diff options
author | Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> | 2014-02-10 15:36:58 +0200 |
---|---|---|
committer | Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> | 2014-02-10 15:36:58 +0200 |
commit | 58ac731c3764d1cbf3a4a1e60e5c5374ec460546 (patch) | |
tree | 0b39817dc6058644cd7cadf3a26eefc3ef0c8e13 /app/controllers | |
parent | 5a098e84e4de30d95ba5e0a3a7bbd81813cf3305 (diff) | |
download | gitlab-ce-58ac731c3764d1cbf3a4a1e60e5c5374ec460546.tar.gz |
Fix Issues#bulk_update
Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
Diffstat (limited to 'app/controllers')
-rw-r--r-- | app/controllers/projects/issues_controller.rb | 9 |
1 files changed, 6 insertions, 3 deletions
diff --git a/app/controllers/projects/issues_controller.rb b/app/controllers/projects/issues_controller.rb index f260a2e0597..ba5c52d510f 100644 --- a/app/controllers/projects/issues_controller.rb +++ b/app/controllers/projects/issues_controller.rb @@ -9,7 +9,10 @@ class Projects::IssuesController < Projects::ApplicationController before_filter :authorize_write_issue!, only: [:new, :create] # Allow modify issue - before_filter :authorize_modify_issue!, only: [:edit, :update, :bulk_update] + before_filter :authorize_modify_issue!, only: [:edit, :update] + + # Allow issues bulk update + before_filter :authorize_admin_issues!, only: [:bulk_update] respond_to :html @@ -107,8 +110,8 @@ class Projects::IssuesController < Projects::ApplicationController return render_404 unless can?(current_user, :modify_issue, @issue) end - def authorize_admin_issue! - return render_404 unless can?(current_user, :admin_issue, @issue) + def authorize_admin_issues! + return render_404 unless can?(current_user, :admin_issue, @project) end def module_enabled |