discourse/app/controllers/user_badges_controller.rb

109 lines
3.2 KiB
Ruby
Raw Normal View History

2014-03-05 07:52:20 -05:00
class UserBadgesController < ApplicationController
def index
params.permit [:granted_before, :offset]
badge = fetch_badge_from_params
user_badges = filter_user_badges(badge.user_badges)
user_badges = user_badges.includes(:user, :granted_by, badge: :badge_type, post: :topic)
user_badges = user_badges.order(granted_at: :desc, id: :desc).limit(96)
if offset = params[:offset]
user_badges = user_badges.offset(offset.to_i)
2014-04-16 10:56:11 -04:00
end
render_serialized(user_badges, UserBadgeSerializer, root: "user_badges", include_long_description: true)
end
def username
params.permit [:grouped]
user = fetch_user_from_params
user_badges = filter_user_badges(user.user_badges)
user_badges = user_badges.includes(badge: [:badge_grouping, :badge_type])
.includes(post: :topic)
.includes(:granted_by)
2014-06-09 21:23:18 -04:00
if params[:grouped]
user_badges = user_badges.group(:badge_id)
.select(UserBadge.attribute_names.map {|x| "MAX(#{x}) as #{x}" }, 'COUNT(*) as count')
2014-05-21 03:22:42 -04:00
end
render_serialized(user_badges, DetailedUserBadgeSerializer, root: "user_badges")
2014-03-05 07:52:20 -05:00
end
def create
params.require(:username)
user = fetch_user_from_params
unless can_assign_badge_to_user?(user)
render json: failed_json, status: 403
return
end
badge = fetch_badge_from_params
post_id = nil
2014-03-05 07:52:20 -05:00
if params[:reason].present?
path = URI.parse(params[:reason]).path rescue nil
route = Rails.application.routes.recognize_path(path) if path
if route
topic_id = route[:topic_id].to_i
post_number = route[:post_number] || 1
post_id = Post.find_by(topic_id: topic_id, post_number: post_number).try(:id) if topic_id > 0
end
end
user_badge = BadgeGranter.grant(badge, user, granted_by: current_user, post_id: post_id)
render_serialized(user_badge, DetailedUserBadgeSerializer, root: "user_badge")
2014-03-05 07:52:20 -05:00
end
def destroy
params.require(:id)
user_badge = UserBadge.find(params[:id])
unless can_assign_badge_to_user?(user_badge.user)
render json: failed_json, status: 403
return
end
BadgeGranter.revoke(user_badge, revoked_by: current_user)
2014-03-05 07:52:20 -05:00
render json: success_json
end
private
# Get the badge from either the badge name or id specified in the params.
def fetch_badge_from_params
badge = nil
params.permit(:badge_name)
if params[:badge_name].nil?
params.require(:badge_id)
badge = Badge.find_by(id: params[:badge_id], enabled: true)
2014-03-05 07:52:20 -05:00
else
badge = Badge.find_by(name: params[:badge_name], enabled: true)
2014-03-05 07:52:20 -05:00
end
2015-05-06 21:00:51 -04:00
raise Discourse::NotFound if badge.blank?
2014-03-05 07:52:20 -05:00
badge
end
def can_assign_badge_to_user?(user)
master_api_call = current_user.nil? && is_api?
master_api_call or guardian.can_grant_badges?(user)
end
def filter_user_badges(user_badges)
if SiteSetting.enable_whispers?
unless current_user.try(:staff?)
user_badges = user_badges.joins("LEFT JOIN posts ON posts.id = user_badges.post_id")
.where("posts.post_type <> #{Post.types[:whisper]}")
end
end
user_badges
end
2014-03-05 07:52:20 -05:00
end