# Methods that don't require login should
# skip_around_filter :require_thread_api_token
around_filter :require_thread_api_token, except: ERROR_ACTIONS
+ before_filter :accept_uuid_as_id_param, except: ERROR_ACTIONS
before_filter :check_user_agreements, except: ERROR_ACTIONS
before_filter :check_user_profile, except: [:update_profile] + ERROR_ACTIONS
before_filter :check_user_notifications, except: ERROR_ACTIONS
end
end
- def find_object_by_uuid
+
+ def accept_uuid_as_id_param
if params[:id] and params[:id].match /\D/
params[:uuid] = params.delete :id
end
+ end
+
+ def find_object_by_uuid
begin
if not model_class
@object = nil
if current_user && profile_config
missing_required_profile = false
- user_prefs = User.limit(1).where(uuid: current_user.uuid).first.prefs
- user_prefs = current_user.prefs if !user_prefs[:profile]
+ user_prefs = current_user.prefs
+ current_user.reload if !user_prefs[:profile]
+ user_prefs = current_user.prefs
current_user_profile = user_prefs[:profile] if user_prefs
profile_config.kind_of?(Array) && profile_config.andand.each do |entry|
if entry['required']
- if !current_user_profile || !current_user_profile[entry['key'].to_sym]
+ if !current_user_profile ||
+ !current_user_profile[entry['key'].to_sym] ||
+ current_user_profile[entry['key'].to_sym].empty?
missing_required_profile = true
break
end