Sha256: 1cf2ae4c3027703a02069d6a5f7f529cf16383c89b5a6864f43cb124231f8f4e
Contents?: true
Size: 1.22 KB
Versions: 1
Compression:
Stored size: 1.22 KB
Contents
class Api::UserController < ApplicationController skip_before_filter :verify_authenticity_token before_filter :authenticate_user! before_filter :require_user_update_permission def update user_json = JSON.parse(request.body.read)['user'] oauth_hash = build_gds_oauth_hash(user_json) GDS::SSO::Config.user_klass.find_for_gds_oauth(oauth_hash) head :ok end def reauth user = GDS::SSO::Config.user_klass.where(:uid => params[:uid]).first if user.nil? || user.set_remotely_signed_out! head :ok else head 500 end end private # This should mirror the object created by the omniauth-gds strategy/gem # By doing this, we can reuse the code for creating/updating the user def build_gds_oauth_hash(user_json) OmniAuth::AuthHash.new( uid: user_json['uid'], provider: 'gds', info: { name: user_json['name'], email: user_json['email'] }, extra: { user: { permissions: user_json['permissions'], organisation: user_json['organisation'], } }) end def require_user_update_permission authorise_user!("user_update_permission") end end
Version data entries
1 entries across 1 versions & 1 rubygems
Version | Path |
---|---|
gds-sso-6.0.0 | app/controllers/api/user_controller.rb |