rfcommerce_api 0.0.3

data/Gemfile

@@ -0,0 +1,36 @@
+source 'http://rubygems.org'
+
+group :test do
+  gem 'rspec-rails', '= 2.5.0'
+  gem 'factory_girl', '= 1.3.3'
+  gem 'factory_girl_rails', '= 1.0.1'
+  gem 'simplecov'
+  gem 'shoulda'
+  gem 'faker'
+  if RUBY_VERSION < "1.9"
+    gem "ruby-debug"
+  else
+    gem "ruby-debug19"
+  end
+end
+
+group :cucumber do
+  gem 'cucumber-rails'
+  gem 'database_cleaner', '= 0.6.7'
+  gem 'nokogiri'
+  gem 'capybara', '= 0.4.1.2'
+  gem 'factory_girl', '= 1.3.3'
+  gem 'factory_girl_rails', '= 1.0.1'
+  gem 'faker'
+  gem 'launchy'
+
+  if RUBY_VERSION < "1.9"
+    gem "ruby-debug"
+  else
+    gem "ruby-debug19"
+  end
+end
+gem 'spree_core', :path => '/home/santhosh/Downloads/Skype Downloads/rfcommerce/api/../core'
+gem 'spree_auth', :path => '/home/santhosh/Downloads/Skype Downloads/rfcommerce/api/../auth'
+gem 'spree_api', :path => '/home/santhosh/Downloads/Skype Downloads/rfcommerce/api'
+gem 'sqlite3-ruby'

data/LICENSE

@@ -0,0 +1,26 @@
+Copyright (c) 2007-2010, Rails Dog LLC and other contributors
+All rights reserved.
+
+Redistribution and use in source and binary forms, with or without modification,
+are permitted provided that the following conditions are met:
+
+    * Redistributions of source code must retain the above copyright notice,
+      this list of conditions and the following disclaimer.
+    * Redistributions in binary form must reproduce the above copyright notice,
+      this list of conditions and the following disclaimer in the documentation
+      and/or other materials provided with the distribution.
+    * Neither the name Spree nor the names of its contributors may be used to
+      endorse or promote products derived from this software without specific
+      prior written permission.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR
+CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL,
+EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO,
+PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
+PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
+LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
+NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
+SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

data/README.md

@@ -0,0 +1,16 @@
+Spree API
+=========
+Manage orders,shipments etc. with a simple REST API
+
+See [RESTful API guide](http://spreecommerce.com/documentation/rest.html) for more details.
+
+Testing
+=======
+
+Create the test site
+
+    rake test_app
+
+Run the tests
+
+    rake spec

data/app/controllers/admin/users_controller_decorator.rb

@@ -0,0 +1,19 @@
+Admin::UsersController.class_eval do
+
+  before_filter :load_roles, :only => [:edit, :new, :update, :create, :generate_api_key, :clear_api_key]
+
+  def generate_api_key
+    if @user.generate_api_key!
+      flash.notice = t('api.key_generated')
+    end
+    redirect_to edit_admin_user_path(@user)
+  end
+
+  def clear_api_key
+    if @user.clear_api_key!
+      flash.notice = t('api.key_cleared')
+    end
+    redirect_to edit_admin_user_path(@user)
+  end
+
+end

data/app/controllers/api/adjustments_controller.rb

@@ -0,0 +1,13 @@
+class Api::AdjustmentsController < Api::BaseController
+    public
+    def destroy
+     puts "&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&"
+      puts params[object_name]
+       puts params[:id]
+      @object=Adjustment.find_by_id(params[:id])
+       @object.destroy
+      if @object.destroy
+      render :text => 'Destroyed Successfully' 
+    end
+  end
+end

