paginate(page: params[:page])
end

#new ⇒ Object

Shows the signup form for a new user.

# File 'app/controllers/users_controller.rb', line 39

def new
  @user = User.new
end

#show ⇒ Object

Shows a specific user profile.

# File 'app/controllers/users_controller.rb', line 32

def show

end

#update ⇒ Object

Updates a user profile.

# File 'app/controllers/users_controller.rb', line 68

def update
  if @user.update_attributes(user_params)
    flash[:success] = 'Your profile has been updated.'
    redirect_to @user
  else
    render 'edit'
  end
end