641 lines
22 KiB
Ruby
641 lines
22 KiB
Ruby
module Users
|
||
class DossiersController < UserController
|
||
include DossierHelper
|
||
include TurboChampsConcern
|
||
include LockableConcern
|
||
|
||
layout 'procedure_context', only: [:identite, :update_identite, :siret, :update_siret]
|
||
|
||
ACTIONS_ALLOWED_TO_ANY_USER = [:index, :new, :transferer_all]
|
||
ACTIONS_ALLOWED_TO_OWNER_OR_INVITE = [:show, :destroy, :demande, :messagerie, :brouillon, :submit_brouillon, :submit_en_construction, :modifier, :modifier_legacy, :update, :create_commentaire, :papertrail, :restore, :champ]
|
||
|
||
before_action :ensure_ownership!, except: ACTIONS_ALLOWED_TO_ANY_USER + ACTIONS_ALLOWED_TO_OWNER_OR_INVITE
|
||
before_action :ensure_ownership_or_invitation!, only: ACTIONS_ALLOWED_TO_OWNER_OR_INVITE
|
||
before_action :ensure_dossier_can_be_updated, only: [:update_identite, :update_siret, :brouillon, :submit_brouillon, :submit_en_construction, :modifier, :modifier_legacy, :update, :champ]
|
||
before_action :ensure_dossier_can_be_filled, only: [:brouillon, :modifier, :submit_brouillon, :submit_en_construction, :update]
|
||
before_action :ensure_dossier_can_be_viewed, only: [:show]
|
||
before_action :forbid_invite_submission!, only: [:submit_brouillon]
|
||
before_action :forbid_closed_submission!, only: [:submit_brouillon]
|
||
before_action :set_dossier_as_editing_fork, only: [:submit_en_construction]
|
||
before_action :show_demarche_en_test_banner
|
||
before_action :store_user_location!, only: :new
|
||
|
||
around_action only: :submit_en_construction do |_controller, action|
|
||
lock_action("lock-submit-en-construction-#{@dossier.id}", &action)
|
||
end
|
||
|
||
def index
|
||
ordered_dossiers = Dossier.includes(:procedure).order_by_updated_at
|
||
deleted_dossiers = current_user.deleted_dossiers.includes(:procedure).order_by_updated_at
|
||
|
||
user_revisions = ProcedureRevision.where(dossiers: current_user.dossiers.visible_by_user)
|
||
invite_revisions = ProcedureRevision.where(dossiers: current_user.dossiers_invites.visible_by_user)
|
||
deleted_dossier_procedures = Procedure.where(id: deleted_dossiers.pluck(:procedure_id))
|
||
all_dossier_procedures = Procedure.where(revisions: user_revisions.or(invite_revisions))
|
||
|
||
@procedures_for_select = all_dossier_procedures
|
||
.or(deleted_dossier_procedures)
|
||
.distinct(:procedure_id)
|
||
.order(:libelle)
|
||
.pluck(:libelle, :id)
|
||
|
||
@procedure_id = params[:procedure_id]
|
||
if @procedure_id.present?
|
||
ordered_dossiers = ordered_dossiers.where(procedures: { id: @procedure_id })
|
||
deleted_dossiers = deleted_dossiers.where(procedures: { id: @procedure_id })
|
||
end
|
||
|
||
@search_terms = params[:q]
|
||
if @search_terms.present?
