ishapi 0.1.8.316 → 3.0.0.0

data/app/controllers/ishapi/gameui_controller.rb

@@ -1,64 +0,0 @@
-require_dependency "ishapi/application_controller"
-
-module Ishapi
-  class GameuiController < ApplicationController
-    before_action :check_long_term_token, except: []
-
-    def buy_stars
-      authorize! :buy_stars, @profile
-      puts! @current_user, 'current_user'
-      puts! @profile, 'profile'
-
-      payment = Ish::Payment.new :email => @profile.email, :amount => params[:amount],
-        profile: @profile
-
-      ::Stripe.api_key = STRIPE_SK
-      acct = Stripe::Account.create(
-        :country => 'US',
-        :type => 'custom'
-      )
-      charge = ::Stripe::Charge.create(
-        :amount => params[:amount],
-        :currency => 'usd',
-        :source => params[:stripeToken],
-        :destination => {
-          :account => acct,
-        }
-      )
-      puts! charge, 'charge'
-      payment.charge = JSON.parse( charge.to_json )
-      payment.save
-      if payment.persisted?
-        # add the star
-        @profile.n_stars += 1
-        @profile.save
-        if !@profile.persisted?
-          raise 'could not save profile, somehow'
-        end
-      else
-        puts! payment.errors.messages
-      end
-
-      render json: { status: 'ok', n_stars: @profile.n_stars }
-    end
-
-    ## spend the star
-    def do_purchase
-      authorize! :do_purchase, ::Gameui
-      item = params[:className].constantize.find_by_slug( params[:slug] )
-
-      raise 'no such item'     if !item
-      raise 'too little funds' if @profile.n_stars < item.premium_tier
-
-      ::IshModels::UserProfile.with_session do
-        @profile.update_attributes( n_stars: @profile.n_stars - item.premium_tier )
-        @purchase = ::Gameui::PremiumPurchase.create! user_profile: @profile, item: item
-      end
-
-      render json: @purchase
-    rescue ::Exception => e
-      render json: e
-    end
-
-  end
-end

data/app/controllers/ishapi/invoices_controller.rb

@@ -1,22 +0,0 @@
-require_dependency "ishapi/application_controller"
-module Ishapi
-  class InvoicesController < ApplicationController
-
-    def search
-      authorize! :open_permission, ::Ishapi
-      begin
-        i = Ish::Invoice.find_by( :number => params[:number] )
-        if i.email == params[:email] && i.amount == params[:amount].to_f && i.payments.count == 0
-          render :json => { :status => :ok }
-        else
-          render :status => 404, :json => {} # :json => { :status => 404, :code => 404, :message => 'Not Found1' }
-        end
-      rescue Mongoid::Errors::DocumentNotFound => e
-        puts! e, 'e'
-        render :status => 404, :json => {}  #  :json => { :status => 404, :code => 404, :message => 'Not Found1' }
-      end
-    end
-
-  end
-end
-

data/app/controllers/ishapi/lead_actions_controller.rb

@@ -1,23 +0,0 @@
-require_dependency "ishapi/application_controller"
-
-module Ishapi
-  class LeadActionsController < ApplicationController
-
-    def create
-      if !params[:lead_id]
-        render json: { status: :ok }
-        return
-      end
-      tmpl = Office::LeadActionTemplate.find( params[:tmpl_id] )
-      puts! tmpl, 'tmpl'
-      lead_action = Office::LeadAction.find_or_create_by({
-        lead_id: params[:lead_id],
-        tmpl_id: params[:tmpl_id],
-      })
-      lead_action.params = params.to_json
-      lead_action.save
-      render json: { status: :ok, message: 'saved' }
-    end
-
-  end
-end

data/app/controllers/ishapi/leads_controller.rb

@@ -1,18 +0,0 @@
-
-require_dependency "ishapi/application_controller"
-module Ishapi
-  class LeadsController < ApplicationController
-
-    before_action :check_jwt
-
-    def index
-      authorize! :leads_index, ::Ishapi
-      out = Lead.all.page( params[:leads_page] ).per( @current_profile.per_page )
-      render json: {
-        items: out,
-      }
-    end
-
-  end
-end
-