data/app/controllers/api/base_controller.rb

@@ -0,0 +1,183 @@
+class Api::BaseController < Spree::BaseController
+  before_filter :check_http_authorization
+  before_filter :load_resource
+  skip_before_filter :verify_authenticity_token, :if => lambda { admin_token_passed_in_headers }
+  authorize_resource
+  
+  respond_to :json
+
+  def index
+    respond_with(@collection) do |format|
+      format.json { render :json => @collection.to_json(collection_serialization_options) }
+    end
+  end
+
+  def show
+    respond_with(@object) do |format|
+      format.json { render :json => @object.to_json(object_serialization_options) }
+    end
+  end
+
+  def create
+    if @object.save
+     # render :text => "Resource created\n", :status => 201, :location => object_url
+     render :json => @object.to_json, :status => 201
+    else
+      respond_with(@object.errors, :status => 422)
+    end
+  end
+
+  def update
+    if @object.update_attributes(params[object_name])
+      
+    render :json => @object.to_json, :status => 201
+
+    else
+      respond_with(@object.errors, :status => 422)
+    end
+  end
+
+  def admin_token_passed_in_headers
+    request.headers['HTTP_AUTHORIZATION'].present?
+  end
+
+  def access_denied
+    render :text => 'access_denied', :status => 401
+  end
+
+  # Generic action to handle firing of state events on an object
+  def event
+    valid_events = model_class.state_machine.events.map(&:name)
+    valid_events_for_object = @object ? @object.state_transitions.map(&:event) : []
+
+    if params[:e].blank?
+      errors = t('api.errors.missing_event')
+    elsif valid_events_for_object.include?(params[:e].to_sym)
+      @object.send("#{params[:e]}!")
+      errors = nil
+    elsif valid_events.include?(params[:e].to_sym)
+      errors = t('api.errors.invalid_event_for_object', :events => valid_events_for_object.join(','))
+    else
+      errors = t('api.errors.invalid_event', :events => valid_events.join(','))
+    end
+
+    respond_to do |wants|
+      wants.json do
+        if errors.blank?
+          render :nothing => true
+        else
+          render :json => errors.to_json, :status => 422
+        end
+      end
+    end
+  end
+
+  protected
+    def model_class
+      controller_name.classify.constantize
+    end
+    
+    def object_name
+      controller_name.singularize
+    end
+    
+    def load_resource
+      if member_action?
+        @object ||= load_resource_instance
+        instance_variable_set("@#{object_name}", @object)
+      else
+        @collection ||= collection
+        instance_variable_set("@#{controller_name}", @collection)
+      end
+    end
+    
+    def load_resource_instance
+      if new_actions.include?(params[:action].to_sym)
+        build_resource
+      elsif params[:id]
+        find_resource
+      end
+    end
+    
+    def parent
+      nil
+    end
+
+    def find_resource
+      if parent.present?
+        parent.send(controller_name).find(params[:id])
+      else
+        model_class.includes(eager_load_associations).find(params[:id])
+      end
+    end
+    
+    def build_resource
+      if parent.present?
+        parent.send(controller_name).build(params[object_name])
+      else
+        model_class.new(params[object_name])
+      end
+    end
+    
+    def collection
+      return @search unless @search.nil?      
+      params[:search] = {} if params[:search].blank?
+      params[:search][:meta_sort] = 'created_at.desc' if params[:search][:meta_sort].blank?
+      
+      scope = parent.present? ? parent.send(controller_name) : model_class.scoped
+     
+      @search = scope.metasearch(params[:search]).relation.limit(100)
+      @search
+    end
+
+    def collection_serialization_options
+      {:methods => :authentication_token}
+    end
+
+    def object_serialization_options
+      {:methods=>:authentication_token}
+    end
+
+    def eager_load_associations
+      nil
+    end
+
+    def object_errors
+      {:errors => object.errors.full_messages}
+    end
+
+  def object_url(object = nil, options = {})
+      target = object ? object : @object
+      puts @object.inspect
+      puts object_name
+      if parent.present? && object_name == "state"
+          send "api_country_#{object_name}_url", parent, target, options
+      elsif parent.present? && object_name == "taxon"
+          send "api_taxonomy_#{object_name}_url", parent, target, options
+      elsif parent.present?
+          send "api_#{parent[:model_name]}_#{object_name}_url", parent, target, options
+      else
+        send "api_#{object_name}_url",parent, target, options
+      end
+    end
+    
+    def collection_actions
+      [:index]
+    end
+
+    def member_action?
+      !collection_actions.include? params[:action].to_sym
+    end
+
+    def new_actions
+      [:new, :create]
+    end
+
+  private
+  def check_http_authorization
+      if current_user.authentication_token!=params[:authentication_token]
+            render :text => "Access Denied\n", :status => 401
+    end if current_user
+  end
+
+end

