gitlab-org--gitlab-foss/app/controllers/admin/impersonation_tokens_controller.rb

# frozen_string_literal: true

class Admin::ImpersonationTokensController < Admin::ApplicationController
  before_action :user

  feature_category :authentication_and_authorization

  def index
    set_index_vars
  end

  def create
    @impersonation_token = finder.build(impersonation_token_params)

    if @impersonation_token.save
      PersonalAccessToken.redis_store!(current_user.id, @impersonation_token.token)
      redirect_to admin_user_impersonation_tokens_path, notice: _("A new impersonation token has been created.")
    else
      set_index_vars
      render :index
    end
  end

  def revoke
    @impersonation_token = finder.find(params[:id])

    if @impersonation_token.revoke!
      flash[:notice] = _("Revoked impersonation token %{token_name}!") % { token_name: @impersonation_token.name }
    else
      flash[:alert] = _("Could not revoke impersonation token %{token_name}.") % { token_name: @impersonation_token.name }
    end

    redirect_to admin_user_impersonation_tokens_path
  end

  private

  # rubocop: disable CodeReuse/ActiveRecord
  def user
    @user ||= User.find_by!(username: params[:user_id])
  end
  # rubocop: enable CodeReuse/ActiveRecord

  def finder(options = {})
    PersonalAccessTokensFinder.new({ user: user, impersonation: true }.merge(options))
  end

  def impersonation_token_params
    params.require(:personal_access_token).permit(:name, :expires_at, :impersonation, scopes: [])
  end

  # rubocop: disable CodeReuse/ActiveRecord
  def set_index_vars
    @scopes = Gitlab::Auth.available_scopes_for(current_user)

    @impersonation_token ||= finder.build
    @inactive_impersonation_tokens = finder(state: 'inactive').execute
    @active_impersonation_tokens = finder(state: 'active').execute.order(:expires_at)

    @new_impersonation_token = PersonalAccessToken.redis_getdel(current_user.id)
  end
  # rubocop: enable CodeReuse/ActiveRecord
end
Enable frozen string in app/controllers/*/.rb Enables frozen string for the following: * app/controllers/.rb app/controllers/admin/*/.rb * app/controllers/boards/*/.rb * app/controllers/ci/*/.rb * app/controllers/concerns/*/.rb Partially addresses #47424. 2018-09-14 01:42:05 -04:00			`# frozen_string_literal: true`

applies relevant changes to the code and code structure 2017-02-23 12:47:06 -05:00			`class Admin::ImpersonationTokensController < Admin::ApplicationController`
apply codestyle and implementation changes to the respective feature code 2017-03-01 11:59:03 -05:00			`before_action :user`
applies relevant changes to the code and code structure 2017-02-23 12:47:06 -05:00
Add latest changes from gitlab-org/gitlab@master 2020-10-05 17:08:47 -04:00			`feature_category :authentication_and_authorization`

applies relevant changes to the code and code structure 2017-02-23 12:47:06 -05:00			`def index`
			`set_index_vars`
			`end`

			`def create`
apply codestyle and implementation changes to the respective feature code 2017-03-01 11:59:03 -05:00			`@impersonation_token = finder.build(impersonation_token_params)`
applies relevant changes to the code and code structure 2017-02-23 12:47:06 -05:00
			`if @impersonation_token.save`
Display impersonation token value only after creation Since we migrated all PersonlAccessTokens to store only its hash in the DB, the token value can no longer be shown to the user. 2018-11-08 10:03:56 -05:00			`PersonalAccessToken.redis_store!(current_user.id, @impersonation_token.token)`
Externalize strings in admin controllers - Update PO file 2019-03-21 09:31:05 -04:00			`redirect_to admin_user_impersonation_tokens_path, notice: _("A new impersonation token has been created.")`
applies relevant changes to the code and code structure 2017-02-23 12:47:06 -05:00			`else`
			`set_index_vars`
			`render :index`
			`end`
			`end`

