Finish user edit, update, index, and destroy actions

imranalizaidi · imranalizaidi · commit 28d413bfac9a · 2014-07-23T17:46:12.000-05:00
diff --git a/Gemfile b/Gemfile
@@ -3,6 +3,9 @@ source 'https://rubygems.org'
 gem 'rails', '3.2.3'
 gem 'bootstrap-sass', '2.0.0'
 gem 'bcrypt-ruby', '3.0.1'
+gem 'faker', '1.0.1'
+gem 'will_paginate', '3.0.3'
+gem 'bootstrap-will_paginate', '0.0.6'
 
 group :development, :test do
 	gem 'rspec-rails', '2.9.0'
diff --git a/Gemfile.lock b/Gemfile.lock
@@ -32,6 +32,8 @@ GEM
     arel (3.0.3)
     bcrypt-ruby (3.0.1)
     bootstrap-sass (2.0.0)
+    bootstrap-will_paginate (0.0.6)
+      will_paginate
     builder (3.0.4)
     capybara (1.1.2)
       mime-types (>= 1.16)
@@ -63,6 +65,8 @@ GEM
     factory_girl_rails (1.4.0)
       factory_girl (~> 2.3.0)
       railties (>= 3.0.0)
+    faker (1.0.1)
+      i18n (~> 0.4)
     ffi (1.9.3)
     formatador (0.2.5)
     guard (1.7.0)
@@ -169,6 +173,7 @@ GEM
     warden (1.2.3)
       rack (>= 1.0)
     websocket (1.0.7)
+    will_paginate (3.0.3)
     xpath (0.1.4)
       nokogiri (~> 1.3)
 
@@ -179,10 +184,12 @@ DEPENDENCIES
   annotate (~> 2.4.1.beta)
   bcrypt-ruby (= 3.0.1)
   bootstrap-sass (= 2.0.0)
+  bootstrap-will_paginate (= 0.0.6)
   capybara (= 1.1.2)
   coffee-rails (~> 3.2.2)
   devise
   factory_girl_rails (= 1.4.0)
+  faker (= 1.0.1)
   guard-rspec (= 0.5.5)
   jquery-rails (~> 2.0.0)
   libnotify (= 0.5.9)
@@ -193,3 +200,4 @@ DEPENDENCIES
   sass-rails (~> 3.2.4)
   sqlite3 (= 1.3.5)
   uglifier (= 1.2.3)
+  will_paginate (= 3.0.3)
diff --git a/app/assets/stylesheets/custom.css.scss b/app/assets/stylesheets/custom.css.scss
@@ -175,4 +175,19 @@ input, textarea, select, .uneditable-input {
 .field_with_errors {
 	@extend .control-group;
 	@extend .error;
+}
+
+/* users index */
+
+.users {
+	list-style: none;
+	margin: 0;
+	li {
+		overflow: auto;
+		padding: 10px 0;
+		border-top: 1px solid $grayLighter;
+		&:last-child {
+			border-bottom: 1px solid $grayLighter;
+		}
+	}
 }
diff --git a/app/controllers/sessions_controller.rb b/app/controllers/sessions_controller.rb
@@ -7,7 +7,7 @@ def create
 		user = User.find_by_email(params[:session][:email])
 		if user && user.authenticate(params[:session][:password])
 			sign_in user
-			redirect_to user
+			redirect_back_or user
 		else
 			flash.now[:error] = 'Invalid email/password combination' #Not quite right!
 			render 'new'
diff --git a/app/controllers/users_controller.rb b/app/controllers/users_controller.rb
@@ -1,4 +1,7 @@
 class UsersController < ApplicationController
+	before_filter :signed_in_user, only: [:index, :edit, :update]
+	before_filter :correct_user, only: [:edit, :update]
+	before_filter :admin_user, only: :destroy
 
