2014-08-19 01:41:44 +00:00
require 'sanitize'
2015-09-22 01:01:39 +00:00
class
ApiUsersController < ApiController
2012-10-14 02:22:13 +00:00
2015-07-06 20:34:27 +00:00
before_filter :api_signed_in_user , :except = > [ :create , :calendar , :show , :signup_confirm , :auth_session_create , :complete , :finalize_update_email , :isp_scoring , :add_play , :crash_dump , :validate_data ]
2013-03-08 06:45:06 +00:00
before_filter :auth_user , :only = > [ :session_settings_show , :session_history_index , :session_user_history_index , :update , :delete ,
2014-02-16 19:48:54 +00:00
:liking_create , :liking_destroy , # likes
2013-04-27 03:33:52 +00:00
:following_create , :following_show , :following_destroy , # followings
2012-12-17 06:02:09 +00:00
:recording_update , :recording_destroy , # recordings
:favorite_create , :favorite_destroy , # favorites
2012-12-29 14:29:20 +00:00
:friend_request_index , :friend_request_show , :friend_request_create , :friend_request_update , # friend requests
2013-04-22 02:22:03 +00:00
:friend_show , :friend_destroy , # friends
2013-04-05 03:51:01 +00:00
:notification_index , :notification_destroy , # notifications
2012-12-29 14:29:20 +00:00
:band_invitation_index , :band_invitation_show , :band_invitation_update , # band invitations
2014-02-06 16:31:52 +00:00
:set_password , :begin_update_email , :update_avatar , :delete_avatar , :generate_filepicker_policy ,
2014-04-23 06:38:49 +00:00
:share_session , :share_recording ,
2015-06-10 13:26:45 +00:00
:affiliate_report , :audio_latency , :broadcast_notification ]
2014-02-06 16:31:52 +00:00
2015-07-06 20:34:27 +00:00
respond_to :json , :except = > :calendar
respond_to :ics , :only = > :calendar
2012-10-14 02:22:13 +00:00
def index
2013-11-04 14:58:34 +00:00
@users = User . paginate ( page : params [ :page ] )
respond_with @users , responder : ApiResponder , :status = > 200
2012-10-14 02:22:13 +00:00
end
2015-07-06 20:34:27 +00:00
def calendar
@user = lookup_user
ics = CalendarManager . new . create_ics_feed ( @user )
send_data ics , :filename = > 'JamKazam' , :disposition = > 'inline' , :type = > " text/calendar "
end
2012-10-15 12:46:51 +00:00
def show
2015-07-06 20:34:27 +00:00
@user = lookup_user
2014-01-04 17:20:28 +00:00
2012-11-26 13:37:11 +00:00
respond_with @user , responder : ApiResponder , :status = > 200
2012-10-15 12:46:51 +00:00
end
2015-02-14 03:45:19 +00:00
def profile_show
2015-02-13 08:16:48 +00:00
@profile = User . includes ( [ { musician_instruments : :instrument } ,
{ band_musicians : :user } ,
{ genre_players : :genre } ,
:bands , :instruments , :genres ,
2015-02-14 03:45:19 +00:00
:online_presences , :performance_samples ] )
2015-02-13 08:16:48 +00:00
. find ( params [ :id ] )
respond_with @profile , responder : ApiResponder , :status = > 200
end
2015-05-15 17:34:35 +00:00
# in other words, a minimal signup
def create
# today, this only accepts a minimal registration; it could be made to take in more if we wanted
signup_hint = nil
if anonymous_user
signup_hint = anonymous_user . signup_hint
if signup_hint && signup_hint . jam_track . nil?
signup_hint = nil # it doesn't make sense to pass in signup hints that are not free jam-track centric (at least, not today)
end
end
# recaptcha_response: params['g-recaptcha-response']
options = {
first_name : params [ :first_name ] ,
last_name : params [ :last_name ] ,
email : params [ :email ] ,
password : params [ :password ] ,
password_confirmation : params [ :password ] ,
terms_of_service : params [ :terms ] ,
location : { :country = > nil , :state = > nil , :city = > nil } ,
2015-06-03 19:22:21 +00:00
signup_hint : signup_hint ,
affiliate_referral_id : cookies [ :affiliate_visitor ]
2015-05-15 17:34:35 +00:00
}
options = User . musician_defaults ( request . remote_ip , ApplicationHelper . base_uri ( request ) + " /confirm " , any_user , options )
@user = UserManager . new . signup ( options )
if @user . errors . any?
