Remove private_token from API user entity

doc/api/users.md

@@ -410,8 +410,7 @@ GET /user
   "can_create_group": true,
   "can_create_project": true,
   "two_factor_enabled": true,
-  "external": false,
+  "external": false
-  "private_token": "dd34asd13as"
 }
 ```
 

lib/api/entities.rb

@@ -57,10 +57,6 @@ module API
       expose :admin?, as: :is_admin
     end
 
-    class UserWithPrivateDetails < UserWithAdmin
-      expose :private_token
-    end
-
     class Email < Grape::Entity
       expose :id, :email
     end

lib/api/users.rb

@@ -507,9 +507,7 @@ module API
       end
       get do
         entity =
-          if sudo?
+          if current_user.admin?
-            Entities::UserWithPrivateDetails
-          elsif current_user.admin?
             Entities::UserWithAdmin
           else
             Entities::UserPublic

spec/fixtures/api/schemas/public_api/v4/user/login.json

@@ -27,11 +27,9 @@
     "can_create_group",
     "can_create_project",
     "two_factor_enabled",
-    "external",
+    "external"
-    "private_token"
   ],
   "properties": {
-    "$ref": "full.json",
+    "$ref": "full.json"
-    "private_token": { "type": "string" }
   }
 }

spec/support/gitlab_stubs/session.json

@@ -14,7 +14,5 @@
   "provider":null,
   "is_admin":false,
   "can_create_group":false,
-  "can_create_project":false,
+  "can_create_project":false
-  "private_token":"Wvjy2Krpb7y8xi93owUz",
-  "access_token":"Wvjy2Krpb7y8xi93owUz"
 }

spec/support/gitlab_stubs/user.json

@@ -14,7 +14,5 @@
   "provider":null,
   "is_admin":false,
   "can_create_group":false,
-  "can_create_project":false,
+  "can_create_project":false
-  "private_token":"Wvjy2Krpb7y8xi93owUz",
+}
-  "access_token":"Wvjy2Krpb7y8xi93owUz"
-}