gitlab-org--gitlab-foss/app/controllers/groups/settings/applications_controller.rb

# frozen_string_literal: true

module Groups
  module Settings
    class ApplicationsController < Groups::ApplicationController
      include OauthApplications

      prepend_before_action :authorize_admin_group!
      before_action :set_application, only: [:show, :edit, :update, :destroy]
      before_action :load_scopes, only: [:index, :create, :edit, :update]

      feature_category :authentication_and_authorization

      def index
        set_index_vars
      end

      def show
        @created = get_created_session
      end

      def edit
      end

      def create
        @application = Applications::CreateService.new(current_user, application_params).execute(request)

        if @application.persisted?
          flash[:notice] = I18n.t(:notice, scope: [:doorkeeper, :flash, :applications, :create])

          set_created_session

          redirect_to group_settings_application_url(@group, @application)
        else
          set_index_vars
          render :index
        end
      end

      def update
        if @application.update(application_params)
          redirect_to group_settings_application_path(@group, @application), notice: _('Application was successfully updated.')
        else
          render :edit
        end
      end

      def destroy
        @application.destroy
        redirect_to group_settings_applications_url(@group), status: :found, notice: _('Application was successfully destroyed.')
      end

      private

      def set_index_vars
        # TODO: Remove limit(100) and implement pagination
        # https://gitlab.com/gitlab-org/gitlab/-/issues/324187
        @applications = @group.oauth_applications.limit(100)

        # Default access tokens to expire. This preserves backward compatibility
        # with existing applications. This will be removed in 15.0.
        # Removal issue: https://gitlab.com/gitlab-org/gitlab/-/issues/340848
        @application ||= Doorkeeper::Application.new(expire_access_tokens: true)
      end

      def set_application
        @application = @group.oauth_applications.find(params[:id])
      end

      def application_params
        super.tap do |params|
          params[:owner] = @group
        end
      end
    end
  end
end