60eee739f0
In the case of spammers, we really want a hard delete to avoid retaining spam. Closes #31021
39 lines
1.3 KiB
Ruby
39 lines
1.3 KiB
Ruby
module Users
|
|
class DestroyService
|
|
attr_accessor :current_user
|
|
|
|
def initialize(current_user)
|
|
@current_user = current_user
|
|
end
|
|
|
|
def execute(user, options = {})
|
|
unless Ability.allowed?(current_user, :destroy_user, user)
|
|
raise Gitlab::Access::AccessDeniedError, "#{current_user} tried to destroy user #{user}!"
|
|
end
|
|
|
|
if !options[:delete_solo_owned_groups] && user.solo_owned_groups.present?
|
|
user.errors[:base] << 'You must transfer ownership or delete groups before you can remove user'
|
|
return user
|
|
end
|
|
|
|
user.solo_owned_groups.each do |group|
|
|
Groups::DestroyService.new(group, current_user).execute
|
|
end
|
|
|
|
user.personal_projects.with_deleted.each do |project|
|
|
# Skip repository removal because we remove directory with namespace
|
|
# that contain all this repositories
|
|
::Projects::DestroyService.new(project, current_user, skip_repo: true).execute
|
|
end
|
|
|
|
MigrateToGhostUserService.new(user).execute unless options[:hard_delete]
|
|
|
|
# Destroy the namespace after destroying the user since certain methods may depend on the namespace existing
|
|
namespace = user.namespace
|
|
user_data = user.destroy
|
|
namespace.really_destroy!
|
|
|
|
user_data
|
|
end
|
|
end
|
|
end
|