debian-mirror-gitlab/app/models/snippet.rb

# frozen_string_literal: true

class Snippet < ApplicationRecord
  include Gitlab::VisibilityLevel
  include Redactable
  include CacheMarkdownField
  include Noteable
  include Participable
  include Referable
  include Sortable
  include Awardable
  include Mentionable
  include Spammable
  include Editable
  include Gitlab::SQL::Pattern
  include FromUnion

  cache_markdown_field :title, pipeline: :single_line
  cache_markdown_field :description
  cache_markdown_field :content

  redact_field :description

  # Aliases to make application_helper#edited_time_ago_with_tooltip helper work properly with snippets.
  # See https://gitlab.com/gitlab-org/gitlab-foss/merge_requests/10392/diffs#note_28719102
  alias_attribute :last_edited_at, :updated_at
  alias_attribute :last_edited_by, :updated_by

  # If file_name changes, it invalidates content
  alias_method :default_content_html_invalidator, :content_html_invalidated?
  def content_html_invalidated?
    default_content_html_invalidator || file_name_changed?
  end

  default_value_for(:visibility_level) { Gitlab::CurrentSettings.default_snippet_visibility }

  belongs_to :author, class_name: 'User'
  belongs_to :project

  has_many :notes, as: :noteable, dependent: :destroy # rubocop:disable Cop/ActiveRecordDependent

  delegate :name, :email, to: :author, prefix: true, allow_nil: true

  validates :author, presence: true
  validates :title, presence: true, length: { maximum: 255 }
  validates :file_name,
    length: { maximum: 255 }

  validates :content, presence: true
  validates :visibility_level, inclusion: { in: Gitlab::VisibilityLevel.values }

  # Scopes
  scope :are_internal, -> { where(visibility_level: Snippet::INTERNAL) }
  scope :are_private, -> { where(visibility_level: Snippet::PRIVATE) }
  scope :are_public, -> { where(visibility_level: Snippet::PUBLIC) }
  scope :public_and_internal, -> { where(visibility_level: [Snippet::PUBLIC, Snippet::INTERNAL]) }
  scope :fresh, -> { order("created_at DESC") }
  scope :inc_author, -> { includes(:author) }
  scope :inc_relations_for_view, -> { includes(author: :status) }

  participant :author
  participant :notes_with_associations

  attr_spammable :title, spam_title: true
  attr_spammable :content, spam_description: true

  def self.with_optional_visibility(value = nil)
    if value
      where(visibility_level: value)
    else
      all
    end
  end

  def self.only_global_snippets
    where(project_id: nil)
  end

  def self.only_include_projects_visible_to(current_user = nil)
    levels = Gitlab::VisibilityLevel.levels_for_user(current_user)

    joins(:project).where('projects.visibility_level IN (?)', levels)
  end

  def self.only_include_projects_with_snippets_enabled(include_private: false)
    column = ProjectFeature.access_level_attribute(:snippets)
    levels = [ProjectFeature::ENABLED, ProjectFeature::PUBLIC]

    levels << ProjectFeature::PRIVATE if include_private

    joins(project: :project_feature)
      .where(project_features: { column => levels })
  end

  def self.only_include_authorized_projects(current_user)
    where(
      'EXISTS (?)',
      ProjectAuthorization
        .select(1)
        .where('project_id = snippets.project_id')
        .where(user_id: current_user.id)
    )
  end

  def self.for_project_with_user(project, user = nil)
    return none unless project.snippets_visible?(user)

    if user && project.team.member?(user)
      project.snippets
    else
      project.snippets.public_to_user(user)
    end
  end

  def self.visible_to_or_authored_by(user)
    where(
      'snippets.visibility_level IN (?) OR snippets.author_id = ?',
      Gitlab::VisibilityLevel.levels_for_user(user),
      user.id
    )
  end

  def self.reference_prefix
    '$'
  end

  # Pattern used to extract `$123` snippet references from text
  #
  # This pattern supports cross-project references.
  def self.reference_pattern
    @reference_pattern ||= %r{
      (#{Project.reference_pattern})?
      #{Regexp.escape(reference_prefix)}(?<snippet>\d+)
    }x
  end

  def self.link_reference_pattern
    @link_reference_pattern ||= super("snippets", /(?<snippet>\d+)/)
  end

  def to_reference(from = nil, full: false)
    reference = "#{self.class.reference_prefix}#{id}"

    if project.present?
      "#{project.to_reference(from, full: full)}#{reference}"
    else
      reference
    end
  end