data/app/controllers/ishapi/leadsets_controller.rb

@@ -1,30 +0,0 @@
-
-require_dependency "ishapi/application_controller"
-module Ishapi
-  class LeadsetsController < ApplicationController
-
-    load_and_authorize_resource
-
-    def destroy
-      authorize! :leadsets_destroy, ::Ishapi
-
-      leadsets = Leadset.find( params[:leadset_ids] )
-      @results = []
-      leadsets.each do |leadset|
-        @results.push leadset.discard
-      end
-      flash[:notice] = "Discard outcome: #{@results.inspect}."
-      redirect_to action: 'index'
-    end
-
-    def index
-      authorize! :leadsets_index, ::Ishapi
-      out = Leadset.all
-      render json: {
-        items: out,
-      }
-    end
-
-  end
-end
-

data/app/controllers/ishapi/locations_controller.rb

@@ -1,54 +0,0 @@
-
-require_dependency "ishapi/application_controller"
-
-##
-## supersedes Ishapi::MapsController
-##
-class Ishapi::LocationsController < Ishapi::ApplicationController
-
-  before_action :check_profile # , only: [ :show, :show_marker ]
-
-  def show
-    if 'self' == params[:slug] # @TODO: constantize _vp_ 2023-01-11
-      @location = ::Gameui::Map.where( slug: @current_profile[:email] ).first
-    else
-      @location   = ::Gameui::Map.where( slug: params[:slug] ).first
-      @location ||= ::Gameui::Map.find params[:slug]
-    end
-
-    authorize! :show, @location
-    map = @location.map || @location # @TODO: remove _vp_ 2023-03-20
-
-    @newsitems = @location.newsitems.page( params[:newsitems_page]
-      ).per( @location.newsitems_page_size )
-
-    @markers = map.markers.permitted_to(@current_profile).order_by(ordering: :asc)
-    # case map.ordering_type
-    # when ::Gameui::Map::ORDERING_TYPE_ALPHABETIC
-    #   @markers = @markers.order_by( name: :asc )
-    # when ::Gameui::Map::ORDERING_TYPE_CUSTOM
-    #   @markers = @markers.order_by( ordering: :asc )
-    # end
-
-    if map.is_premium && !@current_profile.has_premium_purchase( map )
-      render 'show_restricted'
-    else
-      respond_to do |format|
-        format.json do
-          render 'show'
-        end
-        format.html do
-          render 'show'
-        end
-      end
-    end
-  end
-
-  def show_marker
-    @marker = ::Gameui::Marker.find_by slug: params[:slug]
-    authorize! :show, @marker
-    render json: @marker
-  end
-
-end
-

data/app/controllers/ishapi/maps_controller.rb

@@ -1,45 +0,0 @@
-
-require_dependency "ishapi/application_controller"
-
-##
-## @deprecated, use Ishapi::LocationsController
-##
-class Ishapi::MapsController < Ishapi::ApplicationController
-  before_action :check_profile, only: [ :show ]
-
-  def show
-    if 'self' == params[:slug] # @TODO: constantize _vp_ 2023-01-11
-      @location = ::Gameui::Map.where( slug: @current_profile[:email] ).first
-    else
-      @location   = ::Gameui::Map.where( slug: params[:slug] ).first
-      @location ||= ::Gameui::Map.find params[:slug]
-    end
-    @map = @location.map || @location
-
-    authorize! :show, @map
-
-    @newsitems = @location.newsitems.page( params[:newsitems_page] ).per( @location.newsitems_page_size )
-
-    @markers = @map.markers.permitted_to(@current_profile).order_by(ordering: :asc)
-    # case @map.ordering_type
-    # when ::Gameui::Map::ORDERING_TYPE_ALPHABETIC
-    #   @markers = @markers.order_by( name: :asc )
-    # when ::Gameui::Map::ORDERING_TYPE_CUSTOM
-    #   @markers = @markers.order_by( ordering: :asc )
-    # end
-
-    if @map.is_premium && !@current_profile.has_premium_purchase( @map )
-      render 'show_restricted'
-    else
-      render 'show'
-    end
-  end
-
-  def show_marker
-    @marker = ::Gameui::Marker.find_by slug: params[:slug]
-    authorize! :show, @marker
-    render json: @marker
-  end
-
-end
-

