如何使用私人提交隐藏个人资料? [英] How to use private submit to hide from profile?
问题描述
当用户通过private提交时,我们如何在Feed中隐藏提交的信息,以及如何使其他用户无法在其公开个人资料上看到该信息?
When a User submits via private how can we hide the submitted info from the feed and from other users being able to see it on his public profile?
<%= button_tag(type: 'submit', class: "btn") do %>
...
<%= button_tag(type: 'submit', class: "btn", id: "2", name: 'private') do %>
...
我们将以下内容放入控制器中,但是由于私有按钮将以许多不同的_forms形式存在,我是否必须将其放入每个控制器中,还是可以将其放入应用程序控制器中?
We put the below in the controller, but since the private button will be in a lot of different _forms, do I have to put it in each controller or can we put it in the application controller?
if params[:private]
# the private action / What do we need to put here?
else
# normal submit / and here?
我在这个铁路广播剧集之后几乎到了T,制作了活动供稿: http://railscasts.com/episodes/406-public-activity .
I followed this railcast episode nearly to the T to build the activity feed: http://railscasts.com/episodes/406-public-activity.
以下是公开个人资料的代码:
Here 's the code for the public profile:
users_controller.rb
def show
@user = User.find(params[:id])
@habits = @user.habits
@valuations = @user.valuations
@accomplished_goals = @user.goals.accomplished
@unaccomplished_goals = @user.goals.unaccomplished
@averaged_quantifieds = @user.quantifieds.averaged
@instance_quantifieds = @user.quantifieds.instance
end
show.html.erb
<% if @user.habits.any? %>
<h2>Habits</h2>
<h4>Challenges</h4>
<%= render partial: 'habits', locals: {habits: @habits} %>
<% end %>
<% if @user.valuations.any? %>
<h2>Values</h2>
<%= render @valuations %>
<% end %>
<% if @user.goals.any? %>
<h2>Goals</h2>
<h4> Current</h4>
<%= render @unaccomplished_goals %>
<% end %>
<% if @user.goals.any? %>
<h4>Accomplished</h4>
<%= render @accomplished_goals %>
<% end %>
<% if @user.quantifieds.any? %>
<h2>Stats</h2>
<h4>Averaged</h4>
<%= render partial: 'averaged', locals: {habits: @averaged_quantifieds} %>
<% end %>
<% if @user.quantifieds.any? %>
<h4>Instance</h4>
<%= render partial: 'instance', locals: {habits: @instance_quantifieds} %>
<% end %>
按要求:)
用户模型
class User < ActiveRecord::Base
has_many :authentications
has_many :habits, dependent: :destroy
has_many :levels
has_many :valuations, dependent: :destroy
has_many :comments, as: :commentable
has_many :goals, dependent: :destroy
has_many :quantifieds, dependent: :destroy
has_many :results, through: :quantifieds
accepts_nested_attributes_for :quantifieds, :reject_if => :all_blank, :allow_destroy => true
accepts_nested_attributes_for :results, :reject_if => :all_blank, :allow_destroy => true
has_many :active_relationships, class_name: "Relationship",
foreign_key: "follower_id",
dependent: :destroy
has_many :passive_relationships, class_name: "Relationship",
foreign_key: "followed_id",
dependent: :destroy
has_many :following, through: :active_relationships, source: :followed
has_many :followers, through: :passive_relationships, source: :follower
attr_accessor :remember_token, :activation_token, :reset_token
before_save :downcase_email
before_create :create_activation_digest
validates :name, presence: true, length: { maximum: 50 }
VALID_EMAIL_REGEX = /\A[\w+\-.]+@[a-z\d\-.]+\.[a-z]+\z/i
validates :email, presence: true, length: { maximum: 255 },
format: { with: VALID_EMAIL_REGEX },
uniqueness: { case_sensitive: false }, unless: -> { from_omniauth? }
has_secure_password
validates :password, length: { minimum: 6 }
def self.from_omniauth(auth)
where(provider: auth.provider, uid: auth.uid).first_or_initialize.tap do |user|
user.provider = auth.provider
user.uid = auth.uid
user.name = auth.info.name
user.oauth_token = auth.credentials.token
user.oauth_expires_at = Time.at(auth.credentials.expires_at)
user.password = (0...8).map { (65 + rand(26)).chr }.join
user.email = (0...8).map { (65 + rand(26)).chr }.join+"@mailinator.com"
user.save!
end
end
# Returns the hash digest of the given string.
def User.digest(string)
cost = ActiveModel::SecurePassword.min_cost ? BCrypt::Engine::MIN_COST :
BCrypt::Engine.cost
BCrypt::Password.create(string, cost: cost)
end
# Returns a random token.
def User.new_token
SecureRandom.urlsafe_base64
end
# Remembers a user in the database for use in persistent sessions.
def remember
self.remember_token = User.new_token
update_attribute(:remember_digest, User.digest(remember_token))
end
# Forgets a user. NOT SURE IF I REMOVE
def forget
update_attribute(:remember_digest, nil)
end
# Returns true if the given token matches the digest.
def authenticated?(attribute, token)
digest = send("#{attribute}_digest")
return false if digest.nil?
