260c8da060
An upcoming update to rubocop-gitlab-security added additional violations.
114 lines
3.1 KiB
Ruby
114 lines
3.1 KiB
Ruby
class Import::GithubController < Import::BaseController
|
|
before_action :verify_import_enabled
|
|
before_action :provider_auth, only: [:status, :jobs, :create]
|
|
|
|
rescue_from Octokit::Unauthorized, with: :provider_unauthorized
|
|
|
|
def new
|
|
if logged_in_with_provider?
|
|
go_to_provider_for_permissions
|
|
elsif session[access_token_key]
|
|
redirect_to status_import_url
|
|
end
|
|
end
|
|
|
|
def callback
|
|
session[access_token_key] = client.get_token(params[:code])
|
|
redirect_to status_import_url
|
|
end
|
|
|
|
def personal_access_token
|
|
session[access_token_key] = params[:personal_access_token]
|
|
redirect_to status_import_url
|
|
end
|
|
|
|
def status
|
|
@repos = client.repos
|
|
@already_added_projects = current_user.created_projects.where(import_type: provider)
|
|
already_added_projects_names = @already_added_projects.pluck(:import_source)
|
|
|
|
@repos.reject! { |repo| already_added_projects_names.include? repo.full_name }
|
|
end
|
|
|
|
def jobs
|
|
jobs = current_user.created_projects.where(import_type: provider).to_json(only: [:id, :import_status])
|
|
render json: jobs
|
|
end
|
|
|
|
def create
|
|
@repo_id = params[:repo_id].to_i
|
|
repo = client.repo(@repo_id)
|
|
@project_name = params[:new_name].presence || repo.name
|
|
namespace_path = params[:target_namespace].presence || current_user.namespace_path
|
|
@target_namespace = find_or_create_namespace(namespace_path, current_user.namespace_path)
|
|
|
|
if can?(current_user, :create_projects, @target_namespace)
|
|
@project = Gitlab::GithubImport::ProjectCreator.new(repo, @project_name, @target_namespace, current_user, access_params, type: provider).execute
|
|
else
|
|
render 'unauthorized'
|
|
end
|
|
end
|
|
|
|
private
|
|
|
|
def client
|
|
@client ||= Gitlab::GithubImport::Client.new(session[access_token_key], client_options)
|
|
end
|
|
|
|
def verify_import_enabled
|
|
render_404 unless import_enabled?
|
|
end
|
|
|
|
def go_to_provider_for_permissions
|
|
redirect_to client.authorize_url(callback_import_url)
|
|
end
|
|
|
|
def import_enabled?
|
|
__send__("#{provider}_import_enabled?") # rubocop:disable GitlabSecurity/PublicSend
|
|
end
|
|
|
|
def new_import_url
|
|
public_send("new_import_#{provider}_url") # rubocop:disable GitlabSecurity/PublicSend
|
|
end
|
|
|
|
def status_import_url
|
|
public_send("status_import_#{provider}_url") # rubocop:disable GitlabSecurity/PublicSend
|
|
end
|
|
|
|
def callback_import_url
|
|
public_send("callback_import_#{provider}_url") # rubocop:disable GitlabSecurity/PublicSend
|
|
end
|
|
|
|
def provider_unauthorized
|
|
session[access_token_key] = nil
|
|
redirect_to new_import_url,
|
|
alert: "Access denied to your #{Gitlab::ImportSources.title(provider.to_s)} account."
|
|
end
|
|
|
|
def access_token_key
|
|
:"#{provider}_access_token"
|
|
end
|
|
|
|
def access_params
|
|
{ github_access_token: session[access_token_key] }
|
|
end
|
|
|
|
# The following methods are overriden in subclasses
|
|
def provider
|
|
:github
|
|
end
|
|
|
|
def logged_in_with_provider?
|
|
current_user.identities.exists?(provider: provider)
|
|
end
|
|
|
|
def provider_auth
|
|
if session[access_token_key].blank?
|
|
go_to_provider_for_permissions
|
|
end
|
|
end
|
|
|
|
def client_options
|
|
{}
|
|
end
|
|
end
|