  def self.content_types
    [
      ".rb", ".py", ".pl", ".scala", ".c", ".cpp", ".java",
      ".haml", ".html", ".sass", ".scss", ".xml", ".php", ".erb",
      ".js", ".sh", ".coffee", ".yml", ".md"
    ]
  end

  def blob
    @blob ||= Blob.decorate(SnippetBlob.new(self), nil)
  end

  def hook_attrs
    attributes
  end

  def file_name
    super.to_s
  end

  def sanitized_file_name
    file_name.gsub(/[^a-zA-Z0-9_\-\.]+/, '')
  end

  def visibility_level_field
    :visibility_level
  end

  def embeddable?
    ability = project_id? ? :read_project_snippet : :read_personal_snippet

    Ability.allowed?(nil, ability, self)
  end

  def notes_with_associations
    notes.includes(:author)
  end

  def check_for_spam?
    visibility_level_changed?(to: Snippet::PUBLIC) ||
      (public? && (title_changed? || content_changed?))
  end

  def spammable_entity_type
    'snippet'
  end

  def to_ability_name
    model_name.singular
  end

  class << self
    # Searches for snippets with a matching title or file name.
    #
    # This method uses ILIKE on PostgreSQL and LIKE on MySQL.
    #
    # query - The search query as a String.
    #
    # Returns an ActiveRecord::Relation.
    def search(query)
      fuzzy_search(query, [:title, :file_name])
    end

    # Searches for snippets with matching content.
    #
    # This method uses ILIKE on PostgreSQL and LIKE on MySQL.
    #
    # query - The search query as a String.
    #
    # Returns an ActiveRecord::Relation.
    def search_code(query)
      fuzzy_search(query, [:content])
    end

    def parent_class
      ::Project
    end
  end
end

Snippet.prepend_if_ee('EE::Snippet')
New upstream version 11.2.8+dfsg 2018-11-18 11:00:15 +05:30			`# frozen_string_literal: true`

New upstream version 11.10.8+dfsg 2019-07-07 11:18:12 +05:30			`class Snippet < ApplicationRecord`
Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30			`include Gitlab::VisibilityLevel`
New upstream version 11.2.8+dfsg 2018-11-18 11:00:15 +05:30			`include Redactable`
New upstream version 8.13.3+dfsg1 2016-11-03 12:29:30 +05:30			`include CacheMarkdownField`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`include Noteable`
Imported Upstream version 7.14.3 2015-09-11 14:41:01 +05:30			`include Participable`
			`include Referable`
			`include Sortable`
New upstream version 8.12.1+dfsg1 2016-09-29 09:46:39 +05:30			`include Awardable`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`include Mentionable`
			`include Spammable`
			`include Editable`
New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30			`include Gitlab::SQL::Pattern`
New upstream version 11.4.9+dfsg 2018-12-05 23:21:45 +05:30			`include FromUnion`
Imported Upstream version 7.2.1 2014-09-02 18:07:02 +05:30
New upstream version 8.13.3+dfsg1 2016-11-03 12:29:30 +05:30			`cache_markdown_field :title, pipeline: :single_line`
New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30			`cache_markdown_field :description`
New upstream version 8.13.3+dfsg1 2016-11-03 12:29:30 +05:30			`cache_markdown_field :content`

New upstream version 11.2.8+dfsg 2018-11-18 11:00:15 +05:30			`redact_field :description`

New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`# Aliases to make application_helper#edited_time_ago_with_tooltip helper work properly with snippets.`
New upstream version 12.3.8 2019-12-04 20:38:33 +05:30			`# See https://gitlab.com/gitlab-org/gitlab-foss/merge_requests/10392/diffs#note_28719102`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`alias_attribute :last_edited_at, :updated_at`
			`alias_attribute :last_edited_by, :updated_by`

New upstream version 8.13.3+dfsg1 2016-11-03 12:29:30 +05:30			`# If file_name changes, it invalidates content`
			`alias_method :default_content_html_invalidator, :content_html_invalidated?`
			`def content_html_invalidated?`
			`default_content_html_invalidator \|\| file_name_changed?`
			`end`