respond_with_model ( @user )
else
sign_in @user
new_user ( @user , signup_hint ) # sets a cookie used for GA analytics (one-time new user stuff in JavaScript)
respond_with_model ( @user , new : true , location : lambda { return api_user_detail_url ( @user . id ) } )
end
end
2015-07-06 20:34:27 +00:00
2015-02-14 03:45:19 +00:00
def profile_save
end
2015-07-06 20:34:27 +00:00
2012-10-29 10:46:24 +00:00
def update
2013-08-29 12:14:12 +00:00
@user = User . find ( params [ :id ] )
@user . first_name = params [ :first_name ] if params . has_key? ( :first_name )
@user . last_name = params [ :last_name ] if params . has_key? ( :last_name )
@user . gender = params [ :gender ] if params . has_key? ( :gender )
@user . birth_date = Date . strptime ( params [ :birth_date ] , '%m-%d-%Y' ) if params . has_key? ( :birth_date )
@user . city = params [ :city ] if params . has_key? ( :city )
@user . state = params [ :state ] if params . has_key? ( :state )
@user . country = params [ :country ] if params . has_key? ( :country )
2013-08-29 13:39:08 +00:00
@user . musician = params [ :musician ] if params . has_key? ( :musician )
2013-08-29 12:14:12 +00:00
@user . update_instruments ( params [ :instruments ] . nil? ? [ ] : params [ :instruments ] ) if params . has_key? ( :instruments )
2015-07-06 20:34:27 +00:00
2015-02-15 02:02:26 +00:00
# genres
@user . update_genres ( params [ :genres ] . nil? ? [ ] : params [ :genres ] , GenrePlayer :: PROFILE ) if params . has_key? ( :genres )
@user . update_genres ( params [ :virtual_band_genres ] . nil? ? [ ] : params [ :virtual_band_genres ] , GenrePlayer :: VIRTUAL_BAND ) if params . has_key? ( :virtual_band_genres )
@user . update_genres ( params [ :traditional_band_genres ] . nil? ? [ ] : params [ :traditional_band_genres ] , GenrePlayer :: TRADITIONAL_BAND ) if params . has_key? ( :traditional_band_genres )
@user . update_genres ( params [ :paid_session_genres ] . nil? ? [ ] : params [ :paid_session_genres ] , GenrePlayer :: PAID_SESSION ) if params . has_key? ( :paid_session_genres )
@user . update_genres ( params [ :free_session_genres ] . nil? ? [ ] : params [ :free_session_genres ] , GenrePlayer :: FREE_SESSION ) if params . has_key? ( :free_session_genres )
@user . update_genres ( params [ :cowriting_genres ] . nil? ? [ ] : params [ :cowriting_genres ] , GenrePlayer :: COWRITING ) if params . has_key? ( :cowriting_genres )
2015-07-06 20:34:27 +00:00
2013-10-21 22:13:53 +00:00
@user . show_whats_next = params [ :show_whats_next ] if params . has_key? ( :show_whats_next )
2015-04-08 19:34:05 +00:00
@user . show_whats_next_count = params [ :show_whats_next_count ] if params . has_key? ( :show_whats_next_count )
2013-10-22 17:38:21 +00:00
@user . subscribe_email = params [ :subscribe_email ] if params . has_key? ( :subscribe_email )
2014-02-25 05:41:43 +00:00
@user . biography = params [ :biography ] if params . has_key? ( :biography )
2015-02-15 02:02:26 +00:00
@user . website = params [ :website ] if params . has_key? ( :website )
@user . skill_level = params [ :skill_level ] if params . has_key? ( :skill_level )
@user . concert_count = params [ :concert_count ] if params . has_key? ( :concert_count )
@user . studio_session_count = params [ :studio_session_count ] if params . has_key? ( :studio_session_count )
# virtual band
@user . virtual_band = params [ :virtual_band ] if params . has_key? ( :virtual_band )
@user . virtual_band_commitment = params [ :virtual_band_commitment ] if params . has_key? ( :virtual_band_commitment )
# traditional band
@user . traditional_band = params [ :traditional_band ] if params . has_key? ( :traditional_band )
@user . traditional_band_commitment = params [ :traditional_band_commitment ] if params . has_key? ( :traditional_band_commitment )
@user . traditional_band_touring = params [ :traditional_band_touring ] if params . has_key? ( :traditional_band_touring )
# paid sessions
@user . paid_sessions = params [ :paid_sessions ] if params . has_key? ( :paid_sessions )
@user . paid_sessions_hourly_rate = params [ :paid_sessions_hourly_rate ] if params . has_key? ( :paid_sessions_hourly_rate )
@user . paid_sessions_daily_rate = params [ :paid_sessions_daily_rate ] if params . has_key? ( :paid_sessions_daily_rate )
# free sessions
@user . free_sessions = params [ :free_sessions ] if params . has_key? ( :free_sessions )
# co-writing
@user . cowriting = params [ :cowriting ] if params . has_key? ( :cowriting )
@user . cowriting_purpose = params [ :cowriting_purpose ] if params . has_key? ( :cowriting_purpose )
2015-04-16 02:37:22 +00:00
@user . want_jamblaster = params [ :want_jamblaster ] if params . has_key? ( :want_jamblaster )
2014-11-11 22:21:46 +00:00
@user . mod_merge ( params [ :mods ] ) if params [ :mods ]
2014-03-27 18:43:15 +00:00
# allow keyword of 'LATEST' to mean set the notification_seen_at to the most recent notification for this user
if params . has_key? ( :notification_seen_at )
@user . update_notification_seen_at params [ :notification_seen_at ]
end
2015-02-15 02:02:26 +00:00
@user . update_online_presences ( params [ :online_presences ] ) if params . has_key? ( :online_presences )
@user . update_performance_samples ( params [ :performance_samples ] ) if params . has_key? ( :performance_samples )
2015-07-06 20:34:27 +00:00
@user . update_calendars ( params [ :calendars ] ) if params . has_key? ( :calendars )
2013-08-29 12:14:12 +00:00
@user . save
2012-11-03 19:32:57 +00:00
2013-03-08 06:45:06 +00:00
if @user . errors . any?
respond_with @user , :status = > :unprocessable_entity
else
respond_with @user , responder : ApiResponder , :status = > 200
end
end
# a user that is created administratively has an incomplete profile
# when they first visit the confirmation page by clicking the link in their email.
def complete
signup_token = params [ :signup_token ]
user = User . find_by_signup_token ( signup_token )
if user . nil?
