Rails - 当我执行扩展函数时,“过滤链暂停为:授权渲染或重定向”

时间:2013-07-19 14:53:51

标签: ruby-on-rails redmine redmine-plugins

我正在尝试使用本文后面的新函数扩展存储库控制器: http://www.redmine.org/projects/redmine/wiki/Plugin_Internals

一切似乎都正常,但当我点击调用我的扩展功能的按钮时,我收到此错误:

过滤链停止为:授权呈现或重定向 完成403禁止在5ms(ActiveRecord:2.0ms)

按照我的相关代码。

在lib / client中创建的client.rb 

require_dependency 'repositories_controller'

module RepositoriesPatch
    def self.included(base)

      base.send(:include, InstanceMethods)
    end

    module InstanceMethods
        def exec_client
          [...]
        end
    end
end

Repository.send(:include, RepositoriesPatch)

init.rb 

#encoding: utf-8

require_dependency 'client/client'

Redmine::Plugin.register :gerar_versao_projeto do
  name 'Gerar Versão Projeto'
  [...]

  project_module :repository do
     permission :view_repository, :repository => :exec_client
  end

  Rails.configuration.to_prepare do 
   RepositoriesController.send(:include, RepositoriesPatch)
  end
end

的routes.rb 

match '/projects/:id/repository', :action => 'exec_client', :controller => 'repositories', :via => :post

在我看来,我调用了exec_client函数,如下所示:

<%= button_to_function l(:gerar_build_project), remote_function(:action => 'exec_client', :controller => 'repositories')%>

如果有兴趣,下面是完整的日志错误:

Started POST "/projects/teste1/repository" for 127.0.0.1 at 2013-07-19 16:51:53 -0300
Processing by RepositoriesController#exec_client as JS
  Parameters: {"authenticity_token"=>"9JifnciRmiVCbf5uFWWGmSeePp4m0IM74UR10kGemHA=", "id"=>"teste1"}
  ←[1m←[35m (0.0ms)←[0m  SELECT MAX(`settings`.`updated_on`) AS max_id FROM `settings`
  ←[1m←[36mUser Load (0.0ms)←[0m  ←[1mSELECT `users`.* FROM `users` WHERE `users`.`type` IN ('User', 'AnonymousUser') AND `users`.`id` = 1 AND (us
ers.status = 1) LIMIT 1←[0m
  ←[1m←[35mProject Load (0.0ms)←[0m  SELECT `projects`.* FROM `projects` WHERE `projects`.`identifier` = 'teste1' LIMIT 1
  ←[1m←[36mRepository Load (0.0ms)←[0m  ←[1mSELECT `repositories`.* FROM `repositories` WHERE `repositories`.`project_id` = 1 AND (is_default = 1)
 LIMIT 1←[0m
  ←[1m←[35mEnabledModule Load (0.0ms)←[0m  SELECT name FROM `enabled_modules` WHERE `enabled_modules`.`project_id` = 1
Filter chain halted as :authorize rendered or redirected
Completed 403 Forbidden in 6ms (ActiveRecord: 0.0ms)

出了什么问题?

2 个答案:

答案 0 :(得分:1)

我已经解决了这个问题。

正如我所注意到的,问题在于执行该功能的权限。

我刚刚在init.rb中添加了权限(请参阅下面的代码),这使我可以访问执行该函数。

  permission :repositories, :repositories => :exec_client

上面列出的其他权限(参见init.rb代码)是另一个与执行该功能的权限没有直接关联的内容。那个小细节给了我一个大麻烦。

我希望这对某人有用。有关答案的任何问题,请争辩! ;)

谢谢!

答案 1 :(得分:1)

在我的补丁中,我输入以下代码:

module RepositoriesPatch
    def self.included(base)
      base.send(:include, InstanceMethods)
      base.class_eval do
        unloadable
          #THE BEFORE_FILTER IS WHO GIVES THE AUTHORIZATION TO EXECUTE THE FUNCTION
          before_filter :authorize, :except => [:exec_client]
      end
    end
end
相关问题
最新问题