Allow developer to manage builds

3adfee1c · Kamil Trzcińśki · 127836dd · 3adfee1c · 3adfee1c · 3adfee1c
Commit 3adfee1c authored 9 years ago by Kamil Trzcińśki
--- a/app/controllers/ci/application_controller.rb
+++ b/app/controllers/ci/application_controller.rb
@@ -8,14 +8,6 @@ module Ci
  
    private
  
-    def authenticate_public_page!
-      unless project.public
-        authenticate_user!
-
-        return access_denied! unless can?(current_user, :read_project, gl_project)
-      end
-    end
-
    def authenticate_token!
      unless project.valid_token?(params[:token])
        return head(403)

--- a/app/controllers/projects/builds_controller.rb
+++ b/app/controllers/projects/builds_controller.rb
@@ -2,7 +2,7 @@ class Projects::BuildsController < Projects::ApplicationController
  before_action :ci_project
  before_action :build, except: [:index, :cancel_all]
  
-  before_action :authorize_admin_project!, except: [:index, :show, :status]
+  before_action :authorize_manage_builds!, except: [:index, :show, :status]
  
  layout "project"
  
@@ -74,4 +74,10 @@ class Projects::BuildsController < Projects::ApplicationController
  def build_path(build)
    namespace_project_build_path(build.gl_project.namespace, build.gl_project, build)
  end
+
+  def authorize_manage_builds!
+    unless can?(current_user, :manage_builds, project)
+      return page_404
+    end
+  end
 end
--- a/app/controllers/projects/commit_controller.rb
+++ b/app/controllers/projects/commit_controller.rb
@@ -4,7 +4,8 @@
 class Projects::CommitController < Projects::ApplicationController
  # Authorize
  before_action :require_non_empty_project
-  before_action :authorize_download_code!
+  before_action :authorize_download_code!, except: [:cancel_builds]
+  before_action :authorize_manage_builds!, only: [:cancel_builds]
  before_action :commit
  
  def show
@@ -55,4 +56,12 @@ class Projects::CommitController < Projects::ApplicationController
  def commit
    @commit ||= @project.commit(params[:id])
  end
+
+  private
+
+  def authorize_manage_builds!
+    unless can?(current_user, :manage_builds, project)
+      return page_404
+    end
+  end
 end