Age | Commit message (Collapse) | Author |
|
authorize_admin -> require_admin
also add require_token which will ensure token has been used for auth.
|
|
show view with the appropriate error messages.
|
|
|
|
an admin.
|
|
cases where it is an admin who set it.
|
|
|
|
admins) or stay as a nested resource for a particular user (for normal users and when you visit the tickets list of a particular user).
|
|
localization.
|
|
|
|
|
|
flash that message if the ticket already has a flash[:message] (and thus was saved successfully)
|
|
|
|
|
|
|
|
is an admin, they should see an alert that the object wasn't found, and be redirected to the current controller.
If the object isn't found and the current user is not an admin, then we will continue to give an error about no access, so as not to leak information about what IDs do and don't exist.
|
|
relevant actions.
|
|
Only non-comment change is that we will keep an unauthenticated user looking at the same ticket if they have closed it (rather than redirecting to index which they will not be able to access.)
|
|
|
|
|
|
|
|
Conflicts:
app/views/layouts/application.html.haml
help/app/controllers/tickets_controller.rb
help/test/functional/tickets_controller_test.rb
users/test/support/stub_record_helper.rb
|
|
|
|
|
|
have to do more, including allowing user to pick sort order.
|
|
|
|
|
|
|
|
something like https://github.com/spree/spree/issues ), using bootstrap for display.
Still want to use pjax, and have more functionality to add: searching, sorting, pagination, etc..
|
|
|
|
|
|
info for when creating unauthenticated tickets, redirecting to index when closing a ticket, fix default select for ticket filtering.
|
|
|
|
using the default layout.
|
|
|
|
And some minor tweaks.
|
|
|
|
ID will be the random string for the secret URL.
Tickets created when user was unauthenticated will be viewable by anybody who knows the URL.
|
|
and initial way to close tickets.
|
|
|
|
|
|
|
|
|
|
|
|
ticket comment to a new ticket.
|
|
|
|
|