module Api
- class ChangesetCommentsController < ApplicationController
- skip_before_action :verify_authenticity_token
+ class ChangesetCommentsController < ApiController
before_action :authorize
- before_action :api_deny_access_handler
authorize_resource
# Find the changeset and check it is valid
changeset = Changeset.find(id)
- raise OSM::APIChangesetNotYetClosedError, changeset if changeset.is_open?
+ raise OSM::APIChangesetNotYetClosedError, changeset if changeset.open?
# Add a comment to the changeset
comment = changeset.comments.create(:changeset => changeset,
# Notify current subscribers of the new comment
changeset.subscribers.visible.each do |user|
- Notifier.changeset_comment_notification(comment, user).deliver_later if current_user != user
+ UserMailer.changeset_comment_notification(comment, user).deliver_later if current_user != user
end
# Add the commenter to the subscribers if necessary
# Return a copy of the updated changeset
@changeset = changeset
- render "changesets/changeset"
+ render "api/changesets/changeset"
end
##
# Return a copy of the updated changeset
@changeset = comment.changeset
- render "changesets/changeset"
+ render "api/changesets/changeset"
end
##
# Return a copy of the updated changeset
@changeset = comment.changeset
- render "changesets/changeset"
+ render "api/changesets/changeset"
end
end
end