debian-mirror-gitlab/app/controllers/groups/observability_controller.rb

# frozen_string_literal: true
module Groups
  class ObservabilityController < Groups::ApplicationController
    feature_category :tracing

    content_security_policy do |p|
      next if p.directives.blank?

      default_frame_src = p.directives['frame-src'] || p.directives['default-src']

      # When ObservabilityUI is not authenticated, it needs to be able to redirect to the GL sign-in page, hence 'self'
      frame_src_values = Array.wrap(default_frame_src) | [observability_url, "'self'"]

      p.frame_src(*frame_src_values)
    end

    before_action :check_observability_allowed

    def dashboards
      render_observability
    end

    def manage
      render_observability
    end

    def explore
      render_observability
    end

    private

    def render_observability
      render 'observability', layout: 'group', locals: { base_layout: 'layouts/fullscreen' }
    end

    def self.observability_url
      Gitlab::Observability.observability_url
    end

    def observability_url
      self.class.observability_url
    end

    def check_observability_allowed
      return render_404 unless observability_url.present?

      render_404 unless can?(current_user, :read_observability, @group)
    end
  end
end
New upstream version 15.4.2+ds1 2022-10-11 01:57:18 +05:30			`# frozen_string_literal: true`
			`module Groups`
			`class ObservabilityController < Groups::ApplicationController`
			`feature_category :tracing`

			`content_security_policy do \|p\|`
			`next if p.directives.blank?`

			`default_frame_src = p.directives['frame-src'] \|\| p.directives['default-src']`

			`# When ObservabilityUI is not authenticated, it needs to be able to redirect to the GL sign-in page, hence 'self'`
New upstream version 15.6.4+ds1 2023-01-13 00:05:48 +05:30			`frame_src_values = Array.wrap(default_frame_src) \| [observability_url, "'self'"]`
New upstream version 15.4.2+ds1 2022-10-11 01:57:18 +05:30
			`p.frame_src(*frame_src_values)`
			`end`

New upstream version 15.6.4+ds1 2023-01-13 00:05:48 +05:30			`before_action :check_observability_allowed`
New upstream version 15.4.2+ds1 2022-10-11 01:57:18 +05:30
New upstream version 15.6.4+ds1 2023-01-13 00:05:48 +05:30			`def dashboards`
			`render_observability`
			`end`
New upstream version 15.4.2+ds1 2022-10-11 01:57:18 +05:30
New upstream version 15.6.4+ds1 2023-01-13 00:05:48 +05:30			`def manage`
			`render_observability`
			`end`
New upstream version 15.4.2+ds1 2022-10-11 01:57:18 +05:30
New upstream version 15.6.4+ds1 2023-01-13 00:05:48 +05:30			`def explore`
			`render_observability`
New upstream version 15.4.2+ds1 2022-10-11 01:57:18 +05:30			`end`

			`private`

New upstream version 15.6.4+ds1 2023-01-13 00:05:48 +05:30			`def render_observability`
			`render 'observability', layout: 'group', locals: { base_layout: 'layouts/fullscreen' }`
			`end`

New upstream version 15.4.2+ds1 2022-10-11 01:57:18 +05:30			`def self.observability_url`
New upstream version 15.6.4+ds1 2023-01-13 00:05:48 +05:30			`Gitlab::Observability.observability_url`
			`end`
New upstream version 15.4.2+ds1 2022-10-11 01:57:18 +05:30
New upstream version 15.6.4+ds1 2023-01-13 00:05:48 +05:30			`def observability_url`
			`self.class.observability_url`
New upstream version 15.4.2+ds1 2022-10-11 01:57:18 +05:30			`end`

			`def check_observability_allowed`
New upstream version 15.6.4+ds1 2023-01-13 00:05:48 +05:30			`return render_404 unless observability_url.present?`
New upstream version 15.4.2+ds1 2022-10-11 01:57:18 +05:30
			`render_404 unless can?(current_user, :read_observability, @group)`
			`end`
			`end`
			`end`