Chris@909: # Redmine - project management software Chris@909: # Copyright (C) 2006-2011 Jean-Philippe Lang Chris@909: # Chris@909: # This program is free software; you can redistribute it and/or Chris@909: # modify it under the terms of the GNU General Public License Chris@909: # as published by the Free Software Foundation; either version 2 Chris@909: # of the License, or (at your option) any later version. Chris@909: # Chris@909: # This program is distributed in the hope that it will be useful, Chris@909: # but WITHOUT ANY WARRANTY; without even the implied warranty of Chris@909: # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the Chris@909: # GNU General Public License for more details. Chris@909: # Chris@909: # You should have received a copy of the GNU General Public License Chris@909: # along with this program; if not, write to the Free Software Chris@909: # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. Chris@909: Chris@909: class ProjectsController < ApplicationController Chris@909: menu_item :overview Chris@909: menu_item :roadmap, :only => :roadmap Chris@909: menu_item :settings, :only => :settings Chris@909: Chris@909: before_filter :find_project, :except => [ :index, :list, :new, :create, :copy ] Chris@909: before_filter :authorize, :except => [ :index, :list, :new, :create, :copy, :archive, :unarchive, :destroy] Chris@909: before_filter :authorize_global, :only => [:new, :create] Chris@909: before_filter :require_admin, :only => [ :copy, :archive, :unarchive, :destroy ] Chris@909: accept_rss_auth :index Chris@909: accept_api_auth :index, :show, :create, :update, :destroy Chris@909: Chris@909: after_filter :only => [:create, :edit, :update, :archive, :unarchive, :destroy] do |controller| Chris@909: if controller.request.post? Chris@909: controller.send :expire_action, :controller => 'welcome', :action => 'robots.txt' Chris@909: end Chris@909: end Chris@909: Chris@909: helper :sort Chris@909: include SortHelper Chris@909: helper :custom_fields Chris@909: include CustomFieldsHelper Chris@909: helper :issues Chris@909: helper :queries Chris@909: include QueriesHelper Chris@909: helper :repositories Chris@909: include RepositoriesHelper Chris@909: include ProjectsHelper Chris@909: Chris@909: # Lists visible projects Chris@909: def index Chris@909: respond_to do |format| Chris@909: format.html { Chris@909: @projects = Project.visible.find(:all, :order => 'lft') Chris@909: } Chris@909: format.api { Chris@909: @offset, @limit = api_offset_and_limit Chris@909: @project_count = Project.visible.count Chris@909: @projects = Project.visible.all(:offset => @offset, :limit => @limit, :order => 'lft') Chris@909: } Chris@909: format.atom { Chris@909: projects = Project.visible.find(:all, :order => 'created_on DESC', Chris@909: :limit => Setting.feeds_limit.to_i) Chris@909: render_feed(projects, :title => "#{Setting.app_title}: #{l(:label_project_latest)}") Chris@909: } Chris@909: end Chris@909: end Chris@909: Chris@909: def new Chris@909: @issue_custom_fields = IssueCustomField.find(:all, :order => "#{CustomField.table_name}.position") Chris@909: @trackers = Tracker.all Chris@909: @project = Project.new(params[:project]) Chris@909: end Chris@909: Chris@909: verify :method => :post, :only => :create, :render => {:nothing => true, :status => :method_not_allowed } Chris@909: def create Chris@909: @issue_custom_fields = IssueCustomField.find(:all, :order => "#{CustomField.table_name}.position") Chris@909: @trackers = Tracker.all Chris@909: @project = Project.new Chris@909: @project.safe_attributes = params[:project] Chris@909: Chris@909: if validate_parent_id && @project.save Chris@909: @project.set_allowed_parent!(params[:project]['parent_id']) if params[:project].has_key?