|
||
dossiers_filter_by_search = DossierSearchService.matching_dossiers_for_user(@search_terms, current_user).page
|
||
ordered_dossiers = ordered_dossiers.merge(dossiers_filter_by_search)
|
||
deleted_dossiers = nil
|
||
end
|
||
|
||
@dossiers_visibles = ordered_dossiers.visible_by_user.preload(:etablissement, :individual, :invites)
|
||
|
||
@user_dossiers = current_user.dossiers.state_not_termine.merge(@dossiers_visibles)
|
||
@dossiers_traites = current_user.dossiers.state_termine.merge(@dossiers_visibles)
|
||
@dossiers_invites = current_user.dossiers_invites.merge(@dossiers_visibles)
|
||
@dossiers_supprimes_recemment = current_user.dossiers.hidden_by_user.merge(ordered_dossiers)
|
||
@dossier_transferes = @dossiers_visibles.where(dossier_transfer_id: DossierTransfer.for_email(current_user.email))
|
||
@dossiers_close_to_expiration = current_user.dossiers.close_to_expiration.merge(@dossiers_visibles)
|
||
@dossiers_supprimes_definitivement = deleted_dossiers
|
||
|
||
@statut = statut(@user_dossiers, @dossiers_traites, @dossiers_invites, @dossiers_supprimes_recemment, @dossiers_supprimes_definitivement, @dossier_transferes, @dossiers_close_to_expiration, params[:statut])
|
||
|
||
@dossiers = case @statut
|
||
when 'en-cours'
|
||
@user_dossiers
|
||
when 'traites'
|
||
@dossiers_traites
|
||
when 'dossiers-invites'
|
||
@dossiers_invites
|
||
when 'dossiers-supprimes-recemment'
|
||
@dossiers_supprimes_recemment
|
||
when 'dossiers-supprimes-definitivement'
|
||
@dossiers_supprimes_definitivement
|
||
when 'dossiers-transferes'
|
||
@dossier_transferes
|
||
when 'dossiers-expirant'
|
||
@dossiers_close_to_expiration
|
||
end.page(page)
|
||
|
||
@first_brouillon_recently_updated = current_user.dossiers.visible_by_user.brouillons_recently_updated.first
|
||
|
||
@filter = DossiersFilter.new(current_user, params)
|
||
@dossiers = @filter.filter_procedures(@dossiers).page(page)
|
||
end
|
||
|
||
def show
|
||
pj_service = PiecesJustificativesService.new(user_profile: current_user, export_template: nil)
|
||
respond_to do |format|
|
||
format.pdf do
|
||
@dossier = dossier_with_champs(pj_template: false)
|
||
@acls = pj_service.acl_for_dossier_export(@dossier.procedure)
|
||
render(template: 'dossiers/show', formats: [:pdf])
|
||
end
|
||
format.all do
|
||
@dossier = dossier
|
||
end
|
||
end
|
||
end
|
||
|
||
def demande
|
||
@dossier = dossier_with_champs(pj_template: false)
|
||
end
|
||
|
||
def messagerie
|
||
@dossier = dossier
|
||
@commentaire = Commentaire.new
|
||
end
|
||
|
||
def attestation
|
||
if dossier.attestation&.pdf&.attached?
|
||
redirect_to dossier.attestation.pdf.url, allow_other_host: true
|
||
else
|
||
flash.notice = t('.no_longer_available')
|
||
redirect_to dossier_path(dossier)
|
||
end
|
||
end
|
||
|
||
def papertrail
|
||
raise ActionController::BadRequest if dossier.brouillon?
|
||
@dossier = dossier
|
||
end
|
||
|
||
def set_accuse_lecture_agreement_at
|
||
@dossier = dossier
|
||
@dossier.update!(accuse_lecture_agreement_at: Time.zone.now)
|
||
flash.notice = 'Accusé de lecture accepté'
|
||
redirect_back(fallback_location: demande_dossier_path(@dossier))
|
||
end
|
||
|
||
def identite
|
||
@dossier = dossier
|
||
@user = current_user
|
||
@no_description = true
|
||
|
||
respond_to do |format|
|
||
format.html
|
||
format.turbo_stream do
|
||
@dossier.for_tiers = params[:dossier][:for_tiers]
|
||
end
|
||
end
|
||
end
|
||
|
||
def update_identite
|
||
@dossier = dossier
|
||
@no_description = true
|
||
email = dossier_params.dig('individual_attributes', 'email')
|
||
|
||
if @dossier.update(dossier_params) && @dossier.individual.valid?
|
||
# verify for_tiers email
|
||
if email.present?
|
||
User.create_or_promote_to_tiers(email, SecureRandom.hex, @dossier)
|
||
end
|
||
|
||
@dossier.update!(autorisation_donnees: true, identity_updated_at: Time.zone.now)
|
||
flash.notice = t('.identity_saved')
|
||
|
||
if dossier.en_construction?
|
||
redirect_to demande_dossier_path(@dossier)
|
||
else
|
||
redirect_to brouillon_dossier_path(@dossier)
|
||
end
|
||
else
|
||
flash.now.alert = @dossier.individual.errors.full_messages + @dossier.errors.full_messages
|
||
render :identite
|
||
end
|
||
end
|
||
|
||
def siret
|
||
@dossier = dossier
|
||
@no_description = true
|
||
end
|
||
|
||
def update_siret
|
||
@dossier = dossier
|
||
@no_description = true
|
||
|
||
# We use the user as the holder model object for the siret value
|
||
# (so that we can restore it on the form in case of error).
|
||
#
|
||
# This is the only remaining use of User#siret: it could be refactored away.
|
||
# However some existing users have a siret but no associated etablissement,
|
||
# so we would need to analyze the legacy data and decide what to do with it.
|
||
current_user.siret = siret_params[:siret]
|
||
|
||
siret_model = Siret.new(siret: siret_params[:siret])
|
||
if !siret_model.valid?
