debian-mirror-gitlab/lib/gitlab/graphql/authorize/instrumentation.rb

# frozen_string_literal: true

module Gitlab
  module Graphql
    module Authorize
      class Instrumentation
        # Replace the resolver for the field with one that will only return the
        # resolved object if the permissions check is successful.
        def instrument(_type, field)
          service = AuthorizeFieldService.new(field)

          if service.authorizations? && !resolver_skips_authorizations?(field)
            field.redefine { resolve(service.authorized_resolve) }
          else
            field
          end
        end

        def resolver_skips_authorizations?(field)
          field.metadata[:resolver].try(:skip_authorizations?)
        end
      end
    end
  end
end
New upstream version 11.7.5 2019-02-15 15:39:39 +05:30			`# frozen_string_literal: true`

New upstream version 11.1.8+dfsg 2018-11-08 19:23:39 +05:30			`module Gitlab`
			`module Graphql`
			`module Authorize`
			`class Instrumentation`
			`# Replace the resolver for the field with one that will only return the`
			`# resolved object if the permissions check is successful.`
			`def instrument(_type, field)`
New upstream version 11.10.8+dfsg 2019-07-07 11:18:12 +05:30			`service = AuthorizeFieldService.new(field)`
New upstream version 11.1.8+dfsg 2018-11-08 19:23:39 +05:30
New upstream version 12.5.4 2019-12-26 22:10:19 +05:30			`if service.authorizations? && !resolver_skips_authorizations?(field)`
New upstream version 11.10.8+dfsg 2019-07-07 11:18:12 +05:30			`field.redefine { resolve(service.authorized_resolve) }`
			`else`
			`field`
New upstream version 11.1.8+dfsg 2018-11-08 19:23:39 +05:30			`end`
			`end`
New upstream version 12.5.4 2019-12-26 22:10:19 +05:30
			`def resolver_skips_authorizations?(field)`
			`field.metadata[:resolver].try(:skip_authorizations?)`
			`end`
New upstream version 11.1.8+dfsg 2018-11-08 19:23:39 +05:30			`end`
			`end`
			`end`
			`end`