Users & Auth

2018-11-10 18:46:47 -06:00
parent 904a071fc0
commit 8a7b3d8ae0
26 changed files with 663 additions and 14 deletions
--- a/app/controllers/v1/authentication_controller.rb
+++ b/app/controllers/v1/authentication_controller.rb
@ -0,0 +1,23 @@
+# frozen_string_literal: true
+
+module V1
+  class AuthenticationController < ApplicationController
+    skip_after_action :verify_authorized
+    skip_after_action :verify_policy_scoped
+
+    def authenticate
+      command = AuthenticateUser.new(auth_params)
+      @token = command.perform
+      @user = command.user
+      render "v1/authentication/authenticate" and return unless @token.nil?
+
+      render json: command.errors, status: :unauthorized
+    end
+
+    private
+
+      def auth_params
+        params.permit(:email, :password)
+      end
+  end
+end
--- a/app/controllers/v1/users_controller.rb
+++ b/app/controllers/v1/users_controller.rb
@ -0,0 +1,47 @@
+# frozen_string_literal: true
+
+module V1
+  class UsersController < ApplicationController
+    before_action :set_user, only: %i[show update destroy]
+
+    def index
+      @users = policy_scope User.all
+    end
+
+    def show; end
+
+    def create
+      @user = User.new(user_params)
+      authorize @user
+
+      if @user.save
+        render :show, status: :created, location: v1_users_url(@user)
+      else
+        render json: @user.errors, status: :unprocessable_entity
+      end
+    end
+
+    def update
+      if @user.update(user_params)
+        render :show, status: :ok, location: v1_users_url(@user)
+      else
+        render json: @user.errors, status: :unprocessable_entity
+      end
+    end
+
+    def destroy
+      @user.destroy
+    end
+
+    private
+
+      def set_user
+        @user = User.find(params[:id])
+        authorize @user
+      end
+
+      def user_params
+        params.require(:user).permit(policy(User).permitted_attributes)
+      end
+  end
+end