|
- class WikiPagesController < ApplicationController
- def show
- wiki_page = WikiPage.find(params[:id])
- return head :not_found unless wiki_page
-
- render json: wiki_page.as_json.merge(body: wiki_page.body)
- end
-
- def show_by_title
- wiki_page = WikiPage.find_by(title: params[:title])
- return head :not_found unless wiki_page
-
- render json: wiki_page.as_json.merge(body: wiki_page.body)
- end
-
- def create
- return head :unauthorized unless current_user
- return head :forbidden unless ['admin', 'member'].include?(current_user.role)
-
- wiki_page = WikiPage.new(title: params[:title], created_user: current_user, updated_user: current_user)
- if wiki_page.save
- wiki_page.set_body params[:body], user: current_user
- render json: wiki_page, status: :created
- else
- render json: { errors: wiki_page.errors.full_messages }, status: :unprocessable_entity
- end
- end
-
- def update
- return head :unauthorized unless current_user
- return head :forbidden unless ['admin', 'member'].include?(current_user.role)
-
- wiki_page = WikiPage.find(params[:id])
- return head :not_found unless wiki_page
-
- wiki_page.updated_user = current_user
- wiki_page.set_body params[:body], user: current_user
- wiki_page.save!
- head :ok
- end
-
- def search
- q = WikiPage.all
-
- if params[:title].present?
- title = params[:title].to_s.strip
- q = q.where('title LIKE ?', "%#{ WikiPage.sanitize_sql_like(title) }%")
- end
-
- render json: q.limit(20)
- end
- end
|