|
||
return render_siret_error(siret_model.errors.full_messages)
|
||
end
|
||
|
||
sanitized_siret = siret_model.siret
|
||
etablissement = begin
|
||
APIEntrepriseService.create_etablissement(@dossier, sanitized_siret, current_user.id)
|
||
rescue => error
|
||
if error.try(:network_error?) && !APIEntrepriseService.api_insee_up?
|
||
# TODO: notify ops
|
||
APIEntrepriseService.create_etablissement_as_degraded_mode(@dossier, sanitized_siret, current_user.id)
|
||
else
|
||
Sentry.capture_exception(error, extra: { dossier_id: @dossier.id, siret: })
|
||
|
||
# probably random error, invite user to retry
|
||
return render_siret_error(t('errors.messages.siret_network_error'))
|
||
end
|
||
end
|
||
|
||
if etablissement.nil?
|
||
return render_siret_error(t('errors.messages.siret_unknown'))
|
||
end
|
||
|
||
current_user.update!(siret: sanitized_siret)
|
||
@dossier.update!(autorisation_donnees: true)
|
||
|
||
redirect_to etablissement_dossier_path
|
||
end
|
||
|
||
def etablissement
|
||
@dossier = dossier
|
||
|
||
# Redirect if the user attempts to access the page URL directly
|
||
if !@dossier.etablissement
|
||
flash.alert = t('.no_establishment')
|
||
return redirect_to siret_dossier_path(@dossier)
|
||
end
|
||
end
|
||
|
||
def brouillon
|
||
session.delete(:prefill_token)
|
||
session.delete(:prefill_params)
|
||
@dossier = dossier_with_champs
|
||
@dossier.validate(:champs_public_value)
|
||
end
|
||
|
||
def submit_brouillon
|
||
@dossier = dossier_with_champs(pj_template: false)
|
||
submit_dossier_and_compute_errors
|
||
|
||
if @dossier.errors.blank? && @dossier.can_passer_en_construction?
|
||
@dossier.passer_en_construction!
|
||
@dossier.process_declarative!
|
||
@dossier.process_sva_svr!
|
||
@dossier.groupe_instructeur.instructeurs.with_instant_email_dossier_notifications.each do |instructeur|
|
||
DossierMailer.notify_new_dossier_depose_to_instructeur(@dossier, instructeur.email).deliver_later
|
||
end
|
||
redirect_to merci_dossier_path(@dossier)
|
||
else
|
||
respond_to do |format|
|
||
format.html { render :brouillon }
|
||
format.turbo_stream
|
||
end
|
||
end
|
||
end
|
||
|
||
def extend_conservation
|
||
dossier.extend_conservation(dossier.procedure.duree_conservation_dossiers_dans_ds.months)
|
||
|
||
if dossier.hidden_by_reason == 'expired'
|
||
dossier.update!(hidden_by_administration_at: nil, hidden_by_user_at: nil, hidden_by_reason: nil)
|
||
end
|
||
|
||
flash[:notice] = t('views.users.dossiers.archived_dossier', duree_conservation_dossiers_dans_ds: dossier.procedure.duree_conservation_dossiers_dans_ds)
|
||
redirect_back(fallback_location: dossier_path(@dossier))
|
||
end
|
||
|
||
def modifier
|
||
@dossier = dossier_with_champs
|
||
end
|
||
|
||
# Transition to en_construction forks,
|
||
# so users editing en_construction dossiers won't completely break their changes.
|
||
# TODO: remove me after fork en_construction feature deploy (PR #8790)
|
||
def modifier_legacy
|
||
respond_to do |format|
|
||
format.turbo_stream do
|
||
flash.alert = "Une mise à jour de cette page est nécessaire pour poursuivre, veuillez la recharger (touche F5). Attention: le dernier champ modifié n’a pas été sauvegardé, vous devrez le ressaisir."
