debian-mirror-gitlab/app/controllers/concerns/issuable_actions.rb

62 lines
1.6 KiB
Ruby
Raw Normal View History

2016-06-02 11:05:42 +05:30
module IssuableActions
extend ActiveSupport::Concern
included do
2016-11-03 12:29:30 +05:30
before_action :labels, only: [:show, :new, :edit]
2016-06-02 11:05:42 +05:30
before_action :authorize_destroy_issuable!, only: :destroy
2016-09-29 09:46:39 +05:30
before_action :authorize_admin_issuable!, only: :bulk_update
2016-06-02 11:05:42 +05:30
end
def destroy
issuable.destroy
2016-09-29 09:46:39 +05:30
destroy_method = "destroy_#{issuable.class.name.underscore}".to_sym
TodoService.new.public_send(destroy_method, issuable, current_user)
2016-06-02 11:05:42 +05:30
name = issuable.class.name.titleize.downcase
flash[:notice] = "The #{name} was successfully deleted."
redirect_to polymorphic_path([@project.namespace.becomes(Namespace), @project, issuable.class])
end
2016-09-29 09:46:39 +05:30
def bulk_update
result = Issuable::BulkUpdateService.new(project, current_user, bulk_update_params).execute(resource_name)
quantity = result[:count]
render json: { notice: "#{quantity} #{resource_name.pluralize(quantity)} updated" }
end
2016-06-02 11:05:42 +05:30
private
2016-11-03 12:29:30 +05:30
def labels
@labels ||= LabelsFinder.new(current_user, project_id: @project.id).execute
end
2016-06-02 11:05:42 +05:30
def authorize_destroy_issuable!
2016-09-29 09:46:39 +05:30
unless can?(current_user, :"destroy_#{issuable.to_ability_name}", issuable)
2016-06-02 11:05:42 +05:30
return access_denied!
end
end
2016-09-29 09:46:39 +05:30
def authorize_admin_issuable!
unless can?(current_user, :"admin_#{resource_name}", @project)
return access_denied!
end
end
def bulk_update_params
params.require(:update).permit(
:issuable_ids,
:assignee_id,
:milestone_id,
:state_event,
:subscription_event,
label_ids: [],
add_label_ids: [],
remove_label_ids: []
)
end
def resource_name
@resource_name ||= controller_name.singularize
end
2016-06-02 11:05:42 +05:30
end