RubygemsResearch

Sha256: cc67f8473410b48dd94f68804bf32ce6ea71f74093217732763449cbe20293f9

Contents?: true

Size: 1.09 KB

Versions: 1

Compression:

Stored size: 1.09 KB

class Api::UserController < ApplicationController
  before_filter :authenticate_user!
  before_filter :require_user_update_permission

  def update
    user_json = JSON.parse(request.body.read)['user']
    oauth_hash = build_gds_oauth_hash(user_json)
    GDS::SSO::Config.user_klass.find_for_gds_oauth(oauth_hash)
    head :ok
  end

  def reauth
    user = GDS::SSO::Config.user_klass.find_by_uid(params[:uid])
    if user.nil? || user.set_remotely_signed_out!
      head :ok
    else
      head 500
    end
  end

  private
    # This should mirror the object created by the omniauth-gds strategy/gem
    # By doing this, we can reuse the code for creating/updating the user
    def build_gds_oauth_hash(user_json)
      OmniAuth::AuthHash.new(
          uid: user_json['uid'], 
          provider: 'gds', 
          info: { 
            name: user_json['name'], 
            email: user_json['email']
          }, 
          extra: { 
            user: { permissions: user_json['permissions'] }
          })
    end

    def require_user_update_permission
      authorise_user!("user_update_permission")
    end
end

Version data entries

1 entries across 1 versions & 1 rubygems

Version	Path
gds-sso-3.0.5	app/controllers/api/user_controller.rb