gitlab-org--gitlab-foss/app/controllers/groups/group_members_controller.rb

# frozen_string_literal: true

class Groups::GroupMembersController < Groups::ApplicationController
  include MembershipActions
  include MembersPresentation
  include SortingHelper
  include Gitlab::Utils::StrongMemoize

  MEMBER_PER_PAGE_LIMIT = 50

  def self.admin_not_required_endpoints
    %i[index leave request_access]
  end

  # Authorize
  before_action :authorize_admin_group_member!, except: admin_not_required_endpoints

  skip_before_action :check_two_factor_requirement, only: :leave
  skip_cross_project_access_check :index, :create, :update, :destroy, :request_access,
                                  :approve_access_request, :leave, :resend_invite,
                                  :override

  feature_category :authentication_and_authorization

  helper_method :can_manage_members?

  def index
    preload_max_access
    @sort = params[:sort].presence || sort_value_name

    @members = GroupMembersFinder
      .new(@group, current_user, params: filter_params)
      .execute(include_relations: requested_relations)

    if can_manage_members?
      @skip_groups = @group.related_group_ids

      @invited_members = @members.invite
      @invited_members = @invited_members.search_invite_email(params[:search_invited]) if params[:search_invited].present?
      @invited_members = present_invited_members(@invited_members)
    end

    @members = present_group_members(@members.non_invite)

    @requesters = present_members(
      AccessRequestsFinder.new(@group).execute(current_user)
    )

    @group_member = @group.group_members.new
  end

  # MembershipActions concern
  alias_method :membershipable, :group

  private

  def preload_max_access
    return unless current_user

    # this allows the can? against admin type queries in this action to
    # only perform the query once, even if it is cached
    current_user.max_access_for_group[@group.id] = @group.max_member_access(current_user)
  end

  def can_manage_members?
    strong_memoize(:can_manage_members) do
      can?(current_user, :admin_group_member, @group)
    end
  end

  def present_invited_members(invited_members)
    present_members(invited_members
      .page(params[:invited_members_page])
      .per(MEMBER_PER_PAGE_LIMIT))
  end

  def present_group_members(members)
    present_members(members
      .page(params[:page])
      .per(MEMBER_PER_PAGE_LIMIT))
  end

  def filter_params
    params.permit(:two_factor, :search).merge(sort: @sort)
  end

  def membershipable_members
    group.members
  end
end

Groups::GroupMembersController.prepend_if_ee('EE::Groups::GroupMembersController')
Enable more frozen string in app/controllers/ Enables frozen string for the following: * app/controllers/dashboard/*/.rb * app/controllers/explore/*/.rb * app/controllers/google_api/*/.rb * app/controllers/groups/*/.rb * app/controllers/import/*/.rb * app/controllers/instance_statistics/*/.rb * app/controllers/ldap/*/.rb * app/controllers/oauth/*/.rb * app/controllers/profiles/*/.rb Partially addresses #47424. 2018-09-23 19:44:14 +00:00			`# frozen_string_literal: true`

group controller refactoring 2015-03-12 15:08:48 +00:00			`class Groups::GroupMembersController < Groups::ApplicationController`
UI and copywriting improvements + Move 'Edit Project/Group' out of membership-related partial + Show the access request buttons only to logged-in users + Put the request access buttons out of in a more visible button + Improve the copy in the #remove_member_message helper Signed-off-by: Rémy Coutable <remy@rymai.me> 2016-06-02 16:05:06 +00:00			`include MembershipActions`
Present member collection at the controller level Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-12-05 14:03:16 +00:00			`include MembersPresentation`
Sort group/project members alphabetically by default 2016-11-16 22:37:50 +00:00			`include SortingHelper`
Add latest changes from gitlab-org/gitlab@master 2021-05-11 15:10:20 +00:00			`include Gitlab::Utils::StrongMemoize`
Factorize #request_access and #approve_access_request into a new AccessRequestActions controller concern Signed-off-by: Rémy Coutable <remy@rymai.me> 2016-06-01 16:07:23 +00:00
Make it easier to find invited group members We had a number of team members struggle to find invited members of a group. Searching for the e-mail address did not work because search only works with members with user accounts. This commit changes two things: 1. Breaks out the invited members into a separate table. 2. Adds search capability for the invited members. Closes https://gitlab.com/gitlab-org/gitlab-ce/issues/61948 2019-05-18 15:06:20 +00:00			`MEMBER_PER_PAGE_LIMIT = 50`

Backport changes to app/controllers/groups/group_members_controller.rb 2018-05-22 02:59:29 +00:00			`def self.admin_not_required_endpoints`
			`%i[index leave request_access]`
			`end`

Added UsersGroup scaffold. Simplify adding people to group 2013-06-17 13:51:43 +00:00			`# Authorize`
Backport changes to app/controllers/groups/group_members_controller.rb 2018-05-22 02:59:29 +00:00			`before_action :authorize_admin_group_member!, except: admin_not_required_endpoints`
Added UsersGroup scaffold. Simplify adding people to group 2013-06-17 13:51:43 +00:00
Add additional link to 2fa page 2019-03-20 08:17:11 +00:00			`skip_before_action :check_two_factor_requirement, only: :leave`
Port `read_cross_project` ability from EE 2017-12-11 14:21:06 +00:00			`skip_cross_project_access_check :index, :create, :update, :destroy, :request_access,`
			`:approve_access_request, :leave, :resend_invite,`
			`:override`

Add latest changes from gitlab-org/gitlab@master 2020-10-06 12:08:38 +00:00			`feature_category :authentication_and_authorization`

