jro_apps/redmine Commit - r10996:15f035be518d

Respond with 404 when params[:ids] is missing (#12898)....

Jean-Philippe Lang -

r10996:15f035be518d

parent child

Context file:

r10996:15f035be518d

app/controllers/context_menus_controller.rb +3 0

               def issues
                 @issues = Issue.visible.all(:conditions => {:id => params[:ids]}, :include => :project)
+                (render_404; return) unless @issues.present?
                 if (@issues.size == 1)
                   @issue = @issues.first
                 end
               def time_entries
                 @time_entries = TimeEntry.all(
                    :conditions => {:id => params[:ids]}, :include => :project)
+                (render_404; return) unless @time_entries.present?
                 @projects = @time_entries.collect(&:project).compact.uniq
                 @project = @projects.first if @projects.size == 1
                 @activities = TimeEntryActivity.shared.active

test/functional/context_menus_controller_test.rb +5 0

                 assert_equal [1], assigns(:issues).collect(&:id)
               end
+              def test_should_respond_with_404_without_ids
+                get :issues
+                assert_response 404
+              end
               def test_time_entries_context_menu
                 @request.session[:user_id] = 2
                 get :time_entries, :ids => [1, 2]

General Comments 0

You need to be logged in to leave comments. Login now

No TODOs yet

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages