gitlab-org--gitlab-foss/app/controllers/projects/todos_controller.rb

# frozen_string_literal: true

class Projects::TodosController < Projects::ApplicationController
  include Gitlab::Utils::StrongMemoize
  include TodosActions

  before_action :authenticate_user!, only: [:create]

  private

  def issuable
    strong_memoize(:issuable) do
      case params[:issuable_type]
      when "issue"
        IssuesFinder.new(current_user, project_id: @project.id).find(params[:issuable_id])
      when "merge_request"
        MergeRequestsFinder.new(current_user, project_id: @project.id).find(params[:issuable_id])
      end
    end
  end
end
Enable even more frozen string in app/controllers Enables frozen string for some vestigial files as well as the following: * app/controllers/projects/*/.rb * app/controllers/sherlock/*/.rb * app/controllers/snippets/*/.rb * app/controllers/users/*/.rb Partially addresses #47424. 2018-09-26 03:45:43 +00:00			`# frozen_string_literal: true`

Moved todo creation over to project todos controller 2016-06-08 08:29:19 +00:00			`class Projects::TodosController < Projects::ApplicationController`
Revert "Revert "Merge branch 'ee-5481-epic-todos' into 'master'"" This reverts commit 8717c7dad9b5a8fa21ec9a652c54718a6b4c2175. 2018-07-16 13:35:19 +00:00			`include Gitlab::Utils::StrongMemoize`
			`include TodosActions`
Revert "Merge branch 'ee-5481-epic-todos' into 'master'" This reverts commit 4d9a3f42f1fd3be21555e19872b7121cca65015e, reversing changes made to ecf9c145f6e4d170cd059df88743393d9e63c489. 2018-07-11 16:33:24 +00:00
Revert "Revert "Merge branch 'ee-5481-epic-todos' into 'master'"" This reverts commit 8717c7dad9b5a8fa21ec9a652c54718a6b4c2175. 2018-07-16 13:35:19 +00:00			`before_action :authenticate_user!, only: [:create]`
Revert "Merge branch 'ee-5481-epic-todos' into 'master'" This reverts commit 4d9a3f42f1fd3be21555e19872b7121cca65015e, reversing changes made to ecf9c145f6e4d170cd059df88743393d9e63c489. 2018-07-11 16:33:24 +00:00
Moved todo creation over to project todos controller 2016-06-08 08:29:19 +00:00			`private`
Uses update URL to update the status of a todo 2016-06-09 07:50:18 +00:00
Moved todo creation over to project todos controller 2016-06-08 08:29:19 +00:00			`def issuable`
Revert "Revert "Merge branch 'ee-5481-epic-todos' into 'master'"" This reverts commit 8717c7dad9b5a8fa21ec9a652c54718a6b4c2175. 2018-07-16 13:35:19 +00:00			`strong_memoize(:issuable) do`
Moved todo creation over to project todos controller 2016-06-08 08:29:19 +00:00			`case params[:issuable_type]`
			`when "issue"`
Merge branch 'jej-fix-missing-access-check-on-issues' into 'security' Fix missing access checks on issue lookup using IssuableFinder Split from !2024 to partially solve https://gitlab.com/gitlab-org/gitlab-ce/issues/23867 :warning: - Potentially untested :bomb: - No test coverage :traffic_light: - Test coverage of some sort exists (a test failed when error raised) :vertical_traffic_light: - Test coverage of return value (a test failed when nil used) :white_check_mark: - Permissions check tested - [x] :white_check_mark: app/controllers/projects/branches_controller.rb:39 - `before_action :authorize_push_code!` helpes limit/prevent exploitation. Always checks for reporter access so fine with confidential issues, issues only visible to team, etc. - [x] :traffic_light: app/models/cycle_analytics/summary.rb:9 [`.count`] - [x] :white_check_mark: app/controllers/projects/todos_controller.rb:19 - [x] Potential double render in app/controllers/projects/todos_controller.rb - https://dev.gitlab.org/gitlab/gitlabhq/merge_requests/2024/diffs#cedccb227af9bfdf88802767cb58d43c2b977439_24_24 See merge request !2030 2016-11-18 13:51:52 +00:00			`IssuesFinder.new(current_user, project_id: @project.id).find(params[:issuable_id])`
Moved todo creation over to project todos controller 2016-06-08 08:29:19 +00:00			`when "merge_request"`
Merge branch 'jej-23867-use-mr-finder-instead-of-access-check' into 'security' Replace MR access checks with use of MergeRequestsFinder Split from !2024 to partially solve https://gitlab.com/gitlab-org/gitlab-ce/issues/23867 :warning: - Potentially untested :bomb: - No test coverage :traffic_light: - Test coverage of some sort exists (a test failed when error raised) :vertical_traffic_light: - Test coverage of return value (a test failed when nil used) :white_check_mark: - Permissions check tested - [x] :bomb: app/finders/notes_finder.rb:17 - [x] :warning: app/views/layouts/nav/_project.html.haml:80 [`.count`] - [x] :bomb: app/controllers/concerns/creates_commit.rb:84 - [x] :traffic_light: app/controllers/projects/commits_controller.rb:24 - [x] :traffic_light: app/controllers/projects/compare_controller.rb:56 - [x] :vertical_traffic_light: app/controllers/projects/discussions_controller.rb:29 - [x] :white_check_mark: app/controllers/projects/todos_controller.rb:27 - [x] :vertical_traffic_light: app/models/commit.rb:268 - [x] :white_check_mark: lib/gitlab/search_results.rb:71 - [x] https://dev.gitlab.org/gitlab/gitlabhq/merge_requests/2024/diffs#d1c10892daedb4d4dd3d4b12b6d071091eea83df_267_266 Memoize ` merged_merge_request(current_user)` - [x] https://dev.gitlab.org/gitlab/gitlabhq/merge_requests/2024/diffs#d1c10892daedb4d4dd3d4b12b6d071091eea83df_248_247 Expected side effect for `merged_merge_request!`, consider `skip_authorization: true`. - [x] https://dev.gitlab.org/gitlab/gitlabhq/merge_requests/2024/diffs#d1c10892daedb4d4dd3d4b12b6d071091eea83df_269_269 Scary use of unchecked `merged_merge_request?` See merge request !2033 2016-11-29 13:47:43 +00:00			`MergeRequestsFinder.new(current_user, project_id: @project.id).find(params[:issuable_id])`
Moved todo creation over to project todos controller 2016-06-08 08:29:19 +00:00			`end`
			`end`
			`end`
			`end`