hacken-in/hacken-in

class ApplicationController < ActionController::Base
  include OpengraphHelper

  protect_from_forgery with: :exception

  before_filter :set_current_user, :all_regions
  before_filter :configure_permitted_parameters, if: :devise_controller?
  before_action :skip_session_cookie

  rescue_from CanCan::AccessDenied do |exception|
    redirect_to root_url, alert: "Leider darfst du das nicht."
  end

  def authenticate_admin_user!
    # Rais error if not signed in or user not allowed to see the dashboard
    raise SecurityError and return if active_admin_user.nil?
    authenticate_user!
  end

  def after_sign_in_path_for(resource)
    "/deutschland"
  end

  def active_admin_user #use predefined method name
    return nil if !user_signed_in? || !can?(:read, ActiveAdmin::Page, :name => "Dashboard")
    current_user
  end
  helper_method :active_admin_user

  rescue_from SecurityError do |exception|
    redirect_to root_url, alert: "Leider darfst du das nicht :("
  end

  def all_regions
    @all_regions = Region.where(active: true)
  end

  def current_region
    @current_region ||= RegionSlug.find_by_slug(params[:region]).try(:region) || Region.find_by_id(params[:region])
  end
  helper_method :current_region

  # Raise a Not Found Routing Exception if no region was set
  def require_region!
    raise ActionController::RoutingError.new('Not Found') if current_region.nil?
  end

  def get_ical_link_for(action, protocol)
    if protocol == 'google'
      raw_url = url_for(action: action, protocol: 'http', controller: 'ical', format: 'ical', guid: current_user.guid, region: current_region.main_slug)
      "http://google.com/calendar/render?cid=#{CGI.escape(raw_url)}"
    else
      url_for(action: action, protocol: protocol, controller: 'ical', format: 'ical', guid: current_user.guid, region: current_region.main_slug)
    end
  end
  helper_method :get_ical_link_for

  def we_are_running_on_master
    Rails.application.config.x.release_stage == :master
  end
  helper_method :we_are_running_on_master

  def skip_session_cookie
    request.session_options[:skip] = true if privacy_mode?
  end

  def privacy_mode?
    cookies[:disable_privacy_mode].nil?
  end
  helper_method :privacy_mode?

  protected

  def configure_permitted_parameters
    devise_parameter_sanitizer.permit(:sign_up, keys: [:nickname, :name])
    devise_parameter_sanitizer.permit(:account_update, keys: [:nickname, :name, :description, :twitter, :github, :homepage, :gravatar_email, :allow_ignore_view ])
  end

  private

  def set_current_user
    User.current = current_user
  end

end