mirror of
https://github.com/discourse/discourse.git
synced 2025-02-20 10:47:31 +08:00
DEV: Make groups/new extensible by plugins (#7642)
* Expose a new plugin outlet. Pass group model to the group-member-dropdown so it can be accessed by plugins * Added controller tests for group custom fields. update custom fields when updating a group
This commit is contained in:
Roman Rizzi
Sam
parent
7bd8f715bc
commit
c3a38d2304
|
|
@ -27,6 +27,9 @@
|
|||
</label>
|
||||
</div>
|
||||
|
||||
{{plugin-outlet name="groups-form-membership-below-automatic"
|
||||
args=(hash model=model)}}
|
||||
|
||||
<div class="control-group">
|
||||
<label class="control-label">{{i18n "admin.groups.manage.membership.trust_level"}}</label>
|
||||
<label for="grant_trust_level">{{i18n 'admin.groups.manage.membership.trust_levels_title'}}</label>
|
||||
|
|
|
|||
|
|
@ -64,8 +64,10 @@
|
|||
removeMember=(action "removeMember")
|
||||
makeOwner=(action "makeOwner")
|
||||
removeOwner=(action "removeOwner")
|
||||
member=m}}
|
||||
member=m
|
||||
group=model}}
|
||||
{{/if}}
|
||||
{{!-- group parameter is used by plugins --}}
|
||||
</td>
|
||||
</tr>
|
||||
{{/each}}
|
||||
|
|
|
|||
|
|
@ -130,7 +130,7 @@ class Admin::GroupsController < Admin::AdminController
|
|||
private
|
||||
|
||||
def group_params
|
||||
params.require(:group).permit(
|
||||
permitted = [
|
||||
:name,
|
||||
:mentionable_level,
|
||||
:messageable_level,
|
||||
|
|
@ -153,6 +153,10 @@ class Admin::GroupsController < Admin::AdminController
|
|||
:membership_request_template,
|
||||
:owner_usernames,
|
||||
:usernames
|
||||
)
|
||||
]
|
||||
custom_fields = Group.editable_group_custom_fields
|
||||
permitted << { custom_fields: custom_fields } unless custom_fields.blank?
|
||||
|
||||
params.require(:group).permit(permitted)
|
||||
end
|
||||
end
|
||||
|
|
|
|||
|
|
@ -545,6 +545,9 @@ class GroupsController < ApplicationController
|
|||
:automatic_membership_email_domains,
|
||||
:automatic_membership_retroactive
|
||||
])
|
||||
|
||||
custom_fields = Group.editable_group_custom_fields
|
||||
default_params << { custom_fields: custom_fields } unless custom_fields.blank?
|
||||
end
|
||||
|
||||
default_params
|
||||
|
|
|
|||
|
|
@ -189,6 +189,21 @@ class Group < ActiveRecord::Base
|
|||
levels
|
||||
end
|
||||
|
||||
def self.plugin_editable_group_custom_fields
|
||||
@plugin_editable_group_custom_fields ||= {}
|
||||
end
|
||||
|
||||
def self.register_plugin_editable_group_custom_field(custom_field_name, plugin)
|
||||
plugin_editable_group_custom_fields[custom_field_name] = plugin
|
||||
end
|
||||
|
||||
def self.editable_group_custom_fields
|
||||
plugin_editable_group_custom_fields.reduce([]) do |fields, (k, v)|
|
||||
next(fields) unless v.enabled?