return
end
user . updating_password = true
user . easy_save (
params [ :first_name ] ,
params [ :last_name ] ,
nil , # email can't be edited at this phase. We need to get them into the site, and they can edit on profile page if they really want
params [ :password ] ,
params [ :password_confirmation ] ,
true , # musician
params [ :gender ] ,
params [ :birth_date ] ,
params [ :isp ] ,
params [ :city ] ,
params [ :state ] ,
params [ :country ] ,
params [ :instruments ] ,
params [ :photo_url ] )
if user . errors . any?
render :json = > user . errors . full_messages ( ) , :status = > :unprocessable_entity
else
# log the user in automatically
user . signup_confirm
sign_in ( user )
respond_with user , responder : ApiResponder , :status = > 200
end
2012-10-29 10:46:24 +00:00
end
2012-12-17 06:02:09 +00:00
def delete
2015-07-06 20:34:27 +00:00
@user . destroy
2012-12-17 06:02:09 +00:00
respond_with responder : ApiResponder , :status = > 204
2015-07-06 20:34:27 +00:00
end
2012-12-17 06:02:09 +00:00
def signup_confirm
@user = UserManager . new . signup_confirm ( params [ :signup_token ] )
unless @user . errors . any?
respond_with @user , responder : ApiResponder , :location = > api_user_detail_url ( @user )
else
response . status = :unprocessable_entity
respond_with @user , responder : ApiResponder
end
end
2012-12-14 03:32:51 +00:00
def set_password
2013-05-14 19:03:50 +00:00
@user . set_password ( params [ :old_password ] , params [ :new_password ] , params [ :new_password_confirm ] )
if @user . errors . any?
response . status = :unprocessable_entity
respond_with @user
else
sign_in ( @user )
respond_with @user , responder : ApiResponder , status : 200
2012-12-14 03:32:51 +00:00
end
end
2012-12-22 00:56:49 +00:00
def reset_password
begin
2013-07-05 08:24:43 +00:00
User . reset_password ( params [ :email ] , ApplicationHelper . base_uri ( request ) )
2012-12-22 00:56:49 +00:00
rescue JamRuby :: JamArgumentError
render :json = > { :message = > ValidationMessages :: EMAIL_NOT_FOUND } , :status = > 403
end
respond_with responder : ApiResponder , :status = > 204
end
2013-07-05 08:24:43 +00:00
def reset_password_token
2012-12-22 00:56:49 +00:00
begin
User . set_password_from_token ( params [ :email ] , params [ :token ] , params [ :new_password ] , params [ :new_password_confirm ] )
rescue JamRuby :: JamArgumentError
# FIXME
# There are some other errors that can happen here, besides just EMAIL_NOT_FOUND
render :json = > { :message = > ValidationMessages :: EMAIL_NOT_FOUND } , :status = > 403
end
2012-12-22 06:32:24 +00:00
set_remember_token ( @user )
2012-12-22 00:56:49 +00:00
respond_with responder : ApiResponder , :status = > 204
end
2012-12-17 06:02:09 +00:00
###################### AUTHENTICATION ###################
def auth_session_create
@user = User . authenticate ( params [ :email ] , params [ :password ] )
if @user . nil?
render :json = > { :success = > false } , :status = > 404
else
sign_in @user
render :json = > { :success = > true } , :status = > 200
end
end
def auth_session_delete
sign_out
render :json = > { :success = > true } , :status = > 200
2015-07-06 20:34:27 +00:00
end
2012-12-17 06:02:09 +00:00
###################### SESSION SETTINGS ###################
def session_settings_show
respond_with @user . my_session_settings , responder : ApiResponder
2012-10-14 02:22:13 +00:00
end
2013-01-06 20:47:56 +00:00
###################### SESSION HISTORY ###################
def session_history_index
@session_history = @user . session_history ( params [ :id ] , params [ :band_id ] , params [ :genre ] )
end
def session_user_history_index
@session_user_history = @user . session_user_history ( params [ :id ] , params [ :session_id ] )
end
2015-07-06 20:34:27 +00:00
###################### BANDS ########################
2012-12-17 06:24:23 +00:00
def band_index
2012-12-17 06:58:50 +00:00
@bands = User . band_index ( params [ :id ] )
2012-12-17 06:24:23 +00:00
end
2012-12-16 23:24:35 +00:00
###################### LIKERS ########################
def liker_index
# NOTE: liker_index.rabl template references the likers property
@user = User . find ( params [ :id ] )
end
###################### LIKES #########################
2014-02-16 18:06:36 +00:00
def liking_index
2012-12-16 23:24:35 +00:00
@user = User . find ( params [ :id ] )
end
2014-02-16 18:06:36 +00:00
def liking_create
2014-02-16 19:48:54 +00:00
@user = User . find ( params [ :id ] )
2012-12-16 23:24:35 +00:00
if ! params [ :user_id ] . nil?
2014-02-16 18:06:36 +00:00
@user . create_user_liking ( params [ :user_id ] )
2015-07-06 20:34:27 +00:00
2012-12-16 23:24:35 +00:00
elsif ! params [ :band_id ] . nil?
2014-02-16 18:06:36 +00:00
@user . create_band_liking ( params [ :band_id ] )
2012-12-16 23:24:35 +00:00
end
2014-02-16 07:28:35 +00:00
2014-02-16 18:06:36 +00:00
respond_with @user , responder : ApiResponder , :location = > api_user_liking_index_url ( @user )
2012-12-16 23:24:35 +00:00
end
2014-02-16 18:06:36 +00:00
def liking_destroy
2014-02-24 06:10:09 +00:00
User . delete_liking ( params [ :id ] , params [ :likable_id ] )
2012-12-16 23:24:35 +00:00
respond_with responder : ApiResponder , :status = > 204
end
2012-11-18 21:52:22 +00:00
###################### FOLLOWERS ########################
2012-11-04 13:34:59 +00:00
def follower_index
# NOTE: follower_index.rabl template references the followers property
@user = User . find ( params [ :id ] )
end
2012-11-18 21:52:22 +00:00
###################### FOLLOWINGS #######################
2012-11-04 13:34:59 +00:00
def following_index
@user = User . find ( params [ :id ] )
2012-11-21 19:49:00 +00:00
end
2012-11-06 12:15:02 +00:00
2012-11-04 13:34:59 +00:00
def following_create
2014-02-16 19:48:54 +00:00
@user = User . find ( params [ :id ] )
2012-11-06 12:15:02 +00:00
if ! params [ :user_id ] . nil?
