gitlab-org--gitlab-foss/lib/api/project_snippets.rb

176 lines
6.3 KiB
Ruby
Raw Normal View History

# frozen_string_literal: true
module API
class ProjectSnippets < Grape::API
2016-12-04 12:11:19 -05:00
include PaginationParams
before { authenticate! }
before { check_snippets_enabled }
2016-11-21 09:06:32 -05:00
params do
requires :id, type: String, desc: 'The ID of a project'
end
resource :projects, requirements: API::NAMESPACE_OR_PROJECT_REQUIREMENTS do
helpers Helpers::SnippetsHelpers
helpers do
def check_snippets_enabled
forbidden! unless user_project.feature_available?(:snippets, current_user)
end
def handle_project_member_errors(errors)
if errors[:project_access].any?
error!(errors[:project_access], 422)
end
not_found!
end
def snippets_for_current_user
SnippetsFinder.new(current_user, project: user_project).execute
end
end
2016-11-21 09:06:32 -05:00
desc 'Get all project snippets' do
success Entities::ProjectSnippet
end
2016-12-04 12:11:19 -05:00
params do
use :pagination
end
get ":id/snippets" do
present paginate(snippets_for_current_user), with: Entities::ProjectSnippet
end
2016-11-21 09:06:32 -05:00
desc 'Get a single project snippet' do
success Entities::ProjectSnippet
end
params do
requires :snippet_id, type: Integer, desc: 'The ID of a project snippet'
end
get ":id/snippets/:snippet_id" do
2016-11-21 09:06:32 -05:00
snippet = snippets_for_current_user.find(params[:snippet_id])
present snippet, with: Entities::ProjectSnippet
end
desc 'Create a new project snippet' do
success Entities::ProjectSnippet
end
params do
requires :title, type: String, allow_blank: false, desc: 'The title of the snippet'
2016-11-21 09:06:32 -05:00
requires :file_name, type: String, desc: 'The file name of the snippet'
requires :content, type: String, allow_blank: false, desc: 'The content of the snippet'
2017-05-03 11:26:49 -04:00
optional :description, type: String, desc: 'The description of a snippet'
requires :visibility, type: String,
values: Gitlab::VisibilityLevel.string_values,
desc: 'The visibility of the snippet'
2016-11-21 09:06:32 -05:00
end
post ":id/snippets" do
authorize! :create_snippet, user_project
snippet_params = declared_params(include_missing: false).merge(request: request, api: true)
service_response = ::Snippets::CreateService.new(user_project, current_user, snippet_params).execute
snippet = service_response.payload[:snippet]
if service_response.success?
2016-11-21 09:06:32 -05:00
present snippet, with: Entities::ProjectSnippet
else
render_spam_error! if snippet.spam?
render_api_error!({ error: service_response.message }, service_response.http_status)
end
end
2016-11-21 09:06:32 -05:00
desc 'Update an existing project snippet' do
success Entities::ProjectSnippet
end
params do
requires :snippet_id, type: Integer, desc: 'The ID of a project snippet'
optional :title, type: String, allow_blank: false, desc: 'The title of the snippet'
2016-11-21 09:06:32 -05:00
optional :file_name, type: String, desc: 'The file name of the snippet'
optional :content, type: String, allow_blank: false, desc: 'The content of the snippet'
2017-05-03 11:26:49 -04:00
optional :description, type: String, desc: 'The description of a snippet'
optional :visibility, type: String,
values: Gitlab::VisibilityLevel.string_values,
desc: 'The visibility of the snippet'
at_least_one_of :title, :file_name, :content, :visibility_level
2016-11-21 09:06:32 -05:00
end
# rubocop: disable CodeReuse/ActiveRecord
put ":id/snippets/:snippet_id" do
2016-11-21 09:06:32 -05:00
snippet = snippets_for_current_user.find_by(id: params.delete(:snippet_id))
not_found!('Snippet') unless snippet
authorize! :update_snippet, snippet
2016-11-21 09:06:32 -05:00
snippet_params = declared_params(include_missing: false)
2017-02-14 14:07:11 -05:00
.merge(request: request, api: true)
service_response = ::Snippets::UpdateService.new(user_project, current_user, snippet_params).execute(snippet)
snippet = service_response.payload[:snippet]
if service_response.success?
2016-11-21 09:06:32 -05:00
present snippet, with: Entities::ProjectSnippet
else
render_spam_error! if snippet.spam?
render_api_error!({ error: service_response.message }, service_response.http_status)
end
end
# rubocop: enable CodeReuse/ActiveRecord
2016-11-21 09:06:32 -05:00
desc 'Delete a project snippet'
params do
requires :snippet_id, type: Integer, desc: 'The ID of a project snippet'
end
# rubocop: disable CodeReuse/ActiveRecord
delete ":id/snippets/:snippet_id" do
2016-11-21 09:06:32 -05:00
snippet = snippets_for_current_user.find_by(id: params[:snippet_id])
not_found!('Snippet') unless snippet
authorize! :admin_snippet, snippet
destroy_conditionally!(snippet) do |snippet|
service = ::Snippets::DestroyService.new(current_user, snippet)
response = service.execute
if response.error?
render_api_error!({ error: response.message }, response.http_status)
end
end
end
# rubocop: enable CodeReuse/ActiveRecord
2016-11-21 09:06:32 -05:00
desc 'Get a raw project snippet'
params do
requires :snippet_id, type: Integer, desc: 'The ID of a project snippet'
end
# rubocop: disable CodeReuse/ActiveRecord
get ":id/snippets/:snippet_id/raw" do
2016-11-21 09:06:32 -05:00
snippet = snippets_for_current_user.find_by(id: params[:snippet_id])
not_found!('Snippet') unless snippet
2013-06-06 09:10:24 -04:00
env['api.format'] = :txt
content_type 'text/plain'
present content_for(snippet)
end
# rubocop: enable CodeReuse/ActiveRecord
desc 'Get the user agent details for a project snippet' do
success Entities::UserAgentDetail
end
params do
requires :snippet_id, type: Integer, desc: 'The ID of a project snippet'
end
# rubocop: disable CodeReuse/ActiveRecord
get ":id/snippets/:snippet_id/user_agent_detail" do
authenticated_as_admin!
snippet = Snippet.find_by!(id: params[:snippet_id], project_id: params[:id])
break not_found!('UserAgentDetail') unless snippet.user_agent_detail
present snippet.user_agent_detail, with: Entities::UserAgentDetail
end
# rubocop: enable CodeReuse/ActiveRecord
end
end
end