jam-cloud/web/app/controllers/api_controller.rb

class ApiController < ApplicationController

  def log
    @log || Logging.logger[ApiController]
  end

  @@html_encoder = HTMLEntities.new

  # define common error handlers
  rescue_from 'JamRuby::StateError' do |exception|
    @exception = exception
    render "errors/state_error", :status => 400
  end
  rescue_from 'JamRuby::JamArgumentError' do |exception|
    @exception = exception
    render "errors/jam_argument_error", :status => 422
  end
  rescue_from 'JamRuby::JamPermissionError' do |exception|
    @exception = exception
    render "errors/permission_error", :status => 403
  end
  rescue_from 'JamRuby::JamRecordNotFound' do |exception|
    @exception = exception
    render "errors/record_not_found", :status => 404
  end
  rescue_from 'JamRuby::ConflictError' do |exception|
    @exception = exception
    render "errors/conflict_error", :status => 409
  end
  rescue_from 'ActiveRecord::RecordNotFound' do |exception|
    log.debug(exception)
    render :json => { :errors => { :resource => ["record not found"] } }, :status => 404
  end
  rescue_from 'PG::Error' do |exception|
    log.debug(exception)
    if exception.to_s.include? "duplicate key value violates unique constraint"
      render :json => { :errors => { :resource => ["resource already exists"] } }, :status => 409 # 409 = conflict
    else
      raise exception
    end
  end


  protected

    def respond_with_model(model, options = {})
      if model.errors.any?
        respond_with model, status: :unprocessable_entity, layout: nil
      else
        status = options[:new] && options[:new] == true ? 201 : 200
        redirect_on_success = options[:location]
        if redirect_on_success
          location = redirect_on_success.call
          raise "location must return something" unless location # development time error
          respond_with model, responder: ApiResponder, status: status, location: location, layout: nil
        else
          respond_with model, responder: ApiResponder, status: status, location:nil
        end
      end
    end

    def auth_user
      unless current_user.id == params[:id]
        raise JamPermissionError, ValidationMessages::PERMISSION_VALIDATION_ERROR
      end
      
      @user = User.find(params[:id])
    end

    def optional_auth_user
      if current_user.nil?
        @user = nil
      else
        auth_user
      end
    end

    def affiliate_partner
      if params[:affiliate_id]
        @partner = AffiliatePartner.find(params[:affiliate_id])
        if @partner.partner_user.nil?
          raise JamPermissionError, ValidationMessages::PERMISSION_VALIDATION_ERROR
        end
      elsif current_user
        @partner = current_user.affiliate_partner
      else
        raise JamPermissionError, ValidationMessages::PERMISSION_VALIDATION_ERROR
      end
    end
end
* VRFS-27; working on invitations controller 2012-10-26 10:58:02 +00:00			`class ApiController < ApplicationController`

* fix broken tests because of removal of diagnostics, and fix bad logging pattern 2015-01-01 05:17:47 +00:00			`def log`
			`@log \|\| Logging.logger[ApiController]`
			`end`

