/
search_controller.rb
50 lines (44 loc) 路 1.5 KB
/
search_controller.rb
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
module Spree
module Admin
class SearchController < Spree::Admin::BaseController
respond_to :json
layout false
# http://spreecommerce.com/blog/2010/11/02/json-hijacking-vulnerability/
before_action :check_json_authenticity, only: :index
# TODO: Clean this up by moving searching out to user_class_extensions
# And then JSON building with something like Active Model Serializers
def users
if params[:ids]
@users = Spree.user_class.where(id: params[:ids].split(',').flatten)
else
@users = Spree.user_class.ransack({
m: 'or',
email_start: params[:q],
ship_address_firstname_start: params[:q],
ship_address_lastname_start: params[:q],
bill_address_firstname_start: params[:q],
bill_address_lastname_start: params[:q]
}).result.limit(10)
end
end
def products
if params[:ids]
@products = Product.where(id: params[:ids].split(",").flatten)
else
@products = Product.ransack(params[:q]).result
end
@products = @products.distinct.page(params[:page]).per(params[:per_page])
expires_in 15.minutes, public: true
headers['Surrogate-Control'] = "max-age=#{15.minutes}"
end
def tags
@tags =
if params[:ids]
Tag.where(id: params[:ids].split(",").flatten)
else
Tag.ransack(params[:q]).result
end
end
end
end
end