application_controller.rb

class Groups::ApplicationController < ApplicationController
  include RoutableActions

  layout 'group'

  skip_before_action :authenticate_user!
  before_action :group

  private

  def group
    unless @group
      given_path = params[:group_id] || params[:id]
      @group = Group.find_by_full_path(given_path, follow_redirects: request.get?)

      if @group && can?(current_user, :read_group, @group)
        ensure_canonical_path(@group, given_path)
      else
        @group = nil

        route_not_found
      end
    end

    @group
  end

  def group_projects
    @projects ||= GroupProjectsFinder.new(group: group, current_user: current_user).execute
  end

  def group_merge_requests
    @group_merge_requests = MergeRequestsFinder.new(current_user, group_id: @group.id).execute
  end

  def authorize_admin_group!
    unless can?(current_user, :admin_group, group)
      return render_404
    end
  end

  def authorize_admin_group_member!
    unless can?(current_user, :admin_group_member, group)
      return render_403
    end
  end
end