2013-01-19 13:52:55 -05:00
|
|
|
class ProjectTeam
|
2013-01-03 14:09:18 -05:00
|
|
|
attr_accessor :project
|
|
|
|
|
|
|
|
def initialize(project)
|
|
|
|
@project = project
|
2013-01-04 01:43:25 -05:00
|
|
|
end
|
|
|
|
|
|
|
|
# Shortcut to add users
|
|
|
|
#
|
|
|
|
# Use:
|
|
|
|
# @team << [@user, :master]
|
|
|
|
# @team << [@users, :master]
|
|
|
|
#
|
2014-09-25 18:07:40 -04:00
|
|
|
def <<(args)
|
2015-04-10 08:46:09 -04:00
|
|
|
users, access, current_user = *args
|
2013-01-04 01:43:25 -05:00
|
|
|
|
|
|
|
if users.respond_to?(:each)
|
2016-08-02 14:37:22 -04:00
|
|
|
add_users(users, access, current_user: current_user)
|
2013-01-04 01:43:25 -05:00
|
|
|
else
|
2016-08-18 12:01:50 -04:00
|
|
|
add_user(users, access, current_user: current_user)
|
2013-01-04 01:43:25 -05:00
|
|
|
end
|
2013-01-03 14:09:18 -05:00
|
|
|
end
|
|
|
|
|
2015-03-13 11:23:45 -04:00
|
|
|
def find_member(user_id)
|
2016-06-27 10:20:57 -04:00
|
|
|
member = project.members.find_by(user_id: user_id)
|
2013-08-27 14:35:41 -04:00
|
|
|
|
|
|
|
# If user is not in project members
|
|
|
|
# we should check for group membership
|
2015-03-13 11:23:45 -04:00
|
|
|
if group && !member
|
2016-06-27 10:20:57 -04:00
|
|
|
member = group.members.find_by(user_id: user_id)
|
2013-08-27 14:35:41 -04:00
|
|
|
end
|
|
|
|
|
2015-03-13 11:23:45 -04:00
|
|
|
member
|
2013-01-22 12:45:13 -05:00
|
|
|
end
|
|
|
|
|
2016-09-16 11:54:21 -04:00
|
|
|
def add_users(users, access_level, current_user: nil, expires_at: nil)
|
2016-08-04 00:35:17 -04:00
|
|
|
ProjectMember.add_users_to_projects(
|
2013-01-03 14:09:18 -05:00
|
|
|
[project.id],
|
2015-04-10 08:46:09 -04:00
|
|
|
users,
|
2016-09-16 11:54:21 -04:00
|
|
|
access_level,
|
2016-08-02 14:37:22 -04:00
|
|
|
current_user: current_user,
|
|
|
|
expires_at: expires_at
|
2013-01-03 14:09:18 -05:00
|
|
|
)
|
|
|
|
end
|
|
|
|
|
2016-09-16 11:54:21 -04:00
|
|
|
def add_user(user, access_level, current_user: nil, expires_at: nil)
|
|
|
|
ProjectMember.add_user(
|
|
|
|
project,
|
|
|
|
user,
|
|
|
|
access_level,
|
|
|
|
current_user: current_user,
|
|
|
|
expires_at: expires_at
|
|
|
|
)
|
2015-04-10 08:46:09 -04:00
|
|
|
end
|
|
|
|
|
2013-01-03 14:09:18 -05:00
|
|
|
# Remove all users from project team
|
|
|
|
def truncate
|
2014-09-14 12:32:51 -04:00
|
|
|
ProjectMember.truncate_team(project)
|
2013-01-03 14:09:18 -05:00
|
|
|
end
|
|
|
|
|
|
|
|
def members
|
2013-06-22 05:57:05 -04:00
|
|
|
@members ||= fetch_members
|
2013-01-03 14:09:18 -05:00
|
|
|
end
|
2016-04-18 12:53:32 -04:00
|
|
|
alias_method :users, :members
|
2013-01-03 14:09:18 -05:00
|
|
|
|
|
|
|
def guests
|
2013-06-17 07:17:32 -04:00
|
|
|
@guests ||= fetch_members(:guests)
|
2013-01-03 14:09:18 -05:00
|
|
|
end
|
|
|
|
|
|
|
|
def reporters
