demarches-normaliennes/app/controllers/users
Sébastien Carceles 20136b7ac8
feat(demarche): create and prefill a dossier with POST request (#8233)
* add base controller for public api

* add dossiers controller with basic checks

* create the dossier

* ensure content-type is json

* prefill dossier with given values

* mark a dossier as prefilled

When a dossier is prefilled, it's allowed not to have a user.

Plus, we add a secure token to the dossier, which we will need later to set a
user after sign in / sign up.

* set user as owner of an orphan prefilled dossier

When a visitor comes from the dossier_url answered by the public api,
the dossier is orphan:
- when the user is already authenticated: they become the owner
- when the user is not authenticated: they can sign in / sign up / france_connect
and then they become the owner

So here is the procedure:
- allow to sign in / sign up / france connect when user is unauthenticated
- set dossier ownership when the dossier is orphan
- check dossier ownership when the dossier is not
- redirect to brouillon path when user is signed in and owner

* mark the dossier as prefilled when it's prefilled
(even with a GET request, because it will be useful later on, for
exmample in order to cleanup the unused prefilled dossiers)

* system spec: prefilling dossier with post request
2023-01-03 14:46:10 +01:00
..
activate_controller.rb ActivateController: add tests and clean a bit 2019-08-16 11:22:36 +02:00
commencer_controller.rb feat(demarche): create and prefill a dossier with POST request (#8233) 2023-01-03 14:46:10 +01:00
confirmations_controller.rb feat(demarche): create and prefill a dossier with POST request (#8233) 2023-01-03 14:46:10 +01:00
demarches_controller.rb Add Style/CollectionMethods to rubocop 2019-09-12 14:48:18 +02:00
dossiers_controller.rb fix(dossier): explicitly send draft notification email 2022-12-26 22:02:33 +00:00
passwords_controller.rb devise: use password_complexity in User::PasswordsController 2021-09-09 09:40:39 -05:00
profil_controller.rb feat(api_token): add profile api token card 2022-12-07 18:19:37 +01:00
registrations_controller.rb feat(demarche): create and prefill a dossier with POST request (#8233) 2023-01-03 14:46:10 +01:00
sessions_controller.rb avoid phishing 2021-12-15 13:51:49 +01:00
statistiques_controller.rb a user can now see stats for closed procedure 2021-07-07 15:00:38 +02:00
transfers_controller.rb chore(dossier_transfer): notice after transfer invitation sent 2022-11-25 13:34:12 +01:00
user_controller.rb app: rename new_user to users 2019-03-25 10:56:39 +01:00