##// END OF EJS Templates
jro_apps » redmine
RSS
Fixed: new gantt chart discloses all private projects names (#6276)....
Jean-Philippe Lang -
r4311:dfc76ce642ee
parent child
Show More
Side by Side Unified
Context file:
r4311:dfc76ce642ee Loading diff...:
Show file before | Show file after | Hide comments
@@ -91,7 +91,7 module Redmine
91 91 if @project
92 92 return number_of_rows_on_project(@project)
93 93 else
94 Project.roots.inject(0) do |total, project|
94 Project.roots.visible.inject(0) do |total, project|
95 95 total += number_of_rows_on_project(project)
96 96 end
97 97 end
@@ -119,7 +119,7 module Redmine
119 119 end
120 120
121 121 # Subprojects
122 project.children.each do |subproject|
122 project.children.visible.each do |subproject|
123 123 count += number_of_rows_on_project(subproject)
124 124 end
125 125
@@ -134,7 +134,7 module Redmine
134 134 if @project
135 135 output << render_project(@project, options)
136 136 else
137 Project.roots.each do |project|
137 Project.roots.visible.each do |project|
138 138 output << render_project(project, options)
139 139 end
140 140 end
@@ -150,7 +150,7 module Redmine
150 150 if @project
151 151 output << render_project(@project, options)
152 152 else
153 Project.roots.each do |project|
153 Project.roots.visible.each do |project|
154 154 output << render_project(project, options)
155 155 end
156 156 end
@@ -191,7 +191,7 module Redmine
191 191 end
192 192
193 193 # Fourth, subprojects
194 project.children.each do |project|
194 project.children.visible.each do |project|
195 195 subproject_rendering = render_project(project, options)
196 196 output << subproject_rendering if options[:format] == :html
197 197 end
Show file before | Show file after | Hide comments
@@ -49,6 +49,18 class GanttsControllerTest < ActionController::TestCase
49 49 assert_nil assigns(:gantt).project
50 50 end
51 51
52 should "not disclose private projects" do
53 get :show
54 assert_response :success
55 assert_template 'show.html.erb'
56
57 assert_tag 'a', :content => /eCookbook/
58 # Root private project
59 assert_no_tag 'a', {:content => /OnlineStore/}
60 # Private children of a public project
61 assert_no_tag 'a', :content => /Private child of eCookbook/
62 end
63
52 64 should "export to pdf" do
53 65 get :show, :project_id => 1, :format => 'pdf'
54 66 assert_response :success
General Comments 0
You need to be logged in to leave comments. Login now