Module: API::Helpers::Packages::BasicAuthHelpers

Extended by:

Gitlab::Utils::Override

Includes:

Constants, Gitlab::Utils::StrongMemoize

Defined in:

lib/api/helpers/packages/basic_auth_helpers.rb

Defined Under Namespace

Modules: Constants

Constant Summary

Constants included from Constants

Constants::AUTHENTICATE_REALM_HEADER, Constants::AUTHENTICATE_REALM_NAME

Instance Method Summary

• #authorize!(action, subject = :global, reason = nil) ⇒ Object
• #authorized_project_find! ⇒ Object
• #authorized_user_project ⇒ Object
• #find_authorized_group! ⇒ Object
• #unauthorized! ⇒ Object
• #unauthorized_or! ⇒ Object
• #unauthorized_user_group ⇒ Object
• #unauthorized_user_group! ⇒ Object
• #unauthorized_user_project ⇒ Object
• #unauthorized_user_project! ⇒ Object

Methods included from Gitlab::Utils::Override

extended, extensions, included, method_added, override, prepended, queue_verification, verify!

Methods included from Gitlab::Utils::StrongMemoize

#clear_memoization, #strong_memoize, #strong_memoized?

Instance Method Details

#authorize!(action, subject = :global, reason = nil) ⇒ Object

# File 'lib/api/helpers/packages/basic_auth_helpers.rb', line 59

def authorize!(action, subject = :global, reason = nil)
  return if can?(current_user, action, subject)

  unauthorized_or! { forbidden!(reason) }
end

#authorized_project_find! ⇒ Object

# File 'lib/api/helpers/packages/basic_auth_helpers.rb', line 37

def authorized_project_find!
  project = unauthorized_user_project

  unless project && can?(current_user, :read_project, project)
    return unauthorized_or! { not_found! }
  end

  project
end

#authorized_user_project ⇒ Object

# File 'lib/api/helpers/packages/basic_auth_helpers.rb', line 33

def authorized_user_project
  @authorized_user_project ||= authorized_project_find!
end

#find_authorized_group! ⇒ Object

# File 'lib/api/helpers/packages/basic_auth_helpers.rb', line 47

def find_authorized_group!
  strong_memoize(:authorized_group) do
    group = find_group(params[:id])

    unless group && can?(current_user, :read_group, group)
      next unauthorized_or! { not_found! }
    end

    group
  end
end

#unauthorized! ⇒ Object

# File 'lib/api/helpers/packages/basic_auth_helpers.rb', line 70

def unauthorized!
  header(AUTHENTICATE_REALM_HEADER, AUTHENTICATE_REALM_NAME)
  super
end

#unauthorized_or! ⇒ Object

# File 'lib/api/helpers/packages/basic_auth_helpers.rb', line 65

def unauthorized_or!
  current_user ? yield : unauthorized!
end

#unauthorized_user_group ⇒ Object

# File 'lib/api/helpers/packages/basic_auth_helpers.rb', line 25

def unauthorized_user_group
  @unauthorized_user_group ||= find_group(params[:id])
end

#unauthorized_user_group! ⇒ Object

# File 'lib/api/helpers/packages/basic_auth_helpers.rb', line 29

def unauthorized_user_group!
  unauthorized_user_group || not_found!
end

#unauthorized_user_project ⇒ Object

# File 'lib/api/helpers/packages/basic_auth_helpers.rb', line 17

def unauthorized_user_project
  @unauthorized_user_project ||= find_project(params[:id])
end

#unauthorized_user_project! ⇒ Object

# File 'lib/api/helpers/packages/basic_auth_helpers.rb', line 21

def unauthorized_user_project!
  unauthorized_user_project || not_found!
end