Give ProjectNotFound when the project is not readable

a7c823a5 · Lin Jen-Shin · e7a6d17b · a7c823a5 · a7c823a5 · a7c823a5
Commit a7c823a5 authored May 18, 2016 by Lin Jen-Shin
3 changed files
--- a/lib/gitlab/email/handler.rb
+++ b/lib/gitlab/email/handler.rb
@@ -25,7 +25,7 @@ module Gitlab
      def validate_permission!(permission)
        raise UserNotFoundError unless author
        raise UserBlockedError if author.blocked?
-        # TODO: Give project not found error if author cannot read project
+        raise ProjectNotFound unless author.can?(:read_project, project)
        raise UserNotAuthorizedError unless author.can?(permission, project)
      end


--- a/lib/gitlab/email/handler/create_issue.rb
+++ b/lib/gitlab/email/handler/create_issue.rb
@@ -10,9 +10,6 @@ module Gitlab
        end

        def execute
-          # Must be private project without access
-          raise ProjectNotFound unless author.can?(:read_project, project)
-
          validate_permission!(:create_issue)
          validate_authentication_token!


--- a/spec/lib/gitlab/email/receiver_spec.rb
+++ b/spec/lib/gitlab/email/receiver_spec.rb
@@ -88,8 +88,8 @@ describe Gitlab::Email::Receiver, lib: true do
      project.update_attribute(:visibility_level, Project::PRIVATE)
    end

-    it "raises a UserNotAuthorizedError" do
-      expect { receiver.execute }.to raise_error(Gitlab::Email::UserNotAuthorizedError)
+    it "raises a ProjectNotFound" do
+      expect { receiver.execute }.to raise_error(Gitlab::Email::ProjectNotFound)
    end
  end