4 files changed, 49 insertions, 17 deletions

diff --git a/app/assets/stylesheets/pages/profile.scss b/app/assets/stylesheets/pages/profile.scss
index 8c62c97215f..85d9173afb3 100644
--- a/app/assets/stylesheets/pages/profile.scss
+++ b/app/assets/stylesheets/pages/profile.scss
@@ -211,4 +211,8 @@
 
 .personal-access-tokens-never-expires-label {
   color: #bbb;
+}
+
+.personal-access-tokens-token-column {
+  max-width: 500px
 }
\ No newline at end of file
diff --git a/app/controllers/profiles/personal_access_tokens_controller.rb b/app/controllers/profiles/personal_access_tokens_controller.rb
index a5804cc0d73..5a6026f58cb 100644
--- a/app/controllers/profiles/personal_access_tokens_controller.rb
+++ b/app/controllers/profiles/personal_access_tokens_controller.rb
@@ -1,6 +1,7 @@
 class Profiles::PersonalAccessTokensController < Profiles::ApplicationController
   def index
-    @user = current_user
+    @active_personal_access_tokens = current_user.personal_access_tokens.active.order(:expires_at)
+    @inactive_personal_access_tokens = current_user.personal_access_tokens.inactive
 
     # Prefer this to `@user.personal_access_tokens.new`, because it
     # litters the view's call to `@user.personal_access_tokens` with
diff --git a/app/models/personal_access_token.rb b/app/models/personal_access_token.rb
index dd64374481f..fff3f76fb93 100644
--- a/app/models/personal_access_token.rb
+++ b/app/models/personal_access_token.rb
@@ -1,7 +1,8 @@
 class PersonalAccessToken < ActiveRecord::Base
   belongs_to :user
 
-  scope :active, -> { where.not(revoked: true).where("expires_at >= :current", current: Time.current) }
+  scope :active, -> { where(revoked: false).where("expires_at >= :current OR expires_at IS NULL", current: Time.current) }
+  scope :inactive, -> { where("revoked = true OR expires_at < :current", current: Time.current) }
 
   def self.generate(params)
     personal_access_token = self.new(params)
diff --git a/app/views/profiles/personal_access_tokens/index.html.haml b/app/views/profiles/personal_access_tokens/index.html.haml
index f3d5f07cdd3..77726d34fbc 100644
--- a/app/views/profiles/personal_access_tokens/index.html.haml
+++ b/app/views/profiles/personal_access_tokens/index.html.haml
@@ -27,38 +27,64 @@
 
     %hr
 
-    %h5
-      Active Personal Access Tokens
+    %h5= "Active Personal Access Tokens (#{@active_personal_access_tokens.count})"
 
-    - if @user.personal_access_tokens.exists?
+    - if @active_personal_access_tokens.exists?
       .table-responsive
-        %table.table.table-striped
+        %table.table.table-striped.table-hover
           %thead
             %tr
               %th Name
               %th Token
-              %th Created At
-              %th Expires At
+              %th Created
+              %th Expires
               %th Actions
           %tbody
-            - @user.personal_access_tokens.order("revoked, expires_at").each do |token|
+            - @active_personal_access_tokens.active.each do |token|
               %tr
                 %td= token.name
-                %td= token.token
-                %td= token.created_at
+                %td.input-group.personal-access-tokens-token-column
+                  %input.form-control{type: "text", value: token.token, readonly: true}
+                  %div.input-group-btn
+                    %button.btn.btn-default{type: "button", data: {clipboard_text: token.token}}
+                      %i.fa.fa-clipboard
+                %td= token.created_at.to_date
                 - if token.expires_at.present?
                   %td= token.expires_at.to_date
                 - else
                   %td
                     %span.personal-access-tokens-never-expires-label Never
-                - if token.revoked?
-                  %td
-                    %span.personal-access-tokens-revoked-label Revoked
-                - else
-                  %td= link_to "Revoke", revoke_profile_personal_access_token_path(token), method: :put, class: "btn btn-danger", data: {confirm: t('profile.personal_access_tokens.revoke.confirmation')}
+                %td= link_to "Revoke", revoke_profile_personal_access_token_path(token), method: :put, class: "btn btn-danger", data: {confirm: t('profile.personal_access_tokens.revoke.confirmation')}
 
     - else
-      %span You don't have any tokens yet.
+      %span You don't have any active tokens yet.
+
+    %hr
+
+    %h5= "Inactive Personal Access Tokens (#{@inactive_personal_access_tokens.count})"
+
+    - if @inactive_personal_access_tokens.exists?
+      .table-responsive
+        %table.table.table-striped.table-hover
+          %thead
+            %tr
+              %th Name
+              %th Token
+              %th Created
+          %tbody
+            - @inactive_personal_access_tokens.order("revoked, expires_at").each do |token|
+              %tr
+                %td= token.name
+                %td.input-group.personal-access-tokens-token-column
+                  %input.form-control{type: "text", value: token.token, readonly: true}
+                  %div.input-group-btn
+                    %button.btn.btn-default{type: "button", data: {clipboard_text: token.token}}
+                      %i.fa.fa-clipboard
+                %td= token.created_at.to_date
+
+    - else
+      %span No inactive tokens.
+
 
 :javascript
   $(".datepicker").datepicker({