79393a351d
Otherwise we won't validate updates to the path. Allowing users to change the path to something that's not allowed.
53 lines
1.4 KiB
Ruby
53 lines
1.4 KiB
Ruby
# DynamicPathValidator
|
|
#
|
|
# Custom validator for GitLab path values.
|
|
# These paths are assigned to `Namespace` (& `Group` as a subclass) & `Project`
|
|
#
|
|
# Values are checked for formatting and exclusion from a list of illegal path
|
|
# names.
|
|
class DynamicPathValidator < ActiveModel::EachValidator
|
|
extend Gitlab::EncodingHelper
|
|
|
|
class << self
|
|
def valid_user_path?(path)
|
|
encode!(path)
|
|
"#{path}/" =~ Gitlab::PathRegex.root_namespace_path_regex
|
|
end
|
|
|
|
def valid_group_path?(path)
|
|
encode!(path)
|
|
"#{path}/" =~ Gitlab::PathRegex.full_namespace_path_regex
|
|
end
|
|
|
|
def valid_project_path?(path)
|
|
encode!(path)
|
|
"#{path}/" =~ Gitlab::PathRegex.full_project_path_regex
|
|
end
|
|
end
|
|
|
|
def path_valid_for_record?(record, value)
|
|
full_path = record.respond_to?(:build_full_path) ? record.build_full_path : value
|
|
|
|
return true unless full_path
|
|
|
|
case record
|
|
when Project
|
|
self.class.valid_project_path?(full_path)
|
|
when Group
|
|
self.class.valid_group_path?(full_path)
|
|
else # User or non-Group Namespace
|
|
self.class.valid_user_path?(full_path)
|
|
end
|
|
end
|
|
|
|
def validate_each(record, attribute, value)
|
|
unless value =~ Gitlab::PathRegex.namespace_format_regex
|
|
record.errors.add(attribute, Gitlab::PathRegex.namespace_format_message)
|
|
return
|
|
end
|
|
|
|
unless path_valid_for_record?(record, value)
|
|
record.errors.add(attribute, "#{value} is a reserved name")
|
|
end
|
|
end
|
|
end
|