/
application_controller.rb
112 lines (87 loc) · 2.52 KB
/
application_controller.rb
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
require 'goldberg_filters'
class ApplicationController < ActionController::Base
include AccessHelper
session ||= Hash.new
helper_method :current_user_session, :current_user, :current_user_role?
protect_from_forgery with: :exception
before_filter :set_time_zone
before_filter :authorize
def self.verify(args)
end
def current_user_role?
current_user.role.name
end
def current_role_name
current_role.try :name
end
def current_role
current_user.try :role
end
helper_method :current_user_role?
def user_for_paper_trail
if session[:user]
session[:user].try :id
else
nil
end
end
def undo_link(message)
@version = Version.where(['whodunnit = ?',session[:user].id]).last
if @version.try(:created_at) && Time.now - @version.created_at < 5.0
@link_name = params[:redo] == "true" ? "redo" : "undo"
flash[:notice] = message + "<a href = #{url_for(:controller => :versions,:action => :revert,:id => @version.id,:redo => !params[:redo])}>#{@link_name}</a>"
end
end
private
def current_user
@current_user ||= session[:user]
end
helper_method :current_user
def current_user_role
current_user.role
end
alias_method :current_user_role?, :current_user_role
def logged_in?
current_user
end
def redirect_back(default = :root)
redirect_to request.env['HTTP_REFERER'] ? :back : default
end
def set_time_zone
Time.zone = current_user.timezonepref if current_user
end
private
def require_user
invalid_login_status('in') unless current_user
end
def require_no_user
invalid_login_status('out') if current_user
end
def invalid_login_status(status)
flash[:notice] = "You must be logged #{status} to access this page"
redirect_back
end
protected
def set_up_display_options(object_type)
# Create a set that will be used to populate the dropbox when a user lists a set of objects (assgts., questionnaires, etc.)
# Get the Instructor::QUESTIONNAIRE constant
@display_options ||= eval "#{current_user_role.class}::#{object_type}"
end
# Use this method to validate the current user in order to avoid allowing users
# to see unauthorized data.
# Ex: return unless current_user_id?(params[:user_id])
def current_user_id?(user_id)
current_user.try(:id) == user_id
end
def denied(reason=nil)
if reason
redirect_to "/denied?reason=#{reason}"
else
redirect_to "/denied"
end
end
private
def record_not_found
redirect_to tree_display_index_path
end
end