2014-09-02 18:07:02 +05:30
# Gitlab::Access module
#
# Define allowed roles that can be used
# in GitLab code to determine authorization level
#
module Gitlab
module Access
2016-08-24 12:49:21 +05:30
class AccessDeniedError < StandardError ; end
2016-09-13 17:45:13 +05:30
NO_ACCESS = 0
2014-09-02 18:07:02 +05:30
GUEST = 10
REPORTER = 20
DEVELOPER = 30
MASTER = 40
OWNER = 50
2015-04-26 12:48:37 +05:30
# Branch protection settings
2016-08-24 12:49:21 +05:30
PROTECTION_NONE = 0
PROTECTION_DEV_CAN_PUSH = 1
PROTECTION_FULL = 2
PROTECTION_DEV_CAN_MERGE = 3
2015-04-26 12:48:37 +05:30
2014-09-02 18:07:02 +05:30
class << self
def values
options . values
end
2015-04-26 12:48:37 +05:30
def all_values
options_with_owner . values
end
2014-09-02 18:07:02 +05:30
def options
{
" Guest " = > GUEST ,
" Reporter " = > REPORTER ,
" Developer " = > DEVELOPER ,
" Master " = > MASTER ,
}
end
def options_with_owner
options . merge (
" Owner " = > OWNER
)
end
def sym_options
{
guest : GUEST ,
reporter : REPORTER ,
developer : DEVELOPER ,
master : MASTER ,
}
end
2015-04-26 12:48:37 +05:30
2016-11-03 12:29:30 +05:30
def sym_options_with_owner
sym_options . merge ( owner : OWNER )
end
2015-04-26 12:48:37 +05:30
def protection_options
{
2015-09-11 14:41:01 +05:30
" Not protected: Both developers and masters can push new commits, force push, or delete the branch. " = > PROTECTION_NONE ,
2016-08-24 12:49:21 +05:30
" Protected against pushes: Developers cannot push new commits, but are allowed to accept merge requests to the branch. " = > PROTECTION_DEV_CAN_MERGE ,
2015-09-11 14:41:01 +05:30
" Partially protected: Developers can push new commits, but cannot force push or delete the branch. Masters can do all of those. " = > PROTECTION_DEV_CAN_PUSH ,
" Fully protected: Developers cannot push new commits, force push, or delete the branch. Only masters can do any of those. " = > PROTECTION_FULL ,
2015-04-26 12:48:37 +05:30
}
end
def protection_values
protection_options . values
end
2014-09-02 18:07:02 +05:30
end
def human_access
Gitlab :: Access . options_with_owner . key ( access_field )
end
def owner?
access_field == OWNER
end
end
end