# frozen_string_literal: true class SetupController < ApplicationController skip_before_action :maybe_redirect_to_setup skip_before_action :authenticate_user! before_action :redirect_to_root_if_signed, if: :signed_in? before_action :ensure_first_user_not_created! def index @account = Account.new(account_params) @user = @account.users.new(user_params) @encrypted_config = EncryptedConfig.new(account: @account, key: EncryptedConfig::APP_URL_KEY) end def create @account = Account.new(account_params) @account.timezone = Accounts.normalize_timezone(@account.timezone) @user = @account.users.new(user_params) unless URI.parse(encrypted_config_params[:value].to_s).class.in?([URI::HTTP, URI::HTTPS]) @encrypted_config = EncryptedConfig.new(encrypted_config_params) @encrypted_config.errors.add(:value, 'should be a valid URL') return render :index, status: :unprocessable_entity end if @user.save encrypted_configs = [ { key: EncryptedConfig::APP_URL_KEY, value: encrypted_config_params[:value] }, { key: EncryptedConfig::ESIGN_CERTS_KEY, value: GenerateCertificate.call.transform_values(&:to_pem) } ] @account.encrypted_configs.create!(encrypted_configs) Docuseal.refresh_default_url_options! sign_in(@user) redirect_to newsletter_path else render :index, status: :unprocessable_entity end end private def user_params return {} unless params[:user] params.require(:user).permit(:first_name, :last_name, :email, :password) end def account_params return {} unless params[:account] params.require(:account).permit(:name, :timezone) end def encrypted_config_params return {} unless params[:encrypted_config] params.require(:encrypted_config).permit(:value) end def redirect_to_root_if_signed redirect_to root_path, notice: 'You are already signed in' end def ensure_first_user_not_created! redirect_to new_user_session_path, notice: 'Please sign in.' if User.exists? end end