Skip auth for group page but return auth for other group pages

2015-09-14 11:05:23 +02:00 · 2015-09-14 11:05:23 +02:00 · 4c060074b7
commit 4c060074b7
parent b7431ec042
4 changed files with 7 additions and 3 deletions
--- a/app/assets/stylesheets/generic/sidebar.scss
+++ b/app/assets/stylesheets/generic/sidebar.scss
@ -146,7 +146,6 @@
    }

    .collapse-nav a {
-      left: 0px;
      width: $sidebar_collapsed_width;
    }

@ -165,6 +164,7 @@
  width: $sidebar_width;
  position: fixed;
  bottom: 0;
+  left: 0;
  font-size: 13px;
  background: transparent;
  height: 40px;
--- a/app/controllers/groups_controller.rb
+++ b/app/controllers/groups_controller.rb
@ -4,7 +4,7 @@ class GroupsController < Groups::ApplicationController
  before_action :group, except: [:new, :create]

  # Authorize
-  before_action :authorize_read_group!, except: [:new, :create]
+  before_action :authorize_read_group!, except: [:show, :new, :create]
  before_action :authorize_admin_group!, only: [:edit, :update, :destroy, :projects]
  before_action :authorize_create_group!, only: [:new, :create]

--- a/app/models/ability.rb
+++ b/app/models/ability.rb
@ -54,7 +54,7 @@ class Ability
                  nil
                end

-        if group
+        if group && group.public_profile?
          [:read_group]
        else
          []
--- a/app/models/group.rb
+++ b/app/models/group.rb
@ -119,6 +119,10 @@ class Group < Namespace
    end
  end

+  def public_profile?
+    projects.public_only.any?
+  end
+
  def post_create_hook
    Gitlab::AppLogger.info("Group \"#{name}\" was created")