BCrypt::Password.new(digest).is_password?(token)
end
# Activates an account.
def activate
update_attribute(:activated, true)
update_attribute(:activated_at, Time.zone.now)
end
# Sends activation email.
def send_activation_email
UserMailer.account_activation(self).deliver_now
end
def create_reset_digest
self.reset_token = User.new_token
update_attribute(:reset_digest, User.digest(reset_token))
update_attribute(:reset_sent_at, Time.zone.now)
end
# Sends password reset email.
def send_password_reset_email
UserMailer.password_reset(self).deliver_now
end
# Returns true if a password reset has expired.
def password_reset_expired?
reset_sent_at < 2.hours.ago
end
def good_results_count
results.good_count
end
# Returns status feed.
def feed
following_ids = "SELECT followed_id FROM relationships
WHERE follower_id = :user_id"
Habit.where("user_id IN (#{following_ids})
OR user_id = :user_id", user_id: id)
Valuation.where("user_id IN (#{following_ids})
OR user_id = :user_id", user_id: id)
Goal.where("user_id IN (#{following_ids})
OR user_id = :user_id", user_id: id)
Quantified.where("user_id IN (#{following_ids})
OR user_id = :user_id", user_id: id)
end
# Follows a user.
def follow(other_user)
active_relationships.create(followed_id: other_user.id)
end
# Unfollows a user.
def unfollow(other_user)
active_relationships.find_by(followed_id: other_user.id).destroy
end
# Returns true if the current user is following the other user.
def following?(other_user)
following.include?(other_user)
end
private
def from_omniauth?
provider && uid
end
# Converts email to all lower-case.
def downcase_email
self.email = email.downcase unless from_omniauth?
end
# Creates and assigns the activation token and digest.
def create_activation_digest
self.activation_token = User.new_token
self.activation_digest = User.digest(activation_token)
end
end
用户控制器
class UsersController < ApplicationController
before_action :logged_in_user, only: [:index, :edit, :update, :destroy,
:following, :followers]
before_action :correct_user, only: [:edit, :update]
before_action :admin_user, only: :destroy
def index
@users = User.paginate(page: params[:page])
end
def show
@user = User.find(params[:id])
@habits = @user.habits
@valuations = @user.valuations
@accomplished_goals = @user.goals.accomplished
@unaccomplished_goals = @user.goals.unaccomplished
@averaged_quantifieds = @user.quantifieds.averaged
@instance_quantifieds = @user.quantifieds.instance
end
def new
@user = User.new
end
def create
@user = User.new(user_params)
if @user.save
@user.send_activation_email
flash[:info] = "Please check your email to activate your account."
redirect_to root_url
else
@feed_items = []
render 'pages/home'
end
end
def edit
@user = User.find(params[:id])
end
def update
@user = User.find(params[:id])
if @user.update_attributes(user_params)
flash[:success] = "Profile updated"
redirect_to @user
else
render 'edit'
end
end
def destroy
User.find(params[:id]).destroy
flash[:success] = "User deleted"
redirect_to users_url
end
def following
@title = "Following"
@user = User.find(params[:id])
@users = @user.following.paginate(page: params[:page])
render 'show_follow'
end
def followers
@title = "Followers"
@user = User.find(params[:id])
@users = @user.followers.paginate(page: params[:page])
render 'show_follow'
end
private
def user_params
params.require(:user).permit(:name, :email, :password,
:password_confirmation)
end
# Before filters
# Confirms a logged-in user.
def logged_in_user
unless logged_in?
store_location
flash[:danger] = "Please log in."
redirect_to login_url
end
end
# Confirms the correct user.
def correct_user
@user = User.find(params[:id])
redirect_to(root_url) unless current_user?(@user)
end
# Confirms an admin user.
def admin_user
redirect_to(root_url) unless current_user.admin?
end
end
使用下面的K答案,在转到用户或用户/1,用户/2等时,我会收到此错误消息.
With K's answer below I get this error message upon going to users or users/1, users/2 etc..
Started GET "/users/1" for 127.0.0.1 at 2015-04-01 16:32:13 -0400
SyntaxError (/Users/galli01anthony/Desktop/Pecoce/app/controllers/users_controller.rb:79: syntax error, unexpected ':', expecting keyword_end
users_attributes: [:name, :email, :password, :...
^
/Users/galli01anthony/Desktop/Pecoce/app/controllers/users_controller.rb:79: syntax error, unexpected ',', expecting keyword_end
...ivate, :password_confirmation], valuations_attributes: [:nam...
