123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237 |
- # Copyright (C) 2012-2024 Zammad Foundation, https://zammad-foundation.org/
- class OrganizationsController < ApplicationController
- prepend_before_action -> { authorize! }, except: %i[index show]
- prepend_before_action { authentication_check }
- include CanPaginate
- =begin
- Format:
- JSON
- Example:
- {
- "id":1,
- "name":"Zammad GmbH",
- "note":"",
- "active":true,
- "shared":true,
- "updated_at":"2012-09-14T17:51:53Z",
- "created_at":"2012-09-14T17:51:53Z",
- "created_by_id":2,
- }
- =end
- =begin
- Resource:
- GET /api/v1/organizations
- Response:
- [
- {
- "id": 1,
- "name": "some_name1",
- ...
- },
- {
- "id": 2,
- "name": "some_name2",
- ...
- }
- ]
- Test:
- curl http://localhost/api/v1/organizations -v -u #{login}:#{password}
- =end
- def index
- model_index_render(policy_scope(Organization), params)
- end
- =begin
- Resource:
- GET /api/v1/organizations/#{id}
- Response:
- {
- "id": 1,
- "name": "name_1",
- ...
- }
- Test:
- curl http://localhost/api/v1/organizations/#{id} -v -u #{login}:#{password}
- =end
- def show
- begin
- authorize!
- rescue Pundit::NotAuthorizedError
- # we have a special case here where Users that have no
- # organization can request any organization_id but get
- # an empty response. However, users with an organization_id
- # get that error
- raise if current_user.organization_id
- render json: {}
- return
- end
- if response_expand?
- organization = Organization.find(params[:id]).attributes_with_association_names
- render json: organization, status: :ok
- return
- end
- if response_full?
- full = Organization.full(params[:id])
- render json: full, status: :ok
- return
- end
- model_show_render(Organization, params)
- end
- =begin
- Resource:
- POST /api/v1/organizations
- Payload:
- {
- "name": "some_name",
- "active": true,
- "note": "some note",
- "shared": true
- }
- Response:
- {
- "id": 1,
- "name": "some_name",
- ...
- }
- Test:
- curl http://localhost/api/v1/organizations -v -u #{login}:#{password} -H "Content-Type: application/json" -X POST -d '{"name": "some_name","active": true,"shared": true,"note": "some note"}'
- =end
- def create
- model_create_render(Organization, params)
- end
- =begin
- Resource:
- PUT /api/v1/organizations/{id}
- Payload:
- {
- "id": 1
- "name": "some_name",
- "active": true,
- "note": "some note",
- "shared": true
- }
- Response:
- {
- "id": 1,
- "name": "some_name",
- ...
- }
- Test:
- curl http://localhost/api/v1/organizations -v -u #{login}:#{password} -H "Content-Type: application/json" -X PUT -d '{"id": 1,"name": "some_name","active": true,"shared": true,"note": "some note"}'
- =end
- def update
- model_update_render(Organization, params)
- end
- =begin
- Resource:
- DELETE /api/v1/organization/{id}
- Response:
- {}
- Test:
- curl http://localhost/api/v1/organization/{id} -v -u #{login}:#{password} -H "Content-Type: application/json" -X DELETE -d '{}'
- =end
- def destroy
- model_references_check(Organization, params)
- model_destroy_render(Organization, params)
- end
- # GET /api/v1/organizations/search
- def search
- model_search_render(Organization, params)
- end
- # GET /api/v1/organizations/history/1
- def history
- # get organization data
- organization = Organization.find(params[:id])
- # get history of organization
- render json: organization.history_get(true)
- end
- # @path [GET] /organizations/import_example
- #
- # @summary Download of example CSV file.
- # @notes The requester have 'admin.organization' permissions to be able to download it.
- # @example curl -u #{login}:#{password} http://localhost:3000/api/v1/organizations/import_example
- #
- # @response_message 200 File download.
- # @response_message 403 Forbidden / Invalid session.
- def import_example
- send_data(
- Organization.csv_example,
- filename: 'organization-example.csv',
- type: 'text/csv',
- disposition: 'attachment'
- )
- end
- # @path [POST] /organizations/import
- #
- # @summary Starts import.
- # @notes The requester have 'admin.text_module' permissions to be create a new import.
- # @example curl -u #{login}:#{password} -F 'file=@/path/to/file/organizations.csv' 'https://your.zammad/api/v1/organizations/import?try=true'
- # @example curl -u #{login}:#{password} -F 'file=@/path/to/file/organizations.csv' 'https://your.zammad/api/v1/organizations/import'
- #
- # @response_message 201 Import started.
- # @response_message 403 Forbidden / Invalid session.
- def import_start
- string = params[:data]
- if string.blank? && params[:file].present?
- string = params[:file].read.force_encoding('utf-8')
- end
- raise Exceptions::UnprocessableEntity, __('No source data submitted!') if string.blank?
- result = Organization.csv_import(
- string: string,
- parse_params: {
- col_sep: params[:col_sep] || ',',
- },
- try: params[:try],
- delete: params[:delete],
- )
- render json: result, status: :ok
- end
- end
|