Class: Mutations::BaseMutation

Inherits:
GraphQL::Schema::RelayClassicMutation
  • Object
show all
Includes:
Gitlab::Graphql::Authorize::AuthorizeResource, Gitlab::Graphql::CopyFieldDescription
Defined in:
app/graphql/mutations/base_mutation.rb

Direct Known Subclasses

Achievements::Award, Achievements::Create, Achievements::Delete, Achievements::DeleteUserAchievement, Achievements::Revoke, Achievements::Update, Achievements::UpdateUserAchievement, Achievements::UpdateUserAchievementPriorities, Admin::AbuseReportLabels::Create, Admin::SidekiqQueues::DeleteJobs, AlertManagement::Base, AlertManagement::HttpIntegration::HttpIntegrationBase, AlertManagement::PrometheusIntegration::PrometheusIntegrationBase, AwardEmojis::Base, Mutations::Boards::Create, Mutations::Boards::Destroy, Mutations::Boards::Lists::BaseCreate, Mutations::Boards::Lists::BaseUpdate, Mutations::Boards::Lists::Destroy, Mutations::Boards::Update, Mutations::BranchRules::Create, Mutations::BranchRules::Delete, Mutations::BranchRules::Update, Mutations::Branches::Create, Ci::Catalog::Resources::Base, Ci::Job::Base, Ci::JobArtifact::BulkDestroy, Ci::JobArtifact::Destroy, Ci::JobTokenScope::AddGroupOrProject, Ci::JobTokenScope::AddProject, Ci::JobTokenScope::RemoveGroup, Ci::JobTokenScope::RemoveProject, Ci::JobTokenScope::UpdateJobTokenPolicies, Ci::Pipeline::Base, Ci::Pipeline::Create, Ci::PipelineSchedule::Base, Ci::PipelineSchedule::Create, Ci::PipelineTrigger::Create, Ci::PipelineTrigger::Delete, Ci::PipelineTrigger::Update, Ci::ProjectCiCdSettingsUpdate, Ci::Runner::BulkDelete, Ci::Runner::Cache::Clear, Ci::Runner::Create, Ci::Runner::Delete, Ci::Runner::Update, Ci::RunnersRegistrationToken::Reset, Clusters::AgentTokens::Create, Clusters::AgentTokens::Revoke, Clusters::Agents::Create, Clusters::Agents::Delete, Commits::Create, ContainerExpirationPolicies::Update, ContainerRegistry::Protection::Rule::Create, ContainerRegistry::Protection::Rule::Delete, ContainerRegistry::Protection::Rule::Update, ContainerRepositories::DestroyBase, CustomEmoji::Create, CustomEmoji::Destroy, CustomerRelations::Contacts::Base, CustomerRelations::Organizations::Create, CustomerRelations::Organizations::Update, DependencyProxy::GroupSettings::Update, DependencyProxy::ImageTtlGroupPolicy::Update, DesignManagement::Base, DesignManagement::Move, DesignManagement::Update, Discussions::ToggleResolve, Echo, Environments::CanaryIngress::Update, Environments::Create, Environments::Delete, Environments::Stop, Environments::Update, Groups::Update, Import::SourceUsers::CancelReassignment, Import::SourceUsers::KeepAllAsPlaceholder, Import::SourceUsers::KeepAsPlaceholder, Import::SourceUsers::Reassign, Import::SourceUsers::ResendNotification, IncidentManagement::TimelineEvent::Base, IncidentManagement::TimelineEventTag::Base, Integrations::Exclusions::Create, Integrations::Exclusions::Delete, Issues::Base, Issues::BulkUpdate, Issues::Create, Issues::SetSubscription, JiraImport::ImportUsers, JiraImport::Start, Labels::Create, Members::BulkUpdateBase, MergeRequests::Base, MergeRequests::Create, MergeRequests::SetSubscription, Metrics::Dashboard::Annotations::Create, Metrics::Dashboard::Annotations::Delete, Ml::ModelVersions::Create, Ml::ModelVersions::Delete, Ml::ModelVersions::Edit, Ml::Models::Base, Namespace::PackageSettings::Update, Notes::AbuseReport::Create, Notes::AbuseReport::Update, Notes::Base, Organizations::Base, Organizations::OrganizationUsers::Base, Packages::BulkDestroy, Packages::Cleanup::Policy::Update, Packages::Destroy, Packages::DestroyFile, Packages::DestroyFiles, Packages::Protection::Rule::Create, Packages::Protection::Rule::Delete, Packages::Protection::Rule::Update, Pages::Base, Pages::Deployment::Delete, Pages::Deployment::Restore, Projects::BlobsRemove, Projects::Star, Projects::SyncFork, Projects::TextReplace, ReleaseAssetLinks::Create, ReleaseAssetLinks::Delete, ReleaseAssetLinks::Update, Releases::Base, SavedReplies::Base, Security::CiConfiguration::BaseSecurityAnalyzer, Snippets::Base, Snippets::Create, Terraform::State::Base, Timelogs::Base, Todos::Create, Todos::MarkAllDone, Todos::MarkDone, Todos::Restore, Todos::RestoreMany, Todos::Snooze, Todos::UnSnooze, Uploads::Delete, UserCallouts::Create, UserPreferences::Update, Users::SetNamespaceCommitEmail, WorkItems::AddClosingMergeRequest, WorkItems::BulkUpdate, WorkItems::Convert, WorkItems::Create, WorkItems::CreateFromTask, WorkItems::Delete, WorkItems::Export, WorkItems::Hierarchy::Reorder, WorkItems::LinkedItems::Base, WorkItems::Subscribe, WorkItems::Update