2013-12-29 04:51:35 +00:00
@user . create_user_following ( params [ :user_id ] )
2012-11-06 12:15:02 +00:00
elsif ! params [ :band_id ] . nil?
2013-12-29 04:51:35 +00:00
@user . create_band_following ( params [ :band_id ] )
2012-11-06 12:15:02 +00:00
end
2014-02-16 07:28:35 +00:00
respond_with @user , responder : ApiResponder , :location = > api_user_following_index_url ( @user )
2012-11-04 13:34:59 +00:00
end
def following_destroy
2014-02-24 06:10:09 +00:00
User . delete_following ( params [ :id ] , params [ :followable_id ] )
2012-11-24 18:23:13 +00:00
respond_with responder : ApiResponder , :status = > 204
2012-11-04 13:34:59 +00:00
end
2012-11-18 21:52:22 +00:00
###################### FAVORITES ########################
def favorite_index
@user = User . find ( params [ :id ] )
end
def favorite_create
2012-11-21 19:49:00 +00:00
@favorite = UserFavorite . new ( )
User . create_favorite ( params [ :id ] , params [ :recording_id ] )
2012-11-18 21:52:22 +00:00
@user = User . find ( params [ :id ] )
respond_with @user , responder : ApiResponder , :location = > api_favorite_index_url ( @user )
end
def favorite_destroy
2012-11-21 19:49:00 +00:00
User . delete_favorite ( params [ :id ] , params [ :recording_id ] )
2012-11-24 18:23:13 +00:00
respond_with responder : ApiResponder , :status = > 204
2012-11-18 21:52:22 +00:00
end
2012-12-15 07:10:42 +00:00
###################### FRIENDS ##########################
2012-10-14 02:22:13 +00:00
def friend_request_index
2012-10-15 12:46:51 +00:00
# get all outgoing and incoming friend requests
2012-12-29 14:29:20 +00:00
@friend_requests = FriendRequest . where ( " (friend_id=' #{ params [ :id ] } ' AND status is null) OR user_id=' #{ params [ :id ] } ' " )
2012-10-14 02:22:13 +00:00
end
2012-10-15 12:46:51 +00:00
def friend_request_show
2012-12-29 14:29:20 +00:00
@friend_request = FriendRequest . find ( params [ :friend_request_id ] )
2015-04-20 14:50:33 +00:00
raise JamRuby :: JamPermissionError , 'not allowed to view someone else\'s friend request' if @friend_request . friend_id != @user . id && @friend_request . user_id != @user . id
2014-03-25 15:29:08 +00:00
2012-12-29 14:29:20 +00:00
respond_with @friend_request , responder : ApiResponder , :status = > 200
2012-10-14 02:22:13 +00:00
end
2012-10-15 12:46:51 +00:00
def friend_request_create
2012-12-30 14:39:59 +00:00
@friend_request = FriendRequest . save ( nil ,
params [ :id ] ,
params [ :friend_id ] ,
nil ,
params [ :message ] )
respond_with @friend_request , responder : ApiResponder , :status = > 201 , :location = > api_friend_request_detail_url ( @user , @friend_request )
2012-10-14 02:22:13 +00:00
end
2012-10-14 04:29:49 +00:00
def friend_request_update
2012-12-29 14:29:20 +00:00
@friend_request = FriendRequest . save ( params [ :friend_request_id ] ,
params [ :id ] ,
params [ :friend_id ] ,
params [ :status ] ,
nil )
respond_with @friend_request , responder : ApiResponder , :status = > 200
2012-10-14 02:22:13 +00:00
end
2012-10-14 04:29:49 +00:00
def friend_index
# NOTE: friend_index.rabl template references the friends property
@user = User . find ( params [ :id ] )
2012-10-14 02:22:13 +00:00
end
2013-04-20 19:17:44 +00:00
def friend_show
2013-04-21 19:31:41 +00:00
@friend = Friendship . find_by_user_id_and_friend_id ( params [ :id ] , params [ :friend_id ] )
2013-04-20 19:17:44 +00:00
end
2012-10-14 02:22:13 +00:00
def friend_destroy
2012-12-29 14:29:20 +00:00
if current_user . id != params [ :id ] && current_user . id != params [ :friend_id ]
render :json = > { :message = > " You are not allowed to delete this friendship. " } , :status = > 403
end
2012-10-15 12:46:51 +00:00
# clean up both records representing this "friendship"
2012-10-14 04:29:49 +00:00
JamRuby :: Friendship . delete_all " (user_id = ' #{ params [ :id ] } ' AND friend_id = ' #{ params [ :friend_id ] } ') OR (user_id = ' #{ params [ :friend_id ] } ' AND friend_id = ' #{ params [ :id ] } ') "
2012-11-24 18:23:13 +00:00
respond_with responder : ApiResponder , :status = > 204
2012-10-14 02:22:13 +00:00
end
2013-03-22 00:17:28 +00:00
###################### NOTIFICATIONS ####################
def notification_index
2014-03-20 11:53:26 +00:00
if params [ :type ] == 'TEXT_MESSAGE'
# you can ask for just text_message notifications
raise JamArgumentError . new ( 'can\'t be blank' , 'receiver' ) if params [ :receiver ] . blank?
