gitlab-org--gitlab-foss/app/controllers/projects/discussions_controller.rb

# frozen_string_literal: true

class Projects::DiscussionsController < Projects::ApplicationController
  include NotesHelper
  include RendersNotes

  before_action :check_merge_requests_available!
  before_action :merge_request
  before_action :discussion, only: [:resolve, :unresolve]
  before_action :authorize_resolve_discussion!, only: [:resolve, :unresolve]

  def resolve
    Discussions::ResolveService.new(project, current_user, merge_request: merge_request).execute(discussion)

    render_discussion
  end

  def unresolve
    discussion.unresolve!

    render_discussion
  end

  def show
    render json: {
      truncated_diff_lines: discussion.try(:truncated_diff_lines)
    }
  end

  private

  def render_discussion
    if serialize_notes?
      prepare_notes_for_rendering(discussion.notes, merge_request)
      render_json_with_discussions_serializer
    else
      render_json_with_html
    end
  end

  def render_json_with_discussions_serializer
    render json:
      DiscussionSerializer.new(project: project, noteable: discussion.noteable, current_user: current_user, note_entity: ProjectNoteEntity)
      .represent(discussion, context: self, render_truncated_diff_lines: true)
  end

  # Legacy method used to render discussions notes when not using Vue on views.
  def render_json_with_html
    render json: {
      resolved_by: discussion.resolved_by.try(:name),
      discussion_headline_html: view_to_html_string('discussions/_headline', discussion: discussion)
    }
  end

  # rubocop: disable CodeReuse/ActiveRecord
  def merge_request
    @merge_request ||= MergeRequestsFinder.new(current_user, project_id: @project.id).find_by!(iid: params[:merge_request_id])
  end
  # rubocop: enable CodeReuse/ActiveRecord

  def discussion
    @discussion ||= @merge_request.find_discussion(params[:id]) || render_404
  end

  def authorize_resolve_discussion!
    access_denied! unless discussion.can_resolve?(current_user)
  end
end
Enable even more frozen string in app/controllers Enables frozen string for some vestigial files as well as the following: * app/controllers/projects/*/.rb * app/controllers/sherlock/*/.rb * app/controllers/snippets/*/.rb * app/controllers/users/*/.rb Partially addresses #47424. 2018-09-26 03:45:43 +00:00			`# frozen_string_literal: true`

Add endpoints to resolve diff notes and discussions 2016-07-26 04:43:47 +00:00			`class Projects::DiscussionsController < Projects::ApplicationController`
Render MR Notes with Vue with behind a cookie 2018-02-28 00:10:43 +00:00			`include NotesHelper`
			`include RendersNotes`

Use the new check_project_feature_available! method in project controllers 2017-06-20 11:13:04 +00:00			`before_action :check_merge_requests_available!`
Add endpoints to resolve diff notes and discussions 2016-07-26 04:43:47 +00:00			`before_action :merge_request`
Adjust 404's for LegacyDiffNote discussion rendering 2018-04-05 14:23:57 +00:00			`before_action :discussion, only: [:resolve, :unresolve]`
			`before_action :authorize_resolve_discussion!, only: [:resolve, :unresolve]`
Add endpoints to resolve diff notes and discussions 2016-07-26 04:43:47 +00:00
			`def resolve`
Feature: delegate all open discussions to Issue When a merge request can only be merged when all discussions are resolved. This feature allows to easily delegate those discussions to a new issue, while marking them as resolved in the merge request. The user is presented with a new issue, prepared with mentions of all unresolved discussions, including the first unresolved note of the discussion, time and link to the note. When the issue is created, the discussions in the merge request will get a system note directing the user to the newly created issue. 2016-10-26 21:21:50 +00:00			`Discussions::ResolveService.new(project, current_user, merge_request: merge_request).execute(discussion)`
Add 'Resolved all discussions' system note 2016-07-29 02:39:35 +00:00
Render MR Notes with Vue with behind a cookie 2018-02-28 00:10:43 +00:00			`render_discussion`
Add endpoints to resolve diff notes and discussions 2016-07-26 04:43:47 +00:00			`end`

			`def unresolve`
			`discussion.unresolve!`

Render MR Notes with Vue with behind a cookie 2018-02-28 00:10:43 +00:00			`render_discussion`
			`end`

Resolve "Projects::MergeRequestsController#show is slow (implement skeleton loading)" 2018-03-13 12:01:36 +00:00			`def show`
			`render json: {`
Changes tab VUE refactoring 2018-06-21 12:22:40 +00:00			`truncated_diff_lines: discussion.try(:truncated_diff_lines)`
Resolve "Projects::MergeRequestsController#show is slow (implement skeleton loading)" 2018-03-13 12:01:36 +00:00			`}`
			`end`

Render MR Notes with Vue with behind a cookie 2018-02-28 00:10:43 +00:00			`private`

