mirrors
/
redmine
mirror of https://github.com/redmine/redmine.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 199 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
18167 Commits
33 Branches
Tree: 38d950df55
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '38d950df55'
${ noResults }
redmine/app/controllers/my_controller.rb

my_controller.rb 5.4KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200 
  1. # frozen_string_literal: true

  2. 

  3. # Redmine - project management software

  4. # Copyright (C) 2006-  Jean-Philippe Lang

  5. #

  6. # This program is free software; you can redistribute it and/or

  7. # modify it under the terms of the GNU General Public License

  8. # as published by the Free Software Foundation; either version 2

  9. # of the License, or (at your option) any later version.

  10. #

  11. # This program is distributed in the hope that it will be useful,

  12. # but WITHOUT ANY WARRANTY; without even the implied warranty of

  13. # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

  14. # GNU General Public License for more details.

  15. #

  16. # You should have received a copy of the GNU General Public License

  17. # along with this program; if not, write to the Free Software

  18. # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19. 

  20. class MyController < ApplicationController

  21.   self.main_menu = false

  22.   before_action :require_login

  23.   # let user change user's password when user has to

  24.   skip_before_action :check_password_change, :check_twofa_activation, :only => :password

  25. 

  26.   accept_api_auth :account

  27. 

  28.   require_sudo_mode :account, only: :put

  29.   require_sudo_mode :reset_atom_key, :reset_api_key, :show_api_key, :destroy

  30. 

  31.   helper :issues

  32.   helper :users

  33.   helper :custom_fields

  34.   helper :queries

  35.   helper :activities

  36. 

  37.   def index

  38.     page

  39.     render :action => 'page'

  40.   end

  41. 

  42.   # Show user's page

  43.   def page

  44.     @user = User.current

  45.     @groups = @user.pref.my_page_groups

  46.     @blocks = @user.pref.my_page_layout

  47.   end

  48. 

  49.   # Edit user's account

  50.   def account

  51.     @user = User.current

  52.     @pref = @user.pref

  53.     if request.put?

  54.       @user.safe_attributes = params[:user]

  55.       @user.pref.safe_attributes = params[:pref]

  56.       if @user.save

  57.         @user.pref.save

  58.         respond_to do |format|

  59.           format.html do

  60.             flash[:notice] = l(:notice_account_updated)

  61.             redirect_to my_account_path

  62.           end

  63.           format.api  {render_api_ok}

  64.         end

  65.         return

  66.       else

  67.         respond_to do |format|

  68.           format.html {render :action => :account}

  69.           format.api  {render_validation_errors(@user)}

  70.         end

  71.       end

  72.     end

  73.   end

  74. 

  75.   # Destroys user's account

  76.   def destroy

  77.     @user = User.current

  78.     unless @user.own_account_deletable?

  79.       redirect_to my_account_path

  80.       return

  81.     end

  82. 

  83.     if request.post? && params[:confirm]

  84.       @user.destroy

  85.       if @user.destroyed?

  86.         logout_user

  87.         flash[:notice] = l(:notice_account_deleted)

  88.       end

  89.       redirect_to home_path

  90.     end

  91.   end

  92. 

  93.   # Manage user's password

  94.   def password

  95.     @user = User.current

  96.     unless @user.change_password_allowed?

  97.       flash[:error] = l(:notice_can_t_change_password)

  98.       redirect_to my_account_path

  99.       return

  100.     end

  101.     if request.post?

  102.       if !@user.check_password?(params[:password])

  103.         flash.now[:error] = l(:notice_account_wrong_password)

  104.       elsif params[:password] == params[:new_password]

  105.         flash.now[:error] = l(:notice_new_password_must_be_different)

  106.       else

  107.         @user.password, @user.password_confirmation = params[:new_password], params[:new_password_confirmation]

  108.         @user.must_change_passwd = false

  109.         if @user.save

  110.           # The session token was destroyed by the password change, generate a new one

  111.           session[:tk] = @user.generate_session_token

  112.           Mailer.deliver_password_updated(@user, User.current)

  113.           flash[:notice] = l(:notice_account_password_updated)

  114.           redirect_to my_account_path

  115.         end

  116.       end

  117.     end

  118.   end

  119. 

  120.   # Create a new feeds key

  121.   def reset_atom_key

  122.     if request.post?

  123.       if User.current.atom_token

  124.         User.current.atom_token.destroy

  125.         User.current.reload

  126.       end

  127.       User.current.atom_key

  128.       flash[:notice] = l(:notice_feeds_access_key_reseted)

  129.     end

  130.     redirect_to my_account_path

  131.   end

  132. 

  133.   def show_api_key

  134.     @user = User.current

  135.   end

  136. 

  137.   # Create a new API key

  138.   def reset_api_key

  139.     if request.post?

  140.       if User.current.api_token

  141.         User.current.api_token.destroy

  142.         User.current.reload

  143.       end

  144.       User.current.api_key

  145.       flash[:notice] = l(:notice_api_access_key_reseted)

  146.     end

  147.     redirect_to my_account_path

  148.   end

  149. 

  150.   def update_page

  151.     @user = User.current

  152.     block_settings = params[:settings] || {}

  153. 

  154.     block_settings.each do |block, settings|

  155.       @user.pref.update_block_settings(block, settings.to_unsafe_hash)

  156.     end

  157.     @user.pref.save

  158.     @updated_blocks = block_settings.keys

  159.   end

  160. 

  161.   # Add a block to user's page

  162.   # The block is added on top of the page

  163.   # params[:block] : id of the block to add

  164.   def add_block

  165.     @user = User.current

  166.     @block = params[:block]

  167.     if @user.pref.add_block @block

  168.       @user.pref.save

  169.       respond_to do |format|

  170.         format.html {redirect_to my_page_path}

  171.         format.js

  172.       end

  173.     else

  174.       render_error :status => 422

  175.     end

  176.   end

  177. 

  178.   # Remove a block to user's page

  179.   # params[:block] : id of the block to remove

  180.   def remove_block

  181.     @user = User.current

  182.     @block = params[:block]

  183.     @user.pref.remove_block @block

  184.     @user.pref.save

  185.     respond_to do |format|

  186.       format.html {redirect_to my_page_path}

  187.       format.js

  188.     end

  189.   end

  190. 

  191.   # Change blocks order on user's page

  192.   # params[:group] : group to order (top, left or right)

  193.   # params[:blocks] : array of block ids of the group

  194.   def order_blocks

  195.     @user = User.current

  196.     @user.pref.order_blocks params[:group], params[:blocks]

  197.     @user.pref.save

  198.     head 200

  199.   end

  200. end