orbit-basic/app/controllers/admin/object_auths_controller.rb

class Admin::ObjectAuthsController < ApplicationController
  include OrbitCoreLib::PermissionUnility
  layout "new_admin"
  before_filter :force_order
#  before_filter :is_admin? ,:only => :index
  

  
  def index
    # if current_user.admin?
      @object_auths = ObjectAuth.all
    # else
    #       @module_apps = current_user.managing_apps.collect{|t| t.managing_app}
    #     end
  end
  
  def new
    obj = eval(params[:type]).find params[:obj_id]
    @object_auth=obj.object_auths.build
    @object_auth_title_option = eval(params[:type]+"::ObjectAuthTitlesOptions")
    respond_to do |format|
      format.html # new.html.erb
      format.xml  { render :xml => @post }
    end
  end
  
  def create
    obj = eval(params[:object_auth][:type]).find params[:object_auth][:obj_id]
    @object_auth=obj.object_auths.build :title=> params[:object_auth][:title]
    if @object_auth.save
      redirect_to edit_admin_object_auth_path(@object_auth)
    else
      flash[:error] = t('object.a_object_must_have_only_one_object_auth_profile_for_each_action')
      redirect_to (:back)
    end
  end

  def create_role
    object_auth = ObjectAuth.find(params[:id])
    auth_all = params[:auth_all] || false
    object_auth.update_attribute(:all,auth_all)
    new_array = params[:new] || []
    new_array.each do |item|
      field = item[0]
      field_value = item[1]
      if field_value!=''
        case field
        when 'role'
          object_auth.send("add_#{field}",(Role.find field_value)) rescue nil
        when 'sub_role'
          object_auth.send("add_#{field}",(SubRole.find field_value)) rescue nil
        when 'privilege_user'
          object_auth.add_user_to_privilege_list (User.find field_value) rescue nil
        when 'blocked_user'  
          object_auth.add_user_to_black_list (User.find field_value) rescue nil
        end
      end
    end
    redirect_to edit_admin_object_auth_path(object_auth)
   end
  
  def remove_role
    object_auth = ObjectAuth.find(params[:id])
         type = params[:type]
         field_value = params[:target_id]
         if field_value!=''
           case type
           when 'role'
             object_auth.remove_role(Role.find field_value) rescue nil
           when 'sub_role'
             object_auth.remove_sub_role(SubRole.find field_value) rescue nil
           when 'privilege_user'
             object_auth.remove_user_from_privilege_list (User.find field_value) rescue nil
           when 'blocked_user'  
             object_auth.remove_user_from_black_list (User.find field_value) rescue nil
           end
         end
       redirect_to edit_admin_object_auth_path(object_auth)
  end

  def edit
    @object_auth = ObjectAuth.find(params[:id])
  end

private

  def force_order
    authenticate_user!
    check_if_user_can_do_object_auth
  end

  def check_if_user_can_do_object_auth
    unless  check_permission(:manager)
      #render :nothing => true, :status => 403 
      redirect_to '/'
    end
  end
end
first commit for object auth,will take new_blog for experiment 2012-02-07 08:16:48 +00:00			`class Admin::ObjectAuthsController < ApplicationController`
First version for App and Object auth.Taking Announcement as experiment 2012-02-15 10:20:44 +00:00			`include OrbitCoreLib::PermissionUnility`
Integrate App & Object Auth to announcement with i18n variables. Also changed Role and SubRole i18n var. Checked with Allen 2012-04-27 10:38:21 +00:00			`layout "new_admin"`
Fix before_filter order for object_auth 2012-03-20 06:17:28 +00:00			`before_filter :force_order`
first commit for object auth,will take new_blog for experiment 2012-02-07 08:16:48 +00:00			`# before_filter :is_admin? ,:only => :index`

First version for App and Object auth.Taking Announcement as experiment 2012-02-15 10:20:44 +00:00

first commit for object auth,will take new_blog for experiment 2012-02-07 08:16:48 +00:00			`def index`
			`# if current_user.admin?`
			`@object_auths = ObjectAuth.all`
			`# else`
			`# @module_apps = current_user.managing_apps.collect{\|t\| t.managing_app}`
			`# end`
			`end`
build interface to work with object auth. Go to panel/new_blog/back_end/posts/ ,click New Auth link 2012-02-09 11:04:06 +00:00
			`def new`
			`obj = eval(params[:type]).find params[:obj_id]`
			`@object_auth=obj.object_auths.build`
Exp with object_auth 2012-02-13 09:33:48 +00:00			`@object_auth_title_option = eval(params[:type]+"::ObjectAuthTitlesOptions")`
build interface to work with object auth. Go to panel/new_blog/back_end/posts/ ,click New Auth link 2012-02-09 11:04:06 +00:00			`respond_to do \|format\|`
			`format.html # new.html.erb`
			`format.xml { render :xml => @post }`
			`end`
			`end`

