2019-05-02 18:17:27 -04:00
|
|
|
# frozen_string_literal: true
|
|
|
|
|
2014-03-05 07:52:20 -05:00
|
|
|
class UserBadgesController < ApplicationController
|
2017-11-21 12:22:24 -05:00
|
|
|
before_action :ensure_badges_enabled
|
|
|
|
|
2014-03-05 07:52:20 -05:00
|
|
|
def index
|
2016-01-18 01:59:07 -05:00
|
|
|
params.permit [:granted_before, :offset, :username]
|
2014-08-25 13:38:20 -04:00
|
|
|
|
|
|
|
badge = fetch_badge_from_params
|
2015-09-24 20:20:47 -04:00
|
|
|
user_badges = badge.user_badges.order('granted_at DESC, id DESC').limit(96)
|
2018-12-06 06:18:52 -05:00
|
|
|
user_badges = user_badges.includes(:user, :granted_by, badge: :badge_type, post: :topic, user: :primary_group)
|
2014-04-22 05:40:47 -04:00
|
|
|
|
2016-01-18 01:59:07 -05:00
|
|
|
grant_count = nil
|
|
|
|
|
|
|
|
if params[:username]
|
2019-10-21 06:32:27 -04:00
|
|
|
user_id = User.where(username_lower: params[:username].downcase).pluck_first(:id)
|
2016-01-18 01:59:07 -05:00
|
|
|
user_badges = user_badges.where(user_id: user_id) if user_id
|
2016-03-04 18:57:32 -05:00
|
|
|
grant_count = badge.user_badges.where(user_id: user_id).count
|
2016-01-18 01:59:07 -05:00
|
|
|
end
|
|
|
|
|
2014-07-18 01:46:36 -04:00
|
|
|
if offset = params[:offset]
|
|
|
|
user_badges = user_badges.offset(offset.to_i)
|
2014-04-16 10:56:11 -04:00
|
|
|
end
|
2014-04-22 05:40:47 -04:00
|
|
|
|
2016-01-18 01:59:07 -05:00
|
|
|
user_badges = UserBadges.new(user_badges: user_badges,
|
|
|
|
username: params[:username],
|
|
|
|
grant_count: grant_count)
|
|
|
|
|
|
|
|
render_serialized(user_badges, UserBadgesSerializer, root: :user_badge_info, include_long_description: true)
|
2014-08-25 13:38:20 -04:00
|
|
|
end
|
|
|
|
|
|
|
|
def username
|
|
|
|
params.permit [:grouped]
|
|
|
|
|
2017-12-07 01:23:27 -05:00
|
|
|
user = fetch_user_from_params(include_inactive: current_user.try(:staff?) || (current_user && SiteSetting.show_inactive_accounts))
|
2020-06-03 09:33:02 -04:00
|
|
|
raise Discourse::NotFound unless guardian.can_see_profile?(user)
|
2015-09-24 20:20:47 -04:00
|
|
|
user_badges = user.user_badges
|
2014-04-22 05:40:47 -04:00
|
|
|
|
2014-06-09 21:23:18 -04:00
|
|
|
if params[:grouped]
|
2014-07-14 03:40:01 -04:00
|
|
|
user_badges = user_badges.group(:badge_id)
|
2016-03-30 17:11:00 -04:00
|
|
|
.select(UserBadge.attribute_names.map { |x| "MAX(#{x}) AS #{x}" }, 'COUNT(*) AS "count"')
|
2014-05-21 03:22:42 -04:00
|
|
|
end
|
|
|
|
|
2021-03-17 01:55:23 -04:00
|
|
|
user_badges = user_badges.includes(badge: [:badge_grouping, :badge_type, :image_upload])
|
2015-09-24 20:20:47 -04:00
|
|
|
.includes(post: :topic)
|
|
|
|
.includes(:granted_by)
|
|
|
|
|
2016-01-18 01:59:07 -05:00
|
|
|
render_serialized(user_badges, DetailedUserBadgeSerializer, root: :user_badges)
|
2014-03-05 07:52:20 -05:00
|
|
|
end
|
|
|
|
|
|
|
|
def create
|
|
|
|
params.require(:username)
|
|
|
|
user = fetch_user_from_params
|
|
|
|
|
|
|
|
unless can_assign_badge_to_user?(user)
|
2018-11-28 12:01:41 -05:00
|
|
|
return render json: failed_json, status: 403
|
2014-03-05 07:52:20 -05:00
|
|
|
end
|
|
|
|
|
|
|
|
badge = fetch_badge_from_params
|
2015-02-24 20:52:43 -05:00
|
|
|
post_id = nil
|
2014-03-05 07:52:20 -05:00
|
|
|
|
2015-02-24 20:52:43 -05:00
|
|
|
if params[:reason].present?
