debian-mirror-gitlab/app/services/members/create_service.rb

# frozen_string_literal: true

module Members
  class CreateService < Members::BaseService
    BlankInvitesError = Class.new(StandardError)
    TooManyInvitesError = Class.new(StandardError)
    MembershipLockedError = Class.new(StandardError)

    DEFAULT_INVITE_LIMIT = 100

    attr_reader :membership_locked

    def initialize(*args)
      super

      @errors = []
      @invites = invites_from_params&.split(',')&.uniq&.flatten
      @source = params[:source]
    end

    def execute
      raise Gitlab::Access::AccessDeniedError unless can?(current_user, create_member_permission(source), source)

      validate_invite_source!
      validate_invitable!

      add_members
      enqueue_onboarding_progress_action
      result
    rescue BlankInvitesError, TooManyInvitesError, MembershipLockedError => e
      error(e.message)
    end

    def single_member
      members.last
    end

    private

    attr_reader :source, :errors, :invites, :member_created_namespace_id, :members

    def invites_from_params
      params[:user_ids]
    end

    def validate_invite_source!
      raise ArgumentError, s_('AddMember|No invite source provided.') unless invite_source.present?
    end

    def validate_invitable!
      raise BlankInvitesError, blank_invites_message if invites.blank?

      return unless user_limit && invites.size > user_limit

      raise TooManyInvitesError,
            format(s_("AddMember|Too many users specified (limit is %{user_limit})"), user_limit: user_limit)
    end

    def blank_invites_message
      s_('AddMember|No users specified.')
    end

    def add_members
      @members = source.add_users(
        invites,
        params[:access_level],
        expires_at: params[:expires_at],
        current_user: current_user,
        tasks_to_be_done: params[:tasks_to_be_done],
        tasks_project_id: params[:tasks_project_id]
      )

      members.each { |member| process_result(member) }

      create_tasks_to_be_done
    end

    def process_result(member)
      if member.invalid?
        add_error_for_member(member)
      else
        after_execute(member: member)
        @member_created_namespace_id ||= member.namespace_id
      end
    end

    def add_error_for_member(member)
      prefix = "#{member.user.username}: " if member.user.present?

      errors << "#{prefix}#{member.errors.full_messages.to_sentence}"
    end

    def after_execute(member:)
      super

      track_invite_source(member)
    end

    def track_invite_source(member)
      Gitlab::Tracking.event(self.class.name, 'create_member', label: invite_source, property: tracking_property(member), user: current_user)
    end

    def invite_source
      params[:invite_source]
    end

    def tracking_property(member)
      # ideally invites go down the invite service class instead, but there is nothing that limits an invite
      # from being used in this class and if you send emails as a comma separated list to the api/members
      # endpoint, it will support invites
      member.invite? ? 'net_new_user' : 'existing_user'
    end

    def create_tasks_to_be_done
      return if params[:tasks_to_be_done].blank? || params[:tasks_project_id].blank?

      valid_members = members.select { |member| member.valid? && member.member_task.valid? }
      return unless valid_members.present?

      # We can take the first `member_task` here, since all tasks will have the same attributes needed
      # for the `TasksToBeDone::CreateWorker`, ie. `project` and `tasks_to_be_done`.
      member_task = valid_members[0].member_task
      TasksToBeDone::CreateWorker.perform_async(member_task.id, current_user.id, valid_members.map(&:user_id))
    end

    def user_limit
      limit = params.fetch(:limit, DEFAULT_INVITE_LIMIT)

      limit && limit < 0 ? nil : limit
    end

    def enqueue_onboarding_progress_action
      return unless member_created_namespace_id

      Namespaces::OnboardingUserAddedWorker.perform_async(member_created_namespace_id)
    end

    def result
      if errors.any?
        error(formatted_errors)
      else
        success
      end
    end

    def formatted_errors
      errors.to_sentence
    end

    def create_member_permission(source)
      case source
      when Group
        :admin_group_member
      when Project
        :admin_project_member
      else
        raise "Unknown source type: #{source.class}!"
      end
    end
  end
end

Members::CreateService.prepend_mod_with('Members::CreateService')
New upstream version 11.2.8+dfsg 2018-11-18 11:00:15 +05:30			`# frozen_string_literal: true`

