055afab5c7
This MR simplifies CI permission model: - read_build: allows to read a list of builds, artifacts and trace - update_build: allows to cancel and retry builds - create_build: allows to create builds from gitlab-ci.yml (not yet implemented) - admin_build: allows to manage triggers, runners and variables - read_commit_status: allows to read a list of commit statuses (including the overall of builds) - create_commit_status: allows to create a new commit status using API Remove all extra methods to manage permission. Made all controllers to use explicitly the new permissions.
22 lines
535 B
Ruby
22 lines
535 B
Ruby
class Projects::VariablesController < Projects::ApplicationController
|
|
before_action :authorize_admin_build!
|
|
|
|
layout 'project_settings'
|
|
|
|
def show
|
|
end
|
|
|
|
def update
|
|
if project.update_attributes(project_params)
|
|
redirect_to namespace_project_variables_path(project.namespace, project), notice: 'Variables were successfully updated.'
|
|
else
|
|
render action: 'show'
|
|
end
|
|
end
|
|
|
|
private
|
|
|
|
def project_params
|
|
params.require(:project).permit({ variables_attributes: [:id, :key, :value, :_destroy] })
|
|
end
|
|
end
|