Sign upLogin

18F/C2

View on GitHub
Star
app/controllers/attachments_controller.rb

Summary

Maintainability
A
0 mins
Test Coverage
class AttachmentsController < ApplicationController
  before_action ->{authorize proposal, :can_show!}, only: [:create, :show]
  before_action ->{authorize attachment}, only: [:destroy]
  before_action :setup_flash_manager
  rescue_from Pundit::NotAuthorizedError, with: :auth_errors
  respond_to :js, only: [:create, :destroy]

  def create
    @attachment = construct_attachment
    @proposal = proposal
    if @attachment.save
      @flash_manager.show(flash, "success", "Success! You've added an attachment.")
      DispatchFinder.run(proposal).deliver_attachment_emails(@attachment)
    else
      @flash_manager.show(flash, "error", @attachment.errors.full_messages)
    end
    respond_to_attachment
  end

  def construct_attachment
    if @current_user.active_beta_user? && params[:attachment] != "undefined"
      proposal.attachments.build(file: params[:attachment], user: @current_user)
    else
      proposal.attachments.build(attachments_params)
    end
  end

  def destroy
    @attachment_name = attachment.file_file_name
    attachment.destroy
    @flash_manager.show(flash, "success", "You've deleted an attachment.")
    @proposal = proposal
    respond_to do |format|
      format.js
      format.html {redirect_to proposal_path(attachment.proposal)}
    end
  end

  def show
    redirect_to attachment.url
  end

  protected

  def proposal
    @cached_proposal ||= Proposal.find(params[:proposal_id])
  end

  def attachment
    @cached_attachment ||= Attachment.find(params[:id])
  end

  def attachments_params
    if @current_user.active_beta_user? && params[:attachment] != "undefined"
      beta_attachment_params(params)
    elsif params.permit(attachment: [:file])[:attachment]
      params.permit(attachment: [:file])[:attachment].merge(user: current_user)
    end
  end

  def beta_attachment_params(params)
    params.permit(:attachment)[:attachment].merge(file: params[:attachment], user: current_user)
  end

  def auth_errors(exception)
    redirect_to proposals_path, alert: "You are not allowed to add an attachment to that proposal"
  end

  def respond_to_attachment
    respond_to do |format|
      format.js
      format.html { redirect_to proposal }
    end
  end

  def setup_flash_manager
    @flash_manager = @current_user.active_beta_user? ? FlashWithNow.new : FlashWithoutNow.new
  end
end