forgeplus/app/controllers/api/pm/projects_controller.rb

class Api::Pm::ProjectsController < Api::Pm::BaseController
  before_action :require_login, except: [:convert]
  before_action :load_project
  def convert
    data = {
      owner: @project.owner.try(:login),
      identifier: @project.identifier
    }
    render_ok(data: data)
  end

  def bind_project
    return  render_forbidden('您没有操作权限！') unless @project.member?(current_user) || current_user.admin?
    Issue.where(pm_project_id: params[:pm_project_id], user_id: current_user).update_all(project_id: params[:project_id])
  end

  private
  def load_project
    @project = Project.joins(:owner).find params[:project_id]
  end
end