users_controller.rb 3.9 KB
Newer Older
1
class Admin::UsersController < Admin::ApplicationController
Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
2
  before_action :user, except: [:index, :new, :create]
3

gitlabhq's avatar
gitlabhq committed
4
  def index
5
    @users = User.order_name_asc.filter(params[:filter])
6
    @users = @users.search(params[:name]) if params[:name].present?
Valery Sizov's avatar
Valery Sizov committed
7
    @users = @users.sort(@sort = params[:sort])
8
    @users = @users.page(params[:page])
gitlabhq's avatar
gitlabhq committed
9 10 11
  end

  def show
Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
12 13 14
  end

  def projects
Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
15 16
    @personal_projects = user.personal_projects
    @joined_projects = user.projects.joined(@user)
Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
17 18 19 20 21 22
  end

  def groups
  end

  def keys
23
    @keys = user.keys
gitlabhq's avatar
gitlabhq committed
24 25 26
  end

  def new
27
    @user = User.new
gitlabhq's avatar
gitlabhq committed
28 29 30
  end

  def edit
31
    user
gitlabhq's avatar
gitlabhq committed
32 33
  end

34
  def block
35
    if user.block
36
      redirect_to :back, notice: "Successfully blocked"
37
    else
Johannes Schleifenbaum's avatar
Johannes Schleifenbaum committed
38
      redirect_to :back, alert: "Error occurred. User was not blocked"
39 40 41
    end
  end

42
  def unblock
43
    if user.activate
44
      redirect_to :back, notice: "Successfully unblocked"
45
    else
Johannes Schleifenbaum's avatar
Johannes Schleifenbaum committed
46
      redirect_to :back, alert: "Error occurred. User was not unblocked"
47 48 49
    end
  end

50 51 52 53 54 55 56 57
  def unlock
    if user.unlock_access!
      redirect_to :back, alert: "Successfully unlocked"
    else
      redirect_to :back, alert: "Error occurred. User was not unlocked"
    end
  end

58
  def confirm
59
    if user.confirm
60 61 62 63 64 65
      redirect_to :back, notice: "Successfully confirmed"
    else
      redirect_to :back, alert: "Error occurred. User was not confirmed"
    end
  end

66 67 68 69 70 71
  def login_as
    sign_in(user)
    flash[:alert] = "Logged in as #{user.username}"
    redirect_to root_path
  end

72 73 74 75 76 77
  def disable_two_factor
    user.disable_two_factor!
    redirect_to admin_user_path(user),
      notice: 'Two-factor Authentication has been disabled for this user'
  end

gitlabhq's avatar
gitlabhq committed
78
  def create
79 80
    opts = {
      force_random_password: true,
Marin Jankovski's avatar
Marin Jankovski committed
81
      password_expires_at: nil
82 83
    }

84
    @user = User.new(user_params.merge(opts))
85
    @user.created_by_id = current_user.id
arul's avatar
arul committed
86
    @user.generate_password
87
    @user.generate_reset_token
88
    @user.skip_confirmation!
gitlabhq's avatar
gitlabhq committed
89 90

    respond_to do |format|
91 92 93
      if @user.save
        format.html { redirect_to [:admin, @user], notice: 'User was successfully created.' }
        format.json { render json: @user, status: :created, location: @user }
gitlabhq's avatar
gitlabhq committed
94
      else
95
        format.html { render "new" }
96
        format.json { render json: @user.errors, status: :unprocessable_entity }
gitlabhq's avatar
gitlabhq committed
97 98 99 100 101
      end
    end
  end

  def update
102 103
    user_params_with_pass = user_params.dup

104
    if params[:user][:password].present?
105
      user_params_with_pass.merge!(
106 107 108
        password: params[:user][:password],
        password_confirmation: params[:user][:password_confirmation],
      )
109
    end
gitlabhq's avatar
gitlabhq committed
110 111

    respond_to do |format|
112
      user.skip_reconfirmation!
113
      if user.update_attributes(user_params_with_pass)
114
        format.html { redirect_to [:admin, user], notice: 'User was successfully updated.' }
gitlabhq's avatar
gitlabhq committed
115 116
        format.json { head :ok }
      else
117
        # restore username to keep form action url.
118
        user.username = params[:id]
119
        format.html { render "edit" }
120
        format.json { render json: user.errors, status: :unprocessable_entity }
gitlabhq's avatar
gitlabhq committed
121 122 123 124 125
      end
    end
  end

  def destroy
126
    DeleteUserService.new(current_user).execute(user)
gitlabhq's avatar
gitlabhq committed
127 128

    respond_to do |format|
129
      format.html { redirect_to admin_users_path }
gitlabhq's avatar
gitlabhq committed
130 131 132
      format.json { head :ok }
    end
  end
133

134 135 136 137
  def remove_email
    email = user.emails.find(params[:email_id])
    email.destroy

138
    user.update_secondary_emails!
139

140 141 142 143 144 145
    respond_to do |format|
      format.html { redirect_to :back, notice: "Successfully removed email." }
      format.js { render nothing: true }
    end
  end

146 147
  protected

148
  def user
skv's avatar
skv committed
149
    @user ||= User.find_by!(username: params[:id])
150
  end
151 152 153

  def user_params
    params.require(:user).permit(
154
      :email, :remember_me, :bio, :name, :username,
155
      :skype, :linkedin, :twitter, :website_url, :color_scheme_id, :theme_id, :force_random_password,
156
      :extern_uid, :provider, :password_expires_at, :avatar, :hide_no_ssh_key, :hide_no_password,
157
      :projects_limit, :can_create_group, :admin, :key_id
158 159
    )
  end
gitlabhq's avatar
gitlabhq committed
160
end