SoundSoftware Code Site

# Redmine - project management software

#

# This program is free software; you can redistribute it and/or

# modify it under the terms of the GNU General Public License

# as published by the Free Software Foundation; either version 2

# of the License, or (at your option) any later version.

# This program is distributed in the hope that it will be useful,

# but WITHOUT ANY WARRANTY; without even the implied warranty of

# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

# GNU General Public License for more details.

# You should have received a copy of the GNU General Public License

# along with this program; if not, write to the Free Software

# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

class AccountController < ApplicationController

  helper :custom_fields

  # prevents login action to be filtered by check_if_login_required application scope filter

  skip_before_filter :check_if_login_required

    logout_user

    redirect_to home_url

  end

  # Enable user to choose a new password

  def lost_password

    redirect_to(home_url) && return unless Setting.lost_password?

          flash[:notice] = l(:notice_account_password_updated)

          redirect_to :action => 'login'

          return

      end

      render :template => "account/password_recovery"

      return

      end

    end

  end

  # User self-registration

  def register

    redirect_to(home_url) && return unless Setting.self_registration? || session[:auth_source_registration]

      end

    end

  end

  # Token based account activation

  def activate

    redirect_to(home_url) && return unless Setting.self_registration? && params[:token]

    end

    redirect_to :action => 'login'

  end

  private

  def logout_user

    if User.current.logged?

      cookies.delete :autologin

      self.logged_user = nil

    end

  end

  def authenticate_user

    if Setting.openid? && using_open_id?

      open_id_authenticate(params[:openid_url])

    end

  end

  def open_id_authenticate(openid_url)

    authenticate_with_open_id(openid_url, :required => [:nickname, :fullname, :email], :return_to => signin_url) do |result, identity_url, registration|

      if result.successful?

            register_manually_by_administrator(user) do

              onthefly_creation_failed(user)

            end

        else

          # Existing record

          if user.active?

      end

    end

  end

  def successful_authentication(user)

    # Valid user

    self.logged_user = user

    call_hook(:controller_account_success_authentication_after, {:user => user })

    redirect_back_or_default :controller => 'my', :action => 'page'

  end

  def set_autologin_cookie(user)

    token = Token.create(:user => user, :action => 'autologin')

    cookie_name = Redmine::Configuration['autologin_cookie_name'] || 'autologin'

      yield if block_given?

    end

  end

  # Automatically register a user

  #

  # Pass a block for behavior when a user fails to save

      yield if block_given?

    end

  end

  # Manual activation by the administrator

  #

  # Pass a block for behavior when a user fails to save

#

# This program is free software; you can redistribute it and/or

# modify it under the terms of the GNU General Public License

# as published by the Free Software Foundation; either version 2

# of the License, or (at your option) any later version.

# This program is distributed in the hope that it will be useful,

# but WITHOUT ANY WARRANTY; without even the implied warranty of

# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

# GNU General Public License for more details.

# You should have received a copy of the GNU General Public License

# along with this program; if not, write to the Free Software

# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  layout 'base'

  exempt_from_layout 'builder', 'rsb'

  # Remove broken cookie after upgrade from 0.8.x (#4292)

  # See https://rails.lighthouseapp.com/projects/8994/tickets/3360

  # TODO: remove it when Rails is fixed

  before_filter :user_setup, :check_if_login_required, :set_localization

  filter_parameter_logging :password

  rescue_from ActionController::InvalidAuthenticityToken, :with => :invalid_authenticity_token

  rescue_from ::Unauthorized, :with => :deny_access

    render_404 unless @object.present?

    @project = @object.project

  end

  def find_model_object

      if @project.is_public? || User.current.member_of?(@project) || User.current.admin?

        true

      else

      end

    else

      @project = nil

      format.json { head @status }

    end

  end

  # Picks which layout to use based on the request

  #

    @items.sort! {|x,y| y.event_datetime <=> x.event_datetime }

    @items = @items.slice(0, Setting.feeds_limit.to_i)

    @title = options[:title] || Setting.app_title

  end

  # TODO: remove in Redmine 1.4

  def self.accept_key_auth(*actions)

    ActiveSupport::Deprecation.warn "ApplicationController.accept_key_auth is deprecated and will be removed in Redmine 1.4. Use accept_rss_auth (or accept_api_auth) instead."