|
2013-06-17 07:17:32 -04:00
|
|
|
@reporters ||= fetch_members(:reporters)
|
2013-01-03 14:09:18 -05:00
|
|
|
end
|
|
|
|
|
|
|
|
def developers
|
2013-06-17 07:17:32 -04:00
|
|
|
@developers ||= fetch_members(:developers)
|
2013-01-03 14:09:18 -05:00
|
|
|
end
|
|
|
|
|
|
|
|
def masters
|
2013-06-17 07:17:32 -04:00
|
|
|
@masters ||= fetch_members(:masters)
|
2013-01-03 14:09:18 -05:00
|
|
|
end
|
2013-01-04 01:43:25 -05:00
|
|
|
|
2015-04-10 08:46:09 -04:00
|
|
|
def import(source_project, current_user = nil)
|
2013-01-04 01:43:25 -05:00
|
|
|
target_project = project
|
|
|
|
|
2015-03-13 11:23:45 -04:00
|
|
|
source_members = source_project.project_members.to_a
|
2014-09-14 12:32:51 -04:00
|
|
|
target_user_ids = target_project.project_members.pluck(:user_id)
|
2013-01-04 01:43:25 -05:00
|
|
|
|
2015-03-13 11:23:45 -04:00
|
|
|
source_members.reject! do |member|
|
2013-01-04 01:43:25 -05:00
|
|
|
# Skip if user already present in team
|
2015-04-10 09:26:53 -04:00
|
|
|
!member.invite? && target_user_ids.include?(member.user_id)
|
2013-01-04 01:43:25 -05:00
|
|
|
end
|
|
|
|
|
2015-03-13 11:23:45 -04:00
|
|
|
source_members.map! do |member|
|
|
|
|
new_member = member.dup
|
|
|
|
new_member.id = nil
|
|
|
|
new_member.source = target_project
|
2015-04-10 08:46:09 -04:00
|
|
|
new_member.created_by = current_user
|
2015-03-13 11:23:45 -04:00
|
|
|
new_member
|
2013-01-04 01:43:25 -05:00
|
|
|
end
|
|
|
|
|
2014-09-14 12:32:51 -04:00
|
|
|
ProjectMember.transaction do
|
2015-03-13 11:23:45 -04:00
|
|
|
source_members.each do |member|
|
|
|
|
member.save
|
2013-01-04 01:43:25 -05:00
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
true
|
|
|
|
rescue
|
|
|
|
false
|
|
|
|
end
|
2013-06-17 07:17:32 -04:00
|
|
|
|
2014-06-04 04:52:17 -04:00
|
|
|
def guest?(user)
|
2015-03-13 11:23:45 -04:00
|
|
|
max_member_access(user.id) == Gitlab::Access::GUEST
|
2014-06-04 04:52:17 -04:00
|
|
|
end
|
|
|
|
|
|
|
|
def reporter?(user)
|
2015-03-13 11:23:45 -04:00
|
|
|
max_member_access(user.id) == Gitlab::Access::REPORTER
|
2014-06-04 04:52:17 -04:00
|
|
|
end
|
|
|
|
|
|
|
|
def developer?(user)
|
2015-03-13 11:23:45 -04:00
|
|
|
max_member_access(user.id) == Gitlab::Access::DEVELOPER
|
2014-06-04 04:52:17 -04:00
|
|
|
end
|
|
|
|
|
|
|
|
def master?(user)
|
2015-03-13 11:23:45 -04:00
|
|
|
max_member_access(user.id) == Gitlab::Access::MASTER
|
2014-06-20 05:54:03 -04:00
|
|
|
end
|
|
|
|
|
2016-10-27 10:59:00 -04:00
|
|
|
def member?(user, min_member_access = Gitlab::Access::GUEST)
|
|
|
|
max_member_access(user.id) >= min_member_access
|
2014-10-08 09:44:25 -04:00
|
|
|
end
|
|
|
|
|
2016-06-02 12:05:06 -04:00
|
|
|
def human_max_access(user_id)
|
|
|
|
Gitlab::Access.options_with_owner.key(max_member_access(user_id))
