2015-04-30 13:06:18 -04:00
|
|
|
class ProfilesController < Profiles::ApplicationController
|
2013-02-25 15:51:15 -05:00
|
|
|
include ActionView::Helpers::SanitizeHelper
|
|
|
|
|
2015-04-16 08:03:37 -04:00
|
|
|
before_action :user
|
|
|
|
before_action :authorize_change_username!, only: :update_username
|
|
|
|
skip_before_action :require_email, only: [:show, :update]
|
2013-05-24 10:12:27 -04:00
|
|
|
|
2011-10-08 17:36:38 -04:00
|
|
|
def show
|
|
|
|
end
|
|
|
|
|
2011-12-20 15:47:09 -05:00
|
|
|
def update
|
2014-06-26 16:24:17 -04:00
|
|
|
user_params.except!(:email) if @user.ldap_user?
|
2013-11-27 03:32:37 -05:00
|
|
|
|
2012-11-21 15:01:40 -05:00
|
|
|
respond_to do |format|
|
2016-03-17 10:41:38 -04:00
|
|
|
if @user.update_attributes(user_params)
|
|
|
|
message = "Profile was successfully updated"
|
|
|
|
format.html { redirect_back_or_default(default: { action: 'show' }, options: { notice: message }) }
|
|
|
|
format.json { render json: { message: message } }
|
|
|
|
else
|
|
|
|
message = @user.errors.full_messages.uniq.join('. ')
|
|
|
|
format.html { redirect_back_or_default(default: { action: 'show' }, options: { alert: "Failed to update profile. #{message}" }) }
|
|
|
|
format.json { render json: { message: message }, status: :unprocessable_entity }
|
|
|
|
end
|
2012-11-21 15:01:40 -05:00
|
|
|
end
|
2011-10-19 18:34:05 -04:00
|
|
|
end
|
|
|
|
|
2011-11-15 08:08:20 -05:00
|
|
|
def reset_private_token
|
2012-12-02 06:29:24 -05:00
|
|
|
if current_user.reset_authentication_token!
|
2016-10-18 14:03:31 -04:00
|
|
|
flash[:notice] = "Private token was successfully reset"
|
2016-08-19 19:33:46 -04:00
|
|
|
end
|
|
|
|
|
|
|
|
redirect_to profile_account_path
|
|
|
|
end
|
|
|
|
|
|
|
|
def reset_incoming_email_token
|
|
|
|
if current_user.reset_incoming_email_token!
|
2016-10-18 14:03:31 -04:00
|
|
|
flash[:notice] = "Incoming email token was successfully reset"
|
2012-12-02 06:29:24 -05:00
|
|
|
end
|
|
|
|
|
2013-10-09 09:37:37 -04:00
|
|
|
redirect_to profile_account_path
|
2011-11-15 08:08:20 -05:00
|
|
|
end
|
2012-07-31 01:32:49 -04:00
|
|
|
|
2015-07-03 07:54:50 -04:00
|
|
|
def audit_log
|
2017-02-22 11:55:08 -05:00
|
|
|
@events = AuditEvent.where(entity_type: "User", entity_id: current_user.id)
|
|
|
|
.order("created_at DESC")
|
|
|
|
.page(params[:page])
|
2012-09-14 12:13:25 -04:00
|
|
|
end
|
|
|
|
|
2012-12-02 06:29:24 -05:00
|
|
|
def update_username
|
2014-06-26 08:11:45 -04:00
|
|
|
@user.update_attributes(username: user_params[:username])
|
2012-12-02 06:29:24 -05:00
|
|
|
|
|
|
|
respond_to do |format|
|
|
|
|
format.js
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2012-09-14 12:13:25 -04:00
|
|
|
private
|
2012-07-31 01:32:49 -04:00
|
|
|
|
|
|
|
def user
|
|
|
|
@user = current_user
|
|
|
|
end
|
2013-02-25 15:51:15 -05:00
|
|
|
|
2013-05-24 10:12:27 -04:00
|
|
|
def authorize_change_username!
|
|
|
|
return render_404 unless @user.can_change_username?
|
|
|
|
end
|
2014-06-26 08:11:45 -04:00
|
|
|
|
|
|
|
def user_params
|
|
|
|
params.require(:user).permit(
|
2015-06-05 13:57:01 -04:00
|
|
|
:avatar,
|
|
|
|
:bio,
|
|
|
|
:email,
|
|
|
|
:hide_no_password,
|
|
|
|
:hide_no_ssh_key,
|
2015-12-02 19:02:15 -05:00
|
|
|
:hide_project_limit,
|
2015-06-05 13:57:01 -04:00
|
|
|
:linkedin,
|
|
|
|
:location,
|
|
|
|
:name,
|
|
|
|
:password,
|
|
|
|
:password_confirmation,
|
|
|
|
:public_email,
|
|
|
|
:skype,
|
|
|
|
:twitter,
|
|
|
|
:username,
|
2016-09-26 12:24:14 -04:00
|
|
|
:website_url,
|
|
|
|
:organization
|
2014-06-26 08:11:45 -04:00
|
|
|
)
|
|
|
|
end
|
2011-10-08 17:36:38 -04:00
|
|
|
end
|