gitlab-org--gitlab-foss/app/controllers/groups_controller.rb

class GroupsController < Groups::ApplicationController
  include IssuesAction
  include MergeRequestsAction
  include ParamsBackwardCompatibility

  respond_to :html

  before_action :authenticate_user!, only: [:new, :create]
  before_action :group, except: [:index, :new, :create]

  # Authorize
  before_action :authorize_admin_group!, only: [:edit, :update, :destroy, :projects]
  before_action :authorize_create_group!, only: [:new]

  before_action :group_projects, only: [:projects, :activity, :issues, :merge_requests]
  before_action :group_merge_requests, only: [:merge_requests]
  before_action :event_filter, only: [:activity]

  before_action :user_actions, only: [:show, :subgroups]

  layout :determine_layout

  def index
    redirect_to(current_user ? dashboard_groups_path : explore_groups_path)
  end

  def new
    @group = Group.new(params.permit(:parent_id))
  end

  def create
    @group = Groups::CreateService.new(current_user, group_params).execute

    if @group.persisted?
      notice = if @group.chat_team.present?
                 "Group '#{@group.name}' and its Mattermost team were successfully created."
               else
                 "Group '#{@group.name}' was successfully created."
               end

      redirect_to @group, notice: notice
    else
      render action: "new"
    end
  end

  def show
    setup_children(@group)

    respond_to do |format|
      format.html

      format.atom do
        setup_projects
        load_events
        render layout: 'xml.atom'
      end
    end
  end

  def children
    parent = if params[:parent_id].present?
               GroupFinder.new(current_user).execute(id: params[:parent_id])
             else
               @group
             end

    if parent.nil?
      render_404
      return
    end

    setup_children(parent)

    respond_to do |format|
      format.json do
        serializer = GroupChildSerializer
                       .new(current_user: current_user)
                       .with_pagination(request, response)
        serializer.expand_hierarchy(parent) if params[:filter].present?
        render json: serializer.represent(@children)
      end
    end
  end

  def activity
    respond_to do |format|
      format.html

      format.json do
        load_events
        pager_json("events/_events", @events.count)
      end
    end
  end

  def edit
  end

  def projects
    @projects = @group.projects.with_statistics.page(params[:page])
  end

  def update
    if Groups::UpdateService.new(@group, current_user, group_params).execute
      redirect_to edit_group_path(@group), notice: "Group '#{@group.name}' was successfully updated."
    else
      @group.restore_path!

      render action: "edit"
    end
  end

  def destroy
    Groups::DestroyService.new(@group, current_user).async_execute

    redirect_to root_path, status: 302, alert: "Group '#{@group.name}' was scheduled for deletion."
  end

  protected

  def setup_children(parent)
    @children = GroupDescendantsFinder.new(current_user: current_user,
                                           parent_group: parent,
                                           params: params).execute
    @children = @children.page(params[:page])
  end

  def setup_projects
    set_non_archived_param
    params[:sort] ||= 'latest_activity_desc'
    @sort = params[:sort]

    options = {}
    options[:only_owned] = true if params[:shared] == '0'
    options[:only_shared] = true if params[:shared] == '1'

    @projects = GroupProjectsFinder.new(params: params, group: group, options: options, current_user: current_user).execute
    @projects = @projects.includes(:namespace)
    @projects = @projects.page(params[:page]) if params[:name].blank?
  end

  def authorize_create_group!
    allowed = if params[:parent_id].present?
                parent = Group.find_by(id: params[:parent_id])
                can?(current_user, :create_subgroup, parent)
              else
                can?(current_user, :create_group)
              end

    render_404 unless allowed
  end

  def determine_layout
    if [:new, :create].include?(action_name.to_sym)
      'application'
    elsif [:edit, :update, :projects].include?(action_name.to_sym)
      'group_settings'
    else
      'group'
    end
  end