 	def show
 		@user = User.find(params[:id])
@@ -18,4 +21,52 @@ def create
 			render 'new'
 		end
 	end
+
+	def edit
+		@user = User.find(params[:id])
+		if @user.update_attributes(params[:user])
+			# Handle a successful update.
+		else
+			render 'edit'
+		end
+	end
+
+	def update
+		@user = User.find(params[:id])
+		if @user.update_attributes(params[:user])
+			flash[:success] = "Profile updated"
+			sign_in @user
+			redirect_to @user
+		else
+			render 'edit'
+		end
+	end
+
+	def destroy
+		User.find(params[:id]).destroy
+		flash[:success] = "User destroyed."
+		redirect_to users_path
+	end
+
+	def index
+		@users = User.paginate(page: params[:page])
+	end
+
+	private
+
+		def signed_in_user
+			unless signed_in?
+				store_location
+				redirect_to signin_path, notice: "Please sign in."
+			end
+		end
+
+		def correct_user
+			@user = User.find(params[:id])
+			redirect_to(root_path) unless current_user?(@user)
+		end
+
+		def admin_user
+			redirect_to(root_path) unless current_user.admin?
+		end
 end
diff --git a/app/helpers/sessions_helper.rb b/app/helpers/sessions_helper.rb
@@ -16,8 +16,21 @@ def current_user
 		@current_user ||= User.find_by_remember_token(cookies[:remember_token])
 	end
 
+	def current_user?(user)
+		@user == current_user
+	end
+
 	def sign_out
 		self.current_user = nil
 		cookies.delete(:remember_token)
 	end
+
+	def redirect_back_or(default)
+		redirect_to(session[:return_to] || default)
+		session.delete(:return_to)
+	end
+
+	def store_location
+		session[:return_to] = request.fullpath
+	end
 end
diff --git a/app/helpers/users_helper.rb b/app/helpers/users_helper.rb
@@ -1,9 +1,10 @@
 module UsersHelper
 
 	# Returns the Gravatar (http://gravatar.com/) for the given user.
-	def gravatar_for(user)
+	def gravatar_for(user, options = { size: 50 })
 		gravatar_id = Digest::MD5::hexdigest(user.email.downcase)
-		gravatar_url = "https://secure.gravatar.com/avatars/#{gravatar_id}.png"
+		size = options[:size]
+		gravatar_url = "https://secure.gravatar.com/avatars/#{gravatar_id}.png?s=#{size}"
 		image_tag(gravatar_url, alt: user.name, class: "gravatar")
 	end
 end
diff --git a/app/views/layouts/_header.html.erb b/app/views/layouts/_header.html.erb
@@ -7,14 +7,14 @@
 					<li><%= link_to "Home", root_path %></li>
 					<li><%= link_to "Help", help_path %></li>
 					<% if signed_in? %>
-						<li><%= link_to "Users", '#' %></li>
+						<li><%= link_to "Users", users_path %></li>
 						<li id="fat-menu" class="dropdown">
 							<a href="#" class="dropdown-toggle" data-toggle="dropdown">
 								Account <b class="caret"></b>
 							</a>
 							<ul class="dropdown-menu">
 								<li><%= link_to "Profile", current_user %></li>
-								<li><%= link_to "Settings", '#' %></li>
+								<li><%= link_to "Settings", edit_user_path(current_user) %></li>
 								<li class="divider"></li>
 								<li>
 									<%= link_to "Sign out", signout_path, method: "delete" %>
diff --git a/app/views/users/_user.html.erb b/app/views/users/_user.html.erb
@@ -0,0 +1,7 @@
+<li>
+	<%= gravatar_for user, size: 52 %>
+	<%= link_to user.name, user %>
+	<% if current_user.admin? && !current_user?(user) %>
+		<%= link_to "delete", user, method: :delete, confirm: "You sure?" %>
+	<% end %>
+</li>
diff --git a/app/views/users/edit.html.erb b/app/views/users/edit.html.erb
@@ -0,0 +1,27 @@
+<% provide(:title, "Edit user") %>
+<h1>Update your profile</h1>
+
+<div class="row">
+	<div class="span6 offset3">
+		<%= form_for(@user) do |f| %>
+			<%= render 'shared/error_messages' %>
+
+			<%= f.label :name %>
+			<%= f.text_field :name %>
+
+			<%= f.label :email %>
+			<%= f.text_field :email %>
+
+			<%= f.label :password %>
+			<%= f.password_field :password %>
+
+			<%= f.label :password_confirmation, "Confirm Password" %>
+			<%= f.password_field :password_confirmation %>
+
+			<%= f.submit "Save changes", class: "btn btn-large btn-primary" %>
+		<% end %>
+
+		<%= gravatar_for @user %>
+		<a href="http://gravatar.com/emails">change</a>
+	</div>
+</div>
diff --git a/app/views/users/index.html.erb b/app/views/users/index.html.erb
@@ -0,0 +1,10 @@
+<% provide(:title, 'All users') %>
+<h1>All users</h1>
+
+<%= will_paginate %>
+
+<ul class="users">
+	<%= render @users %>
+</ul>
+
+<%= will_paginate %>
diff --git a/db/migrate/20140723211927_add_admin_to_users.rb b/db/migrate/20140723211927_add_admin_to_users.rb
@@ -0,0 +1,5 @@
+class AddAdminToUsers < ActiveRecord::Migration
+  def change
+    add_column :users, :admin, :boolean, default: false
+  end
+end
diff --git a/db/schema.rb b/db/schema.rb
@@ -11,15 +11,16 @@
 #
 # It's strongly recommended to check this file into your version control system.
 
