foodsoft/app/controllers/application_controller.rb

# encoding: utf-8
class ApplicationController < ActionController::Base

  protect_from_forgery
  before_filter :select_language, :select_foodcoop, :authenticate, :store_controller, :items_per_page, :set_redirect_to
  after_filter  :remove_controller

  # Returns the controller handling the current request.
  def self.current
    Thread.current[:application_controller]
  end
  
  protected

  def current_user
    # check if there is a valid session and return the logged-in user (its object)
    if session[:user_id] and params[:foodcoop]
      # for shared-host installations. check if the cookie-subdomain fits to request.
      @current_user ||= User.find_by_id(session[:user_id]) if session[:scope] == FoodsoftConfig.scope
    end
  end
  helper_method :current_user

  def deny_access
    self.return_to = request.original_url
    redirect_to login_url, :alert => 'Access denied!'
  end

  private  

  def authenticate(role = 'any')
    # Attempt to retrieve authenticated user from controller instance or session...
    if !current_user
      # No user at all: redirect to login page.
      session[:user_id] = nil
      session['return_to'] = request.fullpath
      redirect_to login_url, :alert => 'Authentication required!'
    else
      # We have an authenticated user, now check role...
      # Roles gets the user through his memberships.
      hasRole = case role
      when "admin"  then current_user.role_admin?
      when "finance"   then  current_user.role_finance?
      when "article_meta" then current_user.role_article_meta?
      when "suppliers"  then current_user.role_suppliers?
      when "orders" then current_user.role_orders?
      when "any" then true        # no role required
      else false                  # any unknown role will always fail
      end
      if hasRole
        current_user
      else
        deny_access
      end
    end
  end
    
  def authenticate_admin
    authenticate('admin')
  end
    
  def authenticate_finance
    authenticate('finance')
  end
    
  def authenticate_article_meta
    authenticate('article_meta')
  end

  def authenticate_suppliers
    authenticate('suppliers')
  end

  def authenticate_orders
    authenticate('orders')
  end

  # checks if the current_user is member of given group.
  # if fails the user will redirected to startpage
  def authenticate_membership_or_admin
    @group = Group.find(params[:id])
    unless @group.member?(@current_user) or @current_user.role_admin?
      redirect_to root_path, alert: "Diese Aktion ist nur für Mitglieder der Gruppe erlaubt!"
    end
  end

  # Stores this controller instance as a thread local varibale to be accessible from outside ActionController/ActionView.
  def store_controller
    Thread.current[:application_controller] = self
  end
    
  # Sets the thread local variable that holds a reference to the current controller to nil.
  def remove_controller
    Thread.current[:application_controller] = nil
  end

  # Get supplier in nested resources
  def find_supplier
    @supplier = Supplier.find(params[:supplier_id]) if params[:supplier_id]
  end

  # Set config and database connection for each request
  # It uses the subdomain to select the appropriate section in the config files
  # Use this method as a before filter (first filter!) in ApplicationController
  def select_foodcoop
    if FoodsoftConfig[:multi_coop_install]
      if params[:foodcoop].present?
        begin
          # Set Config and database connection
          FoodsoftConfig.select_foodcoop params[:foodcoop]
        rescue => error
          redirect_to root_url, alert: error.message
        end
      else
        redirect_to root_url
      end
    end
  end

  def items_per_page
    if params[:per_page] && params[:per_page].to_i > 0 && params[:per_page].to_i <= 100
      @per_page = params[:per_page].to_i
    else
      @per_page = 20
    end
  end

  def set_redirect_to
    session[:redirect_to] = params[:redirect_to] if params[:redirect_to]
  end

  def back_or_default_path(default = root_path)
    if session[:redirect_to].present?
      default = session[:redirect_to]
      session[:redirect_to] = nil
    end
    default
  end

  # Always stay in foodcoop url scope
  def default_url_options(options = {})
    {foodcoop: FoodsoftConfig.scope}
  end

  # Used to prevent accidently switching to :en in production mode.
  def select_language
    I18n.locale = :de
  end
end
Updated to rails 3.0.12. remove old gettext code. 2012-04-15 19:59:39 +02:00			`# encoding: utf-8`
Initial commit of foodsoft 2 2009-01-06 11:49:19 +01:00			`class ApplicationController < ActionController::Base`
First part of multiple foodcoop installation. 2009-03-24 17:01:10 +01:00
Refactored login module. Implemented standard sessions controller. 2011-05-11 13:38:46 +02:00			`protect_from_forgery`
Fixed accidently switching to english locale in production. 2012-12-29 17:47:35 +01:00			`before_filter :select_language, :select_foodcoop, :authenticate, :store_controller, :items_per_page, :set_redirect_to`
Send messages directly instead of using controller filter. Litte improvements to the messages lists. 2009-03-09 13:02:43 +01:00			`after_filter :remove_controller`
Refactored login module. Implemented standard sessions controller. 2011-05-11 13:38:46 +02:00
Initial commit of foodsoft 2 2009-01-06 11:49:19 +01:00			`# Returns the controller handling the current request.`
			`def self.current`
			`Thread.current[:application_controller]`
			`end`

