| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160 |
- class TicketArticlesController < ApplicationController
- before_filter :authentication_check
- # GET /articles
- def index
- @articles = Ticket::Article.all
- render :json => @articles
- end
- # GET /articles/1
- def show
- @article = Ticket::Article.find( params[:id] )
- render :json => @article
- end
- # POST /articles
- def create
- @article = Ticket::Article.new(params[:ticket_article])
- @article.created_by_id = current_user.id
- @article.updated_by_id = current_user.id
- # find attachments in upload cache
- @article['attachments'] = Store.list(
- :object => 'UploadCache::TicketZoom::' + current_user.id.to_s,
- :o_id => @article.ticket_id
- )
- if @article.save
- # remove attachments from upload cache
- Store.remove(
- :object => 'UploadCache::TicketZoom::' + current_user.id.to_s,
- :o_id => @article.ticket_id
- )
- render :json => @article, :status => :created
- else
- render :json => @article.errors, :status => :unprocessable_entity
- end
- end
- # PUT /articles/1
- def update
- @article = Ticket::Article.find( params[:id] )
- params[:ticket_article][:updated_by_id] = current_user.id
- if @article.update_attributes(params[:ticket_article])
- render :json => @article, :status => :ok
- else
- render :json => @article.errors, :status => :unprocessable_entity
- end
- end
- # DELETE /articles/1
- def destroy
- @article = Ticket::Article.find( params[:id] )
- @article.destroy
- head :ok
- end
- # POST /ticket_attachment/new
- def attachment_new
- # puts '-------'
- # puts params.inspect
- # store file
- # content_type = request.content_type
- content_type = request[:content_type]
- puts 'content_type: ' + content_type.inspect
- if !content_type || content_type == 'application/octet-stream'
- if MIME::Types.type_for(params[:qqfile]).first
- content_type = MIME::Types.type_for(params[:qqfile]).first.content_type
- else
- content_type = 'application/octet-stream'
- end
- end
- headers_store = {
- 'Content-Type' => content_type
- }
- Store.add(
- :object => 'UploadCache::' + params[:form] + '::' + current_user.id.to_s,
- :o_id => params[:form_id],
- :data => request.body.read,
- :filename => params[:qqfile],
- :preferences => headers_store
- )
- # return result
- render :json => {
- :success => true,
- }
- end
-
- # GET /ticket_attachment/1
- def attachment
- # permissin check
- ticket = Ticket.find( params[:ticket_id] )
- if !ticket_permission(ticket)
- render( :json => 'No such ticket.', :status => :unauthorized )
- return
- end
- article = Ticket::Article.find( params[:article_id] )
- if ticket.id != article.ticket_id
- render( :json => 'No access, article_id/ticket_id is not matching.', :status => :unauthorized )
- return
- end
- list = Store.list( :object => 'Ticket::Article', :o_id => params[:article_id] ) || []
- access = false
- list.each {|item|
- if item.id.to_i == params[:id].to_i
- access = true
- end
- }
- if !access
- render( :json => 'Requested file id is not linked with article_id.', :status => :unauthorized )
- return
- end
- # find file
- file = Store.find(params[:id])
- send_data(
- file.store_file.data,
- :filename => file.filename,
- :type => file.preferences['Content-Type'] || file.preferences['Mime-Type'],
- :disposition => 'inline'
- )
- end
- # GET /ticket_article_plain/1
- def article_plain
- # permissin check
- article = Ticket::Article.find( params[:id] )
- return if !ticket_permission( article.ticket )
- list = Store.list(
- :object => 'Ticket::Article::Mail',
- :o_id => params[:id],
- )
- # find file
- if list
- file = Store.find(list.first)
- send_data(
- file.store_file.data,
- :filename => file.filename,
- :type => 'message/rfc822',
- :disposition => 'inline'
- )
- end
- end
- end
|