  def group_params
    params.require(:group).permit(group_params_ce)
  end

  def group_params_ce
    [
      :avatar,
      :description,
      :lfs_enabled,
      :name,
      :path,
      :public,
      :request_access_enabled,
      :share_with_group_lock,
      :visibility_level,
      :parent_id,
      :create_chat_team,
      :chat_team_name,
      :require_two_factor_authentication,
      :two_factor_grace_period
    ]
  end

  def load_events
    @events = EventCollection
      .new(@projects, offset: params[:offset].to_i, filter: event_filter)
      .to_a
  end

  def user_actions
    if current_user
      @notification_setting = current_user.notification_settings_for(group)
    end
  end

  def build_canonical_path(group)
    return group_path(group) if action_name == 'show' # root group path

    params[:id] = group.to_param

    url_for(params)
  end
end
group controller refactoring 2015-03-12 11:08:48 -04:00			`class GroupsController < Groups::ApplicationController`
Refactor duplciate code for groups_controller.rb and slack_service/note_message.rb Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2015-11-17 05:03:18 -05:00			`include IssuesAction`
			`include MergeRequestsAction`
ProjectsFinder should handle more options Extended ProjectFinder in order to handle the following options: - current_user - which user use - project_ids_relation: int[] - project ids to use - params: - trending: boolean - non_public: boolean - starred: boolean - sort: string - visibility_level: int - tags: string[] - personal: boolean - search: string - non_archived: boolean GroupProjectsFinder now inherits from ProjectsFinder. Changed the code in order to use the new available options. 2017-03-03 05:35:04 -05:00			`include ParamsBackwardCompatibility`
Refactor duplciate code for groups_controller.rb and slack_service/note_message.rb Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2015-11-17 05:03:18 -05:00
Move all stuff to groups controller 2012-10-02 13:42:15 -04:00			`respond_to :html`
Make the `/groups` route behave as expected The route is supposed to redirect the Groups#index request based on whether or not a user was logged in. If they are, we redirect them to their groups dashboard; if they're not, we redirect them to the public Explore page. But due to overly aggressive `before_action`s that weren't excluding the `index` action, the request always resulted in a 404, whether a user was logged in or not. Closes #12660 2016-01-23 19:08:15 -05:00
Tweaks, refactoring, and specs 2016-03-20 16:03:53 -04:00			`before_action :authenticate_user!, only: [:new, :create]`
Make the `/groups` route behave as expected The route is supposed to redirect the Groups#index request based on whether or not a user was logged in. If they are, we redirect them to their groups dashboard; if they're not, we redirect them to the public Explore page. But due to overly aggressive `before_action`s that weren't excluding the `index` action, the request always resulted in a 404, whether a user was logged in or not. Closes #12660 2016-01-23 19:08:15 -05:00			`before_action :group, except: [:index, :new, :create]`
Move all stuff to groups controller 2012-10-02 13:42:15 -04:00
authorized_projects and authorized_groups methods for user 2012-11-29 10:17:01 -05:00			`# Authorize`
Fixed the Rails/ActionFilter cop Signed-off-by: Jeroen van Baarsen <jeroenvanbaarsen@gmail.com> 2015-04-16 08:03:37 -04:00			`before_action :authorize_admin_group!, only: [:edit, :update, :destroy, :projects]`
Make Members with Owner and Master roles always able to create subgroups 2017-09-07 14:35:45 -04:00			`before_action :authorize_create_group!, only: [:new]`
User can create group 2013-01-24 10:47:09 -05:00
Allow creating nested group via UI Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2017-01-24 10:32:34 -05:00			`before_action :group_projects, only: [:projects, :activity, :issues, :merge_requests]`
Redirect from redirect routes to canonical routes 2017-05-01 16:46:30 -04:00			`before_action :group_merge_requests, only: [:merge_requests]`
Move group activity feed to separate page for consistency with dashboard and project pages Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2016-03-10 08:29:38 -05:00			`before_action :event_filter, only: [:activity]`
Fix determine of layout for group/team 2013-06-08 09:26:57 -04:00
Allow creating nested group via UI Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2017-01-24 10:32:34 -05:00			`before_action :user_actions, only: [:show, :subgroups]`

