debian-mirror-gitlab/app/policies/ci/pipeline_policy.rb

module Ci
  class PipelinePolicy < BasePolicy
    delegate { @subject.project }

    condition(:protected_ref) { ref_protected?(@user, @subject.project, @subject.tag?, @subject.ref) }

    rule { protected_ref }.prevent :update_pipeline

    def ref_protected?(user, project, tag, ref)
      access = ::Gitlab::UserAccess.new(user, project: project)

      if tag
        !access.can_create_tag?(ref)
      else
        !access.can_update_branch?(ref)
      end
    end
  end
end
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`module Ci`
			`class PipelinePolicy < BasePolicy`
New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30			`delegate { @subject.project }`

New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30			`condition(:protected_ref) { ref_protected?(@user, @subject.project, @subject.tag?, @subject.ref) }`
New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30
New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30			`rule { protected_ref }.prevent :update_pipeline`

			`def ref_protected?(user, project, tag, ref)`
			`access = ::Gitlab::UserAccess.new(user, project: project)`

			`if tag`
			`!access.can_create_tag?(ref)`
New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30			`else`
New upstream version 10.5.5+dfsg 2018-03-17 18:26:18 +05:30			`!access.can_update_branch?(ref)`
New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30			`end`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`end`
			`end`
			`end`