055afab5c7
This MR simplifies CI permission model: - read_build: allows to read a list of builds, artifacts and trace - update_build: allows to cancel and retry builds - create_build: allows to create builds from gitlab-ci.yml (not yet implemented) - admin_build: allows to manage triggers, runners and variables - read_commit_status: allows to read a list of commit statuses (including the overall of builds) - create_commit_status: allows to create a new commit status using API Remove all extra methods to manage permission. Made all controllers to use explicitly the new permissions.
46 lines
1 KiB
Ruby
46 lines
1 KiB
Ruby
class Projects::ArtifactsController < Projects::ApplicationController
|
|
layout 'project'
|
|
before_action :authorize_read_build!
|
|
|
|
def download
|
|
unless artifacts_file.file_storage?
|
|
return redirect_to artifacts_file.url
|
|
end
|
|
|
|
unless artifacts_file.exists?
|
|
return render_404
|
|
end
|
|
|
|
send_file artifacts_file.path, disposition: 'attachment'
|
|
end
|
|
|
|
def browse
|
|
return render_404 unless build.artifacts?
|
|
|
|
directory = params[:path] ? "#{params[:path]}/" : ''
|
|
@entry = build.artifacts_metadata_entry(directory)
|
|
|
|
return render_404 unless @entry.exists?
|
|
end
|
|
|
|
def file
|
|
entry = build.artifacts_metadata_entry(params[:path])
|
|
|
|
if entry.exists?
|
|
render json: { archive: build.artifacts_file.path,
|
|
entry: Base64.encode64(entry.path) }
|
|
else
|
|
render json: {}, status: 404
|
|
end
|
|
end
|
|
|
|
private
|
|
|
|
def build
|
|
@build ||= project.builds.unscoped.find_by!(id: params[:build_id])
|
|
end
|
|
|
|
def artifacts_file
|
|
@artifacts_file ||= build.artifacts_file
|
|
end
|
|
end
|