Add helpers for header title and sidebar, and move setting those from controllers to layouts. 2015-05-01 04:39:11 -04:00			`layout :determine_layout`

Clean up overlap between dashboard and explore. - Split up SnippetsController into separate dashboard and explore sections. - Use consistent page titles, header titles and sidebars between dashboard and explore sections when signed in or not. 2015-09-08 09:49:20 -04:00			`def index`
Move partial to right place and fix tests. 2015-09-08 10:14:14 -04:00			`redirect_to(current_user ? dashboard_groups_path : explore_groups_path)`
Clean up overlap between dashboard and explore. - Split up SnippetsController into separate dashboard and explore sections. - Use consistent page titles, header titles and sidebars between dashboard and explore sections when signed in or not. 2015-09-08 09:49:20 -04:00			`end`

User can create group 2013-01-24 10:47:09 -05:00			`def new`
Make Members with Owner and Master roles always able to create subgroups 2017-09-07 14:35:45 -04:00			`@group = Group.new(params.permit(:parent_id))`
User can create group 2013-01-24 10:47:09 -05:00			`end`

			`def create`
Code fixes 2016-03-17 18:42:46 -04:00			`@group = Groups::CreateService.new(current_user, group_params).execute`
User can create group 2013-01-24 10:47:09 -05:00
Code fixes 2016-03-17 18:42:46 -04:00			`if @group.persisted?`
Improve UX 2017-03-01 14:34:29 -05:00			`notice = if @group.chat_team.present?`
			`"Group '#{@group.name}' and its Mattermost team were successfully created."`
			`else`
Fix linter errors 2017-03-03 03:01:54 -05:00			`"Group '#{@group.name}' was successfully created."`
Improve UX 2017-03-01 14:34:29 -05:00			`end`

			`redirect_to @group, notice: notice`
User can create group 2013-01-24 10:47:09 -05:00			`else`
			`render action: "new"`
			`end`
			`end`
authorized_projects and authorized_groups methods for user 2012-11-29 10:17:01 -05:00
Move all stuff to groups controller 2012-10-02 13:42:15 -04:00			`def show`
Setup children in a a method and reuse for both calls 2017-09-19 05:05:31 -04:00			`setup_children(@group)`
Show shared projects on group page Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2016-03-11 12:42:16 -05:00
Move all stuff to groups controller 2012-10-02 13:42:15 -04:00			`respond_to do \|format\|`
			`format.html`
DB performance improvements to GitLab 2015-02-18 03:16:42 -05:00
Fix event loading with associations 2015-02-18 12:38:46 -05:00			`format.atom do`
Fetch children using new finder for the `show` of a group. 2017-09-04 14:01:58 -04:00			`setup_projects`
Fix event loading with associations 2015-02-18 12:38:46 -05:00			`load_events`
Refactor atom builder by using xml.atom layout 2017-06-12 13:21:13 -04:00			`render layout: 'xml.atom'`
Fix event loading with associations 2015-02-18 12:38:46 -05:00			`end`
Move all stuff to groups controller 2012-10-02 13:42:15 -04:00			`end`
			`end`

Add serializer for group children 2017-09-05 05:30:16 -04:00			`def children`
Update `children` route to handle projects and groups 2017-09-05 10:57:46 -04:00			`parent = if params[:parent_id].present?`
Use `GroupFinder` to check if a user can read a group 2017-10-10 07:34:20 -04:00			`GroupFinder.new(current_user).execute(id: params[:parent_id])`
Update `children` route to handle projects and groups 2017-09-05 10:57:46 -04:00			`else`
			`@group`
			`end`
Use `GroupFinder` to check if a user can read a group 2017-10-10 07:34:20 -04:00
			`if parent.nil?`
Add serializer for group children 2017-09-05 05:30:16 -04:00			`render_404`
Use `GroupFinder` to check if a user can read a group 2017-10-10 07:34:20 -04:00			`return`
Add serializer for group children 2017-09-05 05:30:16 -04:00			`end`