    ActiveSupport::Deprecation.warn "ApplicationController.accept_key_auth_actions is deprecated and will be removed in Redmine 1.4. Use accept_rss_auth (or accept_api_auth) instead."

    self.class.accept_rss_auth

  end

  def self.accept_rss_auth(*actions)

    if actions.any?

      write_inheritable_attribute('accept_rss_auth_actions', actions)

      read_inheritable_attribute('accept_rss_auth_actions') || []

    end

  end

  def accept_rss_auth?(action=action_name)

    self.class.accept_rss_auth.include?(action.to_sym)

  end

  def self.accept_api_auth(*actions)

    if actions.any?

      write_inheritable_attribute('accept_api_auth_actions', actions)

      read_inheritable_attribute('accept_api_auth_actions') || []

    end

  end

  def accept_api_auth?(action=action_name)

    self.class.accept_api_auth.include?(action.to_sym)

  end

    render_error "An error occurred while executing the query and has been logged. Please report this error to your Redmine administrator."

  end

  # Renders API response on validation failure

  def render_validation_errors(object)

    options = { :status => :unprocessable_entity, :layout => false }

  before_filter :delete_authorize, :only => :destroy

  before_filter :active_authorize, :only => :toggle_active

  def show

    end

  end

  end

  def destroy

    # Make sure association callbacks are called

    @attachment.container.attachments.delete(@attachment)

#

# This program is free software; you can redistribute it and/or

# modify it under the terms of the GNU General Public License

# as published by the Free Software Foundation; either version 2

# of the License, or (at your option) any later version.

# This program is distributed in the hope that it will be useful,

# but WITHOUT ANY WARRANTY; without even the implied warranty of

# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

# GNU General Public License for more details.

# You should have received a copy of the GNU General Public License

# along with this program; if not, write to the Free Software

# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

class AuthSourcesController < ApplicationController

  layout 'admin'

  before_filter :require_admin

  # GETs should be safe (see http://www.w3.org/2001/tag/doc/whenToUseGet.html)

      render 'auth_sources/edit'

    end

  end

  def test_connection

    @auth_method = AuthSource.find(params[:id])

    begin

class AutoCompletesController < ApplicationController

  before_filter :find_project

  def issues

    @issues = []

    q = params[:q].to_s

# modify it under the terms of the GNU General Public License

# as published by the Free Software Foundation; either version 2

# of the License, or (at your option) any later version.

# This program is distributed in the hope that it will be useful,

# but WITHOUT ANY WARRANTY; without even the implied warranty of

# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

# GNU General Public License for more details.

# You should have received a copy of the GNU General Public License

# along with this program; if not, write to the Free Software

# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  include SortHelper

  helper :watchers

  include WatchersHelper

  def index

    @boards = @project.boards

    # show the board if there is only one

        sort_update	'created_on' => "#{Message.table_name}.created_on",

                    'replies' => "#{Message.table_name}.replies_count",

                    'updated_on' => "#{Message.table_name}.updated_on"

        @topic_count = @board.topics.count

        @topic_pages = Paginator.new self, @topic_count, per_page_option, params['page']

        @topics =  @board.topics.find :all, :order => ["#{Message.table_name}.sticky DESC", sort_clause].compact.join(', '),

      }

    end

  end

  verify :method => :post, :only => [ :destroy ], :redirect_to => { :action => :index }

  def new

    @board.destroy

    redirect_to_settings_in_projects

  end

private

  def redirect_to_settings_in_projects

    redirect_to :controller => 'projects', :action => 'settings', :id => @project, :tab => 'boards'

# modify it under the terms of the GNU General Public License

# as published by the Free Software Foundation; either version 2

# of the License, or (at your option) any later version.

# This program is distributed in the hope that it will be useful,

# but WITHOUT ANY WARRANTY; without even the implied warranty of

# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

# GNU General Public License for more details.

# You should have received a copy of the GNU General Public License

# along with this program; if not, write to the Free Software

# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

      @year = params[:year].to_i

      if params[:month] and params[:month].to_i > 0 and params[:month].to_i < 13

        @month = params[:month].to_i

    end

    @year ||= Date.today.year

    @month ||= Date.today.month

    @calendar = Redmine::Helpers::Calendar.new(Date.civil(@year, @month, 1), current_language, :month)

    retrieve_query

    @query.group_by = nil

                              :conditions => ["((start_date BETWEEN ? AND ?) OR (due_date BETWEEN ? AND ?))", @calendar.startdt, @calendar.enddt, @calendar.startdt, @calendar.enddt]

