mirror of
https://github.com/opf/openproject.git
synced 2026-06-14 03:30:14 +00:00
Oliver Günther
252 lines
7.4 KiB
Ruby
252 lines
7.4 KiB
Ruby
# frozen_string_literal: true
|
|
|
|
#-- copyright
|
|
# OpenProject is an open source project management software.
|
|
# Copyright (C) the OpenProject GmbH
|
|
#
|
|
# This program is free software; you can redistribute it and/or
|
|
# modify it under the terms of the GNU General Public License version 3.
|
|
#
|
|
# OpenProject is a fork of ChiliProject, which is a fork of Redmine. The copyright follows:
|
|
# Copyright (C) 2006-2013 Jean-Philippe Lang
|
|
# Copyright (C) 2010-2013 the ChiliProject Team
|
|
#
|
|
# This program is free software; you can redistribute it and/or
|
|
# modify it under the terms of the GNU General Public License
|
|
# as published by the Free Software Foundation; either version 2
|
|
# of the License, or (at your option) any later version.
|
|
#
|
|
# This program is distributed in the hope that it will be useful,
|
|
# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
# GNU General Public License for more details.
|
|
#
|
|
# You should have received a copy of the GNU General Public License
|
|
# along with this program; if not, write to the Free Software
|
|
# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
|
|
#
|
|
# See COPYRIGHT and LICENSE files for more details.
|
|
#++
|
|
|
|
class MembersController < ApplicationController
|
|
include MemberHelper
|
|
|
|
before_action :find_project_by_project_id
|
|
before_action :find_member, except: %i[index create autocomplete_for_member destroy_by_principal]
|
|
before_action :authorize
|
|
|
|
def index
|
|
set_index_data!
|
|
end
|
|
|
|
def create # rubocop:disable Metrics/AbcSize
|
|
overall_result = []
|
|
|
|
find_or_create_users(send_notification: true) do |member_params|
|
|
service_call = Members::CreateService
|
|
.new(user: current_user)
|
|
.call(member_params)
|
|
|
|
overall_result.push(service_call)
|
|
end
|
|
|
|
if overall_result.empty?
|
|
flash[:error] = I18n.t("activerecord.errors.models.member.principal_blank")
|
|
redirect_to project_members_path(project_id: @project, status: "all")
|
|
elsif overall_result.all?(&:success?)
|
|
flash[:notice] = members_added_notice(overall_result.map(&:result))
|
|
|
|
redirect_to project_members_path(project_id: @project, status: "all")
|
|
else
|
|
display_error(overall_result.first, now: true)
|
|
|
|
set_index_data!
|
|
|
|
respond_to do |format|
|
|
format.html { render "index" }
|
|
end
|
|
end
|
|
end
|
|
|
|
def update
|
|
service_call = Members::UpdateService
|
|
.new(user: current_user, model: @member)
|
|
.call(permitted_params.member)
|
|
|
|
if service_call.success?
|
|
flash[:notice] = I18n.t(:notice_successful_update)
|
|
else
|
|
display_error(service_call)
|
|
end
|
|
|
|
redirect_to project_members_path(project_id: @project,
|
|
page: params[:page],
|
|
per_page: params[:per_page])
|
|
end
|
|
|
|
def destroy_by_principal # rubocop:disable Metrics/AbcSize
|
|
principal = Principal.visible.find(params[:principal_id])
|
|
|
|
service_call = Members::DeleteByPrincipalService
|
|
.new(user: current_user, project: @project, principal:)
|
|
.call(params.permit(:project, :work_package_shares_role_id))
|
|
|
|
if service_call.success?
|
|
flash[:notice] = I18n.t(:notice_member_removed, user: principal.name)
|
|
else
|
|
display_error(service_call)
|
|
end
|
|
|
|
redirect_to project_members_path(project_id: @project), status: :see_other
|
|
end
|
|
|
|
def autocomplete_for_member
|
|
type = params[:type]
|
|
@principals = possible_members(params[:q], 100, type:)
|
|
|
|
if type.nil? || type == "User"
|
|
@email = suggest_invite_via_email?(current_user, params[:q], @principals | @project.principals)
|
|
end
|
|
|
|
respond_to do |format|
|
|
format.json do
|
|
render json: build_members, escape: true
|
|
end
|
|
end
|
|
end
|
|
|
|
private
|
|
|
|
def find_member
|
|
@member = @project.members.visible.find(params[:id])
|
|
end
|
|
|
|
def authorize_for?(controller, action)
|
|
current_user.allowed_in_project?({ controller:, action: }, @project)
|
|
end
|
|
|
|
def user_allowed_to_view_emails?