			`def render_discussion`
			`if serialize_notes?`
			`prepare_notes_for_rendering(discussion.notes, merge_request)`
			`render_json_with_discussions_serializer`
			`else`
			`render_json_with_html`
			`end`
			`end`

			`def render_json_with_discussions_serializer`
			`render json:`
Enable the Layout/ExtraSpacing cop Signed-off-by: Rémy Coutable <remy@rymai.me> 2019-01-16 12:09:29 +00:00			`DiscussionSerializer.new(project: project, noteable: discussion.noteable, current_user: current_user, note_entity: ProjectNoteEntity)`
Changes tab VUE refactoring 2018-06-21 12:22:40 +00:00			`.represent(discussion, context: self, render_truncated_diff_lines: true)`
Render MR Notes with Vue with behind a cookie 2018-02-28 00:10:43 +00:00			`end`

			`# Legacy method used to render discussions notes when not using Vue on views.`
			`def render_json_with_html`
Updates the text above discussions when resolving notes & discussions 2016-07-27 17:34:04 +00:00			`render json: {`
Render MR Notes with Vue with behind a cookie 2018-02-28 00:10:43 +00:00			`resolved_by: discussion.resolved_by.try(:name),`
Backend tweaks 2016-07-29 02:09:36 +00:00			`discussion_headline_html: view_to_html_string('discussions/_headline', discussion: discussion)`
Updates the text above discussions when resolving notes & discussions 2016-07-27 17:34:04 +00:00			`}`
Add endpoints to resolve diff notes and discussions 2016-07-26 04:43:47 +00:00			`end`

Disable existing offenses for the CodeReuse cops This whitelists all existing offenses for the various CodeReuse cops, of which most are triggered by the CodeReuse/ActiveRecord cop. 2018-08-27 15:31:01 +00:00			`# rubocop: disable CodeReuse/ActiveRecord`
Add endpoints to resolve diff notes and discussions 2016-07-26 04:43:47 +00:00			`def merge_request`
Merge branch 'jej-23867-use-mr-finder-instead-of-access-check' into 'security' Replace MR access checks with use of MergeRequestsFinder Split from !2024 to partially solve https://gitlab.com/gitlab-org/gitlab-ce/issues/23867 :warning: - Potentially untested :bomb: - No test coverage :traffic_light: - Test coverage of some sort exists (a test failed when error raised) :vertical_traffic_light: - Test coverage of return value (a test failed when nil used) :white_check_mark: - Permissions check tested - [x] :bomb: app/finders/notes_finder.rb:17 - [x] :warning: app/views/layouts/nav/_project.html.haml:80 [`.count`] - [x] :bomb: app/controllers/concerns/creates_commit.rb:84 - [x] :traffic_light: app/controllers/projects/commits_controller.rb:24 - [x] :traffic_light: app/controllers/projects/compare_controller.rb:56 - [x] :vertical_traffic_light: app/controllers/projects/discussions_controller.rb:29 - [x] :white_check_mark: app/controllers/projects/todos_controller.rb:27 - [x] :vertical_traffic_light: app/models/commit.rb:268 - [x] :white_check_mark: lib/gitlab/search_results.rb:71 - [x] https://dev.gitlab.org/gitlab/gitlabhq/merge_requests/2024/diffs#d1c10892daedb4d4dd3d4b12b6d071091eea83df_267_266 Memoize ` merged_merge_request(current_user)` - [x] https://dev.gitlab.org/gitlab/gitlabhq/merge_requests/2024/diffs#d1c10892daedb4d4dd3d4b12b6d071091eea83df_248_247 Expected side effect for `merged_merge_request!`, consider `skip_authorization: true`. - [x] https://dev.gitlab.org/gitlab/gitlabhq/merge_requests/2024/diffs#d1c10892daedb4d4dd3d4b12b6d071091eea83df_269_269 Scary use of unchecked `merged_merge_request?` See merge request !2033 2016-11-29 13:47:43 +00:00			`@merge_request \|\|= MergeRequestsFinder.new(current_user, project_id: @project.id).find_by!(iid: params[:merge_request_id])`
Add endpoints to resolve diff notes and discussions 2016-07-26 04:43:47 +00:00			`end`
Disable existing offenses for the CodeReuse cops This whitelists all existing offenses for the various CodeReuse cops, of which most are triggered by the CodeReuse/ActiveRecord cop. 2018-08-27 15:31:01 +00:00			`# rubocop: enable CodeReuse/ActiveRecord`
Add endpoints to resolve diff notes and discussions 2016-07-26 04:43:47 +00:00
			`def discussion`
Add option to start a new discussion on an MR 2017-03-10 01:29:11 +00:00			`@discussion \|\|= @merge_request.find_discussion(params[:id]) \|\| render_404`
Add endpoints to resolve diff notes and discussions 2016-07-26 04:43:47 +00:00			`end`

			`def authorize_resolve_discussion!`
			`access_denied! unless discussion.can_resolve?(current_user)`
			`end`
			`end`