metamaps--metamaps/app/controllers/maps_controller.rb

class MapsController < ApplicationController

    before_action :require_user, only: [:create, :update, :screenshot, :events, :destroy]
    after_action :verify_authorized, except: [:activemaps, :featuredmaps, :mymaps, :usermaps, :events]
    after_action :verify_policy_scoped, only: [:activemaps, :featuredmaps, :mymaps, :usermaps]

    respond_to :html, :json, :csv

    autocomplete :map, :name, :full => true, :extra_data => [:user_id]

    # GET /explore/active
    def activemaps
        page = params[:page].present? ? params[:page] : 1
        @maps = policy_scope(Map).order("updated_at DESC")
          .page(page).per(20)

        respond_to do |format|
            format.html { 
              # root url => main/home. main/home renders maps/activemaps view.
              redirect_to root_url and return if authenticated?
              respond_with(@maps, @user) 
            }
            format.json { render json: @maps }
        end
    end

    # GET /explore/featured
    def featuredmaps
        page = params[:page].present? ? params[:page] : 1
        @maps = policy_scope(
          Map.where("maps.featured = ? AND maps.permission != ?",
                    true, "private")
        ).order("updated_at DESC").page(page).per(20)

        respond_to do |format|
            format.html { respond_with(@maps, @user) }
            format.json { render json: @maps }
        end
    end

    # GET /explore/mine
    def mymaps
        return redirect_to activemaps_url if !authenticated?

        page = params[:page].present? ? params[:page] : 1
        @maps = policy_scope(
          Map.where("maps.user_id = ?", current_user.id)
        ).order("updated_at DESC").page(page).per(20)

        respond_to do |format|
            format.html { respond_with(@maps, @user) }
            format.json { render json: @maps }
        end
    end

    # GET /explore/mapper/:id
    def usermaps
        page = params[:page].present? ? params[:page] : 1
        @user = User.find(params[:id])
        @maps = policy_scope(Map.where(user: @user))
          .order("updated_at DESC").page(page).per(20)

        respond_to do |format|
            format.html { respond_with(@maps, @user) }
            format.json { render json: @maps }
        end
    end

    # GET maps/:id
    def show
        @map = Map.find(params[:id])
        authorize @map

        respond_to do |format|
            format.html {
                @allmappers = @map.contributors
                @alltopics = @map.topics.to_a.delete_if {|t| t.permission == "private" && (!authenticated? || (authenticated? && current_user.id != t.user_id)) }
                @allsynapses = @map.synapses.to_a.delete_if {|s| s.permission == "private" && (!authenticated? || (authenticated? && current_user.id != s.user_id)) }
                @allmappings = @map.mappings.to_a.delete_if {|m| 
                    object = m.mappable
                    !object || (object.permission == "private" && (!authenticated? || (authenticated? && current_user.id != object.user_id)))
                }
                @allmessages = @map.messages.sort_by(&:created_at)

                respond_with(@allmappers, @allmappings, @allsynapses, @alltopics, @allmessages, @map)
            }
            format.json { render json: @map }
            format.csv { redirect_to action: :export, format: :csv }
            format.xls { redirect_to action: :export, format: :xls }
        end
    end

    # GET maps/:id/export
    def export
      map = Map.find(params[:id])
      authorize map
      exporter = MapExportService.new(current_user, map)
      respond_to do |format|
        format.json { render json: exporter.json }
        format.csv { send_data exporter.csv }
        format.xls { @spreadsheet = exporter.xls }
      end
    end

    # POST maps/:id/events/:event
    def events
      map = Map.find(params[:id])
      authorize map

      valid_event = false
      if params[:event] == 'conversation'
        Events::ConversationStartedOnMap.publish!(map, current_user)
        valid_event = true
      end

      respond_to do |format|
        format.json { 
          head :ok if valid_event
          head :bad_request if not valid_event
        }
      end
    end

