مراية لـ
https://github.com/postalserver/postal.git
تم المزامنة 2025-11-30 21:32:30 +00:00
56 أسطر
1.5 KiB
Ruby
56 أسطر
1.5 KiB
Ruby
class UsersController < ApplicationController
|
|
|
|
before_action :admin_required
|
|
before_action { params[:id] && @user = User.find_by!(uuid: params[:id]) }
|
|
|
|
def index
|
|
@users = User.order(:first_name, :last_name).includes(:organization_users)
|
|
end
|
|
|
|
def new
|
|
@user = User.new(admin: true)
|
|
end
|
|
|
|
def create
|
|
@user = User.new(params.require(:user).permit(:email_address, :first_name, :last_name, :password, :password_confirmation, :admin, organization_ids: []))
|
|
if @user.save
|
|
redirect_to_with_json :users, :notice => "#{@user.name} has been created successfully."
|
|
else
|
|
render_form_errors 'new', @user
|
|
end
|
|
end
|
|
|
|
def edit
|
|
end
|
|
|
|
def update
|
|
@user.attributes = params.require(:user).permit(:email_address, :first_name, :last_name, :admin, organization_ids: [])
|
|
|
|
if @user == current_user && !@user.admin?
|
|
respond_to do |wants|
|
|
wants.html { redirect_to users_path, alert: "You cannot change your own admin status" }
|
|
wants.json { render :json => {:form_errors => ["You cannot change your own admin status"]}, :status => 422 }
|
|
end
|
|
return
|
|
end
|
|
|
|
if @user.save
|
|
redirect_to_with_json :users, :notice => "Permissions for #{@user.name} have been updated successfully."
|
|
else
|
|
render_form_errors 'edit', @user
|
|
end
|
|
end
|
|
|
|
def destroy
|
|
if @user == current_user
|
|
redirect_to_with_json :users, :alert => "You cannot delete your own user."
|
|
return
|
|
end
|
|
|
|
@user.destroy!
|
|
redirect_to_with_json :users, :notice => "#{@user.name} has been removed"
|
|
end
|
|
|
|
|
|
end
|