pulibrary / orangelight / a403a64b-87b2-431b-a8bc-82d253504741

require 'faraday'

include Requests::ApplicationHelper

module Requests

  class FormController < ApplicationController

    before_action :authenticate_user!, except: [:index], unless: -> { aeon? }

    def index

      redirect_to('/')

    def generate

      @user = current_or_guest_user

      patron_request = Thread.new { Patron.authorize(user: @user) }

      system_id = sanitize(params[:system_id])

      mfhd = sanitize(params[:mfhd])

      params.require(:mfhd) unless system_id.starts_with?("SCSB") # there are not multiple locations for shared items so no MFHD is passed

      @back_to_record_url = BackToRecordUrl.new(params)

      @title = "Request ID: #{system_id}"

      @request = FormDecorator.new(Requests::Form.new(system_id:, mfhd:, patron_request:), view_context, @back_to_record_url)

      @patron = patron_request.value

      patron_errors = @patron.errors

      flash.now[:error] = patron_errors.join(", ") if patron_errors.present?

      render 'requests/form/no_location_specified'

    def aeon?

      return true if params["aeon"] == 'true'

      false

    def submit

      @submission = Requests::Submission.new(sanitize_submission(params), Patron.new(user: current_or_guest_user))

      valid = @submission.valid?

      @services = @submission.process_submission if valid

      response_data = if valid && @submission.service_errors.blank?

                        respond_to_submit_success(@submission)

                      elsif valid # submission was valid, but service failed

                        respond_to_service_error(@services)

                        respond_to_validation_error(@submission)

      render json: response_data

    private

      def mode

      def request_params

      def sanitize_submission(params)

        params[:requestable].each do |requestable|

          params['user_supplied_enum'] = sanitize(requestable['user_supplied_enum']) if requestable.key? 'user_supplied_enum'

        lparams = params.permit(bib: [:id, :title, :author, :isbn, :date])

        lparams[:requestable] = params[:requestable].map do |requestable|

          json_pick_up = requestable[:pick_up]

          requestable = requestable.merge(JSON.parse(json_pick_up)) if json_pick_up.present?

          requestable.permit!

        lparams

      def respond_to_submit_success(submission)

        success_message = submission.success_messages.join(' ')

        flash.now[:success] = success_message

        logger.info "Request Sent"

        {

      def respond_to_service_error(services)

        errors = services.map(&:errors).flatten

        error_types = errors.pluck(:type).uniq

        flash_now_error = if error_types.include?("digitize")

                            errors[error_types.index("digitize")][:error]

                            I18n.t('requests.submit.service_error')

        flash.now[:error] = flash_now_error

        logger.error "Request Service Error"

        service_errors = services.map(&:error_hash).inject(:merge)

        send_error_email(service_errors, @submission)

        {

      def respond_to_validation_error(submission)

        error_message = I18n.t('requests.submit.error')

        error_messages = submission.errors.messages

        extract_specific_errors(error_messages)

        flash.now[:error] = error_message

        logger.error "Request Submission #{error_messages.as_json}"

        {

      def sanitize(str)

        str.gsub(/[^A-Za-z0-9@\-_\.]/, '') if str.is_a? String

        str

      def format_validation_errors(error_messages)

        formatted_errors = {}

        error_messages.each do |key, values|

          formatted_errors[key] = if key == :items

                                    values.map do |value|

                                      if value.is_a?(Hash)

                                        first_value = value.values.first

                                          key: value.keys.first,

                                        { text: value }

                                    values

        formatted_errors

      def extract_specific_errors(error_messages)

        specific_errors = []

        error_messages.each do |key, values|

          if key == :items

            values.each do |value|

              if value.is_a?(Hash)

                first_value = value.values.first

                text_value = first_value['text']

                specific_errors << text_value if text_value

            specific_errors.concat(values)

        specific_errors

      def send_error_email(errors, submission)

        Requests::RequestMailer.send("service_error_email", errors, submission.to_h).deliver_later