data/app/controllers/ishapi/my/galleries_controller.rb

@@ -1,11 +0,0 @@
-
-class Ishapi::My::GalleriesController < Ishapi::ApplicationController
-
-  def index
-    authorize! :my_index, Gallery
-    @galleries = @current_user.profile.galleries.unscoped.where( is_trash: false ).order_by( created_at: :desc ).limit(20)
-    render 'ishapi/galleries/index'
-  end
-
-end
-

data/app/controllers/ishapi/my/reports_controller.rb

@@ -1,11 +0,0 @@
-
-
-class Ishapi::My::ReportsController < Ishapi::ApplicationController
-
-  def index
-    authorize! :my_index, Report
-    @reports = @profile.reports
-  end
-
-end
-

data/app/controllers/ishapi/my/videos_controller.rb

@@ -1,10 +0,0 @@
-
-class Ishapi::My::VideosController < Ishapi::ApplicationController
-
-  def index
-    authorize! :my_index, Video
-    @videos = @current_user.profile.videos.unscoped.where( is_trash: false ).order_by( created_at: :desc ).limit(20)
-  end
-
-end
-

data/app/controllers/ishapi/newsitems_controller.rb

@@ -1,35 +0,0 @@
-require_dependency "ishapi/application_controller"
-
-module Ishapi
-  class NewsitemsController < ApplicationController
-
-    before_action :check_profile
-
-    def destroy
-      n = Newsitem.find params[:id]
-
-      puts! n.map.creator_profile.id, 'ze id'
-      puts! current_user.profile.id, 'ze2 id'
-
-      authorize! :destroy, n
-      flag = n.destroy
-      if flag
-        render json: { status: 'ok' }, status: :ok
-      else
-        render json: { message: "No luck: #{n.errors.full_messages.join(", ")}." }, status: 400
-      end
-    end
-
-    def index
-      if params[:domain]
-        resource = Site.find_by( :domain => params[:domain], :lang => :en )
-      else
-        resource = current_user.profile
-      end
-
-      authorize! :show, resource
-      @newsitems = current_user.profile.newsitems
-    end
-
-  end
-end

data/app/controllers/ishapi/obfuscated_redirects_controller.rb

@@ -1,27 +0,0 @@
-require_dependency "ishapi/application_controller"
-
-module Ishapi
-  class ObfuscatedRedirectsController < ApplicationController
-
-    def show
-      @obf = Office::ObfuscatedRedirect.find params[:id]
-      puts! @obf, '@obf'
-      authorize! :show, @obf
-
-      visit_time = Time.now
-      @obf.update_attributes({
-        visited_at: visit_time,
-        visits: @obf.visits + [ visit_time ],
-      })
-
-      if DEBUG
-        render and return
-      end
-
-      redirect_to @obf.to
-
-    end
-
-  end
-end
-

data/app/controllers/ishapi/option_price_items_controller.rb

@@ -1,44 +0,0 @@
-require_dependency "ishapi/application_controller"
-
-module Ishapi
-  class OptionPriceItemsController < ApplicationController
-
-    # before_action :soft_check_long_term_token, only: [ :show ]
-    # before_action :check_jwt
-
-    ## params: symbol, begin_at, end_at
-    def view
-      authorize! :view_chain, ::Iro::OptionPriceItem
-      @opis = ::Iro::OptionPriceItem.where({ ticker: params[:symbol]
-      }).where( "timestamp BETWEEN ? and ? ", params[:begin_at], params[:end_at]
-      ).limit(100)
-    end
-
-    def view_by_symbol
-      authorize! :view_chain, ::Iro::OptionPriceItem
-      @opis = ::Iro::OptionPriceItem.where({ symbol: params[:symbol]
-      }).limit(100)
-      render 'view'
-    end
-
-    # kind-1, always
-    def index
-      authorize! :view_chain, ::Iro::OptionPriceItem
-      @opis = Iro::OptionPriceItem.where({
-        expirationDate: '1676062800000',
-        timestamp: '2023-02-06 14:46:48',
-      })
-      @outs = {}
-      @opis.map do |opi|
-        r = @outs[opi.strikePrice] || {}
-        r[opi.putCall] = ((opi.bid + opi.ask)/2).round(3)
-        @outs[opi.strikePrice] = r
-      end
-      render json: @outs
-      return
-    end
-
-  end
-end
-
-

