Skip to content
Find file Normal view History Permalink
project_members_controller.rb 3.5 KiB
Newer Older
Douwe Maan's avatar
Use `project_member` instead of `team_member`.
Douwe Maan committed
1 2 
class Projects::ProjectMembersController < Projects::ApplicationController
  # Authorize
Douwe Maan's avatar
Use project member abilities more extensively  
Douwe Maan committed
3 
  before_action :authorize_admin_project_member!, except: :leave
Douwe Maan's avatar
Use `project_member` instead of `team_member`.
Douwe Maan committed
4 5 6 

  def index
    @project_members = @project.project_members
Douwe Maan's avatar
Only show invited users to people who can admin group.  
Douwe Maan committed
7 
    @project_members = @project_members.non_invite unless can?(current_user, :admin_project, @project)
Douwe Maan's avatar
Use `project_member` instead of `team_member`.
Douwe Maan committed
8 9 10 11 12 13 14 15 16 17 18 

    if params[:search].present?
      users = @project.users.search(params[:search]).to_a
      @project_members = @project_members.where(user_id: users)
    end

    @project_members = @project_members.order('access_level DESC')

    @group = @project.group
    if @group
      @group_members = @group.group_members
Douwe Maan's avatar
Only show invited users to people who can admin group.  
Douwe Maan committed
19 
      @group_members = @group_members.non_invite unless can?(current_user, :admin_group, @group)
Douwe Maan's avatar
Use `project_member` instead of `team_member`.
Douwe Maan committed
20 21 22 23 24 

      if params[:search].present?
        users = @group.users.search(params[:search]).to_a
        @group_members = @group_members.where(user_id: users)
      end
Jeroen van Baarsen's avatar
Fixed the Rails/ActionFilter cop  
Jeroen van Baarsen committed
25
Dmitriy Zaporozhets's avatar
Fix only 20 group members showing on project member page  
Dmitriy Zaporozhets committed
26 
      @group_members = @group_members.order('access_level DESC')
Douwe Maan's avatar
Use `project_member` instead of `team_member`.
Douwe Maan committed
27 28 29 
    end

    @project_member = @project.project_members.new
Dmitriy Zaporozhets's avatar
Render project members from shared group  
Dmitriy Zaporozhets committed
30 
    @project_group_links = @project.project_group_links
Douwe Maan's avatar
Use `project_member` instead of `team_member`.
Douwe Maan committed
31 32 33 
  end

  def create
Douwe Maan's avatar
Let members be invited from Add members pane.  
Douwe Maan committed
34 
    @project.team.add_users(params[:user_ids].split(','), params[:access_level], current_user)
Douwe Maan's avatar
Use `project_member` instead of `team_member`.
Douwe Maan committed
35 36 37 38 39 

    redirect_to namespace_project_project_members_path(@project.namespace, @project)
  end

  def update
Douwe Maan's avatar
Reference project members by id instead of user_id.  
Douwe Maan committed
40 
    @project_member = @project.project_members.find(params[:id])
Douwe Maan's avatar
Use project member abilities more extensively  
Douwe Maan committed
41 42 43 

    return render_403 unless can?(current_user, :update_project_member, @project_member)
Douwe Maan's avatar
Use `project_member` instead of `team_member`.
Douwe Maan committed
44 45 46 47 
    @project_member.update_attributes(member_params)
  end

  def destroy
Douwe Maan's avatar
Reference project members by id instead of user_id.  
Douwe Maan committed
48 
    @project_member = @project.project_members.find(params[:id])
Douwe Maan's avatar
Use project member abilities more extensively  
Douwe Maan committed
49 50 51 

    return render_403 unless can?(current_user, :destroy_project_member, @project_member)
Douwe Maan's avatar
Use `project_member` instead of `team_member`.
Douwe Maan committed
52 53 54 55 
    @project_member.destroy

    respond_to do |format|
      format.html do
Douwe Maan's avatar
Remove duplication between Group and ProjectMember.  
Douwe Maan committed
56 
        redirect_to namespace_project_project_members_path(@project.namespace, @project)
Douwe Maan's avatar
Use `project_member` instead of `team_member`.
Douwe Maan committed
57 58 59 60 61 
      end
      format.js { render nothing: true }
    end
  end
Douwe Maan's avatar
Let membership invitations be resent.  
Douwe Maan committed
62 
  def resend_invite
Douwe Maan's avatar
Consistently use "invitation" rather than "invite" in text.  
Douwe Maan committed
63 64 
    redirect_path = namespace_project_project_members_path(@project.namespace, @project)
Douwe Maan's avatar
Let membership invitations be resent.  
Douwe Maan committed
65 
    @project_member = @project.project_members.find(params[:id])
Jeroen van Baarsen's avatar
Fixed the Rails/ActionFilter cop  
Jeroen van Baarsen committed
66
Douwe Maan's avatar
Let membership invitations be resent.  
Douwe Maan committed
67 68 69 
    if @project_member.invite?
      @project_member.resend_invite
Douwe Maan's avatar
Consistently use "invitation" rather than "invite" in text.  
Douwe Maan committed
70 
      redirect_to redirect_path, notice: 'The invitation was successfully resent.'
Douwe Maan's avatar
Let membership invitations be resent.  
Douwe Maan committed
71 
    else
Douwe Maan's avatar
Consistently use "invitation" rather than "invite" in text.  
Douwe Maan committed
72 
      redirect_to redirect_path, alert: 'The invitation has already been accepted.'
Douwe Maan's avatar
Let membership invitations be resent.  
Douwe Maan committed
73 74 75 
    end
  end
Douwe Maan's avatar
Use `project_member` instead of `team_member`.
Douwe Maan committed
76 
  def leave
Douwe Maan's avatar
Use project member abilities more extensively  
Douwe Maan committed
77 
    @project_member = @project.project_members.find_by(user_id: current_user)
Dmitriy Zaporozhets's avatar
Add ability to leave project  
Dmitriy Zaporozhets committed
78
Douwe Maan's avatar
Use project member abilities more extensively  
Douwe Maan committed
79 80 
    if can?(current_user, :destroy_project_member, @project_member)
      @project_member.destroy
Douwe Maan's avatar
Use `project_member` instead of `team_member`.
Douwe Maan committed
81
Douwe Maan's avatar
Use project member abilities more extensively  
Douwe Maan committed
82 83 84 85 86 87 88 89 90 91 92 
      respond_to do |format|
        format.html { redirect_to dashboard_projects_path, notice: "You left the project." }
        format.js { render nothing: true }
      end
    else
      if current_user == @project.owner
        message = 'You can not leave your own project. Transfer or delete the project.'
        redirect_back_or_default(default: { action: 'index' }, options: { alert: message })
      else
        render_403
      end
Douwe Maan's avatar
Use `project_member` instead of `team_member`.
Douwe Maan committed
93 94 95 96 97 
    end
  end

  def apply_import
    giver = Project.find(params[:source_project_id])
Grzegorz Bizon's avatar
Check permissions when importing project members  
Grzegorz Bizon committed
98 99 100 101 102 103 104 

    if current_user.can?(:read_project_member, giver)
      status = @project.team.import(giver, current_user)
      notice = status ? "Successfully imported" : "Import failed"
    else
      notice = 'You are not authorized to import members from this project'
    end
Douwe Maan's avatar
Use `project_member` instead of `team_member`.
Douwe Maan committed
105 106 107 108 109 110 111 112 113 114 115 

    redirect_to(namespace_project_project_members_path(project.namespace, project),
                notice: notice)
  end

  protected

  def member_params
    params.require(:project_member).permit(:user_id, :access_level)
  end
end