diff options
| author | Unknwon <u@gogs.io> | 2016-03-05 20:45:23 -0500 |
|---|---|---|
| committer | Unknwon <u@gogs.io> | 2016-03-05 20:45:23 -0500 |
| commit | a5b0400be7c8868b685403e0718bdd66149c3e84 (patch) | |
| tree | 6db3f4999fa43e0b8a384ca4da8885aa00a4de8f /routers/repo/setting.go | |
| parent | 045f14fbd0e3553521f5092cf839be363c74a090 (diff) | |
| download | gitea-a5b0400be7c8868b685403e0718bdd66149c3e84.tar.gz gitea-a5b0400be7c8868b685403e0718bdd66149c3e84.zip | |
#1146 finish new access rights for collaborators
Diffstat (limited to 'routers/repo/setting.go')
| -rw-r--r-- | routers/repo/setting.go | 18 |
1 files changed, 18 insertions, 0 deletions
diff --git a/routers/repo/setting.go b/routers/repo/setting.go index e6b3580a1c..cf6f6a11c7 100644 --- a/routers/repo/setting.go +++ b/routers/repo/setting.go @@ -142,6 +142,10 @@ func SettingsPost(ctx *middleware.Context, form auth.RepoSettingForm) { ctx.Redirect(ctx.Repo.RepoLink + "/settings") case "convert": + if !ctx.Repo.IsOwner() { + ctx.Error(404) + return + } if repo.Name != form.RepoName { ctx.RenderWithErr(ctx.Tr("form.enterred_invalid_repo_name"), SETTINGS_OPTIONS, nil) return @@ -172,6 +176,10 @@ func SettingsPost(ctx *middleware.Context, form auth.RepoSettingForm) { ctx.Redirect(setting.AppSubUrl + "/" + ctx.Repo.Owner.Name + "/" + repo.Name) case "transfer": + if !ctx.Repo.IsOwner() { + ctx.Error(404) + return + } if repo.Name != form.RepoName { ctx.RenderWithErr(ctx.Tr("form.enterred_invalid_repo_name"), SETTINGS_OPTIONS, nil) return @@ -205,7 +213,12 @@ func SettingsPost(ctx *middleware.Context, form auth.RepoSettingForm) { log.Trace("Repository transfered: %s/%s -> %s", ctx.Repo.Owner.Name, repo.Name, newOwner) ctx.Flash.Success(ctx.Tr("repo.settings.transfer_succeed")) ctx.Redirect(setting.AppSubUrl + "/" + newOwner + "/" + repo.Name) + case "delete": + if !ctx.Repo.IsOwner() { + ctx.Error(404) + return + } if repo.Name != form.RepoName { ctx.RenderWithErr(ctx.Tr("form.enterred_invalid_repo_name"), SETTINGS_OPTIONS, nil) return @@ -226,7 +239,12 @@ func SettingsPost(ctx *middleware.Context, form auth.RepoSettingForm) { ctx.Flash.Success(ctx.Tr("repo.settings.deletion_success")) ctx.Redirect(ctx.Repo.Owner.DashboardLink()) + case "delete-wiki": + if !ctx.Repo.IsOwner() { + ctx.Error(404) + return + } if repo.Name != form.RepoName { ctx.RenderWithErr(ctx.Tr("form.enterred_invalid_repo_name"), SETTINGS_OPTIONS, nil) return |