gitlab-org--gitlab-foss/app/controllers/projects/deploy_keys_controller.rb

# frozen_string_literal: true

class Projects::DeployKeysController < Projects::ApplicationController
  include RepositorySettingsRedirect
  respond_to :html

  # Authorize
  before_action :authorize_admin_project!
  before_action :authorize_update_deploy_key!, only: [:edit, :update]

  layout 'project_settings'

  def index
    respond_to do |format|
      format.html { redirect_to_repository }
      format.json do
        render json: Projects::Settings::DeployKeysPresenter.new(@project, current_user: current_user).as_json
      end
    end
  end

  def new
    redirect_to_repository
  end

  def create
    @key = DeployKeys::CreateService.new(current_user, create_params).execute(project: @project)

    unless @key.valid?
      flash[:alert] = @key.errors.full_messages.join(', ').html_safe
    end

    redirect_to_repository
  end

  def edit
  end

  def update
    access_denied! unless deploy_key

    if deploy_key.update(update_params)
      flash[:notice] = _('Deploy key was successfully updated.')
      redirect_to_repository
    else
      render 'edit'
    end
  end

  def enable
    key = Projects::EnableDeployKeyService.new(@project, current_user, params).execute

    return render_404 unless key

    respond_to do |format|
      format.html { redirect_to_repository }
      format.json { head :ok }
    end
  end

  def disable
    deploy_key_project = Projects::DisableDeployKeyService.new(@project, current_user, params).execute

    return render_404 unless deploy_key_project

    respond_to do |format|
      format.html { redirect_to_repository }
      format.json { head :ok }
    end
  end

  protected

  def deploy_key
    @deploy_key ||= DeployKey.find(params[:id])
  end

  def deploy_keys_project
    @deploy_keys_project ||= deploy_key.deploy_keys_project_for(@project)
  end

  def create_params
    create_params = params.require(:deploy_key)
                          .permit(:key, :title, deploy_keys_projects_attributes: [:can_push])
    create_params.dig(:deploy_keys_projects_attributes, '0')&.merge!(project_id: @project.id)
    create_params
  end

  def update_params
    permitted_params = [deploy_keys_projects_attributes: [:can_push]]
    permitted_params << :title if can?(current_user, :update_deploy_key, deploy_key)

    key_update_params = params.require(:deploy_key).permit(*permitted_params)
    key_update_params.dig(:deploy_keys_projects_attributes, '0')&.merge!(id: deploy_keys_project.id)
    key_update_params
  end

  def authorize_update_deploy_key!
    if !can?(current_user, :update_deploy_key, deploy_key) &&
        !can?(current_user, :update_deploy_keys_project, deploy_keys_project)
      access_denied!
    end
  end

  private

  def redirect_to_repository
    redirect_to_repository_settings(@project, anchor: 'js-deploy-keys-settings')
  end
end
Enable even more frozen string in app/controllers Enables frozen string for some vestigial files as well as the following: * app/controllers/projects/*/.rb * app/controllers/sherlock/*/.rb * app/controllers/snippets/*/.rb * app/controllers/users/*/.rb Partially addresses #47424. 2018-09-26 03:45:43 +00:00			`# frozen_string_literal: true`

Move projects controllers/views in Projects module 2013-06-23 16:47:22 +00:00			`class Projects::DeployKeysController < Projects::ApplicationController`
Add latest changes from gitlab-org/gitlab@master 2020-04-24 18:09:46 +00:00			`include RepositorySettingsRedirect`
deploy key creation restyled 2012-01-17 22:46:13 +00:00			`respond_to :html`
Only project admin have access to deploy_keys section 2011-12-29 21:46:18 +00:00
			`# Authorize`
Fixed the Rails/ActionFilter cop Signed-off-by: Jeroen van Baarsen <jeroenvanbaarsen@gmail.com> 2015-04-16 12:03:37 +00:00			`before_action :authorize_admin_project!`
Implement ability to update deploy keys 2017-03-31 12:54:38 +00:00			`before_action :authorize_update_deploy_key!, only: [:edit, :update]`
Initial deploy_key feature commit 2011-12-29 19:44:16 +00:00
Fix edit button for deploy keys available from other projects 2017-06-20 09:37:07 +00:00			`layout 'project_settings'`
Squash project settings navs 2013-06-19 19:44:57 +00:00
Initial deploy_key feature commit 2011-12-29 19:44:16 +00:00			`def index`
Project deploy keys json end point 2017-03-24 10:11:36 +00:00			`respond_to do \|format\|`
Add latest changes from gitlab-org/gitlab@master 2020-04-24 18:09:46 +00:00			`format.html { redirect_to_repository }`
Project deploy keys json end point 2017-03-24 10:11:36 +00:00			`format.json do`
			`render json: Projects::Settings::DeployKeysPresenter.new(@project, current_user: current_user).as_json`
			`end`
			`end`
Initial deploy_key feature commit 2011-12-29 19:44:16 +00:00			`end`

