1 class Arvados::V1::UsersController < ApplicationController
2 accept_attribute_as_json :prefs, Hash
4 skip_before_filter :find_object_by_uuid, only:
5 [:activate, :current, :system, :setup]
6 skip_before_filter :render_404_if_no_object, only:
7 [:activate, :current, :system, :setup]
8 before_filter :admin_required, only: [:setup, :unsetup]
12 @object = current_user
15 send_error("Not logged in", status: 401)
25 if current_user.andand.is_admin && params[:uuid]
26 @object = User.find params[:uuid]
28 @object = current_user
30 if not @object.is_active
31 if not (current_user.is_admin or @object.is_invited)
32 logger.warn "User #{@object.uuid} called users.activate " +
34 raise ArgumentError.new "Cannot activate without being invited."
37 required_uuids = Link.where("owner_uuid = ? and link_class = ? and name = ? and tail_uuid = ? and head_uuid like ?",
42 Collection.uuid_like_pattern).
44 signed_uuids = Link.where(owner_uuid: system_user_uuid,
45 link_class: 'signature',
47 tail_uuid: @object.uuid,
48 head_uuid: required_uuids).
50 todo_uuids = required_uuids - signed_uuids
52 @object.update_attributes is_active: true
53 logger.info "User #{@object.uuid} activated"
55 logger.warn "User #{@object.uuid} called users.activate " +
56 "before signing agreements #{todo_uuids.inspect}"
57 raise ArvadosModel::PermissionDeniedError.new \
58 "Cannot activate without user agreements #{todo_uuids.inspect}."
65 # create user object and all the needed links
68 @object = User.find_by_uuid(params[:uuid])
70 return render_404_if_no_object
73 raise ArgumentError.new "Required uuid or user"
74 elsif !params[:user]['email']
75 raise ArgumentError.new "Require user email"
76 elsif !params[:openid_prefix]
77 raise ArgumentError.new "Required openid_prefix parameter is missing."
79 @object = model_class.create! resource_attrs
82 # It's not always possible for the client to know the user's
83 # username when submitting this request: the username might have
84 # been assigned automatically in create!() above. If client
85 # provided a plain repository name, prefix it with the username
86 # now that we know what it is.
87 if params[:repo_name].nil?
89 elsif @object.username.nil?
91 new("cannot setup a repository because user has no username")
92 elsif params[:repo_name].index("/")
93 full_repo_name = params[:repo_name]
95 full_repo_name = "#{@object.username}/#{params[:repo_name]}"
98 @response = @object.setup(repo_name: full_repo_name,
99 vm_uuid: params[:vm_uuid],
100 openid_prefix: params[:openid_prefix])
102 # setup succeeded. send email to user
103 if params[:send_notification_email]
104 UserNotifier.account_is_setup(@object).deliver_now
107 send_json kind: "arvados#HashList", items: @response.as_api_response(nil)
110 # delete user agreements, vm, repository, login links; set state to inactive
112 reload_object_before_update
119 def self._setup_requires_parameters
122 type: 'object', required: false
125 type: 'string', required: false
128 type: 'string', required: false
131 type: 'string', required: false
133 send_notification_email: {
134 type: 'boolean', required: false, default: false
139 def apply_filters(model_class=nil)
140 return super if @read_users.any?(&:is_admin)
141 if params[:uuid] != current_user.andand.uuid
142 # Non-admin index/show returns very basic information about readable users.
143 safe_attrs = ["uuid", "is_active", "email", "first_name", "last_name"]
145 @select = @select & safe_attrs
149 @filters += [['is_active', '=', true]]