mirror of
https://github.com/we-promise/sure.git
synced 2026-04-09 15:24:48 +00:00
560c9fbff3
* Initial account sharing changes * Update schema.rb * Update schema.rb * Change sharing UI to modal * UX fixes and sharing controls * Scope include in finances better * Update totals.rb * Update totals.rb * Scope reports to finance account scope * Update impersonation_sessions_controller_test.rb * Review fixes * Update schema.rb * Update show.html.erb * FIX db validation * Refine edit permissions * Review items * Review * Review * Add application level helper * Critical review * Address remaining review items * Fix modals * more scoping * linter * small UI fix * Fix: Sync broadcasts push unscoped balance sheet to all users * Update sync_complete_event.rb The fix removes the sidebar broadcasts (which rendered unscoped account groups using family.balance_sheet without user context) along with the now-unused sidebar_targets, account_group, and family_balance_sheet private methods. The sidebar will still update correctly — when the sync completes, Family::SyncCompleteEvent#broadcast fires family.broadcast_refresh, which triggers a morph-based page refresh for each user with their own authenticated session, rendering properly scoped sidebar content.
138 lines
4.4 KiB
Ruby
138 lines
4.4 KiB
Ruby
class UsersController < ApplicationController
|
|
before_action :set_user
|
|
before_action :ensure_admin, only: %i[reset reset_with_sample_data]
|
|
|
|
def resend_confirmation_email
|
|
if @user.resend_confirmation_email
|
|
redirect_to settings_profile_path, notice: t(".success")
|
|
else
|
|
redirect_to settings_profile_path, alert: t("no_pending_change")
|
|
end
|
|
end
|
|
|
|
def update
|
|
@user = Current.user
|
|
return if admin_family_change_requested? && !ensure_admin
|
|
|
|
if email_changed?
|
|
if @user.initiate_email_change(user_params[:email])
|
|
if Rails.application.config.app_mode.self_hosted? && !Setting.require_email_confirmation
|
|
handle_redirect(t(".success"))
|
|
else
|
|
redirect_to settings_profile_path, notice: t(".email_change_initiated")
|
|
end
|
|
else
|
|
error_message = @user.errors.any? ? @user.errors.full_messages.to_sentence : t(".email_change_failed")
|
|
redirect_to settings_profile_path, alert: error_message
|
|
end
|
|
else
|
|
was_ai_enabled = @user.ai_enabled
|
|
@user.update!(user_params.except(:redirect_to, :delete_profile_image))
|
|
@user.profile_image.purge if should_purge_profile_image?
|
|
|
|
# Add a special notice if AI was just enabled or disabled
|
|
notice = if !was_ai_enabled && @user.ai_enabled
|
|
"AI Assistant has been enabled successfully."
|
|
elsif was_ai_enabled && !@user.ai_enabled
|
|
"AI Assistant has been disabled."
|
|
else
|
|
t(".success")
|
|
end
|
|
|
|
respond_to do |format|
|
|
format.html { handle_redirect(notice) }
|
|
format.json { head :ok }
|
|
end
|
|
end
|
|
end
|
|
|
|
def reset
|
|
FamilyResetJob.perform_later(Current.family)
|
|
redirect_to settings_profile_path, notice: t(".success")
|
|
end
|
|
|
|
def reset_with_sample_data
|
|
FamilyResetJob.perform_later(Current.family, load_sample_data_for_email: @user.email)
|
|
redirect_to settings_profile_path, notice: t(".success")
|
|
end
|
|
|
|
def destroy
|
|
if @user.deactivate
|
|
Current.session.destroy
|
|
redirect_to root_path, notice: t(".success")
|
|
else
|
|
redirect_to settings_profile_path, alert: @user.errors.full_messages.to_sentence
|
|
end
|
|
end
|
|
|
|
def rule_prompt_settings
|
|
@user.update!(rule_prompt_settings_params)
|
|
redirect_back_or_to settings_profile_path
|
|
end
|
|
|
|
private
|
|
def handle_redirect(notice)
|
|
case user_params[:redirect_to]
|
|
when "onboarding_preferences"
|
|
redirect_to preferences_onboarding_path
|
|
when "home"
|
|
redirect_to root_path
|
|
when "preferences"
|
|
redirect_to settings_preferences_path, notice: notice
|
|
when "goals"
|
|
redirect_to goals_onboarding_path
|
|
when "trial"
|
|
redirect_to trial_onboarding_path
|
|
when "appearance"
|
|
redirect_to settings_appearance_path, notice: notice
|
|
when "ai_prompts"
|
|
redirect_to settings_ai_prompts_path, notice: notice
|
|
else
|
|
redirect_to settings_profile_path, notice: notice
|
|
end
|
|
end
|
|
|
|
def should_purge_profile_image?
|
|
user_params[:delete_profile_image] == "1" &&
|
|
user_params[:profile_image].blank?
|
|
end
|
|
|
|
def email_changed?
|
|
user_params[:email].present? && user_params[:email] != @user.email
|
|
end
|
|
|
|
def rule_prompt_settings_params
|
|
params.require(:user).permit(:rule_prompt_dismissed_at, :rule_prompts_disabled)
|
|
end
|
|
|
|
def user_params
|
|
params.require(:user).permit(
|
|
:first_name, :last_name, :email, :profile_image, :redirect_to, :delete_profile_image, :onboarded_at,
|
|
:show_sidebar, :default_period, :default_account_order, :show_ai_sidebar, :ai_enabled, :theme, :set_onboarding_preferences_at, :set_onboarding_goals_at, :locale,
|
|
family_attributes: [ :name, :currency, :country, :date_format, :timezone, :locale, :month_start_day, :moniker, :default_account_sharing, :id ],
|
|
goals: []
|
|
)
|
|
end
|
|
|
|
def set_user
|
|
@user = Current.user
|
|
end
|
|
|
|
def admin_family_change_requested?
|
|
family_attrs = params.dig(:user, :family_attributes)
|
|
return false if family_attrs.blank?
|
|
|
|
moniker_changed = family_attrs[:moniker].present? && family_attrs[:moniker] != Current.family.moniker
|
|
sharing_changed = family_attrs[:default_account_sharing].present? && family_attrs[:default_account_sharing] != Current.family.default_account_sharing
|
|
|
|
moniker_changed || sharing_changed
|
|
end
|
|
|
|
def ensure_admin
|
|
return true if Current.user.admin?
|
|
|
|
redirect_to settings_profile_path, alert: I18n.t("users.reset.unauthorized")
|
|
false
|
|
end
|
|
end
|