-ActiveRecord::Schema.define(:version => 20140710000649) do
+ActiveRecord::Schema.define(:version => 20140723211927) do
 
   create_table "users", :force => true do |t|
     t.string   "name"
     t.string   "email"
-    t.datetime "created_at",      :null => false
-    t.datetime "updated_at",      :null => false
+    t.datetime "created_at",                         :null => false
+    t.datetime "updated_at",                         :null => false
     t.string   "password_digest"
     t.string   "remember_token"
+    t.boolean  "admin",           :default => false
   end
 
   add_index "users", ["email"], :name => "index_users_on_email", :unique => true
diff --git a/lib/tasks/sample_data.rake b/lib/tasks/sample_data.rake
@@ -0,0 +1,20 @@
+namespace :db do
+	desc "Fill database with sample data"
+	task populate: :environment do
+		admin = User.create(name: "Example User",
+							email: "example@railstutorial.org",
+							password: "foobar",
+							password_confirmation: "foobar")
+		admin.toggle!(:admin)
+		
+		99.time do |n|
+			name = Faker::Name.name
+			email = "example-#{n+1}@railstutorial.org"
+			password = "password"
+			User.create!(name: name,
+						email: email,
+						password: password,
+						password_confirmation: password)
+		end
+	end
+end
diff --git a/spec/factories.rb b/spec/factories.rb
@@ -1,8 +1,12 @@
 FactoryGirl.define do
 	factory :user do
-		name "Michael Hartl"
-		email "michael@example.com"
+		sequence(:name) { |n| "Person #{n}" }
+		sequence(:email) { |n| "person_#{n}@example.com" }
 		password "foobar"
 		password_confirmation "foobar"
+
+		factory :admin do
+			admin true
+		end
 	end	
-end
+end
diff --git a/spec/models/user_spec.rb b/spec/models/user_spec.rb
@@ -24,8 +24,17 @@
 	it { should respond_to(:password) }
 	it { should respond_to(:password_confirmation) }
 	it { should respond_to(:remember_token) }
+	it { should respond_to(:admin) }
 	it { should respond_to(:authenticate) }
+
 	it { should be_valid }
+	it { should_not be_admin }
+
+	describe "with admin attribute set to 'true'" do
+		before { @user.toggle!(:admin) }
+
+		it { should be_admin }
+	end
 
 	describe "when name is not present" do
 		before { @user.name = " " }
diff --git a/spec/requests/authentication_pages_spec.rb b/spec/requests/authentication_pages_spec.rb
diff --git a/spec/requests/user_pages_spec.rb b/spec/requests/user_pages_spec.rb
diff --git a/spec/support/utilities.rb b/spec/support/utilities.rb
