PageRenderTime 1323ms CodeModel.GetById 0ms RepoModel.GetById 0ms app.codeStats 0ms

/app/controllers/spree/api/products_controller_decorator.rb

https://gitlab.com/srihas/openfoodnetwork
Ruby | 71 lines | 53 code | 15 blank | 3 comment | 2 complexity | 29baec6bef4789b76ce75b52387ec773 MD5 | raw file
    

  1. require 'open_food_network/permissions'
    2. 

  2. 

  3. Spree::Api::ProductsController.class_eval do
    4. 

  4.   def managed
    5. 

  5.     authorize! :admin, Spree::Product
    6. 

  6.     authorize! :read, Spree::Product
    7. 

  7. 

  8.     @products = product_scope.ransack(params[:q]).result.managed_by(current_api_user).page(params[:page]).per(params[:per_page])
    9. 

  9.     respond_with(@products, default_template: :index)
    10. 

  10.   end
    11. 

  11. 

  12.   # TODO: This should be named 'managed'. Is the action above used? Maybe we should remove it.
    13. 

  13.   def bulk_products
    14. 

  14.     @products = OpenFoodNetwork::Permissions.new(current_api_user).editable_products.
    15. 

  15.       merge(product_scope).
    16. 

  16.       order('created_at DESC').
    17. 

  17.       ransack(params[:q]).result.
    18. 

  18.       page(params[:page]).per(params[:per_page])
    19. 

  19. 

  20.     render_paged_products @products
    21. 

  21.   end
    22. 

  22. 

  23.   def overridable
    24. 

  24.     producers = OpenFoodNetwork::Permissions.new(current_api_user).
    25. 

  25.       variant_override_producers.by_name
    26. 

  26. 

  27.     @products = paged_products_for_producers producers
    28. 

  28. 

  29.     render_paged_products @products
    30. 

  30.   end
    31. 

  31. 

  32.   def soft_delete
    33. 

  33.     authorize! :delete, Spree::Product
    34. 

  34.     @product = find_product(params[:product_id])
    35. 

  35.     authorize! :delete, @product
    36. 

  36.     @product.delete
    37. 

  37.     respond_with(@product, :status => 204)
    38. 

  38.   end
    39. 

  39. 

  40. 

  41.   private
    42. 

  42. 

  43.   # Copied and modified from Spree::Api::BaseController to allow
    44. 

  44.   # enterprise users to access inactive products
    45. 

  45.   def product_scope
    46. 

  46.     if current_api_user.has_spree_role?("admin") || current_api_user.enterprises.present? # This line modified
    47. 

  47.       scope = Spree::Product
    48. 

  48.       unless params[:show_deleted]
    49. 

  49.         scope = scope.not_deleted
    50. 

  50.       end
    51. 

  51.     else
    52. 

  52.       scope = Spree::Product.active
    53. 

  53.     end
    54. 

  54. 

  55.     scope.includes(:master)
    56. 

  56.   end
    57. 

  57. 

  58.   def paged_products_for_producers(producers)
    59. 

  59.     Spree::Product.scoped.
    60. 

  60.       merge(product_scope).
    61. 

  61.       where(supplier_id: producers).
    62. 

  62.       by_producer.by_name.
    63. 

  63.       ransack(params[:q]).result.
    64. 

  64.       page(params[:page]).per(params[:per_page])
    65. 

  65.   end
    66. 

  66. 

  67.   def render_paged_products(products)
    68. 

  68.     render text: { products: ActiveModel::ArraySerializer.new(products, each_serializer: Api::Admin::ProductSerializer), pages: products.num_pages }.to_json
    69. 

  69.   end
    70. 

  70. 

  71. end
    72. 

  72.