1 class Arvados::V1::UsersController < ApplicationController
2 accept_attribute_as_json :prefs, Hash
4 skip_before_filter :find_object_by_uuid, only:
5 [:activate, :current, :system, :setup]
6 skip_before_filter :render_404_if_no_object, only:
7 [:activate, :current, :system, :setup]
8 before_filter :admin_required, only: [:setup, :unsetup]
12 @object = current_user
15 send_error("Not logged in", status: 401)
25 if current_user.andand.is_admin && params[:uuid]
26 @object = User.find params[:uuid]
28 @object = current_user
30 if not @object.is_active
31 if not (current_user.is_admin or @object.is_invited)
32 logger.warn "User #{@object.uuid} called users.activate " +
34 raise ArgumentError.new "Cannot activate without being invited."
37 required_uuids = Link.where("owner_uuid = ? and link_class = ? and name = ? and tail_uuid = ? and head_uuid like ?",
42 Collection.uuid_like_pattern).
44 signed_uuids = Link.where(owner_uuid: system_user_uuid,
45 link_class: 'signature',
47 tail_uuid: @object.uuid,
48 head_uuid: required_uuids).
50 todo_uuids = required_uuids - signed_uuids
52 @object.update_attributes is_active: true
53 logger.info "User #{@object.uuid} activated"
55 logger.warn "User #{@object.uuid} called users.activate " +
56 "before signing agreements #{todo_uuids.inspect}"
57 raise ArvadosModel::PermissionDeniedError.new \
58 "Cannot activate without user agreements #{todo_uuids.inspect}."
65 # create user object and all the needed links
69 @object = User.find_by_uuid params[:uuid]
71 return render_404_if_no_object
76 raise ArgumentError.new "Required uuid or user"
78 if params[:user]['uuid']
79 @object = User.find_by_uuid params[:user]['uuid']
86 if !params[:user]['email']
87 raise ArgumentError.new "Require user email"
90 if !params[:openid_prefix]
91 raise ArgumentError.new "Required openid_prefix parameter is missing."
94 @object = model_class.create! resource_attrs
100 @response = @object.setup_repo_vm_links params[:repo_name],
101 params[:vm_uuid], params[:openid_prefix]
103 @response = User.setup @object, params[:openid_prefix],
104 params[:repo_name], params[:vm_uuid]
107 # setup succeeded. send email to user
108 if params[:send_notification_email] == true || params[:send_notification_email] == 'true'
109 UserNotifier.account_is_setup(@object).deliver
112 send_json kind: "arvados#HashList", items: @response.as_api_response(nil)
115 # delete user agreements, vm, repository, login links; set state to inactive
117 reload_object_before_update
124 def self._setup_requires_parameters
127 type: 'object', required: false
130 type: 'string', required: false
133 type: 'string', required: false
136 type: 'string', required: false
138 send_notification_email: {
139 type: 'boolean', required: false, default: false
144 def apply_filters(model_class=nil)
145 return super if @read_users.any? &:is_admin
146 if params[:uuid] != current_user.andand.uuid
147 # Non-admin index/show returns very basic information about readable users.
148 safe_attrs = ["uuid", "is_active", "email", "first_name", "last_name"]
150 @select = @select & safe_attrs
154 @filters += [['is_active', '=', true]]