gitlab-org--gitlab-foss/app/controllers/concerns/issuable_actions.rb

189 lines
5 KiB
Ruby
Raw Normal View History

2016-03-21 09:12:52 -04:00
module IssuableActions
extend ActiveSupport::Concern
included do
before_action :labels, only: [:show, :new, :edit]
2016-03-21 09:12:52 -04:00
before_action :authorize_destroy_issuable!, only: :destroy
before_action :authorize_admin_issuable!, only: :bulk_update
2016-03-21 09:12:52 -04:00
end
2017-11-01 13:35:14 -04:00
def show
respond_to do |format|
2017-11-07 08:34:12 -05:00
format.html
2017-11-01 13:35:14 -04:00
format.json do
render json: serializer.represent(issuable, serializer: params[:serializer])
end
end
end
def update
@issuable = update_service.execute(issuable) # rubocop:disable Gitlab/ModuleWithInstanceVariables
2017-11-01 13:35:14 -04:00
respond_to do |format|
format.html do
recaptcha_check_if_spammable { render :edit }
2017-11-01 13:35:14 -04:00
end
format.json do
recaptcha_check_if_spammable(false) { render_entity_json }
2017-11-01 13:35:14 -04:00
end
end
rescue ActiveRecord::StaleObjectError
render_conflict_response
end
def realtime_changes
Gitlab::PollingInterval.set_header(response, interval: 3_000)
response = {
title: view_context.markdown_field(issuable, :title),
title_text: issuable.title,
description: view_context.markdown_field(issuable, :description),
description_text: issuable.description,
task_status: issuable.task_status
}
if issuable.edited?
response[:updated_at] = issuable.last_edited_at.to_time.iso8601
2017-11-01 13:35:14 -04:00
response[:updated_by_name] = issuable.last_edited_by.name
response[:updated_by_path] = user_path(issuable.last_edited_by)
end
render json: response
end
2016-03-21 09:12:52 -04:00
def destroy
2017-11-29 05:27:36 -05:00
Issuable::DestroyService.new(issuable.project, current_user).execute(issuable)
2016-03-21 09:12:52 -04:00
name = issuable.human_class_name
2016-03-21 09:12:52 -04:00
flash[:notice] = "The #{name} was successfully deleted."
2017-11-02 10:51:42 -04:00
index_path = polymorphic_path([parent, issuable.class])
respond_to do |format|
format.html { redirect_to index_path }
format.json do
render json: {
web_url: index_path
}
end
end
2016-03-21 09:12:52 -04:00
end
def bulk_update
result = Issuable::BulkUpdateService.new(project, current_user, bulk_update_params).execute(resource_name)
quantity = result[:count]
render json: { notice: "#{quantity} #{resource_name.pluralize(quantity)} updated" }
end
def discussions
notes = issuable.notes
.inc_relations_for_view
.includes(:noteable)
.fresh
notes = prepare_notes_for_rendering(notes)
notes = notes.reject { |n| n.cross_reference_not_visible_for?(current_user) }
discussions = Discussion.build_collection(notes, issuable)
2018-04-03 12:03:00 -04:00
render json: discussion_serializer.represent(discussions, context: self)
end
2016-03-21 09:12:52 -04:00
private
2018-04-03 12:03:00 -04:00
def discussion_serializer
DiscussionSerializer.new(project: project, noteable: issuable, current_user: current_user, note_entity: ProjectNoteEntity)
end
def recaptcha_check_if_spammable(should_redirect = true, &block)
2017-12-15 06:37:57 -05:00
return yield unless issuable.is_a? Spammable
recaptcha_check_with_fallback(should_redirect, &block)
end
def render_conflict_response
respond_to do |format|
format.html do
@conflict = true # rubocop:disable Gitlab/ModuleWithInstanceVariables
render :edit
end
format.json do
render json: {
errors: [
"Someone edited this #{issuable.human_class_name} at the same time you did. Please refresh your browser and make sure your changes will not unintentionally remove theirs."
]
}, status: 409
end
end
end
def labels
2017-11-22 04:15:46 -05:00
@labels ||= LabelsFinder.new(current_user, project_id: @project.id).execute # rubocop:disable Gitlab/ModuleWithInstanceVariables
end
2016-03-21 09:12:52 -04:00
def authorize_destroy_issuable!
unless can?(current_user, :"destroy_#{issuable.to_ability_name}", issuable)
2016-03-21 09:12:52 -04:00
return access_denied!
end
end
def authorize_admin_issuable!
unless can?(current_user, :"admin_#{resource_name}", @project) # rubocop:disable Gitlab/ModuleWithInstanceVariables
return access_denied!
end
end
2017-11-01 13:35:14 -04:00
def authorize_update_issuable!
render_404 unless can?(current_user, :"update_#{resource_name}", issuable)
end
def bulk_update_params
permitted_keys = [
:issuable_ids,
:assignee_id,
:milestone_id,
:state_event,
:subscription_event,
label_ids: [],
add_label_ids: [],
remove_label_ids: []
]
if resource_name == 'issue'
permitted_keys << { assignee_ids: [] }
else
permitted_keys.unshift(:assignee_id)
end
params.require(:update).permit(permitted_keys)
end
def resource_name
@resource_name ||= controller_name.singularize
end
2017-11-01 13:35:14 -04:00
# rubocop:disable Gitlab/ModuleWithInstanceVariables
2017-11-01 13:35:14 -04:00
def render_entity_json
if @issuable.valid?
render json: serializer.represent(@issuable)
else
render json: { errors: @issuable.errors.full_messages }, status: :unprocessable_entity
end
end
# rubocop:enable Gitlab/ModuleWithInstanceVariables
2017-11-01 13:35:14 -04:00
def serializer
raise NotImplementedError
end
def update_service
raise NotImplementedError
end
2017-11-02 10:51:42 -04:00
def parent
@project || @group # rubocop:disable Gitlab/ModuleWithInstanceVariables
2017-11-02 10:51:42 -04:00
end
2016-03-21 09:12:52 -04:00
end