Sign upLogin

internetee/registry

View on GitHub
Star
app/controllers/api/v1/registrant/confirms_controller.rb

Summary

Maintainability
A
0 mins
Test Coverage
A
91%
require 'serializers/registrant_api/domain'

module Api
  module V1
    module Registrant
      class ConfirmsController < ::Api::V1::Registrant::BaseController
        skip_before_action :authenticate, :set_paper_trail_whodunnit
        before_action :set_domain, only: %i[index update]
        before_action :verify_action, only: %i[index update]
        before_action :verify_decision, only: %i[update]

        def index
          res = {
            domain_name: @domain.name,
            current_registrant: serialized_registrant(@domain.registrant),
          }

          res[:new_registrant] = serialized_registrant(@domain.pending_registrant) unless delete_action?

          render json: res, status: :ok
        end

        def update
          verification = RegistrantVerification.new(domain_id: @domain.id,
                                                    verification_token: verify_params[:token])

          unless delete_action? ? delete_action(verification) : change_action(verification)
            head :bad_request
            return
          end

          render json: { domain_name: @domain.name,
                         current_registrant: serialized_registrant(current_registrant),
                         status: params[:decision] }, status: :ok
        end

        private

        def initiator
          "email link, #{I18n.t(:user_not_authenticated)}"
        end

        def current_registrant
          confirmed? && !delete_action? ? @domain.pending_registrant : @domain.registrant
        end

        def confirmed?
          verify_params[:decision] == 'confirmed'
        end

        def change_action(verification)
          if confirmed?
            verification.domain_registrant_change_confirm!(initiator)
          else
            verification.domain_registrant_change_reject!(initiator)
          end
        end

        def delete_action(verification)
          if confirmed?
            verification.domain_registrant_delete_confirm!(initiator)
          else
            verification.domain_registrant_delete_reject!(initiator)
          end
        end

        def serialized_registrant(registrant)
          {
            name: registrant.try(:name),
            ident: registrant.try(:ident),
            country: registrant.try(:ident_country_code),
          }
        end

        def verify_params
          params do |p|
            p.require(:name)
            p.require(:token)
            p.permit(:decision)
          end
        end

        def delete_action?
          return true if params[:template] == 'delete'

          false
        end

        def verify_decision
          return if %w[confirmed rejected].include?(params[:decision])

          head :not_found
        end

        def set_domain
          @domain = Domain.find_by(name: verify_params[:name])
          @domain ||= Domain.find_by(name_puny: verify_params[:name])
          return if @domain

          render json: { error: 'Domain not found' }, status: :not_found
        end

        def verify_action
          action = case params[:template]
                   when 'change'
                     @domain.registrant_update_confirmable?(verify_params[:token])
                   when 'delete'
                     @domain.registrant_delete_confirmable?(verify_params[:token])
                   end

          return if action

          render json: { error: 'Application expired or not found' }, status: :unauthorized
        end
      end
    end
  end
end