New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30			`default_value_for(:visibility_level) { Gitlab::CurrentSettings.default_snippet_visibility }`
Imported Upstream version 7.2.1 2014-09-02 18:07:02 +05:30
Imported Upstream version 7.14.3 2015-09-11 14:41:01 +05:30			`belongs_to :author, class_name: 'User'`
			`belongs_to :project`
Imported Upstream version 7.2.1 2014-09-02 18:07:02 +05:30
New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30			`has_many :notes, as: :noteable, dependent: :destroy # rubocop:disable Cop/ActiveRecordDependent`
Imported Upstream version 7.2.1 2014-09-02 18:07:02 +05:30
			`delegate :name, :email, to: :author, prefix: true, allow_nil: true`

			`validates :author, presence: true`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`validates :title, presence: true, length: { maximum: 255 }`
Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30			`validates :file_name,`
New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30			`length: { maximum: 255 }`
Imported Upstream version 8.10.5+dfsg 2016-08-24 12:49:21 +05:30
Imported Upstream version 7.2.1 2014-09-02 18:07:02 +05:30			`validates :content, presence: true`
Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30			`validates :visibility_level, inclusion: { in: Gitlab::VisibilityLevel.values }`
Imported Upstream version 7.2.1 2014-09-02 18:07:02 +05:30
			`# Scopes`
New upstream version 11.8.0 2019-03-02 22:35:43 +05:30			`scope :are_internal, -> { where(visibility_level: Snippet::INTERNAL) }`
Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30			`scope :are_private, -> { where(visibility_level: Snippet::PRIVATE) }`
			`scope :are_public, -> { where(visibility_level: Snippet::PUBLIC) }`
			`scope :public_and_internal, -> { where(visibility_level: [Snippet::PUBLIC, Snippet::INTERNAL]) }`
New upstream version 11.8.0 2019-03-02 22:35:43 +05:30			`scope :fresh, -> { order("created_at DESC") }`
New upstream version 12.3.8 2019-12-04 20:38:33 +05:30			`scope :inc_author, -> { includes(:author) }`
New upstream version 11.2.8+dfsg 2018-11-18 11:00:15 +05:30			`scope :inc_relations_for_view, -> { includes(author: :status) }`
Imported Upstream version 7.2.1 2014-09-02 18:07:02 +05:30
Imported Upstream version 8.9.0+debian~rc4 2016-06-16 23:09:34 +05:30			`participant :author`
			`participant :notes_with_associations`
Imported Upstream version 7.14.3 2015-09-11 14:41:01 +05:30
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`attr_spammable :title, spam_title: true`
			`attr_spammable :content, spam_description: true`

New upstream version 11.5.3+dfsg 2018-12-13 13:39:08 +05:30			`def self.with_optional_visibility(value = nil)`
			`if value`
			`where(visibility_level: value)`
			`else`
			`all`
			`end`
			`end`

			`def self.only_global_snippets`
			`where(project_id: nil)`
			`end`

			`def self.only_include_projects_visible_to(current_user = nil)`
			`levels = Gitlab::VisibilityLevel.levels_for_user(current_user)`

			`joins(:project).where('projects.visibility_level IN (?)', levels)`
			`end`

			`def self.only_include_projects_with_snippets_enabled(include_private: false)`
			`column = ProjectFeature.access_level_attribute(:snippets)`
			`levels = [ProjectFeature::ENABLED, ProjectFeature::PUBLIC]`

			`levels << ProjectFeature::PRIVATE if include_private`

			`joins(project: :project_feature)`
			`.where(project_features: { column => levels })`
			`end`

			`def self.only_include_authorized_projects(current_user)`
			`where(`
			`'EXISTS (?)',`
			`ProjectAuthorization`
			`.select(1)`
			`.where('project_id = snippets.project_id')`
			`.where(user_id: current_user.id)`
			`)`
			`end`

			`def self.for_project_with_user(project, user = nil)`
			`return none unless project.snippets_visible?(user)`

			`if user && project.team.member?(user)`
			`project.snippets`
			`else`
			`project.snippets.public_to_user(user)`
			`end`
			`end`

			`def self.visible_to_or_authored_by(user)`
			`where(`
			`'snippets.visibility_level IN (?) OR snippets.author_id = ?',`
			`Gitlab::VisibilityLevel.levels_for_user(user),`
			`user.id`
			`)`
			`end`

Imported Upstream version 7.14.3 2015-09-11 14:41:01 +05:30			`def self.reference_prefix`
			`'$'`
			`end`

			# Pattern used to extract `$123` snippet references from text
			`#`
			`# This pattern supports cross-project references.`
			`def self.reference_pattern`
Imported Upstream version 8.8.2+dfsg 2016-06-02 11:05:42 +05:30			`@reference_pattern \|\|= %r{`
Imported Upstream version 7.14.3 2015-09-11 14:41:01 +05:30			`(#{Project.reference_pattern})?`
			`#{Regexp.escape(reference_prefix)}(?<snippet>\d+)`
			`}x`
			`end`

