From 16ba41a186d5ff393f7d1e3ac1b94fba485aad12 Mon Sep 17 00:00:00 2001
From: Valery Sizov <vsv2711@gmail.com>
Date: Tue, 15 Sep 2015 14:45:59 +0300
Subject: fix specs. Stage 4

---
 lib/ci/api/forks.rb    |  5 +----
 lib/ci/api/projects.rb | 10 +++++-----
 2 files changed, 6 insertions(+), 9 deletions(-)

(limited to 'lib')

diff --git a/lib/ci/api/forks.rb b/lib/ci/api/forks.rb
index 4ce944df054..152883a599f 100644
--- a/lib/ci/api/forks.rb
+++ b/lib/ci/api/forks.rb
@@ -18,11 +18,8 @@ module Ci
           project = Ci::Project.find_by!(gitlab_id: params[:project_id])
           authenticate_project_token!(project)
 
-          user_session = Ci::UserSession.new
-          user = user_session.authenticate(private_token: params[:private_token])
-
           fork = Ci::CreateProjectService.new.execute(
-            user,
+            current_user,
             params[:data],
             Ci::RoutesHelper.ci_project_url(":project_id"),
             project
diff --git a/lib/ci/api/projects.rb b/lib/ci/api/projects.rb
index 138667c980f..66bcf65e8c4 100644
--- a/lib/ci/api/projects.rb
+++ b/lib/ci/api/projects.rb
@@ -17,7 +17,7 @@ module Ci
 
           project = Ci::Project.find(params[:project_id])
 
-          unauthorized! unless can?(current_user, :manage_project, project.gl_project)
+          unauthorized! unless can?(current_user, :admin_project, project.gl_project)
 
           web_hook = project.web_hooks.new({ url: params[:web_hook] })
 
@@ -119,7 +119,7 @@ module Ci
         put ":id" do
           project = Ci::Project.find(params[:id])
 
-          unauthorized! unless can?(current_user, :manage_project, project.gl_project)
+          unauthorized! unless can?(current_user, :admin_project, project.gl_project)
 
           attrs = attributes_for_keys [:name, :gitlab_id, :path, :gitlab_url, :default_ref, :ssh_url_to_repo]
 
@@ -145,7 +145,7 @@ module Ci
         delete ":id" do
           project = Ci::Project.find(params[:id])
 
-          unauthorized! unless can?(current_user, :manage_project, project.gl_project)
+          unauthorized! unless can?(current_user, :admin_project, project.gl_project)
 
           project.destroy
         end
@@ -161,7 +161,7 @@ module Ci
           project = Ci::Project.find(params[:id])
           runner  = Ci::Runner.find(params[:runner_id])
 
-          unauthorized! unless can?(current_user, :manage_project, project.gl_project)
+          unauthorized! unless can?(current_user, :admin_project, project.gl_project)
 
           options = {
             project_id: project.id,
@@ -189,7 +189,7 @@ module Ci
           project = Ci::Project.find(params[:id])
           runner  = Ci::Runner.find(params[:runner_id])
 
-          unauthorized! unless can?(current_user, :manage_project, project.gl_project)
+          unauthorized! unless can?(current_user, :admin_project, project.gl_project)
 
           options = {
             project_id: project.id,
-- 
cgit v1.2.3