gitlab-org--gitlab-foss/lib/gitlab/graphql/authorize.rb

module Gitlab
  module Graphql
    # Allow fields to declare permissions their objects must have. The field
    # will be set to nil unless all required permissions are present.
    module Authorize
      extend ActiveSupport::Concern

      def self.use(schema_definition)
        schema_definition.instrument(:field, Instrumentation.new)
      end

      def required_permissions
        # If the `#authorize` call is used on multiple classes, we add the
        # permissions specified on a subclass, to the ones that were specified
        # on it's superclass.
        @required_permissions ||= if self.respond_to?(:superclass) && superclass.respond_to?(:required_permissions)
                                    superclass.required_permissions.dup
                                  else
                                    []
                                  end
      end

      def authorize(*permissions)
        required_permissions.concat(permissions)
      end
    end
  end
end
Add a minimal GraphQL API 2017-08-16 13:04:41 +00:00			`module Gitlab`
			`module Graphql`
			`# Allow fields to declare permissions their objects must have. The field`
			`# will be set to nil unless all required permissions are present.`
Initial setup GraphQL using graphql-ruby 1.8 - All definitions have been replaced by classes: http://graphql-ruby.org/schema/class_based_api.html - Authorization & Presentation have been refactored to work in the class based system - Loaders have been replaced by resolvers - Times are now coersed as ISO 8601 2018-05-23 07:55:14 +00:00			`module Authorize`
			`extend ActiveSupport::Concern`
Add a minimal GraphQL API 2017-08-16 13:04:41 +00:00
Initial setup GraphQL using graphql-ruby 1.8 - All definitions have been replaced by classes: http://graphql-ruby.org/schema/class_based_api.html - Authorization & Presentation have been refactored to work in the class based system - Loaders have been replaced by resolvers - Times are now coersed as ISO 8601 2018-05-23 07:55:14 +00:00			`def self.use(schema_definition)`
			`schema_definition.instrument(:field, Instrumentation.new)`
Add a minimal GraphQL API 2017-08-16 13:04:41 +00:00			`end`

Initial setup GraphQL using graphql-ruby 1.8 - All definitions have been replaced by classes: http://graphql-ruby.org/schema/class_based_api.html - Authorization & Presentation have been refactored to work in the class based system - Loaders have been replaced by resolvers - Times are now coersed as ISO 8601 2018-05-23 07:55:14 +00:00			`def required_permissions`
Add mutation toggling WIP state of merge requests This is mainly the setup of mutations for GraphQL. Including authorization and basic return type-structure. 2018-07-10 14:19:45 +00:00			# If the `#authorize` call is used on multiple classes, we add the
			`# permissions specified on a subclass, to the ones that were specified`
			`# on it's superclass.`
			`@required_permissions \|\|= if self.respond_to?(:superclass) && superclass.respond_to?(:required_permissions)`
			`superclass.required_permissions.dup`
			`else`
			`[]`
			`end`
Add a minimal GraphQL API 2017-08-16 13:04:41 +00:00			`end`

Initial setup GraphQL using graphql-ruby 1.8 - All definitions have been replaced by classes: http://graphql-ruby.org/schema/class_based_api.html - Authorization & Presentation have been refactored to work in the class based system - Loaders have been replaced by resolvers - Times are now coersed as ISO 8601 2018-05-23 07:55:14 +00:00			`def authorize(*permissions)`
			`required_permissions.concat(permissions)`
Add a minimal GraphQL API 2017-08-16 13:04:41 +00:00			`end`
			`end`
			`end`
			`end`