data/app/controllers/api/checkout1_controller.rb

@@ -0,0 +1,89 @@
+class Api::Checkout1Controller < CheckoutController
+
+  #~ ssl_required
+
+  #~ before_filter :load_order
+  #~ rescue_from Spree::GatewayError, :with => :rescue_from_spree_gateway_error
+	
+ #~ respond_to :json
+	#~ def update_order
+		#~ @order = current_order
+    #~ if @order.update_attributes(object_params)
+			#~ puts @order.state
+      #~ if @order.next
+        #~ state_callback(:after)
+      #~ else
+        #~ #flash[:error] = I18n.t(:payment_processing_failed)
+         #~ render :json => @order.errors, :status => 422
+        #~ return
+      #~ end
+			#~ puts @order.state
+      #~ if @order.state == "complete" || @order.completed?
+        #~ flash[:notice] = I18n.t(:order_processed_successfully)
+        #~ flash[:commerce_tracking] = "nothing special"
+         #~ render :json => @order.to_json, :status => 201
+       #~ else
+        #~ respond_with(@order, :location => checkout_state_path(@order.state))
+       #~ end
+    #~ else
+      #~ render :json => @order.errors, :status => 422
+      #~ #respond_with(@order) { |format| format.html { render :edit } }
+    #~ end
+	#~ end
+	
+	 #~ private
+
+  #~ # Provides a route to redirect after order completion
+  #~ def completion_route
+    #~ order_path(@order)
+  #~ end
+
+  #~ def object_params
+    #~ # For payment step, filter order parameters to produce the expected nested attributes for a single payment and its source, discarding attributes for payment methods other than the one selected
+    #~ if @order.payment
+      #~ if params[:payment_source].present? && source_params = params.delete(:payment_source)[params[:order][:payments_attributes].first[:payment_method_id].underscore]
+        #~ params[:order][:payments_attributes].first[:source_attributes] = source_params
+      #~ end
+      #~ if (params[:order][:payments_attributes])
+        #~ params[:order][:payments_attributes].first[:amount] = @order.total
+      #~ end
+    #~ end
+    #~ params[:order]
+  #~ end
+
+  #~ def load_order
+    #~ @order = current_order
+    #~ render :text => 'Order Not Available / Checkout Not Possible' and return unless @order and @order.checkout_allowed?
+    #~ render :text => 'Order Already Completed' and return if @order.completed?
+    #~ @order.state = params[:state] if params[:state]
+    #~ state_callback(:before)
+  #~ end
+
+  #~ def state_callback(before_or_after = :before)
+    #~ method_name = :"#{before_or_after}_#{@order.state}"
+    #~ send(method_name) if respond_to?(method_name, true)
+  #~ end
+
+  #~ def before_address
+    #~ @order.bill_address ||= Address.default
+    #~ @order.ship_address ||= Address.default
+  #~ end
+
+  #~ def before_delivery
+    #~ return if params[:order].present?
+    #~ @order.shipping_method ||= (@order.rate_hash.first && @order.rate_hash.first[:shipping_method])
+  #~ end
+
+  #~ def before_payment
+    #~ current_order.payments.destroy_all if request.put?
+  #~ end
+
+  #~ def after_complete
+    #~ session[:order_id] = nil
+  #~ end
+
+  #~ def rescue_from_spree_gateway_error
+    #~ flash[:error] = t('spree_gateway_error_flash_for_checkout')
+    #~ render :edit
+  #~ end
+end

data/app/controllers/api/countries_controller.rb

@@ -0,0 +1,3 @@
+class Api::CountriesController < Api::BaseController
+  before_filter :access_denied, :except => [:index, :show]
+end

data/app/controllers/api/images_controller.rb

@@ -0,0 +1,15 @@
+class Api::ImagesController < Spree::Api::BaseController
+  
+   public
+    def destroy
+     puts "&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&"
+      puts params[object_name]
+       puts params[:id]
+      @object=Image.find_by_id(params[:id])
+       @object.destroy
+      if @object.destroy
+      render :text => 'Image Destroyed Successfully' 
+    end
+  end
+      
+end

data/app/controllers/api/inventory_units_controller.rb

@@ -0,0 +1,19 @@
+class Api::InventoryUnitsController < Api::BaseController
+  private
+    def parent
+      if params[:order_id]
+        @parent = Order.find_by_param(params[:order_id])
+      elsif params[:shipment_id]
+        @parent = Shipment.find_by_param(params[:shipment_id])
+      end
+    end
+  
+    def parent_data
+      [params[:order_id], params[:shipment_id]].compact
+    end
+    
+    def eager_load_associations
+      [:variant]
+    end
+
+end

data/app/controllers/api/line_items_controller.rb

@@ -0,0 +1,37 @@
+class Api::LineItemsController < Api::BaseController
+
+  private
+    def parent
+      if params[:order_id]
+        @parent ||= Order.find_by_param(params[:order_id])
+      end
+    end
+  
+    def parent_data
+      params[:order_id]
+    end
+    
+    def collection_serialization_options
+      { :include => [:variant], :methods => [:description] }
+    end
+
+    def object_serialization_options
+      collection_serialization_options
+    end
+ public
+    def create
+      quantity = params[:line_item][:quantity]
+      @variant = Variant.find_by_id(params[:line_item][:variant_id])
+      @order = current_order(true)
+      @order.add_variant(@variant, quantity.to_i) if quantity.to_i > 0
+      @response = Order.find_by_id(@order.id)
+      render :json => @response.to_json, :status => 201
+    end
+    def destroy
+      @object=LineItem.find_by_id(params[:id])
+       @object.destroy
+      if @object.destroy
+      render :text => 'Destroyed' 
+    end
+  end
+end