('parent_id') Chris@909: # Add current user as a project member if he is not admin Chris@909: unless User.current.admin? Chris@909: r = Role.givable.find_by_id(Setting.new_project_user_role_id.to_i) || Role.givable.first Chris@909: m = Member.new(:user => User.current, :roles => [r]) Chris@909: @project.members << m Chris@909: end Chris@909: respond_to do |format| Chris@909: format.html { Chris@909: flash[:notice] = l(:notice_successful_create) Chris@909: redirect_to(params[:continue] ? Chris@909: {:controller => 'projects', :action => 'new', :project => {:parent_id => @project.parent_id}.reject {|k,v| v.nil?}} : Chris@909: {:controller => 'projects', :action => 'settings', :id => @project} Chris@909: ) Chris@909: } Chris@909: format.api { render :action => 'show', :status => :created, :location => url_for(:controller => 'projects', :action => 'show', :id => @project.id) } Chris@909: end Chris@909: else Chris@909: respond_to do |format| Chris@909: format.html { render :action => 'new' } Chris@909: format.api { render_validation_errors(@project) } Chris@909: end Chris@909: end Chris@909: Chris@909: end Chris@909: Chris@909: def copy Chris@909: @issue_custom_fields = IssueCustomField.find(:all, :order => "#{CustomField.table_name}.position") Chris@909: @trackers = Tracker.all Chris@909: @root_projects = Project.find(:all, Chris@909: :conditions => "parent_id IS NULL AND status = #{Project::STATUS_ACTIVE}", Chris@909: :order => 'name') Chris@909: @source_project = Project.find(params[:id]) Chris@909: if request.get? Chris@909: @project = Project.copy_from(@source_project) Chris@909: if @project Chris@909: @project.identifier = Project.next_identifier if Setting.sequential_project_identifiers? Chris@909: else Chris@909: redirect_to :controller => 'admin', :action => 'projects' Chris@909: end Chris@909: else Chris@909: Mailer.with_deliveries(params[:notifications] == '1') do Chris@909: @project = Project.new Chris@909: @project.safe_attributes = params[:project] Chris@909: if validate_parent_id && @project.copy(@source_project, :only => params[:only]) Chris@909: @project.set_allowed_parent!(params[:project]['parent_id']) if params[:project].has_key?('parent_id') Chris@909: flash[:notice] = l(:notice_successful_create) Chris@909: redirect_to :controller => 'projects', :action => 'settings', :id => @project Chris@909: elsif !@project.new_record? Chris@909: # Project was created Chris@909: # But some objects were not copied due to validation failures Chris@909: # (eg. issues from disabled trackers) Chris@909: # TODO: inform about that Chris@909: redirect_to :controller => 'projects', :action => 'settings', :id => @project Chris@909: end Chris@909: end Chris@909: end Chris@909: rescue ActiveRecord::RecordNotFound Chris@909: redirect_to :controller => 'admin', :action => 'projects' Chris@909: end Chris@909: Chris@909: # Show @project Chris@909: def show Chris@909: if params[:jump] Chris@909: # try to redirect to the requested menu item Chris@909: redirect_to_project_menu_item(@project, params[:jump]) && return Chris@909: end Chris@909: Chris@909: @users_by_role = @project.users_by_role Chris@909: @subprojects = @project.children.visible.all Chris@909: @news = @project.news.find(:all, :limit => 5, :include => [ :author, :project ], :order => "#{News.table_name}.created_on DESC") Chris@909: @trackers = @project.rolled_up_trackers Chris@909: Chris@909: cond = @project.project_condition(Setting.display_subprojects_issues?) Chris@909: Chris@909: @open_issues_by_tracker = Issue.visible.count(:group => :tracker, Chris@909: :include => [:project, :status, :tracker], Chris@909: :conditions => ["(#{cond}) AND #{IssueStatus.table_name}.is_closed=?", false]) Chris@909: @total_issues_by_tracker = Issue.visible.count(:group => :tracker, Chris@909: :include => [:project, :status, :tracker], Chris@909: :conditions => cond) Chris@909: Chris@909: if User.current.allowed_to?