# frozen_string_literal: true # Base class for ChatOps integrations # This class is not meant to be used directly, but only to inherrit from. module Integrations class BaseSlashCommands < Integration attribute :category, default: 'chat' prop_accessor :token has_many :chat_names, foreign_key: :integration_id, dependent: :destroy # rubocop:disable Cop/ActiveRecordDependent def valid_token?(token) self.respond_to?(:token) && self.token.present? && ActiveSupport::SecurityUtils.secure_compare(token, self.token) end def self.supported_events %w() end def testable? false end def fields [ { type: 'password', name: 'token', non_empty_password_title: s_('ProjectService|Enter new token'), non_empty_password_help: s_('ProjectService|Leave blank to use your current token.'), placeholder: 'XXxxXXxxXXxxXXxxXXxxXXxx' } ] end def trigger(params) return unless valid_token?(params[:token]) chat_user = find_chat_user(params) user = chat_user&.user if user unless user.can?(:use_slash_commands) return Gitlab::SlashCommands::Presenters::Access.new.deactivated if user.deactivated? return Gitlab::SlashCommands::Presenters::Access.new.access_denied(project) end Gitlab::SlashCommands::Command.new(project, chat_user, params).execute else url = authorize_chat_name_url(params) Gitlab::SlashCommands::Presenters::Access.new(url).authorize end end private # rubocop: disable CodeReuse/ServiceClass def find_chat_user(params) ChatNames::FindUserService.new(params[:team_id], params[:user_id]).execute end # rubocop: enable CodeReuse/ServiceClass # rubocop: disable CodeReuse/ServiceClass def authorize_chat_name_url(params) ChatNames::AuthorizeUserService.new(self, params).execute end # rubocop: enable CodeReuse/ServiceClass end end