    # GET maps/:id/contains
    def contains
        @map = Map.find(params[:id])
        authorize @map

        @allmappers = @map.contributors
        @alltopics = @map.topics.to_a.delete_if {|t| t.permission == "private" && (!authenticated? || (authenticated? && current_user.id != t.user_id)) }
        @allsynapses = @map.synapses.to_a.delete_if {|s| s.permission == "private" && (!authenticated? || (authenticated? && current_user.id != s.user_id)) }
        @allmappings = @map.mappings.to_a.delete_if {|m| 
            object = m.mappable
            !object || (object.permission == "private" && (!authenticated? || (authenticated? && current_user.id != object.user_id)))
        }

        @json = Hash.new()
        @json['map'] = @map
        @json['topics'] = @alltopics
        @json['synapses'] = @allsynapses
        @json['mappings'] = @allmappings
        @json['mappers'] = @allmappers
        @json['messages'] = @map.messages.sort_by(&:created_at)

        respond_to do |format|
            format.json { render json: @json }
        end
    end

    # POST maps
    def create
        @user = current_user
        @map = Map.new()
        @map.name = params[:name]
        @map.desc = params[:desc]
        @map.permission = params[:permission]
        @map.user = @user
        @map.arranged = false

        if params[:topicsToMap]
          @all = params[:topicsToMap]
          @all = @all.split(',')
          @all.each do |topic|
            topic = topic.split('/')
            mapping = Mapping.new
            mapping.map = @map
            mapping.user = @user
            mapping.mappable = Topic.find(topic[0])
            mapping.xloc = topic[1]
            mapping.yloc = topic[2]
            authorize mapping, :create?
            mapping.save
          end

          if params[:synapsesToMap]
            @synAll = params[:synapsesToMap]
            @synAll = @synAll.split(',')
            @synAll.each do |synapse_id|
              mapping = Mapping.new
              mapping.map = @map
              mapping.user = @user
              mapping.mappable = Synapse.find(synapse_id)
              authorize mapping, :create?
              mapping.save
            end
          end

          @map.arranged = true
        end

        authorize @map

        if @map.save
          respond_to do |format|
            format.json { render :json => @map }
          end
        else
          respond_to do |format|
            format.json { render :json => "invalid params" }
          end
        end
    end

    # PUT maps/:id
    def update
        @map = Map.find(params[:id])
        authorize @map

        respond_to do |format|
            if @map.update_attributes(map_params)
                format.json { head :no_content }
            else
                format.json { render json: @map.errors, status: :unprocessable_entity }
            end
        end
    end

    # POST maps/:id/upload_screenshot
    def screenshot
      @map = Map.find(params[:id])
      authorize @map

      png = Base64.decode64(params[:encoded_image]['data:image/png;base64,'.length .. -1])
      StringIO.open(png) do |data|
        data.class.class_eval { attr_accessor :original_filename, :content_type }
        data.original_filename = "map-" + @map.id.to_s + "-screenshot.png"
        data.content_type = "image/png"
        @map.screenshot = data
      end
          
      if @map.save
        render :json => {:message => "Successfully uploaded the map screenshot."}
      else
        render :json => {:message => "Failed to upload image."}
      end
    end

    # DELETE maps/:id
    def destroy
      @map = Map.find(params[:id])
      authorize @map

      @map.delete

      respond_to do |format|
        format.json do
          head :no_content
        end
      end
    end

    private

    # Never trust parameters from the scary internet, only allow the white list through.
    def map_params
      params.require(:map).permit(:id, :name, :arranged, :desc, :permission)
    end
end
added maps, permissions, show user cards 2012-10-26 10:04:52 +00:00			`class MapsController < ApplicationController`
Merge branch 'feature/pundit' into develop 2016-03-12 10:26:06 +00:00
added an event for conversations starting (#547) * added an event for conversations starting * switch to post 2016-04-14 18:35:28 +00:00			`before_action :require_user, only: [:create, :update, :screenshot, :events, :destroy]`
			`after_action :verify_authorized, except: [:activemaps, :featuredmaps, :mymaps, :usermaps, :events]`
changess for pundit 2016-03-11 22:37:32 +00:00			`after_action :verify_policy_scoped, only: [:activemaps, :featuredmaps, :mymaps, :usermaps]`
got rgraph working again 2014-07-31 01:10:10 +00:00
implement csv/xls export 2016-02-05 09:49:59 +00:00			`respond_to :html, :json, :csv`
got rgraph working again 2014-07-31 01:10:10 +00:00
			`autocomplete :map, :name, :full => true, :extra_data => [:user_id]`

