Class: Crm::AccountsController

Inherits:
CrmController show all
Defined in:
app/controllers/crm/accounts_controller.rb

Constant Summary

Constants included from Controllers::ReferenceFindable

Controllers::ReferenceFindable::ID_EMBEDDED_PATTERNS

Constants included from Controllers::AnalyticsEvents

Controllers::AnalyticsEvents::MAX_QUEUED_EVENTS, Controllers::AnalyticsEvents::SESSION_KEY

Constants included from Controllers::ErrorRendering

Controllers::ErrorRendering::NON_CONTENT_PATH_PREFIXES

Constants included from Www::SeoHelper

Www::SeoHelper::AWARDS, Www::SeoHelper::CA_ADDRESS, Www::SeoHelper::CA_BUSINESS_HOURS, Www::SeoHelper::CA_CONTACT_POINT, Www::SeoHelper::CA_CURRENCIES, Www::SeoHelper::CA_DESCRIPTION, Www::SeoHelper::CA_FOUNDING_DATE, Www::SeoHelper::CA_GLOBAL_LOCATION_NUMBER, Www::SeoHelper::CA_LEGAL_NAME, Www::SeoHelper::CA_LOCAL_BUSINESS, Www::SeoHelper::CA_ONLINE_STORE, Www::SeoHelper::CA_RETURN_POLICY, Www::SeoHelper::CA_SALES_DEPARTMENT, Www::SeoHelper::CA_SERVICE_AREA, Www::SeoHelper::CA_URL, Www::SeoHelper::CA_VAT_ID, Www::SeoHelper::CA_WAREHOUSE_DEPARTMENT, Www::SeoHelper::CA_WAREHOUSE_HOURS, Www::SeoHelper::COMPANY_EMAIL, Www::SeoHelper::COMPANY_LOGO, Www::SeoHelper::COMPANY_NAME, Www::SeoHelper::COMPANY_SLOGAN, Www::SeoHelper::EXPERTISE, Www::SeoHelper::FAX_NUMBER, Www::SeoHelper::GS1_COMPANY_PREFIX, Www::SeoHelper::ISO6523_CODE, Www::SeoHelper::PAYMENT_METHODS, Www::SeoHelper::PHONE_NUMBER, Www::SeoHelper::PRIMARY_NAICS, Www::SeoHelper::REFUND_TYPE, Www::SeoHelper::RETURN_FEES, Www::SeoHelper::RETURN_METHOD, Www::SeoHelper::RETURN_POLICY_CATEGORY, Www::SeoHelper::SECONDARY_NAICS, Www::SeoHelper::SOCIAL_PROFILES, Www::SeoHelper::US_ADDRESS, Www::SeoHelper::US_BUSINESS_HOURS, Www::SeoHelper::US_CONTACT_POINT, Www::SeoHelper::US_CURRENCIES, Www::SeoHelper::US_DESCRIPTION, Www::SeoHelper::US_FOUNDING_DATE, Www::SeoHelper::US_GLOBAL_LOCATION_NUMBER, Www::SeoHelper::US_IMAGE, Www::SeoHelper::US_LEGAL_NAME, Www::SeoHelper::US_LOCAL_BUSINESS, Www::SeoHelper::US_ONLINE_STORE, Www::SeoHelper::US_RETURN_POLICY, Www::SeoHelper::US_SALES_DEPARTMENT, Www::SeoHelper::US_SERVICE_AREA, Www::SeoHelper::US_TAX_ID, Www::SeoHelper::US_URL, Www::SeoHelper::US_WAREHOUSE_DEPARTMENT, Www::SeoHelper::US_WAREHOUSE_HOURS

Constants included from IconHelper

IconHelper::CUSTOM_ICON_MAP, IconHelper::CUSTOM_SVG_DIR, IconHelper::DEFAULT_FAMILY

Instance Method Summary collapse

Methods inherited from CrmController

#access_denied, #context_id, #context_object, #crm_home_path, #current_ability, #default_url_options, #download_temp, #get_tempfile_path_for_download, #initialize_crm_lazy_chunks, #record_not_found, #redirect_to_job_or_fallback, #render_edit_action, #set_context, #set_download_path, #stash_file_for_temp_download

Methods inherited from ApplicationController

#account_impersonated?, #add_to_flash, #append_token, #bypass_forgery_protection?, #chat_enabled?, #cloudflare_cleared?, #default_catalog, #default_url_options, #enable_turbo_frames, #find_publication, #fix_invalid_accept_header, #init_js_utils, #is_globals_call?, #layout_by_resource, #locale_store, #redirect_to, #require_employee_for_crm, #set_base_host, #set_real_ip, #set_report_errors_for, #should_render_layout?, #stamp_impersonation_context, #warmlyyours_canada_ip?, #warmlyyours_ip?, #y

Methods included from Controllers::ReturnPathHandling

#check_for_return_path, #redirect_to_return_path_or_default

Methods included from Controllers::AnalyticsEvents

#consume_queued_analytics_events, #track_event

Methods included from Controllers::DeviceDetection

#device_detector, #is_ie?

