nadia
/
POS-Server


			
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225
							class ApplicationController < ActionController::Base
	# Prevent CSRF attacks by raising an exception.
	# For APIs, you may want to use :null_session instead.
	
	before_filter do
		resource = controller_path.singularize.gsub('/', '_').to_sym
		method = "#{resource}_params"
		params[resource] &&= send(method) if respond_to?(method, true)
	end
	
	before_filter :set_pos_config
	around_filter :user_time_zone, :if => :set_pos_config

	protect_from_forgery with: :exception

	##--- Breadcrum_rails
	add_breadcrumb I18n.t("breadcrumbs.dashboard"), :root_path

	##--- Restricción para autentificación 
	before_action :authenticate_user!

	##--- Notes boxes
	add_flash_types :success, :warning, :danger, :info

	##--- Parametros permitidos para los usuarios
	before_action :configure_permitted_parameters, if: :devise_controller?

	##--- Redireccionamiento para los permisos a modulos 
	rescue_from CanCan::AccessDenied do |exception|
		redirect_to root_url, :alert => exception.message
	end

	##--- Funciones personalizadas
	def getcounties  
		render :json => SpmxCounty.where("state_id = ?", params[:state_id]) 
	end

	def find
		query = params[:query]
		if query.include? ':'
			# buscar con atributos
			product_name = query[0, query.index(':') -1]
			attribute =  query[query.index(':') +1, query.length]
		else
			product_name = query
		end	

		render json: (query.include? ':') ? Product.name_sku_barcode_attribute_like(product_name, attribute).limit(30).to_json(:methods => [:small_img, :display_attributes ]) : Product.name_sku_barcode_like(params[:query]).limit(30).to_json(:methods => [:small_img, :display_attributes ])
	end
	#para special_prices
	def find_sp
		query = params[:query]
		product_name = query

		render json: Product.name_sku_barcode_like_sp(product_name).limit(30).to_json(:methods => [:small_img ])
	end

	def find_from_stock
		query = params[:query]
		if query.include? ':'
			# buscar con atributos
			product_name = query[0, query.index(':') -1]
			attribute =  query[query.index(':') +1, query.length]
		else
			product_name = query
		end		

		if current_user.usertype == 'S'
			render json: (query.include? ':') ? Warehouse.find(current_user.warehouse_id).products.name_sku_barcode_attribute_like(product_name, attribute).where("stock > 0").limit(30).to_json(:methods => [:small_img, :display_attributes]) : Warehouse.find(current_user.warehouse_id).products.name_sku_barcode_like(params[:query]).where("stock > 0").limit(30).to_json(:methods => [:small_img, :display_attributes])
		else
			render json: (query.include? ':') ? Pointsale.find(current_user.pointsale_id).products.name_sku_barcode_attribute_like(product_name, attribute).where("stock > 0").limit(30).to_json(:methods => [:small_img, :display_attributes]) : Pointsale.find(current_user.pointsale_id).products.name_sku_barcode_like(params[:query]).where("stock > 0").limit(30).to_json(:methods => [:small_img, :display_attributes])			
		end		
	end

	def find_from_stock_by_pointsale
		id = params[:pointsale_id][2, params[:pointsale_id].length]
		
		query = params[:query]
		if query.include? ':'
			# buscar con atributos
			product_name = query[0, query.index(':') -1]
			attribute =  query[query.index(':') +1, query.length]
		else
			product_name = query
		end	

		if params[:pointsale_id].first == 'P'
			render json: (query.include? ':') ? Pointsale.find(id).products.name_sku_barcode_attribute_like(product_name, attribute).where("stock > 0").limit(30).to_json(:methods => [:small_img, :display_attributes]) : Pointsale.find(id).products.name_sku_barcode_like(params[:query]).where("stock > 0").limit(30).to_json(:methods => [:small_img, :display_attributes])		
		else
			render json: (query.include? ':') ? Warehouse.find(id).products.name_sku_barcode_attribute_like(product_name, attribute).where("stock > 0").limit(30).to_json(:methods => [:small_img, :display_attributes]) : Warehouse.find(id).products.name_sku_barcode_like(params[:query]).where("stock > 0").limit(30).to_json(:methods => [:small_img, :display_attributes])		
		end
	end

	def get_subcategories  
		render :json => params[:category_id] != '0' ? Category.activos.where("parent_id = ?", params[:category_id])  : Category.activos.where('parent_id != 0')		
	end

	def set_pos_config
	  @pos_config = PosConfig.first
	end

	def user_time_zone(&block)
	  Time.use_zone(@pos_config.time_zone, &block)
	end

	  #eliminar pre_sales que ya estaban guardadas
  	def delete_pre_sales
    	PreSale.where(user_id: current_user.id).destroy_all 
	    respond_to do |format|
	        format.json { head :no_content }
	    end
  	end
  	
