gitlab-org--gitlab-foss/app/controllers/profiles_controller.rb

89 lines
2.1 KiB
Ruby
Raw Normal View History

2015-04-30 13:06:18 -04:00
class ProfilesController < Profiles::ApplicationController
2013-02-25 15:51:15 -05:00
include ActionView::Helpers::SanitizeHelper
before_action :user
before_action :authorize_change_username!, only: :update_username
skip_before_action :require_email, only: [:show, :update]
2011-10-08 17:36:38 -04:00
def show
end
def update
user_params.except!(:email) if @user.ldap_user?
respond_to do |format|
2016-03-17 10:41:38 -04:00
if @user.update_attributes(user_params)
message = "Profile was successfully updated"
format.html { redirect_back_or_default(default: { action: 'show' }, options: { notice: message }) }
format.json { render json: { message: message } }
else
message = @user.errors.full_messages.uniq.join('. ')
format.html { redirect_back_or_default(default: { action: 'show' }, options: { alert: "Failed to update profile. #{message}" }) }
format.json { render json: { message: message }, status: :unprocessable_entity }
end
end
end
2011-11-15 08:08:20 -05:00
def reset_private_token
if current_user.reset_authentication_token!
flash[:notice] = "Private token was successfully reset"
end
redirect_to profile_account_path
end
def reset_incoming_email_token
if current_user.reset_incoming_email_token!
flash[:notice] = "Incoming email token was successfully reset"
end
2013-10-09 09:37:37 -04:00
redirect_to profile_account_path
2011-11-15 08:08:20 -05:00
end
2012-07-31 01:32:49 -04:00
2015-07-03 07:54:50 -04:00
def audit_log
@events = AuditEvent.where(entity_type: "User", entity_id: current_user.id)
.order("created_at DESC")
.page(params[:page])
2012-09-14 12:13:25 -04:00
end
def update_username
@user.update_attributes(username: user_params[:username])
respond_to do |format|
format.js
end
end
2012-09-14 12:13:25 -04:00
private
2012-07-31 01:32:49 -04:00
def user
@user = current_user
end
2013-02-25 15:51:15 -05:00
def authorize_change_username!
return render_404 unless @user.can_change_username?
end
def user_params
params.require(:user).permit(
:avatar,
:bio,
:email,
:hide_no_password,
:hide_no_ssh_key,
:hide_project_limit,
:linkedin,
:location,
:name,
:password,
:password_confirmation,
:public_email,
:skype,
:twitter,
:username,
:website_url,
:organization
)
end
2011-10-08 17:36:38 -04:00
end