forked from fixin.me/fixin.me
Handle exceptions during TURBO_STREAM requests
This commit is contained in:
@@ -3,8 +3,19 @@ class ApplicationController < ActionController::Base
|
||||
|
||||
before_action :authenticate_user!
|
||||
|
||||
class AccessForbidden < StandardError
|
||||
end
|
||||
class AccessForbidden < StandardError; end
|
||||
class ParameterInvalid < StandardError; end
|
||||
|
||||
# Exceptions are handled depending on request format:
|
||||
# * HTML is handled by PublicExceptions, resulting in display of
|
||||
# 'public/<status-code>.html' template.
|
||||
# * TURBO_STREAM is handled by method specified below, which writes flash
|
||||
# message and forces redirect to referer - to display flash and make page
|
||||
# content consistent with database (which may or may not have been
|
||||
# modified before exception).
|
||||
# This requires referer to be available in TURBO_STREAM format. Otherwise
|
||||
# Turbo will reload 2nd time with HTML format and flashes will be lost.
|
||||
rescue_from *ActionDispatch::ExceptionWrapper.rescue_responses.keys, with: :rescue_turbo
|
||||
|
||||
protected
|
||||
|
||||
@@ -23,4 +34,14 @@ class ApplicationController < ActionController::Base
|
||||
def after_sign_out_path_for(scope)
|
||||
new_user_session_path
|
||||
end
|
||||
|
||||
private
|
||||
|
||||
def rescue_turbo(exception)
|
||||
raise unless request.format.to_sym == :turbo_stream
|
||||
|
||||
message_id = ActionDispatch::ExceptionWrapper.rescue_responses[exception.class.to_s]
|
||||
flash.alert = t("actioncontroller.exceptions.status.#{message_id}")
|
||||
redirect_to request.referer
|
||||
end
|
||||
end
|
||||
|
||||
@@ -17,12 +17,12 @@ class UsersController < ApplicationController
|
||||
end
|
||||
|
||||
def update
|
||||
raise ArgumentError if current_user == @user
|
||||
raise ParameterInvalid if current_user == @user
|
||||
@user.update!(params.require(:user).permit(:status))
|
||||
end
|
||||
|
||||
def disguise
|
||||
raise ArgumentError unless allow_disguise?(@user)
|
||||
raise ParameterInvalid unless allow_disguise?(@user)
|
||||
session[:revert_to_id] = current_user.id
|
||||
bypass_sign_in(@user)
|
||||
redirect_to root_url
|
||||
@@ -35,8 +35,8 @@ class UsersController < ApplicationController
|
||||
end
|
||||
|
||||
# NOTE: limited actions availabe to :admin by design. Users are meant to
|
||||
# manage their accounts by themselves through registrations. In future :admin
|
||||
# may be allowed to sing-in as user and make changes there.
|
||||
# manage their accounts by themselves through registrations. :admin
|
||||
# is allowed to sign-in (disguise) as user and make changes from there.
|
||||
|
||||
protected
|
||||
|
||||
|
||||
Reference in New Issue
Block a user