tarzan/gist:7357170

## gistfile1.txt
'use strict';

angular.module('360FeedbackApp')
  .factory('Auth', function($cookieStore, Restangular) {

    var accessLevels = routingConfig.accessLevels;
    var userRoles = routingConfig.userRoles;
    var endPoint = Restangular.all('users');
    var currentUser = $cookieStore.get('user') || {
      firstName: '',
      lastName: '',
      email: '',
      auth_token: '',
      user_role: ''
    };

    console.log('AUTH!');

    function removeUser() {
      currentUser = undefined;
      $cookieStore.remove('user');
    };

    function changeUser(user) {
      _.extend(currentUser, user);
      $cookieStore.put('user', user);
    };

    return {
      authorize: function(accessLevel, role) {
        if (role === undefined) {
          role = currentUser.user_role;
        }
        return accessLevel.bitMask & role.bitMask;
      },
      isLoggedIn: function(user) {
        if (user === undefined) {
          user = currentUser;
        }
        return user.role.title == userRoles.user.title || user.role.title == userRoles.admin.title;
      },
      register: function(user, success, error) {
        $http.post('/register', user).success(function(res) {
          changeUser(res);
          success();
        }).error(error);
      },
      login: function(user, success, error) {
        endPoint.all('sign_in').post(user)
          .then(function(response) {
            var validatedUser = {
              email: user.user.email,
              auth_token: response.auth_token,
              user_role: response.user_role
            };
            changeUser(validatedUser);
            success(validatedUser);
          }, error);
      },
      logout: function(success, error) {
        endPoint.customDELETE('sign_out')
          .then(function(response) {
            removeUser();
            success();
          }, error);
      },
      accessLevels: accessLevels,
      userRoles: userRoles,
      user: function() {
        return currentUser;
      }
    };
  });
	'use strict';

	angular.module('360FeedbackApp')
	.factory('Auth', function($cookieStore, Restangular) {

	var accessLevels = routingConfig.accessLevels;
	var userRoles = routingConfig.userRoles;
	var endPoint = Restangular.all('users');
	var currentUser = $cookieStore.get('user') \|\| {
	firstName: '',
	lastName: '',
	email: '',
	auth_token: '',
	user_role: ''
	};

	console.log('AUTH!');

	function removeUser() {
	currentUser = undefined;
	$cookieStore.remove('user');
	};

	function changeUser(user) {
	_.extend(currentUser, user);
	$cookieStore.put('user', user);
	};

	return {
	authorize: function(accessLevel, role) {
	if (role === undefined) {
	role = currentUser.user_role;
	}
	return accessLevel.bitMask & role.bitMask;
	},
	isLoggedIn: function(user) {
	if (user === undefined) {
	user = currentUser;
	}
	return user.role.title == userRoles.user.title \|\| user.role.title == userRoles.admin.title;
	},
	register: function(user, success, error) {
	$http.post('/register', user).success(function(res) {
	changeUser(res);
	success();
	}).error(error);
	},
	login: function(user, success, error) {
	endPoint.all('sign_in').post(user)
	.then(function(response) {
	var validatedUser = {
	email: user.user.email,
	auth_token: response.auth_token,
	user_role: response.user_role
	};
	changeUser(validatedUser);
	success(validatedUser);
	}, error);
	},
	logout: function(success, error) {
	endPoint.customDELETE('sign_out')
	.then(function(response) {
	removeUser();
	success();
	}, error);
	},
	accessLevels: accessLevels,
	userRoles: userRoles,
	user: function() {
	return currentUser;
	}
	};
	});