gitlab-org--gitlab-foss/lib/api/helpers/runner.rb

# frozen_string_literal: true

module API
  module Helpers
    module Runner
      prepend_if_ee('EE::API::Helpers::Runner') # rubocop: disable Cop/InjectEnterpriseEditionModule

      JOB_TOKEN_HEADER = 'HTTP_JOB_TOKEN'
      JOB_TOKEN_PARAM = :token

      def runner_registration_token_valid?
        ActiveSupport::SecurityUtils.secure_compare(params[:token], Gitlab::CurrentSettings.runners_registration_token)
      end

      def authenticate_runner!
        forbidden! unless current_runner

        current_runner
          .update_cached_info(get_runner_details_from_request)
      end

      def get_runner_details_from_request
        return get_runner_ip unless params['info'].present?

        attributes_for_keys(%w(name version revision platform architecture), params['info'])
          .merge(get_runner_ip)
      end

      def get_runner_ip
        { ip_address: ip_address }
      end

      def current_runner
        @runner ||= ::Ci::Runner.find_by_token(params[:token].to_s)
      end

      def validate_job!(job)
        not_found! unless job

        yield if block_given?

        project = job.project
        forbidden!('Project has been deleted!') if project.nil? || project.pending_delete?
        forbidden!('Job has been erased!') if job.erased?
      end

      def authenticate_job!
        job = current_job

        validate_job!(job) do
          forbidden! unless job_token_valid?(job)
        end

        job
      end

      def current_job
        @current_job ||= Ci::Build.find_by_id(params[:id])
      end

      def job_token_valid?(job)
        token = (params[JOB_TOKEN_PARAM] || env[JOB_TOKEN_HEADER]).to_s
        token && job.valid_token?(token)
      end

      def max_artifacts_size(job)
        max_size = job.project.closest_setting(:max_artifacts_size)
        max_size.megabytes.to_i
      end

      def job_forbidden!(job, reason)
        header 'Job-Status', job.status
        forbidden!(reason)
      end
    end
  end
end
Enable frozen string in lib/api and lib/backup Partially addresses #47424. Had to make changes to spec files because stubbing methods on frozen objects is a mess in RSpec and leads to failures: https://github.com/rspec/rspec-mocks/issues/1190 2018-09-29 18:34:47 -04:00			`# frozen_string_literal: true`

Add Runner registration/deletion API 2017-02-14 17:52:02 -05:00			`module API`
			`module Helpers`
Rename API::Ci to API::Runner 2017-02-15 19:30:46 -05:00			`module Runner`
Add latest changes from gitlab-org/gitlab@master 2019-09-13 09:26:31 -04:00			`prepend_if_ee('EE::API::Helpers::Runner') # rubocop: disable Cop/InjectEnterpriseEditionModule`

Avoid calling freeze on already frozen strings in lib 2019-09-10 04:11:43 -04:00			`JOB_TOKEN_HEADER = 'HTTP_JOB_TOKEN'`
Add job patch trace API 2017-02-28 07:29:52 -05:00			`JOB_TOKEN_PARAM = :token`
Add jobs requesting API 2017-02-15 12:08:29 -05:00
Add Runner registration/deletion API 2017-02-14 17:52:02 -05:00			`def runner_registration_token_valid?`
Upgrade to Rails 5.2 Updates changed method names and fixes spec failures 2019-06-25 13:54:42 -04:00			`ActiveSupport::SecurityUtils.secure_compare(params[:token], Gitlab::CurrentSettings.runners_registration_token)`
Add Runner registration/deletion API 2017-02-14 17:52:02 -05:00			`end`

Persist runner IP address on contact (#43489) 2018-02-22 01:03:00 -05:00			`def authenticate_runner!`
			`forbidden! unless current_runner`
Adds Rubocop rule for line break after guard clause Adds a rubocop rule (with autocorrect) to ensure line break after guard clauses. 2017-11-14 04:02:39 -05:00
Persist runner IP address on contact (#43489) 2018-02-22 01:03:00 -05:00			`current_runner`
			`.update_cached_info(get_runner_details_from_request)`
Add Runner registration/deletion API 2017-02-14 17:52:02 -05:00			`end`

