From: simonbrandhof <simon.brandhof@gmail.com>
Date: Tue, 9 Aug 2011 20:53:06 +0000 (+0200)
Subject: SONAR-2621 Profile changelog should be accessible by anonymous users
X-Git-Tag: 2.11^2~172
X-Git-Url: https://source.dussan.org/?a=commitdiff_plain;h=4496c49b647ec614c37c2e3fefa9ed41f4b8c8b0;p=sonarqube.git

SONAR-2621 Profile changelog should be accessible by anonymous users
---

diff --git a/sonar-server/src/main/webapp/WEB-INF/app/controllers/profiles_controller.rb b/sonar-server/src/main/webapp/WEB-INF/app/controllers/profiles_controller.rb
index 07083be7d88..1a4c8f280cd 100644
--- a/sonar-server/src/main/webapp/WEB-INF/app/controllers/profiles_controller.rb
+++ b/sonar-server/src/main/webapp/WEB-INF/app/controllers/profiles_controller.rb
@@ -24,7 +24,7 @@ class ProfilesController < ApplicationController
   verify :method => :post, :only => ['create', 'delete', 'copy', 'set_as_default', 'restore', 'set_projects', 'rename', 'change_parent'], :redirect_to => { :action => 'index' }
 
   # the backup action is allow to non-admin users : see http://jira.codehaus.org/browse/SONAR-2039
-  before_filter :admin_required, :except => [ 'index', 'show', 'projects', 'permalinks', 'export', 'backup', 'inheritance' ]
+  before_filter :admin_required, :except => [ 'index', 'show', 'permalinks', 'export', 'backup', 'inheritance' ]
 
   #
   #
diff --git a/sonar-server/src/main/webapp/WEB-INF/app/views/profiles/_tabs.html.erb b/sonar-server/src/main/webapp/WEB-INF/app/views/profiles/_tabs.html.erb
index 03015f5d72a..a614e8c32a9 100644
--- a/sonar-server/src/main/webapp/WEB-INF/app/views/profiles/_tabs.html.erb
+++ b/sonar-server/src/main/webapp/WEB-INF/app/views/profiles/_tabs.html.erb
@@ -1,6 +1,7 @@
-<%=
+<%
   new_tab = nil unless defined?(:new_tab)
   selected_tab = nil unless defined?(:selected_tab)
+  is_admin=has_role?(:admin)
 %>
 <ul class="tabs">
   <li>
@@ -9,18 +10,22 @@
   <li>
     <a href="<%= url_for :controller => 'alerts', :action => 'index', :id => @profile.id -%>" <%= "class='selected'" if selected_tab=='Alerts' -%>><%= message('alerts') -%></a>
   </li>
+  <% if is_admin %>
   <li>
     <a href="<%= url_for :controller => 'profiles', :action => 'projects', :id => @profile.id -%>" <%= "class='selected'" if selected_tab=='Projects' -%>><%= message('projects') -%></a>
   </li>
+  <% end %>
   <li>
     <a href="<%= url_for :controller => 'profiles', :action => 'permalinks', :id => @profile.id -%>" <%= "class='selected'" if selected_tab=='Permalinks' -%>><%= message('permalinks') -%></a>
   </li>
   <li>
     <a href="<%= url_for :controller => 'profiles', :action => 'inheritance', :id => @profile.id -%>" <%= "class='selected'" if selected_tab=='inheritance' -%>><%= message('quality_profiles.profile_inheritance') -%></a>
   </li>
+  <% if is_admin %>
   <li>
     <a href="<%= url_for :controller => 'profiles', :action => 'changelog', :id => @profile.id -%>" <%= "class='selected'" if selected_tab=='changelog' -%>><%= message('changelog') -%></a>
   </li>
+  <% end %>
   <% if new_tab %>
   <li>
     <a href="#" class='selected'><%= new_tab -%></a>