New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`module Members`
New upstream version 10.6.0+dfsg 2018-03-27 19:54:05 +05:30			`class CreateService < Members::BaseService`
New upstream version 13.11.2+ds1 2021-04-29 21:17:54 +05:30			`BlankInvitesError = Class.new(StandardError)`
			`TooManyInvitesError = Class.new(StandardError)`
New upstream version 14.3.4+ds1 2021-11-11 11:23:49 +05:30			`MembershipLockedError = Class.new(StandardError)`
New upstream version 13.6.7 2021-02-11 23:33:58 +05:30
New upstream version 13.11.2+ds1 2021-04-29 21:17:54 +05:30			`DEFAULT_INVITE_LIMIT = 100`
New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30
New upstream version 14.3.4+ds1 2021-11-11 11:23:49 +05:30			`attr_reader :membership_locked`

New upstream version 13.11.2+ds1 2021-04-29 21:17:54 +05:30			`def initialize(*args)`
			`super`
New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30
New upstream version 13.11.2+ds1 2021-04-29 21:17:54 +05:30			`@errors = []`
			`@invites = invites_from_params&.split(',')&.uniq&.flatten`
			`@source = params[:source]`
			`end`

			`def execute`
New upstream version 14.6.5+ds1 2022-02-27 12:50:16 +05:30			`raise Gitlab::Access::AccessDeniedError unless can?(current_user, create_member_permission(source), source)`

New upstream version 14.0.10 2021-09-04 01:27:46 +05:30			`validate_invite_source!`
New upstream version 14.3.4+ds1 2021-11-11 11:23:49 +05:30			`validate_invitable!`
New upstream version 13.11.2+ds1 2021-04-29 21:17:54 +05:30
			`add_members`
			`enqueue_onboarding_progress_action`
			`result`
New upstream version 14.3.4+ds1 2021-11-11 11:23:49 +05:30			`rescue BlankInvitesError, TooManyInvitesError, MembershipLockedError => e`
New upstream version 13.11.2+ds1 2021-04-29 21:17:54 +05:30			`error(e.message)`
			`end`

New upstream version 14.3.4+ds1 2021-11-11 11:23:49 +05:30			`def single_member`
			`members.last`
			`end`

New upstream version 13.11.2+ds1 2021-04-29 21:17:54 +05:30			`private`

New upstream version 14.3.4+ds1 2021-11-11 11:23:49 +05:30			`attr_reader :source, :errors, :invites, :member_created_namespace_id, :members`
New upstream version 13.11.2+ds1 2021-04-29 21:17:54 +05:30
			`def invites_from_params`
			`params[:user_ids]`
			`end`

New upstream version 14.0.10 2021-09-04 01:27:46 +05:30			`def validate_invite_source!`
			`raise ArgumentError, s_('AddMember\|No invite source provided.') unless invite_source.present?`
			`end`

New upstream version 14.3.4+ds1 2021-11-11 11:23:49 +05:30			`def validate_invitable!`
New upstream version 13.11.2+ds1 2021-04-29 21:17:54 +05:30			`raise BlankInvitesError, blank_invites_message if invites.blank?`

			`return unless user_limit && invites.size > user_limit`

			`raise TooManyInvitesError,`
			`format(s_("AddMember\|Too many users specified (limit is %{user_limit})"), user_limit: user_limit)`
			`end`

			`def blank_invites_message`
			`s_('AddMember\|No users specified.')`
			`end`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30
New upstream version 13.11.2+ds1 2021-04-29 21:17:54 +05:30			`def add_members`
New upstream version 14.3.4+ds1 2021-11-11 11:23:49 +05:30			`@members = source.add_users(`
New upstream version 13.11.2+ds1 2021-04-29 21:17:54 +05:30			`invites,`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`params[:access_level],`
			`expires_at: params[:expires_at],`
New upstream version 14.5.2+ds1 2021-12-11 22:18:48 +05:30			`current_user: current_user,`
			`tasks_to_be_done: params[:tasks_to_be_done],`
			`tasks_project_id: params[:tasks_project_id]`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`)`