                              )

      events += @query.versions(:conditions => ["effective_date BETWEEN ? AND ?", @calendar.startdt, @calendar.enddt])

      @calendar.events = events

    end

    render :action => 'show', :layout => false if request.xhr?

  end

end

    if @news.comments << @comment

      flash[:notice] = l(:label_comment_added)

    end

    redirect_to :controller => 'news', :action => 'show', :id => @news

  end

    @comment = nil

    @news

  end

end

class ContextMenusController < ApplicationController

  helper :watchers

  helper :issues

  def issues

    @issues = Issue.visible.all(:conditions => {:id => params[:ids]}, :include => :project)

    if (@issues.size == 1)

      @issue = @issues.first

      @allowed_statuses = @issue.new_statuses_allowed_to(User.current)

            :delete => User.current.allowed_to?(:delete_issues, @projects)

            }

    if @project

      @trackers = @project.trackers

    else

      #when multiple projects, we only keep the intersection of each set

      @assignables = @projects.map(&:assignable_users).inject{|memo,a| memo & a}

      @trackers = @projects.map(&:trackers).inject{|memo,t| memo & t}

    end

    @statuses = IssueStatus.find(:all, :order => 'position')

    @back = back_url

    render :layout => false

  end

    @projects = @time_entries.collect(&:project).compact.uniq

    @project = @projects.first if @projects.size == 1

    @activities = TimeEntryActivity.shared.active

            }

    @back = back_url

    render :layout => false

end

# Redmine - project management software

#

# This program is free software; you can redistribute it and/or

# modify it under the terms of the GNU General Public License

# as published by the Free Software Foundation; either version 2

# of the License, or (at your option) any later version.

# This program is distributed in the hope that it will be useful,

# but WITHOUT ANY WARRANTY; without even the implied warranty of

# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

# GNU General Public License for more details.

# You should have received a copy of the GNU General Public License

# along with this program; if not, write to the Free Software

# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

class CustomFieldsController < ApplicationController

  layout 'admin'

  before_filter :require_admin

  def index

    @custom_fields_by_type = CustomField.find(:all).group_by {|f| f.class.name }

    @tab = params[:tab] || 'IssueCustomField'

  end

  def new

    @custom_field = begin

      if params[:type].to_s.match(/.+CustomField$/)

    rescue

    end

    (redirect_to(:action => 'index'); return) unless @custom_field.is_a?(CustomField)

    if request.post? and @custom_field.save

      flash[:notice] = l(:notice_successful_create)

      call_hook(:controller_custom_fields_new_after_save, :params => params, :custom_field => @custom_field)

      @trackers = Tracker.find(:all, :order => 'position')

    end

  end

  def destroy

    @custom_field = CustomField.find(params[:id]).destroy

    redirect_to :action => 'index', :tab => @custom_field.class.name

#

# This program is free software; you can redistribute it and/or

# modify it under the terms of the GNU General Public License

# as published by the Free Software Foundation; either version 2

# of the License, or (at your option) any later version.

# This program is distributed in the hope that it will be useful,

# but WITHOUT ANY WARRANTY; without even the implied warranty of

# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

# GNU General Public License for more details.

# You should have received a copy of the GNU General Public License

# along with this program; if not, write to the Free Software

# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  before_filter :find_model_object, :except => [:index, :new]

  before_filter :find_project_from_association, :except => [:index, :new]

  before_filter :authorize

  helper :attachments

  def index

    @sort_by = %w(category date title author).include?(params[:sort_by]) ? params[:sort_by] : 'category'

    documents = @project.documents.find :all, :include => [:attachments, :category]

    @document = @project.documents.build

    render :layout => false if request.xhr?

