/api/app/controllers/spree/api/stock_movements_controller.rb
Ruby | 43 lines | 36 code | 7 blank | 0 comment | 1 complexity | 3d0110d85230bfd6c69fb262a49d085e MD5 | raw file
Possible License(s): BSD-3-Clause
- module Spree
- module Api
- class StockMovementsController < Spree::Api::BaseController
- before_filter :stock_location, except: [:update, :destroy]
- def index
- authorize! :read, StockMovement
- @stock_movements = scope.ransack(params[:q]).result.page(params[:page]).per(params[:per_page])
- respond_with(@stock_movements)
- end
- def show
- @stock_movement = scope.find(params[:id])
- respond_with(@stock_movement)
- end
- def create
- authorize! :create, StockMovement
- @stock_movement = scope.new(stock_movement_params)
- if @stock_movement.save
- respond_with(@stock_movement, status: 201, default_template: :show)
- else
- invalid_resource!(@stock_movement)
- end
- end
- private
- def stock_location
- render 'spree/api/shared/stock_location_required', status: 422 and return unless params[:stock_location_id]
- @stock_location ||= StockLocation.accessible_by(current_ability, :read).find(params[:stock_location_id])
- end
- def scope
- @stock_location.stock_movements.accessible_by(current_ability, :read)
- end
- def stock_movement_params
- params.require(:stock_movement).permit(permitted_stock_movement_attributes)
- end
- end
- end
- end