2014-11-06 16:25:27 +01:00
|
|
|
class UsersController < ApplicationController
|
2015-02-12 14:39:58 +01:00
|
|
|
load_and_authorize_resource
|
|
|
|
|
2014-11-06 16:25:27 +01:00
|
|
|
def show
|
2015-01-09 12:31:14 +01:00
|
|
|
@user = User.find_by_id(params[:id]) || current_user
|
2015-03-12 13:25:11 +01:00
|
|
|
@orders = @user.orders
|
|
|
|
.active
|
|
|
|
.order(:created_at)
|
|
|
|
.reverse_order
|
|
|
|
.paginate(page: params[:page])
|
|
|
|
@products = @user.products
|
|
|
|
.select("products.*", "sum(order_items.count) as count")
|
|
|
|
.where("orders.cancelled = ?", false)
|
|
|
|
.group(:product_id)
|
|
|
|
.order("count")
|
|
|
|
.reverse_order
|
|
|
|
@categories = @user.products
|
|
|
|
.select("products.category", "sum(order_items.count) as count")
|
|
|
|
.where("orders.cancelled = ?", false)
|
|
|
|
.group(:category)
|
2014-11-06 16:25:27 +01:00
|
|
|
end
|
2014-11-06 18:30:53 +01:00
|
|
|
|
2015-03-20 02:21:56 +01:00
|
|
|
def edit
|
|
|
|
@user = User.find(params[:id])
|
|
|
|
end
|
|
|
|
|
|
|
|
def update
|
|
|
|
@user = User.find(params[:id])
|
|
|
|
if @user.update_attributes(user_params)
|
2015-03-25 17:49:37 +01:00
|
|
|
flash[:success] = "Successfully updated!"
|
|
|
|
redirect_to @user
|
2015-03-20 02:21:56 +01:00
|
|
|
else
|
|
|
|
render 'edit'
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2014-11-23 21:12:31 +01:00
|
|
|
def index
|
2015-01-06 20:18:01 +01:00
|
|
|
@users = User.members
|
2014-11-23 21:12:31 +01:00
|
|
|
end
|
2014-12-09 22:32:54 +01:00
|
|
|
|
|
|
|
def destroy
|
2015-02-10 07:15:25 +01:00
|
|
|
@user = User.find(params[:id])
|
|
|
|
@user.destroy
|
2014-12-09 22:32:54 +01:00
|
|
|
flash[:success] = "Succesfully removed user"
|
2015-03-12 13:25:11 +01:00
|
|
|
redirect_to users_path
|
2014-12-09 22:32:54 +01:00
|
|
|
end
|
|
|
|
|
2015-03-19 14:59:37 +01:00
|
|
|
def edit_dagschotel
|
|
|
|
@user = User.find(params[:user_id])
|
|
|
|
@dagschotel = @user.dagschotel
|
2015-03-19 16:22:55 +01:00
|
|
|
|
|
|
|
@products = Product.all
|
|
|
|
@categories = Product.categories
|
2015-03-19 14:59:37 +01:00
|
|
|
end
|
|
|
|
|
|
|
|
def update_dagschotel
|
|
|
|
@user = User.find(params[:user_id])
|
|
|
|
@user.dagschotel = Product.find(params[:product_id])
|
2015-03-12 13:25:11 +01:00
|
|
|
|
2015-03-19 16:22:55 +01:00
|
|
|
@products = Product.all
|
|
|
|
@categories = Product.categories
|
|
|
|
|
2015-03-19 14:59:37 +01:00
|
|
|
if @user.save
|
2015-01-13 13:06:42 +01:00
|
|
|
flash[:success] = "Succesfully updated dagschotel"
|
2015-03-19 14:59:37 +01:00
|
|
|
redirect_to @user
|
2014-12-17 07:31:51 +01:00
|
|
|
else
|
|
|
|
flash[:error] = "Error updating dagschotel"
|
2015-03-19 14:59:37 +01:00
|
|
|
@dagschotel = @user.reload.dagschotel
|
|
|
|
render 'edit_dagschotel'
|
2014-12-17 07:31:51 +01:00
|
|
|
end
|
2015-03-12 13:25:11 +01:00
|
|
|
|
2014-12-10 14:18:56 +01:00
|
|
|
end
|
2015-03-19 14:59:37 +01:00
|
|
|
|
|
|
|
private
|
|
|
|
|
|
|
|
def init
|
|
|
|
@user = User.find(params[:user_id])
|
|
|
|
redirect_to root_path, error: "You are not authorized to access this page." unless @user == current_user || current_user.admin?
|
|
|
|
end
|
2015-03-20 02:21:56 +01:00
|
|
|
|
|
|
|
def user_params
|
2015-06-30 22:30:34 +02:00
|
|
|
params.fetch(:user, {}).permit(:avatar, :private)
|
2015-03-20 02:21:56 +01:00
|
|
|
end
|
2014-11-06 16:25:27 +01:00
|
|
|
end
|