gitlab-org--gitlab-foss/app/controllers/projects/triggers_controller.rb

# frozen_string_literal: true

class Projects::TriggersController < Projects::ApplicationController
  before_action :authorize_admin_build!
  before_action :authorize_manage_trigger!, except: [:index, :create]
  before_action :authorize_admin_trigger!, only: [:edit, :update]
  before_action :trigger, only: [:edit, :update, :destroy]

  layout 'project_settings'

  feature_category :continuous_integration

  def index
    redirect_to project_settings_ci_cd_path(@project, anchor: 'js-pipeline-triggers')
  end

  def create
    @trigger = project.triggers.create(trigger_params.merge(owner: current_user))

    if @trigger.valid?
      flash[:notice] = _('Trigger was created successfully.')
    else
      flash[:alert] = _('You could not create a new trigger.')
    end

    redirect_to project_settings_ci_cd_path(@project, anchor: 'js-pipeline-triggers')
  end

  def edit
  end

  def update
    if trigger.update(trigger_params)
      redirect_to project_settings_ci_cd_path(@project, anchor: 'js-pipeline-triggers'), notice: _('Trigger was successfully updated.')
    else
      render action: "edit"
    end
  end

  def destroy
    if trigger.destroy
      flash[:notice] = _("Trigger removed.")
    else
      flash[:alert] = _("Could not remove the trigger.")
    end

    redirect_to project_settings_ci_cd_path(@project, anchor: 'js-pipeline-triggers'), status: :found
  end

  private

  def authorize_manage_trigger!
    access_denied! unless can?(current_user, :manage_trigger, trigger)
  end

  def authorize_admin_trigger!
    access_denied! unless can?(current_user, :admin_trigger, trigger)
  end

  def trigger
    @trigger ||= project.triggers.find(params[:id])
      .present(current_user: current_user)
  end

  def trigger_params
    params.require(:trigger).permit(:description)
  end
end
Enable even more frozen string in app/controllers Enables frozen string for some vestigial files as well as the following: * app/controllers/projects/*/.rb * app/controllers/sherlock/*/.rb * app/controllers/snippets/*/.rb * app/controllers/users/*/.rb Partially addresses #47424. 2018-09-26 03:45:43 +00:00			`# frozen_string_literal: true`

Move CI triggers page to project settings area Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2015-09-29 08:37:31 +00:00			`class Projects::TriggersController < Projects::ApplicationController`
Make the CI permission model simpler This MR simplifies CI permission model: - read_build: allows to read a list of builds, artifacts and trace - update_build: allows to cancel and retry builds - create_build: allows to create builds from gitlab-ci.yml (not yet implemented) - admin_build: allows to manage triggers, runners and variables - read_commit_status: allows to read a list of commit statuses (including the overall of builds) - create_commit_status: allows to create a new commit status using API Remove all extra methods to manage permission. Made all controllers to use explicitly the new permissions. 2016-02-01 22:58:04 +00:00			`before_action :authorize_admin_build!`
Improve pipeline triggers UI 2017-03-07 13:02:56 +00:00			`before_action :authorize_manage_trigger!, except: [:index, :create]`
			`before_action :authorize_admin_trigger!, only: [:edit, :update]`
Drop feature to take ownership of a trigger token Removing API and frontend interactions that allowed users to take ownership of a trigger token. Removed mentions from the documentation. 2019-06-28 16:27:07 +00:00			`before_action :trigger, only: [:edit, :update, :destroy]`
Move CI triggers page to project settings area Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2015-09-29 08:37:31 +00:00
			`layout 'project_settings'`

Add latest changes from gitlab-org/gitlab@master 2020-10-08 18:08:32 +00:00			`feature_category :continuous_integration`

Added redirections to the index actions for the variables and triggers controllers 2017-01-30 15:36:49 +00:00			`def index`
keep pipeline triggers settings panel open after form submission 2018-08-07 21:16:04 +00:00			`redirect_to project_settings_ci_cd_path(@project, anchor: 'js-pipeline-triggers')`
Added redirections to the index actions for the variables and triggers controllers 2017-01-30 15:36:49 +00:00			`end`

