Sign upLogin

SumOfUs/Champaign

View on GitHub
Star
app/controllers/api/member_services_controller.rb

Summary

Maintainability
A
0 mins
Test Coverage
# frozen_string_literal: true

class Api::MemberServicesController < ApplicationController
  skip_before_action :verify_authenticity_token
  before_action :authenticate_member_services

  def cancel_recurring_donation
    @permitted_params ||= params.permit(:provider, :id)
    @donations_updater = MemberServicesDonationsUpdater.new(@permitted_params.to_h)

    if @donations_updater.cancel
      render 'api/member_services/cancel_recurring_donation', status: 200
    else
      render json: { errors: @donations_updater.errors }, status: @donations_updater.status
    end
  end

  def gocardless_customers
    @permitted_params ||= params.permit(:email)
    member = Member.find_by(email: @permitted_params[:email])
    customers = member.present? ? Payment::GoCardless::Customer.where(member_id: member.id) : []

    render json: customers.map(&:go_cardless_id)
  end

  def update_member
    email = params.require(:email)
    member_params = params.require(:member).permit(:email, :first_name, :last_name, :country, :postal)
    service = MemberServices::MemberUpdater.new(email, member_params)
    if service.run
      @member = service.member
      render 'api/member_services/member', status: :ok
    else
      render json: { errors: service.errors }, status: :unprocessable_entity
    end
  end

  def subject_access_request
    email = params.require(:email)
    member = Member.find_by(email: email)
    service = MemberExporter.new(member)
    if service.raw_data
      @data = service.data
      render 'api/member_services/subject_access_request', status: :ok
    else
      render json: { errors: ['There was an issue with the Champaign MemberExporter. Check application logs.'] }
    end
  end

  def forget_member
    email = params.require(:email)
    member = Member.find_by(email: email)
    ForgetMember.forget(member) if member
    head :no_content
  end

  private

  def authenticate_member_services
    signature = request.headers['X-CHAMPAIGN-SIGNATURE']
    nonce = request.headers['X-CHAMPAIGN-NONCE']

    unless [signature, nonce].all?
      render json: { errors: 'Missing authentication header or nonce.' }, status: :unauthorized
      return
    end

    validator = Api::HMACSignatureValidator.new(
      secret: Settings.member_services_secret,
      signature: signature,
      data: nonce
    )

    unless validator.valid?
      Rails.logger.error('Access violation for member services API.')
      render json: { errors: 'Invalid authentication header.' }, status: :unauthorized
      return
    end
  end
end