Persist runner IP address on contact (#43489) 2018-02-22 01:03:00 -05:00			`def get_runner_details_from_request`
			`return get_runner_ip unless params['info'].present?`

			`attributes_for_keys(%w(name version revision platform architecture), params['info'])`
			`.merge(get_runner_ip)`
			`end`
Update runner info on all authenticated requests 2018-01-29 11:21:30 -05:00
Persist runner IP address on contact (#43489) 2018-02-22 01:03:00 -05:00			`def get_runner_ip`
CE: Add project download & project export audit event This change adds audit events for download of repository and export of project. 2019-07-24 10:15:50 -04:00			`{ ip_address: ip_address }`
Add Runner registration/deletion API 2017-02-14 17:52:02 -05:00			`end`

			`def current_runner`
			`@runner \|\|= ::Ci::Runner.find_by_token(params[:token].to_s)`
			`end`
Add jobs requesting API 2017-02-15 12:08:29 -05:00
Add job update API 2017-02-28 06:52:08 -05:00			`def validate_job!(job)`
			`not_found! unless job`

			`yield if block_given?`

Fix current feature related specs 2017-06-15 08:06:49 -04:00			`project = job.project`
			`forbidden!('Project has been deleted!') if project.nil? \|\| project.pending_delete?`
Add job update API 2017-02-28 06:52:08 -05:00			`forbidden!('Job has been erased!') if job.erased?`
			`end`
Add job patch trace API 2017-02-28 07:29:52 -05:00
Backport API changes needed to fix sticking in EE These changes are ported over from https://gitlab.com/gitlab-org/gitlab-ee/merge_requests/1502 to reduce the number of merge conflicts that may occur. 2017-03-31 07:56:27 -04:00			`def authenticate_job!`
Add latest changes from gitlab-org/gitlab@master 2020-02-05 16:09:02 -05:00			`job = current_job`
Backport API changes needed to fix sticking in EE These changes are ported over from https://gitlab.com/gitlab-org/gitlab-ee/merge_requests/1502 to reduce the number of merge conflicts that may occur. 2017-03-31 07:56:27 -04:00
Add job patch trace API 2017-02-28 07:29:52 -05:00			`validate_job!(job) do`
			`forbidden! unless job_token_valid?(job)`
			`end`
Backport API changes needed to fix sticking in EE These changes are ported over from https://gitlab.com/gitlab-org/gitlab-ee/merge_requests/1502 to reduce the number of merge conflicts that may occur. 2017-03-31 07:56:27 -04:00
			`job`
Add job patch trace API 2017-02-28 07:29:52 -05:00			`end`

Add latest changes from gitlab-org/gitlab@master 2020-02-05 16:09:02 -05:00			`def current_job`
			`@current_job \|\|= Ci::Build.find_by_id(params[:id])`
			`end`

Add job patch trace API 2017-02-28 07:29:52 -05:00			`def job_token_valid?(job)`
			`token = (params[JOB_TOKEN_PARAM] \|\| env[JOB_TOKEN_HEADER]).to_s`
			`token && job.valid_token?(token)`
			`end`
Add artifacts uploading authorize API 2017-02-28 08:27:25 -05:00
Add latest changes from gitlab-org/gitlab@master 2019-10-08 08:06:01 -04:00			`def max_artifacts_size(job)`
			`max_size = job.project.closest_setting(:max_artifacts_size)`
			`max_size.megabytes.to_i`
Add artifacts uploading authorize API 2017-02-28 08:27:25 -05:00			`end`
Change update entrypoint instead of adding new keep-alive one 2018-06-07 11:27:26 -04:00
			`def job_forbidden!(job, reason)`
			`header 'Job-Status', job.status`
			`forbidden!(reason)`
			`end`
Add Runner registration/deletion API 2017-02-14 17:52:02 -05:00			`end`
			`end`
Fix rubocop offenses 2017-02-15 19:20:17 -05:00			`end`