|
||||
fields << k
|
||||
end.uniq
|
||||
end
|
||||
|
||||
def downcase_incoming_email
|
||||
self.incoming_email = (incoming_email || "").strip.downcase.presence
|
||||
end
|
||||
|
|
|
|||
|
|
@ -146,6 +146,12 @@ class Plugin::Instance
|
|||
end
|
||||
end
|
||||
|
||||
def register_editable_group_custom_field(field)
|
||||
reloadable_patch do |plugin|
|
||||
::Group.register_plugin_editable_group_custom_field(field, plugin) # plugin.enabled? is checked at runtime
|
||||
end
|
||||
end
|
||||
|
||||
def custom_avatar_column(column)
|
||||
reloadable_patch do |plugin|
|
||||
AvatarLookup.lookup_columns << column
|
||||
|
|
|
|||
|
|
@ -12,8 +12,8 @@ RSpec.describe Admin::GroupsController do
|
|||
end
|
||||
|
||||
describe '#create' do
|
||||
it 'should work' do
|
||||
post "/admin/groups.json", params: {
|
||||
let(:group_params) do
|
||||
{
|
||||
group: {
|
||||
name: 'testing',
|
||||
usernames: [admin.username, user.username].join(","),
|
||||
|
|
@ -22,6 +22,10 @@ RSpec.describe Admin::GroupsController do
|
|||
membership_request_template: 'Testing',
|
||||
}
|
||||
}
|
||||
end
|
||||
|
||||
it 'should work' do
|
||||
post "/admin/groups.json", params: group_params
|
||||
|
||||
expect(response.status).to eq(200)
|
||||
|
||||
|
|
@ -32,6 +36,44 @@ RSpec.describe Admin::GroupsController do
|
|||
expect(group.allow_membership_requests).to eq(true)
|
||||
expect(group.membership_request_template).to eq('Testing')
|
||||
end
|
||||
|
||||
context "custom_fields" do
|
||||
before do
|
||||
plugin = Plugin::Instance.new
|
||||
plugin.register_editable_group_custom_field :test
|
||||
end
|
||||
|
||||
after do
|
||||
Group.plugin_editable_group_custom_fields.clear
|
||||
end
|
||||
|
||||
it "only updates allowed user fields" do
|
||||
params = group_params
|
||||
params[:group].merge!(custom_fields: { test: :hello1, test2: :hello2 })
|
||||
|
||||
post "/admin/groups.json", params: params
|
||||
|
||||
group = Group.last
|
||||
|
||||
expect(response.status).to eq(200)
|
||||
expect(group.custom_fields['test']).to eq('hello1')
|
||||
expect(group.custom_fields['test2']).to be_blank
|
||||
end
|
||||
|
||||
it "is secure when there are no registered editable fields" do
|
||||
Group.plugin_editable_group_custom_fields.clear
|
||||
params = group_params
|
||||
params[:group].merge!(custom_fields: { test: :hello1, test2: :hello2 })
|
||||
|
||||
post "/admin/groups.json", params: params
|
||||
|
||||
group = Group.last
|
||||
|
||||
expect(response.status).to eq(200)
|
||||
expect(group.custom_fields['test']).to be_blank
|
||||
expect(group.custom_fields['test2']).to be_blank
|
||||
end
|
||||
end
|
||||
end
|
||||
|
||||
describe '#add_owners' do
|
||||
|
|
|
|||
|
|
@ -469,7 +469,7 @@ describe GroupsController do
|
|||
end
|
||||
|
||||
describe '#update' do
|
||||
let(:group) do
|
||||
let!(:group) do
|
||||
Fabricate(:group,
|
||||
name: 'test',
|
||||
users: [user],
|
||||
|
|
@ -478,6 +478,41 @@ describe GroupsController do
|
|||
)
|
||||
end
|
||||
|
||||
context "custom_fields" do
|
||||
before do
|
||||
user.update!(admin: true)
|
||||
sign_in(user)
|
||||
plugin = Plugin::Instance.new
|
||||
plugin.register_editable_group_custom_field :test
|
||||
@group = Fabricate(:group)
|
||||
end
|
||||
|
||||
after do
|
||||
Group.plugin_editable_group_custom_fields.clear
|
||||
end
|
||||
|
||||
it "only updates allowed user fields" do
|
||||
put "/groups/#{@group.id}.json", params: { group: { custom_fields: { test: :hello1, test2: :hello2 } } }
|
||||
|
||||
@group.reload
|
||||
|
||||
expect(response.status).to eq(200)
|
||||
expect(@group.custom_fields['test']).to eq('hello1')
|
||||
expect(@group.custom_fields['test2']).to be_blank
|
||||
end
|
||||
|
||||
it "is secure when there are no registered editable fields" do
|
||||
Group.plugin_editable_group_custom_fields.clear
|
||||
put "/groups/#{@group.id}.json", params: { group: { custom_fields: { test: :hello1, test2: :hello2 } } }
|
||||
|
||||
@group.reload
|
||||
|
||||
expect(response.status).to eq(200)
|
||||
expect(@group.custom_fields['test']).to be_blank
|
||||
expect(@group.custom_fields['test2']).to be_blank
|
||||
end
|
||||
end
|
||||
|
||||
context "when user is group owner" do
|
||||
before do
|
||||
group.add_owner(user)
|
||||
|
|
|
|||
Loading…
Reference in New Issue
Block a user