- # create user object and all the needed links
- def create
- if params[:openid_prefix] # check if default openid_prefix needs to be overridden
- openid_prefix = params[:openid_prefix]
- else
- openid_prefix = 'https://www.google.com/accounts/o8/id' # default openid prefix
- end
- login_perm_props = {identity_url_prefix: openid_prefix}
-
- # check if only to probe the given user parameter
- just_probe = (params[:just_probe] == 'true') ? true : false;
-
- @object = model_class.new resource_attrs
-
- # If user_param is passed, lookup for user. If exists, skip create and create any missing links.
- if params[:user_param]
- begin
- @object_found = find_user_from_input params[:user_param], params[:user_param]
- end
- if !@object_found
- @object = User.new # when user_param is used, it will be used as user object
- @object[:email] = params[:user_param]
- need_to_create = true
- else
- @object = @object_found
- end
- else # need to create user for the given user data
- @object_found = find_user_from_input @object[:uuid], @object[:email]
- if !@object_found
- need_to_create = true
- else
- @object = @object_found
- end
- end
-
- # if just probing, return any object found
- if just_probe
- show
- return
- end
-
- # create if need be, and then create or update the links as needed
- if need_to_create
- if @object.save # save succeeded
- oid_login_perm = Link.where(tail_uuid: @object[:email],
- head_kind: 'arvados#user',
- link_class: 'permission',
- name: 'can_login')
-
- if [] == oid_login_perm
- # create openid login permission
- oid_login_perm = Link.create(link_class: 'permission',
- name: 'can_login',
- tail_kind: 'email',
- tail_uuid: @object[:email],
- head_kind: 'arvados#user',
- head_uuid: @object[:uuid],
- properties: login_perm_props
- )
- logger.info { "openid login permission: " + oid_login_perm[:uuid] }
- end
- else
- raise "Save failed"
- end
- end
-
- # create links
- create_user_repo_link params[:repo_name]
- create_vm_login_permission_link params[:vm_uuid], params[:repo_name]
- create_user_group_link
-
- show
- end
-
- protected
-
- # find the user from the given user parameter
- def find_user_from_input(user_uuid, user_email)
- if user_uuid
- found_object = User.find_by_uuid user_uuid
- end
-
- if !found_object
- begin
- if !user_email
- return
- end
-
- if !user_email.match(/\w\@\w+\.\w+/)
- logger.warn ("Given user param is not valid email format: #{user_email}")
- raise ArgumentError.new "User param is not of valid email format. Stop"
- else
- found_objects = User.where('email=?', user_email)
- if found_objects.size > 1
- logger.warn ("Found #{found_objects.size} users with email #{user_email}. Stop.")
- raise ArgumentError.new "Found #{found_objects.size} users with email #{user_email}. Stop."
- elsif found_objects.size == 1
- found_object = found_objects.first
- end