gitlab-org--gitlab-foss/app/controllers/oauth/applications_controller.rb

class Oauth::ApplicationsController < Doorkeeper::ApplicationsController
  include Gitlab::CurrentSettings
  include Gitlab::GonHelper
  include PageLayoutHelper
  include OauthApplications

  before_action :verify_user_oauth_applications_enabled
  before_action :authenticate_user!
  before_action :add_gon_variables
  before_action :load_scopes, only: [:index, :create, :edit]

  layout 'profile'

  def index
    set_index_vars
  end

  def create
    @application = Doorkeeper::Application.new(application_params)

    @application.owner = current_user

    if @application.save
      redirect_to_oauth_application_page
    else
      set_index_vars
      render :index
    end
  end

  protected

  def redirect_to_oauth_application_page
    flash[:notice] = I18n.t(:notice, scope: [:doorkeeper, :flash, :applications, :create])
    redirect_to oauth_application_url(@application)
  end

  private

  def verify_user_oauth_applications_enabled
    return if current_application_settings.user_oauth_applications?

    redirect_to profile_path
  end

  def set_index_vars
    @applications = current_user.oauth_applications
    @authorized_tokens = current_user.oauth_authorized_tokens
    @authorized_anonymous_tokens = @authorized_tokens.reject(&:application)
    @authorized_apps = @authorized_tokens.map(&:application).uniq.reject(&:nil?)

    # Don't overwrite a value possibly set by `create`
    @application ||= Doorkeeper::Application.new
  end

  # Override Doorkeeper to scope to the current user
  def set_application
    @application = current_user.oauth_applications.find(params[:id])
  end

  rescue_from ActiveRecord::RecordNotFound do |exception|
    render "errors/not_found", layout: "errors", status: 404
  end
end
Doorkeeper integration 2014-12-19 09:15:29 -05:00			`class Oauth::ApplicationsController < Doorkeeper::ApplicationsController`
Add option to disallow users from registering any application to use GitLab as an OAuth provider 2015-05-29 07:29:16 -04:00			`include Gitlab::CurrentSettings`
Include GonHelper separately and remove created_at in factory 2016-04-14 08:28:46 -04:00			`include Gitlab::GonHelper`
Move helpers back to original directory 2015-09-09 08:37:34 -04:00			`include PageLayoutHelper`
Allow creating personal access tokens / OAuth applications with scopes. 2016-11-22 03:57:31 -05:00			`include OauthApplications`
Move helpers back to original directory 2015-09-09 08:37:34 -04:00
Add option to disallow users from registering any application to use GitLab as an OAuth provider 2015-05-29 07:29:16 -04:00			`before_action :verify_user_oauth_applications_enabled`
Fixed the Rails/ActionFilter cop Signed-off-by: Jeroen van Baarsen <jeroenvanbaarsen@gmail.com> 2015-04-16 08:03:37 -04:00			`before_action :authenticate_user!`
Add spec for deletion of authorized OAuth2 application Closes #14370 Move gon function into its own helper 2016-04-13 01:39:18 -04:00			`before_action :add_gon_variables`
Implement minor changes from @dbalexandre's review. - Mainly whitespace changes. - Require the migration adding the `scope` column to the `personal_access_tokens` table to have downtime, since API calls will fail if the new code is in place, but the migration hasn't run. - Minor refactoring - load `@scopes` in a `before_action`, since we're doing it in three different places. 2016-11-24 02:37:22 -05:00			`before_action :load_scopes, only: [:index, :create, :edit]`
Add helpers for header title and sidebar, and move setting those from controllers to layouts. 2015-05-01 04:39:11 -04:00
			`layout 'profile'`
Doorkeeper integration 2014-12-19 09:15:29 -05:00
			`def index`
Let `oauth/applications#index` handle the `profiles#applications` route Previously we were doing all of kinds of code gymnastics and flash abuse in order to work with a Doorkeeper controller but have it _appear_ at the `/profile/applications` path. Fortunately we can just tell Rails to use a different controller to handle that route, and we get the best of both worlds. 2016-03-11 23:38:25 -05:00			`set_index_vars`
Applications tab on profile settings Closes #13855 2016-02-29 09:47:21 -05:00			`end`

