52 lines
1.5 KiB
Ruby
52 lines
1.5 KiB
Ruby
class AccountsController < ApplicationController
|
|
include SessionMethods
|
|
include UserMethods
|
|
|
|
layout "site"
|
|
|
|
before_action :authorize_web
|
|
before_action :set_locale
|
|
|
|
authorize_resource :class => false
|
|
|
|
before_action :check_database_readable
|
|
before_action :check_database_writable, :only => [:update]
|
|
before_action :allow_thirdparty_images, :only => [:edit, :update]
|
|
|
|
def edit
|
|
@tokens = current_user.oauth_tokens.authorized
|
|
|
|
append_content_security_policy_directives(
|
|
:form_action => %w[accounts.google.com *.facebook.com login.live.com github.com meta.wikimedia.org]
|
|
)
|
|
|
|
if errors = session.delete(:user_errors)
|
|
errors.each do |attribute, error|
|
|
current_user.errors.add(attribute, error)
|
|
end
|
|
end
|
|
@title = t ".title"
|
|
end
|
|
|
|
def update
|
|
@tokens = current_user.oauth_tokens.authorized
|
|
|
|
append_content_security_policy_directives(
|
|
:form_action => %w[accounts.google.com *.facebook.com login.live.com github.com meta.wikimedia.org]
|
|
)
|
|
|
|
if params[:user][:auth_provider].blank? ||
|
|
(params[:user][:auth_provider] == current_user.auth_provider &&
|
|
params[:user][:auth_uid] == current_user.auth_uid)
|
|
update_user(current_user, params)
|
|
if current_user.errors.count.zero?
|
|
redirect_to edit_account_path
|
|
else
|
|
render :edit
|
|
end
|
|
else
|
|
session[:new_user_settings] = params
|
|
redirect_to auth_url(params[:user][:auth_provider], params[:user][:auth_uid]), :status => :temporary_redirect
|
|
end
|
|
end
|
|
end
|