jro_apps/redmine Files · app/controllers/application.rb

Issue list now supports bulk edit/move/delete (#563, #607). For now, issues from different projects can not be bulk edited/moved/deleted at once....

Issue list now supports bulk edit/move/delete (#563, #607). For now, issues from different projects can not be bulk edited/moved/deleted at once. There are 2 ways to select a set of issues on the issue list: * by using checkbox and/or the little pencil that will select/unselect all issues (#567) * by clicking on the rows (but not on the links), Ctrl and Shift keys can be used to select multiple issues Context menu was disabled on links so that the default context menu of the browser is displayed when right-clicking on a link (#545). All this was tested with Firefox 2, IE 6/7, Opera 8 (use Alt+Click instead of Right-click) and Safari 2/3. git-svn-id: http://redmine.rubyforge.org/svn/trunk@1130 e93f8b46-1217-0410-a6f0-8f06a7374b81

Jean-Philippe Lang - - Load All Authors

File last commit:

r1080:91dc13f4b22c


                r1116:4155c97222ce

Download file

             application.rb
        
                    212 lines
            
             | 6.5 KiB
            
                | text/x-ruby
            
             |
                RubyLexer
            
             / app / controllers / application.rb
          
                    History
                
                 |
                  Annotation
                 | Raw
                 |Copy content
                 |Copy permalink

      # redMine - project management software

      # Copyright (C) 2006-2007  Jean-Philippe Lang

      #

      # This program is free software; you can redistribute it and/or

      # modify it under the terms of the GNU General Public License

      # as published by the Free Software Foundation; either version 2

      # of the License, or (at your option) any later version.

      # 

      # This program is distributed in the hope that it will be useful,

      # but WITHOUT ANY WARRANTY; without even the implied warranty of

      # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

      # GNU General Public License for more details.

      # 

      # You should have received a copy of the GNU General Public License

      # along with this program; if not, write to the Free Software

      # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

      class ApplicationController < ActionController::Base

        before_filter :user_setup, :check_if_login_required, :set_localization

        filter_parameter_logging :password

        include Redmine::MenuManager::MenuController

        helper Redmine::MenuManager::MenuHelper

        REDMINE_SUPPORTED_SCM.each do |scm|

          require_dependency "repository/#{scm.underscore}"

        end

        def current_role

          @current_role ||= User.current.role_for_project(@project)

        end

        def user_setup

          # Check the settings cache for each request

          Setting.check_cache

          # Find the current user

          User.current = find_current_user

        end

        # Returns the current user or nil if no user is logged in

        def find_current_user

          if session[:user_id]

            # existing session

            (User.find_active(session[:user_id]) rescue nil)

          elsif cookies[:autologin] && Setting.autologin?

            # auto-login feature

            User.find_by_autologin_key(cookies[:autologin])

          elsif params[:key] && accept_key_auth_actions.include?(params[:action])

            # RSS key authentication

            User.find_by_rss_key(params[:key])

          end

        end

        # check if login is globally required to access the application

        def check_if_login_required

          # no check needed if user is already logged in

          return true if User.current.logged?

          require_login if Setting.login_required?

        end 

        def set_localization

          lang = begin

            if !User.current.language.blank? and GLoc.valid_languages.include? User.current.language.to_sym

              User.current.language

            elsif request.env['HTTP_ACCEPT_LANGUAGE']

              accept_lang = parse_qvalues(request.env['HTTP_ACCEPT_LANGUAGE']).first.split('-').first

              if accept_lang and !accept_lang.empty? and GLoc.valid_languages.include? accept_lang.to_sym

                accept_lang

              end

            end

          rescue

            nil

          end || Setting.default_language

          set_language_if_valid(lang)    

        end

        def require_login

          if !User.current.logged?

            store_location

            redirect_to :controller => "account", :action => "login"

            return false

          end

          true

        end

        def require_admin

          return unless require_login

          if !User.current.admin?

            render_403

            return false

          end

          true

        end

        # Authorize the user for the requested action

        def authorize(ctrl = params[:controller], action = params[:action])

          allowed = User.current.allowed_to?({:controller => ctrl, :action => action}, @project)

          allowed ? true : (User.current.logged? ? render_403 : require_login)

        end

        # make sure that the user is a member of the project (or admin) if project is private

        # used as a before_filter for actions that do not require any particular permission on the project

        def check_project_privacy

          unless @project.active?

            @project = nil

            render_404

            return false

          end

          return true if @project.is_public? || User.current.member_of?(@project) || User.current.admin?

