Class: Spree::Api::V1::OrdersController

Inherits:

BaseController

• Object
• ActionController::Base
• BaseController
• Spree::Api::V1::OrdersController

Defined in:

app/controllers/spree/api/v1/orders_controller.rb

Instance Attribute Summary

Attributes inherited from BaseController

#current_api_user

Instance Method Summary

• #apply_coupon_code ⇒ Object
• #approve ⇒ Object
• #cancel ⇒ Object
• #create ⇒ Object
• #current ⇒ Object
• #empty ⇒ Object
• #index ⇒ Object
• #mine ⇒ Object
• #show ⇒ Object
• #update ⇒ Object

Methods inherited from BaseController

#content_type, #permitted_line_item_attributes

Methods included from ControllerSetup

included

Instance Method Details

#apply_coupon_code ⇒ Object

# File 'app/controllers/spree/api/v1/orders_controller.rb', line 96

def apply_coupon_code
  find_order
  authorize! :update, @order, order_token
  @order.coupon_code = params[:coupon_code]
  @handler = PromotionHandler::Coupon.new(@order).apply
  status = @handler.successful? ? 200 : 422
  render 'spree/api/v1/promotions/handler', status: status
end

#approve ⇒ Object

# File 'app/controllers/spree/api/v1/orders_controller.rb', line 23

def approve
  authorize! :approve, @order, params[:token]
  @order.approved_by(current_api_user)
  respond_with(@order, default_template: :show)
end

#cancel ⇒ Object

# File 'app/controllers/spree/api/v1/orders_controller.rb', line 17

def cancel
  authorize! :update, @order, params[:token]
  @order.canceled_by(current_api_user)
  respond_with(@order, default_template: :show)
end

#create ⇒ Object

# File 'app/controllers/spree/api/v1/orders_controller.rb', line 29

def create
  authorize! :create, Order
  order_user = if @current_user_roles.include?('admin') && order_params[:user_id]
                 Spree.user_class.find(order_params[:user_id])
               else
                 current_api_user
  end

  import_params = if @current_user_roles.include?('admin')
                    params[:order].present? ? params[:order].permit! : {}
                  else
                    order_params
  end

  @order = Spree::Core::Importer::Order.import(order_user, import_params)
  respond_with(@order, default_template: :show, status: 201)
end

#current ⇒ Object

# File 'app/controllers/spree/api/v1/orders_controller.rb', line 79

def current
  @order = find_current_order
  if @order
    respond_with(@order, default_template: :show, locals: { root_object: @order })
  else
    head :no_content
  end
end

#empty ⇒ Object

# File 'app/controllers/spree/api/v1/orders_controller.rb', line 47

def empty
  authorize! :update, @order, order_token
  @order.empty!
  render plain: nil, status: 204
end

#index ⇒ Object

# File 'app/controllers/spree/api/v1/orders_controller.rb', line 53

def index
  authorize! :index, Order
  @orders = Order.ransack(params[:q]).result.page(params[:page]).per(params[:per_page])
  respond_with(@orders)
end

#mine ⇒ Object

# File 'app/controllers/spree/api/v1/orders_controller.rb', line 88

def mine
  if current_api_user.persisted?
    @orders = current_api_user.orders.reverse_chronological.ransack(params[:q]).result.page(params[:page]).per(params[:per_page])
  else
    render 'spree/api/errors/unauthorized', status: :unauthorized
  end
end

#show ⇒ Object

# File 'app/controllers/spree/api/v1/orders_controller.rb', line 59

def show
  authorize! :show, @order, order_token
  respond_with(@order)
end

#update ⇒ Object

# File 'app/controllers/spree/api/v1/orders_controller.rb', line 64

def update
  find_order(true)
  authorize! :update, @order, order_token

  if @order.contents.update_cart(order_params)
    user_id = params[:order][:user_id]
    if current_api_user.has_spree_role?('admin') && user_id
      @order.associate_user!(Spree.user_class.find(user_id))
    end
    respond_with(@order, default_template: :show)
  else
    invalid_resource!(@order)
  end
end