mirror of
https://we.phorge.it/source/phorge.git
synced 2024-11-29 10:12:41 +01:00
a1df1f2b70
Summary: - Renames `PhabricatorPolicyQuery` to `PhabricatorPolicyAwareQuery` (a query which respects policy settings). - Introduces `PhabricatorPolicyQuery`, which loads available policies (e.g., "member of project X"). - Introduces `PhabricatorPolicy`, which describes a policy. - Allows projects to be set as policies. - Allows Paste policies to be edited. - Covers crazy cases where you make projects depend on themselves or each other because you are a dastardly villan. Test Plan: Set paste and project policies, including crazy policies like A -> B -> A, A -> A, etc. Reviewers: vrana, btrahan Reviewed By: vrana CC: aran Maniphest Tasks: T603 Differential Revision: https://secure.phabricator.com/D3476
252 lines
7.9 KiB
PHP
252 lines
7.9 KiB
PHP
<?php
|
|
|
|
/*
|
|
* Copyright 2012 Facebook, Inc.
|
|
*
|
|
* Licensed under the Apache License, Version 2.0 (the "License");
|
|
* you may not use this file except in compliance with the License.
|
|
* You may obtain a copy of the License at
|
|
*
|
|
* http://www.apache.org/licenses/LICENSE-2.0
|
|
*
|
|
* Unless required by applicable law or agreed to in writing, software
|
|
* distributed under the License is distributed on an "AS IS" BASIS,
|
|
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
* See the License for the specific language governing permissions and
|
|
* limitations under the License.
|
|
*/
|
|
|
|
final class PhabricatorProjectProfileEditController
|
|
extends PhabricatorProjectController {
|
|
|
|
public function willProcessRequest(array $data) {
|
|
$this->id = $data['id'];
|
|
}
|
|
|
|
public function processRequest() {
|
|
|
|
$request = $this->getRequest();
|
|
$user = $request->getUser();
|
|
|
|
$project = id(new PhabricatorProjectQuery())
|
|
->setViewer($user)
|
|
->withIDs(array($this->id))
|
|
->requireCapabilities(
|
|
array(
|
|
PhabricatorPolicyCapability::CAN_VIEW,
|
|
PhabricatorPolicyCapability::CAN_EDIT,
|
|
))
|
|
->executeOne();
|
|
if (!$project) {
|
|
return new Aphront404Response();
|
|
}
|
|
|
|
$profile = $project->loadProfile();
|
|
if (empty($profile)) {
|
|
$profile = new PhabricatorProjectProfile();
|
|
}
|
|
|
|
$img_src = $profile->loadProfileImageURI();
|
|
|
|
$options = PhabricatorProjectStatus::getStatusMap();
|
|
|
|
$supported_formats = PhabricatorFile::getTransformableImageFormats();
|
|
|
|
$e_name = true;
|
|
$e_image = null;
|
|
|
|
$errors = array();
|
|
if ($request->isFormPost()) {
|
|
try {
|
|
$xactions = array();
|
|
$xaction = new PhabricatorProjectTransaction();
|
|
$xaction->setTransactionType(
|
|
PhabricatorProjectTransactionType::TYPE_NAME);
|
|
$xaction->setNewValue($request->getStr('name'));
|
|
$xactions[] = $xaction;
|
|
|
|
$xaction = new PhabricatorProjectTransaction();
|
|
$xaction->setTransactionType(
|
|
PhabricatorProjectTransactionType::TYPE_STATUS);
|
|
$xaction->setNewValue($request->getStr('status'));
|
|
$xactions[] = $xaction;
|
|
|
|
$xaction = new PhabricatorProjectTransaction();
|
|
$xaction->setTransactionType(
|
|
PhabricatorProjectTransactionType::TYPE_CAN_VIEW);
|
|
$xaction->setNewValue($request->getStr('can_view'));
|
|
$xactions[] = $xaction;
|
|
|
|
$xaction = new PhabricatorProjectTransaction();
|
|
$xaction->setTransactionType(
|
|
PhabricatorProjectTransactionType::TYPE_CAN_EDIT);
|
|
$xaction->setNewValue($request->getStr('can_edit'));
|
|
$xactions[] = $xaction;
|
|
|
|
$xaction = new PhabricatorProjectTransaction();
|
|
$xaction->setTransactionType(
|
|
PhabricatorProjectTransactionType::TYPE_CAN_JOIN);
|
|
$xaction->setNewValue($request->getStr('can_join'));
|
|
$xactions[] = $xaction;
|
|
|
|
$editor = new PhabricatorProjectEditor($project);
|
|
$editor->setUser($user);
|
|
$editor->applyTransactions($xactions);
|
|
} catch (PhabricatorProjectNameCollisionException $ex) {
|
|
$e_name = 'Not Unique';
|
|
$errors[] = $ex->getMessage();
|
|
}
|
|
|
|
$profile->setBlurb($request->getStr('blurb'));
|
|
|
|
if (!strlen($project->getName())) {
|
|
$e_name = 'Required';
|
|
$errors[] = 'Project name is required.';
|
|
} else {
|
|
$e_name = null;
|
|
}
|
|
|
|
$default_image = $request->getExists('default_image');
|
|
if ($default_image) {
|
|
$profile->setProfileImagePHID(null);
|
|
} else if (!empty($_FILES['image'])) {
|
|
$err = idx($_FILES['image'], 'error');
|
|
if ($err != UPLOAD_ERR_NO_FILE) {
|
|
$file = PhabricatorFile::newFromPHPUpload(
|
|
$_FILES['image'],
|
|
array(
|
|
'authorPHID' => $user->getPHID(),
|
|
));
|
|
$okay = $file->isTransformableImage();
|
|
if ($okay) {
|
|
$xformer = new PhabricatorImageTransformer();
|
|
$xformed = $xformer->executeThumbTransform(
|
|
$file,
|
|
$x = 50,
|
|
$y = 50);
|
|
$profile->setProfileImagePHID($xformed->getPHID());
|
|
} else {
|
|
$e_image = 'Not Supported';
|
|
$errors[] =
|
|
'This server only supports these image formats: '.