|
||
end
|
||
end
|
||
end
|
||
|
||
def submit_en_construction
|
||
@dossier = dossier_with_champs(pj_template: false)
|
||
editing_fork_origin = @dossier.editing_fork_origin
|
||
|
||
if cast_bool(params.dig(:dossier, :pending_correction))
|
||
editing_fork_origin.resolve_pending_correction
|
||
end
|
||
|
||
submit_dossier_and_compute_errors
|
||
|
||
if @dossier.errors.blank? && @dossier.can_passer_en_construction?
|
||
editing_fork_origin.merge_fork(@dossier)
|
||
editing_fork_origin.submit_en_construction!
|
||
|
||
redirect_to dossier_path(editing_fork_origin)
|
||
else
|
||
respond_to do |format|
|
||
format.html do
|
||
render :modifier
|
||
end
|
||
|
||
format.turbo_stream do
|
||
@to_show, @to_hide, @to_update = champs_to_turbo_update(champs_public_attributes_params, dossier.champs.filter(&:public?))
|
||
render :update, layout: false
|
||
end
|
||
end
|
||
end
|
||
end
|
||
|
||
def update
|
||
@dossier = dossier.en_construction? ? dossier.find_editing_fork(dossier.user) : dossier
|
||
@dossier = dossier_with_champs(pj_template: false)
|
||
@can_passer_en_construction_was, @can_passer_en_construction_is = @dossier.track_can_passer_en_construction do
|
||
update_dossier_and_compute_errors
|
||
end
|
||
|
||
respond_to do |format|
|
||
format.turbo_stream do
|
||
@to_show, @to_hide, @to_update = champs_to_turbo_update(champs_public_attributes_params, dossier.champs.filter(&:public?))
|
||
render :update, layout: false
|
||
end
|
||
end
|
||
end
|
||
|
||
def merci
|
||
@dossier = current_user.dossiers.includes(:procedure).find(params[:id])
|
||
end
|
||
|
||
def champ
|
||
@dossier = dossier_with_champs(pj_template: false)
|
||
type_de_champ = @dossier.find_type_de_champ_by_stable_id(params[:stable_id], :public)
|
||
champ = @dossier.project_champ(type_de_champ, params[:row_id])
|
||
|
||
respond_to do |format|
|
||
format.turbo_stream do
|
||
@to_show, @to_hide = []
|
||
@to_update = [champ]
|
||
|
||
render :update, layout: false
|
||
end
|
||
end
|
||
end
|
||
|
||
def create_commentaire
|
||
@commentaire = CommentaireService.create(current_user, dossier, commentaire_params)
|
||
|
||
if @commentaire.errors.empty?
|
||
@commentaire.dossier.update!(last_commentaire_updated_at: Time.zone.now)
|
||
|
||
flash.notice = t('.message_send')
|
||
redirect_to messagerie_dossier_path(dossier)
|
||
else
|
||
flash.now.alert = @commentaire.errors.full_messages
|
||
render :messagerie
|
||
end
|
||
end
|
||
|
||
def destroy
|
||
if dossier.can_be_deleted_by_user?
|
||
if current_user.owns?(dossier)
|
||
dossier.hide_and_keep_track!(current_user, :user_request)
|
||
elsif current_user.invite?(dossier)
|
||
current_user.invites.where(dossier:).destroy_all
|
||
end
|
||
flash.notice = t('users.dossiers.ask_deletion.soft_deleted_dossier')
|
||
redirect_to dossiers_path
|
||
else
|
||
flash.alert = t('users.dossiers.ask_deletion.undergoingreview')
|
||
redirect_to dossiers_path
|
||
end
|
||
end
|
||
|
||
def new
|
||
erase_user_location!
|
||
|
||
begin
|
||
procedure = if params[:brouillon]
|
||
Procedure.publiees.or(Procedure.brouillons).find(params[:procedure_id])
|
||
else
|
||
Procedure.publiees.find(params[:procedure_id])
|
||
end
|
||
rescue ActiveRecord::RecordNotFound
|
||
flash.alert = t('errors.messages.procedure_not_found')
|
||
return redirect_to dossiers_path
|
||
end
|
||
|
||
dossier = Dossier.new(
|
||
revision: params[:brouillon] ? procedure.draft_revision : procedure.active_revision,
|
||
user: current_user,
|
||
state: Dossier.states.fetch(:brouillon)
|
||
)
|
||
dossier.build_default_individual
|
||
dossier.save!