|
2018-11-28 12:01:41 -05:00
|
|
|
unless is_badge_reason_valid? params[:reason]
|
2018-12-31 04:46:39 -05:00
|
|
|
return render json: failed_json.merge(message: I18n.t('invalid_grant_badge_reason_link')), status: 400
|
2018-11-28 12:01:41 -05:00
|
|
|
end
|
|
|
|
|
2018-12-31 03:04:47 -05:00
|
|
|
if route = Discourse.route_for(params[:reason])
|
2020-06-29 06:31:20 -04:00
|
|
|
if route[:controller] == "topics" && route[:action] == "show"
|
|
|
|
topic_id = (route[:id] || route[:topic_id]).to_i
|
|
|
|
post_number = route[:post_number] || 1
|
|
|
|
post_id = Post.find_by(topic_id: topic_id, post_number: post_number)&.id if topic_id > 0
|
|
|
|
end
|
2015-02-24 20:52:43 -05:00
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
user_badge = BadgeGranter.grant(badge, user, granted_by: current_user, post_id: post_id)
|
|
|
|
|
|
|
|
render_serialized(user_badge, DetailedUserBadgeSerializer, root: "user_badge")
|
2014-03-05 07:52:20 -05:00
|
|
|
end
|
|
|
|
|
|
|
|
def destroy
|
|
|
|
params.require(:id)
|
|
|
|
user_badge = UserBadge.find(params[:id])
|
|
|
|
|
|
|
|
unless can_assign_badge_to_user?(user_badge.user)
|
|
|
|
render json: failed_json, status: 403
|
|
|
|
return
|
|
|
|
end
|
|
|
|
|
2014-03-19 15:30:12 -04:00
|
|
|
BadgeGranter.revoke(user_badge, revoked_by: current_user)
|
2014-03-05 07:52:20 -05:00
|
|
|
render json: success_json
|
|
|
|
end
|
|
|
|
|
|
|
|
private
|
|
|
|
|
|
|
|
# Get the badge from either the badge name or id specified in the params.
|
|
|
|
def fetch_badge_from_params
|
|
|
|
badge = nil
|
2018-06-07 01:28:18 -04:00
|
|
|
|
2014-03-05 07:52:20 -05:00
|
|
|
params.permit(:badge_name)
|
|
|
|
if params[:badge_name].nil?
|
|
|
|
params.require(:badge_id)
|
2014-07-14 03:40:01 -04:00
|
|
|
badge = Badge.find_by(id: params[:badge_id], enabled: true)
|
2014-03-05 07:52:20 -05:00
|
|
|
else
|
2014-07-14 03:40:01 -04:00
|
|
|
badge = Badge.find_by(name: params[:badge_name], enabled: true)
|
2014-03-05 07:52:20 -05:00
|
|
|
end
|
2015-05-06 21:00:51 -04:00
|
|
|
raise Discourse::NotFound if badge.blank?
|
2014-03-05 07:52:20 -05:00
|
|
|
|
|
|
|
badge
|
|
|
|
end
|
2017-11-21 12:22:24 -05:00
|
|
|
|
2014-03-05 07:52:20 -05:00
|
|
|
def can_assign_badge_to_user?(user)
|
|
|
|
master_api_call = current_user.nil? && is_api?
|
|
|
|
master_api_call || guardian.can_grant_badges?(user)
|
2018-06-07 01:28:18 -04:00
|
|
|
end
|
|
|
|
|
2017-11-21 12:22:24 -05:00
|
|
|
def ensure_badges_enabled
|
|
|
|
raise Discourse::NotFound unless SiteSetting.enable_badges?
|
|
|
|
end
|
2018-11-28 12:01:41 -05:00
|
|
|
|
|
|
|
def is_badge_reason_valid?(reason)
|
|
|
|
route = Discourse.route_for(reason)
|
|
|
|
route && (route[:controller] == 'posts' || route[:controller] == 'topics')
|
|
|
|
end
|
2014-03-05 07:52:20 -05:00
|
|
|
end
|