2014-05-01 07:14:16 +00:00
|
|
|
class OrbitMemberController < ApplicationController
|
2014-05-26 01:45:46 +00:00
|
|
|
include OrbitBackendHelper
|
|
|
|
|
|
2014-07-31 12:42:53 +00:00
|
|
|
before_action :authenticate_user, :check_aceess_rights, :set_module_app
|
2014-05-01 07:14:16 +00:00
|
|
|
layout "member"
|
2014-07-09 09:21:37 +00:00
|
|
|
|
2014-07-31 12:42:53 +00:00
|
|
|
def check_aceess_rights
|
|
|
|
|
@user_has_privileges = false
|
2014-07-09 09:21:37 +00:00
|
|
|
if current_user.is_admin?
|
2014-07-31 12:42:53 +00:00
|
|
|
@user_has_privileges = true
|
2014-07-09 09:21:37 +00:00
|
|
|
else
|
2014-07-31 12:42:53 +00:00
|
|
|
visited_user = MemberProfile.find_by(:uid => params[:id].split("-").last).user.id rescue nil
|
2014-08-08 10:37:33 +00:00
|
|
|
visited_user = MemberProfile.find_by(:uid => params[:member_id].split("-").last).user.id if visited_user.nil? rescue nil
|
2014-07-31 12:42:53 +00:00
|
|
|
visited_user = MemberProfile.find_by(:uid => params[:uid]).user.id if visited_user.nil? rescue nil
|
|
|
|
|
visited_user = MemberProfile.find(params[:member_profile_id]).user.id if visited_user.nil? rescue nil
|
|
|
|
|
if current_user.id == visited_user
|
|
|
|
|
@user_has_privileges = true
|
|
|
|
|
else
|
|
|
|
|
@user_has_privileges = false
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
def set_module_app
|
|
|
|
|
@module_app = ModuleApp.find_by_key("member")
|
2014-07-09 09:21:37 +00:00
|
|
|
end
|
2014-07-31 13:50:49 +00:00
|
|
|
|
|
|
|
|
def allow_admin_only
|
|
|
|
|
if !current_user.is_admin?
|
|
|
|
|
render_401
|
|
|
|
|
end
|
|
|
|
|
end
|
2014-05-01 07:14:16 +00:00
|
|
|
end
|
