2015-12-21 17:51:49 +01:00
|
|
|
class API::V1::ProceduresController < APIController
|
2018-09-26 16:38:35 +02:00
|
|
|
before_action :fetch_procedure_and_check_token
|
|
|
|
|
2016-02-02 18:11:44 +01:00
|
|
|
def show
|
2018-09-26 16:38:35 +02:00
|
|
|
render json: { procedure: ProcedureSerializer.new(@procedure.decorate).as_json }
|
|
|
|
end
|
|
|
|
|
|
|
|
private
|
|
|
|
|
|
|
|
def fetch_procedure_and_check_token
|
|
|
|
@procedure = Procedure.includes(:administrateur).find(params[:id])
|
|
|
|
|
|
|
|
if !valid_token_for_administrateur?(@procedure.administrateur)
|
|
|
|
render json: {}, status: :unauthorized
|
|
|
|
end
|
2015-12-21 17:51:49 +01:00
|
|
|
|
2018-09-26 16:39:10 +02:00
|
|
|
rescue ActiveRecord::RecordNotFound
|
2018-09-26 16:38:35 +02:00
|
|
|
render json: {}, status: :not_found
|
2015-12-21 17:51:49 +01:00
|
|
|
end
|
|
|
|
end
|