928fc94c3d
Add new service classes to create and update project and personal snippets. These classes are responsible for enforcing restricted visibility settings for non-admin users.
22 lines
670 B
Ruby
22 lines
670 B
Ruby
class UpdateSnippetService < BaseService
|
|
attr_accessor :snippet
|
|
|
|
def initialize(project, user, snippet, params)
|
|
super(project, user, params)
|
|
@snippet = snippet
|
|
end
|
|
|
|
def execute
|
|
# check that user is allowed to set specified visibility_level
|
|
new_visibility = params[:visibility_level]
|
|
if new_visibility && new_visibility.to_i != snippet.visibility_level
|
|
unless can?(current_user, :change_visibility_level, snippet) &&
|
|
Gitlab::VisibilityLevel.allowed_for?(current_user, new_visibility)
|
|
deny_visibility_level(snippet, new_visibility)
|
|
return snippet
|
|
end
|
|
end
|
|
|
|
snippet.update_attributes(params)
|
|
end
|
|
end
|