Class: Types::PermissionTypes::BasePermissionType

Inherits:

BaseObject

• Object
• GraphQL::Schema::Object
• BaseObject
• Types::PermissionTypes::BasePermissionType

Extended by:

Gitlab::Allowable

Defined in:

app/graphql/types/permission_types/base_permission_type.rb

Direct Known Subclasses

Ci::Job, Ci::Pipeline, Ci::Runner, CustomEmoji, Group, Issue, MergeRequest, Note, Project, Snippet, User, WorkItem

Constant Summary

RESOLVING_KEYWORDS =

[:resolver, :method, :hash_key, :function].to_set.freeze

Class Method Summary

• .abilities(*abilities) ⇒ Object
• .ability_field(ability, **kword_args) ⇒ Object
• .permission_field(name, **kword_args) ⇒ Object

Methods included from Gitlab::Allowable

can?

Methods inherited from BaseObject

accepts, assignable?, authorization, authorize, authorized?, #current_user, #id

Methods included from Gitlab::Graphql::Present

#present, #unpresented

Class Method Details

.abilities(*abilities) ⇒ Object

# File 'app/graphql/types/permission_types/base_permission_type.rb', line 10

def self.abilities(*abilities)
  abilities.each { |ability| ability_field(ability) }
end

.ability_field(ability, **kword_args) ⇒ Object

# File 'app/graphql/types/permission_types/base_permission_type.rb', line 14

def self.ability_field(ability, **kword_args)
  unless resolving_keywords?(kword_args)
    kword_args[:resolve] ||= -> (object, args, context) do
      can?(context[:current_user], ability, object, args.to_h)
    end
  end

  permission_field(ability, **kword_args)
end

.permission_field(name, **kword_args) ⇒ Object

# File 'app/graphql/types/permission_types/base_permission_type.rb', line 24

def self.permission_field(name, **kword_args)
  kword_args = kword_args.reverse_merge(
    name: name,
    type: GraphQL::Types::Boolean,
    description: "Indicates the user can perform `#{name}` on this resource",
    null: false)

  field(**kword_args) # rubocop:disable Graphql/Descriptions
end