			`protected`

Implemented routing filter for foodcoop select. * Allows now a multi coop installation for one domain! * SSL, we are coming... * TODO: Remove all the hardcoded urls, check email-links etc. 2010-03-20 02:26:30 +01:00			`def current_user`
Refactored login module. Implemented standard sessions controller. 2011-05-11 13:38:46 +02:00			`# check if there is a valid session and return the logged-in user (its object)`
			`if session[:user_id] and params[:foodcoop]`
			`# for shared-host installations. check if the cookie-subdomain fits to request.`
Fixed multi coop routing and changed config accessors. 2012-08-24 19:52:38 +02:00			`@current_user \|\|= User.find_by_id(session[:user_id]) if session[:scope] == FoodsoftConfig.scope`
Initial commit of foodsoft 2 2009-01-06 11:49:19 +01:00			`end`
Implemented routing filter for foodcoop select. * Allows now a multi coop installation for one domain! * SSL, we are coming... * TODO: Remove all the hardcoded urls, check email-links etc. 2010-03-20 02:26:30 +01:00			`end`
Fixed multi coop routing and changed config accessors. 2012-08-24 19:52:38 +02:00			`helper_method :current_user`

Implemented routing filter for foodcoop select. * Allows now a multi coop installation for one domain! * SSL, we are coming... * TODO: Remove all the hardcoded urls, check email-links etc. 2010-03-20 02:26:30 +01:00			`def deny_access`
Fixed wrong request method in deny_access. 2012-12-30 15:13:50 +01:00			`self.return_to = request.original_url`
Refactored login module. Implemented standard sessions controller. 2011-05-11 13:38:46 +02:00			`redirect_to login_url, :alert => 'Access denied!'`
Implemented routing filter for foodcoop select. * Allows now a multi coop installation for one domain! * SSL, we are coming... * TODO: Remove all the hardcoded urls, check email-links etc. 2010-03-20 02:26:30 +01:00			`end`
Initial commit of foodsoft 2 2009-01-06 11:49:19 +01:00
Removed ensureUTF8 filter. It's no longer required. 2009-03-24 17:32:56 +01:00			`private`
Initial commit of foodsoft 2 2009-01-06 11:49:19 +01:00
Implemented routing filter for foodcoop select. * Allows now a multi coop installation for one domain! * SSL, we are coming... * TODO: Remove all the hardcoded urls, check email-links etc. 2010-03-20 02:26:30 +01:00			`def authenticate(role = 'any')`
			`# Attempt to retrieve authenticated user from controller instance or session...`
Refactored login module. Implemented standard sessions controller. 2011-05-11 13:38:46 +02:00			`if !current_user`
Implemented routing filter for foodcoop select. * Allows now a multi coop installation for one domain! * SSL, we are coming... * TODO: Remove all the hardcoded urls, check email-links etc. 2010-03-20 02:26:30 +01:00			`# No user at all: redirect to login page.`
Refactored login module. Implemented standard sessions controller. 2011-05-11 13:38:46 +02:00			`session[:user_id] = nil`
			`session['return_to'] = request.fullpath`
			`redirect_to login_url, :alert => 'Authentication required!'`
Implemented routing filter for foodcoop select. * Allows now a multi coop installation for one domain! * SSL, we are coming... * TODO: Remove all the hardcoded urls, check email-links etc. 2010-03-20 02:26:30 +01:00			`else`
			`# We have an authenticated user, now check role...`
			`# Roles gets the user through his memberships.`
			`hasRole = case role`
Fixed suppliers module. 2011-05-18 15:52:06 +02:00			`when "admin" then current_user.role_admin?`
			`when "finance" then current_user.role_finance?`
			`when "article_meta" then current_user.role_article_meta?`
			`when "suppliers" then current_user.role_suppliers?`
			`when "orders" then current_user.role_orders?`
Implemented routing filter for foodcoop select. * Allows now a multi coop installation for one domain! * SSL, we are coming... * TODO: Remove all the hardcoded urls, check email-links etc. 2010-03-20 02:26:30 +01:00			`when "any" then true # no role required`
			`else false # any unknown role will always fail`
			`end`
			`if hasRole`
Refactored login module. Implemented standard sessions controller. 2011-05-11 13:38:46 +02:00			`current_user`