data/app/controllers/ishapi/order_items_controller.rb

@@ -1,53 +0,0 @@
-require_dependency "ishapi/application_controller"
-
-module Ishapi
-  class OrderItemsController < ApplicationController
-    before_action :check_profile, :only => [ :create ]
-
-    def create
-      authorize! :add, CoTailors::OrderItem
-      @order_item = CoTailors::OrderItem.new params['order_item'].permit( :quantity, :kind, :fabric )
-      @order_item.order_id = @current_order.id
-      @order_item.measurement = @measurement
-      @order_item.cost = case params[:order_item][:kind]
-                         when CoTailors::OrderItem::KIND_SHIRT
-                           CoTailors::Product.where( :kind => 'shirt' ).first.cost
-                         when CoTailors::OrderItem::KIND_PANTS
-                           CoTailors::Product.where( :kind => 'pants' ).first.cost
-                         when CoTailors::OrderItem::KIND_SUIT
-                           CoTailors::Product.where( :kind => 'suit' ).first.cost
-                         end
-      @order_item.measurement = CoTailors::ProfileMeasurement.create params['order_item'].permit( CoTailors::Order::MEASUREMENT_PARAMS )
-
-      # byebug
-
-      if params[:order_item][:saveMeasurement]
-        m = @current_profile.measurement || CoTailors::ProfileMeasurement.create( :profile => @current_profile )
-        flag = m.update_attributes( measurement_params )
-        if !flag
-          render :json => { :statuc => :not_ok, :error => m.errors.messages }
-          return 
-        end
-      end
-      
-      flag = @order_item.save
-      if flag
-        render :json => { :status => :ok, :message => 'Successfully put an order item' }
-      else
-        render :json => { :status => :not_ok, :error => @order_item.errors.messages }
-      end
-    end
-
-    #
-    # private
-    #
-    private
-
-    def measurement_params
-      out = {}
-      out[:neck_around] = params[:order_item][:neckAround] if params[:order_item][:neckAround]
-      out
-    end
-
-  end
-end

