Class: Mutations::BaseMutation
Direct Known Subclasses
Achievements::Award, Achievements::Create, Achievements::Delete, Achievements::DeleteUserAchievement, Achievements::Revoke, Achievements::Update, Achievements::UpdateUserAchievement, Achievements::UpdateUserAchievementPriorities, Admin::AbuseReportLabels::Create, Admin::SidekiqQueues::DeleteJobs, AlertManagement::Base, AlertManagement::HttpIntegration::HttpIntegrationBase, AlertManagement::PrometheusIntegration::PrometheusIntegrationBase, AwardEmojis::Base, Mutations::Boards::Create, Mutations::Boards::Destroy, Mutations::Boards::Lists::BaseCreate, Mutations::Boards::Lists::BaseUpdate, Mutations::Boards::Lists::Destroy, Mutations::Boards::Update, Mutations::BranchRules::Create, Mutations::BranchRules::Delete, Mutations::BranchRules::Update, Mutations::Branches::Create, Ci::Catalog::Resources::Base, Ci::Job::Base, Ci::JobArtifact::BulkDestroy, Ci::JobArtifact::Destroy, Ci::JobTokenScope::AddGroupOrProject, Ci::JobTokenScope::AddProject, Ci::JobTokenScope::RemoveGroup, Ci::JobTokenScope::RemoveProject, Ci::JobTokenScope::UpdateJobTokenPolicies, Ci::Pipeline::Base, Ci::Pipeline::Create, Ci::PipelineSchedule::Base, Ci::PipelineSchedule::Create, Ci::PipelineTrigger::Create, Ci::PipelineTrigger::Delete, Ci::PipelineTrigger::Update, Ci::ProjectCiCdSettingsUpdate, Ci::Runner::BulkDelete, Ci::Runner::Cache::Clear, Ci::Runner::Create, Ci::Runner::Delete, Ci::Runner::Update, Ci::RunnersRegistrationToken::Reset, Clusters::AgentTokens::Create, Clusters::AgentTokens::Revoke, Clusters::Agents::Create, Clusters::Agents::Delete, Commits::Create, ContainerExpirationPolicies::Update, ContainerRegistry::Protection::Rule::Create, ContainerRegistry::Protection::Rule::Delete, ContainerRegistry::Protection::Rule::Update, ContainerRepositories::DestroyBase, CustomEmoji::Create, CustomEmoji::Destroy, CustomerRelations::Contacts::Base, CustomerRelations::Organizations::Create, CustomerRelations::Organizations::Update, DependencyProxy::GroupSettings::Update, DependencyProxy::ImageTtlGroupPolicy::Update, DesignManagement::Base, DesignManagement::Move, DesignManagement::Update, Discussions::ToggleResolve, Echo, Environments::CanaryIngress::Update, Environments::Create, Environments::Delete, Environments::Stop, Environments::Update, Groups::Update, Import::SourceUsers::CancelReassignment, Import::SourceUsers::KeepAllAsPlaceholder, Import::SourceUsers::KeepAsPlaceholder, Import::SourceUsers::Reassign, Import::SourceUsers::ResendNotification, IncidentManagement::TimelineEvent::Base, IncidentManagement::TimelineEventTag::Base, Integrations::Exclusions::Create, Integrations::Exclusions::Delete, Issues::Base, Issues::BulkUpdate, Issues::Create, Issues::SetSubscription, JiraImport::ImportUsers, JiraImport::Start, Labels::Create, Members::BulkUpdateBase, MergeRequests::Base, MergeRequests::Create, MergeRequests::SetSubscription, Metrics::Dashboard::Annotations::Create, Metrics::Dashboard::Annotations::Delete, Ml::ModelVersions::Create, Ml::ModelVersions::Delete, Ml::ModelVersions::Edit, Ml::Models::Base, Namespace::PackageSettings::Update, Notes::AbuseReport::Create, Notes::AbuseReport::Update, Notes::Base, Organizations::Base, Organizations::OrganizationUsers::Base, Packages::BulkDestroy, Packages::Cleanup::Policy::Update, Packages::Destroy, Packages::DestroyFile, Packages