  end

  def show

    @attachments = @document.attachments.find(:all, :order => "created_on DESC")

  end

  def new

    if request.post? and @document.save	

      attachments = Attachment.attach_files(@document, params[:attachments])

      render_attachment_warning_if_needed(@document)

      redirect_to :action => 'index', :project_id => @project

    end

  end

  def edit

    if request.post? and @document.update_attributes(params[:document])

      flash[:notice] = l(:notice_successful_update)

      redirect_to :action => 'show', :id => @document

    end

  def destroy

    @document.destroy

    redirect_to :controller => 'documents', :action => 'index', :project_id => @project

  end

  def add_attachment

    attachments = Attachment.attach_files(@document, params[:attachments])

    render_attachment_warning_if_needed(@document)

#

# This program is free software; you can redistribute it and/or

# modify it under the terms of the GNU General Public License

# as published by the Free Software Foundation; either version 2

# of the License, or (at your option) any later version.

# This program is distributed in the hope that it will be useful,

# but WITHOUT ANY WARRANTY; without even the implied warranty of

# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

# GNU General Public License for more details.

# You should have received a copy of the GNU General Public License

# along with this program; if not, write to the Free Software

# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

class EnumerationsController < ApplicationController

  layout 'admin'

  before_filter :require_admin

  helper :custom_fields

  include CustomFieldsHelper

  def index

  end

  verify :method => :post, :only => [ :destroy, :create, :update ],

  def new

    begin

      @enumeration = params[:type].constantize.new

    rescue NameError

    end

  end

    @enumeration.type = params[:enumeration][:type]

    if @enumeration.save

      flash[:notice] = l(:notice_successful_create)

    else

      render :action => 'new'

    end

    @enumeration.type = params[:enumeration][:type] if params[:enumeration][:type]

    if @enumeration.update_attributes(params[:enumeration])

      flash[:notice] = l(:notice_successful_update)

    else

      render :action => 'edit'

    end

  end

  def destroy

    @enumeration = Enumeration.find(params[:id])

    if !@enumeration.in_use?

# modify it under the terms of the GNU General Public License

# as published by the Free Software Foundation; either version 2

# of the License, or (at your option) any later version.

# This program is distributed in the hope that it will be useful,

# but WITHOUT ANY WARRANTY; without even the implied warranty of

# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

# GNU General Public License for more details.

# You should have received a copy of the GNU General Public License

# along with this program; if not, write to the Free Software

# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  helper :sort

  include SortHelper

  include Redmine::Export::PDF

  def show

    @gantt = Redmine::Helpers::Gantt.new(params)

    @gantt.project = @project

    retrieve_query

    @query.group_by = nil

    @gantt.query = @query if @query.valid?

    basename = (@project ? "#{@project.identifier}-" : '') + 'gantt'

    respond_to do |format|

      format.html { render :action => "show", :layout => !request.xhr? }

      format.png  { send_data(@gantt.to_image, :disposition => 'inline', :type => 'image/png', :filename => "#{basename}.png") } if @gantt.respond_to?('to_image')

# Redmine - project management software

#

# This program is free software; you can redistribute it and/or

# modify it under the terms of the GNU General Public License

# as published by the Free Software Foundation; either version 2

# of the License, or (at your option) any later version.

# This program is distributed in the hope that it will be useful,

# but WITHOUT ANY WARRANTY; without even the implied warranty of

# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

# GNU General Public License for more details.

# You should have received a copy of the GNU General Public License

# along with this program; if not, write to the Free Software

# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

class GroupsController < ApplicationController

  layout 'admin'

  before_filter :require_admin

  helper :custom_fields

  # GET /groups

  # GET /groups.xml

  def index

  # GET /groups/new.xml

  def new

    @group = Group.new

    respond_to do |format|

      format.html # new.html.erb

      format.xml  { render :xml => @group }

    respond_to do |format|

      if @group.save

        format.xml  { render :xml => @group, :status => :created, :location => @group }

      else

        format.html { render :action => "new" }

      format.xml  { head :ok }

    end

  end

  def add_users

    @group = Group.find(params[:id])

    users = User.find_all_by_id(params[:user_ids])

    @group.users << users if request.post?

    respond_to do |format|

      format.html { redirect_to :controller => 'groups', :action => 'edit', :id => @group, :tab => 'users' }

          page.replace_html "tab-content-users", :partial => 'groups/users'

          users.each {|user| page.visual_effect(:highlight, "user-#{user.id}") }

        }

      }

    end

  end

  def remove_user

    @group = Group.find(params[:id])

    respond_to do |format|

      format.html { redirect_to :controller => 'groups', :action => 'edit', :id => @group, :tab => 'users' }

      format.js { render(:update) {|page| page.replace_html "tab-content-users", :partial => 'groups/users'} }

    end

  end

  def autocomplete_for_user

    @group = Group.find(params[:id])

    @users = User.active.not_in_group(@group).like(params[:q]).all(:limit => 100)

    render :layout => false

  end

  def edit_membership

    @group = Group.find(params[:id])

    @membership = Member.edit_membership(params[:membership_id], params[:membership], @group)

      end

    end

  end

  def destroy_membership

    @group = Group.find(params[:id])

    Member.find(params[:membership_id]).destroy if request.post?

