openproject/lib/api/v3/users/user_representer.rb

#-- encoding: UTF-8
#-- copyright
# OpenProject is a project management system.
# Copyright (C) 2012-2015 the OpenProject Foundation (OPF)
#
# This program is free software; you can redistribute it and/or
# modify it under the terms of the GNU General Public License version 3.
#
# OpenProject is a fork of ChiliProject, which is a fork of Redmine. The copyright follows:
# Copyright (C) 2006-2013 Jean-Philippe Lang
# Copyright (C) 2010-2013 the ChiliProject Team
#
# This program is free software; you can redistribute it and/or
# modify it under the terms of the GNU General Public License
# as published by the Free Software Foundation; either version 2
# of the License, or (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.
#
# See doc/COPYRIGHT.rdoc for more details.
#++

require 'roar/decorator'
require 'roar/json/hal'

module API
  module V3
    module Users
      class UserRepresenter < ::API::Decorators::Single
        include AvatarHelper

        self_link :user

        link :lock do
          {
            href: api_v3_paths.user_lock(represented.id),
            title: "Set lock on #{represented.login}",
            method: :post
          } if current_user_is_admin && represented.lockable?
        end

        link :unlock do
          {
            href: api_v3_paths.user_lock(represented.id),
            title: "Remove lock on #{represented.login}",
            method: :delete
          } if current_user_is_admin && represented.activatable?
        end

        link :delete do
          {
            href: api_v3_paths.user(represented.id),
            title: "Delete #{represented.login}",
            method: :delete
          } if current_user_can_delete_represented?
        end

        link :removeWatcher do
          {
            href: api_v3_paths.watcher(represented.id, work_package.id),
            method: :delete,
            title: 'Remove watcher'
          } if work_package && current_user_allowed_to(:delete_work_package_watchers, work_package)
        end

        property :id, render_nil: true
        property :login, render_nil: true
        property :subtype, getter: -> (*) { type }, render_nil: true
        property :firstname, as: :firstName, render_nil: true
        property :lastname, as: :lastName, render_nil: true
        property :name, render_nil: true
        property :mail, render_nil: true
        property :avatar, getter: -> (*) { avatar_url(represented) },
                          render_nil: true,
                          exec_context: :decorator
        property :created_on,
                 as: 'createdAt',
                 exec_context: :decorator,
                 getter: -> (*) { datetime_formatter.format_datetime(represented.created_on) }
        property :updated_on,
                 as: 'updatedAt',
                 exec_context: :decorator,
                 getter: -> (*) { datetime_formatter.format_datetime(represented.updated_on) }
        property :status, getter: -> (*) { status_name }, render_nil: true

        def _type
          'User'
        end

        def current_user_is_admin
          current_user && current_user.admin?
        end

        def current_user_allowed_to(permission, work_package)
          current_user && current_user.allowed_to?(permission, work_package.project)
        end

        private

        def current_user
          context[:current_user]
        end

        def work_package
          context[:work_package]
        end

        def current_user_can_delete_represented?
          current_user && DeleteUserService.deletion_allowed?(represented, current_user)
        end
      end
    end
  end
end
Created API user representer 10 years ago			`#-- encoding: UTF-8`
			`#-- copyright`
			`# OpenProject is a project management system.`
Update year in copyright header to 2015 [ci skip] 10 years ago			`# Copyright (C) 2012-2015 the OpenProject Foundation (OPF)`
Created API user representer 10 years ago			`#`
			`# This program is free software; you can redistribute it and/or`
			`# modify it under the terms of the GNU General Public License version 3.`
			`#`
			`# OpenProject is a fork of ChiliProject, which is a fork of Redmine. The copyright follows:`
			`# Copyright (C) 2006-2013 Jean-Philippe Lang`
			`# Copyright (C) 2010-2013 the ChiliProject Team`
			`#`
			`# This program is free software; you can redistribute it and/or`
			`# modify it under the terms of the GNU General Public License`
			`# as published by the Free Software Foundation; either version 2`
			`# of the License, or (at your option) any later version.`
			`#`
			`# This program is distributed in the hope that it will be useful,`
			`# but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`# GNU General Public License for more details.`
			`#`
			`# You should have received a copy of the GNU General Public License`
			`# along with this program; if not, write to the Free Software`
			`# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.`
			`#`
			`# See doc/COPYRIGHT.rdoc for more details.`
			`#++`

