Merged r14619 (#20282).

author Jean-Philippe Lang <jp_lang@yahoo.fr>

Fri, 9 Oct 2015 06:37:43 +0000 (06:37 +0000)

committer Jean-Philippe Lang <jp_lang@yahoo.fr>

Fri, 9 Oct 2015 06:37:43 +0000 (06:37 +0000)
author Jean-Philippe Lang <jp_lang@yahoo.fr>
Fri, 9 Oct 2015 06:37:43 +0000 (06:37 +0000)
committer Jean-Philippe Lang <jp_lang@yahoo.fr>
Fri, 9 Oct 2015 06:37:43 +0000 (06:37 +0000)
diff --git a/app/models/project.rb b/app/models/project.rb

index b26c381165e60c2acd20f539e0fba55b7be981af..cc73aa2ef67a5cb10a086d1814c2e6fe9ba9f55d 100644 (file)
--- a/app/models/project.rb
+++ b/app/models/project.rb
@@ -680,12 +680,14 @@ class Project < ActiveRecord::Base
      attrs = attrs.deep_dup
  
      @unallowed_parent_id = nil
-    parent_id_param = attrs['parent_id'].to_s
-    if parent_id_param.blank? || parent_id_param != parent_id.to_s
-      p = parent_id_param.present? ? Project.find_by_id(parent_id_param) : nil
-      unless allowed_parents(user).include?(p)
-        attrs.delete('parent_id')
-        @unallowed_parent_id = true
+    if new_record? || attrs.key?('parent_id')
+      parent_id_param = attrs['parent_id'].to_s
+      if new_record? || parent_id_param != parent_id.to_s
+        p = parent_id_param.present? ? Project.find_by_id(parent_id_param) : nil
+        unless allowed_parents(user).include?(p)
+          attrs.delete('parent_id')
+          @unallowed_parent_id = true
+        end
        end
      end
  
diff --git a/test/functional/projects_controller_test.rb b/test/functional/projects_controller_test.rb

index 70c32c5f0be50418bdc8c12e1ecc852e069e1c74..b5eb74f93e20d91e0b661f0ed62d0b9dfe776532 100644 (file)
--- a/test/functional/projects_controller_test.rb
+++ b/test/functional/projects_controller_test.rb
@@ -486,6 +486,17 @@ class ProjectsControllerTest < ActionController::TestCase
      assert_equal 'eCookbook', Project.find(1).name
    end
  
+  def test_update_child_project_without_parent_permission_should_not_show_validation_error
+    child = Project.generate_with_parent!
+    user = User.generate!
+    User.add_to_project(user, child, Role.generate!(:permissions => [:edit_project]))
+    @request.session[:user_id] = user.id
+
+    post :update, :id => child.id, :project => {:name => 'Updated'}
+    assert_response 302
+    assert_match /Successful update/, flash[:notice]
+  end
+
    def test_modules
      @request.session[:user_id] = 2
      Project.find(1).enabled_module_names = ['issue_tracking', 'news']
diff --git a/test/object_helpers.rb b/test/object_helpers.rb

index 2b1fa2f61afadc6dc95956f22035562c00d21c22..d32976ab236c1eab266554d98149c2be2a35813e 100644 (file)
--- a/test/object_helpers.rb
+++ b/test/object_helpers.rb
@@ -39,7 +39,10 @@ module ObjectHelpers
      project
    end
  
-  def Project.generate_with_parent!(parent, attributes={})
+  def Project.generate_with_parent!(*args)
+    attributes = args.last.is_a?(Hash) ? args.pop : {}
+    parent = args.size > 0 ? args.first : Project.generate!
+
      project = Project.generate!(attributes) do |p|
        p.parent = parent
      end
author	Jean-Philippe Lang <jp_lang@yahoo.fr>
	Fri, 9 Oct 2015 06:37:43 +0000 (06:37 +0000)
committer	Jean-Philippe Lang <jp_lang@yahoo.fr>
	Fri, 9 Oct 2015 06:37:43 +0000 (06:37 +0000)
app/models/project.rb		patch \| blob \| history
test/functional/projects_controller_test.rb		patch \| blob \| history
test/object_helpers.rb		patch \| blob \| history