|
||
DossierMailer.with(dossier:).notify_new_draft.deliver_later
|
||
|
||
if dossier.procedure.for_individual
|
||
redirect_to identite_dossier_path(dossier)
|
||
else
|
||
redirect_to siret_dossier_path(id: dossier.id)
|
||
end
|
||
end
|
||
|
||
def dossier_for_help
|
||
dossier_id = params[:id] || params[:dossier_id]
|
||
@dossier || (dossier_id.present? && Dossier.visible_by_user.find_by(id: dossier_id.to_i))
|
||
end
|
||
|
||
def transferer
|
||
@transfer = DossierTransfer.new(dossiers: [dossier])
|
||
end
|
||
|
||
def transferer_all
|
||
@transfer = DossierTransfer.new(dossiers: current_user.dossiers)
|
||
end
|
||
|
||
def restore
|
||
dossier.restore(current_user)
|
||
flash.notice = t('users.dossiers.restore')
|
||
redirect_to dossiers_path
|
||
end
|
||
|
||
def clone
|
||
cloned_dossier = @dossier.clone
|
||
DossierMailer.with(dossier: cloned_dossier).notify_new_draft.deliver_later
|
||
flash.notice = t('users.dossiers.cloned_success')
|
||
redirect_to brouillon_dossier_path(cloned_dossier)
|
||
rescue ActiveRecord::RecordInvalid => e
|
||
flash.alert = e.record.errors.full_messages
|
||
redirect_to dossier_path(@dossier)
|
||
end
|
||
|
||
private
|
||
|
||
# if the status tab is filled, then this tab
|
||
# else first filled tab
|
||
# else en-cours
|
||
def statut(mes_dossiers, dossiers_traites, dossiers_invites, dossiers_supprimes_recemment, dossiers_supprimes_definitivement, dossier_transferes, dossiers_close_to_expiration, params_statut)
|
||
tabs = {
|
||
'en-cours' => mes_dossiers,
|
||
'traites' => dossiers_traites,
|
||
'dossiers-invites' => dossiers_invites,
|
||
'dossiers-supprimes-recemment' => dossiers_supprimes_recemment,
|
||
'dossiers-supprimes-definitivement' => dossiers_supprimes_definitivement,
|
||
'dossiers-transferes' => dossier_transferes,
|
||
'dossiers-expirant' => dossiers_close_to_expiration
|
||
}
|
||
|
||
if tabs[params_statut]&.present?
|
||
params_statut
|
||
else
|
||
tab = tabs.find { |_tab, scope| scope.present? }
|
||
tab&.first || 'en-cours'
|
||
end
|
||
end
|
||
|
||
def store_user_location!
|
||
store_location_for(:user, request.fullpath)
|
||
end
|
||
|
||
def erase_user_location!
|
||
clear_stored_location_for(:user)
|
||
end
|
||
|
||
def show_demarche_en_test_banner
|
||
if @dossier.present? && @dossier.revision.draft?
|
||
flash.now.alert = t('users.dossiers.test_procedure')
|
||
end
|
||
end
|
||
|
||
def ensure_dossier_can_be_updated
|
||
if !dossier.can_be_updated_by_user?
|
||
flash.alert = t('users.dossiers.no_longer_editable')
|
||
redirect_to dossier_path(dossier)
|
||
end
|
||
end
|
||
|
||
def ensure_dossier_can_be_filled
|
||
if !dossier.autorisation_donnees
|
||
if dossier.procedure.for_individual
|
||
flash.alert = t('users.dossiers.fill_identity.individual')
|
||
redirect_to identite_dossier_path(dossier)
|
||
else
|
||
flash.alert = t('users.dossiers.fill_identity.siret')
|
||
redirect_to siret_dossier_path(dossier)
|
||
end
|
||
end
|
||
end
|
||
|
||
def ensure_dossier_can_be_viewed
|
||
if dossier.brouillon?
|
||
redirect_to brouillon_dossier_path(dossier)
|
||
end
|
||
end
|
||
|
||
def page
|
||
[params[:page].to_i, 1].max
|
||
end
|
||
|
||
def champs_public_params
|
||
champ_attributes = [
|
||
:id,
|
||
:value,
|
||
:value_other,
|
||
:external_id,
|
||
:code,
|
||
:primary_value,
|
||
:secondary_value,
|
||
:numero_allocataire,
|
||
:code_postal,
|
||
:identifiant,
|
||
:numero_fiscal,
|
||
:reference_avis,
|
||
:ine,
|
||
:piece_justificative_file,
|
||
:code_departement,
|
||
:accreditation_number,
|
||
:accreditation_birthdate,
|
||
:feature,
|
||
value: []
|
||
]