			`require 'roar/decorator'`
Update reform and its dependencies 10 years ago			`require 'roar/json/hal'`
Created API user representer 10 years ago
			`module API`
			`module V3`
			`module Users`
harmonize api decorators 10 years ago			`class UserRepresenter < ::API::Decorators::Single`
uses gravatar_image_tag gem as standard avatar lib 10 years ago			`include AvatarHelper`
Created API user representer 10 years ago
extract helper for self links 10 years ago			`self_link :user`
Created API user representer 10 years ago
apiv3: User (Un-)Locking functionality This commit implements the proposed user locking/unlocking functionality in https://github.com/opf/openproject/pull/2401. The APIv3 is extended with a resource ``/user/:id/lock`` with the following properties: * ``POST /lock``: Set the lock of user(:id), if its account status is 'active'. * ``DELETE /lock``: Remove an active lock of user(:id), if its account status is 'locked'. This commit also implements the following changes to ``UserRepresenter``: * Replaced the integer status field with the textual status name (i.e., 'active') * Added two entries to _links for admin users: ``lock``, ``unlock``. 10 years ago			`link :lock do`
			`{`
			`href: api_v3_paths.user_lock(represented.id),`
			`title: "Set lock on #{represented.login}",`
			`method: :post`
Updated API for user (un-)locking - Adds an lockable?, activatable? to the Principal model, which is overridden by User as aliases to active? and locked?. - UserRepresenter refers to the above methods - Refactored /lock routes into a single method Specs: - Adds delete /users/:id/lock spec - Refactored FactoryGirl calls to avoid create where feasible 10 years ago			`} if current_user_is_admin && represented.lockable?`
apiv3: User (Un-)Locking functionality This commit implements the proposed user locking/unlocking functionality in https://github.com/opf/openproject/pull/2401. The APIv3 is extended with a resource ``/user/:id/lock`` with the following properties: * ``POST /lock``: Set the lock of user(:id), if its account status is 'active'. * ``DELETE /lock``: Remove an active lock of user(:id), if its account status is 'locked'. This commit also implements the following changes to ``UserRepresenter``: * Replaced the integer status field with the textual status name (i.e., 'active') * Added two entries to _links for admin users: ``lock``, ``unlock``. 10 years ago			`end`

			`link :unlock do`
			`{`
			`href: api_v3_paths.user_lock(represented.id),`
			`title: "Remove lock on #{represented.login}",`
			`method: :delete`
Updated API for user (un-)locking - Adds an lockable?, activatable? to the Principal model, which is overridden by User as aliases to active? and locked?. - UserRepresenter refers to the above methods - Refactored /lock routes into a single method Specs: - Adds delete /users/:id/lock spec - Refactored FactoryGirl calls to avoid create where feasible 10 years ago			`} if current_user_is_admin && represented.activatable?`
apiv3: User (Un-)Locking functionality This commit implements the proposed user locking/unlocking functionality in https://github.com/opf/openproject/pull/2401. The APIv3 is extended with a resource ``/user/:id/lock`` with the following properties: * ``POST /lock``: Set the lock of user(:id), if its account status is 'active'. * ``DELETE /lock``: Remove an active lock of user(:id), if its account status is 'locked'. This commit also implements the following changes to ``UserRepresenter``: * Replaced the integer status field with the textual status name (i.e., 'active') * Added two entries to _links for admin users: ``lock``, ``unlock``. 10 years ago			`end`

