Gitlink
/
forgeplus
Not watched
1
0
Fork 0
Code
Releases 16 Wiki evaluate Activity
Issues 0 Pull Requests 0 Datasets Model Cloudbrain HPC
You can not select more than 25 topics Topics must start with a chinese character,a letter or number, can include dashes ('-') and can be up to 35 characters long.
Tree: 1df95eab4d
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '1df95eab4d'
${ noResults }
forgeplus/app/models/concerns/project_operable.rb

127 lines
4.5 kB
Raw Blame History 

  1. module ProjectOperable

  2.   extend ActiveSupport::Concern

  3. 

  4.   included do

  5.     has_many :members, dependent: :destroy

  6.     has_many :except_owner_members, -> { joins(:roles).where.not(roles: { name: 'Manager' }) }, class_name: 'Member'

  7.     has_many :managers,             -> { joins(:roles).where(roles: { name: 'Manager' }) }, class_name: 'Member'

  8.     has_many :developers,           -> { joins(:roles).where(roles: { name: 'Developer' }) }, class_name: 'Member'

  9.     has_many :reporters,            -> { joins(:roles).where(roles: { name: 'Reporter' }) }, class_name: 'Member'

  10.     has_many :writable_members,     -> { joins(:roles).where.not(roles: {name: 'Reporter'}) }, class_name: 'Member'

  11.     has_many :team_projects, dependent: :destroy

  12.     has_many :teams, through: :team_projects, source: :team

  13.   end

  14. 

  15.   def set_owner_permission(creator)

  16.     return unless owner.is_a?(Organization)

  17.     owner.build_permit_team_projects!(id)

  18.     # 避免自己创建的项目,却无法拥有访问权,因为该用户所在团队暂未获得项目访问权

  19.     return if creator.nil? || owner.is_owner?(creator.id)

  20.     add_member!(creator.id, "Manager")

  21.   end

  22. 

  23.   def add_member!(user_id, role_name='Developer')

  24.     member = members.create!(user_id: user_id)

  25.     set_developer_role(member, role_name)

  26.   end

  27. 

  28.   def remove_member!(user_id)

  29.     member = members.find_by(user_id: user_id)

  30.     member.destroy! if member && self.user_id != user_id

  31.   end

  32. 

  33.   def member?(user_id)

  34.     if owner.is_a?(User)

  35.       members.exists?(user_id: user_id)

  36.     elsif owner.is_a?(Organization)

  37.       members.exists?(user_id: user_id) || team_projects.joins(team: :team_users).where(team_users: {user_id: user_id}).present?

  38.     else

  39.       false

  40.     end

  41.   end

  42. 

  43.   # 除了项目创建者本身

  44.   def member(user_id)

  45.     members.where.not("members.user_id = ? ", owner.id).find_by(user_id: user_id)

  46.   end

  47. 

  48.   def change_member_role!(user_id, role)

  49.     member = self.member(user_id)

  50.     member.member_roles.last.update_attributes!(role: role)

  51.   end

  52. 

  53.   def owner?(user)

  54.     if owner.is_a?(User)

  55.       self.owner == user

  56.     elsif owner.is_a?(Organization)

  57.       owner.is_owner?(user.id)

  58.     else

  59.       false

  60.     end

  61.   end

  62. 

  63.   # 项目管理员(包含项目拥有者),权限:仓库设置、仓库可读可写

  64.   def manager?(user)

  65.     if owner.is_a?(User)

  66.       managers.exists?(user_id: user.id)

  67.     elsif owner.is_a?(Organization)

  68.       managers.exists?(user_id: user.id) || owner.is_admin?(user.id)

  69.     else

  70.       false

  71.     end

  72.   end

  73. 

  74.   # 项目开发者,可读可写权限

  75.   def develper?(user)

  76.     if owner.is_a?(User)

  77.       developers.exists?(user_id: user.id)

  78.     elsif owner.is_a?(Organization)

  79.       developers.exists?(user_id: user.id) || owner.is_write?(user.id)

  80.     else

  81.       false

  82.     end

  83.   end

  84. 

  85.   # 报告者,只有可读权限

  86.   def reporter?(user)

  87.     if owner.is_a?(User)

  88.       reporters.exists?(user_id: user.id)

  89.     elsif owner.is_a?(Organization)

  90.       reporters.exists?(user_id: user.id) || owner.is_only_read?(user.id)

  91.     else

  92.       false

  93.     end

  94.   end

  95. 

  96.   def operator?(user)

  97.     user.admin? || !reporter?(user) 

  98.   end

  99. 

  100.   def set_developer_role(member, role_name)

  101.     role = Role.find_by(name: role_name)

  102.     member.member_roles.create!(role: role)

  103.   end

  104. 

  105.   def has_menu_permission(unit_type)

  106.     self.project_units.where(unit_type: unit_type).exists?

  107.   end

  108. 

  109.   def all_collaborators 

  110.     member_sql = User.joins(members: :roles).where(members: {project_id: self.id}, roles: {name: %w(Manager Developer Reporter)}).to_sql 

  111.     team_user_sql = User.joins(teams: :team_projects).where(team_projects: {project_id: self.id}).to_sql

  112.     return User.from("( #{ member_sql } UNION #{ team_user_sql } ) AS users").distinct

  113.   end

  114. 

  115.   def all_developers

  116.     member_sql = User.joins(members: :roles).where(members: {project_id: self.id}, roles: {name: %w(Manager Developer)}).to_sql 

  117.     team_user_sql = User.joins(teams: :team_projects).where(teams: {authorize: %w(owner admin write)}, team_projects: {project_id: self.id}).to_sql

  118.     return User.from("( #{ member_sql } UNION #{ team_user_sql } ) AS users").distinct

  119.   end

  120. 

  121.   def all_managers 

  122.     member_sql = User.joins(members: :roles).where(members: {project_id: self.id}, roles: {name: %w(Manager)}).to_sql 

  123.     team_user_sql = User.joins(teams: :team_projects).where(teams: {authorize: %w(owner admin)},team_projects: {project_id: self.id}).to_sql 

  124.     return User.from("( #{ member_sql} UNION #{ team_user_sql } ) AS users").distinct

  125.   end

  126. end