Move CI triggers page to project settings area Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2015-09-29 08:37:31 +00:00			`def create`
create_params and update_params into trigger_params 2017-04-07 10:28:04 +00:00			`@trigger = project.triggers.create(trigger_params.merge(owner: current_user))`
Move CI triggers page to project settings area Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2015-09-29 08:37:31 +00:00
			`if @trigger.valid?`
Externalize strings in projects controllers - concerns - dashboard - groups - import 2019-03-27 16:52:52 +00:00			`flash[:notice] = _('Trigger was created successfully.')`
Move CI triggers page to project settings area Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2015-09-29 08:37:31 +00:00			`else`
Externalize strings in projects controllers - concerns - dashboard - groups - import 2019-03-27 16:52:52 +00:00			`flash[:alert] = _('You could not create a new trigger.')`
Improve pipeline triggers UI 2017-03-07 13:02:56 +00:00			`end`

keep pipeline triggers settings panel open after form submission 2018-08-07 21:16:04 +00:00			`redirect_to project_settings_ci_cd_path(@project, anchor: 'js-pipeline-triggers')`
Improve pipeline triggers UI 2017-03-07 13:02:56 +00:00			`end`

			`def edit`
			`end`

			`def update`
create_params and update_params into trigger_params 2017-04-07 10:28:04 +00:00			`if trigger.update(trigger_params)`
Externalize strings in projects controllers - concerns - dashboard - groups - import 2019-03-27 16:52:52 +00:00			`redirect_to project_settings_ci_cd_path(@project, anchor: 'js-pipeline-triggers'), notice: _('Trigger was successfully updated.')`
Improve pipeline triggers UI 2017-03-07 13:02:56 +00:00			`else`
			`render action: "edit"`
Move CI triggers page to project settings area Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2015-09-29 08:37:31 +00:00			`end`
			`end`

			`def destroy`
Improve pipeline triggers UI 2017-03-07 13:02:56 +00:00			`if trigger.destroy`
Externalize strings in projects controllers - concerns - dashboard - groups - import 2019-03-27 16:52:52 +00:00			`flash[:notice] = _("Trigger removed.")`
Improve pipeline triggers UI 2017-03-07 13:02:56 +00:00			`else`
Externalize strings in projects controllers - concerns - dashboard - groups - import 2019-03-27 16:52:52 +00:00			`flash[:alert] = _("Could not remove the trigger.")`
Improve pipeline triggers UI 2017-03-07 13:02:56 +00:00			`end`
Move CI triggers page to project settings area Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2015-09-29 08:37:31 +00:00
keep pipeline triggers settings panel open after form submission 2018-08-07 21:16:04 +00:00			`redirect_to project_settings_ci_cd_path(@project, anchor: 'js-pipeline-triggers'), status: :found`
Move CI triggers page to project settings area Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2015-09-29 08:37:31 +00:00			`end`

			`private`

Improve pipeline triggers UI 2017-03-07 13:02:56 +00:00			`def authorize_manage_trigger!`
			`access_denied! unless can?(current_user, :manage_trigger, trigger)`
			`end`

			`def authorize_admin_trigger!`
			`access_denied! unless can?(current_user, :admin_trigger, trigger)`
			`end`

Move CI triggers page to project settings area Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2015-09-29 08:37:31 +00:00			`def trigger`
Do not expose trigger token when user should not see it 2018-12-19 13:15:58 +00:00			`@trigger \|\|= project.triggers.find(params[:id])`
			`.present(current_user: current_user)`
Improve pipeline triggers UI 2017-03-07 13:02:56 +00:00			`end`

create_params and update_params into trigger_params 2017-04-07 10:28:04 +00:00			`def trigger_params`
Do not expose trigger token when user should not see it 2018-12-19 13:15:58 +00:00			`params.require(:trigger).permit(:description)`
Move CI triggers page to project settings area Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2015-09-29 08:37:31 +00:00			`end`
			`end`