|
|
|
|
end
|
|
|
|
|
2016-07-20 00:52:31 -04:00
|
|
|
# Determine the maximum access level for a group of users in bulk.
|
|
|
|
#
|
2016-07-26 20:07:51 -04:00
|
|
|
# Returns a Hash mapping user ID -> maximum access level.
|
2016-07-20 00:52:31 -04:00
|
|
|
def max_member_access_for_user_ids(user_ids)
|
|
|
|
user_ids = user_ids.uniq
|
|
|
|
key = "max_member_access:#{project.id}"
|
2016-08-01 16:11:45 -04:00
|
|
|
|
|
|
|
access = {}
|
|
|
|
|
|
|
|
if RequestStore.active?
|
|
|
|
RequestStore.store[key] ||= {}
|
|
|
|
access = RequestStore.store[key]
|
|
|
|
end
|
2015-10-14 08:54:04 -04:00
|
|
|
|
2016-07-20 00:52:31 -04:00
|
|
|
# Lookup only the IDs we need
|
|
|
|
user_ids = user_ids - access.keys
|
2014-06-20 05:54:03 -04:00
|
|
|
|
2016-07-20 00:52:31 -04:00
|
|
|
if user_ids.present?
|
2016-07-25 09:21:55 -04:00
|
|
|
user_ids.each { |id| access[id] = Gitlab::Access::NO_ACCESS }
|
2014-06-20 05:54:03 -04:00
|
|
|
|
2016-07-25 09:21:55 -04:00
|
|
|
member_access = project.members.access_for_user_ids(user_ids)
|
2016-07-20 00:52:31 -04:00
|
|
|
merge_max!(access, member_access)
|
|
|
|
|
|
|
|
if group
|
2016-07-25 09:21:55 -04:00
|
|
|
group_access = group.members.access_for_user_ids(user_ids)
|
2016-07-20 00:52:31 -04:00
|
|
|
merge_max!(access, group_access)
|
|
|
|
end
|
|
|
|
|
2016-07-26 19:56:06 -04:00
|
|
|
# Each group produces a list of maximum access level per user. We take the
|
|
|
|
# max of the values produced by each group.
|
2016-09-20 08:19:20 -04:00
|
|
|
if project_shared_with_group?
|
2016-07-26 19:56:06 -04:00
|
|
|
project.project_group_links.each do |group_link|
|
|
|
|
invited_access = max_invited_level_for_users(group_link, user_ids)
|
|
|
|
merge_max!(access, invited_access)
|
|
|
|
end
|
2016-07-20 00:52:31 -04:00
|
|
|
end
|
2016-03-11 12:46:01 -05:00
|
|
|
end
|
|
|
|
|
2016-07-20 00:52:31 -04:00
|
|
|
access
|
|
|
|
end
|
|
|
|
|
|
|
|
def max_member_access(user_id)
|
|
|
|
max_member_access_for_user_ids([user_id])[user_id]