|
|
current_user.allowed_globally?(:view_user_email)
|
|
end
|
|
|
|
def build_members
|
|
paths = API::V3::Utilities::PathHelper::ApiV3Path
|
|
principals = @principals.map do |principal|
|
|
member = {
|
|
id: principal.id,
|
|
name: principal.name,
|
|
href: paths.send(principal.type.underscore, principal.id)
|
|
}
|
|
member[:email] = principal.mail if user_allowed_to_view_emails?
|
|
member
|
|
end
|
|
|
|
if @email
|
|
principals << { id: @email, name: I18n.t("members.invite_by_mail", mail: @email) }
|
|
end
|
|
|
|
principals
|
|
end
|
|
|
|
def members_table_options(roles)
|
|
shared_role = WorkPackageRole.find_by(id: params[:shared_role_id])
|
|
shared_role_name = shared_role && Members::UserFilterComponent.mapped_shared_role_name(shared_role)
|
|
|
|
{
|
|
project: @project,
|
|
available_roles: roles,
|
|
authorize_update: authorize_for?("members", :update),
|
|
authorize_delete: authorize_for?("members", :destroy),
|
|
authorize_work_package_shares_view: current_user.allowed_in_project?(:view_shared_work_packages, @project),
|
|
authorize_work_package_shares_delete: current_user.allowed_in_project?(:share_work_packages, @project),
|
|
authorize_manage_user: current_user.allowed_globally?(:manage_user),
|
|
is_filtered: Members::UserFilterComponent.filtered?(params),
|
|
shared_role_name:
|
|
}
|
|
end
|
|
|
|
def members_filter_options(roles)
|
|
groups = Group.visible.sort
|
|
shares = WorkPackageRole.all
|
|
status = Members::UserFilterComponent.status_param(params)
|
|
|
|
{
|
|
groups:,
|
|
roles:,
|
|
status:,
|
|
shares:,
|
|
clear_url: project_members_path(@project),
|
|
project: @project
|
|
}
|
|
end
|
|
|
|
def suggest_invite_via_email?(user, query, visible_principals)
|
|
return false unless user_allowed_to_invite?(user)
|
|
|
|
query =~ mail_regex &&
|
|
visible_principals.none? { |p| p.mail == query || p.login == query } &&
|
|
query # finally return email
|
|
end
|
|
|
|
def mail_regex
|
|
/\A\S+@\S+\.\S+\z/
|
|
end
|
|
|
|
def set_index_data!
|
|
set_roles_and_principles!
|
|
|
|
@members = index_members
|
|
@members_table_options = members_table_options @roles
|
|
@members_filter_options = members_filter_options @roles
|
|
end
|
|
|
|
def set_roles_and_principles!
|
|
@roles = ProjectRole.givable
|
|
# Check if there is at least one principal that can be added to the project
|
|
@principals_available = possible_members("", 1)
|
|
end
|
|
|
|
def possible_members(criteria, limit, type: nil)
|
|
Principal
|
|
.visible
|
|
.possible_member(@project, type:)
|
|
.like(criteria, email: user_allowed_to_view_emails?)
|
|
.limit(limit)
|
|
end
|
|
|
|
def index_members
|
|
filters = params.slice(*Members::UserFilterComponent.filter_param_keys)
|
|
filters[:project_id] = @project.id.to_s
|
|
|
|
@members_query = Members::UserFilterComponent.query(filters)
|
|
end
|
|
|
|
def members_added_notice(members)
|
|
if members.size == 1
|
|
I18n.t(:notice_member_added, name: members.first.name)
|
|
else
|
|
I18n.t(:notice_members_added, number: members.size)
|
|
end
|
|
end
|
|
|
|
def no_create_errors?(members)
|
|
members.present? && members.map(&:errors).none?(&:any?)
|
|
end
|
|
|
|
def sort_by_groups_last(members)
|
|
group_ids = Group.where(id: members.map(&:user_id)).pluck(:id)
|
|
|
|
members.sort_by { |m| group_ids.include?(m.user_id) ? 1 : -1 }
|
|
end
|
|
|
|
def display_error(service_call, now: false)
|
|
message = service_call.errors.full_messages.compact.join(", ")
|
|
|
|
if now
|
|
flash.now[:error] = message
|
|
else
|
|
flash[:error] = message
|
|
end
|
|
end
|
|
end
|