data/app/controllers/ishapi/orders_controller.rb

@@ -1,32 +0,0 @@
-require_dependency "ishapi/application_controller"
-
-module Ishapi
-  class OrdersController < ApplicationController
-    before_action :check_profile, :only => [ :create ]
-
-    def create
-      authorize! :create, CoTailors::Order
-
-      # params = {"token"=>{"id"=>"tok_1BoLkRDpn3WurCccVNQK4pfV", "object"=>"token", "card"=>{"id"=>"card_1BoLkRDpn3WurCccET5cyAMU", "object"=>"card", "address_city"=>nil, "address_country"=>nil, "address_line1"=>nil, "address_line1_check"=>nil, "address_line2"=>nil, "address_state"=>nil, "address_zip"=>"42424", "address_zip_check"=>"unchecked", "brand"=>"Visa", "country"=>"US", "cvc_check"=>"unchecked", "dynamic_last4"=>nil, "exp_month"=>4, "exp_year"=>2024, "funding"=>"credit", "last4"=>"4242", "metadata"=>{}, "name"=>nil, "tokenization_method"=>nil}, "client_ip"=>"76.103.54.198", "created"=>1516929079, "livemode"=>false, "type"=>"card", "used"=>false}, "accessToken"=>"EAAcgM1d2EyABAFAvisZBJy0vnlmunq1RM5rbcfUN0B1G6WGwulGkwqfJyP8Ue8Gb1DsyHyjLZCmEmMKKjhZCFF8JIyyZAGLLyqpIr8kg6wWhAIzLQ7HbYfmwFI8aZARtJB4ZBo4KZBbBx4wHUmLoPqAsG2Ca2DXKPkZD", "order"=>{"token"=>{"id"=>"tok_1BoLkRDpn3WurCccVNQK4pfV", "object"=>"token", "card"=>{"id"=>"card_1BoLkRDpn3WurCccET5cyAMU", "object"=>"card", "address_city"=>nil, "address_country"=>nil, "address_line1"=>nil, "address_line1_check"=>nil, "address_line2"=>nil, "address_state"=>nil, "address_zip"=>"42424", "address_zip_check"=>"unchecked", "brand"=>"Visa", "country"=>"US", "cvc_check"=>"unchecked", "dynamic_last4"=>nil, "exp_month"=>4, "exp_year"=>2024, "funding"=>"credit", "last4"=>"4242", "metadata"=>{}, "name"=>nil, "tokenization_method"=>nil}, "client_ip"=>"76.103.54.198", "created"=>1516929079, "livemode"=>false, "type"=>"card", "used"=>false}, "accessToken"=>"EAAcgM1d2EyABAFAvisZBJy0vnlmunq1RM5rbcfUN0B1G6WGwulGkwqfJyP8Ue8Gb1DsyHyjLZCmEmMKKjhZCFF8JIyyZAGLLyqpIr8kg6wWhAIzLQ7HbYfmwFI8aZARtJB4ZBo4KZBbBx4wHUmLoPqAsG2Ca2DXKPkZD"}}
-
-      @order = CoTailors::Order.where( :profile_id => @current_profile.id, :submitted_at => nil ).first
-      @order.submitted_at = Time.now
-
-      Stripe.api_key = STRIPE_SK
-      charge = Stripe::Charge.create :amount => @order.grand_total, :currency => 'usd', :source => params['token']['id']
-      flag = charge.outcome[:type] == 'authorized'
-      if !flag
-        render :json => { :status => :not_ok, :message => "Something went wrong with the charge: " + charge.outcome.to_s }
-        return
-      end
-
-      flag = @order.save
-      if flag
-        render :json => { :status => :ok, :message => 'Successfully placed the order' }
-      else
-        render :json => { :status => :not_ok, :error => @order.errors.messages }
-      end
-    end
-
-  end
-end