changed user image settings. added mapper profile page 2014-11-25 20:06:30 +00:00			`# GET /explore/active`
factor maps#index into 4 separate functions 2016-02-13 09:42:36 +00:00			`def activemaps`
			`page = params[:page].present? ? params[:page] : 1`
implement five policies into their controllers 2016-03-11 14:10:31 +00:00			`@maps = policy_scope(Map).order("updated_at DESC")`
			`.page(page).per(20)`
factor maps#index into 4 separate functions 2016-02-13 09:42:36 +00:00
			`respond_to do \|format\|`
json response was broken 2016-03-12 01:58:13 +00:00			`format.html {`
			`# root url => main/home. main/home renders maps/activemaps view.`
			`redirect_to root_url and return if authenticated?`
			`respond_with(@maps, @user)`
			`}`
factor maps#index into 4 separate functions 2016-02-13 09:42:36 +00:00			`format.json { render json: @maps }`
			`end`
			`end`

changed user image settings. added mapper profile page 2014-11-25 20:06:30 +00:00			`# GET /explore/featured`
factor maps#index into 4 separate functions 2016-02-13 09:42:36 +00:00			`def featuredmaps`
			`page = params[:page].present? ? params[:page] : 1`
implement five policies into their controllers 2016-03-11 14:10:31 +00:00			`@maps = policy_scope(`
			`Map.where("maps.featured = ? AND maps.permission != ?",`
			`true, "private")`
			`).order("updated_at DESC").page(page).per(20)`
factor maps#index into 4 separate functions 2016-02-13 09:42:36 +00:00
			`respond_to do \|format\|`
update map index views 2016-02-28 05:13:44 +00:00			`format.html { respond_with(@maps, @user) }`
factor maps#index into 4 separate functions 2016-02-13 09:42:36 +00:00			`format.json { render json: @maps }`
			`end`
			`end`

			`# GET /explore/mine`
			`def mymaps`
			`return redirect_to activemaps_url if !authenticated?`
got rgraph working again 2014-07-31 01:10:10 +00:00
typo 2016-02-09 03:26:42 +00:00			`page = params[:page].present? ? params[:page] : 1`
implement five policies into their controllers 2016-03-11 14:10:31 +00:00			`@maps = policy_scope(`
			`Map.where("maps.user_id = ?", current_user.id)`
			`).order("updated_at DESC").page(page).per(20)`
got rgraph working again 2014-07-31 01:10:10 +00:00
factor maps#index into 4 separate functions 2016-02-13 09:42:36 +00:00			`respond_to do \|format\|`
update map index views 2016-02-28 05:13:44 +00:00			`format.html { respond_with(@maps, @user) }`
factor maps#index into 4 separate functions 2016-02-13 09:42:36 +00:00			`format.json { render json: @maps }`
got rgraph working again 2014-07-31 01:10:10 +00:00			`end`
factor maps#index into 4 separate functions 2016-02-13 09:42:36 +00:00			`end`