raise JamArgumentError . new ( 'can\'t be blank' , 'limit' ) if params [ :limit ] . blank?
raise JamArgumentError . new ( 'can\'t be blank' , 'offset' ) if params [ :offset ] . blank?
receiver_id = params [ :receiver ]
2014-10-06 04:51:19 +00:00
limit = params [ :limit ] . to_i
limit = 20 if limit < = 0
offset = params [ :offset ] . to_i
offset = 0 if offset < 0
2014-03-20 11:53:26 +00:00
@notifications = Notification . where ( description : 'TEXT_MESSAGE' ) . where ( '(source_user_id = (?) AND target_user_id = (?)) OR (source_user_id = (?) AND target_user_id = (?))' , @user . id , receiver_id , receiver_id , @user . id ) . offset ( offset ) . limit ( limit ) . order ( 'created_at DESC' )
else
2014-10-06 04:51:19 +00:00
limit = params [ :limit ] . to_i
limit = 20 if limit < = 0
offset = params [ :offset ] . to_i
offset = 0 if offset < 0
@notifications = @user . notifications . offset ( offset ) . limit ( limit )
2014-03-20 11:53:26 +00:00
end
2013-03-22 00:17:28 +00:00
respond_with @notifications , responder : ApiResponder , :status = > 200
end
2013-04-05 03:51:01 +00:00
def notification_destroy
Notification . delete ( params [ :notification_id ] )
respond_with responder : ApiResponder , :status = > 204
end
2014-03-20 11:53:26 +00:00
def notification_create
2014-08-19 01:41:44 +00:00
@notification = Notification . send_text_message ( Sanitize . fragment ( params [ :message ] , elements : HtmlSanitize :: SAFE ) , current_user , User . find_by_id ( params [ :receiver ] ) )
2014-03-20 11:53:26 +00:00
respond_with_model ( @notification , new : true )
end
2012-11-26 13:37:11 +00:00
##################### BAND INVITATIONS ##################
def band_invitation_index
2012-12-15 07:10:42 +00:00
@invitations = @user . received_band_invitations
2012-11-26 13:37:11 +00:00
respond_with @invitations , responder : ApiResponder , :status = > 200
end
def band_invitation_show
begin
@invitation = BandInvitation . find ( params [ :invitation_id ] )
respond_with @invitation , responder : ApiResponder , :status = > 200
rescue ActiveRecord :: RecordNotFound
2015-07-06 20:34:27 +00:00
render :json = > { :message = > ValidationMessages :: BAND_INVITATION_NOT_FOUND } , :status = > 404
2012-11-26 13:37:11 +00:00
end
end
def band_invitation_update
begin
@invitation = BandInvitation . save ( params [ :invitation_id ] ,
nil ,
nil ,
nil ,
params [ :accepted ] )
respond_with @invitation , responder : ApiResponder , :status = > 200
2015-07-06 20:34:27 +00:00
2012-11-26 13:37:11 +00:00
rescue ActiveRecord :: RecordNotFound
2015-07-06 20:34:27 +00:00
render :json = > { :message = > ValidationMessages :: BAND_INVITATION_NOT_FOUND } , :status = > 404
2012-11-26 13:37:11 +00:00
end
end
2013-05-10 16:38:50 +00:00
###################### ACCOUNT SETTINGS #################
def begin_update_email
# begins email update by sending an email for the user to confirm their new email
# NOTE: if you change confirm_email_link value below, you break outstanding email changes because links in user inboxes are broken
confirm_email_link = confirm_email_url + " ?token= "
2013-05-14 22:33:19 +00:00
current_user . begin_update_email ( params [ :update_email ] , params [ :current_password ] , confirm_email_link )
2013-05-10 16:38:50 +00:00
if current_user . errors . any?
2013-05-16 00:55:25 +00:00
respond_with current_user , status : :unprocessable_entity
2013-05-10 16:38:50 +00:00
else
respond_with current_user , responder : ApiResponder , status : 200
end
end
def finalize_update_email
# used when the user goes to the confirmation link in their email
@user = User . finalize_update_email ( params [ :token ] )
sign_in ( @user )
respond_with current_user , responder : ApiResponder , status : 200
end
2013-06-08 22:52:05 +00:00
def isp_scoring
2013-10-16 16:20:37 +00:00
data = request . body . read
score = IspScoreBatch . new
score . json_scoring_data = data
if score . save
2013-06-08 22:52:05 +00:00
render :text = > 'scoring recorded'
2013-10-16 16:20:37 +00:00
else
render :text = > " score invalid: #{ score . errors . inspect } " , status : 422
2013-06-08 22:52:05 +00:00
end
end
2013-05-31 02:07:33 +00:00
################# AVATAR #####################
2013-05-23 13:53:37 +00:00
2013-05-31 02:07:33 +00:00
def update_avatar
original_fpfile = params [ :original_fpfile ]
cropped_fpfile = params [ :cropped_fpfile ]
2014-02-06 16:31:52 +00:00
cropped_large_fpfile = params [ :cropped_large_fpfile ]
2013-05-31 02:07:33 +00:00
crop_selection = params [ :crop_selection ]
# public bucket to allow images to be available to public
2014-02-06 16:31:52 +00:00
@user . update_avatar ( original_fpfile , cropped_fpfile , cropped_large_fpfile , crop_selection , Rails . application . config . aws_bucket_public )
2013-05-31 02:07:33 +00:00
if @user . errors . any?
