zammad/app/controllers/user_devices_controller.rb

# Copyright (C) 2012-2026 Zammad Foundation, https://zammad-foundation.org/

class UserDevicesController < ApplicationController
  prepend_before_action :authenticate_and_authorize!

  def index
    devices = UserDevice.where(user_id: current_user.id).reorder(updated_at: :desc, name: :asc)
    devices_full = []
    devices.each do |device|
      attributes = device.attributes
      city_name = device.location_details['city_name']
      if city_name.present?
        attributes['location'] = if attributes['location'].blank? || attributes['location'] == 'unknown'
                                   city_name
                                 else
                                   "#{attributes['location']}, #{city_name}"
                                 end
      end
      attributes.delete('created_at')
      attributes.delete('device_details')
      attributes.delete('location_details')
      attributes.delete('fingerprint')

      # mark current device to prevent killing own session via user preferences device management
      if session[:user_device_fingerprint] == device.fingerprint && device.updated_at > 30.minutes.ago
        attributes['current'] = true
      end
      devices_full.push attributes
    end
    model_index_render_result(devices_full)
  end

  def destroy
    begin
      Service::User::Device::Delete.with_current_user(current_user).execute(device: UserDevice.find_by(user_id: current_user.id, id: params[:id]))
    rescue Exceptions::UnprocessableContent
      # noop
    end

    render json: {}, status: :ok
  end

end
Maintenance: Update copyright information. 2026-01-02 13:41:09 +00:00			`# Copyright (C) 2012-2026 Zammad Foundation, https://zammad-foundation.org/`
Init version of device logging. 2015-08-17 14:12:40 +00:00
			`class UserDevicesController < ApplicationController`
Fixes #3119 - Clarify authentication_check and authorize! before_actions 2023-03-19 20:43:36 +00:00			`prepend_before_action :authenticate_and_authorize!`
Init version of device logging. 2015-08-17 14:12:40 +00:00
			`def index`
Maintenance: Force usage of 'reorder' instead of 'order'. 2023-03-06 14:05:13 +00:00			`devices = UserDevice.where(user_id: current_user.id).reorder(updated_at: :desc, name: :asc)`
Init version of device logging. 2015-08-17 14:12:40 +00:00			`devices_full = []`
Applied RuboCop Style/BlockDelimiters to improve readability. 2017-10-01 12:25:52 +00:00			`devices.each do \|device\|`
Init version of device logging. 2015-08-17 14:12:40 +00:00			`attributes = device.attributes`
Fixes #6139 - Translation - user profile / devices - Field location not translated. 2026-05-20 17:28:57 +00:00			`city_name = device.location_details['city_name']`
			`if city_name.present?`
			`attributes['location'] = if attributes['location'].blank? \|\| attributes['location'] == 'unknown'`
			`city_name`
			`else`
			`"#{attributes['location']}, #{city_name}"`
			`end`
Init version of device logging. 2015-08-17 14:12:40 +00:00			`end`
			`attributes.delete('created_at')`
			`attributes.delete('device_details')`
			`attributes.delete('location_details')`
Fixed current user selection of user devices to disable it in web interface. 2016-08-18 05:26:07 +00:00			`attributes.delete('fingerprint')`
Improved device logging, do not delete current used device. Delete also sessions of device. 2015-08-17 16:14:44 +00:00
Only mark device as current if device got touched within last 30 minutes. 2016-08-18 07:45:26 +00:00			`# mark current device to prevent killing own session via user preferences device management`
Maintenance: Bump rubocop-rails from 2.12.4 to 2.13.0 Bumps [rubocop-rails](https://github.com/rubocop/rubocop-rails) from 2.12.4 to 2.13.0. - [Release notes](https://github.com/rubocop/rubocop-rails/releases) - [Changelog](https://github.com/rubocop/rubocop-rails/blob/master/CHANGELOG.md) - [Commits](https://github.com/rubocop/rubocop-rails/compare/v2.12.4...v2.13.0) 2022-01-03 09:47:32 +00:00			`if session[:user_device_fingerprint] == device.fingerprint && device.updated_at > 30.minutes.ago`
Improved device logging, do not delete current used device. Delete also sessions of device. 2015-08-17 16:14:44 +00:00			`attributes['current'] = true`
			`end`
Init version of device logging. 2015-08-17 14:12:40 +00:00			`devices_full.push attributes`
Applied RuboCop Style/BlockDelimiters to improve readability. 2017-10-01 12:25:52 +00:00			`end`
Init version of device logging. 2015-08-17 14:12:40 +00:00			`model_index_render_result(devices_full)`
			`end`

			`def destroy`
Feature: Desktop view - Implement the personal setting section to list and delete user devices. Co-authored-by: Florian Liebe <fl@zammad.com> Co-authored-by: Tobias Schäfer <ts@zammad.com> Co-authored-by: Dusan Vuckovic <dv@zammad.com> Co-authored-by: Dominik Klein <dk@zammad.com> 2024-04-30 12:43:38 +00:00			`begin`
Maintenance: Ensure services have a single entry point and an easy way to pass current user 2026-04-23 09:39:32 +00:00			`Service::User::Device::Delete.with_current_user(current_user).execute(device: UserDevice.find_by(user_id: current_user.id, id: params[:id]))`
Maintenance: Renames 422 HTTP response code from unprocessable_entity to unprocessable_content due to RFC update 2026-04-22 15:23:21 +00:00			`rescue Exceptions::UnprocessableContent`
Feature: Desktop view - Implement the personal setting section to list and delete user devices. Co-authored-by: Florian Liebe <fl@zammad.com> Co-authored-by: Tobias Schäfer <ts@zammad.com> Co-authored-by: Dusan Vuckovic <dv@zammad.com> Co-authored-by: Dominik Klein <dk@zammad.com> 2024-04-30 12:43:38 +00:00			`# noop`
Improved device logging, do not delete current used device. Delete also sessions of device. 2015-08-17 16:14:44 +00:00			`end`
Feature: Desktop view - Implement the personal setting section to list and delete user devices. Co-authored-by: Florian Liebe <fl@zammad.com> Co-authored-by: Tobias Schäfer <ts@zammad.com> Co-authored-by: Dusan Vuckovic <dv@zammad.com> Co-authored-by: Dominik Klein <dk@zammad.com> 2024-04-30 12:43:38 +00:00
Init version of device logging. 2015-08-17 14:12:40 +00:00			`render json: {}, status: :ok`
			`end`

			`end`