Hide RefControl.can{Read,Write}
The canRead and canWrite methods were checking the state of the
project to determine its ACTIVE or READ_ONLY and not HIDDEN. Hide
these inside RefControl as callers shouldn't need to check these
properties due to RefControl methods already checking the status.
Fix dashboard code, which was incorrectly using canRead was
incorrectly used instead of isVisible.
Rename the canRead and canWrite to mention this is the project state.
The new names clarify the expressions in RefControl.
Change-Id: Icfe43cea0fe112f41de3af0bc77b5792e54b5a77
diff --git a/gerrit-server/src/main/java/com/google/gerrit/server/git/ReceiveCommits.java b/gerrit-server/src/main/java/com/google/gerrit/server/git/ReceiveCommits.java
index 6588593..90fe193 100644
--- a/gerrit-server/src/main/java/com/google/gerrit/server/git/ReceiveCommits.java
+++ b/gerrit-server/src/main/java/com/google/gerrit/server/git/ReceiveCommits.java
@@ -1451,7 +1451,8 @@
magicBranch.dest = new Branch.NameKey(project.getNameKey(), ref);
magicBranch.ctl = projectControl.controlForRef(ref);
- if (!magicBranch.ctl.canWrite()) {
+ if (projectControl.getProject().getState()
+ != com.google.gerrit.extensions.client.ProjectState.ACTIVE) {
reject(cmd, "project is read only");
return;
}
diff --git a/gerrit-server/src/main/java/com/google/gerrit/server/project/RefControl.java b/gerrit-server/src/main/java/com/google/gerrit/server/project/RefControl.java
index ecc96f1..f2153e5 100644
--- a/gerrit-server/src/main/java/com/google/gerrit/server/project/RefControl.java
+++ b/gerrit-server/src/main/java/com/google/gerrit/server/project/RefControl.java
@@ -117,7 +117,9 @@
/** Can this user see this reference exists? */
public boolean isVisible() {
if (isVisible == null) {
- isVisible = (getUser().isInternalUser() || canPerform(Permission.READ)) && canRead();
+ isVisible =
+ (getUser().isInternalUser() || canPerform(Permission.READ))
+ && isProjectStatePermittingRead();
}
return isVisible;
}
@@ -156,7 +158,7 @@
*/
public boolean canUpload() {
return projectControl.controlForRef("refs/for/" + getRefName()).canPerform(Permission.PUSH)
- && canWrite();
+ && isProjectStatePermittingWrite();
}
/** @return true if this user can add a new patch set to this ref */
@@ -164,7 +166,7 @@
return projectControl
.controlForRef("refs/for/" + getRefName())
.canPerform(Permission.ADD_PATCH_SET)
- && canWrite();
+ && isProjectStatePermittingWrite();
}
/** @return true if this user can submit merge patch sets to this ref */
@@ -172,12 +174,12 @@
return projectControl
.controlForRef("refs/for/" + getRefName())
.canPerform(Permission.PUSH_MERGE)
- && canWrite();
+ && isProjectStatePermittingWrite();
}
/** @return true if this user can rebase changes on this ref */
boolean canRebase() {
- return canPerform(Permission.REBASE) && canWrite();
+ return canPerform(Permission.REBASE) && isProjectStatePermittingWrite();
}
/** @return true if this user can submit patch sets to this ref */
@@ -190,7 +192,7 @@
// granting of powers beyond submitting to the configuration.
return projectControl.isOwner();
}
- return canPerform(Permission.SUBMIT, isChangeOwner) && canWrite();
+ return canPerform(Permission.SUBMIT, isChangeOwner) && isProjectStatePermittingWrite();
}
/** @return true if the user can update the reference as a fast-forward. */
@@ -210,12 +212,12 @@
return false;
}
}
- return canPerform(Permission.PUSH) && canWrite();
+ return canPerform(Permission.PUSH) && isProjectStatePermittingWrite();
}
/** @return true if the user can rewind (force push) the reference. */
private boolean canForceUpdate() {
- if (!canWrite()) {
+ if (!isProjectStatePermittingWrite()) {
return false;
}
@@ -238,16 +240,18 @@
}
}
- public boolean canWrite() {
+ private boolean isProjectStatePermittingWrite() {
return getProjectControl().getProject().getState().equals(ProjectState.ACTIVE);
}
- public boolean canRead() {
- return getProjectControl().getProject().getState().equals(ProjectState.READ_ONLY) || canWrite();
+ private boolean isProjectStatePermittingRead() {
+ return getProjectControl().getProject().getState().equals(ProjectState.READ_ONLY)
+ || isProjectStatePermittingWrite();
}
private boolean canPushWithForce() {
- if (!canWrite() || (RefNames.REFS_CONFIG.equals(refName) && !projectControl.isOwner())) {
+ if (!isProjectStatePermittingWrite()
+ || (RefNames.REFS_CONFIG.equals(refName) && !projectControl.isOwner())) {
// Pushing requires being at least project owner, in addition to push.
// Pushing configuration changes modifies the access control
// rules. Allowing this to be done by a non-project-owner opens
@@ -267,7 +271,7 @@
* @return {@code true} if the user specified can create a new Git ref
*/
public boolean canCreate(ReviewDb db, Repository repo, RevObject object) {
- if (!canWrite()) {
+ if (!isProjectStatePermittingWrite()) {
return false;
}
@@ -360,7 +364,7 @@
* @return {@code true} if the user specified can delete a Git ref.
*/
public boolean canDelete() {
- if (!canWrite() || (RefNames.REFS_CONFIG.equals(refName))) {
+ if (!isProjectStatePermittingWrite() || (RefNames.REFS_CONFIG.equals(refName))) {
// Never allow removal of the refs/meta/config branch.
// Deleting the branch would destroy all Gerrit specific
// metadata about the project, including its access rules.
