Sha256: 73a228a55cb93e58bd22e90616462c31104886e83243f1abdcfde87948a44850
Contents?: true
Size: 1.56 KB
Versions: 74
Compression:
Stored size: 1.56 KB
Contents
require_dependency "avo/application_controller"
module Avo
class AttachmentsController < ApplicationController
before_action :set_resource_name, only: [:destroy, :create]
before_action :set_resource, only: [:destroy, :create]
before_action :set_record, only: [:destroy, :create]
def create
blob = ActiveStorage::Blob.create_and_upload! io: params[:file].to_io, filename: params[:filename]
association_name = BaseResource.valid_attachment_name(@record, params[:attachment_key])
if association_name.blank?
raise ActionController::BadRequest.new("Could not find the attachment association for #{params[:attachment_key]} (check the `attachment_key` for this Trix field)")
end
@record.send(association_name).attach blob
render json: {
url: main_app.url_for(blob),
href: main_app.url_for(blob)
}
end
def destroy
if authorized_to :delete
attachment = ActiveStorage::Attachment.find(params[:attachment_id])
flash[:notice] = if attachment.present?
@destroyed = attachment.destroy
t("avo.attachment_destroyed")
else
t("avo.failed_to_find_attachment")
end
else
flash[:notice] = t("avo.not_authorized")
end
respond_to do |format|
format.turbo_stream do
render "destroy"
end
end
end
private
def authorized_to(action)
@resource.authorization.authorize_action("#{action}_#{params[:attachment_name]}?", record: @record, raise_exception: false)
end
end
end
Version data entries
74 entries across 74 versions & 1 rubygems