[Ovirt-devel] [PATCH server 1/3] before_filter and rescue_from refactoring in application.rb

Scott Seago sseago at redhat.com
Fri May 8 19:34:09 UTC 2009 

Most of these before_filters will go away once we're using the service later for everything. I fixed a couple cases where the legacy before_filter was in conflict with the service layer code, and the authorize_xxx methods now just raise PermissionError rather than formatting the reply, since rescue_from handles that for us now.

I've also added ActionError to the rescue_from handlers, and for PartialSuccessError we now automatically include failures in hte json alert, and we set @successes and @failures so that html response views can access them.

Signed-off-by: Scott Seago <sseago at redhat.com>
---
 src/app/controllers/application.rb |   52 ++++++++++++++++++++----------------
 1 files changed, 29 insertions(+), 23 deletions(-)

diff --git a/src/app/controllers/application.rb b/src/app/controllers/application.rb
index 4834915..cff5b77 100644
--- a/src/app/controllers/application.rb
+++ b/src/app/controllers/application.rb
@@ -32,24 +32,24 @@ class ApplicationController < ActionController::Base
 
   # FIXME: once service layer is complete, the following before_filters will be
   # removed as their functionality has been moved to the service layer
+  # pre_new
   # pre_create
-  # pre_edit will remain only for :edit, not :update or :destroy
+  # pre_edit
   # pre_show
-  # authorize_admin will remain only for :new, :edit
+  # authorize_admin
   before_filter :pre_new, :only => [:new]
   before_filter :pre_create, :only => [:create]
-  before_filter :pre_edit, :only => [:edit]
   # the following is to facilitate transition to service layer
-  before_filter :tmp_pre_update, :only => [:update, :destroy]
+  before_filter :tmp_pre_update, :only => [:edit, :update, :destroy]
   before_filter :pre_show, :only => [:show]
-  before_filter :authorize_admin, :only => [:new, :edit]
-  before_filter :tmp_authorize_admin, :only => [:create, :update, :destroy]
+  before_filter :tmp_authorize_admin, :only => [:new, :edit, :create, :update, :destroy]
   before_filter :is_logged_in, :get_help_section
 
   # General error handlers, must be in order from least specific
   # to most specific
   rescue_from Exception, :with => :handle_general_error
   rescue_from PermissionError, :with => :handle_perm_error
+  rescue_from ActionError, :with => :handle_action_error
   rescue_from PartialSuccessError, :with => :handle_partial_success_error
 
   def choose_layout
@@ -100,24 +100,20 @@ class ApplicationController < ActionController::Base
   def pre_show
   end
 
-  def authorize_view(msg=nil)
-    authorize_action(Privilege::VIEW,msg)
+  # These authorize_XXX methods should go away once we're fully converted to
+  # the service layer
+  def authorize_view
+    authorize_action(Privilege::VIEW)
   end
-  def authorize_user(msg=nil)
-    authorize_action(Privilege::VM_CONTROL,msg)
+  def authorize_user
+    authorize_action(Privilege::VM_CONTROL)
   end
-  def authorize_admin(msg=nil)
-    authorize_action(Privilege::MODIFY,msg)
+  def authorize_admin
+    authorize_action(Privilege::MODIFY)
   end
-  def authorize_action(privilege, msg=nil)
-    msg ||= 'You have insufficient privileges to perform action.'
-    unless authorized?(privilege)
-      handle_error(:message => msg,
-                   :title => "Access Denied", :status => :forbidden)
-      false
-    else
-      true
-    end
+  def authorize_action(privilege)
+    authorized!(privilege)
+    true
   end
 
   def handle_perm_error(error)
@@ -129,18 +125,26 @@ class ApplicationController < ActionController::Base
     failures_arr = error.failures.collect do |resource, reason|
       resource.display_name + ": " + reason
     end
+    @successes = error.successes
+    @failures = error.failures
     handle_error(:error => error, :status => :ok,
                  :message => error.message + ": " + failures_arr.join(", "),
                  :title => "Some actions failed")
   end
 
+  def handle_action_error(error)
+    handle_error(:error => error, :status => :conflict,
+                 :title => "Action Error")
+  end
+
   def handle_general_error(error)
+    flash[:errmsg] = error.message
     handle_error(:error => error, :status => :internal_server_error,
                  :title => "Internal Server Error")
   end
 
   def handle_error(hash)
-    log_error(hash[:error])
+    log_error(hash[:error]) if hash[:error]
     msg = hash[:message] || hash[:error].message
     title = hash[:title] || "Internal Server Error"
     status = hash[:status] || :internal_server_error
@@ -156,7 +160,9 @@ class ApplicationController < ActionController::Base
     @errmsg = msg
     @ajax = params[:ajax]
     @nolayout = params[:nolayout]
-    if @ajax
+    if @layout
+      render :layout => @layout
+    elsif @ajax
       render :template => 'layouts/popup-error', :layout => 'tabs-and-content'
     elsif @nolayout
       render :template => 'layouts/popup-error', :layout => 'help-and-content'
-- 
1.6.0.6

More information about the ovirt-devel mailing list