Download as
Browse Code »

Commit 149ccd5d91abf0c4b7ec610c03ad46a8ad17eec2

Authored by Christian Simon
1 parent fc0c6928
Exists in master and in 4 other branches 6-8-stable, 7-0-stable, 7-0-stable-spb, spb-stable

Fix groups api: differ between users and admin

Showing 2 changed files with 50 additions and 44 deletions   Show diff stats
lib/api/entities.rb
  Diff comments   View file @149ccd5
@@ -33,7 +33,7 @@ module Gitlab @@ -33,7 +33,7 @@ module Gitlab
33 end 33 end
34 34
35 class Group < Grape::Entity 35 class Group < Grape::Entity
36 - expose :id, :name, :path, :name, :owner_id, :type 36 + expose :id, :name, :path, :owner_id
37 end 37 end
38 38
39 class GroupDetail < Grape::Entity 39 class GroupDetail < Grape::Entity
lib/api/groups.rb
  Diff comments   View file @149ccd5
@@ -2,49 +2,55 @@ module Gitlab @@ -2,49 +2,55 @@ module Gitlab
2 # groups API 2 # groups API
3 class Groups < Grape::API 3 class Groups < Grape::API
4 before { authenticate! } 4 before { authenticate! }
5 -  
6 - resource :groups do  
7 - # Get a groups list  
8 - #  
9 - # Example Request:  
10 - # GET /groups  
11 - get do  
12 - @groups = paginate Group  
13 - present @groups, with: Entities::Group  
14 5
15 - end  
16 -  
17 - # Create group. Available only for admin  
18 - #  
19 - # Parameters:  
20 - # name (required) - Name  
21 - # path (required) - Path  
22 - # Example Request:  
23 - # POST /groups  
24 - post do  
25 - authenticated_as_admin!  
26 - attrs = attributes_for_keys [:name, :path]  
27 - @group = Group.new(attrs)  
28 - @group.owner = current_user  
29 -  
30 - if @group.save  
31 - present @group, with: Entities::Group  
32 - else  
33 - not_found!  
34 - end  
35 - end  
36 -  
37 - # Get a single group, with containing projects  
38 - #  
39 - # Parameters:  
40 - # id (required) - The ID of a group  
41 - # Example Request:  
42 - # GET /groups/:id  
43 - get ":id" do  
44 - @group = Group.find(params[:id])  
45 - present @group, with: Entities::GroupDetail  
46 - end  
47 -  
48 - end 6 + resource :groups do
  7 + # Get a groups list
  8 + #
  9 + # Example Request:
  10 + # GET /groups
  11 + get do
  12 + if current_user.admin
  13 + @groups = paginate Group
  14 + else
  15 + @groups = paginate current_user.groups
  16 + end
  17 + present @groups, with: Entities::Group
  18 + end
  19 +
  20 + # Create group. Available only for admin
  21 + #
  22 + # Parameters:
  23 + # name (required) - Name
  24 + # path (required) - Path
  25 + # Example Request:
  26 + # POST /groups
  27 + post do
  28 + authenticated_as_admin!
  29 + attrs = attributes_for_keys [:name, :path]
  30 + @group = Group.new(attrs)
  31 + @group.owner = current_user
  32 +
  33 + if @group.save
  34 + present @group, with: Entities::Group
  35 + else
  36 + not_found!
  37 + end
  38 + end
  39 +
  40 + # Get a single group, with containing projects
  41 + #
  42 + # Parameters:
  43 + # id (required) - The ID of a group
  44 + # Example Request:
  45 + # GET /groups/:id
  46 + get ":id" do
  47 + @group = Group.find(params[:id])
  48 + if current_user.admin or current_user.groups.include? @group
  49 + present @group, with: Entities::GroupDetail
  50 + else
  51 + not_found!
  52 + end
  53 + end
  54 + end
49 end 55 end
50 end 56 end