			`def revoke`
apply codestyle and implementation changes to the respective feature code 2017-03-01 11:59:03 -05:00			`@impersonation_token = finder.find(params[:id])`
applies relevant changes to the code and code structure 2017-02-23 12:47:06 -05:00
			`if @impersonation_token.revoke!`
Externalize strings in admin controllers - Update PO file 2019-03-21 09:31:05 -04:00			`flash[:notice] = _("Revoked impersonation token %{token_name}!") % { token_name: @impersonation_token.name }`
applies relevant changes to the code and code structure 2017-02-23 12:47:06 -05:00			`else`
Externalize strings in admin controllers - Update PO file 2019-03-21 09:31:05 -04:00			`flash[:alert] = _("Could not revoke impersonation token %{token_name}.") % { token_name: @impersonation_token.name }`
applies relevant changes to the code and code structure 2017-02-23 12:47:06 -05:00			`end`

			`redirect_to admin_user_impersonation_tokens_path`
			`end`

			`private`

Disable existing offenses for the CodeReuse cops This whitelists all existing offenses for the various CodeReuse cops, of which most are triggered by the CodeReuse/ActiveRecord cop. 2018-08-27 11:31:01 -04:00			`# rubocop: disable CodeReuse/ActiveRecord`
applies relevant changes to the code and code structure 2017-02-23 12:47:06 -05:00			`def user`
			`@user \|\|= User.find_by!(username: params[:user_id])`
			`end`
Disable existing offenses for the CodeReuse cops This whitelists all existing offenses for the various CodeReuse cops, of which most are triggered by the CodeReuse/ActiveRecord cop. 2018-08-27 11:31:01 -04:00			`# rubocop: enable CodeReuse/ActiveRecord`
applies relevant changes to the code and code structure 2017-02-23 12:47:06 -05:00
apply codestyle and implementation changes to the respective feature code 2017-03-01 11:59:03 -05:00			`def finder(options = {})`
			`PersonalAccessTokensFinder.new({ user: user, impersonation: true }.merge(options))`
refactors finder and correlated code 2017-02-27 13:56:54 -05:00			`end`

applies relevant changes to the code and code structure 2017-02-23 12:47:06 -05:00			`def impersonation_token_params`
			`params.require(:personal_access_token).permit(:name, :expires_at, :impersonation, scopes: [])`
			`end`

Disable existing offenses for the CodeReuse cops This whitelists all existing offenses for the various CodeReuse cops, of which most are triggered by the CodeReuse/ActiveRecord cop. 2018-08-27 11:31:01 -04:00			`# rubocop: disable CodeReuse/ActiveRecord`
applies relevant changes to the code and code structure 2017-02-23 12:47:06 -05:00			`def set_index_vars`
Added write_repository scope for personal access token 2019-04-15 09:05:55 -04:00			`@scopes = Gitlab::Auth.available_scopes_for(current_user)`
apply codestyle and implementation changes to the respective feature code 2017-03-01 11:59:03 -05:00
			`@impersonation_token \|\|= finder.build`
			`@inactive_impersonation_tokens = finder(state: 'inactive').execute`
			`@active_impersonation_tokens = finder(state: 'active').execute.order(:expires_at)`
Display impersonation token value only after creation Since we migrated all PersonlAccessTokens to store only its hash in the DB, the token value can no longer be shown to the user. 2018-11-08 10:03:56 -05:00
			`@new_impersonation_token = PersonalAccessToken.redis_getdel(current_user.id)`
applies relevant changes to the code and code structure 2017-02-23 12:47:06 -05:00			`end`
Disable existing offenses for the CodeReuse cops This whitelists all existing offenses for the various CodeReuse cops, of which most are triggered by the CodeReuse/ActiveRecord cop. 2018-08-27 11:31:01 -04:00			`# rubocop: enable CodeReuse/ActiveRecord`
applies relevant changes to the code and code structure 2017-02-23 12:47:06 -05:00			`end`