2012-09-23 02:39:12 +00:00
|
|
|
class ApplicationController < ActionController::Base
|
2016-03-25 04:26:07 +00:00
|
|
|
include ApplicationHelper
|
2016-02-13 09:28:09 +00:00
|
|
|
include Pundit
|
2016-03-11 22:37:32 +00:00
|
|
|
include PunditExtra
|
2016-03-11 13:35:48 +00:00
|
|
|
rescue_from Pundit::NotAuthorizedError, with: :handle_unauthorized
|
2012-09-23 02:39:12 +00:00
|
|
|
protect_from_forgery
|
2015-11-03 14:22:53 +00:00
|
|
|
|
2016-02-19 01:23:39 +00:00
|
|
|
after_action :allow_embedding
|
2016-03-25 04:26:07 +00:00
|
|
|
|
2016-03-12 02:20:15 +00:00
|
|
|
def default_serializer_options
|
|
|
|
{ root: false }
|
|
|
|
end
|
|
|
|
|
2014-01-29 03:46:58 +00:00
|
|
|
# this is for global login
|
|
|
|
include ContentHelper
|
2015-12-22 18:16:03 +00:00
|
|
|
|
2012-09-23 02:39:12 +00:00
|
|
|
helper_method :user
|
|
|
|
helper_method :authenticated?
|
2014-05-17 18:57:03 +00:00
|
|
|
helper_method :admin?
|
2015-12-22 18:16:03 +00:00
|
|
|
|
2014-10-07 21:46:09 +00:00
|
|
|
def after_sign_in_path_for(resource)
|
2016-02-28 08:57:25 +00:00
|
|
|
sign_in_url = url_for(:action => 'new', :controller => 'sessions', :only_path => false, :protocol => 'https')
|
2014-10-07 22:38:33 +00:00
|
|
|
|
2014-10-07 21:46:09 +00:00
|
|
|
if request.referer == sign_in_url
|
|
|
|
super
|
2014-10-07 22:38:33 +00:00
|
|
|
elsif params[:uv_login] == "1"
|
2014-10-07 22:49:14 +00:00
|
|
|
"http://support.metamaps.cc/login_success?sso=" + current_sso_token
|
2014-10-07 21:46:09 +00:00
|
|
|
else
|
|
|
|
stored_location_for(resource) || request.referer || root_path
|
2014-01-29 03:46:58 +00:00
|
|
|
end
|
|
|
|
end
|
2015-12-22 18:16:03 +00:00
|
|
|
|
2016-03-11 13:35:48 +00:00
|
|
|
def handle_unauthorized
|
|
|
|
head :forbidden # TODO make this better
|
|
|
|
end
|
2016-03-25 04:26:07 +00:00
|
|
|
|
2012-09-23 02:39:12 +00:00
|
|
|
private
|
|
|
|
|
|
|
|
def require_no_user
|
|
|
|
if authenticated?
|
2014-10-22 00:31:59 +00:00
|
|
|
redirect_to edit_user_path(user), notice: "You must be logged out."
|
2012-09-23 02:39:12 +00:00
|
|
|
return false
|
|
|
|
end
|
|
|
|
end
|
2015-12-22 18:16:03 +00:00
|
|
|
|
2012-09-23 02:39:12 +00:00
|
|
|
def require_user
|
|
|
|
unless authenticated?
|
2014-10-22 00:31:59 +00:00
|
|
|
redirect_to new_user_session_path, notice: "You must be logged in."
|
2012-09-23 02:39:12 +00:00
|
|
|
return false
|
|
|
|
end
|
|
|
|
end
|
2015-12-22 18:16:03 +00:00
|
|
|
|
2014-05-17 18:57:03 +00:00
|
|
|
def require_admin
|
2015-09-19 08:48:24 +00:00
|
|
|
unless authenticated? && admin?
|
2014-05-17 18:57:03 +00:00
|
|
|
redirect_to root_url, notice: "You need to be an admin for that."
|
|
|
|
return false
|
|
|
|
end
|
|
|
|
end
|
2015-12-22 18:16:03 +00:00
|
|
|
|
2012-09-23 02:39:12 +00:00
|
|
|
def user
|
|
|
|
current_user
|
|
|
|
end
|
2015-12-22 18:16:03 +00:00
|
|
|
|
2012-09-23 02:39:12 +00:00
|
|
|
def authenticated?
|
|
|
|
current_user
|
|
|
|
end
|
2015-12-22 18:16:03 +00:00
|
|
|
|
2014-05-17 18:57:03 +00:00
|
|
|
def admin?
|
2015-12-16 13:32:50 +00:00
|
|
|
authenticated? && current_user.admin
|
2014-05-17 18:57:03 +00:00
|
|
|
end
|
2015-11-03 14:22:53 +00:00
|
|
|
|
2016-02-19 01:23:39 +00:00
|
|
|
def allow_embedding
|
|
|
|
#allow all
|
|
|
|
response.headers.except! 'X-Frame-Options'
|
|
|
|
# or allow a whitelist
|
|
|
|
# response.headers['X-Frame-Options'] = 'ALLOW-FROM http://blog.metamaps.cc'
|
2015-11-03 14:22:53 +00:00
|
|
|
end
|
2012-09-23 02:39:12 +00:00
|
|
|
end
|