Methods included from Controllers::SubdomainDetection

#is_crm_request?, #is_www_request?, #json_request?

Methods included from Controllers::TrackingDetection

#bot_request?, #gdpr_country?, #gdpr_country_data, #prevent_bots, #set_tracking_cookie, #track_visitor?

Methods included from Controllers::AcceleratedFileSending

#send_file_accelerated, #send_upload_accelerated

Methods included from Controllers::ErrorRendering

#excp_string, #mail_to_for_error_reporting, #render_400, #render_404, #render_406, #render_410, #render_500, #render_invalid_authenticity_token, #render_ip_spoof_error, #safe_referer_or_fallback

Methods included from Controllers::TurnstileVerification

#load_turnstile_script_tag, #turnstile_lazy_widget, #turnstile_script_tag, #turnstile_widget, #validate_turnstile!

Methods included from Controllers::CloudflareCaching

edge_cached, #edge_cached_action?, #reset_cloudflare_cache, #set_cloudflare_cache, #skip_session

Methods included from Controllers::Webpackable

#preload_webpack_fonts, #webpack_css_include, #webpack_css_url, #webpack_js_include, #wpd_is_running?

Methods included from Controllers::Localizable

#cloudflare_country_locale, #determine_request_locale, #geocoder_locale, #guest_user_locale_check, #locale_optional_www_auth_path?, #param_locale, #set_locale, #set_request_locale, #skip_localization?, #warmlyyours_ip_locale

Methods included from Controllers::Authenticable

#access_denied, #authenticate_account, #authenticate_account!, #authenticate_account_from_login_token!, #authenticate_account_from_token!, #check_is_a_manager, #check_is_a_sales_manager, #check_is_an_admin, #check_is_an_employee, #check_party, #clear_mismatched_guest_user, #create_guest_user, #credentials?, #current_or_guest_user, #current_or_guest_user_id_read_only, #current_user, #devise_mapping, #fully_logged_in?, #generate_bot_id, #guest_user, #identifiable?, #init_current_user, #initialize_guest, #load_context_user, #logging_in, #resource, #resource_name, #restrict_access_for_non_employees, #scrubbed_request_path, #user_object, #warn_on_session_guest_id_leak

Methods included from ApplicationHelper

#better_number_to_currency, #check_force_logout, #check_or_cross, #check_or_times, #error_messages, #general_disclaimer_on_product_installation_and_local_codes, #gridjs_from_html_table, #gridjs_table, #is_wy_ip, #line_break, #parent_layout, #pass_or_fail, #render_error_messages_list, #render_video_card, #resolved_auth_form_turbo_frame, #return_path_or, #safe_css_color, #set_return_path_if_present, #set_section_if_present, #tab_frame_id, #to_underscore, #track_page?, #turbo_section_wrapper, #turbo_tabs_request?, #url_on_same_domain_as_request, #widget_index_daily_focus_index_path, #working_hours?, #yes_or_no, #yes_or_no_highlighted, #yes_or_no_with_check_or_cross, #youtube_video

Methods included from UppyUploaderHelper

#file_uploader, #image_uploader, #large_file_uploader_s3, #lead_sketch_uploader, #rma_image_uploader, #rma_image_uploader_s3, #uppy_uploader, #video_uploader

Methods included from Www::ImagesHelper

#image_asset_tag, #image_asset_url

Methods included from Www::SeoHelper

#add_page_schema, #canada?, #company_social_links, #ensure_context_json, #json_ld_script_tag, #local_business_schema, #online_store_id, #online_store_schema, #page_main_entity, #page_main_entity_json, #render_auto_collection_page_schema, #render_collection_page_schema, #render_local_business_schema, #render_online_store_schema, #render_page_schemas, #render_page_video_schemas, #render_webpage_schema, #render_webpage_schema_with_collections, #usa?

Methods included from UrlsHelper

#catalog_breadcrumb_links, #catalog_link, #catalog_link_for_product_line, #catalog_link_for_sku, #cms_link, #delocalized_path, #path_to_sales_product_sku, #path_to_sales_product_sku_for_product_line, #path_to_sales_product_sku_for_product_line_slug, #product_line_from_catalog_link, #protocol_neutral_url, #sanitize_external_url, #valid_external_url?

