# The NodeController is the RESTful interface to Node objects
module Api
- class NodesController < ApplicationController
+ class NodesController < ApiController
require "xml/libxml"
- skip_before_action :verify_authenticity_token
before_action :authorize, :only => [:create, :update, :delete]
- before_action :api_deny_access_handler
authorize_resource
# Dump the details on a node given in params[:id]
def show
- node = Node.find(params[:id])
+ @node = Node.find(params[:id])
- response.last_modified = node.timestamp
+ response.last_modified = @node.timestamp
- if node.visible
- render :xml => node.to_xml.to_s
+ if @node.visible
+ # Render the result
+ render :formats => [:xml]
else
head :gone
end
raise OSM::APIBadUserInput, "No nodes were given to search for" if ids.empty?
- doc = OSM::API.new.get_xml_doc
-
- Node.find(ids).each do |node|
- doc.root << node.to_xml_node
- end
+ @nodes = Node.find(ids)
- render :xml => doc.to_s
+ # Render the result
+ render :formats => [:xml]
end
end
end