86 lines
2.4 KiB
Ruby
86 lines
2.4 KiB
Ruby
class Backoffice::AvisController < ApplicationController
|
|
before_action :authenticate_gestionnaire!, except: [:sign_up, :create_gestionnaire]
|
|
before_action :redirect_if_no_sign_up_needed, only: [:sign_up]
|
|
before_action :check_avis_exists_and_email_belongs_to_avis, only: [:sign_up, :create_gestionnaire]
|
|
|
|
def create
|
|
avis = Avis.new(create_params.merge(claimant: current_gestionnaire, dossier: dossier, confidentiel: true))
|
|
|
|
if avis.save
|
|
flash[:notice] = "Votre demande d'avis a bien été envoyée à #{avis.email_to_display}"
|
|
end
|
|
|
|
redirect_to backoffice_dossier_path(dossier)
|
|
end
|
|
|
|
def update
|
|
if avis.update(update_params)
|
|
NotificationService.new('avis', params[:dossier_id]).notify
|
|
flash[:notice] = 'Merci, votre avis a été enregistré.'
|
|
end
|
|
|
|
redirect_to backoffice_dossier_path(avis.dossier_id)
|
|
end
|
|
|
|
def sign_up
|
|
@email = params[:email]
|
|
@dossier = Avis.includes(:dossier).find(params[:id]).dossier
|
|
|
|
render layout: 'new_application'
|
|
end
|
|
|
|
def create_gestionnaire
|
|
email = params[:email]
|
|
password = params['gestionnaire']['password']
|
|
|
|
gestionnaire = Gestionnaire.new(email: email, password: password)
|
|
|
|
if gestionnaire.save
|
|
sign_in(gestionnaire, scope: :gestionnaire)
|
|
Avis.link_avis_to_gestionnaire(gestionnaire)
|
|
avis = Avis.find(params[:id])
|
|
redirect_to url_for(avis_index_path)
|
|
else
|
|
flash[:alert] = gestionnaire.errors.full_messages
|
|
redirect_to url_for(avis_sign_up_path(params[:id], email))
|
|
end
|
|
end
|
|
|
|
private
|
|
|
|
def dossier
|
|
current_gestionnaire.dossiers.find(params[:dossier_id])
|
|
end
|
|
|
|
def avis
|
|
current_gestionnaire.avis.find(params[:id])
|
|
end
|
|
|
|
def create_params
|
|
params.require(:avis).permit(:email, :introduction)
|
|
end
|
|
|
|
def update_params
|
|
params.require(:avis).permit(:answer)
|
|
end
|
|
|
|
def redirect_if_no_sign_up_needed
|
|
avis = Avis.find(params[:id])
|
|
|
|
if current_gestionnaire.present?
|
|
# a gestionnaire is authenticated ... lets see if it can view the dossier
|
|
|
|
redirect_to backoffice_dossier_url(avis.dossier)
|
|
elsif avis.gestionnaire.present? && avis.gestionnaire.email == params[:email]
|
|
# the avis gestionnaire has already signed up and it sould sign in
|
|
|
|
redirect_to new_gestionnaire_session_url
|
|
end
|
|
end
|
|
|
|
def check_avis_exists_and_email_belongs_to_avis
|
|
if !Avis.avis_exists_and_email_belongs_to_avis?(params[:id], params[:email])
|
|
redirect_to url_for(root_path)
|
|
end
|
|
end
|
|
end
|