gitlab-org--gitlab-foss/app/services/members/destroy_service.rb

module Members
  class DestroyService < BaseService
    attr_accessor :member, :current_user

    def initialize(member, current_user)
      @member = member
      @current_user = current_user
    end

    def execute
      unless member && can?(current_user, "destroy_#{member.type.underscore}".to_sym, member)
        raise Gitlab::Access::AccessDeniedError
      end
      AuthorizedDestroyService.new(member, current_user).execute
    end
  end
end
New Members::DestroyService This is to ensure we don't send unwanted notifications when deleting a project. In other words, stop abusing AR callbacks and use services. Signed-off-by: Rémy Coutable <remy@rymai.me> 2016-06-17 08:06:55 -04:00			`module Members`
			`class DestroyService < BaseService`
			`attr_accessor :member, :current_user`

New AccessRequests API endpoints for Group & Project Also, mutualize AccessRequests and Members endpoints for Group & Project. New API documentation for the AccessRequests endpoints. Signed-off-by: Rémy Coutable <remy@rymai.me> 2016-06-23 11:14:31 -04:00			`def initialize(member, current_user)`
			`@member = member`
			`@current_user = current_user`
New Members::DestroyService This is to ensure we don't send unwanted notifications when deleting a project. In other words, stop abusing AR callbacks and use services. Signed-off-by: Rémy Coutable <remy@rymai.me> 2016-06-17 08:06:55 -04:00			`end`

			`def execute`
Raise a new Gitlab::Access::AccessDeniedError when permission is not enough to destroy a member This is a try for a new approach to put the access checks at the service level. Signed-off-by: Rémy Coutable <remy@rymai.me> 2016-06-17 12:59:33 -04:00			`unless member && can?(current_user, "destroy_#{member.type.underscore}".to_sym, member)`
			`raise Gitlab::Access::AccessDeniedError`
New Members::DestroyService This is to ensure we don't send unwanted notifications when deleting a project. In other words, stop abusing AR callbacks and use services. Signed-off-by: Rémy Coutable <remy@rymai.me> 2016-06-17 08:06:55 -04:00			`end`
Extract Members::AuthorizedDestroyService from Members::DestroyService. 2016-08-04 17:34:57 -04:00			`AuthorizedDestroyService.new(member, current_user).execute`
New Members::DestroyService This is to ensure we don't send unwanted notifications when deleting a project. In other words, stop abusing AR callbacks and use services. Signed-off-by: Rémy Coutable <remy@rymai.me> 2016-06-17 08:06:55 -04:00			`end`
			`end`
			`end`