Setup children in a a method and reuse for both calls 2017-09-19 05:05:31 -04:00			`setup_children(parent)`
Hide nested group UI/API support for MySQL This hides/disables some UI elements and API parameters related to nested groups when MySQL is used, since nested groups are not supported for MySQL. 2017-05-03 08:49:37 -04:00
Add serializer for group children 2017-09-05 05:30:16 -04:00			`respond_to do \|format\|`
			`format.json do`
Allow filtering children for a group When fetching children for a group with a filter, we will search all nested groups for results and render them in an expanded tree 2017-09-08 13:22:33 -04:00			`serializer = GroupChildSerializer`
			`.new(current_user: current_user)`
			`.with_pagination(request, response)`
			`serializer.expand_hierarchy(parent) if params[:filter].present?`
			`render json: serializer.represent(@children)`
Add serializer for group children 2017-09-05 05:30:16 -04:00			`end`
			`end`
Allow creating nested group via UI Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2017-01-24 10:32:34 -05:00			`end`

Move group activity feed to separate page for consistency with dashboard and project pages Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2016-03-10 08:29:38 -05:00			`def activity`
Extract events rendering to own action. 2016-02-06 12:36:46 -05:00			`respond_to do \|format\|`
Move group activity feed to separate page for consistency with dashboard and project pages Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2016-03-10 08:29:38 -05:00			`format.html`

Extract events rendering to own action. 2016-02-06 12:36:46 -05:00			`format.json do`
			`load_events`
			`pager_json("events/_events", @events.count)`
			`end`
			`end`
			`end`

Ability to manage and remove group as owner outside of admin area 2013-02-01 12:04:11 -05:00			`def edit`
			`end`

merge master into issue_3359_3 2016-06-22 09:50:19 -04:00			`def projects`
Add more storage statistics This adds counters for build artifacts and LFS objects, and moves the preexisting repository_size and commit_count from the projects table into a new project_statistics table. The counters are displayed in the administration area for projects and groups, and also available through the API for admins (on /all) and normal users (on /owned) The statistics are updated through ProjectCacheWorker, which can now do more granular updates with the new :statistics argument. 2016-11-22 11:58:10 -05:00			`@projects = @group.projects.with_statistics.page(params[:page])`
merge master into issue_3359_3 2016-06-22 09:50:19 -04:00			`end`

Ability to manage and remove group as owner outside of admin area 2013-02-01 12:04:11 -05:00			`def update`
Prevent projects to have higher visibility than groups Prevent Groups to have smaller visibility than projects Add default_group_visibility_level to configuration Code improvements 2016-03-08 19:01:33 -05:00			`if Groups::UpdateService.new(@group, current_user, group_params).execute`
Mention group and project name in flash messages upon create, update and delete. 2015-07-29 18:06:16 -04:00			`redirect_to edit_group_path(@group), notice: "Group '#{@group.name}' was successfully updated."`
Ability to manage and remove group as owner outside of admin area 2013-02-01 12:04:11 -05:00			`else`
resolve deprecation warnings don’t pass AR object, use the ID to avoid depr warning pass in the id instead of AR object to specs for `ProjectDestroyWorker` 2017-01-27 21:50:25 -05:00			`@group.restore_path!`
added more specs 2016-12-21 07:29:27 -05:00
update controller action to render error in form 2016-12-21 05:50:31 -05:00			`render action: "edit"`
Ability to manage and remove group as owner outside of admin area 2013-02-01 12:04:11 -05:00			`end`
			`end`

			`def destroy`
Fix inconsistent naming for services that delete things * Changed name of delete_user_service and worker to destroy * Move and change delete_group_service to Groups::DestroyService * Rename Notes::DeleteService to Notes::DestroyService 2016-08-13 08:45:31 -04:00			`Groups::DestroyService.new(@group, current_user).async_execute`
Ability to manage and remove group as owner outside of admin area 2013-02-01 12:04:11 -05:00
Add a rubocop rule to check if a method 'redirect_to' is used without explicitly set 'status' in 'destroy' actions of controllers 2017-06-06 18:45:16 -04:00			`redirect_to root_path, status: 302, alert: "Group '#{@group.name}' was scheduled for deletion."`
Ability to manage and remove group as owner outside of admin area 2013-02-01 12:04:11 -05:00			`end`

