Allow users to send abuse reports

Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>

Allow users to send abuse reports
Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
0a9c65c9 · Dmitriy Zaporozhets · Valery Sizov · 55011aac · 0a9c65c9 · 0a9c65c9
Commit 0a9c65c9 authored Aug 06, 2015 by Dmitriy Zaporozhets Committed by Valery Sizov Aug 07, 2015
10 changed files
--- a/CHANGELOG
+++ b/CHANGELOG
 Please view this file on the master branch, on stable branches it's out of date.
 v 7.13.3
  - Fix bug causing Bitbucket importer to crash when OAuth application had been removed.
+  - Add fetch command to the MR page.
+  - Add ability to manage user email addresses via the API.
+  - Show buttons to add license, changelog and contribution guide if they're missing.
+  - Tweak project page buttons.
+  - Disabled autocapitalize and autocorrect on login field (Daryl Chan)
+  - Mention group and project name in creation, update and deletion notices (Achilleas Pipinellis)
+  - Remove redis-store TTL monkey patch
+  - Add support for CI skipped status
+  - Fetch code from forks to refs/merge-requests/:id/head when merge request created
+  - Remove satellites 
+  - Allow users to send abuse reports
 v 7.13.2
  - Fix randomly failed spec

--- a/app/controllers/abuse_reports_controller.rb
+++ b/app/controllers/abuse_reports_controller.rb
+class AbuseReportsController < ApplicationController
+  def new
+    @abuse_report = AbuseReport.new
+    @abuse_report.user_id = params[:user_id]
+  end
+  def create
+    @abuse_report = AbuseReport.new(report_params)
+    @abuse_report.reporter = current_user
+    if @abuse_report.save
+      redirect_to root_path, notice: 'Thank you for report. GitLab administrator will be able to see it'
+    else
+      render :new
+    end
+  end
+  private
+  def report_params
+    params.require(:abuse_report).permit(:user_id, :message)
+  end
+end
--- a/app/models/abuse_report.rb
+++ b/app/models/abuse_report.rb
+class AbuseReport < ActiveRecord::Base
+  belongs_to :reporter, class_name: "User"
+  belongs_to :user
+  validates :reporter, presence: true
+  validates :user, presence: true
+  validates :message, presence: true
+  validates :user_id, uniqueness: { scope: :reporter_id }
+end
--- a/app/views/abuse_reports/new.html.haml
+++ b/app/views/abuse_reports/new.html.haml
+- page_title "Report abuse"
+%h3.page-title Report abuse
+%p Please use this form if user makes spam or inappropriate content
+%hr
+= form_for @abuse_report, html: { class: 'form-horizontal'} do |f|
+  = f.hidden_field :user_id
+  - if @abuse_report.errors.any?
+    .alert.alert-danger
+      - @abuse_report.errors.full_messages.each do |msg|
+        %p= msg
+  .form-group
+    = f.label :user_id, class: 'control-label'
+    .col-sm-10
+      = users_select_tag("abuse_reports[user_id]", placeholder: 'Select user to report abuse',
+        class: 'custom-form-control js-select2', selected: @abuse_report.user_id, scope: :all)
+  .form-group
+    = f.label :message, class: 'control-label'
+    .col-sm-10
+      = f.text_area :message, class: "form-control", rows: 2, required: true
+      .help-block
+        Explain the problem with this account.
+        %br
+        If user sends spam please provide a link to spam issue or comment
+  .form-actions
+    = f.submit "Send report", class: "btn btn-create"
+:coffeescript
+  new UsersSelect()
--- a/app/views/users/show.html.haml
+++ b/app/views/users/show.html.haml
@@ -18,6 +18,16 @@
            = link_to profile_path, class: 'btn btn-sm' do
              %i.fa.fa-pencil-square-o
              Edit Profile settings
+        - elsif current_user
+          .pull-right
+            %span.dropdown
+              %a.light.dropdown-toggle.btn.btn-sm{href: '#', "data-toggle" => "dropdown"}
+                = icon('exclamation-circle')
+              %ul.dropdown-menu.dropdown-menu-right
+                %li
+                  = link_to new_abuse_report_path(user_id: @user.id) do
+                    Report abuse
      .username
        @#{@user.username}
      .description

--- a/config/routes.rb
+++ b/config/routes.rb
@@ -65,6 +65,9 @@ Gitlab::Application.routes.draw do
    end
  end
+  # Spam reports
+  resources :abuse_reports, only: [:new, :create]
  #
  # Import
  #

--- a/db/migrate/20150806104937_create_abuse_reports.rb
+++ b/db/migrate/20150806104937_create_abuse_reports.rb
+class CreateAbuseReports < ActiveRecord::Migration
+  def change
+    create_table :abuse_reports do |t|
+      t.integer :reporter_id
+      t.integer :user_id
+      t.text :message
+      t.timestamps
+    end
+  end
+end
--- a/db/schema.rb
+++ b/db/schema.rb
@@ -11,11 +11,19 @@
 #
 # It's strongly recommended that you check this file into your version control system.
-ActiveRecord::Schema.define(version: 20150717130904) do
+ActiveRecord::Schema.define(version: 20150806104937) do
  # These are extensions that must be enabled in order to support this database
  enable_extension "plpgsql"
+  create_table "abuse_reports", force: true do |t|
+    t.integer  "reporter_id"
+    t.integer  "user_id"
+    t.text     "message"
+    t.datetime "created_at"
+    t.datetime "updated_at"
+  end
  create_table "application_settings", force: true do |t|
    t.integer  "default_projects_limit"
    t.boolean  "signup_enabled"

--- a/spec/factories/abuse_reports.rb
+++ b/spec/factories/abuse_reports.rb
+# Read about factories at https://github.com/thoughtbot/factory_girl
+FactoryGirl.define do
+  factory :abuse_report do
+    reporter factory: :user
+    user
+    message 'User sends spam'
+  end
+end
--- a/spec/models/abuse_report_spec.rb
+++ b/spec/models/abuse_report_spec.rb
+require 'rails_helper'
+RSpec.describe AbuseReport, type: :model do
+  subject { create(:abuse_report) }
+  it { expect(subject).to be_valid }
+end