demarches-normaliennes/app/controllers/backoffice/avis_controller.rb

class Backoffice::AvisController < ApplicationController

  before_action :authenticate_gestionnaire!, except: [:sign_up, :create_gestionnaire]
  before_action :redirect_if_no_sign_up_needed, only: [:sign_up]
  before_action :check_avis_exists_and_email_belongs_to_avis, only: [:sign_up, :create_gestionnaire]

  def create
    avis = Avis.new(create_params)
    avis.dossier = dossier

    email = create_params[:email]
    gestionnaire = Gestionnaire.find_by(email: email)
    if gestionnaire
      avis.gestionnaire = gestionnaire
      avis.email = nil
    end

    if avis.save
      flash[:notice] = "Votre demande d'avis a bien été envoyée à #{email}"
    end

    redirect_to backoffice_dossier_path(dossier)
  end

  def update
    if avis.update(update_params)
      NotificationService.new('avis', params[:dossier_id]).notify
      flash[:notice] = 'Merci, votre avis a été enregistré.'
    end

    redirect_to backoffice_dossier_path(avis.dossier_id)
  end

  def sign_up
    @email = params[:email]
    @dossier = Avis.includes(:dossier).find(params[:id]).dossier

    render layout: 'new_application'
  end

  def create_gestionnaire
    email = params[:email]
    password = params['gestionnaire']['password']

    gestionnaire = Gestionnaire.new(email: email, password: password)

    if gestionnaire.save
      sign_in(gestionnaire, scope: :gestionnaire)
      Avis.link_avis_to_gestionnaire(gestionnaire)
      avis = Avis.find(params[:id])
      redirect_to url_for(backoffice_dossier_path(avis.dossier_id))
    else
      flash[:alert] = gestionnaire.errors.full_messages.join('<br>')
      redirect_to url_for(avis_sign_up_path(params[:id], email))
    end
  end

  private

  def dossier
    current_gestionnaire.dossiers.find(params[:dossier_id])
  end

  def avis
    current_gestionnaire.avis.find(params[:id])
  end

  def create_params
    params.require(:avis).permit(:email, :introduction)
  end

  def update_params
    params.require(:avis).permit(:answer)
  end

  def redirect_if_no_sign_up_needed
    avis = Avis.find(params[:id])

    if current_gestionnaire.present?
      # a gestionnaire is authenticated ... lets see if it can view the dossier

      redirect_to backoffice_dossier_url(avis.dossier)
    elsif avis.gestionnaire.present? && avis.gestionnaire.email == params[:email]
      # the avis gestionnaire has already signed up and it sould sign in

      redirect_to new_gestionnaire_session_url
    end
  end

  def check_avis_exists_and_email_belongs_to_avis
    if !Avis.avis_exists_and_email_belongs_to_avis?(params[:id], params[:email])
      redirect_to url_for(root_path)
    end
  end
end
Create and list Avis on Dossier detail page 2017-04-25 17:02:54 +02:00			`class Backoffice::AvisController < ApplicationController`

Avis: add create_gestionnaire logic 2017-05-12 10:22:53 +02:00			`before_action :authenticate_gestionnaire!, except: [:sign_up, :create_gestionnaire]`
AvisController: add redirection logic for various login cases 2017-05-05 17:38:43 +02:00			`before_action :redirect_if_no_sign_up_needed, only: [:sign_up]`
Avis: add create_gestionnaire logic 2017-05-12 10:22:53 +02:00			`before_action :check_avis_exists_and_email_belongs_to_avis, only: [:sign_up, :create_gestionnaire]`
Associate gestionnaire to avis if gestionnaire is known 2017-05-02 16:20:16 +02:00
Create and list Avis on Dossier detail page 2017-04-25 17:02:54 +02:00			`def create`
			`avis = Avis.new(create_params)`
			`avis.dossier = dossier`
Associate gestionnaire to avis if gestionnaire is known 2017-05-02 16:20:16 +02:00
Confirm with flash after avis is sent 2017-05-18 16:14:26 +02:00			`email = create_params[:email]`
			`gestionnaire = Gestionnaire.find_by(email: email)`
Associate gestionnaire to avis if gestionnaire is known 2017-05-02 16:20:16 +02:00			`if gestionnaire`
			`avis.gestionnaire = gestionnaire`
			`avis.email = nil`
			`end`

