debian-mirror-gitlab/app/services/users/build_service.rb

124 lines
3.2 KiB
Ruby
Raw Normal View History

2018-11-18 11:00:15 +05:30
# frozen_string_literal: true
2017-08-17 22:00:37 +05:30
module Users
class BuildService < BaseService
2018-11-20 20:47:30 +05:30
delegate :user_default_internal_regex_enabled?,
:user_default_internal_regex_instance,
to: :'Gitlab::CurrentSettings.current_application_settings'
2017-08-17 22:00:37 +05:30
def initialize(current_user, params = {})
@current_user = current_user
@params = params.dup
end
def execute(skip_authorization: false)
raise Gitlab::Access::AccessDeniedError unless skip_authorization || can_create_user?
user_params = build_user_params(skip_authorization: skip_authorization)
user = User.new(user_params)
if current_user&.admin?
@reset_token = user.generate_reset_token if params[:reset_password]
if user_params[:force_random_password]
random_password = Devise.friendly_token.first(Devise.password_length.min)
user.password = user.password_confirmation = random_password
end
end
identity_attrs = params.slice(:extern_uid, :provider)
2019-02-15 15:39:39 +05:30
unless identity_attrs.empty?
2017-08-17 22:00:37 +05:30
user.identities.build(identity_attrs)
end
user
end
private
def can_create_user?
2018-03-17 18:26:18 +05:30
(current_user.nil? && Gitlab::CurrentSettings.allow_signup?) || current_user&.admin?
2017-08-17 22:00:37 +05:30
end
# Allowed params for creating a user (admins only)
def admin_create_params
[
:access_level,
:admin,
:avatar,
:bio,
:can_create_group,
:color_scheme_id,
:email,
:external,
:force_random_password,
:hide_no_password,
:hide_no_ssh_key,
:linkedin,
:name,
:password,
:password_automatically_set,
:password_expires_at,
:projects_limit,
:remember_me,
:skip_confirmation,
:skype,
:theme_id,
:twitter,
:username,
2018-11-18 11:00:15 +05:30
:website_url,
2018-12-05 23:21:45 +05:30
:private_profile,
:organization,
:location,
:public_email
2017-08-17 22:00:37 +05:30
]
end
# Allowed params for user signup
def signup_params
[
:email,
:email_confirmation,
:password_automatically_set,
:name,
:password,
:username
]
end
def build_user_params(skip_authorization:)
if current_user&.admin?
user_params = params.slice(*admin_create_params)
user_params[:created_by_id] = current_user&.id
if params[:reset_password]
user_params.merge!(force_random_password: true, password_expires_at: nil)
end
else
allowed_signup_params = signup_params
allowed_signup_params << :skip_confirmation if skip_authorization
user_params = params.slice(*allowed_signup_params)
if user_params[:skip_confirmation].nil?
user_params[:skip_confirmation] = skip_user_confirmation_email_from_setting
end
end
2019-02-15 15:39:39 +05:30
if user_default_internal_regex_enabled? && !user_params.key?(:external)
user_params[:external] = user_external?
end
2017-08-17 22:00:37 +05:30
user_params
end
def skip_user_confirmation_email_from_setting
2018-03-17 18:26:18 +05:30
!Gitlab::CurrentSettings.send_user_confirmation_email
2017-08-17 22:00:37 +05:30
end
2018-11-20 20:47:30 +05:30
def user_external?
user_default_internal_regex_instance.match(params[:email]).nil?
end
2017-08-17 22:00:37 +05:30
end
end