debian-mirror-gitlab/app/services/members/approve_access_request_service.rb

# frozen_string_literal: true

module Members
  class ApproveAccessRequestService < Members::BaseService
    def execute(access_requester, skip_authorization: false, skip_log_audit_event: false)
      validate_access!(access_requester) unless skip_authorization

      access_requester.access_level = params[:access_level] if params[:access_level]
      access_requester.accept_request(current_user)

      after_execute(member: access_requester, skip_log_audit_event: skip_log_audit_event)

      access_requester
    end

    private

    def after_execute(member:, skip_log_audit_event:)
      super

      resolve_access_request_todos(member)
    end

    def validate_access!(access_requester)
      raise Gitlab::Access::AccessDeniedError unless can_approve_access_requester?(access_requester)

      if approving_member_with_owner_access_level?(access_requester) &&
        cannot_assign_owner_responsibilities_to_member_in_project?(access_requester)
        raise Gitlab::Access::AccessDeniedError
      end
    end

    def can_approve_access_requester?(access_requester)
      can?(current_user, :admin_member_access_request, access_requester.source)
    end

    def approving_member_with_owner_access_level?(access_requester)
      access_level_value = params[:access_level] || access_requester.access_level

      access_level_value == Gitlab::Access::OWNER
    end
  end
end

Members::ApproveAccessRequestService.prepend_mod_with('Members::ApproveAccessRequestService')
New upstream version 11.2.8+dfsg 2018-11-18 11:00:15 +05:30			`# frozen_string_literal: true`

New upstream version 8.13.3+dfsg1 2016-11-03 12:29:30 +05:30			`module Members`
New upstream version 10.6.0+dfsg 2018-03-27 19:54:05 +05:30			`class ApproveAccessRequestService < Members::BaseService`
			`def execute(access_requester, skip_authorization: false, skip_log_audit_event: false)`
New upstream version 15.1.3+ds1 2022-07-23 23:45:48 +05:30			`validate_access!(access_requester) unless skip_authorization`
New upstream version 8.13.3+dfsg1 2016-11-03 12:29:30 +05:30
			`access_requester.access_level = params[:access_level] if params[:access_level]`
New upstream version 15.8.4+ds1 2023-03-17 16:20:25 +05:30			`access_requester.accept_request(current_user)`
New upstream version 8.13.3+dfsg1 2016-11-03 12:29:30 +05:30
New upstream version 10.6.0+dfsg 2018-03-27 19:54:05 +05:30			`after_execute(member: access_requester, skip_log_audit_event: skip_log_audit_event)`

New upstream version 8.13.3+dfsg1 2016-11-03 12:29:30 +05:30			`access_requester`
			`end`

			`private`

New upstream version 15.9.2+ds1 2023-04-23 21:23:45 +05:30			`def after_execute(member:, skip_log_audit_event:)`
			`super`

New upstream version 16.0.7+ds1 2023-07-09 08:55:56 +05:30			`resolve_access_request_todos(member)`
New upstream version 15.9.2+ds1 2023-04-23 21:23:45 +05:30			`end`

New upstream version 15.1.3+ds1 2022-07-23 23:45:48 +05:30			`def validate_access!(access_requester)`
New upstream version 15.6.4+ds1 2023-01-13 00:05:48 +05:30			`raise Gitlab::Access::AccessDeniedError unless can_approve_access_requester?(access_requester)`
New upstream version 15.1.3+ds1 2022-07-23 23:45:48 +05:30
			`if approving_member_with_owner_access_level?(access_requester) &&`
			`cannot_assign_owner_responsibilities_to_member_in_project?(access_requester)`
			`raise Gitlab::Access::AccessDeniedError`
			`end`
			`end`

New upstream version 15.6.4+ds1 2023-01-13 00:05:48 +05:30			`def can_approve_access_requester?(access_requester)`
			`can?(current_user, :admin_member_access_request, access_requester.source)`
New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30			`end`
New upstream version 15.1.3+ds1 2022-07-23 23:45:48 +05:30
			`def approving_member_with_owner_access_level?(access_requester)`
			`access_level_value = params[:access_level] \|\| access_requester.access_level`

			`access_level_value == Gitlab::Access::OWNER`
			`end`
New upstream version 8.13.3+dfsg1 2016-11-03 12:29:30 +05:30			`end`
			`end`
New upstream version 12.3.8 2019-12-04 20:38:33 +05:30
New upstream version 13.12.3+ds1 2021-06-08 01:23:25 +05:30			`Members::ApproveAccessRequestService.prepend_mod_with('Members::ApproveAccessRequestService')`