RubyGems - spree_api - Versions diffs - 1.2.5 → 1.3.0.rc1 - Mend

spree_api 1.2.5 → 1.3.0.rc1

Files changed (115) hide show

checksums.yaml DELETED

@@ -1,7 +0,0 @@
----
-SHA1:
-  metadata.gz: 54f6dbb9f70a86f5a1de1ce03b891244b3b9710f
-  data.tar.gz: 7be3cb5a340625cb7739d941f79d20f769b03632
-SHA512:
-  metadata.gz: 687d37cad06765fef369e378d961842981b2933821a262d6037f81e94cf471d23d1f4efa6d14a26285bad8dc1b24e1fe5f585a740678ed7f0c6b174a2011dd70
-  data.tar.gz: 6554da72d40fbd9222941c8e9d79162bd6e628fbe6e71dfbb6c7d434fa99ca46cce088a17fb50cdf731cbf8b4bdd550b738df0c6a941de4e670048e4263c69f2

data/app/controllers/spree/api/v1/addresses_controller.rb DELETED

@@ -1,19 +0,0 @@
-module Spree
-  module Api
-    module V1
-      class AddressesController < Spree::Api::V1::BaseController
-        def show
-          @address = Address.find(params[:id])
-          authorize! :read, @address
-        end
-        def update
-          @address = Address.find(params[:id])
-          authorize! :read, @address
-          @address.update_attributes(params[:address])
-          render :show, :status => 200
-        end
-      end
-    end
-  end
-end

data/app/controllers/spree/api/v1/base_controller.rb DELETED

@@ -1,111 +0,0 @@
-module Spree
-  module Api
-    module V1
-      class BaseController < ActionController::Metal
-        include Spree::Api::ControllerSetup
-        attr_accessor :current_api_user
-        before_filter :set_content_type
-        before_filter :check_for_api_key, :if => :requires_authentication?
-        before_filter :authenticate_user
-        rescue_from Exception, :with => :error_during_processing
-        rescue_from CanCan::AccessDenied, :with => :unauthorized
-        rescue_from ActiveRecord::RecordNotFound, :with => :not_found
-        helper Spree::Api::ApiHelpers
-        def map_nested_attributes_keys(klass, attributes)
-          nested_keys = klass.nested_attributes_options.keys
-          attributes.inject({}) do |h, (k,v)|
-            key = nested_keys.include?(k.to_sym) ? "#{k}_attributes" : k
-            h[key] = v
-            h
-          end.with_indifferent_access
-        end
-        private
-        def set_content_type
-          content_type = case params[:format]
-          when "json"
-            "application/json"
-          when "xml"
-            "text/xml"
-          end
-          headers["Content-Type"] = content_type
-        end
-        def check_for_api_key
-          render "spree/api/v1/errors/must_specify_api_key", :status => 401 and return if api_key.blank?
-        end
-        def authenticate_user
-          if requires_authentication? || api_key.present?
-            unless @current_api_user = Spree.user_class.find_by_spree_api_key(api_key.to_s)
-              render "spree/api/v1/errors/invalid_api_key", :status => 401 and return
-            end
-          else
-            # Effectively, an anonymous user
-            @current_api_user = Spree.user_class.new
-          end
-        end
-        def unauthorized
-          render "spree/api/v1/errors/unauthorized", :status => 401 and return
-        end
-        def requires_authentication?
-          Spree::Api::Config[:requires_authentication]
-        end
-        def not_found
-          render "spree/api/v1/errors/not_found", :status => 404 and return
-        end
-        def error_during_processing(exception)
-          render :text => { :exception => exception.message }.to_json,
-                 :status => 422 and return
-        end
-        def current_ability
-          Spree::Ability.new(current_api_user)
-        end
-        def invalid_resource!(resource)
-          @resource = resource
-          render "spree/api/v1/errors/invalid_resource", :status => 422
-        end
-        def api_key
-          request.headers["X-Spree-Token"] || params[:token]
-        end
-        helper_method :api_key
-        def find_product(id)
-          begin
-            product_scope.find_by_permalink!(id.to_s)
-          rescue ActiveRecord::RecordNotFound
-            product_scope.find(id)
-          end
-        end
-        def product_scope
-          if current_api_user.has_spree_role?("admin")
-            scope = Product
-            unless params[:show_deleted]
-              scope = scope.not_deleted
-            end
-          else
-            scope = Product.active
-          end
-          scope.includes(:master)
-        end
-      end
-    end
-  end
-end

