debian-mirror-gitlab/lib/api/snippets.rb

# frozen_string_literal: true

module API
  # Snippets API
  class Snippets < Grape::API::Instance
    include PaginationParams

    before { authenticate! }

    resource :snippets do
      helpers Helpers::SnippetsHelpers
      helpers do
        def snippets_for_current_user
          SnippetsFinder.new(current_user, author: current_user).execute
        end

        def public_snippets
          Snippet.only_personal_snippets.are_public.fresh
        end

        def snippets
          SnippetsFinder.new(current_user).execute
        end
      end

      desc 'Get a snippets list for authenticated user' do
        detail 'This feature was introduced in GitLab 8.15.'
        success Entities::Snippet
      end
      params do
        use :pagination
      end
      get do
        present paginate(snippets_for_current_user), with: Entities::Snippet, current_user: current_user
      end

      desc 'List all public personal snippets current_user has access to' do
        detail 'This feature was introduced in GitLab 8.15.'
        success Entities::PersonalSnippet
      end
      params do
        use :pagination
      end
      get 'public' do
        present paginate(public_snippets), with: Entities::PersonalSnippet, current_user: current_user
      end

      desc 'Get a single snippet' do
        detail 'This feature was introduced in GitLab 8.15.'
        success Entities::PersonalSnippet
      end
      params do
        requires :id, type: Integer, desc: 'The ID of a snippet'
      end
      get ':id' do
        snippet = snippets.find_by_id(params[:id])

        break not_found!('Snippet') unless snippet

        present snippet, with: Entities::PersonalSnippet, current_user: current_user
      end

      desc 'Create new snippet' do
        detail 'This feature was introduced in GitLab 8.15.'
        success Entities::PersonalSnippet
      end
      params do
        requires :title, type: String, allow_blank: false, desc: 'The title of a snippet'
        requires :file_name, type: String, desc: 'The name of a snippet file'
        requires :content, type: String, allow_blank: false, desc: 'The content of a snippet'
        optional :description, type: String, desc: 'The description of a snippet'
        optional :visibility, type: String,
                              values: Gitlab::VisibilityLevel.string_values,
                              default: 'internal',
                              desc: 'The visibility of the snippet'
      end
      post do
        authorize! :create_snippet

        attrs = declared_params(include_missing: false).merge(request: request, api: true)
        service_response = ::Snippets::CreateService.new(nil, current_user, attrs).execute
        snippet = service_response.payload[:snippet]

        if service_response.success?
          present snippet, with: Entities::PersonalSnippet, current_user: current_user
        else
          render_spam_error! if snippet.spam?

          render_api_error!({ error: service_response.message }, service_response.http_status)
        end
      end

      desc 'Update an existing snippet' do
        detail 'This feature was introduced in GitLab 8.15.'
        success Entities::PersonalSnippet
      end
      params do
        requires :id, type: Integer, desc: 'The ID of a snippet'
        optional :title, type: String, allow_blank: false, desc: 'The title of a snippet'
        optional :file_name, type: String, desc: 'The name of a snippet file'
        optional :content, type: String, allow_blank: false, desc: 'The content of a snippet'
        optional :description, type: String, desc: 'The description of a snippet'
        optional :visibility, type: String,
                              values: Gitlab::VisibilityLevel.string_values,
                              desc: 'The visibility of the snippet'
        at_least_one_of :title, :file_name, :content, :visibility
      end
      put ':id' do
        snippet = snippets_for_current_user.find_by_id(params.delete(:id))
        break not_found!('Snippet') unless snippet

        authorize! :update_snippet, snippet

        attrs = declared_params(include_missing: false).merge(request: request, api: true)
        service_response = ::Snippets::UpdateService.new(nil, current_user, attrs).execute(snippet)
        snippet = service_response.payload[:snippet]

        if service_response.success?
          present snippet, with: Entities::PersonalSnippet, current_user: current_user
        else
          render_spam_error! if snippet.spam?

          render_api_error!({ error: service_response.message }, service_response.http_status)
        end
      end

      desc 'Remove snippet' do
        detail 'This feature was introduced in GitLab 8.15.'
        success Entities::PersonalSnippet
      end
      params do
        requires :id, type: Integer, desc: 'The ID of a snippet'
      end
      delete ':id' do
        snippet = snippets_for_current_user.find_by_id(params.delete(:id))
        break not_found!('Snippet') unless snippet

        authorize! :admin_snippet, snippet

        destroy_conditionally!(snippet) do |snippet|
          service = ::Snippets::DestroyService.new(current_user, snippet)
          response = service.execute

          if response.error?
            render_api_error!({ error: response.message }, response.http_status)
          end
        end
      end

      desc 'Get a raw snippet' do
        detail 'This feature was introduced in GitLab 8.15.'
      end
      params do
        requires :id, type: Integer, desc: 'The ID of a snippet'
      end
      get ":id/raw" do
        snippet = snippets.find_by_id(params.delete(:id))
        not_found!('Snippet') unless snippet

        present content_for(snippet)
      end

      desc 'Get raw snippet file contents from the repository'
      params do
        use :raw_file_params
      end
      get ":id/files/:ref/:file_path/raw", requirements: { file_path: API::NO_SLASH_URL_PART_REGEX } do
        snippet = snippets.find_by_id(params.delete(:id))
        not_found!('Snippet') unless snippet&.repo_exists?