Doorkeeper integration 2014-12-19 09:15:29 -05:00			`def create`
			`@application = Doorkeeper::Application.new(application_params)`
Improve code style Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-12-25 09:46:28 -05:00
Application admin scaffold 2015-01-17 18:37:27 -05:00			`@application.owner = current_user`
Fixed the Rails/ActionFilter cop Signed-off-by: Jeroen van Baarsen <jeroenvanbaarsen@gmail.com> 2015-04-16 08:03:37 -04:00
Doorkeeper integration 2014-12-19 09:15:29 -05:00			`if @application.save`
refactor some controllers to make them EE friendly 2017-09-21 04:29:09 -04:00			`redirect_to_oauth_application_page`
Doorkeeper integration 2014-12-19 09:15:29 -05:00			`else`
Let `oauth/applications#index` handle the `profiles#applications` route Previously we were doing all of kinds of code gymnastics and flash abuse in order to work with a Doorkeeper controller but have it _appear_ at the `/profile/applications` path. Fortunately we can just tell Rails to use a different controller to handle that route, and we get the best of both worlds. 2016-03-11 23:38:25 -05:00			`set_index_vars`
			`render :index`
Doorkeeper integration 2014-12-19 09:15:29 -05:00			`end`
			`end`

refactor some controllers to make them EE friendly 2017-09-21 04:29:09 -04:00			`protected`

			`def redirect_to_oauth_application_page`
			`flash[:notice] = I18n.t(:notice, scope: [:doorkeeper, :flash, :applications, :create])`
			`redirect_to oauth_application_url(@application)`
			`end`

Rework oauth2 feature * improve UI * add authorization * add separate page for oauth applications Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-12-25 11:35:04 -05:00			`private`

Add option to disallow users from registering any application to use GitLab as an OAuth provider 2015-05-29 07:29:16 -04:00			`def verify_user_oauth_applications_enabled`
			`return if current_application_settings.user_oauth_applications?`

Fix endless redirections when accessing user OAuth applications when they are disabled Also hides the "Applications" nav button if OAuth applications are disabled by the admin. Closes #14770 2016-06-08 02:15:45 -04:00			`redirect_to profile_path`
Add option to disallow users from registering any application to use GitLab as an OAuth provider 2015-05-29 07:29:16 -04:00			`end`

Let `oauth/applications#index` handle the `profiles#applications` route Previously we were doing all of kinds of code gymnastics and flash abuse in order to work with a Doorkeeper controller but have it _appear_ at the `/profile/applications` path. Fortunately we can just tell Rails to use a different controller to handle that route, and we get the best of both worlds. 2016-03-11 23:38:25 -05:00			`def set_index_vars`
			`@applications = current_user.oauth_applications`
			`@authorized_tokens = current_user.oauth_authorized_tokens`
			`@authorized_anonymous_tokens = @authorized_tokens.reject(&:application)`
			`@authorized_apps = @authorized_tokens.map(&:application).uniq.reject(&:nil?)`

			# Don't overwrite a value possibly set by `create`
			`@application \|\|= Doorkeeper::Application.new`
			`end`

			`# Override Doorkeeper to scope to the current user`
Rework oauth2 feature * improve UI * add authorization * add separate page for oauth applications Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-12-25 11:35:04 -05:00			`def set_application`
			`@application = current_user.oauth_applications.find(params[:id])`
			`end`

			`rescue_from ActiveRecord::RecordNotFound do \|exception\|`
			`render "errors/not_found", layout: "errors", status: 404`
			`end`
Improve code style Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-12-25 09:46:28 -05:00			`end`