Orbit/app/controllers/admin/module_apps_new_interface_c...

class Admin::ModuleAppsNewInterfaceController < OrbitBackendController
  before_filter :check_auth
  # before_filter :authenticate_user!
  # before_filter :is_admin?
  include AdminHelper

  def index
    @module_app = ModuleApp.find params[:module_app_id]
    @managers = @module_app.managing_users
  end
  
  def check_auth

    unless is_admin? and is_manager?
      flash[:error] = "unauthorized access"
      if request.env["HTTP_REFERER"]
        redirect_to :back
      else
        render(:file => File.join(Rails.root, 'public/403.html'), :status => 403, :layout => false)
      end
      false
    end
  end

  def setting
    @sys_users = User.all(conditions: {admin: false}).includes(:avatar).not_guest_user
    @module_app = ModuleApp.find(params[:module_app_id])
    @options_from_collection_for_select_bulletin_categorys = [@module_app].collect{|ma| [ma.title,ma.id] }
    # if params.has_key? :category
    #   @bulletin_category = BulletinCategory.find params[:category][:id]
    # else
    #   @bulletin_category =  @bulletin_categorys.first
    # end
    @users_array = @module_app.managing_users rescue []

    respond_to do |format|
      format.html
      format.js
    end
  end
  
  def update_setting
    module_app = update_setting_by_params
    if module_app.save!
      flash[:notice] = t('update.success_')
    else
      flash[:notice] = t('update.fail')
    end
  end
  
  def user_list
    @module_app = ModuleApp.find params[:module_app][:id]
  end

  protected
  def update_setting_by_params
    user_sat = []
    ma = ModuleApp.find params[:module_app][:id]
    user_sat += User.find params[:users].keys if params.has_key?('users')
    users_to_new = user_sat - ma.managing_users
    users_to_remove = ma.managing_users - user_sat

    users_to_new.each do |new_user|
      ma.assign_manager(new_user,current_user)
    end

    users_to_remove.each do |remove_user|
      ma.remove_manager(remove_user)
    end
    ma
  end
  
  def get_categorys(id = nil)
    @bulletin_categorys = []
    if(is_manager? || is_admin?)
      @bulletin_categorys = (id ? BulletinCategory.find(id).to_a : BulletinCategory.all)
    elsif is_sub_manager?
      @bulletin_categorys = BulletinCategory.authed_for_user(current_user,'submit_new')
    end
  end


end
Fix sidebar and hide some links by roles 2012-05-16 04:10:16 +00:00			`class Admin::ModuleAppsNewInterfaceController < OrbitBackendController`
1.make module app forbid unearthed access except from admin 2.override sidebar link when it's object_auth or app_auth. 2013-03-07 08:51:47 +00:00			`before_filter :check_auth`
			`# before_filter :authenticate_user!`
			`# before_filter :is_admin?`
New Interface for App Auth and Object Auth 2012-05-11 08:44:40 +00:00			`include AdminHelper`

New UI changes(tags, categories, authorisations, module index…) To run: - ruby lib/remove_old_tags.rb DB_NAME - rake new_ui:migrate_tags - rake new_ui:migrate_categories['APP_KEY,''MODEL_NAME'] (check new_ui.rake for more details) 2013-07-02 08:46:44 +00:00			`def index`
			`@module_app = ModuleApp.find params[:module_app_id]`
			`@managers = @module_app.managing_users`
			`end`
New Interface for App Auth and Object Auth 2012-05-11 08:44:40 +00:00
1.make module app forbid unearthed access except from admin 2.override sidebar link when it's object_auth or app_auth. 2013-03-07 08:51:47 +00:00			`def check_auth`

			`unless is_admin? and is_manager?`
			`flash[:error] = "unauthorized access"`
			`if request.env["HTTP_REFERER"]`
			`redirect_to :back`
			`else`
			`render(:file => File.join(Rails.root, 'public/403.html'), :status => 403, :layout => false)`
			`end`
			`false`
			`end`
			`end`

New Interface for App Auth and Object Auth 2012-05-11 08:44:40 +00:00			`def setting`
.not_guest_user 2012-12-19 10:51:17 +00:00			`@sys_users = User.all(conditions: {admin: false}).includes(:avatar).not_guest_user`
New Interface for App Auth and Object Auth 2012-05-11 08:44:40 +00:00			`@module_app = ModuleApp.find(params[:module_app_id])`
			`@options_from_collection_for_select_bulletin_categorys = [@module_app].collect{\|ma\| [ma.title,ma.id] }`
			`# if params.has_key? :category`
			`# @bulletin_category = BulletinCategory.find params[:category][:id]`
			`# else`
			`# @bulletin_category = @bulletin_categorys.first`
			`# end`
			`@users_array = @module_app.managing_users rescue []`

			`respond_to do \|format\|`
			`format.html`
			`format.js`
			`end`
			`end`

			`def update_setting`
			`module_app = update_setting_by_params`
			`if module_app.save!`
Changes for i18n yml 2012-09-12 11:12:50 +00:00			`flash[:notice] = t('update.success_')`
New Interface for App Auth and Object Auth 2012-05-11 08:44:40 +00:00			`else`
Changes for i18n yml 2012-09-12 11:12:50 +00:00			`flash[:notice] = t('update.fail')`
New Interface for App Auth and Object Auth 2012-05-11 08:44:40 +00:00			`end`
			`end`

			`def user_list`
			`@module_app = ModuleApp.find params[:module_app][:id]`
			`end`

			`protected`
			`def update_setting_by_params`
Object auth for ad_banner 2012-05-15 08:39:23 +00:00			`user_sat = []`
New Interface for App Auth and Object Auth 2012-05-11 08:44:40 +00:00			`ma = ModuleApp.find params[:module_app][:id]`
Changes on nccu 2012-05-18 07:20:45 +00:00			`user_sat += User.find params[:users].keys if params.has_key?('users')`
New Interface for App Auth and Object Auth 2012-05-11 08:44:40 +00:00			`users_to_new = user_sat - ma.managing_users`
			`users_to_remove = ma.managing_users - user_sat`

			`users_to_new.each do \|new_user\|`
			`ma.assign_manager(new_user,current_user)`
			`end`

			`users_to_remove.each do \|remove_user\|`
			`ma.remove_manager(remove_user)`
			`end`
			`ma`
			`end`

			`def get_categorys(id = nil)`
			`@bulletin_categorys = []`
			`if(is_manager? \|\| is_admin?)`
hide category at front end 2012-07-09 04:05:21 +00:00			`@bulletin_categorys = (id ? BulletinCategory.find(id).to_a : BulletinCategory.all)`
New Interface for App Auth and Object Auth 2012-05-11 08:44:40 +00:00			`elsif is_sub_manager?`
			`@bulletin_categorys = BulletinCategory.authed_for_user(current_user,'submit_new')`
			`end`
			`end`



.not_guest_user 2012-12-19 10:51:17 +00:00			`end`