New upstream version 13.11.2+ds1 2021-04-29 21:17:54 +05:30			`members.each { \|member\| process_result(member) }`
New upstream version 14.5.2+ds1 2021-12-11 22:18:48 +05:30
			`create_tasks_to_be_done`
New upstream version 13.11.2+ds1 2021-04-29 21:17:54 +05:30			`end`
New upstream version 11.8.0 2019-03-02 22:35:43 +05:30
New upstream version 13.11.2+ds1 2021-04-29 21:17:54 +05:30			`def process_result(member)`
			`if member.invalid?`
			`add_error_for_member(member)`
			`else`
			`after_execute(member: member)`
			`@member_created_namespace_id \|\|= member.namespace_id`
			`end`
New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30			`end`

New upstream version 13.11.2+ds1 2021-04-29 21:17:54 +05:30			`def add_error_for_member(member)`
			`prefix = "#{member.user.username}: " if member.user.present?`
New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30
New upstream version 13.11.2+ds1 2021-04-29 21:17:54 +05:30			`errors << "#{prefix}#{member.errors.full_messages.to_sentence}"`
New upstream version 13.6.7 2021-02-11 23:33:58 +05:30			`end`

New upstream version 14.0.10 2021-09-04 01:27:46 +05:30			`def after_execute(member:)`
			`super`

New upstream version 14.2.5+ds1 2021-10-27 15:23:28 +05:30			`track_invite_source(member)`
			`end`

			`def track_invite_source(member)`
New upstream version 14.0.10 2021-09-04 01:27:46 +05:30			`Gitlab::Tracking.event(self.class.name, 'create_member', label: invite_source, property: tracking_property(member), user: current_user)`
			`end`

			`def invite_source`
			`params[:invite_source]`
			`end`

			`def tracking_property(member)`
			`# ideally invites go down the invite service class instead, but there is nothing that limits an invite`
			`# from being used in this class and if you send emails as a comma separated list to the api/members`
			`# endpoint, it will support invites`
			`member.invite? ? 'net_new_user' : 'existing_user'`
			`end`

New upstream version 14.5.2+ds1 2021-12-11 22:18:48 +05:30			`def create_tasks_to_be_done`
			`return if params[:tasks_to_be_done].blank? \|\| params[:tasks_project_id].blank?`

			`valid_members = members.select { \|member\| member.valid? && member.member_task.valid? }`
			`return unless valid_members.present?`

			# We can take the first `member_task` here, since all tasks will have the same attributes needed
			# for the `TasksToBeDone::CreateWorker`, ie. `project` and `tasks_to_be_done`.
			`member_task = valid_members[0].member_task`
			`TasksToBeDone::CreateWorker.perform_async(member_task.id, current_user.id, valid_members.map(&:user_id))`
			`end`

New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30			`def user_limit`
New upstream version 13.11.2+ds1 2021-04-29 21:17:54 +05:30			`limit = params.fetch(:limit, DEFAULT_INVITE_LIMIT)`
New upstream version 9.5.4+dfsg 2017-09-10 17:25:29 +05:30
			`limit && limit < 0 ? nil : limit`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`end`
New upstream version 13.7.7 2021-02-22 17:27:13 +05:30
New upstream version 13.11.2+ds1 2021-04-29 21:17:54 +05:30			`def enqueue_onboarding_progress_action`
			`return unless member_created_namespace_id`

			`Namespaces::OnboardingUserAddedWorker.perform_async(member_created_namespace_id)`
			`end`

			`def result`
			`if errors.any?`
			`error(formatted_errors)`
			`else`
			`success`
			`end`
			`end`

			`def formatted_errors`
			`errors.to_sentence`
New upstream version 13.7.7 2021-02-22 17:27:13 +05:30			`end`
New upstream version 14.6.5+ds1 2022-02-27 12:50:16 +05:30
			`def create_member_permission(source)`
			`case source`
			`when Group`
			`:admin_group_member`
			`when Project`
			`:admin_project_member`
			`else`
			`raise "Unknown source type: #{source.class}!"`
			`end`
			`end`
New upstream version 9.2.10+dfsg 2017-08-17 22:00:37 +05:30			`end`
			`end`
New upstream version 12.3.8 2019-12-04 20:38:33 +05:30
New upstream version 13.12.3+ds1 2021-06-08 01:23:25 +05:30			`Members::CreateService.prepend_mod_with('Members::CreateService')`