Move all stuff to groups controller 2012-10-02 13:42:15 -04:00			`protected`

Setup children in a a method and reuse for both calls 2017-09-19 05:05:31 -04:00			`def setup_children(parent)`
Rename `GroupHierarchy` to `GroupDescendant` 2017-09-19 07:11:09 -04:00			`@children = GroupDescendantsFinder.new(current_user: current_user,`
			`parent_group: parent,`
			`params: params).execute`
Setup children in a a method and reuse for both calls 2017-09-19 05:05:31 -04:00			`@children = @children.page(params[:page])`
			`end`

Insert notification settings dropdown into groups 2016-06-21 15:50:13 -04:00			`def setup_projects`
ProjectsFinder should handle more options Extended ProjectFinder in order to handle the following options: - current_user - which user use - project_ids_relation: int[] - project ids to use - params: - trending: boolean - non_public: boolean - starred: boolean - sort: string - visibility_level: int - tags: string[] - personal: boolean - search: string - non_archived: boolean GroupProjectsFinder now inherits from ProjectsFinder. Changed the code in order to use the new available options. 2017-03-03 05:35:04 -05:00			`set_non_archived_param`
			`params[:sort] \|\|= 'latest_activity_desc'`
			`@sort = params[:sort]`

Allow creating nested group via UI Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2017-01-24 10:32:34 -05:00			`options = {}`
			`options[:only_owned] = true if params[:shared] == '0'`
			`options[:only_shared] = true if params[:shared] == '1'`

ProjectsFinder should handle more options Extended ProjectFinder in order to handle the following options: - current_user - which user use - project_ids_relation: int[] - project ids to use - params: - trending: boolean - non_public: boolean - starred: boolean - sort: string - visibility_level: int - tags: string[] - personal: boolean - search: string - non_archived: boolean GroupProjectsFinder now inherits from ProjectsFinder. Changed the code in order to use the new available options. 2017-03-03 05:35:04 -05:00			`@projects = GroupProjectsFinder.new(params: params, group: group, options: options, current_user: current_user).execute`
Insert notification settings dropdown into groups 2016-06-21 15:50:13 -04:00			`@projects = @projects.includes(:namespace)`
Fixed filter_projects param still used in group controller 2017-03-01 11:57:11 -05:00			`@projects = @projects.page(params[:page]) if params[:name].blank?`
Insert notification settings dropdown into groups 2016-06-21 15:50:13 -04:00			`end`

allow/deny user to create group/team 2013-01-25 04:30:49 -05:00			`def authorize_create_group!`
Make Members with Owner and Master roles always able to create subgroups 2017-09-07 14:35:45 -04:00			`allowed = if params[:parent_id].present?`
			`parent = Group.find_by(id: params[:parent_id])`
			`can?(current_user, :create_subgroup, parent)`
			`else`
			`can?(current_user, :create_group)`
			`end`

			`render_404 unless allowed`
Ability to manage and remove group as owner outside of admin area 2013-02-01 12:04:11 -05:00			`end`

Add helpers for header title and sidebar, and move setting those from controllers to layouts. 2015-05-01 04:39:11 -04:00			`def determine_layout`
Fix determine of layout for group/team 2013-06-08 09:26:57 -04:00			`if [:new, :create].include?(action_name.to_sym)`
Add helpers for header title and sidebar, and move setting those from controllers to layouts. 2015-05-01 04:39:11 -04:00			`'application'`
Fix consistency issue in sidebars of Project and Group Settings. Fixes #2277. 2015-06-15 18:32:14 -04:00			`elsif [:edit, :update, :projects].include?(action_name.to_sym)`
			`'group_settings'`
Allow access to groups with public projects. Fixed Group avatars to only display when user has read permissions to at least one project in the group. 2014-02-13 15:45:51 -05:00			`else`
Add helpers for header title and sidebar, and move setting those from controllers to layouts. 2015-05-01 04:39:11 -04:00			`'group'`
Fix determine of layout for group/team 2013-06-08 09:26:57 -04:00			`end`
			`end`
Use FilteringService for Dashboard, Group pages Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-01-15 09:16:45 -05:00
Group and Event strong_params Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-06-26 09:57:10 -04:00			`def group_params`
Refactor authorized params in GroupsController Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-01-10 09:57:09 -05:00			`params.require(:group).permit(group_params_ce)`
			`end`

