44 lines
1.2 KiB
Ruby
44 lines
1.2 KiB
Ruby
module Users
|
|
class ProfilController < UserController
|
|
before_action :redirect_if_instructeur,
|
|
only: :update_email,
|
|
if: -> { instructeur_signed_in? }
|
|
|
|
def show
|
|
end
|
|
|
|
def renew_api_token
|
|
@token = current_administrateur.renew_api_token
|
|
flash.now.notice = 'Votre jeton a été regénéré.'
|
|
render :show
|
|
end
|
|
|
|
def update_email
|
|
if current_user.update(update_email_params)
|
|
flash.notice = t('devise.registrations.update_needs_confirmation')
|
|
elsif current_user.errors&.details&.dig(:email)&.any? { |e| e[:error] == :taken }
|
|
UserMailer.account_already_taken(current_user, requested_email).deliver_later
|
|
# avoid leaking information about whether an account with this email exists or not
|
|
flash.notice = t('devise.registrations.update_needs_confirmation')
|
|
else
|
|
flash.alert = current_user.errors.full_messages
|
|
end
|
|
|
|
redirect_to profil_path
|
|
end
|
|
|
|
private
|
|
|
|
def update_email_params
|
|
params.require(:user).permit(:email)
|
|
end
|
|
|
|
def requested_email
|
|
update_email_params[:email]
|
|
end
|
|
|
|
def redirect_if_instructeur
|
|
redirect_to profil_path
|
|
end
|
|
end
|
|
end
|