Add latest changes from gitlab-org/gitlab@master 2021-05-11 15:10:20 +00:00			`helper_method :can_manage_members?`

Move group members index from `/members` to `/group_members`. 2015-03-13 15:27:51 +00:00			`def index`
Add latest changes from gitlab-org/gitlab@master 2021-04-28 12:10:09 +00:00			`preload_max_access`
Sort group/project members alphabetically by default 2016-11-16 22:37:50 +00:00			`@sort = params[:sort].presence \|\| sort_value_name`
Add latest changes from gitlab-org/gitlab@master 2020-04-21 15:21:10 +00:00
			`@members = GroupMembersFinder`
			`.new(@group, current_user, params: filter_params)`
			`.execute(include_relations: requested_relations)`
Make it easier to find invited group members We had a number of team members struggle to find invited members of a group. Searching for the e-mail address did not work because search only works with members with user accounts. This commit changes two things: 1. Breaks out the invited members into a separate table. 2. Adds search capability for the invited members. Closes https://gitlab.com/gitlab-org/gitlab-ce/issues/61948 2019-05-18 15:06:20 +00:00
Add latest changes from gitlab-org/gitlab@master 2021-05-11 15:10:20 +00:00			`if can_manage_members?`
Add latest changes from gitlab-org/gitlab@master 2020-01-13 15:07:53 +00:00			`@skip_groups = @group.related_group_ids`
Add latest changes from gitlab-org/gitlab@master 2020-04-21 15:21:10 +00:00
			`@invited_members = @members.invite`
			`@invited_members = @invited_members.search_invite_email(params[:search_invited]) if params[:search_invited].present?`
			`@invited_members = present_invited_members(@invited_members)`
Make it easier to find invited group members We had a number of team members struggle to find invited members of a group. Searching for the e-mail address did not work because search only works with members with user accounts. This commit changes two things: 1. Breaks out the invited members into a separate table. 2. Adds search capability for the invited members. Closes https://gitlab.com/gitlab-org/gitlab-ce/issues/61948 2019-05-18 15:06:20 +00:00			`end`

Add latest changes from gitlab-org/gitlab@master 2020-04-21 15:21:10 +00:00			`@members = present_group_members(@members.non_invite)`
Fix sort functionality for group/project members 2016-11-16 21:37:51 +00:00
Present member collection at the controller level Signed-off-by: Rémy Coutable <remy@rymai.me> 2017-12-05 14:03:16 +00:00			`@requesters = present_members(`
Add latest changes from gitlab-org/gitlab@master 2020-04-21 15:21:10 +00:00			`AccessRequestsFinder.new(@group).execute(current_user)`
			`)`
Use project member abilities more extensively 2015-11-17 14:51:40 +00:00
			`@group_member = @group.group_members.new`
Move group members index from `/members` to `/group_members`. 2015-03-13 15:27:51 +00:00			`end`
Added UsersGroup scaffold. Simplify adding people to group 2013-06-17 13:51:43 +00:00
UI and copywriting improvements + Move 'Edit Project/Group' out of membership-related partial + Show the access request buttons only to logged-in users + Put the request access buttons out of in a more visible button + Improve the copy in the #remove_member_message helper Signed-off-by: Rémy Coutable <remy@rymai.me> 2016-06-02 16:05:06 +00:00			`# MembershipActions concern`
			`alias_method :membershipable, :group`
Add latest changes from gitlab-org/gitlab@master 2019-12-13 15:08:02 +00:00
			`private`

Add latest changes from gitlab-org/gitlab@master 2021-04-28 12:10:09 +00:00			`def preload_max_access`
			`return unless current_user`

			`# this allows the can? against admin type queries in this action to`
			`# only perform the query once, even if it is cached`
			`current_user.max_access_for_group[@group.id] = @group.max_member_access(current_user)`
			`end`

Add latest changes from gitlab-org/gitlab@master 2021-05-11 15:10:20 +00:00			`def can_manage_members?`
			`strong_memoize(:can_manage_members) do`
			`can?(current_user, :admin_group_member, @group)`
			`end`
Add latest changes from gitlab-org/gitlab@master 2020-01-13 15:07:53 +00:00			`end`

Add latest changes from gitlab-org/gitlab@master 2020-04-21 15:21:10 +00:00			`def present_invited_members(invited_members)`
			`present_members(invited_members`
			`.page(params[:invited_members_page])`
			`.per(MEMBER_PER_PAGE_LIMIT))`
Add latest changes from gitlab-org/gitlab@master 2020-01-13 15:07:53 +00:00			`end`

Add latest changes from gitlab-org/gitlab@master 2020-04-21 15:21:10 +00:00			`def present_group_members(members)`
			`present_members(members`
			`.page(params[:page])`
			`.per(MEMBER_PER_PAGE_LIMIT))`
Add latest changes from gitlab-org/gitlab@master 2020-01-13 15:07:53 +00:00			`end`

Add latest changes from gitlab-org/gitlab@master 2020-04-21 15:21:10 +00:00			`def filter_params`
			`params.permit(:two_factor, :search).merge(sort: @sort)`
Add latest changes from gitlab-org/gitlab@master 2019-12-13 15:08:02 +00:00			`end`
Add latest changes from gitlab-org/gitlab@master 2020-10-16 09:09:06 +00:00
			`def membershipable_members`
			`group.members`
			`end`
Added UsersGroup scaffold. Simplify adding people to group 2013-06-17 13:51:43 +00:00			`end`
Add latest changes from gitlab-org/gitlab@master 2019-09-13 13:26:31 +00:00
			`Groups::GroupMembersController.prepend_if_ee('EE::Groups::GroupMembersController')`