gitlab-org--gitlab-foss/app/models/project_import_data.rb

# frozen_string_literal: true

require 'carrierwave/orm/activerecord'

class ProjectImportData < ApplicationRecord
  prepend_mod_with('ProjectImportData') # rubocop: disable Cop/InjectEnterpriseEditionModule

  belongs_to :project, inverse_of: :import_data
  attr_encrypted :credentials,
                 key: Settings.attr_encrypted_db_key_base,
                 marshal: true,
                 encode: true,
                 mode: :per_attribute_iv_and_salt,
                 insecure_mode: true,
                 algorithm: 'aes-256-cbc'

  serialize :data, JSON # rubocop:disable Cop/ActiveRecordSerialize

  validates :project, presence: true

  before_validation :symbolize_credentials

  def symbolize_credentials
    # bang doesn't work here - attr_encrypted makes it not to work
    self.credentials = self.credentials.deep_symbolize_keys unless self.credentials.blank?
  end

  def merge_data(hash)
    self.data = data.to_h.merge(hash) unless hash.empty?
  end

  def merge_credentials(hash)
    self.credentials = credentials.to_h.merge(hash) unless hash.empty?
  end

  def clear_credentials
    self.credentials = {}
  end
end
Enable frozen string in app/models/*.rb Partially addresses #47424. 2018-07-25 09:30:33 +00:00			`# frozen_string_literal: true`

Move import data out of project so it doesn't take ages to load. 2015-04-17 12:31:24 +00:00			`require 'carrierwave/orm/activerecord'`

Inherit from ApplicationRecord instead of ActiveRecord::Base 2019-03-28 13:17:42 +00:00			`class ProjectImportData < ApplicationRecord`
Add latest changes from gitlab-org/gitlab@master 2021-05-11 21:10:21 +00:00			`prepend_mod_with('ProjectImportData') # rubocop: disable Cop/InjectEnterpriseEditionModule`
Add latest changes from gitlab-org/gitlab@master 2019-09-13 13:26:31 +00:00
Backport changes in https://gitlab.com/gitlab-org/gitlab-ee/merge_requests/2551 to CE 2017-08-03 12:19:11 +00:00			`belongs_to :project, inverse_of: :import_data`
changed a few things based on feedback 2016-04-11 09:13:51 +00:00			`attr_encrypted :credentials,`
Upgrade to Ruby 2.4.4 Fixes that make this work: * A change in Ruby (https://github.com/ruby/ruby/commit/ce635262f53b760284d56bb1027baebaaec175d1) requires passing in the exact required length for OpenSSL keys and IVs. * Ensure the secrets.yml is generated before any prepended modules are loaded. This is done by renaming the `secret_token.rb` initializer to `01_secret_token.rb`, which is a bit ugly but involves the least impact on other files. 2018-05-19 13:03:29 +00:00			`key: Settings.attr_encrypted_db_key_base,`
changed a few things based on feedback 2016-04-11 09:13:51 +00:00			`marshal: true,`
			`encode: true,`
Upgrade attr_encrypted and encryptor attr_encrypted (1.3.4 => 3.0.1) Changelog: https://github.com/attr-encrypted/attr_encrypted/blob/master/CHANGELOG.m d attr_encrypted 2.x included a vulnerability, so that major version is skipped. 3.x requires that the algorithm and mode used by each encrypted attribute is specified explicitly. `nil` is no longer a valid value for the encrypted_value_iv field, so it’s changed to a randomly generated string. 2016-05-19 18:55:25 +00:00			`mode: :per_attribute_iv_and_salt,`
add missing attribute to attr_encrypted so it is fully backwards-compatible 2016-06-28 07:55:19 +00:00			`insecure_mode: true,`
Upgrade attr_encrypted and encryptor attr_encrypted (1.3.4 => 3.0.1) Changelog: https://github.com/attr-encrypted/attr_encrypted/blob/master/CHANGELOG.m d attr_encrypted 2.x included a vulnerability, so that major version is skipped. 3.x requires that the algorithm and mode used by each encrypted attribute is specified explicitly. `nil` is no longer a valid value for the encrypted_value_iv field, so it’s changed to a randomly generated string. 2016-05-19 18:55:25 +00:00			`algorithm: 'aes-256-cbc'`
WIP - refactored migration and updated project_import_data with encrypted att 2016-03-03 17:10:06 +00:00
Rename ActiverecordSerialize cop This cop has been renamed to ActiveRecordSerialize to match the way "ActiveRecord" is usually written. 2017-07-03 14:01:41 +00:00			`serialize :data, JSON # rubocop:disable Cop/ActiveRecordSerialize`
Move import data out of project so it doesn't take ages to load. 2015-04-17 12:31:24 +00:00
			`validates :project, presence: true`
fix fogbugz import 2016-04-01 10:04:41 +00:00
some refactoring to symbolise keys across importers and left a TODO 2016-04-05 13:41:15 +00:00			`before_validation :symbolize_credentials`

			`def symbolize_credentials`
changed a few things based on feedback 2016-04-11 09:13:51 +00:00			`# bang doesn't work here - attr_encrypted makes it not to work`
fix some issues with credentials 2016-04-06 08:36:30 +00:00			`self.credentials = self.credentials.deep_symbolize_keys unless self.credentials.blank?`
fix fogbugz import 2016-04-01 10:04:41 +00:00			`end`
Refactor Project#create_or_update_import_data In https://gitlab.com/gitlab-org/release/framework/issues/28 we found that this method was changed a lot over the years: 43 times if our calculations were correct. Looking at the method, it had quite a few branches going on: def create_or_update_import_data(data: nil, credentials: nil) return if data.nil? && credentials.nil? project_import_data = import_data \|\| build_import_data if data project_import_data.data \|\|= {} project_import_data.data = project_import_data.data.merge(data) end if credentials project_import_data.credentials \|\|= {} project_import_data.credentials = project_import_data.credentials.merge(credentials) end project_import_data end If we turn the \|\| and \|\|= operators into regular if statements, we can see a bit more clearly that this method has quite a lot of branches in it: def create_or_update_import_data(data: nil, credentials: nil) if data.nil? && credentials.nil? return else project_import_data = if import_data import_data else build_import_data end if data if project_import_data.data # nothing else project_import_data.data = {} end project_import_data.data = project_import_data.data.merge(data) end if credentials if project_import_data.credentials # nothing else project_import_data.credentials = {} end project_import_data.credentials = project_import_data.credentials.merge(credentials) end project_import_data end end The number of if statements and branches here makes it easy to make mistakes. To resolve this, we refactor this code in such a way that we can get rid of all but the first `if data.nil? && credentials.nil?` statement. We can do this by simply sending `to_h` to `nil` in the right places, which removes the need for statements such as `if data`. Since this data gets written to a database, in ProjectImportData we do make sure to not write empty Hash values. This requires an `unless` (which is really a `if !`), but the resulting code is still very easy to read. 2018-12-10 17:09:33 +00:00
			`def merge_data(hash)`
			`self.data = data.to_h.merge(hash) unless hash.empty?`
			`end`

			`def merge_credentials(hash)`
			`self.credentials = credentials.to_h.merge(hash) unless hash.empty?`
			`end`
Add clear_credentials method to ProjectImportData This backports changes made in https://gitlab.com/gitlab-org/gitlab-ee/merge_requests/9134. 2019-01-14 19:44:36 +00:00
			`def clear_credentials`
			`self.credentials = {}`
			`end`
Move import data out of project so it doesn't take ages to load. 2015-04-17 12:31:24 +00:00			`end`