39 lines
943 B
Ruby
39 lines
943 B
Ruby
module Members
|
|
class DestroyService < Members::BaseService
|
|
def execute(member, skip_authorization: false)
|
|
raise Gitlab::Access::AccessDeniedError unless skip_authorization || can_destroy_member?(member)
|
|
|
|
return member if member.is_a?(GroupMember) && member.source.last_owner?(member.user)
|
|
|
|
member.destroy
|
|
|
|
member.user&.invalidate_cache_counts
|
|
|
|
if member.request? && member.user != current_user
|
|
notification_service.decline_access_request(member)
|
|
end
|
|
|
|
after_execute(member: member)
|
|
|
|
member
|
|
end
|
|
|
|
private
|
|
|
|
def can_destroy_member?(member)
|
|
can?(current_user, destroy_member_permission(member), member)
|
|
end
|
|
|
|
def destroy_member_permission(member)
|
|
case member
|
|
when GroupMember
|
|
:destroy_group_member
|
|
when ProjectMember
|
|
:destroy_project_member
|
|
else
|
|
raise "Unknown member type: #{member}!"
|
|
end
|
|
end
|
|
end
|
|
end
|