diff options
| author | Jean-Philippe Lang <jp_lang@yahoo.fr> | 2015-06-29 16:06:37 +0000 |
|---|---|---|
| committer | Jean-Philippe Lang <jp_lang@yahoo.fr> | 2015-06-29 16:06:37 +0000 |
| commit | 004fc8b84b1cebc521664ca3830f969a91244e67 (patch) | |
| tree | f84169227818ebd9365df50aeb446a2c8b977fe5 /app/controllers | |
| parent | 3834b3d2ef2b7ceab8942e95b66e5a3cae63dce7 (diff) | |
| download | redmine-004fc8b84b1cebc521664ca3830f969a91244e67.tar.gz redmine-004fc8b84b1cebc521664ca3830f969a91244e67.zip | |
Fixed that user with "Manage public queries" permission, can create global public query (#19842).
git-svn-id: http://svn.redmine.org/redmine/trunk@14388 e93f8b46-1217-0410-a6f0-8f06a7374b81
Diffstat (limited to 'app/controllers')
| -rw-r--r-- | app/controllers/queries_controller.rb | 29 |
1 files changed, 18 insertions, 11 deletions
diff --git a/app/controllers/queries_controller.rb b/app/controllers/queries_controller.rb index ac91b1a15..e09790b94 100644 --- a/app/controllers/queries_controller.rb +++ b/app/controllers/queries_controller.rb @@ -48,17 +48,14 @@ class QueriesController < ApplicationController @query = IssueQuery.new @query.user = User.current @query.project = @project - @query.visibility = IssueQuery::VISIBILITY_PRIVATE unless User.current.allowed_to?(:manage_public_queries, @project) || User.current.admin? @query.build_from_params(params) end def create - @query = IssueQuery.new(params[:query]) + @query = IssueQuery.new @query.user = User.current - @query.project = params[:query_is_for_all] ? nil : @project - @query.visibility = IssueQuery::VISIBILITY_PRIVATE unless User.current.allowed_to?(:manage_public_queries, @project) || User.current.admin? - @query.build_from_params(params) - @query.column_names = nil if params[:default_columns] + @query.project = @project + update_query_from_params if @query.save flash[:notice] = l(:notice_successful_create) @@ -72,11 +69,7 @@ class QueriesController < ApplicationController end def update - @query.attributes = params[:query] - @query.project = nil if params[:query_is_for_all] - @query.visibility = IssueQuery::VISIBILITY_PRIVATE unless User.current.allowed_to?(:manage_public_queries, @project) || User.current.admin? - @query.build_from_params(params) - @query.column_names = nil if params[:default_columns] + update_query_from_params if @query.save flash[:notice] = l(:notice_successful_update) @@ -107,6 +100,20 @@ private render_404 end + def update_query_from_params + @query.project = params[:query_is_for_all] ? nil : @project + @query.build_from_params(params) + @query.column_names = nil if params[:default_columns] + @query.sort_criteria = params[:query] && params[:query][:sort_criteria] + @query.name = params[:query] && params[:query][:name] + if User.current.allowed_to?(:manage_public_queries, @query.project) || User.current.admin? + @query.visibility = (params[:query] && params[:query][:visibility]) || IssueQuery::VISIBILITY_PRIVATE + else + @query.visibility = IssueQuery::VISIBILITY_PRIVATE + end + @query + end + def redirect_to_issues(options) if params[:gantt] if @project |