jro_apps/redmine Files · app/controllers/attachments_controller.rb

Upgraded to Rails 2.3.4 (#3597)...

Upgraded to Rails 2.3.4 (#3597) * Ran the Rails upgrade * Upgraded to Rails Engines 2.3.2 * Added a plugin to let Engines override application views. * Converted tests to use the new classes: ** ActionController::TestCase for functional ** ActiveSupport::TestCase for units * Converted ActiveRecord::Error message to a string. * ActiveRecord grouping returns an ordered hash which doesn't have #sort! * Updated the I18n storage_units format. * Added some default initializers from a fresh rails app * Changed the order of check_box_tags and hidden_field_tags. The hidden tag needs to appear first in Rails 2.3, otherwise it will override any value in the check_box_tag. * Removed the custom handler for when the cookie store is tampered with. Rails 2.3 removed the TamperedWithCookie exception and instead Rails will not load the data from it when it's been tampered with (e.g. no user login). * Fixed mail layouts, 2.3 has problems with implicit multipart emails that use layouts. Also removed some custom Redmine mailer code. * Fixed a bug that occurred in tests where the "required" span tag would be added to the :field_status translation. This resulted in an email string of: <li>Status<span class="required"> *</span><span class="required"> *</span> Instead of: <li>Status: New</li> git-svn-id: svn+ssh://rubyforge.org/var/svn/redmine/trunk@2887 e93f8b46-1217-0410-a6f0-8f06a7374b81

Jean-Philippe Lang - - Load All Authors

File last commit:

r2600:15a14e55cdb9


                r2773:7b0cb6aba871

Download file

             attachments_controller.rb
        
                    79 lines
            
             | 2.7 KiB
            
                | text/x-ruby
            
             |
                RubyLexer
            
             / app / controllers / attachments_controller.rb
          
                    History
                
                 |
                  Annotation
                 | Raw
                 |Copy content
                 |Copy permalink

      # Redmine - project management software

      # Copyright (C) 2006-2008  Jean-Philippe Lang

      #

      # This program is free software; you can redistribute it and/or

      # modify it under the terms of the GNU General Public License

      # as published by the Free Software Foundation; either version 2

      # of the License, or (at your option) any later version.

      # 

      # This program is distributed in the hope that it will be useful,

      # but WITHOUT ANY WARRANTY; without even the implied warranty of

      # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

      # GNU General Public License for more details.

      # 

      # You should have received a copy of the GNU General Public License

      # along with this program; if not, write to the Free Software

      # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

      class AttachmentsController < ApplicationController

        before_filter :find_project

        before_filter :file_readable, :read_authorize, :except => :destroy

        before_filter :delete_authorize, :only => :destroy

        verify :method => :post, :only => :destroy

        def show

          if @attachment.is_diff?

            @diff = File.new(@attachment.diskfile, "rb").read

            render :action => 'diff'

          elsif @attachment.is_text? && @attachment.filesize <= Setting.file_max_size_displayed.to_i.kilobyte

            @content = File.new(@attachment.diskfile, "rb").read

            render :action => 'file'

          else

            download

          end

        end

        def download

          if @attachment.container.is_a?(Version) || @attachment.container.is_a?(Project)

            @attachment.increment_download

          end

          # images are sent inline

          send_file @attachment.diskfile, :filename => filename_for_content_disposition(@attachment.filename),

                                          :type => @attachment.content_type, 

                                          :disposition => (@attachment.image? ? 'inline' : 'attachment')

        end

        def destroy

          # Make sure association callbacks are called

          @attachment.container.attachments.delete(@attachment)

          redirect_to :back

        rescue ::ActionController::RedirectBackError

          redirect_to :controller => 'projects', :action => 'show', :id => @project

        end

      private

        def find_project

          @attachment = Attachment.find(params[:id])

          # Show 404 if the filename in the url is wrong

          raise ActiveRecord::RecordNotFound if params[:filename] && params[:filename] != @attachment.filename

          @project = @attachment.project

        rescue ActiveRecord::RecordNotFound

          render_404

        end

        # Checks that the file exists and is readable

        def file_readable

          @attachment.readable? ? true : render_404

        end

        def read_authorize

          @attachment.visible? ? true : deny_access

        end

        def delete_authorize

          @attachment.deletable? ? true : deny_access

        end

      end

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

				# Redmine - project management software
				# Copyright (C) 2006-2008 Jean-Philippe Lang
				#
				# This program is free software; you can redistribute it and/or
				# modify it under the terms of the GNU General Public License
				# as published by the Free Software Foundation; either version 2
				# of the License, or (at your option) any later version.
				#
				# This program is distributed in the hope that it will be useful,
				# but WITHOUT ANY WARRANTY; without even the implied warranty of
				# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
				# GNU General Public License for more details.
				#
				# You should have received a copy of the GNU General Public License
				# along with this program; if not, write to the Free Software
				# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.

				class AttachmentsController < ApplicationController
				before_filter :find_project
				before_filter :file_readable, :read_authorize, :except => :destroy
				before_filter :delete_authorize, :only => :destroy

				verify :method => :post, :only => :destroy

				def show
				if @attachment.is_diff?
				@diff = File.new(@attachment.diskfile, "rb").read
				render :action => 'diff'
				elsif @attachment.is_text? && @attachment.filesize <= Setting.file_max_size_displayed.to_i.kilobyte
				@content = File.new(@attachment.diskfile, "rb").read
				render :action => 'file'
				else
				download
				end
				end

				def download
				if @attachment.container.is_a?(Version) \|\| @attachment.container.is_a?(Project)
				@attachment.increment_download
				end

				# images are sent inline
				send_file @attachment.diskfile, :filename => filename_for_content_disposition(@attachment.filename),
				:type => @attachment.content_type,
				:disposition => (@attachment.image? ? 'inline' : 'attachment')

				end

				def destroy
				# Make sure association callbacks are called
				@attachment.container.attachments.delete(@attachment)
				redirect_to :back
				rescue ::ActionController::RedirectBackError
				redirect_to :controller => 'projects', :action => 'show', :id => @project
				end

				private
				def find_project
				@attachment = Attachment.find(params[:id])
				# Show 404 if the filename in the url is wrong
				raise ActiveRecord::RecordNotFound if params[:filename] && params[:filename] != @attachment.filename
				@project = @attachment.project
				rescue ActiveRecord::RecordNotFound
				render_404
				end

				# Checks that the file exists and is readable
				def file_readable
				@attachment.readable? ? true : render_404
				end

				def read_authorize
				@attachment.visible? ? true : deny_access
				end

				def delete_authorize
				@attachment.deletable? ? true : deny_access
				end
				end