Fix restricted visibility bugs

Check for nil values in the restricted_visibility_level validation method, and set the restricted visibility request parameter to `[]` when it's missing from the request.

Fix restricted visibility bugs
Check for nil values in the restricted_visibility_level validation method, and set the restricted visibility request parameter to `[]` when it's missing from the request.
2e672c39 · Vinnie Okada · 7c3c836d · 2e672c39 · 2e672c39
Commit 2e672c39 authored Mar 16, 2015 by Vinnie Okada
Showing with 8 additions and 4 deletions

app/controllers/admin/application_settings_controller.rb app/controllers/admin/application_settings_controller.rb +3 -1

app/models/application_setting.rb app/models/application_setting.rb +5 -3

No files found.
--- a/app/controllers/admin/application_settings_controller.rb
+++ b/app/controllers/admin/application_settings_controller.rb
@@ -21,7 +21,9 @@ class Admin::ApplicationSettingsController < Admin::ApplicationController

  def application_setting_params
    restricted_levels = params[:application_setting][:restricted_visibility_levels]
-    unless restricted_levels.nil?
+    if restricted_levels.nil?
+      params[:application_setting][:restricted_visibility_levels] = []
+    else
      restricted_levels.map! do |level|
        level.to_i
      end

--- a/app/models/application_setting.rb
+++ b/app/models/application_setting.rb
@@ -27,9 +27,11 @@ class ApplicationSetting < ActiveRecord::Base
    if: :home_page_url_column_exist

  validates_each :restricted_visibility_levels do |record, attr, value|
-    value.each do |level|
-      unless Gitlab::VisibilityLevel.options.has_value?(level)
-        record.errors.add(attr, "'#{level}' is not a valid visibility level")
+    unless value.nil?
+      value.each do |level|
+        unless Gitlab::VisibilityLevel.options.has_value?(level)
+          record.errors.add(attr, "'#{level}' is not a valid visibility level")
+        end
      end
    end
  end