mirror of https://github.com/docusealco/docuseal
You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
97 lines
2.9 KiB
97 lines
2.9 KiB
# frozen_string_literal: true
|
|
|
|
class UsersController < ApplicationController
|
|
load_and_authorize_resource :user, only: %i[index edit update destroy]
|
|
|
|
before_action :build_user, only: %i[new create]
|
|
authorize_resource :user, only: %i[new create]
|
|
|
|
def index
|
|
@users =
|
|
if params[:status] == 'archived'
|
|
@users.archived.where.not(role: 'integration')
|
|
elsif params[:status] == 'integration'
|
|
@users.active.where(role: 'integration')
|
|
else
|
|
@users.active.where.not(role: 'integration')
|
|
end
|
|
|
|
@pagy, @users = pagy(@users.preload(account: :account_accesses).where(account: current_account).order(id: :desc))
|
|
end
|
|
|
|
def new; end
|
|
|
|
def edit; end
|
|
|
|
def create
|
|
if User.accessible_by(current_ability).exists?(email: @user.email)
|
|
@user.errors.add(:email, I18n.t('already_exists'))
|
|
|
|
return render turbo_stream: turbo_stream.replace(:modal, template: 'users/new'), status: :unprocessable_content
|
|
end
|
|
|
|
@user.password = SecureRandom.hex if @user.password.blank?
|
|
@user.role = User::ADMIN_ROLE unless role_valid?(@user.role)
|
|
|
|
if @user.save
|
|
UserMailer.invitation_email(@user).deliver_later!
|
|
|
|
redirect_back fallback_location: settings_users_path, notice: I18n.t('user_has_been_invited')
|
|
else
|
|
render turbo_stream: turbo_stream.replace(:modal, template: 'users/new'), status: :unprocessable_content
|
|
end
|
|
end
|
|
|
|
def update
|
|
return redirect_to settings_users_path, notice: I18n.t('unable_to_update_user') if Docuseal.demo?
|
|
|
|
attrs = user_params.compact_blank.merge(user_params.slice(:archived_at))
|
|
|
|
if params.dig(:user, :account_id).present?
|
|
account = Account.accessible_by(current_ability).find(params.dig(:user, :account_id))
|
|
|
|
authorize!(:manage, account)
|
|
|
|
@user.account = account
|
|
end
|
|
|
|
if @user.update(attrs.except(*(current_user == @user ? %i[password otp_required_for_login role] : %i[password])))
|
|
redirect_back fallback_location: settings_users_path, notice: I18n.t('user_has_been_updated')
|
|
else
|
|
render turbo_stream: turbo_stream.replace(:modal, template: 'users/edit'), status: :unprocessable_content
|
|
end
|
|
end
|
|
|
|
def destroy
|
|
if Docuseal.demo? || @user.id == current_user.id
|
|
return redirect_to settings_users_path, notice: I18n.t('unable_to_remove_user')
|
|
end
|
|
|
|
@user.update!(archived_at: Time.current)
|
|
|
|
redirect_back fallback_location: settings_users_path, notice: I18n.t('user_has_been_removed')
|
|
end
|
|
|
|
private
|
|
|
|
def role_valid?(role)
|
|
User::ROLES.include?(role)
|
|
end
|
|
|
|
def build_user
|
|
@user = current_account.users.new(user_params)
|
|
end
|
|
|
|
def user_params
|
|
if params.key?(:user)
|
|
permitted_params = %i[email first_name last_name password archived_at otp_required_for_login]
|
|
|
|
permitted_params << :role if role_valid?(params.dig(:user, :role))
|
|
|
|
params.require(:user).permit(permitted_params)
|
|
else
|
|
{}
|
|
end
|
|
end
|
|
end
|