data/app/controllers/spree/api/v1/countries_controller.rb DELETED

@@ -1,18 +0,0 @@
-module Spree
-  module Api
-    module V1
-      class CountriesController < Spree::Api::V1::BaseController
-        def index
-          @countries = Country.
-                      ransack(params[:q]).result.
-                      includes(:states).order('name ASC').
-                      page(params[:page]).per(params[:per_page])
-        end
-        def show
-          @country = Country.find(params[:id])
-        end
-      end
-    end
-  end
-end

data/app/controllers/spree/api/v1/images_controller.rb DELETED

@@ -1,32 +0,0 @@
-module Spree
-  module Api
-    module V1
-      class ImagesController < Spree::Api::V1::BaseController
-        def show
-          @image = Image.find(params[:id])
-        end
-        def create
-          authorize! :create, Image
-          @image = Image.create(params[:image])
-          render :show, :status => 201
-        end
-        def update
-          authorize! :update, Image
-          @image = Image.find(params[:id])
-          @image.update_attributes(params[:image])
-          render :show, :status => 200
-        end
-        def destroy
-          authorize! :delete, Image
-          @image = Image.find(params[:id])
-          @image.destroy
-          render :text => nil, :status => 204
-        end
-      end
-    end
-  end
-end

data/app/controllers/spree/api/v1/inventory_units_controller.rb DELETED

@@ -1,50 +0,0 @@
-module Spree
-  module Api
-    module V1
-      class InventoryUnitsController < Spree::Api::V1::BaseController
-        before_filter :prepare_event, :only => :update
-        def show
-          @inventory_unit = inventory_unit
-        end
-        def update
-          authorize! :update, Order
-          inventory_unit.transaction do
-            if inventory_unit.update_attributes(params[:inventory_unit])
-              fire
-              render :show, :status => 200
-            else
-              invalid_resource!(inventory_unit)
-            end
-          end
-        end
-        private
-        def inventory_unit
-          @inventory_unit ||= InventoryUnit.find(params[:id])
-        end
-        def prepare_event
-          return unless @event = params[:fire]
-          can_event = "can_#{@event}?"
-          unless inventory_unit.respond_to?(can_event) &&
-                 inventory_unit.send(can_event)
-            render :text => { :exception => "cannot transition to #{@event}" }.to_json,
-                    :status => 200
-            false
-          end
-        end
-        def fire
-          inventory_unit.send("#{@event}!") if @event
-        end
-      end
-    end
-  end
-end

data/app/controllers/spree/api/v1/line_items_controller.rb DELETED

@@ -1,40 +0,0 @@
-module Spree
-  module Api
-    module V1
-      class LineItemsController < Spree::Api::V1::BaseController
-        def create
-          authorize! :read, order
-          @line_item = order.line_items.build(params[:line_item], :as => :api)
-          if @line_item.save
-            render :show, :status => 201
-          else
-            invalid_resource!(@line_item)
-          end
-        end
-        def update
-          authorize! :read, order
-          @line_item = order.line_items.find(params[:id])
-          if @line_item.update_attributes(params[:line_item])
-            render :show
-          else
-            invalid_resource!(@line_item)
-          end
-        end
-        def destroy
-          authorize! :read, order
-          @line_item = order.line_items.find(params[:id])
-          @line_item.destroy
-          render :text => nil, :status => 204
-        end
-        private
-        def order
-          @order ||= Order.find_by_number!(params[:order_id])
-        end
-      end
-    end
-  end
-end