  	#eliminar pre_purchases que ya estaban guardadas
  	def delete_pre_purchases
		PrePurchase.where(user_id: current_user.id).destroy_all 
	    # render head :no_content 
	    respond_to do |format|
	        format.json { head :no_content }
	    end    
  	end

  	#eliminar pre_purchases que ya estaban guardadas
  	def delete_pre_transfers
  		respond_to do |format|
			pre_transfers = PreTransfer.where(user_id: current_user.id)
			pre_transfers.each do |pre| 
				if pre.destroy
			      	if pre.origin_is_pointsale == 1
			        	stock = AvailableProduct.find_by(:pointsale_id =>  pre.origin_id, 
			          		:product_id => pre.product_id)          
			      	else
				        stock = WarehouseStock.find_by(:warehouse_id => pre.origin_id,
			          		:product_id => pre.product_id)
			      	end					
					stock.stock += pre.quantity
	        		stock.save					
				end	        	
	    	end
	    	format.json { head :ok }
	    end 
  	end

  	def get_max_product_id 
  		render :json => Product.maximum(:id).to_i.next
  	end

  	def get_max_purchaseid_by_pointsale 
  		prefix = Pointsale.find(params[:pointsale_id]).prefix
  		next_id = Purchase.where(:pointsale_id => params[:pointsale_id]).count.next

  		render :json => "#{prefix}-C-#{next_id}"
  	end

  	def get_max_purchaseid_by_warehouse 
  		prefix = Warehouse.find(params[:warehouse_id]).prefix
  		next_id = Purchase.where(:warehouse_id => params[:warehouse_id]).count.next

  		render :json => "#{prefix}-C-#{next_id}"
  	end  	

  	def get_next_sale_code 
  		pointsale = OpenCashRegister.find(params[:open_cash_register_id]).cash_register.pointsale
  		next_id = pointsale.sales.count.next
  		render :json => "#{pointsale.prefix}-V-#{next_id}"
  	end
  	
  	def get_next_expense_code
	 	if current_user.usertype == 'A'
	 		next_id = Expense.where("expense_code ilike ?", '%ADM%').count.next
	  		render :json => "ADM-E-#{next_id}"  	 
	 	else
	  		pointsale = OpenCashRegister.find(params[:open_cash_register_id]).cash_register.pointsale
	  		next_id = pointsale.expenses.count.next
	  		render :json => "#{pointsale.prefix}-E-#{next_id}"  	 		
	 	end		
  	end

  	def products_by_category_pointsale
  		products = Array.new
  		products_by_line = Array.new
  		category_id = params[:category_id]
		id = params[:pointsale_id][2, params[:pointsale_id].length]

  		categories = Category.find(category_id).self_and_descendents

  		categories.each do |category|
	  		products_by_line += category.products 
  		end


  		if params[:pointsale_id].first == 'P'
	  		Pointsale.find(id).products.each do |p| 
	  			if products_by_line.include?(p)
	  				products << p
	  			end
	  		end  			
  		else
	  		Warehouse.find(id).products.each do |p| 
	  			if products_by_line.include?(p)
	  				products << p
	  			end
	  		end  	  			
  		end
  		render :json => products
  	end

	protected

		##--- Definir los parametros definidos para los usuarios en las diferentes rutas
		def configure_permitted_parameters
			# devise_parameter_sanitizer.for(:sign_up) { |u| u.permit(:username, :email, :password, :password_confirmation, :remember_me) }

			###-- https://github.com/plataformatec/devise#strong-parameters   
			###-- https://github.com/plataformatec/devise/wiki/How-To:-Allow-users-to-sign-in-using-their-username-or-email-address
			devise_parameter_sanitizer.for(:sign_up) { |u| u.permit( :userid, :first_name, :last_name, :email, :password, :remember_me) }
			# devise_parameter_sanitizer.for(:account_update) { |u| u.permit(:username, :email, :password, :password_confirmation, :current_password) }
		end

		def respond_modal_with(*args, &blk)
			options = args.extract_options!
			options[:responder] = ModalResponder
			respond_with *args, options, &blk
		end
end