aboutsummaryrefslogtreecommitdiffstats
path: root/sonar-server
diff options
context:
space:
mode:
Diffstat (limited to 'sonar-server')
-rw-r--r--sonar-server/src/main/webapp/WEB-INF/app/controllers/dashboard_controller.rb19
1 files changed, 17 insertions, 2 deletions
diff --git a/sonar-server/src/main/webapp/WEB-INF/app/controllers/dashboard_controller.rb b/sonar-server/src/main/webapp/WEB-INF/app/controllers/dashboard_controller.rb
index 7d096f9931a..93d39dce42b 100644
--- a/sonar-server/src/main/webapp/WEB-INF/app/controllers/dashboard_controller.rb
+++ b/sonar-server/src/main/webapp/WEB-INF/app/controllers/dashboard_controller.rb
@@ -181,8 +181,23 @@ class DashboardController < ApplicationController
end
def load_resource
- init_resource_for_user_role unless !params[:id]
- @project=@resource # for backward compatibility with old widgets
+ if params[:id]
+ @resource=Project.by_key(params[:id])
+ return project_not_found unless @resource
+ @resource=@resource.permanent_resource
+
+ @snapshot=@resource.last_snapshot
+ return project_not_found unless @snapshot
+
+ access_denied unless has_role?(:user, @resource)
+
+ @project=@resource # for backward compatibility with old widgets
+ end
+ end
+
+ def project_not_found
+ flash[:error] = message('dashboard.project_not_found')
+ redirect_to :action => :index
end
def load_authorized_widget_definitions
generated by cgit v1.2.3 (git 2.39.1) at 2025-02-21 14:15:05 +0000