senaduka/old-holivud2
1
0
Fork 0
Code Issues Pull Requests 6 Actions Packages Projects Releases Wiki Activity
Files
9bafbe36dbbbb7615e7d6aa71200e17aee3ac99c
old-holivud2/app/controllers/application_controller.rb
Bilal 9bafbe36db implement account locking/unlocking
2020-09-09 14:34:59 +03:00

78 lines
2.2 KiB
Ruby
Raw Blame History

class ApplicationController < ActionController::Base
include Oath::ControllerHelpers # Methods for authentication
include Pundit # Methods for authorization
include RememberMe::Controller
before_action :disable_browser_page_caching
before_action :set_locale
before_action :require_login
before_action :set_raven_context
after_action :verify_authorized, except: :index
after_action :verify_policy_scoped, only: :index
include SetCurrentRequestDetails
before_action :redirect_accountless
before_action :redirect_locked_accounts
private
def require_login
if !masquerading? && remembered_user = remember("user")
sign_in(remembered_user)
end
super
end
def redirect_accountless
if Current.user && Current.account.nil?
redirect_to accountless_user_path
end
end
def redirect_locked_accounts
if Current.user && Current.account.locked?
redirect_to locked_account_path
end
end
def signed_in_as_admin?
signed_in? && current_user.admin?
end
helper_method :signed_in_as_admin?
# Ensure that all url helpers include the current locale
def default_url_options
super.merge(locale: I18n.locale) # Use merge to avoid clobbering any options set during config
end
# Set the locale for the current request
def set_locale
I18n.locale = params[:locale] || request.env["rack.locale"] || I18n.default_locale
end
# Run authorization against Current.user which will ensure it works in async jobs and channels as well
# All authorization depends on the Current.account as users will have a different role for each
def pundit_user
UserContext.new(Current.user, Current.account)
end
# Set the context for Sentry exception handling service
def set_raven_context
account_id = (session[:active_account] || try(:current_user).try(:accounts).try(:first))
Raven.user_context(id: current_user.id, account_id: account_id) if signed_in?
Raven.extra_context(params: params.to_unsafe_h, url: request.url)
end
def disable_browser_page_caching
response.headers["Cache-Control"] = "no-cache, no-store"
response.headers["Pragma"] = "no-cache"
response.headers["Expires"] = "0"
end
def masquerading?
session[:admin_id].present?
end
helper_method :masquerading?
end
Reference in New Issue View Git Blame Copy Permalink