obey style rules 10 years ago			`link :delete do`
actually include delete link how hard can ruby be anyway... I will for certain regret that commit soon ^^ 10 years ago			`{`
			`href: api_v3_paths.user(represented.id),`
			`title: "Delete #{represented.login}",`
			`method: :delete`
remove param from method 10 years ago			`} if current_user_can_delete_represented?`
actually include delete link how hard can ruby be anyway... I will for certain regret that commit soon ^^ 10 years ago			`end`
apiv3: User (Un-)Locking functionality This commit implements the proposed user locking/unlocking functionality in https://github.com/opf/openproject/pull/2401. The APIv3 is extended with a resource ``/user/:id/lock`` with the following properties: * ``POST /lock``: Set the lock of user(:id), if its account status is 'active'. * ``DELETE /lock``: Remove an active lock of user(:id), if its account status is 'locked'. This commit also implements the following changes to ``UserRepresenter``: * Replaced the integer status field with the textual status name (i.e., 'active') * Added two entries to _links for admin users: ``lock``, ``unlock``. 10 years ago
Add link to remove watcher to the user representer 10 years ago			`link :removeWatcher do`
			`{`
harmonize api decorators 10 years ago			`href: api_v3_paths.watcher(represented.id, work_package.id),`
Add link to remove watcher to the user representer 10 years ago			`method: :delete,`
			`title: 'Remove watcher'`
harmonize api decorators 10 years ago			`} if work_package && current_user_allowed_to(:delete_work_package_watchers, work_package)`
Add link to remove watcher to the user representer 10 years ago			`end`
Created API user representer 10 years ago
Remove usage of reform from API V3 10 years ago			`property :id, render_nil: true`
Created API user representer 10 years ago			`property :login, render_nil: true`
Remove usage of reform from API V3 10 years ago			`property :subtype, getter: -> (*) { type }, render_nil: true`
Added some properties to the API user representer 10 years ago			`property :firstname, as: :firstName, render_nil: true`
			`property :lastname, as: :lastName, render_nil: true`
Remove usage of reform from API V3 10 years ago			`property :name, render_nil: true`
Created API user representer 10 years ago			`property :mail, render_nil: true`
uses gravatar_image_tag gem as standard avatar lib 10 years ago			`property :avatar, getter: -> (*) { avatar_url(represented) },`
			`render_nil: true,`
			`exec_context: :decorator`
refactor output of dates and times - all (?) APIv3 resources now use a common formatter - all APIv3 resources now use common names for "createdAt" and "updatedAt" - existing tests were adapted when they were wrong before (according to specs) - no unit tests for common formatter extracted yet 10 years ago			`property :created_on,`
			`as: 'createdAt',`
use formatter from member instead of immediately - allows to DI easier - more elegant solution around autoloading issues 10 years ago			`exec_context: :decorator,`
			`getter: -> (*) { datetime_formatter.format_datetime(represented.created_on) }`
refactor output of dates and times - all (?) APIv3 resources now use a common formatter - all APIv3 resources now use common names for "createdAt" and "updatedAt" - existing tests were adapted when they were wrong before (according to specs) - no unit tests for common formatter extracted yet 10 years ago			`property :updated_on,`
			`as: 'updatedAt',`
use formatter from member instead of immediately - allows to DI easier - more elegant solution around autoloading issues 10 years ago			`exec_context: :decorator,`
			`getter: -> (*) { datetime_formatter.format_datetime(represented.updated_on) }`
apiv3: User (Un-)Locking functionality This commit implements the proposed user locking/unlocking functionality in https://github.com/opf/openproject/pull/2401. The APIv3 is extended with a resource ``/user/:id/lock`` with the following properties: * ``POST /lock``: Set the lock of user(:id), if its account status is 'active'. * ``DELETE /lock``: Remove an active lock of user(:id), if its account status is 'locked'. This commit also implements the following changes to ``UserRepresenter``: * Replaced the integer status field with the textual status name (i.e., 'active') * Added two entries to _links for admin users: ``lock``, ``unlock``. 10 years ago			`property :status, getter: -> (*) { status_name }, render_nil: true`
Created API user representer 10 years ago
			`def _type`
			`'User'`
			`end`
Add link to remove watcher to the user representer 10 years ago
apiv3: User (Un-)Locking functionality This commit implements the proposed user locking/unlocking functionality in https://github.com/opf/openproject/pull/2401. The APIv3 is extended with a resource ``/user/:id/lock`` with the following properties: * ``POST /lock``: Set the lock of user(:id), if its account status is 'active'. * ``DELETE /lock``: Remove an active lock of user(:id), if its account status is 'locked'. This commit also implements the following changes to ``UserRepresenter``: * Replaced the integer status field with the textual status name (i.e., 'active') * Added two entries to _links for admin users: ``lock``, ``unlock``. 10 years ago			`def current_user_is_admin`
harmonize api decorators 10 years ago			`current_user && current_user.admin?`
apiv3: User (Un-)Locking functionality This commit implements the proposed user locking/unlocking functionality in https://github.com/opf/openproject/pull/2401. The APIv3 is extended with a resource ``/user/:id/lock`` with the following properties: * ``POST /lock``: Set the lock of user(:id), if its account status is 'active'. * ``DELETE /lock``: Remove an active lock of user(:id), if its account status is 'locked'. This commit also implements the following changes to ``UserRepresenter``: * Replaced the integer status field with the textual status name (i.e., 'active') * Added two entries to _links for admin users: ``lock``, ``unlock``. 10 years ago			`end`

Add link to remove watcher to the user representer 10 years ago			`def current_user_allowed_to(permission, work_package)`
harmonize api decorators 10 years ago			`current_user && current_user.allowed_to?(permission, work_package.project)`
			`end`

			`private`

			`def current_user`
			`context[:current_user]`
			`end`

			`def work_package`
			`context[:work_package]`
Add link to remove watcher to the user representer 10 years ago			`end`
fix reference to current user 10 years ago
remove param from method 10 years ago			`def current_user_can_delete_represented?`
we no longer use instance variables here 10 years ago			`current_user && DeleteUserService.deletion_allowed?(represented, current_user)`
fix reference to current user 10 years ago			`end`
Created API user representer 10 years ago			`end`
			`end`
			`end`
			`end`