2024-12-28 18:28:28 +01:00
|
|
|
# frozen_string_literal: true
|
|
|
|
|
2024-10-27 21:42:45 +00:00
|
|
|
# Copyright (C) 2024 Manuel Bustillo
|
|
|
|
|
2024-07-11 18:42:31 +02:00
|
|
|
class ApplicationController < ActionController::Base
|
2024-12-02 09:04:48 +01:00
|
|
|
set_current_tenant_through_filter
|
2024-11-30 21:11:25 +01:00
|
|
|
before_action :set_tenant
|
2024-11-30 11:03:29 +01:00
|
|
|
before_action :authenticate_user!
|
2024-11-16 02:16:19 +01:00
|
|
|
after_action :set_csrf_cookie
|
2024-10-27 14:03:13 +01:00
|
|
|
|
2024-11-16 02:16:19 +01:00
|
|
|
skip_before_action :verify_authenticity_token, if: :development_swagger?
|
2024-10-27 14:03:13 +01:00
|
|
|
|
2024-11-16 02:16:19 +01:00
|
|
|
rescue_from ActiveRecord::RecordInvalid do |exception|
|
|
|
|
render json: {
|
|
|
|
message: 'Record invalid',
|
|
|
|
errors: exception.record.errors.full_messages
|
|
|
|
}, status: :unprocessable_entity
|
|
|
|
end
|
|
|
|
|
|
|
|
rescue_from ActionController::ParameterMissing do |exception|
|
|
|
|
render json: {
|
|
|
|
message: 'Parameter missing',
|
|
|
|
errors: [exception.message]
|
|
|
|
}, status: :bad_request
|
|
|
|
end
|
|
|
|
|
|
|
|
rescue_from ActiveRecord::RecordNotFound do |exception|
|
|
|
|
render json: {
|
|
|
|
message: 'Record not found',
|
|
|
|
errors: [exception.message]
|
|
|
|
}, status: :not_found
|
|
|
|
end
|
|
|
|
|
|
|
|
private
|
|
|
|
|
2024-12-01 19:56:49 +01:00
|
|
|
def validate_captcha!
|
|
|
|
Rails.logger.info("Captcha params: #{captcha_params}")
|
|
|
|
|
|
|
|
return if LibreCaptcha.new.valid?(id: captcha_params[:id], answer: captcha_params[:answer])
|
|
|
|
|
|
|
|
render json: { error: 'Incorrect CAPTCHA solution' }, status: :unprocessable_entity
|
|
|
|
end
|
|
|
|
|
|
|
|
def captcha_params
|
2024-12-28 18:28:28 +01:00
|
|
|
params.expect(captcha: %i[id answer])
|
2024-12-01 19:56:49 +01:00
|
|
|
end
|
2024-12-28 18:28:28 +01:00
|
|
|
|
2024-12-01 14:03:06 +01:00
|
|
|
def default_url_options(options = {})
|
|
|
|
options.merge(path_params: { slug: ActsAsTenant.current_tenant&.slug })
|
|
|
|
end
|
|
|
|
|
2024-11-30 21:11:25 +01:00
|
|
|
def set_tenant
|
2024-12-02 09:04:48 +01:00
|
|
|
set_current_tenant(Wedding.find_by!(slug: params[:slug]))
|
2024-11-30 21:11:25 +01:00
|
|
|
end
|
|
|
|
|
2024-11-16 02:16:19 +01:00
|
|
|
def development_swagger?
|
|
|
|
Rails.env.test? ||
|
2024-12-28 18:28:28 +01:00
|
|
|
(Rails.env.development? && request.headers['referer']&.include?('/api-docs/index.html'))
|
2024-11-16 02:16:19 +01:00
|
|
|
end
|
|
|
|
|
|
|
|
def set_csrf_cookie
|
|
|
|
cookies['csrf-token'] = {
|
|
|
|
value: form_authenticity_token,
|
2024-12-08 00:48:42 +01:00
|
|
|
secure: false,
|
2024-11-16 02:16:19 +01:00
|
|
|
same_site: :strict
|
|
|
|
}
|
|
|
|
end
|
2024-07-11 18:42:31 +02:00
|
|
|
end
|