respond_with @user , status : :unprocessable_entity
else
respond_with @user , responder : ApiResponder , status : 200
end
end
def delete_avatar
@user . delete_avatar ( Rails . application . config . aws_bucket_public )
if @user . errors . any?
respond_with @user , status : :unprocessable_entity
else
respond_with @user , responder : ApiResponder , status : 204
end
end
def generate_filepicker_policy
# generates a soon-expiring filepicker policy so that a user can only upload to their own folder in their bucket
handle = params [ :handle ]
2013-06-02 01:56:10 +00:00
call = 'pick,convert,store'
2013-05-31 02:07:33 +00:00
policy = { :expiry = > ( DateTime . now + 5 . minutes ) . to_i ( ) ,
:call = > call ,
#:path => 'avatars/' + @user.id + '/.*jpg'
}
# if the caller specifies a handle, add it to the hash
unless handle . nil?
start = handle . rindex ( '/' ) + 1
policy [ :handle ] = handle [ start .. - 1 ]
end
policy = Base64 . urlsafe_encode64 ( policy . to_json )
digest = OpenSSL :: Digest :: Digest . new ( 'sha256' )
signature = OpenSSL :: HMAC . hexdigest ( digest , Rails . application . config . fp_secret , policy )
render :json = > {
:signature = > signature ,
:policy = > policy
} , :status = > :ok
2013-05-23 13:53:37 +00:00
end
2013-08-01 02:06:21 +00:00
###################### CRASH DUMPS #######################
# This is very similar to api_music_sessions#perf_upload
# This should largely be moved into a library somewhere in jam-ruby.
def crash_dump
# example of using curl to access this API:
2015-09-22 01:01:39 +00:00
# curl -L -T some_file -X PUT http://localhost:3000/api/dumps?client_type=[MacOSX/Win32/JamBox]&client_version=[VERSION]&client_id=[CLIENT_ID]&session_id=[SESSION_ID]×tamp=[TIMESTAMP]
2013-08-01 15:29:33 +00:00
# user_id is deduced if possible from the user's cookie.
2013-08-06 15:25:49 +00:00
@dump = CrashDump . new
2013-08-01 02:06:21 +00:00
2015-07-06 20:34:27 +00:00
@dump . client_type = params [ :client_type ]
2013-08-06 15:25:49 +00:00
@dump . client_version = params [ :client_version ]
2013-08-01 02:06:21 +00:00
@dump . client_id = params [ :client_id ]
2015-09-22 01:01:39 +00:00
@dump . user_id = params [ :user_id ]
2015-07-06 20:34:27 +00:00
@dump . session_id = params [ :session_id ]
2013-08-01 15:29:33 +00:00
@dump . timestamp = params [ :timestamp ]
2013-08-01 02:06:21 +00:00
unless @dump . save
# There are at least some conditions on valid dumps (need client_type)
response . status = :unprocessable_entity
respond_with @dump
return
end
2015-07-06 20:34:27 +00:00
2013-08-01 02:06:21 +00:00
# This part is the piece that really needs to be decomposed into a library...
2014-02-13 16:41:50 +00:00
if Rails . application . config . storage_type == :fog
s3 = AWS :: S3 . new ( :access_key_id = > Rails . application . config . aws_access_key_id ,
:secret_access_key = > Rails . application . config . aws_secret_access_key )
bucket = s3 . buckets [ Rails . application . config . aws_bucket ]
2014-10-31 05:04:48 +00:00
uri = @dump . uri
expire = Time . now + 20 . years
2015-07-06 20:34:27 +00:00
read_url = bucket . objects [ uri ] . url_for ( :read ,
:expires = > expire ,
2014-10-31 05:04:48 +00:00
:'response_content_type' = > 'application/octet-stream' ) . to_s
2015-09-22 01:01:39 +00:00
#@dump.update_attribute(:uri, read_url)
2014-10-31 05:04:48 +00:00
2015-07-06 20:34:27 +00:00
write_url = bucket . objects [ uri ] . url_for ( :write ,
:expires = > Rails . application . config . crash_dump_data_signed_url_timeout ,
2014-10-31 05:04:48 +00:00
:'response_content_type' = > 'application/octet-stream' ) . to_s
2015-07-06 20:34:27 +00:00
2014-10-31 05:04:48 +00:00
logger . debug ( " crash_dump can read from url #{ read_url } " )
2013-08-01 02:06:21 +00:00
2014-10-31 05:04:48 +00:00
redirect_to write_url
2013-08-01 02:06:21 +00:00
else
# we should store it here to aid in development, but we don't have to until someone wants the feature
# so... just return 200
render :json = > { :id = > @dump . id } , :status = > 200
end
end
2013-09-30 02:37:22 +00:00
# user progression tracking
def downloaded_client
@user = current_user
@user . update_progression_field ( :first_downloaded_client_at )
if @user . errors . any?
respond_with @user , :status = > :unprocessable_entity
return
end
render :json = > { } , :status = > 200
end
# user progression tracking
def qualified_gear
@user = current_user
if params [ :success ]
@user . update_progression_field ( :first_certified_gear_at )
2014-06-09 20:43:16 +00:00
connection = Connection . find_by_client_id ( params [ :client_id ] )
# update last_jam location information
2014-07-22 19:36:45 +00:00
@user . update_addr_loc ( connection , User :: JAM_REASON_FTUE ) if connection
2014-06-09 20:43:16 +00:00
if ! @user . errors . any?