... ^
/Users/galli01anthony/Desktop/Pecoce/app/controllers/users_controller.rb:79: syntax error, unexpected '=', expecting keyword_end
... [:name, :tag_list, :private] = true
... ^
/Users/galli01anthony/Desktop/Pecoce/app/controllers/users_controller.rb:81: syntax error, unexpected ':', expecting keyword_end
users_attributes: [:name, :email, :password, :...
^
/Users/galli01anthony/Desktop/Pecoce/app/controllers/users_controller.rb:81: syntax error, unexpected ',', expecting keyword_end
...sword, :password_confirmation], valuations_attributes: [:nam...
... ^):
app/controllers/users_controller.rb:79: syntax error, unexpected ':', expecting keyword_end
app/controllers/users_controller.rb:79: syntax error, unexpected ',', expecting keyword_end
app/controllers/users_controller.rb:79: syntax error, unexpected '=', expecting keyword_end
app/controllers/users_controller.rb:81: syntax error, unexpected ':', expecting keyword_end
app/controllers/users_controller.rb:81: syntax error, unexpected ',', expecting keyword_end
这是一个分为两部分的问题.在此处找到第二部分:如何使用私人提交来隐藏供稿?
This is a two-part question. Find second part here: How to use private submit to hide from feed?
推荐答案
向用户模型添加字段"private",其默认值为"false".所有普通用户信息都将标记为公共"(因为私有字段的值为false).仅当params [:private]时,私有字段的值才会设置为"true".
Add a field 'private' to the User model with its default value 'false'. All normal user informations will be flagged as 'public' (because the private field has the value false) Only if params[:private], then the value of the private field will be set to 'true'.
接下来,您可以向用户模型添加一个方法,该方法将仅使用private = false标志(用于公共视图)获取用户数据.
Next you can add a method to the user model which will grab only the data of user with the private = false flag (for public views).
在每个相关模型中添加一个私有"字段,可能将其标记为私有.不要忘记在迁移中添加它.将私人默认设置为 false .
Add a field 'private' to each of your related models which possibly could be marked as private. Don't forget to add this in your migrations. Set the private's default to false.
包括在评估中用户迁移/模式
t.boolean :private, default: false
valuation.rb
def public?
private == true ? false : true
end
user.rb
# gets public valutations or nil, if there's no public valutation
def public_valuations
valuations.find(&:public?)
end
对于每个所需的关系,请以相同的方式执行此操作.它使您可以通过
Do this in the same way for each of your wanted relations. It enables you to get the public informations via
@valuations = @user.public_valuations
您当前的显示操作现在将显示所有其他用户信息-公共和私人-仅当current_user = @user时才显示.
Your current show action displays now all additional user's informations - public and private - which are should be only displayed if the current_user = @user.
最后,您必须在show动作中插入一个条件:
At last you have to insert a condition in your show action:
def show
@user = User.find(params[:id])
if current_user == @user
@habits = @user.habits
@valuations = @user.valuations
@accomplished_goals = @user.goals.accomplished
@unaccomplished_goals = @user.goals.unaccomplished
@averaged_quantifieds = @user.quantifieds.averaged
@instance_quantifieds = @user.quantifieds.instance
else
@valuations = @user.public_valuations
end
end
该解决方案取决于current_user,即您必须具有一个返回当前已登录用户(可能在会话中)对象的方法.迈克尔·哈特尔(Michael Hartl)撰写了关于用户身份验证的很棒的教程. * RubyonRailsBeginner为此使用了Hartl Tutorial:)
That solution depends on current_user, i.e. you must have a method which returns the object of the currently logged_in user (maybe in a session). Michael Hartl wrote an awesome tutorial about user authentication. *RubyonRailsBeginner used Hartl Tutorial for this :)
由于已将私有的默认值设置为 false ,因此可以使用现有代码创建公共条目.
Since you had set the private's default to false, you can use your existing code to create public entries.
对于私人条目,必须将user_params中的相应属性设置为 true .
For private entries you must set the corresponding attribute in your user_params to true.
使用params.edit进行编辑.要求:
我将else子句中的[:private]显式设置为false,以便用户可以根据需要将其私有属性设置为public.
I set the [:private] in the else clause explicit to false, so that a user might set his private attributes to public, if wanted.
def user_params
if params[:private] = true
params.require(:user).permit(:name, :email, :password, :private, :password_confirmation, valuations_attributes: [:name, :tag_list, :private])
else
params[:user][:valuations][:private] = false
params.require(:user).permit(:name, :email, :password, :password_confirmation, valuations_attributes: [:name, :tag_list])
end
end
Rails Api 为您提供了有关带有嵌套属性的强参数的一些提示.
The Rails Api gives you some hints about strong parameters with nested attributes.
希望有帮助!
这篇关于如何使用私人提交隐藏个人资料?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