			`def create`
			`obj = eval(params[:object_auth][:type]).find params[:object_auth][:obj_id]`
change view and action for announcement ,Lin checked. Also add validation for object_auth make sure for each object,the object will be unique for each action. 2012-02-17 09:50:23 +00:00			`@object_auth=obj.object_auths.build :title=> params[:object_auth][:title]`
			`if @object_auth.save`
			`redirect_to edit_admin_object_auth_path(@object_auth)`
			`else`
Changes for i18n yml 2012-09-12 11:12:50 +00:00			`flash[:error] = t('object.a_object_must_have_only_one_object_auth_profile_for_each_action')`
change view and action for announcement ,Lin checked. Also add validation for object_auth make sure for each object,the object will be unique for each action. 2012-02-17 09:50:23 +00:00			`redirect_to (:back)`
			`end`
build interface to work with object auth. Go to panel/new_blog/back_end/posts/ ,click New Auth link 2012-02-09 11:04:06 +00:00			`end`
first commit for object auth,will take new_blog for experiment 2012-02-07 08:16:48 +00:00
Object Auth. Now object can be included with "include OrbitCoreLib::ObjectAuthable" to use kernel method,such as 1.Object.authed_for_user(user,title_of_object_auth). title_of_object_auth is optional 2.object.authed_users(user,title_of_object_auth) . title_of_object_auth is optional if title_of_object_auth is not given,then it will return calculation across all possiblity. 2012-02-09 09:48:51 +00:00			`def create_role`
			`object_auth = ObjectAuth.find(params[:id])`
add "all_user" for app&object auth 2012-02-16 06:59:26 +00:00			`auth_all = params[:auth_all] \|\| false`
			`object_auth.update_attribute(:all,auth_all)`
			`new_array = params[:new] \|\| []`
			`new_array.each do \|item\|`
build interface to work with object auth. Go to panel/new_blog/back_end/posts/ ,click New Auth link 2012-02-09 11:04:06 +00:00			`field = item[0]`
			`field_value = item[1]`
			`if field_value!=''`
			`case field`
			`when 'role'`
			`object_auth.send("add_#{field}",(Role.find field_value)) rescue nil`
			`when 'sub_role'`
			`object_auth.send("add_#{field}",(SubRole.find field_value)) rescue nil`
			`when 'privilege_user'`
			`object_auth.add_user_to_privilege_list (User.find field_value) rescue nil`
			`when 'blocked_user'`
			`object_auth.add_user_to_black_list (User.find field_value) rescue nil`
			`end`
			`end`
			`end`
			`redirect_to edit_admin_object_auth_path(object_auth)`
Object Auth. Now object can be included with "include OrbitCoreLib::ObjectAuthable" to use kernel method,such as 1.Object.authed_for_user(user,title_of_object_auth). title_of_object_auth is optional 2.object.authed_users(user,title_of_object_auth) . title_of_object_auth is optional if title_of_object_auth is not given,then it will return calculation across all possiblity. 2012-02-09 09:48:51 +00:00			`end`
first commit for object auth,will take new_blog for experiment 2012-02-07 08:16:48 +00:00
Object Auth. Now object can be included with "include OrbitCoreLib::ObjectAuthable" to use kernel method,such as 1.Object.authed_for_user(user,title_of_object_auth). title_of_object_auth is optional 2.object.authed_users(user,title_of_object_auth) . title_of_object_auth is optional if title_of_object_auth is not given,then it will return calculation across all possiblity. 2012-02-09 09:48:51 +00:00			`def remove_role`
			`object_auth = ObjectAuth.find(params[:id])`
			`type = params[:type]`
			`field_value = params[:target_id]`
			`if field_value!=''`
			`case type`
			`when 'role'`
			`object_auth.remove_role(Role.find field_value) rescue nil`
			`when 'sub_role'`
			`object_auth.remove_sub_role(SubRole.find field_value) rescue nil`
			`when 'privilege_user'`
			`object_auth.remove_user_from_privilege_list (User.find field_value) rescue nil`
			`when 'blocked_user'`
			`object_auth.remove_user_from_black_list (User.find field_value) rescue nil`
			`end`
			`end`
			`redirect_to edit_admin_object_auth_path(object_auth)`
first commit for object auth,will take new_blog for experiment 2012-02-07 08:16:48 +00:00			`end`

			`def edit`
			`@object_auth = ObjectAuth.find(params[:id])`
			`end`

First version for App and Object auth.Taking Announcement as experiment 2012-02-15 10:20:44 +00:00			`private`
Fix before_filter order for object_auth 2012-03-20 06:17:28 +00:00
			`def force_order`
			`authenticate_user!`
			`check_if_user_can_do_object_auth`
			`end`

First version for App and Object auth.Taking Announcement as experiment 2012-02-15 10:20:44 +00:00			`def check_if_user_can_do_object_auth`
			`unless check_permission(:manager)`
fix page blank for 403 forbidden. 2012-08-31 10:33:18 +00:00			`#render :nothing => true, :status => 403`
			`redirect_to '/'`
First version for App and Object auth.Taking Announcement as experiment 2012-02-15 10:20:44 +00:00			`end`
			`end`
first commit for object auth,will take new_blog for experiment 2012-02-07 08:16:48 +00:00			`end`