			`def new`
Add latest changes from gitlab-org/gitlab@master 2020-04-24 18:09:46 +00:00			`redirect_to_repository`
Initial deploy_key feature commit 2011-12-29 19:44:16 +00:00			`end`

			`def create`
Make Projects::DeployKeysController EE-ready Signed-off-by: Rémy Coutable <remy@rymai.me> 2018-12-18 16:40:05 +00:00			`@key = DeployKeys::CreateService.new(current_user, create_params).execute(project: @project)`
Feature: Deploy keys between projects 2013-05-06 12:10:55 +00:00
Merge branch 'sh-migrate-can-push-to-deploy-keys-projects-10-3' into 'security-10-3' [10.3] Migrate `can_push` column from `keys` to `deploy_keys_project` See merge request gitlab/gitlabhq!2276 (cherry picked from commit f6ca52d31bac350a23938e0aebf717c767b4710c) 1f2bd3c0 Backport to 10.3 2018-01-05 15:23:44 +00:00			`unless @key.valid?`
Project deploy keys json end point 2017-03-24 10:11:36 +00:00			`flash[:alert] = @key.errors.full_messages.join(', ').html_safe`
error messages restyled 2012-01-17 23:00:40 +00:00			`end`
Adds Rubocop rule for line break around conditionals 2018-01-11 16:34:01 +00:00
Add latest changes from gitlab-org/gitlab@master 2020-04-24 18:09:46 +00:00			`redirect_to_repository`
Initial deploy_key feature commit 2011-12-29 19:44:16 +00:00			`end`

Implement ability to update deploy keys 2017-03-31 12:54:38 +00:00			`def edit`
			`end`

			`def update`
Add latest changes from gitlab-org/gitlab@master 2020-05-27 21:08:05 +00:00			`access_denied! unless deploy_key`

Updates from `rubocop -a` 2018-07-02 10:43:06 +00:00			`if deploy_key.update(update_params)`
Externalize strings in projects controllers - concerns - dashboard - groups - import 2019-03-27 16:52:52 +00:00			`flash[:notice] = _('Deploy key was successfully updated.')`
Add latest changes from gitlab-org/gitlab@master 2020-04-24 18:09:46 +00:00			`redirect_to_repository`
Implement ability to update deploy keys 2017-03-31 12:54:38 +00:00			`else`
			`render 'edit'`
			`end`
			`end`

Feature: Deploy keys between projects 2013-05-06 12:10:55 +00:00			`def enable`
Fix enabling project deploy key for admins Admins would be prevented from adding a project deploy key since the accessible keys would be restricted to the user's keys. Also backports a spec for DeployKeysController from https://gitlab.com/gitlab-org/gitlab-ee/merge_requests/8432. 2018-11-17 05:59:17 +00:00			`key = Projects::EnableDeployKeyService.new(@project, current_user, params).execute`

			`return render_404 unless key`
Feature: Deploy keys between projects 2013-05-06 12:10:55 +00:00
Re-wrote to match our docs - still not 100% sure but closer than it was 2017-04-28 16:06:19 +00:00			`respond_to do \|format\|`
Add latest changes from gitlab-org/gitlab@master 2020-04-24 18:09:46 +00:00			`format.html { redirect_to_repository }`
Re-wrote to match our docs - still not 100% sure but closer than it was 2017-04-28 16:06:19 +00:00			`format.json { head :ok }`
			`end`
Feature: Deploy keys between projects 2013-05-06 12:10:55 +00:00			`end`

