fab-manager/app/controllers/api/abuses_controller.rb

# frozen_string_literal: true

# API Controller for resources of type Abuse.
# Typical action is an user reporting an abuse on a project
class API::AbusesController < API::APIController
  before_action :authenticate_user!, except: :create
  before_action :set_abuse, only: %i[destroy]

  def index
    authorize Abuse
    @abuses = Abuse.all
  end

  def create
    @abuse = Abuse.new(abuse_params)
    if @abuse.save
      render status: :created
    else
      render json: @abuse.errors.full_messages, status: :unprocessable_entity
    end
  end

  def destroy
    authorize Abuse
    @abuse.destroy
    head :no_content
  end

  private

  def set_abuse
    @abuse = Abuse.find(params[:id])
  end

  def abuse_params
    params.require(:abuse).permit(:signaled_type, :signaled_id, :first_name, :last_name, :email, :message)
  end
end
code comments 2019-01-08 09:56:07 +01:00			`# frozen_string_literal: true`

			`# API Controller for resources of type Abuse.`
			`# Typical action is an user reporting an abuse on a project`
(security) upgrade to rails 6 2023-02-24 17:26:55 +01:00			`class API::AbusesController < API::APIController`
release 2.0 rc 2016-03-23 18:39:41 +01:00			`before_action :authenticate_user!, except: :create`
[ongoing] abuses management interface 2019-05-09 18:27:19 +02:00			`before_action :set_abuse, only: %i[destroy]`

			`def index`
			`authorize Abuse`
			`@abuses = Abuse.all`
			`end`
release 2.0 rc 2016-03-23 18:39:41 +01:00
			`def create`
			`@abuse = Abuse.new(abuse_params)`
			`if @abuse.save`
			`render status: :created`
			`else`
			`render json: @abuse.errors.full_messages, status: :unprocessable_entity`
			`end`
			`end`

[ongoing] abuses management interface 2019-05-09 18:27:19 +02:00			`def destroy`
			`authorize Abuse`
			`@abuse.destroy`
			`head :no_content`
			`end`

release 2.0 rc 2016-03-23 18:39:41 +01:00			`private`

[ongoing] abuses management interface 2019-05-09 18:27:19 +02:00			`def set_abuse`
			`@abuse = Abuse.find(params[:id])`
			`end`

release 2.0 rc 2016-03-23 18:39:41 +01:00			`def abuse_params`
			`params.require(:abuse).permit(:signaled_type, :signaled_id, :first_name, :last_name, :email, :message)`
			`end`
			`end`