VRFS-1971 escape HTML before saving / unescape before rendering 2014-08-07 04:50:10 +00:00			`@@html_encoder = HTMLEntities.new`
* VRFS-27; invitations CRUD done 2012-10-27 22:26:45 +00:00
* VRFS-27; working on invitations controller 2012-10-26 10:58:02 +00:00			`# define common error handlers`
			`rescue_from 'JamRuby::StateError' do \|exception\|`
			`@exception = exception`
VRFS-82 more band invitation development / unit test enhancements 2012-11-25 19:38:24 +00:00			`render "errors/state_error", :status => 400`
* VRFS-27; working on invitations controller 2012-10-26 10:58:02 +00:00			`end`
VRFS-81 2012-11-22 08:27:00 +00:00			`rescue_from 'JamRuby::JamArgumentError' do \|exception\|`
* VRFS-27; working on invitations controller 2012-10-26 10:58:02 +00:00			`@exception = exception`
* VRFS-871 - user-to-user messaging complete 2014-03-20 11:53:26 +00:00			`render "errors/jam_argument_error", :status => 422`
* VRFS-27; working on invitations controller 2012-10-26 10:58:02 +00:00			`end`
* VRFS-3065 - permission error name change 2015-04-20 14:50:33 +00:00			`rescue_from 'JamRuby::JamPermissionError' do \|exception\|`
* VRFS-27; working on invitations controller 2012-10-26 10:58:02 +00:00			`@exception = exception`
VRFS-81 2012-11-22 08:27:00 +00:00			`render "errors/permission_error", :status => 403`
* VRFS-27; working on invitations controller 2012-10-26 10:58:02 +00:00			`end`
* better error reporting for bad connections on join session 2016-03-29 10:50:14 +00:00			`rescue_from 'JamRuby::JamRecordNotFound' do \|exception\|`
			`@exception = exception`
			`render "errors/record_not_found", :status => 404`
			`end`
VRFS-2311 allow session creator to add and approve slots on the fly when there are no available slots 2014-10-26 02:23:52 +00:00			`rescue_from 'JamRuby::ConflictError' do \|exception\|`
			`@exception = exception`
			`render "errors/conflict_error", :status => 409`
			`end`
* VRFS-27; working on invitations controller 2012-10-26 10:58:02 +00:00			`rescue_from 'ActiveRecord::RecordNotFound' do \|exception\|`
* fix broken tests because of removal of diagnostics, and fix bad logging pattern 2015-01-01 05:17:47 +00:00			`log.debug(exception)`
* VRFS-27; invitations CRUD done 2012-10-27 22:26:45 +00:00			`render :json => { :errors => { :resource => ["record not found"] } }, :status => 404`
* VRFS-27; working on invitations controller 2012-10-26 10:58:02 +00:00			`end`
* VRFS-27; invitations CRUD done 2012-10-27 22:26:45 +00:00			`rescue_from 'PG::Error' do \|exception\|`
* fix broken tests because of removal of diagnostics, and fix bad logging pattern 2015-01-01 05:17:47 +00:00			`log.debug(exception)`
* VRFS-27; invitations CRUD done 2012-10-27 22:26:45 +00:00			`if exception.to_s.include? "duplicate key value violates unique constraint"`
			`render :json => { :errors => { :resource => ["resource already exists"] } }, :status => 409 # 409 = conflict`
			`else`
			`raise exception`
			`end`
			`end`
VRFS-82 band invitation development 2012-11-24 18:23:13 +00:00
* VRFS-1191, VRFS-1120, VRFS-1079, VRFS-1087, VRFS-1190, VRFS-1192--many band page changes, fixes. small fix for notification icons showing orange circle if icon_url not specified 2014-02-19 22:56:13 +00:00
VRFS-82 band invitation development 2012-11-24 18:23:13 +00:00			`protected`
* VRFS-1191, VRFS-1120, VRFS-1079, VRFS-1087, VRFS-1190, VRFS-1192--many band page changes, fixes. small fix for notification icons showing orange circle if icon_url not specified 2014-02-19 22:56:13 +00:00
			`def respond_with_model(model, options = {})`
			`if model.errors.any?`
* VRFS-1100 - can only download 100 times before 404 given for client downloads, VRFS-862 - quick change to unblock 2014-02-24 16:55:56 +00:00			`respond_with model, status: :unprocessable_entity, layout: nil`
* VRFS-1191, VRFS-1120, VRFS-1079, VRFS-1087, VRFS-1190, VRFS-1192--many band page changes, fixes. small fix for notification icons showing orange circle if icon_url not specified 2014-02-19 22:56:13 +00:00			`else`
			`status = options[:new] && options[:new] == true ? 201 : 200`
			`redirect_on_success = options[:location]`
			`if redirect_on_success`
			`location = redirect_on_success.call`
			`raise "location must return something" unless location # development time error`
* allowing tests to be skipped, and mostly done with VRFS-1200 2014-02-20 22:23:44 +00:00			`respond_with model, responder: ApiResponder, status: status, location: location, layout: nil`
* VRFS-1191, VRFS-1120, VRFS-1079, VRFS-1087, VRFS-1190, VRFS-1192--many band page changes, fixes. small fix for notification icons showing orange circle if icon_url not specified 2014-02-19 22:56:13 +00:00			`else`
* VRFS-1200 - api for toggling favorite is done 2014-02-20 22:56:00 +00:00			`respond_with model, responder: ApiResponder, status: status, location:nil`
* VRFS-1191, VRFS-1120, VRFS-1079, VRFS-1087, VRFS-1190, VRFS-1192--many band page changes, fixes. small fix for notification icons showing orange circle if icon_url not specified 2014-02-19 22:56:13 +00:00			`end`
			`end`
			`end`

set_password and some refactoring 2012-12-14 03:32:51 +00:00			`def auth_user`
			`unless current_user.id == params[:id]`
* VRFS-3065 - permission error name change 2015-04-20 14:50:33 +00:00			`raise JamPermissionError, ValidationMessages::PERMISSION_VALIDATION_ERROR`
VRFS-82 band invitation development 2012-11-24 18:23:13 +00:00			`end`
set_password and some refactoring 2012-12-14 03:32:51 +00:00
			`@user = User.find(params[:id])`
VRFS-82 band invitation development 2012-11-24 18:23:13 +00:00			`end`
* VRFS-734 - adding all user progression tracking that is possible currently 2013-09-30 02:37:22 +00:00
			`def optional_auth_user`
			`if current_user.nil?`
			`@user = nil`
			`else`
			`auth_user`
			`end`
* affiliate program in place VRFS-3030 2015-05-28 13:20:14 +00:00			`end`
* VRFS-734 - adding all user progression tracking that is possible currently 2013-09-30 02:37:22 +00:00
* affiliate program in place VRFS-3030 2015-05-28 13:20:14 +00:00			`def affiliate_partner`
			`if params[:affiliate_id]`
			`@partner = AffiliatePartner.find(params[:affiliate_id])`
			`if @partner.partner_user.nil?`
			`raise JamPermissionError, ValidationMessages::PERMISSION_VALIDATION_ERROR`
			`end`
			`elsif current_user`
			`@partner = current_user.affiliate_partner`
			`else`
			`raise JamPermissionError, ValidationMessages::PERMISSION_VALIDATION_ERROR`
			`end`
* VRFS-734 - adding all user progression tracking that is possible currently 2013-09-30 02:37:22 +00:00			`end`
* affiliate program in place VRFS-3030 2015-05-28 13:20:14 +00:00			`end`