gitlab-org--gitlab-foss/app/services/members/update_service.rb

# frozen_string_literal: true

module Members
  class UpdateService < Members::BaseService
    # returns the updated member
    def execute(member, permission: :update)
      raise Gitlab::Access::AccessDeniedError unless can?(current_user, action_member_permission(permission, member), member)

      old_access_level = member.human_access
      old_expiry = member.expires_at

      if member.update(params)
        after_execute(action: permission, old_access_level: old_access_level, old_expiry: old_expiry, member: member)

        # Deletes only confidential issues todos for guests
        enqueue_delete_todos(member) if downgrading_to_guest?
      end

      member
    end

    private

    def downgrading_to_guest?
      params[:access_level] == Gitlab::Access::GUEST
    end
  end
end

Members::UpdateService.prepend_if_ee('EE::Members::UpdateService')
Enable more frozen string in app/services/*/.rb Partially addresses #47424. 2018-07-17 12:50:37 -04:00			`# frozen_string_literal: true`

Remove explicit audit event log in MembershipActions Move it to Members::ApproveAccessRequestService. Also, note that there was a double audit event log for access request destruction. Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-10-11 10:47:08 -04:00			`module Members`
			`class UpdateService < Members::BaseService`
			`# returns the updated member`
			`def execute(member, permission: :update)`
Improve Member services Signed-off-by: Rémy Coutable <remy@rymai.me> 2018-02-16 09:10:22 -05:00			`raise Gitlab::Access::AccessDeniedError unless can?(current_user, action_member_permission(permission, member), member)`
Remove explicit audit event log in MembershipActions Move it to Members::ApproveAccessRequestService. Also, note that there was a double audit event log for access request destruction. Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-10-11 10:47:08 -04:00
			`old_access_level = member.human_access`
Add latest changes from gitlab-org/gitlab@master 2020-01-06 19:07:50 -05:00			`old_expiry = member.expires_at`
Remove explicit audit event log in MembershipActions Move it to Members::ApproveAccessRequestService. Also, note that there was a double audit event log for access request destruction. Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-10-11 10:47:08 -04:00
Updates from `rubocop -a` 2018-07-02 06:43:06 -04:00			`if member.update(params)`
Add latest changes from gitlab-org/gitlab@master 2020-01-06 19:07:50 -05:00			`after_execute(action: permission, old_access_level: old_access_level, old_expiry: old_expiry, member: member)`
Delete confidential issue todos for guests Fix leaking information of confidential issues on TODOs when user is downgraded to guest access. 2018-12-11 13:15:10 -05:00
			`# Deletes only confidential issues todos for guests`
			`enqueue_delete_todos(member) if downgrading_to_guest?`
Remove explicit audit event log in MembershipActions Move it to Members::ApproveAccessRequestService. Also, note that there was a double audit event log for access request destruction. Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-10-11 10:47:08 -04:00			`end`

			`member`
			`end`
Delete confidential issue todos for guests Fix leaking information of confidential issues on TODOs when user is downgraded to guest access. 2018-12-11 13:15:10 -05:00
			`private`

			`def downgrading_to_guest?`
			`params[:access_level] == Gitlab::Access::GUEST`
			`end`
Remove explicit audit event log in MembershipActions Move it to Members::ApproveAccessRequestService. Also, note that there was a double audit event log for access request destruction. Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-10-11 10:47:08 -04:00			`end`
			`end`
Add latest changes from gitlab-org/gitlab@master 2019-09-13 09:26:31 -04:00
			`Members::UpdateService.prepend_if_ee('EE::Members::UpdateService')`