Constant Summary collapse

ERROR_MESSAGE =
'You cannot perform write operations on a read-only instance'

Constants included from Gitlab::Graphql::Authorize::AuthorizeResource

Gitlab::Graphql::Authorize::AuthorizeResource::ConfigurationError, Gitlab::Graphql::Authorize::AuthorizeResource::RESOURCE_ACCESS_ERROR

Class Method Summary collapse

Instance Method Summary collapse

Methods included from Gitlab::Graphql::Authorize::AuthorizeResource

#authorize!, #authorized_find!, #authorized_resource?, #find_object, #raise_resource_not_available_error!

Class Method Details

.authorizationObject

See: AuthorizeResource#authorized_resource?



70
71
72
# File 'app/graphql/mutations/base_mutation.rb', line 70

def self.authorization
  @authorization ||= ::Gitlab::Graphql::Authorize::ObjectAuthorization.new(authorize, authorization_scopes)
end

.authorization_scopesObject



65
66
67
# File 'app/graphql/mutations/base_mutation.rb', line 65

def self.authorization_scopes
  [:api]
end

.authorized?(object, context) ⇒ Boolean

Returns:

  • (Boolean)


56
57
58
59
60
61
62
63
# File 'app/graphql/mutations/base_mutation.rb', line 56

def self.authorized?(object, context)
  auth = ::Gitlab::Graphql::Authorize::ObjectAuthorization.new(:execute_graphql_mutation, authorization_scopes)
  return true if auth.ok?(:global, context[:current_user],
    scope_validator: context[:scope_validator])

  # in our mutations we raise, rather than returning a null value.
  raise_resource_not_available_error!
end

.authorizes_object?Boolean

Returns:

  • (Boolean)


52
53
54
# File 'app/graphql/mutations/base_mutation.rb', line 52

def self.authorizes_object?
  true
end

Instance Method Details

#api_user?Boolean

Returns:

  • (Boolean)


21
22
23
# File 'app/graphql/mutations/base_mutation.rb', line 21

def api_user?
  context[:is_sessionless_user]
end

#current_userObject



17
18
19
# File 'app/graphql/mutations/base_mutation.rb', line 17

def current_user
  context[:current_user]
end

#errors_on_object(record) ⇒ Object

Returns Array of errors on an ActiveRecord object



26
27
28
# File 'app/graphql/mutations/base_mutation.rb', line 26

def errors_on_object(record)
  record.errors.full_messages
end

#load_application_object(argument, id, context) ⇒ Object



40
41
42
# File 'app/graphql/mutations/base_mutation.rb', line 40

def load_application_object(argument, id, context)
  ::Gitlab::Graphql::Lazy.new { super }
end

#read_only?Boolean

Returns:

  • (Boolean)


36
37
38
# File 'app/graphql/mutations/base_mutation.rb', line 36

def read_only?
  Gitlab::Database.read_only?
end

#ready?(**args) ⇒ Boolean

Returns:

  • (Boolean)


30
31
32
33
34
# File 'app/graphql/mutations/base_mutation.rb', line 30

def ready?(**args)
  raise_resource_not_available_error!(ERROR_MESSAGE) if read_only?

  true
end

#unauthorized_object(error) ⇒ Object



44
45
46
47
48
49
50
# File 'app/graphql/mutations/base_mutation.rb', line 44

def unauthorized_object(error)
  # The default behavior is to abort processing and return nil for the
  # entire mutation field, but not set any top-level errors. We prefer to
  # at least say that something went wrong.
  Gitlab::ErrorTracking.track_exception(error)
  raise_resource_not_available_error!
end