2021-01-20 19:11:07 -05:00
|
|
|
# frozen_string_literal: true
|
|
|
|
|
|
|
|
module Mutations
|
|
|
|
module Security
|
|
|
|
module CiConfiguration
|
|
|
|
class ConfigureSast < BaseMutation
|
2021-01-26 13:09:30 -05:00
|
|
|
include FindsProject
|
2021-01-20 19:11:07 -05:00
|
|
|
|
|
|
|
graphql_name 'ConfigureSast'
|
2021-04-28 08:10:09 -04:00
|
|
|
description <<~DESC
|
|
|
|
Configure SAST for a project by enabling SAST in a new or modified
|
|
|
|
`.gitlab-ci.yml` file in a new branch. The new branch and a URL to
|
|
|
|
create a Merge Request are a part of the response.
|
|
|
|
DESC
|
2021-01-20 19:11:07 -05:00
|
|
|
|
|
|
|
argument :project_path, GraphQL::ID_TYPE,
|
|
|
|
required: true,
|
|
|
|
description: 'Full path of the project.'
|
|
|
|
|
|
|
|
argument :configuration, ::Types::CiConfiguration::Sast::InputType,
|
|
|
|
required: true,
|
|
|
|
description: 'SAST CI configuration for the project.'
|
|
|
|
|
|
|
|
field :success_path, GraphQL::STRING_TYPE, null: true,
|
|
|
|
description: 'Redirect path to use when the response is successful.'
|
|
|
|
|
2021-04-28 08:10:09 -04:00
|
|
|
field :branch, GraphQL::STRING_TYPE, null: true,
|
|
|
|
description: 'Branch that has the new/modified `.gitlab-ci.yml` file.'
|
|
|
|
|
2021-01-20 19:11:07 -05:00
|
|
|
authorize :push_code
|
|
|
|
|
|
|
|
def resolve(project_path:, configuration:)
|
2021-01-26 13:09:30 -05:00
|
|
|
project = authorized_find!(project_path)
|
2021-01-20 19:11:07 -05:00
|
|
|
|
|
|
|
result = ::Security::CiConfiguration::SastCreateService.new(project, current_user, configuration).execute
|
|
|
|
prepare_response(result)
|
|
|
|
end
|
|
|
|
|
|
|
|
private
|
|
|
|
|
|
|
|
def prepare_response(result)
|
|
|
|
{
|
2021-04-28 08:10:09 -04:00
|
|
|
branch: result.payload[:branch],
|
|
|
|
success_path: result.payload[:success_path],
|
|
|
|
errors: result.errors
|
2021-01-20 19:11:07 -05:00
|
|
|
}
|
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|