submit-social-housing-lettings-and-sales-data/app/controllers/case_logs_controller.rb

class CaseLogsController < ApplicationController
  skip_before_action :verify_authenticity_token, if: :json_api_request?
  before_action :authenticate, if: :json_api_request?
  before_action :authenticate_user!, unless: :json_api_request?

  def index
    @completed_case_logs = current_user.completed_case_logs
    @in_progress_case_logs = current_user.not_completed_case_logs
  end

  def create
    case_log = CaseLog.create(case_log_params)
    respond_to do |format|
      format.html { redirect_to case_log }
      format.json do
        if case_log.persisted?
          render json: case_log, status: :created
        else
          render json: { errors: case_log.errors.messages }, status: :unprocessable_entity
        end
      end
    end
  end

  def update
    if (case_log = CaseLog.find_by(id: params[:id]))
      if case_log.update(api_case_log_params)
        render json: case_log, status: :ok
      else
        render json: { errors: case_log.errors.messages }, status: :unprocessable_entity
      end
    else
      render_not_found_json("Case log", params[:id])
    end
  end

  def show
    respond_to do |format|
      # We don't have a dedicated non-editable show view
      format.html { edit }
      format.json do
        if (case_log = CaseLog.find_by(id: params[:id]))
          render json: case_log, status: :ok
        else
          render_not_found_json("Case log", params[:id])
        end
      end
    end
  end

  def edit
    @form = FormHandler.instance.get_form("2021_2022")
    @case_log = current_user.case_logs.find_by(id: params[:id])
    if @case_log
      render :edit
    else
      render_not_found_html
    end
  end

  def submit_form
    form = FormHandler.instance.get_form("2021_2022")
    @case_log = current_user.case_logs.find_by(id: params[:id])
    if @case_log
      page = form.get_page(params[:case_log][:page])
      responses_for_page = responses_for_page(page)
      if @case_log.update(responses_for_page) && @case_log.has_no_unresolved_soft_errors?
        redirect_path = form.next_page_redirect_path(page, @case_log)
        redirect_to(send(redirect_path, @case_log))
      else
        subsection = form.subsection_for_page(page)
        render "form/page", locals: { form: form, page: page, subsection: subsection.label }, status: :unprocessable_entity
      end
    else
      render_not_found_html
    end
  end

  def destroy
    if (case_log = CaseLog.find_by(id: params[:id]))
      if case_log.discard
        head :no_content
      else
        render json: { errors: case_log.errors.messages }, status: :unprocessable_entity
      end
    else
      render_not_found_json("Case log", params[:id])
    end
  end

  def check_answers
    form = FormHandler.instance.get_form("2021_2022")
    @case_log = current_user.case_logs.find_by(id: params[:case_log_id])
    if @case_log
      current_url = request.env["PATH_INFO"]
      subsection = form.get_subsection(current_url.split("/")[-2])
      render "form/check_answers", locals: { subsection: subsection, form: form }
    else
      render_not_found_html
    end
  end

  form = FormHandler.instance.get_form("2021_2022")
  form.pages.map do |page|
    define_method(page.id) do |_errors = {}|
      @case_log = current_user.case_logs.find_by(id: params[:case_log_id])
      if @case_log
        subsection = form.subsection_for_page(page)
        render "form/page", locals: { form: form, page: page, subsection: subsection.label }
      else
        render_not_found_html
      end
    end
  end

private

  API_ACTIONS = %w[create show update destroy].freeze

  def responses_for_page(page)
    page.expected_responses.each_with_object({}) do |question, result|
      question_params = params["case_log"][question.id]
      if question.type == "date"
        day = params["case_log"]["#{question.id}(3i)"]
        month = params["case_log"]["#{question.id}(2i)"]
        year = params["case_log"]["#{question.id}(1i)"]
        next unless [day, month, year].any?(&:present?)

        result[question.id] = if day.to_i.between?(1, 31) && month.to_i.between?(1, 12) && year.to_i.between?(2000, 2200)
                                Date.new(year.to_i, month.to_i, day.to_i)
                              else
                                Date.new(0, 1, 1)
                              end
      end
      next unless question_params

      if %w[checkbox validation_override].include?(question.type)
        question.answer_options.keys.reject { |x| x.match(/divider/) }.each do |option|
          result[option] = question_params.include?(option) ? 1 : 0
        end
      else
        result[question.id] = question_params
      end
      result
    end
  end

  def json_api_request?
    API_ACTIONS.include?(request["action"]) && request.format.json?
  end

  def authenticate
    http_basic_authenticate_or_request_with name: ENV["API_USER"], password: ENV["API_KEY"]
  end

  def case_log_params
    if current_user
      org_params.merge(api_case_log_params)
    else
      api_case_log_params
    end
  end

  def org_params
    {
      "owning_organisation_id" => current_user.organisation.id,
      "managing_organisation_id" => current_user.organisation.id,
    }
  end

  def api_case_log_params
    return {} unless params[:case_log]

    params.require(:case_log).permit(CaseLog.editable_fields)
  end
end