Imported Upstream version 8.3.0+dfsg 2015-12-23 02:04:40 +05:30			`def self.link_reference_pattern`
Imported Upstream version 8.8.2+dfsg 2016-06-02 11:05:42 +05:30			`@link_reference_pattern \|\|= super("snippets", /(?<snippet>\d+)/)`
Imported Upstream version 8.3.0+dfsg 2015-12-23 02:04:40 +05:30			`end`

New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30			`def to_reference(from = nil, full: false)`
Imported Upstream version 7.14.3 2015-09-11 14:41:01 +05:30			`reference = "#{self.class.reference_prefix}#{id}"`

New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`if project.present?`
New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30			`"#{project.to_reference(from, full: full)}#{reference}"`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`else`
			`reference`
Imported Upstream version 7.14.3 2015-09-11 14:41:01 +05:30			`end`
			`end`

Imported Upstream version 7.2.1 2014-09-02 18:07:02 +05:30			`def self.content_types`
			`[`
			`".rb", ".py", ".pl", ".scala", ".c", ".cpp", ".java",`
			`".haml", ".html", ".sass", ".scss", ".xml", ".php", ".erb",`
			`".js", ".sh", ".coffee", ".yml", ".md"`
			`]`
			`end`

New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`def blob`
			`@blob \|\|= Blob.decorate(SnippetBlob.new(self), nil)`
Imported Upstream version 7.2.1 2014-09-02 18:07:02 +05:30			`end`

Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30			`def hook_attrs`
			`attributes`
			`end`

New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`def file_name`
			`super.to_s`
Imported Upstream version 7.2.1 2014-09-02 18:07:02 +05:30			`end`

Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30			`def sanitized_file_name`
			`file_name.gsub(/[^a-zA-Z0-9_\-\.]+/, '')`
			`end`

New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`def visibility_level_field`
			`:visibility_level`
Imported Upstream version 7.2.1 2014-09-02 18:07:02 +05:30			`end`

New upstream version 11.5.6+dfsg 2019-01-03 12:48:30 +05:30			`def embeddable?`
			`ability = project_id? ? :read_project_snippet : :read_personal_snippet`

			`Ability.allowed?(nil, ability, self)`
			`end`

New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`def notes_with_associations`
			`notes.includes(:author)`
Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30			`end`

New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`def check_for_spam?`
			`visibility_level_changed?(to: Snippet::PUBLIC) \|\|`
			`(public? && (title_changed? \|\| content_changed?))`
Imported Upstream version 8.8.2+dfsg 2016-06-02 11:05:42 +05:30			`end`

New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`def spammable_entity_type`
			`'snippet'`
Imported Upstream version 8.9.0+debian~rc4 2016-06-16 23:09:34 +05:30			`end`

New upstream version 12.1.11 2019-09-30 21:07:59 +05:30			`def to_ability_name`
			`model_name.singular`
			`end`

Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30			`class << self`
Imported Upstream version 8.8.2+dfsg 2016-06-02 11:05:42 +05:30			`# Searches for snippets with a matching title or file name.`
			`#`
			`# This method uses ILIKE on PostgreSQL and LIKE on MySQL.`
			`#`
			`# query - The search query as a String.`
			`#`
			`# Returns an ActiveRecord::Relation.`
Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30			`def search(query)`
New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30			`fuzzy_search(query, [:title, :file_name])`
Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30			`end`

Imported Upstream version 8.8.2+dfsg 2016-06-02 11:05:42 +05:30			`# Searches for snippets with matching content.`
			`#`
			`# This method uses ILIKE on PostgreSQL and LIKE on MySQL.`
			`#`
			`# query - The search query as a String.`
			`#`
			`# Returns an ActiveRecord::Relation.`
Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30			`def search_code(query)`
New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30			`fuzzy_search(query, [:content])`
Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30			`end`
New upstream version 10.6.0+dfsg 2018-03-27 19:54:05 +05:30
			`def parent_class`
			`::Project`
			`end`
Imported Upstream version 7.10.0 2015-04-26 12:48:37 +05:30			`end`
Imported Upstream version 7.2.1 2014-09-02 18:07:02 +05:30			`end`
New upstream version 12.3.8 2019-12-04 20:38:33 +05:30
			`Snippet.prepend_if_ee('EE::Snippet')`