Class: V0::IdCardAttributesController

Inherits:
ApplicationController show all
Defined in:
app/controllers/v0/id_card_attributes_controller.rb

Constant Summary

Constants inherited from ApplicationController

ApplicationController::VERSION_STATUS

Constants included from SignIn::Authentication

SignIn::Authentication::BEARER_PATTERN

Constants included from ExceptionHandling

ExceptionHandling::SKIP_SENTRY_EXCEPTION_TYPES

Instance Attribute Summary

Attributes inherited from ApplicationController

#current_user

Instance Method Summary collapse

Methods inherited from ApplicationController

#clear_saved_form, #cors_preflight, #pagination_params, #render_job_id, #routing_error, #set_csrf_header

Methods included from Traceable

#set_trace_tags

Methods included from SentryControllerLogging

#set_tags_and_extra_context, #tags_context, #user_context

Methods included from SentryLogging

#log_exception_to_sentry, #log_message_to_sentry, #non_nil_hash?, #normalize_level, #rails_logger, #set_sentry_metadata

Methods included from Instrumentation

#append_info_to_payload

Methods included from SignIn::Authentication

#access_token, #access_token_authenticate, #authenticate, #authenticate_access_token, #bearer_token, #cookie_access_token, #handle_authenticate_error, #load_user, #load_user_object, #scrub_bearer_token, #validate_request_ip

Methods included from Headers

#set_app_info_headers

Methods included from ExceptionHandling

#render_errors, #report_mapped_exception, #report_original_exception, #skip_sentry_exception?

Methods included from AuthenticationAndSSOConcerns

#authenticate, #clear_session, #extend_session!, #load_user, #log_sso_info, #render_unauthorized, #reset_session, #set_api_cookie!, #set_current_user, #set_session_expiration_header, #set_session_object, #sign_in_service_exp_time, #sign_in_service_session, #sso_cookie_content, #sso_logging_info, #validate_inbound_login_params, #validate_session

Methods included from SignIn::AudienceValidator

#authenticate, #validate_audience!

Instance Method Details

#authorizeObject (private)

Raises:



26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
 
# File 'app/controllers/v0/id_card_attributes_controller.rb', line 26

def authorize
  # TODO: Clean up this method, particularly around need to blanket rescue from
  # VeteranStatus method
  raise Common::Exceptions::Forbidden, detail: 'You do not have access to ID card attributes' unless
    current_user.loa3?
  raise ::VIC::IDCardAttributeError, ::VIC::IDCardAttributeError::VIC002 if current_user.edipi.blank?

  title38_status = begin
    current_user.veteran_status.title38_status
  rescue VAProfile::VeteranStatus::VAProfileError => e
    if e.status == 404
      nil
    else
      log_exception_to_sentry(e)
      raise ::VIC::IDCardAttributeError, ::VIC::IDCardAttributeError::VIC010
    end
  end

  raise ::VIC::IDCardAttributeError, ::VIC::IDCardAttributeError::VIC002 if title38_status.blank?

  unless current_user.can_access_id_card?
    raise ::VIC::IDCardAttributeError, ::VIC::IDCardAttributeError::NOT_ELIGIBLE.merge(
      code: "VIC#{title38_status}"
    )
  end
end

#showObject 



11
12
13
14
15
16
17
18
 
# File 'app/controllers/v0/id_card_attributes_controller.rb', line 11

def show
  id_attributes = IdCardAttributes.for_user(current_user)
  signed_attributes = ::VIC::URLHelper.generate(id_attributes)
  render json: signed_attributes
rescue
  raise ::VIC::IDCardAttributeError, status: 502, code: 'VIC011',
                                     detail: 'Could not verify military service attributes'
end

#skip_sentry_exception_typesObject (private) 



22
23
24
 
# File 'app/controllers/v0/id_card_attributes_controller.rb', line 22

def skip_sentry_exception_types
  super + [::VIC::IDCardAttributeError]
end