diff --git a/app/controllers/projects_controller.rb b/app/controllers/projects_controller.rb
index 052df384e..954006e42 100644
--- a/app/controllers/projects_controller.rb
+++ b/app/controllers/projects_controller.rb
@@ -347,16 +347,27 @@ class ProjectsController < ApplicationController
end
#发送邮件邀请新用户
def invite_members_by_mail
- @is_zhuce =false
- respond_to do |format|
- format.html
- format.js
+ if User.current.member_of?(@project) || User.current.admin?
+ @is_zhuce = false
+ respond_to do |format|
+ format.html
+ format.js
+ end
+ else
+ render_403
end
end
# 邀请Trustie注册用户
def invite_members
- @member ||= @project.members.new
+ if User.current.member_of?(@project) || User.current.admin?
+ @member ||= @project.members.new
+ respond_to do |format|
+ format.html
+ end
+ else
+ render_403
+ end
end
def edit
diff --git a/app/views/layouts/base_projects.html.erb b/app/views/layouts/base_projects.html.erb
index 6456b0090..e3172b8cf 100644
--- a/app/views/layouts/base_projects.html.erb
+++ b/app/views/layouts/base_projects.html.erb
@@ -140,27 +140,27 @@
<%= link_to l(:label_issue_tracking), project_issues_path(@project), :style => "color:#3CA5C6" %>(<%= @project.issues.count %>)
- <% if User.current.logged? && User.current.member_of?(@project) %>
+ <% if User.current.member_of?(@project) %>
<%= link_to "+发布问题", new_project_issue_path(@project) , :style => "font-size:12px;color:#fff; padding:1px 3px 3px 3px;height:18px;margin-top:3px;background:#28be6c;float:right;line-height:20px;" %>
<% end %>
<%= link_to "讨论区", project_boards_path(@project), :style => "color:#3CA5C6" %>
(<%= @project.boards.first.topics.count %>)
- <% if User.current.logged? && User.current.member_of?(@project) %>
+ <% if User.current.member_of?(@project) %>
<%= link_to "+发贴", project_boards_path(@project, :flag => true), :layout => 'base_projects',:style => "font-size:12px;color:#fff; padding:1px 3px 3px 3px;height:18px;margin-top:4px;background:#28be6c;float:right;line-height:20px;" %>
<% end %>
<%= link_to l(:label_course_file), project_files_path(@project), :style => "color:#3CA5C6" %>(<%= @project.attachments.count %>)
- <% if User.current.logged? && User.current.member_of?(@project) %>
+ <% if User.current.member_of?(@project) %>
<%= link_to "+上传资源", new_project_file_path(@project),:style => "font-size:12px;color:#fff; padding:1px 3px 3px 3px;height:18px;margin-top:3px;background:#28be6c;float:right;line-height:20px;" %>
<% end %>
<%= link_to l(:field_user_active_changeset), {:controller => 'repositories', :action => 'show', :id => @project.id}, :style => "color:#3CA5C6" %>
(<%= @project.repositories.count %>)
- <% if User.current.logged? && User.current.member_of?(@project) %>
+ <% if User.current.member_of?(@project) %>
<%= link_to "+创建版本库", new_project_repository_path(@project),:style => "font-size:12px;color:#fff; padding:1px 3px 3px 3px;height:18px;margin-top:3px;background:#28be6c;float:right;line-height:20px;" %>
<% end %>