Merge remote-tracking branch 'origin/develop'

We'll only use the master branch for development from now on.
author: Azul <azul@riseup.net> 2016-10-20 14:39:33 +0200
committer: Azul <azul@riseup.net> 2016-10-20 14:39:33 +0200
commit: b97daaed9b513006ace7e8eb5232a2211e965e77 (patch)
tree: e27002e8368e92410e5d4af2a945260c2ea6e2d1 /app/controllers/api/certs_controller.rb
parent: c6c4d9fd10b8ca8e24889112727e44c9bf68dd60 (diff)
parent: 6eb2dae802e5453e2a4361ab28f614cce9294f4c (diff)
1 files changed, 31 insertions, 0 deletions
diff --git a/app/controllers/api/certs_controller.rb b/app/controllers/api/certs_controller.rb
new file mode 100644
index 0000000..46a84d3
--- /dev/null
+++ b/app/controllers/api/certs_controller.rb
@@ -0,0 +1,31 @@
+class Api::CertsController < ApiController
+
+  before_filter :require_login, :unless => :anonymous_access_allowed?
+  before_filter :require_enabled
+
+  # GET /cert
+  # deprecated - we actually create a new cert and that can
+  # be reflected in the action. GET /cert will eventually go
+  # away and be replaced by POST /cert
+  def show
+    create
+  end
+
+  # POST /cert
+  def create
+    @cert = ClientCertificate.new(:prefix => service_level.cert_prefix)
+    render text: @cert.to_s, content_type: 'text/plain'
+  end
+
+  protected
+
+  def require_enabled
+    if !current_user.is_anonymous? && !current_user.enabled?
+      access_denied
+    end
+  end
+
+  def service_level
+    current_user.effective_service_level
+  end
+end
author	Azul <azul@riseup.net>	2016-10-20 14:39:33 +0200
committer	Azul <azul@riseup.net>	2016-10-20 14:39:33 +0200
commit	b97daaed9b513006ace7e8eb5232a2211e965e77 (patch)
tree	e27002e8368e92410e5d4af2a945260c2ea6e2d1 /app/controllers/api/certs_controller.rb
parent	c6c4d9fd10b8ca8e24889112727e44c9bf68dd60 (diff)
parent	6eb2dae802e5453e2a4361ab28f614cce9294f4c (diff)