mirror of
https://github.com/we-promise/sure.git
synced 2026-04-09 23:34:50 +00:00
560c9fbff3
* Initial account sharing changes * Update schema.rb * Update schema.rb * Change sharing UI to modal * UX fixes and sharing controls * Scope include in finances better * Update totals.rb * Update totals.rb * Scope reports to finance account scope * Update impersonation_sessions_controller_test.rb * Review fixes * Update schema.rb * Update show.html.erb * FIX db validation * Refine edit permissions * Review items * Review * Review * Add application level helper * Critical review * Address remaining review items * Fix modals * more scoping * linter * small UI fix * Fix: Sync broadcasts push unscoped balance sheet to all users * Update sync_complete_event.rb The fix removes the sidebar broadcasts (which rendered unscoped account groups using family.balance_sheet without user context) along with the now-unused sidebar_targets, account_group, and family_balance_sheet private methods. The sidebar will still update correctly — when the sync completes, Family::SyncCompleteEvent#broadcast fires family.broadcast_refresh, which triggers a morph-based page refresh for each user with their own authenticated session, rendering properly scoped sidebar content.
119 lines
3.3 KiB
Ruby
119 lines
3.3 KiB
Ruby
class PropertiesController < ApplicationController
|
|
include AccountableResource, StreamExtensions
|
|
|
|
before_action :set_property, only: [ :balances, :address, :update_balances, :update_address ]
|
|
before_action :require_property_write_permission!, only: [ :update_balances, :update_address ]
|
|
|
|
def new
|
|
@account = Current.family.accounts.build(accountable: Property.new)
|
|
end
|
|
|
|
def create
|
|
@account = Current.family.accounts.create!(
|
|
property_params.merge(currency: Current.family.currency, balance: 0, status: "draft", owner: Current.user)
|
|
)
|
|
@account.auto_share_with_family! if Current.family.share_all_by_default?
|
|
|
|
redirect_to balances_property_path(@account)
|
|
end
|
|
|
|
def update
|
|
if @account.update(property_params)
|
|
@success_message = "Property details updated successfully."
|
|
|
|
if @account.active?
|
|
render :edit
|
|
else
|
|
redirect_to balances_property_path(@account)
|
|
end
|
|
else
|
|
@error_message = "Unable to update property details."
|
|
render :edit, status: :unprocessable_entity
|
|
end
|
|
end
|
|
|
|
def edit
|
|
end
|
|
|
|
def balances
|
|
end
|
|
|
|
def update_balances
|
|
result = @account.set_current_balance(balance_params[:balance].to_d)
|
|
|
|
if result.success?
|
|
@success_message = "Balance updated successfully."
|
|
|
|
if @account.active?
|
|
render :balances
|
|
else
|
|
redirect_to address_property_path(@account)
|
|
end
|
|
else
|
|
@error_message = result.error_message
|
|
render :balances, status: :unprocessable_entity
|
|
end
|
|
end
|
|
|
|
def address
|
|
@property = @account.property
|
|
@property.address ||= Address.new
|
|
end
|
|
|
|
def update_address
|
|
if @account.property.update(address_params)
|
|
if @account.draft?
|
|
@account.activate!
|
|
|
|
respond_to do |format|
|
|
format.html { redirect_to account_path(@account) }
|
|
format.turbo_stream { stream_redirect_to account_path(@account) }
|
|
end
|
|
else
|
|
@success_message = "Address updated successfully."
|
|
render :address
|
|
end
|
|
else
|
|
@error_message = "Unable to update address. Please check the required fields."
|
|
render :address, status: :unprocessable_entity
|
|
end
|
|
end
|
|
|
|
private
|
|
def balance_params
|
|
params.require(:account).permit(:balance, :currency)
|
|
end
|
|
|
|
def address_params
|
|
params.require(:property)
|
|
.permit(address_attributes: [ :line1, :line2, :locality, :region, :country, :postal_code ])
|
|
end
|
|
|
|
def property_params
|
|
params.require(:account)
|
|
.permit(
|
|
:name,
|
|
:accountable_type,
|
|
:institution_name,
|
|
:institution_domain,
|
|
:notes,
|
|
accountable_attributes: [ :id, :subtype, :year_built, :area_unit, :area_value ]
|
|
)
|
|
end
|
|
|
|
def set_property
|
|
@account = accessible_accounts.find(params[:id])
|
|
@property = @account.property
|
|
end
|
|
|
|
def require_property_write_permission!
|
|
permission = @account.permission_for(Current.user)
|
|
unless permission.in?([ :owner, :full_control ])
|
|
respond_to do |format|
|
|
format.html { redirect_back_or_to account_path(@account), alert: t("accounts.not_authorized") }
|
|
format.turbo_stream { stream_redirect_back_or_to(account_path(@account), alert: t("accounts.not_authorized")) }
|
|
end
|
|
end
|
|
end
|
|
end
|