#

# This program is free software; you can redistribute it and/or

# modify it under the terms of the GNU General Public License

# as published by the Free Software Foundation; either version 2

# of the License, or (at your option) any later version.

# This program is distributed in the hope that it will be useful,

# but WITHOUT ANY WARRANTY; without even the implied warranty of

# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

# GNU General Public License for more details.

# You should have received a copy of the GNU General Public License

# along with this program; if not, write to the Free Software

# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

class IssueCategoriesController < ApplicationController

  menu_item :settings

  model_object IssueCategory

  before_filter :authorize

  def new

        end

        end

      end

    end

  end

  def edit

    end

  end

  def destroy

    @issue_count = @category.issues.size

      @category.destroy(reassign_to)

      return

    end

    @categories = @project.issue_categories - [@category]

  def find_model_object

    super

    @category = @object

  def find_project

    @project = Project.find(params[:project_id])

  rescue ActiveRecord::RecordNotFound

class IssueMovesController < ApplicationController

  default_search_scope :issues

  before_filter :find_issues, :check_project_uniqueness

  before_filter :authorize

# Redmine - project management software

#

# This program is free software; you can redistribute it and/or

# modify it under the terms of the GNU General Public License

# as published by the Free Software Foundation; either version 2

# of the License, or (at your option) any later version.

# This program is distributed in the hope that it will be useful,

# but WITHOUT ANY WARRANTY; without even the implied warranty of

# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

# GNU General Public License for more details.

# You should have received a copy of the GNU General Public License

# along with this program; if not, write to the Free Software

# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

class IssueRelationsController < ApplicationController

    @relation = IssueRelation.new(params[:relation])

    @relation.issue_from = @issue

    if params[:relation] && m = params[:relation][:issue_to_id].to_s.match(/^#?(\d+)$/)

      @relation.issue_to = Issue.visible.find_by_id(m[1].to_i)

    end

    respond_to do |format|

      format.html { redirect_to :controller => 'issues', :action => 'show', :id => @issue }

      format.js do

          end

        end

      end

      }

    end

  end

private

  def find_issue

    @issue = @object = Issue.find(params[:issue_id])

  rescue ActiveRecord::RecordNotFound

    render_404

  end

end

#

# This program is free software; you can redistribute it and/or

# modify it under the terms of the GNU General Public License

# as published by the Free Software Foundation; either version 2

# of the License, or (at your option) any later version.

# This program is distributed in the hope that it will be useful,

# but WITHOUT ANY WARRANTY; without even the implied warranty of

# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

# GNU General Public License for more details.

# You should have received a copy of the GNU General Public License

# along with this program; if not, write to the Free Software

# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

class IssueStatusesController < ApplicationController

  layout 'admin'

  def index

  end

  def new

  def create

    @issue_status = IssueStatus.new(params[:issue_status])

      flash[:notice] = l(:notice_successful_create)

      redirect_to :action => 'index'

    else

  def update

    @issue_status = IssueStatus.find(params[:id])

      flash[:notice] = l(:notice_successful_update)

      redirect_to :action => 'index'

    else

    end

  end

  def destroy

    IssueStatus.find(params[:id]).destroy

    redirect_to :action => 'index'

    flash[:error] = l(:error_unable_delete_issue_status)

    redirect_to :action => 'index'

  end  	

  def update_issue_done_ratio

      flash[:notice] = l(:notice_issue_done_ratios_updated)

    else

      flash[:error] =  l(:error_issue_done_ratios_not_updated)

