Sign upLogin

ece517-p3/expertiza

View on GitHub
Star
app/controllers/publishing_controller.rb

Summary

Maintainability
A
25 mins
Test Coverage
class PublishingController < ApplicationController
  def action_allowed?
    current_role_name.eql?("Student")
  end

  def view
    @user = User.find(session[:user].id) # Find again, because the user's certificate may have changed since login
    @participants = AssignmentParticipant.where(user_id: session[:user].id)
  end

  def set_publish_permission
    participant = AssignmentParticipant.find(params[:id])
    return unless current_user_id?(participant.user_id)

    if params[:allow] == '1'
      redirect_to action: 'grant'
    else
      participant.update_attribute('permission_granted', params[:allow])
      redirect_to action: 'view'
    end
  end

  def update_publish_permissions
    if params[:allow] == '1'
      redirect_to action: 'grant'
    else
      participants = AssignmentParticipant.where(user_id: session[:user].id)
      participants.each do |participant|
        participant.update_attribute('permission_granted', params[:allow])
        participant.digital_signature = nil
        participant.time_stamp = nil
        participant.save
      end
      redirect_to action: 'view'
    end
  end

  # Put up the page where the user can supply their private key and grant publishing rights
  def grant
    # Lookup the specific assignment (if any) that the user is granting publishing rights to.
    # This will be nil when the user is granting to all past assignments.
    @participant = AssignmentParticipant.find(params[:id]) unless params[:id].nil?
    @user = User.find(session[:user].id) # Find again, because the user's certificate may have changed since login
    end

  # Grant publishing rights using the private key supplied by the student
  def grant_with_private_key
    participants = if params[:id]
                     [AssignmentParticipant.find(params[:id])]
                   else
                     AssignmentParticipant.where(user_id: session[:user].id)
                   end
    private_key = params[:private_key]

    begin
      AssignmentParticipant.grant_publishing_rights(private_key, participants)
      redirect_to action: 'view'
    rescue StandardError
      flash[:notice] = 'The private key you inputted was invalid.'
      if !params[:id].nil?
        redirect_to action: 'grant', id: participants[0].id
      else
        redirect_to action: 'grant'
      end
    end
  end
end