Project users api

Created by: miks

Fix #1379 (closed)

Created by: rspeicher

These don't go here. They should be in a before block, or better yet make them lets and lose the instance variables.

This is why the spec/requests/api/users spec is failing.

By Administrator on 2012-09-08T17:55:19 (imported from GitLab project)

By Administrator on 2012-09-08T17:55:19 (imported from GitLab)

Created by: NARKOZ

new project name

?

By Administrator on 2012-09-08T17:55:19 (imported from GitLab project)

By Administrator on 2012-09-08T17:55:19 (imported from GitLab)

Created by: AlexDenisov

Maybe make sense to do this more RESTful? Like

GET :id/users - list of users
POST :id/users - add user(s)
PUT :id/users - change access level for existed user(s)
DELETE :id/users - remove user(s) from team

What do you think about this? I think it would be more clean and RESTful.

By Administrator on 2012-09-06T13:48:22 (imported from GitLab project)

By Administrator on 2012-09-06T13:48:22 (imported from GitLab)

Created by: miks

ok, I will make it.

By Administrator on 2012-09-06T13:46:57 (imported from GitLab project)

By Administrator on 2012-09-06T13:46:57 (imported from GitLab)

Created by: dzaporozhets

Delete will not trigger update repository callback. And user still have access to repo via ssh

By Administrator on 2012-09-08T17:55:19 (imported from GitLab project)

By Administrator on 2012-09-08T17:55:19 (imported from GitLab)

Created by: dzaporozhets

Restful is much better

By Administrator on 2012-09-07T06:00:44 (imported from GitLab project)

By Administrator on 2012-09-07T06:00:44 (imported from GitLab)

Created by: miks

Does permission check to update projects users happen in model or I need to implement it?

By Administrator on 2012-09-07T06:46:43 (imported from GitLab project)

By Administrator on 2012-09-07T06:46:43 (imported from GitLab)

Created by: dzaporozhets

i think you need to call project.update_repository after succesfull transaction

By Administrator on 2012-09-07T06:56:32 (imported from GitLab project)

By Administrator on 2012-09-07T06:56:32 (imported from GitLab)

Created by: miks

I need to check whether user has ability to manage users thought API, what is the best way to achieve it? Without permissions check user with "guest" access can change levels/delete/add other users. Also, for now guest user thought API can delete/modify snippets, there is no ability check.

By Administrator on 2012-09-08T14:36:02 (imported from GitLab project)

By Administrator on 2012-09-08T14:36:02 (imported from GitLab)

Created by: miks

Delete is called within delete_users_ids_from_team from roles/team.rb

By Administrator on 2012-09-08T17:55:19 (imported from GitLab project)

By Administrator on 2012-09-08T17:55:19 (imported from GitLab)

Created by: dzaporozhets

Merged. Thank you

By Administrator on 2012-09-09T08:19:12 (imported from GitLab project)

By Administrator on 2012-09-09T08:19:12 (imported from GitLab)

Created by: miks

Sorry for repeating, but what to do about permissions check?

By Administrator on 2012-09-09T08:30:29 (imported from GitLab project)

By Administrator on 2012-09-09T08:30:29 (imported from GitLab)

Created by: dzaporozhets

Oh sorry. Missed you comment. I will handle it today

By Administrator on 2012-09-10T05:41:40 (imported from GitLab project)

By Administrator on 2012-09-10T05:41:40 (imported from GitLab)

Created by: dzaporozhets

@miks b565f334

By Administrator on 2012-09-10T06:07:02 (imported from GitLab project)

By Administrator on 2012-09-10T06:07:02 (imported from GitLab)

Created by: miks

By Administrator on 2012-09-10T06:10:45 (imported from GitLab project)

By Administrator on 2012-09-10T06:10:45 (imported from GitLab)

Created by: coveralls

Changes Unknown when pulling ba584c7d on miks:project_users_api into * on gitlabhq:master*.

By Administrator on 2013-11-20T23:13:03 (imported from GitLab project)

By Administrator on 2013-11-20T23:13:03 (imported from GitLab)