123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186 |
- # Redmine - project management software
- # Copyright (C) 2006-2016 Jean-Philippe Lang
- #
- # This program is free software; you can redistribute it and/or
- # modify it under the terms of the GNU General Public License
- # as published by the Free Software Foundation; either version 2
- # of the License, or (at your option) any later version.
- #
- # This program is distributed in the hope that it will be useful,
- # but WITHOUT ANY WARRANTY; without even the implied warranty of
- # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
- # GNU General Public License for more details.
- #
- # You should have received a copy of the GNU General Public License
- # along with this program; if not, write to the Free Software
- # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
-
- class MyController < ApplicationController
- self.main_menu = false
- before_action :require_login
- # let user change user's password when user has to
- skip_before_action :check_password_change, :only => :password
-
- require_sudo_mode :account, only: :post
- require_sudo_mode :reset_rss_key, :reset_api_key, :show_api_key, :destroy
-
- helper :issues
- helper :users
- helper :custom_fields
-
- def index
- page
- render :action => 'page'
- end
-
- # Show user's page
- def page
- @user = User.current
- @blocks = @user.pref.my_page_layout
- end
-
- # Edit user's account
- def account
- @user = User.current
- @pref = @user.pref
- if request.post?
- @user.safe_attributes = params[:user]
- @user.pref.safe_attributes = params[:pref]
- if @user.save
- @user.pref.save
- set_language_if_valid @user.language
- flash[:notice] = l(:notice_account_updated)
- redirect_to my_account_path
- return
- end
- end
- end
-
- # Destroys user's account
- def destroy
- @user = User.current
- unless @user.own_account_deletable?
- redirect_to my_account_path
- return
- end
-
- if request.post? && params[:confirm]
- @user.destroy
- if @user.destroyed?
- logout_user
- flash[:notice] = l(:notice_account_deleted)
- end
- redirect_to home_path
- end
- end
-
- # Manage user's password
- def password
- @user = User.current
- unless @user.change_password_allowed?
- flash[:error] = l(:notice_can_t_change_password)
- redirect_to my_account_path
- return
- end
- if request.post?
- if !@user.check_password?(params[:password])
- flash.now[:error] = l(:notice_account_wrong_password)
- elsif params[:password] == params[:new_password]
- flash.now[:error] = l(:notice_new_password_must_be_different)
- else
- @user.password, @user.password_confirmation = params[:new_password], params[:new_password_confirmation]
- @user.must_change_passwd = false
- if @user.save
- # The session token was destroyed by the password change, generate a new one
- session[:tk] = @user.generate_session_token
- Mailer.password_updated(@user)
- flash[:notice] = l(:notice_account_password_updated)
- redirect_to my_account_path
- end
- end
- end
- end
-
- # Create a new feeds key
- def reset_rss_key
- if request.post?
- if User.current.rss_token
- User.current.rss_token.destroy
- User.current.reload
- end
- User.current.rss_key
- flash[:notice] = l(:notice_feeds_access_key_reseted)
- end
- redirect_to my_account_path
- end
-
- def show_api_key
- @user = User.current
- end
-
- # Create a new API key
- def reset_api_key
- if request.post?
- if User.current.api_token
- User.current.api_token.destroy
- User.current.reload
- end
- User.current.api_key
- flash[:notice] = l(:notice_api_access_key_reseted)
- end
- redirect_to my_account_path
- end
-
- def update_page
- @user = User.current
- block_settings = params[:settings] || {}
-
- block_settings.each do |block, settings|
- @user.pref.update_block_settings(block, settings)
- end
- @user.pref.save
- @updated_blocks = block_settings.keys
- end
-
- # User's page layout configuration
- def page_layout
- @user = User.current
- @blocks = @user.pref.my_page_layout
- end
-
- # Add a block to user's page
- # The block is added on top of the page
- # params[:block] : id of the block to add
- def add_block
- @user = User.current
- @user.pref.add_block params[:block]
- @user.pref.save
- redirect_to my_page_layout_path
- end
-
- # Remove a block to user's page
- # params[:block] : id of the block to remove
- def remove_block
- @user = User.current
- @user.pref.remove_block params[:block]
- @user.pref.save
- redirect_to my_page_layout_path
- end
-
- # Change blocks order on user's page
- # params[:group] : group to order (top, left or right)
- # params[:blocks] : array of block ids of the group
- def order_blocks
- group = params[:group]
- @user = User.current
- if group.is_a?(String)
- group_items = (params["blocks"] || []).collect(&:underscore)
- group_items.each {|s| s.sub!(/^block_/, '')}
- # remove group blocks if they are presents in other groups
- group_items.each {|s| @user.pref.remove_block(s)}
- @user.pref.my_page_layout[group] = group_items
- @user.pref.save
- end
- head 200
- end
- end
|