			`# GET /explore/mapper/:id`
			`def usermaps`
			`page = params[:page].present? ? params[:page] : 1`
			`@user = User.find(params[:id])`
implement five policies into their controllers 2016-03-11 14:10:31 +00:00			`@maps = policy_scope(Map.where(user: @user))`
			`.order("updated_at DESC").page(page).per(20)`
got rgraph working again 2014-07-31 01:10:10 +00:00
			`respond_to do \|format\|`
update map index views 2016-02-28 05:13:44 +00:00			`format.html { respond_with(@maps, @user) }`
first draft of explore maps working 2014-08-10 17:06:58 +00:00			`format.json { render json: @maps }`
got rgraph working again 2014-07-31 01:10:10 +00:00			`end`
restyled PAQ and Request pages. 2014-02-10 04:36:23 +00:00			`end`
got rgraph working again 2014-07-31 01:10:10 +00:00
			`# GET maps/:id`
			`def show`
implement five policies into their controllers 2016-03-11 14:10:31 +00:00			`@map = Map.find(params[:id])`
changess for pundit 2016-03-11 22:37:32 +00:00			`authorize @map`
got rgraph working again 2014-07-31 01:10:10 +00:00
got radial view working 2014-08-11 22:57:34 +00:00			`respond_to do \|format\|`
messages weren't being displayed in order 2016-02-29 23:55:00 +00:00			`format.html {`
got radial view working 2014-08-11 22:57:34 +00:00			`@allmappers = @map.contributors`
implement main_policy (headless). also remove all @current references 2016-02-28 08:53:59 +00:00			`@alltopics = @map.topics.to_a.delete_if {\|t\| t.permission == "private" && (!authenticated? \|\| (authenticated? && current_user.id != t.user_id)) }`
			`@allsynapses = @map.synapses.to_a.delete_if {\|s\| s.permission == "private" && (!authenticated? \|\| (authenticated? && current_user.id != s.user_id)) }`
delete_if threw errors, so convert things to arrays for it 2015-09-19 09:08:12 +00:00			`@allmappings = @map.mappings.to_a.delete_if {\|m\|`
change from category/topic_id/synapse_id to mappable_type/mappable_id 2015-10-02 08:28:45 +00:00			`object = m.mappable`
implement main_policy (headless). also remove all @current references 2016-02-28 08:53:59 +00:00			`!object \|\| (object.permission == "private" && (!authenticated? \|\| (authenticated? && current_user.id != object.user_id)))`
added filtering back to topic view 2014-11-11 07:23:39 +00:00			`}`
messages weren't being displayed in order 2016-02-29 23:55:00 +00:00			`@allmessages = @map.messages.sort_by(&:created_at)`
got radial view working 2014-08-11 22:57:34 +00:00
messages weren't being displayed in order 2016-02-29 23:55:00 +00:00			`respond_with(@allmappers, @allmappings, @allsynapses, @alltopics, @allmessages, @map)`
got radial view working 2014-08-11 22:57:34 +00:00			`}`
			`format.json { render json: @map }`
fix a few embarassing errors - export is working 2016-03-26 07:21:55 +00:00			`format.csv { redirect_to action: :export, format: :csv }`
			`format.xls { redirect_to action: :export, format: :xls }`
got radial view working 2014-08-11 22:57:34 +00:00			`end`
			`end`

DRY map exporting with policy_scoping 2016-03-26 03:31:55 +00:00			`# GET maps/:id/export`
			`def export`
			`map = Map.find(params[:id])`
			`authorize map`
fix a few embarassing errors - export is working 2016-03-26 07:21:55 +00:00			`exporter = MapExportService.new(current_user, map)`
DRY map exporting with policy_scoping 2016-03-26 03:31:55 +00:00			`respond_to do \|format\|`
			`format.json { render json: exporter.json }`
			`format.csv { send_data exporter.csv }`
			`format.xls { @spreadsheet = exporter.xls }`
			`end`
			`end`

added an event for conversations starting (#547) * added an event for conversations starting * switch to post 2016-04-14 18:35:28 +00:00			`# POST maps/:id/events/:event`
			`def events`
			`map = Map.find(params[:id])`
			`authorize map`

			`valid_event = false`
			`if params[:event] == 'conversation'`
			`Events::ConversationStartedOnMap.publish!(map, current_user)`
			`valid_event = true`
			`end`