# update audio gear latency information
2014-07-30 20:11:03 +00:00
@user . update_audio_latency ( connection , params [ :audio_latency ] ) if params [ :audio_latency ]
2014-06-09 20:43:16 +00:00
end
2013-09-30 02:37:22 +00:00
else
@user . failed_qualification ( params [ :reason ] )
end
if @user . errors . any?
respond_with @user , :status = > :unprocessable_entity
return
end
render :json = > { } , :status = > 200
end
# user progression tracking
def social_promoted
@user = current_user
@user . update_progression_field ( :first_social_promoted_at )
if @user . errors . any?
respond_with @user , :status = > :unprocessable_entity
return
end
render :json = > { } , :status = > 200
end
2014-02-06 16:31:52 +00:00
# creates display-ready session data for sharing
def share_session
provider = params [ :provider ]
music_session_id = params [ :music_session ]
2014-05-06 13:34:38 +00:00
history = MusicSession . find ( music_session_id )
2014-02-06 16:31:52 +00:00
if provider == 'facebook'
render json : {
2014-05-06 13:34:38 +00:00
description : view_context . description_for_music_session ( history ) ,
title : view_context . title_for_music_session ( history , current_user ) ,
photo_url : view_context . facebook_image_for_music_session ( history ) ,
2014-03-10 16:24:36 +00:00
url : share_token_url ( history . share_token . token ) ,
2014-02-06 16:31:52 +00:00
caption : 'www.jamkazam.com'
} , status : 200
2014-02-07 14:07:08 +00:00
elsif provider == 'twitter'
render json : {
2014-05-06 13:34:38 +00:00
message : view_context . title_for_music_session ( history , current_user )
2014-02-07 14:07:08 +00:00
} , status : 200
2014-02-06 16:31:52 +00:00
else
render :json = > { :errors = > { :provider = > [ 'not valid' ] } } , :status = > 422
end
end
# creates display-ready recording data for sharing
def share_recording
provider = params [ :provider ]
claimed_recording_id = params [ :claimed_recording ]
claimed_recording = ClaimedRecording . find ( claimed_recording_id )
if provider == 'facebook'
render json : {
2014-02-07 14:07:08 +00:00
description : view_context . description_for_claimed_recording ( claimed_recording ) ,
title : view_context . title_for_claimed_recording ( claimed_recording , current_user ) ,
2014-02-06 16:31:52 +00:00
photo_url : view_context . facebook_image_for_claimed_recording ( claimed_recording ) ,
2014-03-10 16:24:36 +00:00
url : share_token_url ( claimed_recording . share_token . token ) ,
2014-02-06 16:31:52 +00:00
caption : 'www.jamkazam.com'
} , status : 200
2014-02-07 14:07:08 +00:00
elsif provider == 'twitter'
render json : {
message : view_context . title_for_claimed_recording ( history , current_user ) + " at " + request . host_with_port
} , status : 200
2014-02-06 16:31:52 +00:00
else
render :json = > { :errors = > { :provider = > [ 'not valid' ] } } , :status = > 422
end
2014-03-07 06:46:07 +00:00
end
2015-06-03 19:22:21 +00:00
def affiliate_partner
if oo = current_user . affiliate_partner
if request . post?
oo . address = params [ :address ]
oo . tax_identifier = params [ :tax_identifier ]
oo . save!
render nothing : true
elsif request . get?
result = { }
result [ 'account' ] = {
'address' = > oo . address . clone ,
'tax_identifier' = > oo . tax_identifier ,
'entity_type' = > oo . entity_type ,
'partner_name' = > oo . partner_name ,
'partner_id' = > oo . partner_user_id ,
'id' = > oo . id
}
if txt = oo . affiliate_legalese . try ( :legalese )
txt = ControllerHelp . instance . simple_format ( txt )
end
2015-07-06 20:34:27 +00:00
result [ 'agreement' ] = {
'legalese' = > txt ,
'signed_at' = > oo . signed_at
2015-06-03 19:22:21 +00:00
}
#result['signups'] = oo.referrals_by_date
#result['earnings'] = [['April 2015', '1000 units', '$100']]
render json : result . to_json , status : 200
end
else
render :json = > { :message = > 'user not affiliate partner' } , :status = > 400
end
end
2014-04-23 06:38:49 +00:00
def affiliate_report
begin
affiliate = User
. where ( :id = > params [ :id ] )
. includes ( :affiliate_partner )
. limit ( 1 )
. first
. affiliate_partner
referrals_by_date = affiliate . referrals_by_date do | by_date |
by_date . inject ( [ ] ) { | rr , key | rr << key }
end
result = {
:total_count = > affiliate . referral_user_count ,
:by_date = > referrals_by_date
}
render json : result . to_json , status : 200
rescue
render :json = > { :message = > $! . to_s } , :status = > 400
end
end
2014-03-07 06:46:07 +00:00
def add_play
if params [ :id ] . blank?
render :json = > { :message = > " Playable ID is required " } , :status = > 400
return
end
play = PlayablePlay . new
play . playable_id = params [ :id ]
2014-03-07 09:05:34 +00:00
play . playable_type = params [ :playable_type ]
2014-03-07 06:46:07 +00:00
play . player_id = params [ :user_id ]
play . claimed_recording_id = params [ :claimed_recording_id ]
play . ip_address = request . remote_ip
play . save
if play . errors . any?
