/api/app/controllers/spree/api/orders_controller.rb

https://github.com/joshnuss/spree-1 · Ruby · 88 lines · 71 code · 13 blank · 4 comment · 6 complexity · 6164534aa1798aad3ce5a0b06448054a MD5 · raw file 

    

  1. module Spree
    2. 

  2.   module Api
    3. 

  3.     class OrdersController < Spree::Api::BaseController
    4. 

  4. 

  5.       # Dynamically defines our stores checkout steps to ensure we check authorization on each step.
    6. 

  6.       Order.checkout_steps.keys.each do |step|
    7. 

  7.         define_method step do
    8. 

  8.           find_order
    9. 

  9.           authorize! :update, @order, params[:token]
    10. 

  10.         end
    11. 

  11.       end
    12. 

  12. 

  13.       def cancel
    14. 

  14.         find_order
    15. 

  15.         authorize! :update, @order, params[:token]
    16. 

  16.         @order.cancel!
    17. 

  17.         render :show
    18. 

  18.       end
    19. 

  19. 

  20.       def create
    21. 

  21.         authorize! :create, Order
    22. 

  22.         @order = Order.build_from_api(current_api_user, nested_params)
    23. 

  23.         respond_with(@order, :default_template => :show, :status => 201)
    24. 

  24.       end
    25. 

  25. 

  26.       def empty
    27. 

  27.         find_order
    28. 

  28.         @order.line_items.destroy_all
    29. 

  29.         @order.update!
    30. 

  30.         render :text => nil, :status => 200
    31. 

  31.       end
    32. 

  32. 

  33.       def index
    34. 

  34.         authorize! :index, Order
    35. 

  35.         @orders = Order.ransack(params[:q]).result.page(params[:page]).per(params[:per_page])
    36. 

  36.         respond_with(@orders)
    37. 

  37.       end
    38. 

  38. 

  39.       def show
    40. 

  40.         find_order
    41. 

  41.         method = "before_#{@order.state}"
    42. 

  42.         send(method) if respond_to?(method, true)
    43. 

  43.         respond_with(@order)
    44. 

  44.       end
    45. 

  45. 

  46.       def update
    47. 

  47.         find_order
    48. 

  48.         # Parsing line items through as an update_attributes call in the API will result in
    49. 

  49.         # many line items for the same variant_id being created. We must be smarter about this,
    50. 

  50.         # hence the use of the update_line_items method, defined within order_decorator.rb.
    51. 

  51.         order_params = nested_params
    52. 

  52.         line_items = order_params.delete("line_items_attributes")
    53. 

  53.         if @order.update_attributes(order_params)
    54. 

  54.           @order.update_line_items(line_items)
    55. 

  55.           @order.line_items.reload
    56. 

  56.           @order.update!
    57. 

  57.           respond_with(@order, :default_template => :show)
    58. 

  58.         else
    59. 

  59.           invalid_resource!(@order)
    60. 

  60.         end
    61. 

  61.       end
    62. 

  62. 

  63.       private
    64. 

  64. 

  65.       def nested_params
    66. 

  66.         map_nested_attributes_keys Order, params[:order] || {}
    67. 

  67.       end
    68. 

  68. 

  69.       def next!(options={})
    70. 

  70.         if @order.valid? && @order.next
    71. 

  71.           render :show, :status => options[:status] || 200
    72. 

  72.         else
    73. 

  73.           render :could_not_transition, :status => 422
    74. 

  74.         end
    75. 

  75.       end
    76. 

  76. 

  77.       def find_order
    78. 

  78.         @order = Order.find_by_number!(params[:id])
    79. 

  79.         authorize! :update, @order, params[:order_token]
    80. 

  80.       end
    81. 

  81. 

  82.       def before_delivery
    83. 

  83.         @order.create_proposed_shipments
    84. 

  84.       end
    85. 

  85. 

  86.     end
    87. 

  87.   end
    88. 

  88. end
    89.