			`respond_to do \|format\|`
			`format.json {`
			`head :ok if valid_event`
			`head :bad_request if not valid_event`
			`}`
			`end`
			`end`
DRY map exporting with policy_scoping 2016-03-26 03:31:55 +00:00
got radial view working 2014-08-11 22:57:34 +00:00			`# GET maps/:id/contains`
			`def contains`
implement five policies into their controllers 2016-03-11 14:10:31 +00:00			`@map = Map.find(params[:id])`
changess for pundit 2016-03-11 22:37:32 +00:00			`authorize @map`
got radial view working 2014-08-11 22:57:34 +00:00
Filter box coding changes, Full implementgit add . 2014-08-04 16:20:16 +00:00			`@allmappers = @map.contributors`
implement main_policy (headless). also remove all @current references 2016-02-28 08:53:59 +00:00			`@alltopics = @map.topics.to_a.delete_if {\|t\| t.permission == "private" && (!authenticated? \|\| (authenticated? && current_user.id != t.user_id)) }`
			`@allsynapses = @map.synapses.to_a.delete_if {\|s\| s.permission == "private" && (!authenticated? \|\| (authenticated? && current_user.id != s.user_id)) }`
delete_if threw errors, so convert things to arrays for it 2015-09-19 09:08:12 +00:00			`@allmappings = @map.mappings.to_a.delete_if {\|m\|`
change from category/topic_id/synapse_id to mappable_type/mappable_id 2015-10-02 08:28:45 +00:00			`object = m.mappable`
implement main_policy (headless). also remove all @current references 2016-02-28 08:53:59 +00:00			`!object \|\| (object.permission == "private" && (!authenticated? \|\| (authenticated? && current_user.id != object.user_id)))`
added filtering back to topic view 2014-11-11 07:23:39 +00:00			`}`
first draft of explore maps working 2014-08-10 17:06:58 +00:00
			`@json = Hash.new()`
			`@json['map'] = @map`
			`@json['topics'] = @alltopics`
			`@json['synapses'] = @allsynapses`
			`@json['mappings'] = @allmappings`
			`@json['mappers'] = @allmappers`
messages weren't being displayed in order 2016-02-29 23:55:00 +00:00			`@json['messages'] = @map.messages.sort_by(&:created_at)`
got rgraph working again 2014-07-31 01:10:10 +00:00
			`respond_to do \|format\|`
first draft of explore maps working 2014-08-10 17:06:58 +00:00			`format.json { render json: @json }`
got rgraph working again 2014-07-31 01:10:10 +00:00			`end`
made it so that only synapses can be created on topic pages, not new topics. Restructured the URL address system 2012-12-21 23:07:13 +00:00			`end`
got rgraph working again 2014-07-31 01:10:10 +00:00
			`# POST maps`
			`def create`
			`@user = current_user`
			`@map = Map.new()`
			`@map.name = params[:name]`
			`@map.desc = params[:desc]`
			`@map.permission = params[:permission]`
			`@map.user = @user`
messages weren't being displayed in order 2016-02-29 23:55:00 +00:00			`@map.arranged = false`
got rgraph working again 2014-07-31 01:10:10 +00:00
			`if params[:topicsToMap]`
fix map forking (fix #540) 2016-04-20 00:51:38 +00:00			`@all = params[:topicsToMap]`
			`@all = @all.split(',')`
			`@all.each do \|topic\|`
			`topic = topic.split('/')`
			`mapping = Mapping.new`
			`mapping.map = @map`
			`mapping.user = @user`
			`mapping.mappable = Topic.find(topic[0])`
			`mapping.xloc = topic[1]`
			`mapping.yloc = topic[2]`
			`authorize mapping, :create?`
			`mapping.save`
			`end`
got rgraph working again 2014-07-31 01:10:10 +00:00
fix map forking (fix #540) 2016-04-20 00:51:38 +00:00			`if params[:synapsesToMap]`
			`@synAll = params[:synapsesToMap]`
			`@synAll = @synAll.split(',')`
			`@synAll.each do \|synapse_id\|`
			`mapping = Mapping.new`
			`mapping.map = @map`
			`mapping.user = @user`
			`mapping.mappable = Synapse.find(synapse_id)`
			`authorize mapping, :create?`
			`mapping.save`
got rgraph working again 2014-07-31 01:10:10 +00:00			`end`
fix map forking (fix #540) 2016-04-20 00:51:38 +00:00			`end`
got rgraph working again 2014-07-31 01:10:10 +00:00
fix map forking (fix #540) 2016-04-20 00:51:38 +00:00			`@map.arranged = true`
got rgraph working again 2014-07-31 01:10:10 +00:00			`end`

