debian-mirror-gitlab/app/controllers/groups/application_controller.rb
2023-03-05 14:24:40 +05:30

123 lines
2.6 KiB
Ruby

# frozen_string_literal: true
class Groups::ApplicationController < ApplicationController
include RoutableActions
include ControllerWithCrossProjectAccessCheck
include SortingHelper
include SortingPreference
layout 'group'
skip_before_action :authenticate_user!
before_action :group
before_action :set_sorting
requires_cross_project_access
private
def group
@group ||= find_routable!(Group, params[:group_id] || params[:id], request.fullpath)
end
def group_projects
@projects ||= GroupProjectsFinder.new(group: group, current_user: current_user).execute
end
def group_projects_with_subgroups
@group_projects_with_subgroups ||= GroupProjectsFinder.new(
group: group,
current_user: current_user,
options: { include_subgroups: true }
).execute
end
def authorize_admin_group!
unless can?(current_user, :admin_group, group)
render_404
end
end
def authorize_admin_group_runners!
unless can?(current_user, :admin_group_runners, group)
render_404
end
end
def authorize_read_group_runners!
unless can?(current_user, :read_group_runners, group)
render_404
end
end
def authorize_create_deploy_token!
unless can?(current_user, :create_deploy_token, group)
render_404
end
end
def authorize_destroy_deploy_token!
unless can?(current_user, :destroy_deploy_token, group)
render_404
end
end
def authorize_admin_group_member!
unless can?(current_user, :admin_group_member, group)
render_403
end
end
def authorize_billings_page!
render_404 unless can?(current_user, :read_billing, group)
end
def authorize_read_group_member!
unless can?(current_user, :read_group_member, group)
render_403
end
end
def build_canonical_path(group)
params[:group_id] = group.to_param
url_for(safe_params)
end
def set_sorting
if has_project_list?
@group_projects_sort = set_sort_order(Project::SORTING_PREFERENCE_FIELD, sort_value_name)
end
end
def has_project_list?
false
end
def validate_root_group!
render_404 unless group.root?
end
def authorize_action!(action)
access_denied! unless can?(current_user, action, group)
end
def respond_to_missing?(method, *args)
case method.to_s
when /\Aauthorize_(.*)!\z/
true
else
super
end
end
def method_missing(method_sym, *arguments, &block)
case method_sym.to_s
when /\Aauthorize_(.*)!\z/
authorize_action!(Regexp.last_match(1).to_sym)
else
super
end
end
end
Groups::ApplicationController.prepend_mod_with('Groups::ApplicationController')