2016-07-28 17:30:34 +00:00
|
|
|
module Members
|
2017-10-11 14:47:08 +00:00
|
|
|
class ApproveAccessRequestService < Members::BaseService
|
2016-10-28 09:03:08 +00:00
|
|
|
# opts - A hash of options
|
2017-10-11 14:47:08 +00:00
|
|
|
# :ldap - The call is from a LDAP sync: current_user can be nil in that case
|
|
|
|
def execute(access_requester, opts = {})
|
|
|
|
raise Gitlab::Access::AccessDeniedError unless can_update_access_requester?(access_requester, opts[:ldap])
|
2016-07-28 17:30:34 +00:00
|
|
|
|
|
|
|
access_requester.access_level = params[:access_level] if params[:access_level]
|
|
|
|
access_requester.accept_request
|
|
|
|
|
2017-10-11 14:47:08 +00:00
|
|
|
after_execute(member: access_requester, **opts)
|
|
|
|
|
2016-07-28 17:30:34 +00:00
|
|
|
access_requester
|
|
|
|
end
|
|
|
|
|
|
|
|
private
|
|
|
|
|
2017-10-11 14:47:08 +00:00
|
|
|
def can_update_access_requester?(access_requester, ldap)
|
2016-10-28 09:03:08 +00:00
|
|
|
access_requester && (
|
2017-10-11 14:47:08 +00:00
|
|
|
ldap ||
|
2017-03-02 06:01:02 +00:00
|
|
|
can?(current_user, update_member_permission(access_requester), access_requester)
|
2016-10-28 09:03:08 +00:00
|
|
|
)
|
2016-07-28 17:30:34 +00:00
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|