changess for pundit 2016-03-11 22:37:32 +00:00			`authorize @map`
implement five policies into their controllers 2016-03-11 14:10:31 +00:00
maps controller spec passes, 3 pending 2016-02-09 03:48:07 +00:00			`if @map.save`
			`respond_to do \|format\|`
got rgraph working again 2014-07-31 01:10:10 +00:00			`format.json { render :json => @map }`
maps controller spec passes, 3 pending 2016-02-09 03:48:07 +00:00			`end`
			`else`
			`respond_to do \|format\|`
			`format.json { render :json => "invalid params" }`
			`end`
got rgraph working again 2014-07-31 01:10:10 +00:00			`end`
improved the labels. started the right click menu. added the wand menu. added the create map feature. replaced images with recolored ones. 2014-01-31 00:32:15 +00:00			`end`
got rgraph working again 2014-07-31 01:10:10 +00:00
			`# PUT maps/:id`
			`def update`
implement five policies into their controllers 2016-03-11 14:10:31 +00:00			`@map = Map.find(params[:id])`
changess for pundit 2016-03-11 22:37:32 +00:00			`authorize @map`
got rgraph working again 2014-07-31 01:10:10 +00:00
			`respond_to do \|format\|`
changess for pundit 2016-03-11 22:37:32 +00:00			`if @map.update_attributes(map_params)`
fixed map update controller 2014-09-11 12:35:16 +00:00			`format.json { head :no_content }`
			`else`
			`format.json { render json: @map.errors, status: :unprocessable_entity }`
			`end`
got rgraph working again 2014-07-31 01:10:10 +00:00			`end`
changed approach to map creation. reorganized code to suit that. 2014-07-30 03:18:43 +00:00			`end`
got rgraph working again 2014-07-31 01:10:10 +00:00
added new map screenshot capture method 2014-11-10 03:10:13 +00:00			`# POST maps/:id/upload_screenshot`
			`def screenshot`
implement five policies into their controllers 2016-03-11 14:10:31 +00:00			`@map = Map.find(params[:id])`
changess for pundit 2016-03-11 22:37:32 +00:00			`authorize @map`
implement five policies into their controllers 2016-03-11 14:10:31 +00:00
			`png = Base64.decode64(params[:encoded_image]['data:image/png;base64,'.length .. -1])`
			`StringIO.open(png) do \|data\|`
			`data.class.class_eval { attr_accessor :original_filename, :content_type }`
			`data.original_filename = "map-" + @map.id.to_s + "-screenshot.png"`
			`data.content_type = "image/png"`
			`@map.screenshot = data`
			`end`
added new map screenshot capture method 2014-11-10 03:10:13 +00:00
implement five policies into their controllers 2016-03-11 14:10:31 +00:00			`if @map.save`
			`render :json => {:message => "Successfully uploaded the map screenshot."}`
			`else`
			`render :json => {:message => "Failed to upload image."}`
			`end`
added new map screenshot capture method 2014-11-10 03:10:13 +00:00			`end`

got rgraph working again 2014-07-31 01:10:10 +00:00			`# DELETE maps/:id`
			`def destroy`
implement five policies into their controllers 2016-03-11 14:10:31 +00:00			`@map = Map.find(params[:id])`
changess for pundit 2016-03-11 22:37:32 +00:00			`authorize @map`
got rgraph working again 2014-07-31 01:10:10 +00:00
implement five policies into their controllers 2016-03-11 14:10:31 +00:00			`@map.delete`
got rgraph working again 2014-07-31 01:10:10 +00:00
implement five policies into their controllers 2016-03-11 14:10:31 +00:00			`respond_to do \|format\|`
			`format.json do`
			`head :no_content`
got rgraph working again 2014-07-31 01:10:10 +00:00			`end`
implement five policies into their controllers 2016-03-11 14:10:31 +00:00			`end`
added maps, permissions, show user cards 2012-10-26 10:04:52 +00:00			`end`
add required params to all controllers 2015-09-19 08:26:34 +00:00
			`private`

			`# Never trust parameters from the scary internet, only allow the white list through.`
			`def map_params`
changess for pundit 2016-03-11 22:37:32 +00:00			`params.require(:map).permit(:id, :name, :arranged, :desc, :permission)`
add required params to all controllers 2015-09-19 08:26:34 +00:00			`end`
added maps, permissions, show user cards 2012-10-26 10:04:52 +00:00			`end`