Methods included from IconHelper

#account_nav_icon, #fa_icon, #star_rating_html

Instance Method Details

#becomeObject 



45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
 
# File 'app/controllers/crm/accounts_controller.rb', line 45

def become
  unless .can_impersonate?(@account.party)
    flash[:error] = 'You do not have the necessary permission to login under this account.'
    return redirect_to polymorphic_path([@party, :account])
  end

  # The handoff is purely an in-flight signed token + Redis-backed
  # replay guard now. The audit row lands in `login_activities` on the
  # WWW side via AuthTrail when the customer is actually signed in
  # (see Www::MasqueradesController#new + config/initializers/authtrail.rb).
  token = Masquerade::HandoffToken.encode(
    masquerading_account_id: .id,
    masqueraded_account_id:  @account.id,
    nonce:                   SecureRandom.uuid
  )

  redirect_to "#{WEB_URL}/masquerade/new?token=#{CGI.escape(token)}", allow_other_host: true
rescue Masquerade::HandoffToken::Error => e
  Rails.logger.error("Masquerade handoff failed: #{e.class}: #{e.message}")
  flash[:error] = 'Could not start masquerade session. Please try again.'
  redirect_to polymorphic_path([@party, :account])
end

#createObject 



16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
 
# File 'app/controllers/crm/accounts_controller.rb', line 16

def create
  # Use Account.new (not @party.build_account) so we don't replace the
  # has_one :account association in memory. has_one autosave on save would
  # otherwise destroy any pre-existing account on this party - the same
  # silent-destroy primitive that wiped a real customer's account in
  # ticket BC-498301955. Account::Inviter#process inserts a brand-new row
  # via Account.invite!, leaving any existing accounts untouched.
  @account = Account.new(params[:account])

  result = Account::Inviter.new.process(party: @party, email: @account.email, login: @account.)
  @account = result. || @account
  if @party.is_a?(Contact)
    @account.roles << Role.find_by(name: "online_customer_sales_representative")
  end
  if @account&.persisted?
    redirect_to polymorphic_path([@party, :account])
  else
    flash[:error] = result.messages.join('. ')
    set_available_email_accounts
    render :new, status: :unprocessable_entity
  end
end

#destroyObject 



68
69
70
71
72
73
74
75
 
# File 'app/controllers/crm/accounts_controller.rb', line 68

def destroy
  if @account.destroy
    flash[:info] = "Online account deleted"
  else
    flash[:error] = "Could not delete online account. #{@account.errors_to_s}"
  end
  redirect_to polymorphic_path([@party, :account])
end

#edit_emailObject 



99
100
101
 
# File 'app/controllers/crm/accounts_controller.rb', line 99

def edit_email
  set_available_email_accounts
end

#newObject 



4
5
6
7
8
 
# File 'app/controllers/crm/accounts_controller.rb', line 4

def new
  set_available_email_accounts

  @account = Account.new(email: @party.email)
end

#resend_invitationObject 



88
89
90
91
92
93
94
95
96
97
 
# File 'app/controllers/crm/accounts_controller.rb', line 88

def resend_invitation
  begin
    raise "Invitation was already accepted" if @account.invitation_accepted_at.present?
    @account.invite!
    flash[:info] = "Invitation was resent to #{@account.email}"
  rescue StandardError => exc
    flash[:error] = "Invitation could not be sent. #{exc.to_s}"
  end
  redirect_to polymorphic_path([@party, :account])
end

#reset_passwordObject 



77
78
79
80
81
82
83
84
85
86
 
# File 'app/controllers/crm/accounts_controller.rb', line 77

def reset_password
  begin
    @account.restore_authentication_token!
    @account.send_reset_password_instructions
    flash[:info] = "Password reset instructions have been sent to the customer at #{@account.email}"
  rescue StandardError => exc
    flash[:error] = "Password reset instructions could not be sent, message : #{exc.to_s}, please contact an administrator."
  end
  redirect_to polymorphic_path([@party, :account])
end

#set_emailObject 



103
104
105
106
107
108
109
110
 
# File 'app/controllers/crm/accounts_controller.rb', line 103

def set_email
  if @account.update(params[:account])
    redirect_to polymorphic_path([@party, :account])
  else
    set_available_email_accounts
    render action: :edit_email, status: :unprocessable_entity
  end
end

#set_roleObject 



112
113
114
115
116
117
118
119
120
121
122
123
124
 
# File 'app/controllers/crm/accounts_controller.rb', line 112

def set_role
  # puts "set_role: params.inspect: #{params.inspect}"
  set_role = false
  if params[:account] and (rid = params[:account][:role_ids].to_i).present? and rid.positive? and @account.party and @account.party.class.to_s == 'Contact'
    set_role = true
  end
  if set_role and (@account.role_ids = [rid])
    flash[:info] = "Role/permissions were set for login: #{@account.email}"
  else
    flash[:error] = "Role/permissions could not be set for login: #{@account.email}"
  end
  redirect_to polymorphic_path([@party, :account])
end

#showObject 



39
40
41
42
43
 
# File 'app/controllers/crm/accounts_controller.rb', line 39

def show
  return redirect_to polymorphic_path([@party, :account], action: :new) unless @account

  
end

#toggle_disabledObject 



10
11
12
13
14
 
# File 'app/controllers/crm/accounts_controller.rb', line 10

def toggle_disabled
  @account.toggle(:disabled)
  @account.save
  redirect_to polymorphic_path([@party, :account])
end