			`def group_params_ce`
			`[`
Syntax fixes and better tests for helper methods. Updated docs. 2016-09-06 12:48:00 -04:00			`:avatar,`
Added group-specific setting for LFS. Groups can enable/disable LFS, but this setting can be overridden at the project level. Admin only 2016-09-01 19:49:48 -04:00			`:description,`
Syntax fixes and better tests for helper methods. Updated docs. 2016-09-06 12:48:00 -04:00			`:lfs_enabled,`
			`:name,`
Added group-specific setting for LFS. Groups can enable/disable LFS, but this setting can be overridden at the project level. Admin only 2016-09-01 19:49:48 -04:00			`:path,`
			`:public,`
			`:request_access_enabled,`
Syntax fixes and better tests for helper methods. Updated docs. 2016-09-06 12:48:00 -04:00			`:share_with_group_lock,`
Allow creating nested group via UI Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2017-01-24 10:32:34 -05:00			`:visibility_level,`
Finished up mattermost team creation 2017-02-20 08:51:47 -05:00			`:parent_id,`
Improve DRYness of views 2017-02-07 02:24:57 -05:00			`:create_chat_team,`
Support 2FA requirement per-group 2017-01-24 16:09:58 -05:00			`:chat_team_name,`
			`:require_two_factor_authentication,`
			`:two_factor_grace_period`
Refactor authorized params in GroupsController Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-01-10 09:57:09 -05:00			`]`
Group and Event strong_params Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-06-26 09:57:10 -04:00			`end`
Fix event loading with associations 2015-02-18 12:38:46 -05:00
			`def load_events`
Use a specialized class for querying events This changes various controllers to use the new EventCollection class for retrieving events. This class uses a JOIN LATERAL query on PostgreSQL to retrieve queries in a more efficient way, while falling back to a simpler / less efficient query for MySQL. The EventCollection class also includes a limit on the number of events to display to prevent malicious users from cycling through all events, as doing so could put a lot of pressure on the database. JOIN LATERAL is only supported on PostgreSQL starting with version 9.3.0 and as such this optimisation is only used when using PostgreSQL 9.3 or newer. 2017-07-27 13:42:15 -04:00			`@events = EventCollection`
			`.new(@projects, offset: params[:offset].to_i, filter: event_filter)`
			`.to_a`
Fix event loading with associations 2015-02-18 12:38:46 -05:00			`end`
Allow creating nested group via UI Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2017-01-24 10:32:34 -05:00
			`def user_actions`
			`if current_user`
			`@notification_setting = current_user.notification_settings_for(group)`
			`end`
			`end`
Refactor to more robust implementation In order to avoid string manipulation or modify route params (to make them unambiguous for `url_for`), we are accepting a behavior change: When being redirected to the canonical path for a group, if you requested a group show path starting with `/groups/…` then you’ll now be redirected to the group at root `/…`. 2017-05-18 19:23:05 -04:00
			`def build_canonical_path(group)`
			`return group_path(group) if action_name == 'show' # root group path`
Add a rubocop rule to check if a method 'redirect_to' is used without explicitly set 'status' in 'destroy' actions of controllers 2017-06-06 18:45:16 -04:00
Refactor to more robust implementation In order to avoid string manipulation or modify route params (to make them unambiguous for `url_for`), we are accepting a behavior change: When being redirected to the canonical path for a group, if you requested a group show path starting with `/groups/…` then you’ll now be redirected to the group at root `/…`. 2017-05-18 19:23:05 -04:00			`params[:id] = group.to_param`

			`url_for(params)`
			`end`
Move all stuff to groups controller 2012-10-02 13:42:15 -04:00			`end`