Initial commit of foodsoft 2 2009-01-06 11:49:19 +01:00			`else`
Implemented routing filter for foodcoop select. * Allows now a multi coop installation for one domain! * SSL, we are coming... * TODO: Remove all the hardcoded urls, check email-links etc. 2010-03-20 02:26:30 +01:00			`deny_access`
			`end`
Initial commit of foodsoft 2 2009-01-06 11:49:19 +01:00			`end`
Implemented routing filter for foodcoop select. * Allows now a multi coop installation for one domain! * SSL, we are coming... * TODO: Remove all the hardcoded urls, check email-links etc. 2010-03-20 02:26:30 +01:00			`end`
Initial commit of foodsoft 2 2009-01-06 11:49:19 +01:00
Implemented routing filter for foodcoop select. * Allows now a multi coop installation for one domain! * SSL, we are coming... * TODO: Remove all the hardcoded urls, check email-links etc. 2010-03-20 02:26:30 +01:00			`def authenticate_admin`
			`authenticate('admin')`
			`end`
Initial commit of foodsoft 2 2009-01-06 11:49:19 +01:00
Implemented routing filter for foodcoop select. * Allows now a multi coop installation for one domain! * SSL, we are coming... * TODO: Remove all the hardcoded urls, check email-links etc. 2010-03-20 02:26:30 +01:00			`def authenticate_finance`
			`authenticate('finance')`
			`end`
Initial commit of foodsoft 2 2009-01-06 11:49:19 +01:00
Implemented routing filter for foodcoop select. * Allows now a multi coop installation for one domain! * SSL, we are coming... * TODO: Remove all the hardcoded urls, check email-links etc. 2010-03-20 02:26:30 +01:00			`def authenticate_article_meta`
			`authenticate('article_meta')`
			`end`
Initial commit of foodsoft 2 2009-01-06 11:49:19 +01:00
Implemented routing filter for foodcoop select. * Allows now a multi coop installation for one domain! * SSL, we are coming... * TODO: Remove all the hardcoded urls, check email-links etc. 2010-03-20 02:26:30 +01:00			`def authenticate_suppliers`
			`authenticate('suppliers')`
			`end`
Initial commit of foodsoft 2 2009-01-06 11:49:19 +01:00
Implemented routing filter for foodcoop select. * Allows now a multi coop installation for one domain! * SSL, we are coming... * TODO: Remove all the hardcoded urls, check email-links etc. 2010-03-20 02:26:30 +01:00			`def authenticate_orders`
			`authenticate('orders')`
			`end`
Initial commit of foodsoft 2 2009-01-06 11:49:19 +01:00
Implemented routing filter for foodcoop select. * Allows now a multi coop installation for one domain! * SSL, we are coming... * TODO: Remove all the hardcoded urls, check email-links etc. 2010-03-20 02:26:30 +01:00			`# checks if the current_user is member of given group.`
			`# if fails the user will redirected to startpage`
			`def authenticate_membership_or_admin`
			`@group = Group.find(params[:id])`
			`unless @group.member?(@current_user) or @current_user.role_admin?`
Fixed new user invite. 2012-08-06 12:00:40 +02:00			`redirect_to root_path, alert: "Diese Aktion ist nur für Mitglieder der Gruppe erlaubt!"`
Replaced IndexController by Home- and FoodcoopController. Some reorganizing in groups/memberships-logic (moved memberships out of admin-namespace). 2009-01-15 12:14:01 +01:00			`end`
Implemented routing filter for foodcoop select. * Allows now a multi coop installation for one domain! * SSL, we are coming... * TODO: Remove all the hardcoded urls, check email-links etc. 2010-03-20 02:26:30 +01:00			`end`
Replaced IndexController by Home- and FoodcoopController. Some reorganizing in groups/memberships-logic (moved memberships out of admin-namespace). 2009-01-15 12:14:01 +01:00
Implemented routing filter for foodcoop select. * Allows now a multi coop installation for one domain! * SSL, we are coming... * TODO: Remove all the hardcoded urls, check email-links etc. 2010-03-20 02:26:30 +01:00			`# Stores this controller instance as a thread local varibale to be accessible from outside ActionController/ActionView.`
			`def store_controller`
			`Thread.current[:application_controller] = self`
			`end`
Initial commit of foodsoft 2 2009-01-06 11:49:19 +01:00
