summaryrefslogtreecommitdiff
path: root/app/controllers/projects/snippets_controller.rb
diff options
context:
space:
mode:
authorAndrew8xx8 <avk@8xx8.ru>2013-03-23 22:14:37 +0400
committerAndrew8xx8 <avk@8xx8.ru>2013-03-23 22:14:37 +0400
commitcc869d5dc101ea1175e308d8532064f06072d08b (patch)
tree3f8e602abc18a95fbefc479710b37e203c903fc4 /app/controllers/projects/snippets_controller.rb
parent77faffbda3e6d26329b140b0a38f71dcdb9aa381 (diff)
downloadgitlab-ce-cc869d5dc101ea1175e308d8532064f06072d08b.tar.gz
Private field added to snippet
Diffstat (limited to 'app/controllers/projects/snippets_controller.rb')
-rw-r--r--app/controllers/projects/snippets_controller.rb92
1 files changed, 92 insertions, 0 deletions
diff --git a/app/controllers/projects/snippets_controller.rb b/app/controllers/projects/snippets_controller.rb
new file mode 100644
index 00000000000..a2e22a670a3
--- /dev/null
+++ b/app/controllers/projects/snippets_controller.rb
@@ -0,0 +1,92 @@
+class SnippetsController < ProjectResourceController
+ before_filter :module_enabled
+ before_filter :snippet, only: [:show, :edit, :destroy, :update, :raw]
+
+ # Allow read any snippet
+ before_filter :authorize_read_snippet!
+
+ # Allow write(create) snippet
+ before_filter :authorize_write_snippet!, only: [:new, :create]
+
+ # Allow modify snippet
+ before_filter :authorize_modify_snippet!, only: [:edit, :update]
+
+ # Allow destroy snippet
+ before_filter :authorize_admin_snippet!, only: [:destroy]
+
+ respond_to :html
+
+ def index
+ @snippets = @project.snippets.fresh.non_expired
+ end
+
+ def new
+ @snippet = @project.snippets.new
+ end
+
+ def create
+ @snippet = @project.snippets.new(params[:snippet])
+ @snippet.author = current_user
+ @snippet.save
+
+ if @snippet.valid?
+ redirect_to [@project, @snippet]
+ else
+ respond_with(@snippet)
+ end
+ end
+
+ def edit
+ end
+
+ def update
+ @snippet.update_attributes(params[:snippet])
+
+ if @snippet.valid?
+ redirect_to [@project, @snippet]
+ else
+ respond_with(@snippet)
+ end
+ end
+
+ def show
+ @note = @project.notes.new(noteable: @snippet)
+ @target_type = :snippet
+ @target_id = @snippet.id
+ end
+
+ def destroy
+ return access_denied! unless can?(current_user, :admin_snippet, @snippet)
+
+ @snippet.destroy
+
+ redirect_to project_snippets_path(@project)
+ end
+
+ def raw
+ send_data(
+ @snippet.content,
+ type: "text/plain",
+ disposition: 'inline',
+ filename: @snippet.file_name
+ )
+ end
+
+ protected
+
+ def snippet
+ @snippet ||= @project.snippets.find(params[:id])
+ end
+
+ def authorize_modify_snippet!
+ return render_404 unless can?(current_user, :modify_snippet, @snippet)
+ end
+
+ def authorize_admin_snippet!
+ return render_404 unless can?(current_user, :admin_snippet, @snippet)
+ end
+
+ def module_enabled
+ return render_404 unless @project.snippets_enabled
+ end
+end
View Lorry Controller Status