data/app/controllers/ishapi/payments_controller.rb

@@ -1,108 +0,0 @@
-require_dependency "ishapi/application_controller"
-class Ishapi::PaymentsController < ::Ishapi::ApplicationController
-
-  before_action :check_profile, only: %i| create unlock |
-
-  protect_from_forgery with: :exception
-  skip_before_action :verify_authenticity_token, only: %i| stripe_confirm |
-
-  # alphabetized : )
-
-  ## _vp_ 2020-07-21 This is for guyd
-  ## _vp_ 2022-03-01 It's been a while!
-  ## _vp_ 2022-09-04 continue
-  ## _vp_ 2023-03-29 Continue
-  ##
-  ## @TODO: cannot proceed if already is_purchasing?
-  ## @TODO: and this doesn't say what you're buying! herehere
-  ##
-  def create
-    authorize! :create, Ish::Payment.new
-
-    @current_profile.update_attributes({ is_purchasing: true })
-
-    amount_cents  = params[:amount_cents].to_i # @TODO: change
-
-    ::Stripe.api_key = ::STRIPE_SK
-    intent = Stripe::PaymentIntent.create({
-      amount: amount_cents,
-      currency: 'usd',
-      metadata: { integration_check: "accept_a_payment" },
-    })
-
-    item_type = case params[:item_type]
-    when 'Ish::Location'
-      'Gameui::Map'
-    else
-      throw "item_type not implemented: #{params[:item_type]}"
-    end
-    item = item_type.constantize.find params[:item_id]
-
-    payment = Ish::Payment.create!(
-      client_secret: intent.client_secret,
-      email: @current_profile.email,
-      item: item,
-      payment_intent_id: intent.id,
-      profile_id: @current_profile.id,
-    )
-    render json: {
-      client_secret: intent.client_secret,
-      clientSecret: intent.client_secret,
-    }
-
-  end
-
-  ##
-  ## webhook
-  ## _vp_ 2023-03-29 Continue
-  ##
-  def stripe_confirm
-    authorize! :open_permission, ::Ishapi
-    payload = request.body.read
-    event = nil
-    begin
-      event = Stripe::Event.construct_from(JSON.parse(payload, symbolize_names: true))
-    rescue StandardError => err
-      puts! err, 'could not #stripe_confirm'
-      render status: 400, json: { status: :not_ok }
-      return
-    end
-
-    payment_intent = event.data.object
-    puts! payment_intent, 'payment_intent'
-
-    payment = Ish::Payment.where( payment_intent_id: payment_intent.id ).first
-    if payment && payment_intent['status'] == 'succeeded'
-
-      payment.update_attributes( status: Ish::Payment::STATUS_CONFIRMED )
-      n_unlocks = payment.profile.n_unlocks + 1 # @TODO: it's not always 5, adjust! herehere
-
-      payment.profile.update_attributes!( n_unlocks: n_unlocks, is_purchasing: false )
-    end
-
-    render status: 200, json: { status: :ok }
-  end
-
-  ##
-  ## Spend an unlock without spending money. _vp_ 2022-03-01
-  ##
-  def unlock
-    authorize! :unlock, ::Ish::Payment
-    item = Object::const_get(params['kind']).find params['id']
-
-    existing = Ish::Payment.where( profile: @current_profile, item: item ).first
-    if existing
-      render status: 200, json: { status: :ok, message: 'already purchased' }
-      return
-    end
-
-    @current_profile.inc( n_unlocks: -item.premium_tier )
-
-    purchase = ::Ish::Payment.create!( item: item, profile: @current_profile, )
-
-    @profile = @current_profile
-    render 'ishapi/user_profiles/account'
-  end
-
-end
-

data/app/controllers/ishapi/photos_controller.rb

@@ -1,13 +0,0 @@
-require_dependency "ishapi/application_controller"
-
-class Ishapi::PhotosController < Ishapi::ApplicationController
-
-  # before_action :soft_check_long_term_token, only: [ :show ]
-  before_action :check_jwt
-
-  def show
-    @photo = Photo.find params[:id]
-    authorize! :show, @photo
-  end
-
-end

data/app/controllers/ishapi/products_controller.rb

@@ -1,16 +0,0 @@
-require_dependency "ishapi/application_controller"
-
-class Ishapi::ProductsController < Ishapi::ApplicationController
-
-  # before_action :soft_check_long_term_token, only: [ :show ]
-  before_action :check_jwt
-
-  def show
-    @product = Wco::Product.find params[:id]
-
-    puts! @product.prices.to_a, 'to_a'
-
-    authorize! :show, @product
-  end
-
-end

data/app/controllers/ishapi/stock_watches_controller.rb

@@ -1,13 +0,0 @@
-require_dependency "ishapi/application_controller"
-module Ishapi
-  class StockWatchesController < ApplicationController
-
-    before_action :check_jwt
-
-    def index
-      # authorize! :index, IronWarbler::StockWatch
-      # @stock_watches = IronWarbler::StockWatch.active # @TODO: restrict by-profile, no?
-    end
-
-  end
-end

data/app/controllers/ishapi/user_profiles_controller.rb

@@ -1,27 +0,0 @@
-require_dependency "ishapi/application_controller"
-module Ishapi
-  class UserProfilesController < ApplicationController
-
-    before_action :check_profile, only: %i| show | ## @TODO: hmmm I may not need this check at all
-
-    before_action :check_profile_hard, only: %i| update |
-
-    def show
-      @profile = Ish::UserProfile.find_by :username => params[:username]
-      authorize! :show, @profile
-    end
-
-    def update
-      @profile = Ish::UserProfile.find @current_user.profile
-      authorize! :update, @profile
-
-      flag = @profile.update params[:profile].permit!
-      if flag
-        render json: { message: 'ok' }, status: :ok
-      else
-        render json: { message: "No luck: #{@profile.errors.full_messages.join(", ")}." }, code: 400
-      end
-    end
-
-  end
-end