debian-mirror-gitlab/app/controllers/concerns/enforces_admin_authentication.rb

# frozen_string_literal: true

# == EnforcesAdminAuthentication
#
# Controller concern to enforce that users are authenticated as admins
#
# Upon inclusion, adds `authenticate_admin!` as a before_action
#
module EnforcesAdminAuthentication
  extend ActiveSupport::Concern

  included do
    before_action :authenticate_admin!
  end

  def authenticate_admin!
    return render_404 unless current_user.admin?
    return unless Feature.enabled?(:user_mode_in_session)

    unless current_user_mode.admin_mode?
      current_user_mode.request_admin_mode!
      store_location_for(:redirect, request.fullpath) if storable_location?
      redirect_to(new_admin_session_path, notice: _('Re-authentication required'))
    end
  end

  def storable_location?
    request.path != new_admin_session_path
  end
end
New upstream version 11.11.7+dfsg 2019-07-31 22:56:46 +05:30			`# frozen_string_literal: true`

			`# == EnforcesAdminAuthentication`
			`#`
			`# Controller concern to enforce that users are authenticated as admins`
			`#`
			# Upon inclusion, adds `authenticate_admin!` as a before_action
			`#`
			`module EnforcesAdminAuthentication`
			`extend ActiveSupport::Concern`

			`included do`
			`before_action :authenticate_admin!`
			`end`

			`def authenticate_admin!`
New upstream version 12.4.6 2019-12-21 20:55:43 +05:30			`return render_404 unless current_user.admin?`
			`return unless Feature.enabled?(:user_mode_in_session)`

			`unless current_user_mode.admin_mode?`
New upstream version 12.6.1 2020-01-01 13:55:28 +05:30			`current_user_mode.request_admin_mode!`
New upstream version 12.4.6 2019-12-21 20:55:43 +05:30			`store_location_for(:redirect, request.fullpath) if storable_location?`
			`redirect_to(new_admin_session_path, notice: _('Re-authentication required'))`
			`end`
			`end`

			`def storable_location?`
			`request.path != new_admin_session_path`
New upstream version 11.11.7+dfsg 2019-07-31 22:56:46 +05:30			`end`
			`end`