        present file_content_for(snippet)
      end

      desc 'Get the user agent details for a snippet' do
        success Entities::UserAgentDetail
      end
      params do
        requires :id, type: Integer, desc: 'The ID of a snippet'
      end
      get ":id/user_agent_detail" do
        authenticated_as_admin!

        snippet = Snippet.find_by_id!(params[:id])

        break not_found!('UserAgentDetail') unless snippet.user_agent_detail

        present snippet.user_agent_detail, with: Entities::UserAgentDetail
      end
    end
  end
end
New upstream version 11.4.9+dfsg 2018-12-05 23:21:45 +05:30			`# frozen_string_literal: true`

New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`module API`
			`# Snippets API`
New upstream version 13.2.1 2020-07-28 23:09:34 +05:30			`class Snippets < Grape::API::Instance`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`include PaginationParams`

			`before { authenticate! }`

			`resource :snippets do`
New upstream version 13.0.0 2020-05-24 23:13:21 +05:30			`helpers Helpers::SnippetsHelpers`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`helpers do`
			`def snippets_for_current_user`
			`SnippetsFinder.new(current_user, author: current_user).execute`
			`end`

			`def public_snippets`
New upstream version 12.6.1 2020-01-01 13:55:28 +05:30			`Snippet.only_personal_snippets.are_public.fresh`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`end`
New upstream version 11.10.8+dfsg 2019-07-07 11:18:12 +05:30
			`def snippets`
			`SnippetsFinder.new(current_user).execute`
			`end`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`end`

			`desc 'Get a snippets list for authenticated user' do`
			`detail 'This feature was introduced in GitLab 8.15.'`
New upstream version 13.0.0 2020-05-24 23:13:21 +05:30			`success Entities::Snippet`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`end`
			`params do`
			`use :pagination`
			`end`
			`get do`
New upstream version 13.2.1 2020-07-28 23:09:34 +05:30			`present paginate(snippets_for_current_user), with: Entities::Snippet, current_user: current_user`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`end`

New upstream version 12.6.1 2020-01-01 13:55:28 +05:30			`desc 'List all public personal snippets current_user has access to' do`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`detail 'This feature was introduced in GitLab 8.15.'`
			`success Entities::PersonalSnippet`
			`end`
			`params do`
			`use :pagination`
			`end`
			`get 'public' do`
New upstream version 13.2.1 2020-07-28 23:09:34 +05:30			`present paginate(public_snippets), with: Entities::PersonalSnippet, current_user: current_user`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`end`

			`desc 'Get a single snippet' do`
			`detail 'This feature was introduced in GitLab 8.15.'`
			`success Entities::PersonalSnippet`
			`end`
			`params do`
			`requires :id, type: Integer, desc: 'The ID of a snippet'`
			`end`
			`get ':id' do`
New upstream version 11.10.8+dfsg 2019-07-07 11:18:12 +05:30			`snippet = snippets.find_by_id(params[:id])`

			`break not_found!('Snippet') unless snippet`

New upstream version 13.2.1 2020-07-28 23:09:34 +05:30			`present snippet, with: Entities::PersonalSnippet, current_user: current_user`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`end`

			`desc 'Create new snippet' do`
			`detail 'This feature was introduced in GitLab 8.15.'`
			`success Entities::PersonalSnippet`
			`end`
			`params do`
New upstream version 13.0.0 2020-05-24 23:13:21 +05:30			`requires :title, type: String, allow_blank: false, desc: 'The title of a snippet'`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`requires :file_name, type: String, desc: 'The name of a snippet file'`
New upstream version 13.0.0 2020-05-24 23:13:21 +05:30			`requires :content, type: String, allow_blank: false, desc: 'The content of a snippet'`
New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30			`optional :description, type: String, desc: 'The description of a snippet'`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`optional :visibility, type: String,`
			`values: Gitlab::VisibilityLevel.string_values,`
			`default: 'internal',`
			`desc: 'The visibility of the snippet'`
			`end`
			`post do`
New upstream version 12.8.8 2020-03-28 13:19:24 +05:30			`authorize! :create_snippet`

New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`attrs = declared_params(include_missing: false).merge(request: request, api: true)`
New upstream version 12.8.6 2020-03-13 15:44:24 +05:30			`service_response = ::Snippets::CreateService.new(nil, current_user, attrs).execute`
			`snippet = service_response.payload[:snippet]`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30
New upstream version 13.0.0 2020-05-24 23:13:21 +05:30			`if service_response.success?`
New upstream version 13.2.1 2020-07-28 23:09:34 +05:30			`present snippet, with: Entities::PersonalSnippet, current_user: current_user`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`else`
New upstream version 13.0.0 2020-05-24 23:13:21 +05:30			`render_spam_error! if snippet.spam?`

			`render_api_error!({ error: service_response.message }, service_response.http_status)`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`end`
			`end`

