debian-mirror-gitlab/app/controllers/concerns/workhorse_authorization.rb

# frozen_string_literal: true

module WorkhorseAuthorization
  extend ActiveSupport::Concern
  include WorkhorseRequest

  included do
    skip_before_action :verify_authenticity_token, only: %i[authorize]
    before_action :verify_workhorse_api!, only: %i[authorize]
  end

  def authorize
    set_workhorse_internal_api_content_type

    authorized = uploader_class.workhorse_authorize(
      has_length: false,
      maximum_size: maximum_size.to_i)

    render json: authorized
  rescue SocketError
    render json: _("Error uploading file"), status: :internal_server_error
  end

  private

  def file_is_valid?(file)
    return false unless file.is_a?(::UploadedFile)

    file_extension_allowlist.include?(File.extname(file.original_filename).downcase.delete('.'))
  end

  def uploader_class
    raise NotImplementedError
  end

  def maximum_size
    raise NotImplementedError
  end

  def file_extension_allowlist
    ImportExportUploader::EXTENSION_ALLOWLIST
  end
end
New upstream version 13.1.0 2020-06-23 00:09:42 +05:30			`# frozen_string_literal: true`

New upstream version 13.7.7 2021-02-22 17:27:13 +05:30			`module WorkhorseAuthorization`
New upstream version 13.1.0 2020-06-23 00:09:42 +05:30			`extend ActiveSupport::Concern`
			`include WorkhorseRequest`

			`included do`
			`skip_before_action :verify_authenticity_token, only: %i[authorize]`
			`before_action :verify_workhorse_api!, only: %i[authorize]`
			`end`

			`def authorize`
			`set_workhorse_internal_api_content_type`

New upstream version 13.7.7 2021-02-22 17:27:13 +05:30			`authorized = uploader_class.workhorse_authorize(`
New upstream version 13.1.0 2020-06-23 00:09:42 +05:30			`has_length: false,`
New upstream version 13.7.7 2021-02-22 17:27:13 +05:30			`maximum_size: maximum_size.to_i)`
New upstream version 13.1.0 2020-06-23 00:09:42 +05:30
			`render json: authorized`
			`rescue SocketError`
			`render json: _("Error uploading file"), status: :internal_server_error`
			`end`

			`private`

			`def file_is_valid?(file)`
			`return false unless file.is_a?(::UploadedFile)`

New upstream version 14.5.2+ds1 2021-12-11 22:18:48 +05:30			`file_extension_allowlist.include?(File.extname(file.original_filename).downcase.delete('.'))`
New upstream version 13.7.7 2021-02-22 17:27:13 +05:30			`end`

			`def uploader_class`
			`raise NotImplementedError`
			`end`

			`def maximum_size`
			`raise NotImplementedError`
			`end`

New upstream version 14.5.2+ds1 2021-12-11 22:18:48 +05:30			`def file_extension_allowlist`
			`ImportExportUploader::EXTENSION_ALLOWLIST`
New upstream version 13.1.0 2020-06-23 00:09:42 +05:30			`end`
			`end`