mirrors
/
redmine
mirror of https://github.com/redmine/redmine.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 199 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
16776 Commits
33 Branches
Tree: 3e36b5c452
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '3e36b5c452'
${ noResults }
redmine/app/controllers/my_controller.rb

my_controller.rb 5.4KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202 
  1. # frozen_string_literal: true

  2. 

  3. # Redmine - project management software

  4. # Copyright (C) 2006-2021  Jean-Philippe Lang

  5. #

  6. # This program is free software; you can redistribute it and/or

  7. # modify it under the terms of the GNU General Public License

  8. # as published by the Free Software Foundation; either version 2

  9. # of the License, or (at your option) any later version.

  10. #

  11. # This program is distributed in the hope that it will be useful,

  12. # but WITHOUT ANY WARRANTY; without even the implied warranty of

  13. # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

  14. # GNU General Public License for more details.

  15. #

  16. # You should have received a copy of the GNU General Public License

  17. # along with this program; if not, write to the Free Software

  18. # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19. 

  20. class MyController < ApplicationController

  21.   self.main_menu = false

  22.   before_action :require_login

  23.   # let user change user's password when user has to

  24.   skip_before_action :check_password_change, :check_twofa_activation, :only => :password

  25. 

  26.   accept_api_auth :account

  27. 

  28.   require_sudo_mode :account, only: :put

  29.   require_sudo_mode :reset_rss_key, :reset_api_key, :show_api_key, :destroy

  30. 

  31.   helper :issues

  32.   helper :users

  33.   helper :custom_fields

  34.   helper :queries

  35.   helper :activities

  36.   helper :calendars

  37. 

  38.   def index

  39.     page

  40.     render :action => 'page'

  41.   end

  42. 

  43.   # Show user's page

  44.   def page

  45.     @user = User.current

  46.     @groups = @user.pref.my_page_groups

  47.     @blocks = @user.pref.my_page_layout

  48.   end

  49. 

  50.   # Edit user's account

  51.   def account

  52.     @user = User.current

  53.     @pref = @user.pref

  54.     if request.put?

  55.       @user.safe_attributes = params[:user]

  56.       @user.pref.safe_attributes = params[:pref]

  57.       if @user.save

  58.         @user.pref.save

  59.         set_language_if_valid @user.language

  60.         respond_to do |format|

  61.           format.html do

  62.             flash[:notice] = l(:notice_account_updated)

  63.             redirect_to my_account_path

  64.           end

  65.           format.api  {render_api_ok}

  66.         end

  67.         return

  68.       else

  69.         respond_to do |format|

  70.           format.html {render :action => :account}

  71.           format.api  {render_validation_errors(@user)}

  72.         end

  73.       end

  74.     end

  75.   end

  76. 

  77.   # Destroys user's account

  78.   def destroy

  79.     @user = User.current

  80.     unless @user.own_account_deletable?

  81.       redirect_to my_account_path

  82.       return

  83.     end

  84. 

  85.     if request.post? && params[:confirm]

  86.       @user.destroy

  87.       if @user.destroyed?

  88.         logout_user

  89.         flash[:notice] = l(:notice_account_deleted)

  90.       end

  91.       redirect_to home_path

  92.     end

  93.   end

  94. 

  95.   # Manage user's password

  96.   def password

  97.     @user = User.current

  98.     unless @user.change_password_allowed?

  99.       flash[:error] = l(:notice_can_t_change_password)

  100.       redirect_to my_account_path

  101.       return

  102.     end

  103.     if request.post?

  104.       if !@user.check_password?(params[:password])

  105.         flash.now[:error] = l(:notice_account_wrong_password)

  106.       elsif params[:password] == params[:new_password]

  107.         flash.now[:error] = l(:notice_new_password_must_be_different)

  108.       else

  109.         @user.password, @user.password_confirmation = params[:new_password], params[:new_password_confirmation]

  110.         @user.must_change_passwd = false

  111.         if @user.save

  112.           # The session token was destroyed by the password change, generate a new one

  113.           session[:tk] = @user.generate_session_token

  114.           Mailer.deliver_password_updated(@user, User.current)

  115.           flash[:notice] = l(:notice_account_password_updated)

  116.           redirect_to my_account_path

  117.         end

  118.       end

  119.     end

  120.   end

  121. 

  122.   # Create a new feeds key

  123.   def reset_rss_key

  124.     if request.post?

  125.       if User.current.rss_token

  126.         User.current.rss_token.destroy

  127.         User.current.reload

  128.       end

  129.       User.current.rss_key

  130.       flash[:notice] = l(:notice_feeds_access_key_reseted)

  131.     end

  132.     redirect_to my_account_path

  133.   end

  134. 

  135.   def show_api_key

  136.     @user = User.current

  137.   end

  138. 

  139.   # Create a new API key

  140.   def reset_api_key

  141.     if request.post?

  142.       if User.current.api_token

  143.         User.current.api_token.destroy

  144.         User.current.reload

  145.       end

  146.       User.current.api_key

  147.       flash[:notice] = l(:notice_api_access_key_reseted)

  148.     end

  149.     redirect_to my_account_path

  150.   end

  151. 

  152.   def update_page

  153.     @user = User.current

  154.     block_settings = params[:settings] || {}

  155. 

  156.     block_settings.each do |block, settings|

  157.       @user.pref.update_block_settings(block, settings.to_unsafe_hash)

  158.     end

  159.     @user.pref.save

  160.     @updated_blocks = block_settings.keys

  161.   end

  162. 

  163.   # Add a block to user's page

  164.   # The block is added on top of the page

  165.   # params[:block] : id of the block to add

  166.   def add_block

  167.     @user = User.current

  168.     @block = params[:block]

  169.     if @user.pref.add_block @block

  170.       @user.pref.save

  171.       respond_to do |format|

  172.         format.html {redirect_to my_page_path}

  173.         format.js

  174.       end

  175.     else

  176.       render_error :status => 422

  177.     end

  178.   end

  179. 

  180.   # Remove a block to user's page

  181.   # params[:block] : id of the block to remove

  182.   def remove_block

  183.     @user = User.current

  184.     @block = params[:block]

  185.     @user.pref.remove_block @block

  186.     @user.pref.save

  187.     respond_to do |format|

  188.       format.html {redirect_to my_page_path}

  189.       format.js

  190.     end

  191.   end

  192. 

  193.   # Change blocks order on user's page

  194.   # params[:group] : group to order (top, left or right)

  195.   # params[:blocks] : array of block ids of the group

  196.   def order_blocks

  197.     @user = User.current

  198.     @user.pref.order_blocks params[:group], params[:blocks]

  199.     @user.pref.save

  200.     head 200

  201.   end

  202. end