          User.current.logged? ? render_403 : require_login

        end

        # store current uri in session.

        # return to this location by calling redirect_back_or_default

        def store_location

          session[:return_to_params] = params

        end

        # move to the last store_location call or to the passed default one

        def redirect_back_or_default(default)

          if session[:return_to_params].nil?

            redirect_to default

          else

            redirect_to session[:return_to_params]

            session[:return_to_params] = nil

          end

        end

        def render_403

          @project = nil

          render :template => "common/403", :layout => !request.xhr?, :status => 403

          return false

        end

        def render_404

          render :template => "common/404", :layout => !request.xhr?, :status => 404

          return false

        end

        def render_error(msg)

          flash.now[:error] = msg

          render :nothing => true, :layout => !request.xhr?, :status => 500

        end

        def render_feed(items, options={})    

          @items = items || []

          @items.sort! {|x,y| y.event_datetime <=> x.event_datetime }

          @title = options[:title] || Setting.app_title

          render :template => "common/feed.atom.rxml", :layout => false, :content_type => 'application/atom+xml'

        end

        def self.accept_key_auth(*actions)

          actions = actions.flatten.map(&:to_s)

          write_inheritable_attribute('accept_key_auth_actions', actions)

        end

        def accept_key_auth_actions

          self.class.read_inheritable_attribute('accept_key_auth_actions') || []

        end

        # TODO: move to model

        def attach_files(obj, files)

          attachments = []

          if files && files.is_a?(Array)

            files.each do |file|

              next unless file.size > 0

              a = Attachment.create(:container => obj, :file => file, :author => User.current)

              attachments << a unless a.new_record?

            end

          end

          attachments

        end

        # Returns the number of objects that should be displayed

        # on the paginated list

        def per_page_option

          per_page = nil

          if params[:per_page] && Setting.per_page_options_array.include?(params[:per_page].to_s.to_i)

            per_page = params[:per_page].to_s.to_i

            session[:per_page] = per_page

          elsif session[:per_page]

            per_page = session[:per_page]

          else

            per_page = Setting.per_page_options_array.first || 25

          end

          per_page

        end

        # qvalues http header parser

        # code taken from webrick

        def parse_qvalues(value)

          tmp = []

          if value

            parts = value.split(/,\s*/)

            parts.each {|part|

              if m = %r{^([^\s,]+?)(?:;\s*q=(\d+(?:\.\d+)?))?$}.match(part)

                val = m[1]

                q = (m[2] or 1).to_f

                tmp.push([val, q])

              end

            }

            tmp = tmp.sort_by{|val, q| -q}

            tmp.collect!{|val, q| val}

          end

          return tmp

        end

        # Returns a string that can be used as filename value in Content-Disposition header

        def filename_for_content_disposition(name)

          request.env['HTTP_USER_AGENT'] =~ %r{MSIE} ? ERB::Util.url_encode(name) : name

        end

      end

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

				# redMine - project management software
				# Copyright (C) 2006-2007 Jean-Philippe Lang
				#
				# This program is free software; you can redistribute it and/or
				# modify it under the terms of the GNU General Public License
				# as published by the Free Software Foundation; either version 2
				# of the License, or (at your option) any later version.
				#
				# This program is distributed in the hope that it will be useful,
				# but WITHOUT ANY WARRANTY; without even the implied warranty of
				# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
				# GNU General Public License for more details.
				#
				# You should have received a copy of the GNU General Public License
				# along with this program; if not, write to the Free Software
				# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.

				class ApplicationController < ActionController::Base
				before_filter :user_setup, :check_if_login_required, :set_localization
				filter_parameter_logging :password

				include Redmine::MenuManager::MenuController
				helper Redmine::MenuManager::MenuHelper

				REDMINE_SUPPORTED_SCM.each do \|scm\|
				require_dependency "repository/#{scm.underscore}"
				end

				def current_role
				@current_role \|\|= User.current.role_for_project(@project)
				end

				def user_setup
				# Check the settings cache for each request
				Setting.check_cache
				# Find the current user
				User.current = find_current_user
				end

				# Returns the current user or nil if no user is logged in
				def find_current_user
				if session[:user_id]
				# existing session
				(User.find_active(session[:user_id]) rescue nil)
				elsif cookies[:autologin] && Setting.autologin?
				# auto-login feature
				User.find_by_autologin_key(cookies[:autologin])
				elsif params[:key] && accept_key_auth_actions.include?(params[:action])
				# RSS key authentication
				User.find_by_rss_key(params[:key])
				end
				end

