42 lines
1.1 KiB
Ruby
42 lines
1.1 KiB
Ruby
# frozen_string_literal: true
|
|
|
|
module Users
|
|
class BannedUserBaseService < BaseService
|
|
def initialize(current_user)
|
|
@current_user = current_user
|
|
end
|
|
|
|
def execute(user)
|
|
return permission_error unless allowed?
|
|
return state_error(user) unless valid_state?(user)
|
|
|
|
if update_user(user)
|
|
log_event(user)
|
|
success
|
|
else
|
|
messages = user.errors.full_messages
|
|
error(messages.uniq.join('. '))
|
|
end
|
|
end
|
|
|
|
private
|
|
|
|
attr_reader :current_user
|
|
|
|
def state_error(user)
|
|
error(_("You cannot %{action} %{state} users." % { action: action.to_s, state: user.state }), :forbidden)
|
|
end
|
|
|
|
def allowed?
|
|
can?(current_user, :admin_all_resources)
|
|
end
|
|
|
|
def permission_error
|
|
error(_("You are not allowed to %{action} a user" % { action: action.to_s }), :forbidden)
|
|
end
|
|
|
|
def log_event(user)
|
|
Gitlab::AppLogger.info(message: "User #{action}", user: user.username.to_s, email: user.email.to_s, "#{action}_by": current_user.username.to_s, ip_address: current_user.current_sign_in_ip.to_s)
|
|
end
|
|
end
|
|
end
|