2018-09-11 15:08:34 -04:00
|
|
|
# frozen_string_literal: true
|
|
|
|
|
2017-03-07 06:58:14 -05:00
|
|
|
class MembersFinder
|
2020-01-31 07:08:33 -05:00
|
|
|
# Params can be any of the following:
|
|
|
|
# sort: string
|
|
|
|
# search: string
|
2020-04-21 11:21:10 -04:00
|
|
|
attr_reader :params
|
2017-03-07 06:58:14 -05:00
|
|
|
|
2020-04-21 11:21:10 -04:00
|
|
|
def initialize(project, current_user, params: {})
|
2017-03-07 06:58:14 -05:00
|
|
|
@project = project
|
|
|
|
@group = project.group
|
2020-04-21 11:21:10 -04:00
|
|
|
@current_user = current_user
|
|
|
|
@params = params
|
2017-03-07 06:58:14 -05:00
|
|
|
end
|
|
|
|
|
2020-04-21 11:21:10 -04:00
|
|
|
def execute(include_relations: [:inherited, :direct])
|
|
|
|
members = find_members(include_relations)
|
2020-01-31 07:08:33 -05:00
|
|
|
|
2020-04-21 11:21:10 -04:00
|
|
|
filter_members(members)
|
2020-01-31 07:08:33 -05:00
|
|
|
end
|
|
|
|
|
|
|
|
def can?(*args)
|
|
|
|
Ability.allowed?(*args)
|
|
|
|
end
|
|
|
|
|
|
|
|
private
|
|
|
|
|
|
|
|
attr_reader :project, :current_user, :group
|
|
|
|
|
2020-04-21 11:21:10 -04:00
|
|
|
def find_members(include_relations)
|
2017-03-07 06:58:14 -05:00
|
|
|
project_members = project.project_members
|
|
|
|
project_members = project_members.non_invite unless can?(current_user, :admin_project, project)
|
|
|
|
|
2019-12-13 10:08:02 -05:00
|
|
|
return project_members if include_relations == [:direct]
|
|
|
|
|
|
|
|
union_members = group_union_members(include_relations)
|
|
|
|
union_members << project_members if include_relations.include?(:direct)
|
2017-03-07 06:58:14 -05:00
|
|
|
|
2020-01-31 07:08:33 -05:00
|
|
|
return project_members unless union_members.any?
|
2016-12-23 17:29:00 -05:00
|
|
|
|
2020-01-31 07:08:33 -05:00
|
|
|
distinct_union_of_members(union_members)
|
2016-12-23 17:29:00 -05:00
|
|
|
end
|
2018-02-19 12:28:11 -05:00
|
|
|
|
2020-04-21 11:21:10 -04:00
|
|
|
def filter_members(members)
|
2020-01-31 07:08:33 -05:00
|
|
|
members = members.search(params[:search]) if params[:search].present?
|
|
|
|
members = members.sort_by_attribute(params[:sort]) if params[:sort].present?
|
|
|
|
members
|
|
|
|
end
|
2018-02-19 12:28:11 -05:00
|
|
|
|
2019-12-13 10:08:02 -05:00
|
|
|
def group_union_members(include_relations)
|
2019-01-29 13:10:37 -05:00
|
|
|
[].tap do |members|
|
2019-12-13 10:08:02 -05:00
|
|
|
members << direct_group_members(include_relations.include?(:descendants)) if group
|
|
|
|
members << project_invited_groups_members if include_relations.include?(:invited_groups_members)
|
2019-01-29 13:10:37 -05:00
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
def direct_group_members(include_descendants)
|
2019-12-13 10:08:02 -05:00
|
|
|
requested_relations = [:inherited, :direct]
|
|
|
|
requested_relations << :descendants if include_descendants
|
|
|
|
GroupMembersFinder.new(group).execute(include_relations: requested_relations).non_invite # rubocop: disable CodeReuse/Finder
|
2019-01-29 13:10:37 -05:00
|
|
|
end
|
|
|
|
|
|
|
|
def project_invited_groups_members
|
|
|
|
invited_groups_ids_including_ancestors = Gitlab::ObjectHierarchy
|
|
|
|
.new(project.invited_groups)
|
|
|
|
.base_and_ancestors
|
|
|
|
.public_or_visible_to_user(current_user)
|
|
|
|
.select(:id)
|
|
|
|
|
|
|
|
GroupMember.with_source_id(invited_groups_ids_including_ancestors)
|
|
|
|
end
|
|
|
|
|
|
|
|
def distinct_union_of_members(union_members)
|
|
|
|
union = Gitlab::SQL::Union.new(union_members, remove_duplicates: false) # rubocop: disable Gitlab/Union
|
|
|
|
sql = distinct_on(union)
|
|
|
|
|
|
|
|
Member.includes(:user).from([Arel.sql("(#{sql}) AS #{Member.table_name}")]) # rubocop: disable CodeReuse/ActiveRecord
|
|
|
|
end
|
|
|
|
|
2018-02-19 12:28:11 -05:00
|
|
|
def distinct_on(union)
|
|
|
|
# We're interested in a list of members without duplicates by user_id.
|
|
|
|
# We prefer project members over group members, project members should go first.
|
2019-07-24 09:59:55 -04:00
|
|
|
<<~SQL
|
2019-06-19 05:51:15 -04:00
|
|
|
SELECT DISTINCT ON (user_id, invite_email) #{member_columns}
|
|
|
|
FROM (#{union.to_sql}) AS #{member_union_table}
|
|
|
|
LEFT JOIN users on users.id = member_union.user_id
|
|
|
|
LEFT JOIN project_authorizations on project_authorizations.user_id = users.id
|
|
|
|
AND
|
|
|
|
project_authorizations.project_id = #{project.id}
|
|
|
|
ORDER BY user_id,
|
|
|
|
invite_email,
|
|
|
|
CASE
|
|
|
|
WHEN type = 'ProjectMember' THEN 1
|
|
|
|
WHEN type = 'GroupMember' THEN 2
|
|
|
|
ELSE 3
|
|
|
|
END
|
2019-07-24 09:59:55 -04:00
|
|
|
SQL
|
2018-02-19 12:28:11 -05:00
|
|
|
end
|
2019-06-19 05:51:15 -04:00
|
|
|
|
|
|
|
def member_union_table
|
|
|
|
'member_union'
|
|
|
|
end
|
|
|
|
|
|
|
|
def member_columns
|
|
|
|
Member.column_names.map do |column_name|
|
|
|
|
# fallback to members.access_level when project_authorizations.access_level is missing
|
|
|
|
next "COALESCE(#{ProjectAuthorization.table_name}.access_level, #{member_union_table}.access_level) access_level" if column_name == 'access_level'
|
|
|
|
|
|
|
|
"#{member_union_table}.#{column_name}"
|
|
|
|
end.join(',')
|
|
|
|
end
|
2016-12-23 17:29:00 -05:00
|
|
|
end
|