				# check if login is globally required to access the application
				def check_if_login_required
				# no check needed if user is already logged in
				return true if User.current.logged?
				require_login if Setting.login_required?
				end

				def set_localization
				lang = begin
				if !User.current.language.blank? and GLoc.valid_languages.include? User.current.language.to_sym
				User.current.language
				elsif request.env['HTTP_ACCEPT_LANGUAGE']
				accept_lang = parse_qvalues(request.env['HTTP_ACCEPT_LANGUAGE']).first.split('-').first
				if accept_lang and !accept_lang.empty? and GLoc.valid_languages.include? accept_lang.to_sym
				accept_lang
				end
				end
				rescue
				nil
				end \|\| Setting.default_language
				set_language_if_valid(lang)
				end

				def require_login
				if !User.current.logged?
				store_location
				redirect_to :controller => "account", :action => "login"
				return false
				end
				true
				end

				def require_admin
				return unless require_login
				if !User.current.admin?
				render_403
				return false
				end
				true
				end

				# Authorize the user for the requested action
				def authorize(ctrl = params[:controller], action = params[:action])
				allowed = User.current.allowed_to?({:controller => ctrl, :action => action}, @project)
				allowed ? true : (User.current.logged? ? render_403 : require_login)
				end

				# make sure that the user is a member of the project (or admin) if project is private
				# used as a before_filter for actions that do not require any particular permission on the project
				def check_project_privacy
				unless @project.active?
				@project = nil
				render_404
				return false
				end
				return true if @project.is_public? \|\| User.current.member_of?(@project) \|\| User.current.admin?
				User.current.logged? ? render_403 : require_login
				end

				# store current uri in session.
				# return to this location by calling redirect_back_or_default
				def store_location
				session[:return_to_params] = params
				end

				# move to the last store_location call or to the passed default one
				def redirect_back_or_default(default)
				if session[:return_to_params].nil?
				redirect_to default
				else
				redirect_to session[:return_to_params]
				session[:return_to_params] = nil
				end
				end

				def render_403
				@project = nil
				render :template => "common/403", :layout => !request.xhr?, :status => 403
				return false
				end

				def render_404
				render :template => "common/404", :layout => !request.xhr?, :status => 404
				return false
				end

				def render_error(msg)
				flash.now[:error] = msg
				render :nothing => true, :layout => !request.xhr?, :status => 500
				end

				def render_feed(items, options={})
				@items = items \|\| []
				@items.sort! {\|x,y\| y.event_datetime <=> x.event_datetime }
				@title = options[:title] \|\| Setting.app_title
				render :template => "common/feed.atom.rxml", :layout => false, :content_type => 'application/atom+xml'
				end

				def self.accept_key_auth(*actions)
				actions = actions.flatten.map(&:to_s)
				write_inheritable_attribute('accept_key_auth_actions', actions)
				end

				def accept_key_auth_actions
				self.class.read_inheritable_attribute('accept_key_auth_actions') \|\| []
				end

				# TODO: move to model
				def attach_files(obj, files)
				attachments = []
				if files && files.is_a?(Array)
				files.each do \|file\|
				next unless file.size > 0
				a = Attachment.create(:container => obj, :file => file, :author => User.current)
				attachments << a unless a.new_record?
				end
				end
				attachments
				end

				# Returns the number of objects that should be displayed
				# on the paginated list
				def per_page_option
				per_page = nil
				if params[:per_page] && Setting.per_page_options_array.include?(params[:per_page].to_s.to_i)
				per_page = params[:per_page].to_s.to_i
				session[:per_page] = per_page
				elsif session[:per_page]
				per_page = session[:per_page]
				else
				per_page = Setting.per_page_options_array.first \|\| 25
				end
				per_page
				end

				# qvalues http header parser
				# code taken from webrick
				def parse_qvalues(value)
				tmp = []
				if value
				parts = value.split(/,\s*/)
				parts.each {\|part\|
				if m = %r{^([^\s,]+?)(?:;\s*q=(\d+(?:\.\d+)?))?$}.match(part)
				val = m[1]
				q = (m[2] or 1).to_f
				tmp.push([val, q])
				end
				}
				tmp = tmp.sort_by{\|val, q\| -q}
				tmp.collect!{\|val, q\| val}
				end
				return tmp
				end

				# Returns a string that can be used as filename value in Content-Disposition header
				def filename_for_content_disposition(name)
				request.env['HTTP_USER_AGENT'] =~ %r{MSIE} ? ERB::Util.url_encode(name) : name
				end
				end