|
||
# Strong attributes do not support records (indexed hash); they only support hashes with
|
||
# static keys. We create a static hash based on the available keys.
|
||
public_ids = params.dig(:dossier, :champs_public_attributes)&.keys || []
|
||
champs_public_attributes = public_ids.map { [_1, champ_attributes] }.to_h
|
||
params.require(:dossier).permit(champs_public_attributes:)
|
||
end
|
||
|
||
def champs_public_attributes_params
|
||
champs_public_params.fetch(:champs_public_attributes)
|
||
end
|
||
|
||
def dossier_scope
|
||
if action_name == 'update' || action_name == 'champ'
|
||
Dossier.visible_by_user.or(Dossier.for_procedure_preview).or(Dossier.for_editing_fork)
|
||
elsif action_name == 'restore'
|
||
Dossier.hidden_by_user
|
||
elsif action_name == 'extend_conservation'
|
||
Dossier.visible_by_user.or(Dossier.hidden_by_expired)
|
||
else
|
||
Dossier.visible_by_user
|
||
end
|
||
end
|
||
|
||
def dossier
|
||
@dossier ||= dossier_scope.find(params[:id] || params[:dossier_id]).tap do
|
||
set_sentry_dossier(_1)
|
||
end
|
||
end
|
||
|
||
def dossier_with_champs(pj_template: true)
|
||
DossierPreloader.load_one(dossier, pj_template:)
|
||
end
|
||
|
||
def set_dossier_as_editing_fork
|
||
@dossier = dossier.find_editing_fork(dossier.user)
|
||
|
||
return if @dossier.present?
|
||
|
||
flash[:alert] = t('users.dossiers.en_construction_submitted')
|
||
redirect_to dossier_path(dossier)
|
||
end
|
||
|
||
def update_dossier_and_compute_errors
|
||
@dossier.update_champs_attributes(champs_public_attributes_params, :public, updated_by: current_user.email)
|
||
if @dossier.champs.any?(&:changed_for_autosave?)
|
||
@dossier.last_champ_updated_at = Time.zone.now
|
||
|
||
if @dossier.champs_public.any? { _1.changed_for_autosave? && _1.used_by_routing_rules? }
|
||
RoutingEngine.compute(@dossier)
|
||
end
|
||
end
|
||
|
||
# We save the dossier without validating fields, and if it is successful and the client
|
||
# requests it, we ask for field validation errors.
|
||
if @dossier.save && params[:validate].present?
|
||
@dossier.valid?(:champs_public_value)
|
||
end
|
||
|
||
@dossier.errors
|
||
end
|
||
|
||
def submit_dossier_and_compute_errors
|
||
@dossier.validate(:champs_public_value)
|
||
@dossier.check_mandatory_and_visible_champs
|
||
|
||
if @dossier.editing_fork_origin&.pending_correction?
|
||
@dossier.editing_fork_origin.validate(:champs_public_value)
|
||
@dossier.editing_fork_origin.errors.where(:pending_correction).each do |error|
|
||
@dossier.errors.import(error)
|
||
end
|
||
end
|
||
end
|
||
|
||
def ensure_ownership!
|
||
if !current_user.owns?(dossier)
|
||
forbidden!
|
||
end
|
||
end
|
||
|
||
def ensure_ownership_or_invitation!
|
||
if !current_user.owns_or_invite?(dossier)
|
||
forbidden!
|
||
end
|
||
end
|
||
|
||
def forbid_invite_submission!
|
||
if !current_user.owns?(dossier)
|
||
forbidden!
|
||
end
|
||
end
|
||
|
||
def forbid_closed_submission!
|
||
if !dossier.can_transition_to_en_construction?
|
||
forbidden!
|
||
end
|
||
end
|
||
|
||
def forbidden!
|
||
flash[:alert] = t('users.dossiers.no_access_html', email: current_user.email)
|
||
redirect_to root_path
|
||
end
|
||
|
||
def render_siret_error(error_message)
|
||
flash.alert = error_message
|
||
render :siret
|
||
end
|
||
|
||
def dossier_params
|
||
params.require(:dossier).permit(:for_tiers, :mandataire_first_name, :mandataire_last_name, individual_attributes: [:gender, :nom, :prenom, :birthdate, :email, :notification_method])
|
||
end
|
||
|
||
def siret_params
|
||
params.require(:user).permit(:siret)
|
||
end
|
||
|
||
def commentaire_params
|
||
params.require(:commentaire).permit(:body, piece_jointe: [])
|
||
end
|
||
end
|
||
end
|