users_controller.rb 3.6 KB
Newer Older
1
class Admin::UsersController < Admin::ApplicationController
Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
2
  before_action :user, except: [:index, :new, :create]
3

gitlabhq's avatar
gitlabhq committed
4
  def index
5
    @users = User.order_name_asc.filter(params[:filter])
6
    @users = @users.search(params[:name]) if params[:name].present?
Valery Sizov's avatar
Valery Sizov committed
7
    @users = @users.sort(@sort = params[:sort])
8
    @users = @users.page(params[:page])
gitlabhq's avatar
gitlabhq committed
9 10 11
  end

  def show
Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
12 13 14
  end

  def projects
Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
15 16
    @personal_projects = user.personal_projects
    @joined_projects = user.projects.joined(@user)
Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
17 18 19 20 21 22
  end

  def groups
  end

  def keys
23
    @keys = user.keys
gitlabhq's avatar
gitlabhq committed
24 25 26
  end

  def new
27
    @user = User.new
gitlabhq's avatar
gitlabhq committed
28 29 30
  end

  def edit
31
    user
gitlabhq's avatar
gitlabhq committed
32 33
  end

34
  def block
35
    if user.block
36
      redirect_to :back, notice: "Successfully blocked"
37
    else
Johannes Schleifenbaum's avatar
Johannes Schleifenbaum committed
38
      redirect_to :back, alert: "Error occurred. User was not blocked"
39 40 41
    end
  end

42
  def unblock
43
    if user.activate
44
      redirect_to :back, notice: "Successfully unblocked"
45
    else
Johannes Schleifenbaum's avatar
Johannes Schleifenbaum committed
46
      redirect_to :back, alert: "Error occurred. User was not unblocked"
47 48 49
    end
  end

50 51 52 53 54 55 56 57
  def unlock
    if user.unlock_access!
      redirect_to :back, alert: "Successfully unlocked"
    else
      redirect_to :back, alert: "Error occurred. User was not unlocked"
    end
  end

58 59 60 61 62 63
  def disable_two_factor
    user.disable_two_factor!
    redirect_to admin_user_path(user),
      notice: 'Two-factor Authentication has been disabled for this user'
  end

gitlabhq's avatar
gitlabhq committed
64
  def create
65 66
    opts = {
      force_random_password: true,
Marin Jankovski's avatar
Marin Jankovski committed
67
      password_expires_at: nil
68 69
    }

70
    @user = User.new(user_params.merge(opts))
71
    @user.created_by_id = current_user.id
arul's avatar
arul committed
72
    @user.generate_password
73
    @user.generate_reset_token
74
    @user.skip_confirmation!
gitlabhq's avatar
gitlabhq committed
75 76

    respond_to do |format|
77 78 79
      if @user.save
        format.html { redirect_to [:admin, @user], notice: 'User was successfully created.' }
        format.json { render json: @user, status: :created, location: @user }
gitlabhq's avatar
gitlabhq committed
80
      else
81
        format.html { render "new" }
82
        format.json { render json: @user.errors, status: :unprocessable_entity }
gitlabhq's avatar
gitlabhq committed
83 84 85 86 87
      end
    end
  end

  def update
88 89
    user_params_with_pass = user_params.dup

90
    if params[:user][:password].present?
91
      user_params_with_pass.merge!(
92 93 94
        password: params[:user][:password],
        password_confirmation: params[:user][:password_confirmation],
      )
95
    end
gitlabhq's avatar
gitlabhq committed
96 97

    respond_to do |format|
98
      user.skip_reconfirmation!
99
      if user.update_attributes(user_params_with_pass)
100
        format.html { redirect_to [:admin, user], notice: 'User was successfully updated.' }
gitlabhq's avatar
gitlabhq committed
101 102
        format.json { head :ok }
      else
103
        # restore username to keep form action url.
104
        user.username = params[:id]
105
        format.html { render "edit" }
106
        format.json { render json: user.errors, status: :unprocessable_entity }
gitlabhq's avatar
gitlabhq committed
107 108 109 110 111
      end
    end
  end

  def destroy
112
    DeleteUserService.new(current_user).execute(user)
gitlabhq's avatar
gitlabhq committed
113 114

    respond_to do |format|
115
      format.html { redirect_to admin_users_path }
gitlabhq's avatar
gitlabhq committed
116 117 118
      format.json { head :ok }
    end
  end
119

120 121 122 123
  def remove_email
    email = user.emails.find(params[:email_id])
    email.destroy

124
    user.update_secondary_emails!
125

126 127 128 129 130 131
    respond_to do |format|
      format.html { redirect_to :back, notice: "Successfully removed email." }
      format.js { render nothing: true }
    end
  end

132 133
  protected

134
  def user
skv's avatar
skv committed
135
    @user ||= User.find_by!(username: params[:id])
136
  end
137 138 139

  def user_params
    params.require(:user).permit(
140
      :email, :remember_me, :bio, :name, :username,
141
      :skype, :linkedin, :twitter, :website_url, :color_scheme_id, :theme_id, :force_random_password,
142
      :extern_uid, :provider, :password_expires_at, :avatar, :hide_no_ssh_key, :hide_no_password,
143
      :projects_limit, :can_create_group, :admin, :key_id
144 145
    )
  end
gitlabhq's avatar
gitlabhq committed
146
end