|
2016-03-11 12:46:01 -05:00
|
|
|
end
|
|
|
|
|
2016-04-18 12:53:32 -04:00
|
|
|
private
|
2016-03-11 12:46:01 -05:00
|
|
|
|
2016-07-26 19:56:06 -04:00
|
|
|
# For a given group, return the maximum access level for the user. This is the min of
|
|
|
|
# the invited access level of the group and the access level of the user within the group.
|
|
|
|
# For example, if the group has been given DEVELOPER access but the member has MASTER access,
|
|
|
|
# the user should receive only DEVELOPER access.
|
|
|
|
def max_invited_level_for_users(group_link, user_ids)
|
|
|
|
invited_group = group_link.group
|
|
|
|
capped_access_level = group_link.group_access
|
|
|
|
access = invited_group.group_members.access_for_user_ids(user_ids)
|
|
|
|
|
|
|
|
# If the user is not in the list, assume he/she does not have access
|
|
|
|
missing_users = user_ids - access.keys
|
|
|
|
missing_users.each { |id| access[id] = Gitlab::Access::NO_ACCESS }
|
|
|
|
|
|
|
|
# Cap the maximum access by the invited level access
|
|
|
|
access.each { |key, value| access[key] = [value, capped_access_level].min }
|
2014-06-04 04:52:17 -04:00
|
|
|
end
|
|
|
|
|
2013-06-17 07:17:32 -04:00
|
|
|
def fetch_members(level = nil)
|
2016-06-27 10:20:57 -04:00
|
|
|
project_members = project.members
|
|
|
|
group_members = group ? group.members : []
|
2013-06-17 07:17:32 -04:00
|
|
|
|
|
|
|
if level
|
2016-09-21 07:53:02 -04:00
|
|
|
project_members = project_members.public_send(level)
|
|
|
|
group_members = group_members.public_send(level) if group
|
2013-06-17 07:17:32 -04:00
|
|
|
end
|
|
|
|
|
2014-06-04 12:20:25 -04:00
|
|
|
user_ids = project_members.pluck(:user_id)
|
2016-09-20 08:19:20 -04:00
|
|
|
|
|
|
|
invited_members = fetch_invited_members(level)
|
2016-03-11 12:46:01 -05:00
|
|
|
user_ids.push(*invited_members.map(&:user_id)) if invited_members.any?
|
2016-09-20 08:19:20 -04:00
|
|
|
|
2014-10-09 03:47:47 -04:00
|
|
|
user_ids.push(*group_members.pluck(:user_id)) if group
|
2014-06-04 12:20:25 -04:00
|
|
|
|
|
|
|
User.where(id: user_ids)
|
2013-06-17 07:17:32 -04:00
|
|
|
end
|
2013-06-17 08:38:19 -04:00
|
|
|
|
|
|
|
def group
|
|
|
|
project.group
|
|
|
|
end
|
2016-07-20 00:52:31 -04:00
|
|
|
|
|
|
|
def merge_max!(first_hash, second_hash)
|
|
|
|
first_hash.merge!(second_hash) { |_key, old, new| old > new ? old : new }
|
|
|
|
end
|
2016-09-20 08:19:20 -04:00
|
|
|
|
|
|
|
def project_shared_with_group?
|
|
|
|
project.invited_groups.any? && project.allowed_to_share_with_group?
|
|
|
|
end
|
|
|
|
|
|
|
|
def fetch_invited_members(level = nil)
|
|
|
|
invited_members = []
|
|
|
|
|
|
|
|
return invited_members unless project_shared_with_group?
|
|
|
|
|
2016-09-20 15:03:35 -04:00
|
|
|
project.project_group_links.includes(group: [:group_members]).each do |link|
|
|
|
|
invited_group_members = link.group.members
|
2016-09-20 08:19:20 -04:00
|
|
|
|
|
|
|
if level
|
2016-09-20 15:03:35 -04:00
|
|
|
numeric_level = GroupMember.access_level_roles[level.to_s.singularize.titleize]
|
2016-09-20 08:19:20 -04:00
|
|
|
|
2016-09-20 15:03:35 -04:00
|
|
|
# If we're asked for a level that's higher than the group's access,
|
|
|
|
# there's nothing left to do
|
|
|
|
next if numeric_level > link.group_access
|
2016-09-20 08:19:20 -04:00
|
|
|
|
2016-09-20 15:03:35 -04:00
|
|
|
# Make sure we include everyone _above_ the requested level as well
|
2016-09-21 08:28:26 -04:00
|
|
|
invited_group_members =
|
|
|
|
if numeric_level == link.group_access
|
|
|
|
invited_group_members.where("access_level >= ?", link.group_access)
|
|
|
|
else
|
|
|
|
invited_group_members.public_send(level)
|
|
|
|
end
|
2016-09-20 08:19:20 -04:00
|
|
|
end
|
|
|
|
|
2016-09-20 15:03:35 -04:00
|
|
|
invited_members << invited_group_members
|
2016-09-20 08:19:20 -04:00
|
|
|
end
|
|
|
|
|
|
|
|
invited_members.flatten.compact
|
|
|
|
end
|
2013-01-03 14:09:18 -05:00
|
|
|
end
|