Class: Locomotive::Account

Inherits:

Object

• Object
• Locomotive::Account

Includes:

Mongoid::Document

Defined in:

app/models/locomotive/account.rb

Class Method Summary

• .create_api_token(site, email, password) ⇒ String

  Create the API token which will be passed to all the requests to the Locomotive API.

• .invalidate_api_token(token) ⇒ String

  Logout the user responding to the token passed in parameter from the API.

Instance Method Summary

• #admin? ⇒ Boolean

  Tell if the account has admin privileges or not.

• #devise_mailer ⇒ Object
• #name ⇒ Object

  validations ##.

• #remember_created_at ⇒ Object

  devise fields (need to be declared since 2.x) ##.

• #sites ⇒ Object

  methods ##.

Class Method Details

.create_api_token(site, email, password) ⇒ String

Create the API token which will be passed to all the requests to the Locomotive API. It requires the credentials of an account with admin role. If an error occurs (invalid account, …etc), this method raises an exception that has to be caught somewhere.

Parameters:

• site (Site) —

  The site where the authentication request is made

• email (String) —

  The email of the account

• password (String) —

  The password of the account

Returns:

• (String) —

  The API token

# File 'app/models/locomotive/account.rb', line 61

def self.create_api_token(site, email, password)
  raise 'The request must contain the user email and password.' if email.blank? or password.blank?

  account = self.where(:email => email.downcase).first

  raise 'Invalid email or password.' if account.nil?

  account.ensure_authentication_token!

  if not account.valid_password?(password) # TODO: check admin roles
    raise 'Invalid email or password.'
  end

  account.authentication_token
end

.invalidate_api_token(token) ⇒ String

Logout the user responding to the token passed in parameter from the API. An exception is raised if no account corresponds to the token.

Parameters:

• token (String) —

  The API token created by the create_api_token method.

Returns:

• (String) —

  The API token

# File 'app/models/locomotive/account.rb', line 84

def self.invalidate_api_token(token)
  account = self.where(:authentication_token => token).first

  raise 'Invalid token.' if account.nil?

  account.reset_authentication_token!

  token
end

Instance Method Details

#admin? ⇒ Boolean

Tell if the account has admin privileges or not. Actually, an account is considered as an admin if it owns at least one admin membership in all its sites.

Returns:

• (Boolean) —

  True if admin

# File 'app/models/locomotive/account.rb', line 46

def admin?
  Site.where(:memberships => { '$elemMatch' => { :account_id => self._id, :role => :admin } }).count > 0
end

#devise_mailer ⇒ Object

# File 'app/models/locomotive/account.rb', line 94

def devise_mailer
  Locomotive::DeviseMailer
end

#name ⇒ Object

validations ##

# File 'app/models/locomotive/account.rb', line 23

field :name

#remember_created_at ⇒ Object

devise fields (need to be declared since 2.x) ##

# File 'app/models/locomotive/account.rb', line 9

field :remember_created_at,     :type => Time

#sites ⇒ Object

methods ##

# File 'app/models/locomotive/account.rb', line 36

def sites
  @sites ||= Site.where('memberships.account_id' => self._id)
end