# frozen_string_literal: true module Projects class CreateService < BaseService include ValidatesClassificationLabel def initialize(user, params) @current_user, @params = user, params.dup @skip_wiki = @params.delete(:skip_wiki) @initialize_with_readme = Gitlab::Utils.to_boolean(@params.delete(:initialize_with_readme)) @import_data = @params.delete(:import_data) @relations_block = @params.delete(:relations_block) end def execute if create_from_template? return ::Projects::CreateFromTemplateService.new(current_user, params).execute end @project = Project.new(params) # Make sure that the user is allowed to use the specified visibility level if project_visibility.restricted? deny_visibility_level(@project, project_visibility.visibility_level) return @project end set_project_name_from_path # get namespace id namespace_id = params[:namespace_id] if namespace_id # Find matching namespace and check if it allowed # for current user if namespace_id passed. unless allowed_namespace?(current_user, namespace_id) @project.namespace_id = nil deny_namespace return @project end else # Set current user namespace if namespace_id is nil @project.namespace_id = current_user.namespace_id end @relations_block&.call(@project) yield(@project) if block_given? validate_classification_label(@project, :external_authorization_classification_label) # If the block added errors, don't try to save the project return @project if @project.errors.any? @project.creator = current_user save_project_and_import_data after_create_actions if @project.persisted? import_schedule @project rescue ActiveRecord::RecordInvalid => e message = "Unable to save #{e.record.type}: #{e.record.errors.full_messages.join(", ")} " fail(error: message) rescue => e @project.errors.add(:base, e.message) if @project fail(error: e.message) end protected def deny_namespace @project.errors.add(:namespace, "is not valid") end # rubocop: disable CodeReuse/ActiveRecord def allowed_namespace?(user, namespace_id) namespace = Namespace.find_by(id: namespace_id) current_user.can?(:create_projects, namespace) end # rubocop: enable CodeReuse/ActiveRecord def after_create_actions log_info("#{@project.owner.name} created a new project \"#{@project.full_name}\"") unless @project.gitlab_project_import? @project.write_repository_config @project.create_wiki unless skip_wiki? end @project.track_project_repository event_service.create_project(@project, current_user) system_hook_service.execute_hooks_for(@project, :create) setup_authorizations current_user.invalidate_personal_projects_count create_readme if @initialize_with_readme end # Refresh the current user's authorizations inline (so they can access the # project immediately after this request completes), and any other affected # users in the background def setup_authorizations if @project.group @project.group.refresh_members_authorized_projects(blocking: false) current_user.refresh_authorized_projects else @project.add_maintainer(@project.namespace.owner, current_user: current_user) end end def create_readme commit_attrs = { branch_name: 'master', commit_message: 'Initial commit', file_path: 'README.md', file_content: "# #{@project.name}\n\n#{@project.description}" } Files::CreateService.new(@project, current_user, commit_attrs).execute end def skip_wiki? !@project.feature_available?(:wiki, current_user) || @skip_wiki end def save_project_and_import_data Project.transaction do @project.create_or_update_import_data(data: @import_data[:data], credentials: @import_data[:credentials]) if @import_data if @project.save unless @project.gitlab_project_import? create_services_from_active_instance_level_services(@project) @project.create_labels end unless @project.import? raise 'Failed to create repository' unless @project.create_repository end end end end def fail(error:) message = "Unable to save project. Error: #{error}" log_message = message.dup log_message << " Project ID: #{@project.id}" if @project&.id Rails.logger.error(log_message) # rubocop:disable Gitlab/RailsLogger if @project && @project.persisted? && @project.import_state @project.import_state.mark_as_failed(message) end @project end # rubocop: disable CodeReuse/ActiveRecord def create_services_from_active_instance_level_services(project) Service.where(instance: true, active: true).each do |template| service = Service.build_from_instance(project.id, template) service.save! end end # rubocop: enable CodeReuse/ActiveRecord def set_project_name_from_path # Set project name from path if @project.name.present? && @project.path.present? # if both name and path set - everything is ok elsif @project.path.present? # Set project name from path @project.name = @project.path.dup elsif @project.name.present? # For compatibility - set path from name # TODO: remove this in 8.0 @project.path = @project.name.dup.parameterize end end private def create_from_template? @params[:template_name].present? || @params[:template_project_id].present? end def import_schedule if @project.errors.empty? @project.import_state.schedule if @project.import? && !@project.bare_repository_import? else fail(error: @project.errors.full_messages.join(', ')) end end def project_visibility @project_visibility ||= Gitlab::VisibilityLevelChecker .new(current_user, @project, project_params: { import_data: @import_data }) .level_restricted? end end end Projects::CreateService.prepend_if_ee('EE::Projects::CreateService')