			`desc 'Update an existing snippet' do`
			`detail 'This feature was introduced in GitLab 8.15.'`
			`success Entities::PersonalSnippet`
			`end`
			`params do`
			`requires :id, type: Integer, desc: 'The ID of a snippet'`
New upstream version 13.0.0 2020-05-24 23:13:21 +05:30			`optional :title, type: String, allow_blank: false, desc: 'The title of a snippet'`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`optional :file_name, type: String, desc: 'The name of a snippet file'`
New upstream version 13.0.0 2020-05-24 23:13:21 +05:30			`optional :content, type: String, allow_blank: false, desc: 'The content of a snippet'`
New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30			`optional :description, type: String, desc: 'The description of a snippet'`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`optional :visibility, type: String,`
			`values: Gitlab::VisibilityLevel.string_values,`
			`desc: 'The visibility of the snippet'`
			`at_least_one_of :title, :file_name, :content, :visibility`
			`end`
			`put ':id' do`
New upstream version 11.10.8+dfsg 2019-07-07 11:18:12 +05:30			`snippet = snippets_for_current_user.find_by_id(params.delete(:id))`
New upstream version 10.8.7+dfsg 2018-10-15 14:42:47 +05:30			`break not_found!('Snippet') unless snippet`
New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30
New upstream version 12.8.6 2020-03-13 15:44:24 +05:30			`authorize! :update_snippet, snippet`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30
			`attrs = declared_params(include_missing: false).merge(request: request, api: true)`
New upstream version 12.8.6 2020-03-13 15:44:24 +05:30			`service_response = ::Snippets::UpdateService.new(nil, current_user, attrs).execute(snippet)`
			`snippet = service_response.payload[:snippet]`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30
New upstream version 13.0.0 2020-05-24 23:13:21 +05:30			`if service_response.success?`
New upstream version 13.2.1 2020-07-28 23:09:34 +05:30			`present snippet, with: Entities::PersonalSnippet, current_user: current_user`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`else`
New upstream version 13.0.0 2020-05-24 23:13:21 +05:30			`render_spam_error! if snippet.spam?`

			`render_api_error!({ error: service_response.message }, service_response.http_status)`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`end`
			`end`

			`desc 'Remove snippet' do`
			`detail 'This feature was introduced in GitLab 8.15.'`
			`success Entities::PersonalSnippet`
			`end`
			`params do`
			`requires :id, type: Integer, desc: 'The ID of a snippet'`
			`end`
			`delete ':id' do`
New upstream version 11.10.8+dfsg 2019-07-07 11:18:12 +05:30			`snippet = snippets_for_current_user.find_by_id(params.delete(:id))`
New upstream version 10.8.7+dfsg 2018-10-15 14:42:47 +05:30			`break not_found!('Snippet') unless snippet`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30
New upstream version 12.8.6 2020-03-13 15:44:24 +05:30			`authorize! :admin_snippet, snippet`

			`destroy_conditionally!(snippet) do \|snippet\|`
			`service = ::Snippets::DestroyService.new(current_user, snippet)`
			`response = service.execute`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30
New upstream version 12.8.6 2020-03-13 15:44:24 +05:30			`if response.error?`
			`render_api_error!({ error: response.message }, response.http_status)`
			`end`
			`end`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`end`

			`desc 'Get a raw snippet' do`
			`detail 'This feature was introduced in GitLab 8.15.'`
			`end`
			`params do`
			`requires :id, type: Integer, desc: 'The ID of a snippet'`
			`end`
			`get ":id/raw" do`
New upstream version 11.10.8+dfsg 2019-07-07 11:18:12 +05:30			`snippet = snippets.find_by_id(params.delete(:id))`
New upstream version 13.2.1 2020-07-28 23:09:34 +05:30			`not_found!('Snippet') unless snippet`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30
New upstream version 13.0.0 2020-05-24 23:13:21 +05:30			`present content_for(snippet)`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`end`
New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30
New upstream version 13.2.1 2020-07-28 23:09:34 +05:30			`desc 'Get raw snippet file contents from the repository'`
			`params do`
			`use :raw_file_params`
			`end`
			`get ":id/files/:ref/:file_path/raw", requirements: { file_path: API::NO_SLASH_URL_PART_REGEX } do`
			`snippet = snippets.find_by_id(params.delete(:id))`
			`not_found!('Snippet') unless snippet&.repo_exists?`

			`present file_content_for(snippet)`
			`end`

New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30			`desc 'Get the user agent details for a snippet' do`
			`success Entities::UserAgentDetail`
			`end`
			`params do`
			`requires :id, type: Integer, desc: 'The ID of a snippet'`
			`end`
			`get ":id/user_agent_detail" do`
			`authenticated_as_admin!`

New upstream version 11.10.8+dfsg 2019-07-07 11:18:12 +05:30			`snippet = Snippet.find_by_id!(params[:id])`
New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30
New upstream version 10.8.7+dfsg 2018-10-15 14:42:47 +05:30			`break not_found!('UserAgentDetail') unless snippet.user_agent_detail`
New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30
			`present snippet.user_agent_detail, with: Entities::UserAgentDetail`
			`end`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`end`
			`end`
			`end`