      @issue_count_by_group = @query.issue_count_by_group

      respond_to do |format|

        format.atom { render_feed(@issues, :title => "#{@project || Setting.app_title}: #{l(:label_issue_plural)}") }

        format.pdf  { send_data(issues_to_pdf(@issues, @project, @query), :type => 'application/pdf', :filename => 'export.pdf') }

      end

    else

    end

  rescue ActiveRecord::RecordNotFound

    render_404

    @relations = @issue.relations.select {|r| r.other_issue(@issue) && r.other_issue(@issue).visible? }

    @allowed_statuses = @issue.new_statuses_allowed_to(User.current)

    @edit_allowed = User.current.allowed_to?(:edit_issues, @project)

    @time_entry = TimeEntry.new(:issue => @issue, :project => @issue.project)

    respond_to do |format|

      format.api

      format.atom { render :template => 'journals/index', :layout => false, :content_type => 'application/atom+xml' }

      format.pdf  { send_data(issue_to_pdf(@issue), :type => 'application/pdf', :filename => "#{@project.identifier}-#{@issue.id}.pdf") }

    call_hook(:controller_issues_new_before_save, { :params => params, :issue => @issue })

    if @issue.save

      attachments = Attachment.attach_files(@issue, params[:attachments])

      call_hook(:controller_issues_new_after_save, { :params => params, :issue => @issue})

      respond_to do |format|

        format.html {

          redirect_to(params[:continue] ?  { :action => 'new', :project_id => @project, :issue => {:tracker_id => @issue.tracker, :parent_issue_id => @issue.parent_issue_id}.reject {|k,v| v.nil?} } :

                      { :action => 'show', :id => @issue })

        }

  # TODO: Refactor, not everything in here is needed by #edit

  def update_issue_from_params

    @allowed_statuses = @issue.new_statuses_allowed_to(User.current)

    @edit_allowed = User.current.allowed_to?(:edit_issues, @project)

    @time_entry = TimeEntry.new(:issue => @issue, :project => @issue.project)

    @time_entry.attributes = params[:time_entry]

      render_error l(:error_no_tracker_in_project)

      return false

    end

    if params[:issue].is_a?(Hash)

      @issue.safe_attributes = params[:issue]

      if User.current.allowed_to?(:add_issue_watchers, @project) && @issue.new_record?

        @issue.watcher_user_ids = params[:issue]['watcher_user_ids']

      end

    end

    @allowed_statuses = @issue.new_statuses_allowed_to(User.current, true)

  end

# modify it under the terms of the GNU General Public License

# as published by the Free Software Foundation; either version 2

# of the License, or (at your option) any later version.

# This program is distributed in the hope that it will be useful,

# but WITHOUT ANY WARRANTY; without even the implied warranty of

# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

# GNU General Public License for more details.

# You should have received a copy of the GNU General Public License

# along with this program; if not, write to the Free Software

# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  before_filter :authorize, :only => [:new, :edit, :diff]

  accept_rss_auth :index

  menu_item :issues

  helper :issues

  helper :custom_fields

  helper :queries

    retrieve_query

    sort_init 'id', 'desc'

    sort_update(@query.sortable_columns)

    if @query.valid?

                                  :limit => 25)

    end

    @title = (@project ? @project.name : Setting.app_title) + ": " + (@query.new_record? ? l(:label_changes_details) : @query.name)

  rescue ActiveRecord::RecordNotFound

    render_404

  end

  def diff

    @issue = @journal.issue

    if params[:detail_id].present?

    (render_404; return false) unless @issue && @detail

    @diff = Redmine::Helpers::Diff.new(@detail.value, @detail.old_value)

  end

  def new

    journal = Journal.find(params[:journal_id]) if params[:journal_id]

    if journal

    text = text.to_s.strip.gsub(%r{<pre>((.|\s)*?)</pre>}m, '[...]')

    content = "#{ll(Setting.default_language, :text_user_wrote, user)}\n> "

    content << text.gsub(/(\r?\n|\r\n?)/, "\n> ") + "\n\n"

    render(:update) { |page|

      page.<< "$('notes').value = \"#{escape_javascript content}\";"

      page.show 'update'

      page << "$('notes').scrollTop = $('notes').scrollHeight - $('notes').clientHeight;"

    }

  end

  def edit

    (render_403; return false) unless @journal.editable_by?(User.current)

    if request.post?

      respond_to do |format|

        format.html {

          # TODO: implement non-JS journal update

        }

        format.js

      end