# encoding: utf-8 #-- # Copyright (C) 2012 Gitorious AS # Copyright (C) 2009 Nokia Corporation and/or its subsidiary(-ies) # Copyright (C) 2009 Fabio Akita # Copyright (C) 2008 David A. Cuadrado # Copyright (C) 2008 Tor Arne Vestbø # Copyright (C) 2007, 2008 Johan Sørensen # # This program is free software: you can redistribute it and/or modify # it under the terms of the GNU Affero General Public License as published by # the Free Software Foundation, either version 3 of the License, or # (at your option) any later version. # # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU Affero General Public License for more details. # # You should have received a copy of the GNU Affero General Public License # along with this program. If not, see . #++ class UsersController < ApplicationController skip_before_filter :public_and_logged_in, :only => [:pending_activation, :activate, :forgot_password, :forgot_password_create, :reset_password] before_filter :require_not_logged_in, :only => [:pending_activation] before_filter :login_required, :only => [:edit, :update, :password, :update_password, :avatar] before_filter :find_user, :only => [:show, :edit, :update, :password, :update_password, :avatar] before_filter :require_current_user, :only => [:edit, :update, :password, :update_password, :avatar] before_filter :require_identity_url_in_session, :only => [:openid_build, :openid_create] before_filter :require_public_user, :only => :show renders_in_global_context layout :decide_layout # render new.rhtml def new end def show @projects = filter(@user.projects.includes(:tags, { :repositories => :project })) @repositories = filter(@user.commit_repositories) @events = paginated_events return if @events.count == 0 && params.key?(:page) @messages = @user.messages_in_inbox(3) if @user == current_user @favorites = filter(@user.favorites.all(:include => :watchable)) @atom_auto_discovery_url = user_feed_path(@user, :format => :atom) @atom_auto_discovery_title = "Public activity feed" respond_to do |format| format.html { } format.atom { redirect_to user_feed_path(@user, :format => :atom) } end end def feed @user = User.find_by_login!(params[:id]) @events = filter(@user.events.order("events.created_at desc"). includes(:user, :project).limit(30)) respond_to do |format| format.html { redirect_to user_path(@user) } format.atom { } end end def watchlist @user = User.find_by_login!(params[:id]) @events = filter(@user.paginated_events_in_watchlist({:page => 1})) respond_to do |wants| wants.atom { render :template => "users/feed" } end end def create login = params[:user].delete(:login) password = params[:user].delete(:password) password_confirmation = params[:user].delete(:password_confirmation) @user = User.new(params[:user]) @user.login = login @user.password = password @user.password_confirmation = password_confirmation @user.save! if !@user.terms_of_use.blank? @user.accept_terms! end redirect_to :action => "pending_activation" rescue ActiveRecord::RecordInvalid render :action => 'new' end # render pending_activation.html.erb def pending_activation end def activate if user = User.find_by_activation_code(params[:activation_code]) self.current_user = user if logged_in? && !current_user.activated? current_user.activate flash[:notice] = I18n.t "users_controller.activate_notice" end else flash[:error] = I18n.t "users_controller.activate_error" end redirect_back_or_default('/') end def forgot_password end def forgot_password_create if params[:user] && user = User.find_by_email(params[:user][:email]) if user.activated? password_key = user.forgot_password! Mailer.forgotten_password(user, password_key).deliver flash[:success] = "A password confirmation link has been sent to your email address" redirect_to(root_path) else flash[:error] = I18n.t 'users_controller.reset_password_inactive_account' redirect_to forgot_password_users_path end else flash[:error] = I18n.t "users_controller.reset_password_error" redirect_to forgot_password_users_path end end def reset_password @user = User.find_by_password_key(params[:token]) unless @user flash[:error] = I18n.t "users_controller.reset_password_error" redirect_to forgot_password_users_path return end if request.put? @user.password = params[:user][:password] @user.password_confirmation = params[:user][:password_confirmation] if @user.save flash[:success] = "Password updated" redirect_to(new_sessions_path) end end end def edit @user = current_user end def update @user = current_user params[:user].delete(:password) params[:user].delete(:password_confirmation) if current_user.save flash[:success] = "Your account details were updated" redirect_to user_path else render :action => "edit" end end def password @user = current_user end def update_password @user = current_user if User.authenticate(current_user.email, params[:user][:current_password]) || @user.is_openid_only? @user.password = params[:user][:password] @user.password_confirmation = params[:user][:password_confirmation] if @user.save flash[:success] = "Your password has been changed" redirect_to user_path(@user) else render :action => "password" end else flash[:error] = "Your current password does not seem to match the one your supplied" render :action => "password" end end def openid_build @user = User.new(:identity_url => session[:openid_url], :email => session[:openid_email], :fullname => session[:openid_fullname]) @user.login = session[:openid_nickname] @user end def openid_create login = params[:user].delete(:login) @user = User.new(params[:user]) @user.login = login @user.identity_url = session[:openid_url] if @user.save if !@user.terms_of_use.blank? @user.accept_terms! end @user.activate [:openid_url, :openid_email, :openid_nickname, :openid_fullname].each do |k| session.delete(k) end self.current_user = @user flash[:success] = "Your user profile was successfully created" redirect_to root_path else render :action => 'openid_build' end end # DELETE avatar def avatar @user.avatar.destroy @user.save flash[:success] = "You profile image was deleted" redirect_to user_path end def delete_current @user = current_user if(@user.deletable?) flash[:success] = I18n.t "users_controller.account_deleted" @user.destroy redirect_to(root_path) else flash[:error] = I18n.t "users_controller.delete_your_repos_and_projects_first" redirect_to(user_path(@user)) end end protected def find_user @user = User.find_by_login!(params[:id]) end def require_identity_url_in_session if session[:openid_url].blank? redirect_to :action => "new" and return end end def require_public_user unless @user.public? flash[:notice] = "This user profile is not public" redirect_back_or_default root_path end end def decide_layout if [:new, :create, :forgot_password, :pending_activation, :reset_password ].include?(action_name.to_sym) "second_generation/application" else "application" end end def paginated_events paginate(page_free_redirect_options) do filter_paginated(params[:page], FeedItem.per_page) do |page| res = @user.events.excluding_commits.paginate(:page => page, :order => "events.created_at desc", :include => [:user, :project]) end end end end