::DestroyFiles, Packages::Protection::Rule::Create, Packages::Protection::Rule::Delete, Packages::Protection::Rule::Update, Pages::Base, Pages::Deployment::Delete, Pages::Deployment::Restore, Projects::BlobsRemove, Projects::Star, Projects::SyncFork, Projects::TextReplace, ReleaseAssetLinks::Create, ReleaseAssetLinks::Delete, ReleaseAssetLinks::Update, Releases::Base, SavedReplies::Base, Security::CiConfiguration::BaseSecurityAnalyzer, Snippets::Base, Snippets::Create, Terraform::State::Base, Timelogs::Base, Todos::Create, Todos::MarkAllDone, Todos::MarkDone, Todos::Restore, Todos::RestoreMany, Todos::Snooze, Todos::UnSnooze, Uploads::Delete, UserCallouts::Create, UserPreferences::Update, Users::SetNamespaceCommitEmail, WorkItems::AddClosingMergeRequest, WorkItems::BulkUpdate, WorkItems::Convert, WorkItems::Create, WorkItems::CreateFromTask, WorkItems::Delete, WorkItems::Export, WorkItems::Hierarchy::Reorder, WorkItems::LinkedItems::Base, WorkItems::Subscribe, WorkItems::Update
Constant Summary
collapse
- ERROR_MESSAGE =
'You cannot perform write operations on a read-only instance'
Gitlab::Graphql::Authorize::AuthorizeResource::ConfigurationError, Gitlab::Graphql::Authorize::AuthorizeResource::RESOURCE_ACCESS_ERROR
Class Method Summary
collapse
Instance Method Summary
collapse
#authorize!, #authorized_find!, #authorized_resource?, #find_object, #raise_resource_not_available_error!
Class Method Details
.authorization ⇒ Object
See: AuthorizeResource#authorized_resource?
.authorization_scopes ⇒ Object
65
66
67
|
# File 'app/graphql/mutations/base_mutation.rb', line 65
def self.authorization_scopes
[:api]
end
|
.authorized?(object, context) ⇒ Boolean
56
57
58
59
60
61
62
63
|
# File 'app/graphql/mutations/base_mutation.rb', line 56
def self.authorized?(object, context)
auth = ::Gitlab::Graphql::Authorize::ObjectAuthorization.new(:execute_graphql_mutation, authorization_scopes)
return true if auth.ok?(:global, context[:current_user],
scope_validator: context[:scope_validator])
raise_resource_not_available_error!
end
|
.authorizes_object? ⇒ Boolean
52
53
54
|
# File 'app/graphql/mutations/base_mutation.rb', line 52
def self.authorizes_object?
true
end
|
Instance Method Details
#api_user? ⇒ Boolean
21
22
23
|
# File 'app/graphql/mutations/base_mutation.rb', line 21
def api_user?
context[:is_sessionless_user]
end
|
#current_user ⇒ Object
17
18
19
|
# File 'app/graphql/mutations/base_mutation.rb', line 17
def current_user
context[:current_user]
end
|
#errors_on_object(record) ⇒ Object
Returns Array of errors on an ActiveRecord object
26
27
28
|
# File 'app/graphql/mutations/base_mutation.rb', line 26
def errors_on_object(record)
record.errors.full_messages
end
|
#load_application_object(argument, id, context) ⇒ Object
40
41
42
|
# File 'app/graphql/mutations/base_mutation.rb', line 40
def load_application_object(argument, id, context)
::Gitlab::Graphql::Lazy.new { super }
end
|
#ready?(**args) ⇒ Boolean
30
31
32
33
34
|
# File 'app/graphql/mutations/base_mutation.rb', line 30
def ready?(**args)
raise_resource_not_available_error!(ERROR_MESSAGE) if read_only?
true
end
|
#unauthorized_object(error) ⇒ Object
44
45
46
47
48
49
50
|
# File 'app/graphql/mutations/base_mutation.rb', line 44
def unauthorized_object(error)
Gitlab::ErrorTracking.track_exception(error)
raise_resource_not_available_error!
end
|