Implemented routing filter for foodcoop select. * Allows now a multi coop installation for one domain! * SSL, we are coming... * TODO: Remove all the hardcoded urls, check email-links etc. 2010-03-20 02:26:30 +01:00			`# Sets the thread local variable that holds a reference to the current controller to nil.`
			`def remove_controller`
			`Thread.current[:application_controller] = nil`
			`end`
Introduced invoices and deliveries. Integration (especially of deliveries) isn't finished yet. 2009-01-08 16:33:27 +01:00
Implemented routing filter for foodcoop select. * Allows now a multi coop installation for one domain! * SSL, we are coming... * TODO: Remove all the hardcoded urls, check email-links etc. 2010-03-20 02:26:30 +01:00			`# Get supplier in nested resources`
			`def find_supplier`
			`@supplier = Supplier.find(params[:supplier_id]) if params[:supplier_id]`
			`end`
First part of multiple foodcoop installation. 2009-03-24 17:01:10 +01:00
Implemented routing filter for foodcoop select. * Allows now a multi coop installation for one domain! * SSL, we are coming... * TODO: Remove all the hardcoded urls, check email-links etc. 2010-03-20 02:26:30 +01:00			`# Set config and database connection for each request`
			`# It uses the subdomain to select the appropriate section in the config files`
			`# Use this method as a before filter (first filter!) in ApplicationController`
			`def select_foodcoop`
Fixed multi coop routing and changed config accessors. 2012-08-24 19:52:38 +02:00			`if FoodsoftConfig[:multi_coop_install]`
			`if params[:foodcoop].present?`
Removed unnecessary config params. Improved error handling. 2010-03-22 01:25:24 +01:00			`begin`
Fixed multi coop routing and changed config accessors. 2012-08-24 19:52:38 +02:00			`# Set Config and database connection`
			`FoodsoftConfig.select_foodcoop params[:foodcoop]`
Removed unnecessary config params. Improved error handling. 2010-03-22 01:25:24 +01:00			`rescue => error`
Fixed multi coop routing and changed config accessors. 2012-08-24 19:52:38 +02:00			`redirect_to root_url, alert: error.message`
Removed unnecessary config params. Improved error handling. 2010-03-22 01:25:24 +01:00			`end`
Implemented routing filter for foodcoop select. * Allows now a multi coop installation for one domain! * SSL, we are coming... * TODO: Remove all the hardcoded urls, check email-links etc. 2010-03-20 02:26:30 +01:00			`else`
Fixed multi coop routing and changed config accessors. 2012-08-24 19:52:38 +02:00			`redirect_to root_url`
Made multi coop installation available as an option in app_config.yml. 2009-08-13 16:32:38 +02:00			`end`
First part of multiple foodcoop installation. 2009-03-24 17:01:10 +01:00			`end`
Implemented routing filter for foodcoop select. * Allows now a multi coop installation for one domain! * SSL, we are coming... * TODO: Remove all the hardcoded urls, check email-links etc. 2010-03-20 02:26:30 +01:00			`end`
Refactored items_per_page. Start on admin/workgroups. 2011-06-10 12:18:55 +02:00
			`def items_per_page`
Fixed multi coop routing and changed config accessors. 2012-08-24 19:52:38 +02:00			`if params[:per_page] && params[:per_page].to_i > 0 && params[:per_page].to_i <= 100`
Refactored items_per_page. Start on admin/workgroups. 2011-06-10 12:18:55 +02:00			`@per_page = params[:per_page].to_i`
			`else`
			`@per_page = 20`
			`end`
			`end`
Fixed new user invite. 2012-08-06 12:00:40 +02:00
			`def set_redirect_to`
			`session[:redirect_to] = params[:redirect_to] if params[:redirect_to]`
			`end`

			`def back_or_default_path(default = root_path)`
			`if session[:redirect_to].present?`
			`default = session[:redirect_to]`
			`session[:redirect_to] = nil`
			`end`
			`default`
			`end`
Fixed multi coop routing and changed config accessors. 2012-08-24 19:52:38 +02:00
			`# Always stay in foodcoop url scope`
			`def default_url_options(options = {})`
			`{foodcoop: FoodsoftConfig.scope}`
			`end`
Fixed accidently switching to english locale in production. 2012-12-29 17:47:35 +01:00
			`# Used to prevent accidently switching to :en in production mode.`
			`def select_language`
			`I18n.locale = :de`
			`end`
Initial commit of foodsoft 2 2009-01-06 11:49:19 +01:00			`end`