Confirm with flash after avis is sent 2017-05-18 16:14:26 +02:00			`if avis.save`
			`flash[:notice] = "Votre demande d'avis a bien été envoyée à #{email}"`
			`end`
Create and list Avis on Dossier detail page 2017-04-25 17:02:54 +02:00
			`redirect_to backoffice_dossier_path(dossier)`
			`end`

gestionnaire invited on dossier for avis, can update Avis 2017-05-24 18:45:31 +02:00			`def update`
			`if avis.update(update_params)`
AvisController: add a notification when a avis has been received 2017-05-22 17:10:17 +02:00			`NotificationService.new('avis', params[:dossier_id]).notify`
gestionnaire invited on dossier for avis, can update Avis 2017-05-24 18:45:31 +02:00			`flash[:notice] = 'Merci, votre avis a été enregistré.'`
			`end`

			`redirect_to backoffice_dossier_path(avis.dossier_id)`
			`end`

Avis: add sign_up logic for new tps gestionnaire 2017-05-12 10:22:18 +02:00			`def sign_up`
			`@email = params[:email]`
			`@dossier = Avis.includes(:dossier).find(params[:id]).dossier`

			`render layout: 'new_application'`
			`end`

Avis: add create_gestionnaire logic 2017-05-12 10:22:53 +02:00			`def create_gestionnaire`
			`email = params[:email]`
			`password = params['gestionnaire']['password']`

			`gestionnaire = Gestionnaire.new(email: email, password: password)`

			`if gestionnaire.save`
			`sign_in(gestionnaire, scope: :gestionnaire)`
			`Avis.link_avis_to_gestionnaire(gestionnaire)`
			`avis = Avis.find(params[:id])`
			`redirect_to url_for(backoffice_dossier_path(avis.dossier_id))`
			`else`
			`flash[:alert] = gestionnaire.errors.full_messages.join('<br>')`
			`redirect_to url_for(avis_sign_up_path(params[:id], email))`
			`end`
			`end`

Create and list Avis on Dossier detail page 2017-04-25 17:02:54 +02:00			`private`

			`def dossier`
			`current_gestionnaire.dossiers.find(params[:dossier_id])`
			`end`

gestionnaire invited on dossier for avis, can update Avis 2017-05-24 18:45:31 +02:00			`def avis`
			`current_gestionnaire.avis.find(params[:id])`
			`end`

Create and list Avis on Dossier detail page 2017-04-25 17:02:54 +02:00			`def create_params`
			`params.require(:avis).permit(:email, :introduction)`
			`end`

gestionnaire invited on dossier for avis, can update Avis 2017-05-24 18:45:31 +02:00			`def update_params`
			`params.require(:avis).permit(:answer)`
			`end`

AvisController: add redirection logic for various login cases 2017-05-05 17:38:43 +02:00			`def redirect_if_no_sign_up_needed`
			`avis = Avis.find(params[:id])`

			`if current_gestionnaire.present?`
			`# a gestionnaire is authenticated ... lets see if it can view the dossier`

			`redirect_to backoffice_dossier_url(avis.dossier)`
			`elsif avis.gestionnaire.present? && avis.gestionnaire.email == params[:email]`
			`# the avis gestionnaire has already signed up and it sould sign in`

			`redirect_to new_gestionnaire_session_url`
			`end`
			`end`

Avis: add sign_up logic for new tps gestionnaire 2017-05-12 10:22:18 +02:00			`def check_avis_exists_and_email_belongs_to_avis`
			`if !Avis.avis_exists_and_email_belongs_to_avis?(params[:id], params[:email])`
			`redirect_to url_for(root_path)`
			`end`
			`end`
Create and list Avis on Dossier detail page 2017-04-25 17:02:54 +02:00			`end`