debian-mirror-gitlab/app/controllers/concerns/membership_actions.rb
2023-03-17 16:20:25 +05:30

159 lines
4.6 KiB
Ruby

# frozen_string_literal: true
module MembershipActions
include MembersPresentation
extend ActiveSupport::Concern
def update
update_params = params.require(root_params_key).permit(:access_level, :expires_at)
member = membershipable.members_and_requesters.find(params[:id])
result = Members::UpdateService
.new(current_user, update_params)
.execute(member)
member = result[:members].first
member_data = if member.expires?
{
expires_soon: member.expires_soon?,
expires_at_formatted: member.expires_at.to_time.in_time_zone.to_s(:medium)
}
else
{}
end
if result[:status] == :success
render json: member_data
else
render json: { message: result[:message] }, status: :unprocessable_entity
end
end
def destroy
member = membershipable.members_and_requesters.find(params[:id])
skip_subresources = !ActiveRecord::Type::Boolean.new.cast(params.delete(:remove_sub_memberships))
# !! is used in case unassign_issuables contains empty string which would result in nil
unassign_issuables = !!ActiveRecord::Type::Boolean.new.cast(params.delete(:unassign_issuables))
Members::DestroyService.new(current_user).execute(member, skip_subresources: skip_subresources, unassign_issuables: unassign_issuables)
respond_to do |format|
format.html do
message =
case membershipable
when Namespace
if skip_subresources
_("User was successfully removed from group.")
else
_("User was successfully removed from group and any subgroups and projects.")
end
else
_("User was successfully removed from project.")
end
redirect_to members_page_url, notice: message
end
format.js { head :ok }
end
end
def request_access
access_requester = membershipable.request_access(current_user)
if access_requester.persisted?
redirect_to polymorphic_path(membershipable),
notice: _('Your request for access has been queued for review.')
else
redirect_to polymorphic_path(membershipable),
alert: format(_("Your request for access could not be processed: %{error_message}"), error_message: access_requester.errors.full_messages.to_sentence)
end
end
def approve_access_request
access_requester = membershipable.requesters.find(params[:id])
Members::ApproveAccessRequestService
.new(current_user, params)
.execute(access_requester)
redirect_to members_page_url
end
# rubocop: disable CodeReuse/ActiveRecord
def leave
member = membershipable.members_and_requesters.find_by!(user_id: current_user.id)
Members::DestroyService.new(current_user).execute(member)
notice =
if member.request?
format(_("Your access request to the %{source_type} has been withdrawn."), source_type: source_type)
else
format(_("You left the \"%{membershipable_human_name}\" %{source_type}."), membershipable_human_name: membershipable.human_name, source_type: source_type)
end
respond_to do |format|
format.html do
redirect_path = member.request? ? member.source : [:dashboard, membershipable.class.to_s.tableize.to_sym]
redirect_to redirect_path, notice: notice
end
format.json { render json: { notice: notice } }
end
end
# rubocop: enable CodeReuse/ActiveRecord
def resend_invite
member = membershipable_members.find(params[:id])
if member.invite?
member.resend_invite
redirect_to members_page_url, notice: _('The invitation was successfully resent.')
else
redirect_to members_page_url, alert: _('The invitation has already been accepted.')
end
end
protected
def membershipable
raise NotImplementedError
end
def membershipable_members
raise NotImplementedError
end
def root_params_key
raise NotImplementedError
end
def members_page_url
raise NotImplementedError
end
def source_type
raise NotImplementedError
end
def plain_source_type
raise NotImplementedError
end
def requested_relations(inherited_permissions = :with_inherited_permissions)
case params[inherited_permissions].presence
when 'exclude'
[:direct]
when 'only'
[:inherited]
else
if Feature.enabled?(:webui_members_inherited_users, current_user)
[:inherited, :direct, :shared_from_groups]
else
[:inherited, :direct]
end
end
end
end
MembershipActions.prepend_mod_with('MembershipActions')