			`def disable`
Fix enabling project deploy key for admins Admins would be prevented from adding a project deploy key since the accessible keys would be restricted to the user's keys. Also backports a spec for DeployKeysController from https://gitlab.com/gitlab-org/gitlab-ee/merge_requests/8432. 2018-11-17 05:59:17 +00:00			`deploy_key_project = Projects::DisableDeployKeyService.new(@project, current_user, params).execute`
Feature: Deploy keys between projects 2013-05-06 12:10:55 +00:00
Fix enabling project deploy key for admins Admins would be prevented from adding a project deploy key since the accessible keys would be restricted to the user's keys. Also backports a spec for DeployKeysController from https://gitlab.com/gitlab-org/gitlab-ee/merge_requests/8432. 2018-11-17 05:59:17 +00:00			`return render_404 unless deploy_key_project`
Re-wrote to match our docs - still not 100% sure but closer than it was 2017-04-28 16:06:19 +00:00
			`respond_to do \|format\|`
Add latest changes from gitlab-org/gitlab@master 2020-04-24 18:09:46 +00:00			`format.html { redirect_to_repository }`
Re-wrote to match our docs - still not 100% sure but closer than it was 2017-04-28 16:06:19 +00:00			`format.json { head :ok }`
			`end`
Feature: Deploy keys between projects 2013-05-06 12:10:55 +00:00			`end`

			`protected`

Implement ability to update deploy keys 2017-03-31 12:54:38 +00:00			`def deploy_key`
Fix edit button for deploy keys available from other projects 2017-06-20 09:37:07 +00:00			`@deploy_key \|\|= DeployKey.find(params[:id])`
Implement ability to update deploy keys 2017-03-31 12:54:38 +00:00			`end`

Add latest changes from gitlab-org/gitlab@master 2019-10-17 00:07:27 +00:00			`def deploy_keys_project`
			`@deploy_keys_project \|\|= deploy_key.deploy_keys_project_for(@project)`
			`end`

Implement ability to update deploy keys 2017-03-31 12:54:38 +00:00			`def create_params`
Merge branch 'sh-migrate-can-push-to-deploy-keys-projects-10-3' into 'security-10-3' [10.3] Migrate `can_push` column from `keys` to `deploy_keys_project` See merge request gitlab/gitlabhq!2276 (cherry picked from commit f6ca52d31bac350a23938e0aebf717c767b4710c) 1f2bd3c0 Backport to 10.3 2018-01-05 15:23:44 +00:00			`create_params = params.require(:deploy_key)`
			`.permit(:key, :title, deploy_keys_projects_attributes: [:can_push])`
			`create_params.dig(:deploy_keys_projects_attributes, '0')&.merge!(project_id: @project.id)`
			`create_params`
Make app works with strong params Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-06-26 20:24:17 +00:00			`end`
Implement ability to update deploy keys 2017-03-31 12:54:38 +00:00
			`def update_params`
Add latest changes from gitlab-org/gitlab@master 2020-05-27 21:08:05 +00:00			`permitted_params = [deploy_keys_projects_attributes: [:can_push]]`
Add latest changes from gitlab-org/gitlab@master 2019-10-17 00:07:27 +00:00			`permitted_params << :title if can?(current_user, :update_deploy_key, deploy_key)`

Add latest changes from gitlab-org/gitlab@master 2020-05-27 21:08:05 +00:00			`key_update_params = params.require(:deploy_key).permit(*permitted_params)`
			`key_update_params.dig(:deploy_keys_projects_attributes, '0')&.merge!(id: deploy_keys_project.id)`
			`key_update_params`
Implement ability to update deploy keys 2017-03-31 12:54:38 +00:00			`end`

			`def authorize_update_deploy_key!`
Add latest changes from gitlab-org/gitlab@master 2019-10-17 00:07:27 +00:00			`if !can?(current_user, :update_deploy_key, deploy_key) &&`
			`!can?(current_user, :update_deploy_keys_project, deploy_keys_project)`
			`access_denied!`
			`end`
Implement ability to update deploy keys 2017-03-31 12:54:38 +00:00			`end`
Add latest changes from gitlab-org/gitlab@master 2020-03-02 15:08:01 +00:00
Add latest changes from gitlab-org/gitlab@master 2020-04-24 18:09:46 +00:00			`private`

			`def redirect_to_repository`
			`redirect_to_repository_settings(@project, anchor: 'js-deploy-keys-settings')`
Add latest changes from gitlab-org/gitlab@master 2020-03-02 15:08:01 +00:00			`end`
Initial deploy_key feature commit 2011-12-29 19:44:16 +00:00			`end`