49 lines
1.3 KiB
Ruby
49 lines
1.3 KiB
Ruby
# frozen_string_literal: true
|
|
|
|
module Members
|
|
class DestroyService < Members::BaseService
|
|
def execute(member, skip_authorization: false)
|
|
raise Gitlab::Access::AccessDeniedError unless skip_authorization || can_destroy_member?(member)
|
|
|
|
return member if member.is_a?(GroupMember) && member.source.last_owner?(member.user)
|
|
|
|
member.destroy
|
|
|
|
member.user&.invalidate_cache_counts
|
|
|
|
if member.request? && member.user != current_user
|
|
notification_service.decline_access_request(member)
|
|
end
|
|
|
|
enqeue_delete_todos(member)
|
|
|
|
after_execute(member: member)
|
|
|
|
member
|
|
end
|
|
|
|
private
|
|
|
|
def enqeue_delete_todos(member)
|
|
type = member.is_a?(GroupMember) ? 'Group' : 'Project'
|
|
# don't enqueue immediately to prevent todos removal in case of a mistake
|
|
TodosDestroyer::EntityLeaveWorker.perform_in(1.hour, member.user_id, member.source_id, type)
|
|
end
|
|
|
|
def can_destroy_member?(member)
|
|
can?(current_user, destroy_member_permission(member), member)
|
|
end
|
|
|
|
def destroy_member_permission(member)
|
|
case member
|
|
when GroupMember
|
|
:destroy_group_member
|
|
when ProjectMember
|
|
:destroy_project_member
|
|
else
|
|
raise "Unknown member type: #{member}!"
|
|
end
|
|
end
|
|
end
|
|
end
|