|
|
implode(', ', $supported_formats).'.';
|
|
}
|
|
}
|
|
}
|
|
|
|
if (!$errors) {
|
|
$project->save();
|
|
$profile->setProjectPHID($project->getPHID());
|
|
$profile->save();
|
|
return id(new AphrontRedirectResponse())
|
|
->setURI('/project/view/'.$project->getID().'/');
|
|
}
|
|
}
|
|
|
|
$error_view = null;
|
|
if ($errors) {
|
|
$error_view = new AphrontErrorView();
|
|
$error_view->setTitle('Form Errors');
|
|
$error_view->setErrors($errors);
|
|
}
|
|
|
|
$header_name = 'Edit Project';
|
|
$title = 'Edit Project';
|
|
$action = '/project/edit/'.$project->getID().'/';
|
|
|
|
$policies = id(new PhabricatorPolicyQuery())
|
|
->setViewer($user)
|
|
->setObject($project)
|
|
->execute();
|
|
|
|
$form = new AphrontFormView();
|
|
$form
|
|
->setID('project-edit-form')
|
|
->setUser($user)
|
|
->setAction($action)
|
|
->setEncType('multipart/form-data')
|
|
->appendChild(
|
|
id(new AphrontFormTextControl())
|
|
->setLabel('Name')
|
|
->setName('name')
|
|
->setValue($project->getName())
|
|
->setError($e_name))
|
|
->appendChild(
|
|
id(new AphrontFormSelectControl())
|
|
->setLabel('Project Status')
|
|
->setName('status')
|
|
->setOptions($options)
|
|
->setValue($project->getStatus()))
|
|
->appendChild(
|
|
id(new AphrontFormTextAreaControl())
|
|
->setLabel('Blurb')
|
|
->setName('blurb')
|
|
->setValue($profile->getBlurb()))
|
|
->appendChild(
|
|
'<p class="aphront-form-instructions">NOTE: Policy settings are not '.
|
|
'yet fully implemented. Some interfaces still ignore these settings, '.
|
|
'particularly "Visible To".</p>')
|
|
->appendChild(
|
|
id(new AphrontFormPolicyControl())
|
|
->setUser($user)
|
|
->setName('can_view')
|
|
->setCaption('Members can always view a project.')
|
|
->setPolicyObject($project)
|
|
->setPolicies($policies)
|
|
->setCapability(PhabricatorPolicyCapability::CAN_VIEW))
|
|
->appendChild(
|
|
id(new AphrontFormPolicyControl())
|
|
->setUser($user)
|
|
->setName('can_edit')
|
|
->setPolicyObject($project)
|
|
->setPolicies($policies)
|
|
->setCapability(PhabricatorPolicyCapability::CAN_EDIT))
|
|
->appendChild(
|
|
id(new AphrontFormPolicyControl())
|
|
->setUser($user)
|
|
->setName('can_join')
|
|
->setCaption(
|
|
'Users who can edit a project can always join a project.')
|
|
->setPolicyObject($project)
|
|
->setPolicies($policies)
|
|
->setCapability(PhabricatorPolicyCapability::CAN_JOIN))
|
|
->appendChild(
|
|
id(new AphrontFormMarkupControl())
|
|
->setLabel('Profile Image')
|
|
->setValue(
|
|
phutil_render_tag(
|
|
'img',
|
|
array(
|
|
'src' => $img_src,
|
|
))))
|
|
->appendChild(
|
|
id(new AphrontFormImageControl())
|
|
->setLabel('Change Image')
|
|
->setName('image')
|
|
->setError($e_image)
|
|
->setCaption('Supported formats: '.implode(', ', $supported_formats)))
|
|
->appendChild(
|
|
id(new AphrontFormSubmitControl())
|
|
->addCancelButton('/project/view/'.$project->getID().'/')
|
|
->setValue('Save'));
|
|
|
|
$panel = new AphrontPanelView();
|
|
$panel->setHeader($header_name);
|
|
$panel->setWidth(AphrontPanelView::WIDTH_FORM);
|
|
$panel->appendChild($form);
|
|
|
|
$nav = $this->buildLocalNavigation($project);
|
|
$nav->selectFilter('edit');
|
|
$nav->appendChild(
|
|
array(
|
|
$error_view,
|
|
$panel,
|
|
));
|
|
|
|
return $this->buildStandardPageResponse(
|
|
$nav,
|
|
array(
|
|
'title' => $title,
|
|
));
|
|
}
|
|
}
|