112 lines
3.2 KiB
Ruby
112 lines
3.2 KiB
Ruby
# frozen_string_literal: true
|
|
|
|
class Projects::ApplicationController < ApplicationController
|
|
include CookiesHelper
|
|
include RoutableActions
|
|
include ChecksCollaboration
|
|
|
|
skip_before_action :authenticate_user!
|
|
before_action :project
|
|
before_action :repository
|
|
layout 'project'
|
|
|
|
helper_method :repository, :can_collaborate_with_project?, :user_access
|
|
|
|
rescue_from Gitlab::Template::Finders::RepoTemplateFinder::FileNotFoundError do |exception|
|
|
log_exception(exception)
|
|
render_404
|
|
end
|
|
|
|
private
|
|
|
|
def project
|
|
return @project if @project
|
|
return unless params[:project_id] || params[:id]
|
|
|
|
path = File.join(params[:namespace_id], params[:project_id] || params[:id])
|
|
|
|
@project = find_routable!(Project, path, request.fullpath, extra_authorization_proc: auth_proc)
|
|
end
|
|
|
|
def auth_proc
|
|
->(project) { !project.pending_delete? }
|
|
end
|
|
|
|
def authorize_read_build_trace!
|
|
return if can?(current_user, :read_build_trace, build)
|
|
|
|
if build.debug_mode?
|
|
access_denied!(
|
|
_('You must have developer or higher permissions in the associated project to view job logs when debug trace ' \
|
|
"is enabled. To disable debug trace, set the 'CI_DEBUG_TRACE' and 'CI_DEBUG_SERVICES' variables to 'false' " \
|
|
'in your pipeline configuration or CI/CD settings. If you must view this job log, a project maintainer ' \
|
|
'or owner must add you to the project with developer permissions or higher.')
|
|
)
|
|
else
|
|
access_denied!(_('The current user is not authorized to access the job log.'))
|
|
end
|
|
end
|
|
|
|
def build_canonical_path(project)
|
|
params[:namespace_id] = project.namespace.to_param
|
|
params[:project_id] = project.to_param
|
|
|
|
url_for(safe_params)
|
|
end
|
|
|
|
def repository
|
|
@repository ||= project.repository
|
|
end
|
|
|
|
def authorize_action!(action)
|
|
unless can?(current_user, action, project)
|
|
access_denied!
|
|
end
|
|
end
|
|
|
|
def check_project_feature_available!(feature)
|
|
render_404 unless project.feature_available?(feature, current_user)
|
|
end
|
|
|
|
def check_issuables_available!
|
|
render_404 unless project.feature_available?(:issues, current_user) ||
|
|
project.feature_available?(:merge_requests, current_user)
|
|
end
|
|
|
|
def method_missing(method_sym, *arguments, &block)
|
|
case method_sym.to_s
|
|
when /\Aauthorize_(.*)!\z/
|
|
authorize_action!(Regexp.last_match(1).to_sym)
|
|
when /\Acheck_(.*)_available!\z/
|
|
check_project_feature_available!(Regexp.last_match(1).to_sym)
|
|
else
|
|
super
|
|
end
|
|
end
|
|
|
|
def require_non_empty_project
|
|
# Be sure to return status code 303 to avoid a double DELETE:
|
|
# http://api.rubyonrails.org/classes/ActionController/Redirecting.html
|
|
redirect_to project_path(@project), status: :see_other if @project.empty_repo?
|
|
end
|
|
|
|
def require_branch_head
|
|
unless @repository.branch_exists?(@ref)
|
|
redirect_to(
|
|
project_tree_path(@project, @ref),
|
|
notice: "This action is not allowed unless you are on a branch"
|
|
)
|
|
end
|
|
end
|
|
|
|
def require_pages_enabled!
|
|
not_found unless @project.pages_available?
|
|
end
|
|
|
|
def check_issues_available!
|
|
return render_404 unless @project.feature_available?(:issues, current_user)
|
|
end
|
|
end
|
|
|
|
Projects::ApplicationController.prepend_mod_with('Projects::ApplicationController')
|