index : vaadin-framework.git	7.0 7.1 7.2 7.3 7.4 7.5 7.6 7.7 8.0 8.1 8.10 8.11 8.12 8.13 8.14 8.2 8.3 8.4 8.5 8.6 8.7 8.8 8.9 JS-RPC-docs-link-syntax OlliTietavainenVaadin-patch-1 OlliTietavainenVaadin-patch-2 add-deprecation-warning-20241105 changelog-8.27.1 changelog-8.27.2 changelog-8.27.3 changelog-8.27.4 chore-mention-8.14.4 chore-readme-8-14-4 context-menu datefield-set-invalid-value declarative dependabot/maven/org.eclipse.jetty-jetty-server-10.0.14 dependabot/maven/org.eclipse.jetty-jetty-webapp-9.4.44.v20210927 dependabot/maven/org.eclipse.jgit-org.eclipse.jgit-3.5.3.201412180710-r dependabot/maven/org.hsqldb-hsqldb-2.7.1 documentation documentation-7.6 downgrade-snapshot-version-20241105 exclude-element-screenshot feature/atmosphere-pure-javascript feature/bootstrap-annotation feature/combobox-communication feature/dalvik feature/databinding feature/dnd feature/elements feature/eventbus feature/karaf-feature-file feature/nullrepresentation feature/standard-gwt feature/standard-sass feature/vaadin8 feature/vaadin8-book feature/vaadin8-book-vol2 feature/vaadin8-sass-valo-only fix11576 fix_event_router_prototype grid grid_dnd_autoscroller grid_dragger issue/8307_select_using_collection master mobile_drag_image_offset pr/11306 remote-run/flow-atmosphere-test snapshot/7.5 snapshot/7.6 tmattsso-patch-1 update-minor-deps vaadin-icons-3.0.1 wip-date-time-datatype wip-java-10-compat
	Vaadin 6, 7, 8 is a Java framework for modern Java web applications: https://github.com/vaadin/framework	www-data

aboutsummaryrefslogtreecommitdiffstats

log msg author committer range

path: root/.gitmodules

	Commit message (Expand)	Author	Age	Files	Lines
*	Remove vaadin-screenshots submodule (#10956)	Teemu Suo-Anttila	2018-06-04	1	-4/+0
*	Add screenshot submodule to master branch (#88)	Teemu Suo-Anttila	2016-12-05	1	-0/+4

generated by cgit v1.2.3 (git 2.39.1) at 2025-01-11 09:10:35 +0000

# frozen_string_literal: true

# Redmine - project management software
# Copyright (C) 2006-2021  Jean-Philippe Lang
#
# This program is free software; you can redistribute it and/or
# modify it under the terms of the GNU General Public License
# as published by the Free Software Foundation; either version 2
# of the License, or (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

class MyController < ApplicationController
  self.main_menu = false
  before_action :require_login
  # let user change user's password when user has to
  skip_before_action :check_password_change, :check_twofa_activation, :only => :password

  accept_api_auth :account

  require_sudo_mode :account, only: :put
  require_sudo_mode :reset_rss_key, :reset_api_key, :show_api_key, :destroy

  helper :issues
  helper :users
  helper :custom_fields
  helper :queries
  helper :activities
  helper :calendars

  def index
    page
    render :action => 'page'
  end

  # Show user's page
  def page
    @user = User.current
    @groups = @user.pref.my_page_groups
    @blocks = @user.pref.my_page_layout
  end

  # Edit user's account
  def account
    @user = User.current
    @pref = @user.pref
    if request.put?
      @user.safe_attributes = params[:user]
      @user.pref.safe_attributes = params[:pref]
      if @user.save
        @user.pref.save
        set_language_if_valid @user.language
        respond_to do |format|
          format.html do
            flash[:notice] = l(:notice_account_updated)
            redirect_to my_account_path
          end
          format.api  {render_api_ok}
        end
        return
      else
        respond_to do |format|
          format.html {render :action => :account}
          format.api  {render_validation_errors(@user)}
        end
      end
    end
  end

  # Destroys user's account
  def destroy
    @user = User.current
    unless @user.own_account_deletable?
      redirect_to my_account_path
      return
    end

    if request.post? && params[:confirm]
      @user.destroy
      if @user.destroyed?
        logout_user
        flash[:notice] = l(:notice_account_deleted)
      end
      redirect_to home_path
    end
  end

  # Manage user's password
  def password
    @user = User.current
    unless @user.change_password_allowed?
      flash[:error] = l(:notice_can_t_change_password)
      redirect_to my_account_path
      return
    end
    if request.post?
      if !@user.check_password?(params[:password])
        flash.now[:error] = l(:notice_account_wrong_password)
      elsif params[:password] == params[:new_password]
        flash.now[:error] = l(:notice_new_password_must_be_different)
      else
        @user.password, @user.password_confirmation = params[:new_password], params[:new_password_confirmation]
        @user.must_change_passwd = false
        if @user.save
          # The session token was destroyed by the password change, generate a new one
          session[:tk] = @user.generate_session_token
          Mailer.deliver_password_updated(@user, User.current)
          flash[:notice] = l(:notice_account_password_updated)
          redirect_to my_account_path
        end
      end
    end
  end

  # Create a new feeds key
  def reset_rss_key
    if request.post?
      if User.current.rss_token
        User.current.rss_token.destroy
        User.current.reload
      end
      User.current.rss_key
      flash[:notice] = l(:notice_feeds_access_key_reseted)
    end
    redirect_to my_account_path
  end

  def show_api_key
    @user = User.current
  end

  # Create a new API key
  def reset_api_key
    if request.post?
      if User.current.api_token
        User.current.api_token.destroy
        User.current.reload
      end
      User.current.api_key
      flash[:notice] = l(:notice_api_access_key_reseted)
    end
    redirect_to my_account_path
  end

  def update_page
    @user = User.current
    block_settings = params[:settings] || {}

    block_settings.each do |block, settings|
      @user.pref.update_block_settings(block, settings.to_unsafe_hash)
    end
    @user.pref.save
    @updated_blocks = block_settings.keys
  end

  # Add a block to user's page
  # The block is added on top of the page
  # params[:block] : id of the block to add
  def add_block
    @user = User.current
    @block = params[:block]
    if @user.pref.add_block @block
      @user.pref.save
      respond_to do |format|
        format.html {redirect_to my_page_path}
        format.js
      end
    else
      render_error :status => 422
    end
  end

  # Remove a block to user's page
  # params[:block] : id of the block to remove
  def remove_block
    @user = User.current
    @block = params[:block]
    @user.pref.remove_block @block
    @user.pref.save
    respond_to do |format|
      format.html {redirect_to my_page_path}
      format.js
    end
  end

  # Change blocks order on user's page
  # params[:group] : group to order (top, left or right)
  # params[:blocks] : array of block ids of the group
  def order_blocks
    @user = User.current
    @user.pref.order_blocks params[:group], params[:blocks]
    @user.pref.save
    head 200
  end
end