91f1722088
Now that `Administrateur.email` is merely an alias to `administrateur.user.email`, and we changed every occurence of `administrateurs.pluck(:email)` to `administrateurs.map(&:email)`, the new version using `map` may cause N+1 queries if the users have not been preloaded. It makes sense to always preload the user when fetching an Administrateur: - Administrateur and User have a strongly coupled relationship - It avoids N+1 queries everywhere in the app Of course fetching an administrateur without needing its user will now do an unecessary fetch of the associated user. But it seems better than leaving a risk of N+1 queries in many places.
91 lines
2.6 KiB
Ruby
91 lines
2.6 KiB
Ruby
class Administrateur < ApplicationRecord
|
|
self.ignored_columns = ['email', 'features', 'encrypted_password', 'reset_password_token', 'reset_password_sent_at', 'remember_created_at', 'sign_in_count', 'current_sign_in_at', 'last_sign_in_at', 'current_sign_in_ip', 'last_sign_in_ip', 'failed_attempts', 'unlock_token', 'locked_at']
|
|
include ActiveRecord::SecureToken
|
|
|
|
has_and_belongs_to_many :instructeurs
|
|
has_many :administrateurs_procedures
|
|
has_many :procedures, through: :administrateurs_procedures
|
|
has_many :services
|
|
|
|
has_one :user, dependent: :nullify
|
|
|
|
default_scope { eager_load(:user) }
|
|
|
|
scope :inactive, -> { joins(:user).where(users: { last_sign_in_at: nil }) }
|
|
scope :with_publiees_ou_closes, -> { joins(:procedures).where(procedures: { aasm_state: [:publiee, :close, :depubliee] }) }
|
|
|
|
def self.by_email(email)
|
|
Administrateur.find_by(users: { email: email })
|
|
end
|
|
|
|
def email
|
|
user.email
|
|
end
|
|
|
|
# validate :password_complexity, if: Proc.new { |a| Devise.password_length.include?(a.password.try(:size)) }
|
|
|
|
def password_complexity
|
|
if password.present? && ZxcvbnService.new(password).score < PASSWORD_COMPLEXITY_FOR_ADMIN
|
|
errors.add(:password, :not_strong)
|
|
end
|
|
end
|
|
|
|
def self.find_inactive_by_token(reset_password_token)
|
|
self.inactive.with_reset_password_token(reset_password_token)
|
|
end
|
|
|
|
def self.find_inactive_by_id(id)
|
|
self.inactive.find(id)
|
|
end
|
|
|
|
def renew_api_token
|
|
api_token = Administrateur.generate_unique_secure_token
|
|
encrypted_token = BCrypt::Password.create(api_token)
|
|
update(encrypted_token: encrypted_token)
|
|
api_token
|
|
end
|
|
|
|
def valid_api_token?(api_token)
|
|
BCrypt::Password.new(encrypted_token) == api_token
|
|
rescue BCrypt::Errors::InvalidHash
|
|
false
|
|
end
|
|
|
|
def registration_state
|
|
if user.active?
|
|
'Actif'
|
|
elsif user.reset_password_period_valid?
|
|
'En attente'
|
|
else
|
|
'Expiré'
|
|
end
|
|
end
|
|
|
|
def invitation_expired?
|
|
!user.active? && !user.reset_password_period_valid?
|
|
end
|
|
|
|
def owns?(procedure)
|
|
procedure.administrateurs.include?(self)
|
|
end
|
|
|
|
def instructeur
|
|
user.instructeur
|
|
end
|
|
|
|
def can_be_deleted?
|
|
procedures.all? { |p| p.administrateurs.count > 1 }
|
|
end
|
|
|
|
def delete_and_transfer_services
|
|
if !can_be_deleted?
|
|
fail "Impossible de supprimer cet administrateur car il a des démarches où il est le seul administrateur"
|
|
end
|
|
|
|
procedures.each do |procedure|
|
|
next_administrateur = procedure.administrateurs.where.not(id: self.id).first
|
|
procedure.service.update(administrateur: next_administrateur)
|
|
end
|
|
destroy
|
|
end
|
|
end
|