data/app/controllers/spree/api/v1/orders_controller.rb DELETED

@@ -1,83 +0,0 @@
-module Spree
-  module Api
-    module V1
-      class OrdersController < Spree::Api::V1::BaseController
-        before_filter :authorize_read!, :except => [:index, :search, :create]
-        def index
-          # should probably look at turning this into a CanCan step
-          raise CanCan::AccessDenied unless current_api_user.has_spree_role?("admin")
-          @orders = Order.ransack(params[:q]).result.page(params[:page]).per(params[:per_page])
-        end
-        def show
-        end
-        def create
-          @order = Order.build_from_api(current_api_user, nested_params)
-          next!(:status => 201)
-        end
-        def update
-          authorize! :update, Order
-          if order.update_attributes(nested_params)
-            order.update!
-            render :show
-          else
-            invalid_resource!(order)
-          end
-        end
-        def address
-          order.build_ship_address(params[:shipping_address]) if params[:shipping_address]
-          order.build_bill_address(params[:billing_address]) if params[:billing_address]
-          next!
-        end
-        def delivery
-          begin
-            ShippingMethod.find(params[:shipping_method_id])
-          rescue ActiveRecord::RecordNotFound
-            render :invalid_shipping_method, :status => 422
-          else
-            order.update_attribute(:shipping_method_id, params[:shipping_method_id])
-            next!
-          end
-        end
-        def cancel
-          order.cancel!
-          render :show
-        end
-        def empty
-          order.line_items.destroy_all
-          order.update!
-          render :text => nil, :status => 200
-        end
-        private
-        def nested_params
-          map_nested_attributes_keys Order, params[:order] || {}
-        end
-        def order
-          @order ||= Order.find_by_number!(params[:id])
-        end
-        def next!(options={})
-          if @order.valid? && @order.next
-            render :show, :status => options[:status] || 200
-          else
-            render :could_not_transition, :status => 422
-          end
-        end
-        def authorize_read!
-          authorize! :read, order
-        end
-      end
-    end
-  end
-end

data/app/controllers/spree/api/v1/payments_controller.rb DELETED

@@ -1,77 +0,0 @@
-module Spree
-  module Api
-    module V1
-      class PaymentsController < Spree::Api::V1::BaseController
-        before_filter :find_order
-        before_filter :find_payment, :only => [:show, :authorize, :purchase, :capture, :void, :credit]
-        def index
-          @payments = @order.payments.ransack(params[:q]).result.page(params[:page]).per(params[:per_page])
-        end
-        def new
-          @payment_methods = Spree::PaymentMethod.where(:environment => Rails.env)
-        end
-        def create
-          @payment = @order.payments.build(params[:payment])
-          if @payment.save
-            render :show, :status => 201
-          else
-            invalid_resource!(@payment)
-          end
-        end
-        def show
-        end
-        def authorize
-          perform_payment_action(:authorize)
-        end
-        def capture
-          perform_payment_action(:capture)
-        end
-        def purchase
-          perform_payment_action(:purchase)
-        end
-        def void
-          perform_payment_action(:void_transaction)
-        end
-        def credit
-          if params[:amount].to_f > @payment.credit_allowed
-            render "spree/api/v1/payments/credit_over_limit", :status => 422
-          else
-            perform_payment_action(:credit, params[:amount])
-          end
-        end
-        private
-        def find_order
-          @order = Order.find_by_number(params[:order_id])
-          authorize! :read, @order
-        end
-        def find_payment
-          @payment = @order.payments.find(params[:id])
-        end
-        def perform_payment_action(action, *args)
-          authorize! action, Payment
-          begin
-            @payment.send("#{action}!", *args)
-            render :show
-          rescue Spree::Core::GatewayError => e
-            @error = e.message
-            render "spree/api/v1/errors/gateway_error", :status => 422
-          end
-        end
-      end
-    end
-  end
-end