VIEWS-55 Check user authorization on masterproject

author simonbrandhof <simon.brandhof@gmail.com>

Mon, 18 Oct 2010 12:11:58 +0000 (12:11 +0000)

committer simonbrandhof <simon.brandhof@gmail.com>

Mon, 18 Oct 2010 12:11:58 +0000 (12:11 +0000)
author simonbrandhof <simon.brandhof@gmail.com>
Mon, 18 Oct 2010 12:11:58 +0000 (12:11 +0000)
committer simonbrandhof <simon.brandhof@gmail.com>
Mon, 18 Oct 2010 12:11:58 +0000 (12:11 +0000)
diff --git a/sonar-server/src/main/webapp/WEB-INF/app/controllers/filters_controller.rb b/sonar-server/src/main/webapp/WEB-INF/app/controllers/filters_controller.rb

index e888fcd4930809feedecca4182f93dc5f584fc48..7396fbb9d5ba5d67a8844d1d737314f63a0c1705 100644 (file)
--- a/sonar-server/src/main/webapp/WEB-INF/app/controllers/filters_controller.rb
+++ b/sonar-server/src/main/webapp/WEB-INF/app/controllers/filters_controller.rb
@@ -459,6 +459,7 @@ class FiltersController < ApplicationController
  
    def load_masterproject()
      @masterproject=Snapshot.find(:first, :include => 'project', :conditions => ['projects.kee=? and islast=?', 'MASTER_PROJECT', true])
+    @masterproject=nil if @masterproject && !(has_role?(:user, @masterproject))
    end
  
    def load_active_filter()
author	simonbrandhof <simon.brandhof@gmail.com>
	Mon, 18 Oct 2010 12:11:58 +0000 (12:11 +0000)
committer	simonbrandhof <simon.brandhof@gmail.com>
	Mon, 18 Oct 2010 12:11:58 +0000 (12:11 +0000)