(:view_time_entries, @project) Chris@909: @total_hours = TimeEntry.visible.sum(:hours, :include => :project, :conditions => cond).to_f Chris@909: end Chris@909: Chris@909: @key = User.current.rss_key Chris@909: Chris@909: respond_to do |format| Chris@909: format.html Chris@909: format.api Chris@909: end Chris@909: end Chris@909: Chris@909: def settings Chris@909: @issue_custom_fields = IssueCustomField.find(:all, :order => "#{CustomField.table_name}.position") Chris@909: @issue_category ||= IssueCategory.new Chris@909: @member ||= @project.members.new Chris@909: @trackers = Tracker.all Chris@909: @repository ||= @project.repository Chris@909: @wiki ||= @project.wiki Chris@909: end Chris@909: Chris@909: def edit Chris@909: end Chris@909: Chris@909: # TODO: convert to PUT only Chris@909: verify :method => [:post, :put], :only => :update, :render => {:nothing => true, :status => :method_not_allowed } Chris@909: def update Chris@909: @project.safe_attributes = params[:project] Chris@909: if validate_parent_id && @project.save Chris@909: @project.set_allowed_parent!(params[:project]['parent_id']) if params[:project].has_key?('parent_id') Chris@909: respond_to do |format| Chris@909: format.html { Chris@909: flash[:notice] = l(:notice_successful_update) Chris@909: redirect_to :action => 'settings', :id => @project Chris@909: } Chris@909: format.api { head :ok } Chris@909: end Chris@909: else Chris@909: respond_to do |format| Chris@909: format.html { Chris@909: settings Chris@909: render :action => 'settings' Chris@909: } Chris@909: format.api { render_validation_errors(@project) } Chris@909: end Chris@909: end Chris@909: end Chris@909: Chris@909: verify :method => :post, :only => :modules, :render => {:nothing => true, :status => :method_not_allowed } Chris@909: def modules Chris@909: @project.enabled_module_names = params[:enabled_module_names] Chris@909: flash[:notice] = l(:notice_successful_update) Chris@909: redirect_to :action => 'settings', :id => @project, :tab => 'modules' Chris@909: end Chris@909: Chris@909: def archive Chris@909: if request.post? Chris@909: unless @project.archive Chris@909: flash[:error] = l(:error_can_not_archive_project) Chris@909: end Chris@909: end Chris@909: redirect_to(url_for(:controller => 'admin', :action => 'projects', :status => params[:status])) Chris@909: end Chris@909: Chris@909: def unarchive Chris@909: @project.unarchive if request.post? && !@project.active? Chris@909: redirect_to(url_for(:controller => 'admin', :action => 'projects', :status => params[:status])) Chris@909: end Chris@909: Chris@909: # Delete @project Chris@909: def destroy Chris@909: @project_to_destroy = @project Chris@909: if request.get? Chris@909: # display confirmation view Chris@909: else Chris@909: if api_request? || params[:confirm] Chris@909: @project_to_destroy.destroy Chris@909: respond_to do |format| Chris@909: format.html { redirect_to :controller => 'admin', :action => 'projects' } Chris@909: format.api { head :ok } Chris@909: end Chris@909: end Chris@909: end Chris@909: # hide project in layout Chris@909: @project = nil Chris@909: end Chris@909: Chris@909: private Chris@909: def find_optional_project Chris@909: return true unless params[:id] Chris@909: @project = Project.find(params[:id]) Chris@909: authorize Chris@909: rescue ActiveRecord::RecordNotFound Chris@909: render_404 Chris@909: end Chris@909: Chris@909: # Validates parent_id param according to user's permissions Chris@909: # TODO: move it to Project model in a validation that depends on User.current Chris@909: def validate_parent_id Chris@909: return true if User.current.admin? Chris@909: parent_id = params[:project] && params[:project][:parent_id] Chris@909: if parent_id || @project.new_record? Chris@909: parent = parent_id.blank? ? nil : Project.find_by_id(parent_id.to_i) Chris@909: unless @project.allowed_parents.include?(parent) Chris@909: @project.errors.add :parent_id, :invalid Chris@909: return false Chris@909: end Chris@909: end Chris@909: true Chris@909: end Chris@909: end