2015-08-09 18:37:43 +00:00
render :json = > { :errors = > play . errors } , :status = > 422
2014-03-07 06:46:07 +00:00
else
render :json = > { } , :status = > 201
2014-06-09 20:43:16 +00:00
end
end
# updates audio latency on the user, and associated connection
def audio_latency
Connection . transaction do
@user . update_audio_latency ( Connection . find_by_client_id ( params [ :client_id ] ) , params [ :audio_latency ] )
respond_with_model ( @user )
2014-03-07 06:46:07 +00:00
end
2014-09-13 03:30:51 +00:00
end
def udp_reachable
Connection . transaction do
2014-09-22 19:20:58 +00:00
@connection = Connection . find_by_client_id! ( params [ :client_id ] )
2014-10-06 21:44:30 +00:00
# deliberately don't updated_at on connection! only heartbeats do that
Connection . where ( :id = > @connection . id ) . update_all ( :udp_reachable = > params [ :udp_reachable ] )
respond_with_model ( @connection )
end
end
def is_network_testing
Connection . transaction do
@connection = Connection . find_by_client_id! ( params [ :client_id ] )
# deliberately don't updated_at on connection! only heartbeats do that
Connection . where ( :id = > @connection . id ) . update_all ( :is_network_testing = > params [ :is_network_testing ] )
2014-09-13 03:30:51 +00:00
respond_with_model ( @connection )
end
2014-02-06 16:31:52 +00:00
end
2015-01-31 08:41:56 +00:00
def validate_data
2015-02-04 06:22:11 +00:00
unless ( data = params [ :data ] ) . present?
render ( json : { message : " blank data #{ data } " } , status : :unprocessable_entity ) && return
end
url = nil
2015-02-04 07:32:07 +00:00
site = params [ :sitetype ]
if site . blank? || 'url' == site
2015-02-04 06:22:11 +00:00
url = data
2015-02-12 08:16:54 +00:00
elsif Utils . recording_source? ( site )
2015-04-04 06:31:12 +00:00
rec_data = Utils . extract_recording_data ( site , data )
if rec_data
render json : { message : 'Valid Site' , recording_id : rec_data [ " id " ] , recording_title : rec_data [ " title " ] , data : data } , status : 200
2015-02-12 08:16:54 +00:00
return
else
2015-02-15 23:10:29 +00:00
render json : { message : 'Invalid Site' , data : data , errors : { site : [ " Could not detect recording identifier " ] } } , status : 200
2015-02-12 08:16:54 +00:00
return
end
2015-02-04 06:22:11 +00:00
else
url = Utils . username_url ( data , site )
end
unless url . blank?
2015-02-08 06:10:31 +00:00
if errmsg = Utils . site_validator ( url , site )
2015-02-15 23:10:29 +00:00
render json : { message : 'Invalid Site' , data : data , errors : { site : [ errmsg ] } } , status : 200
2015-01-31 08:41:56 +00:00
else
2015-02-15 23:10:29 +00:00
render json : { message : 'Valid Site' , data : data } , status : 200
2015-01-31 08:41:56 +00:00
end
2015-07-06 20:34:27 +00:00
else
2015-02-04 06:22:11 +00:00
render json : { message : " unknown validation for data ' #{ params [ :data ] } ', site ' #{ params [ :site ] } ' " } , status : :unprocessable_entity
2015-01-31 08:41:56 +00:00
end
end
2015-06-10 13:26:45 +00:00
def broadcast_notification
@broadcast = BroadcastNotification . next_broadcast ( current_user )
if @broadcast
# mark it as viewed
@broadcast . did_view ( current_user )
respond_with_model ( @broadcast )
else
render json : { message : 'Not Found' } , status : 404
end
end
# used to hide a broadcast notification from rotation temporarily
def quiet_broadcast_notification
@broadcast = BroadcastNotificationView . find_by_broadcast_notification_id_and_user_id ( params [ :broadcast_id ] , current_user . id )
if @broadcast
@broadcast . active_at = Date . today + 14 # 14 days in the future we'll re-instas
@broadcast . save
end
render json : { } , status : 200
end
2015-07-06 20:34:27 +00:00
def lookup_user
User . includes ( [ { musician_instruments : :instrument } ,
{ band_musicians : :user } ,
{ genre_players : :genre } ,
:bands , :instruments , :genres , :jam_track_rights , :affiliate_partner ] )
. find ( params [ :id ] )
end
2012-12-17 06:02:09 +00:00
###################### RECORDINGS #######################
2013-02-16 21:19:08 +00:00
# def recording_index
# @recordings = User.recording_index(current_user, params[:id])
# respond_with @recordings, responder: ApiResponder, :status => 200
# end
# def recording_show
# hide_private = false
# # hide private recordings from anyone but the current user
# if current_user.id != params[:id]
# hide_private = true
# end
# @recording = Recording.find(params[:recording_id])
# if !@recording.public && hide_private
# render :json => { :message => "You are not allowed to access this recording." }, :status => 403
# #respond_with "You are not allowed to access this recording.", responder: ApiResponder, :status => 403
# else
# respond_with @recording, responder: ApiResponder, :status => 200
# end
# end
# def recording_create
# @recording = Recording.save(params[:recording_id],
# params[:public],
# params[:description],
# params[:genres],
# current_user.id,
# params[:id],
# false)
# @user = current_user
# respond_with @recording, responder: ApiResponder, :status => 201, :location => api_recording_detail_url(@user, @recording)
# end
# def recording_update
# @recording = Recording.save(params[:recording_id],
# params[:public],
# params[:description],
# params[:genres],
# current_user.id,
# params[:id],
# false)
# respond_with @recording, responder: ApiResponder, :status => 200
# end
# def recording_destroy
# @recording = Recording.find(params[:recording_id])
# @recording.delete
# respond_with responder: ApiResponder, :status => 204
2015-07-06 20:34:27 +00:00
# end
2012-12-22 00:56:49 +00:00
end
