Skip to content
Projects
Groups
Snippets
Help
Loading...
Help
Support
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in / Register
Toggle navigation
G
gitlab-ce
Project overview
Project overview
Details
Activity
Releases
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Issues
0
Issues
0
List
Boards
Labels
Milestones
Merge Requests
0
Merge Requests
0
Analytics
Analytics
Repository
Value Stream
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Create a new issue
Commits
Issue Boards
Open sidebar
Jérome Perrin
gitlab-ce
Commits
07d7d8e6
Commit
07d7d8e6
authored
Apr 04, 2017
by
James Edwards-Jones
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
Renamed ProtectedTag push_access_levels to create_access_levels
parent
f9e849c0
Changes
19
Hide whitespace changes
Inline
Side-by-side
Showing
19 changed files
with
68 additions
and
68 deletions
+68
-68
app/assets/javascripts/protected_tags/protected_tag_create.js
...assets/javascripts/protected_tags/protected_tag_create.js
+7
-7
app/assets/javascripts/protected_tags/protected_tag_edit.js
app/assets/javascripts/protected_tags/protected_tag_edit.js
+11
-11
app/controllers/projects/protected_tags_controller.rb
app/controllers/projects/protected_tags_controller.rb
+1
-1
app/controllers/projects/settings/repository_controller.rb
app/controllers/projects/settings/repository_controller.rb
+2
-3
app/models/protected_tag.rb
app/models/protected_tag.rb
+3
-3
app/models/protected_tag/create_access_level.rb
app/models/protected_tag/create_access_level.rb
+1
-1
app/views/projects/protected_tags/_create_protected_tag.html.haml
...s/projects/protected_tags/_create_protected_tag.html.haml
+5
-5
app/views/projects/protected_tags/_tags_list.html.haml
app/views/projects/protected_tags/_tags_list.html.haml
+1
-1
app/views/projects/protected_tags/_update_protected_tag.haml
app/views/projects/protected_tags/_update_protected_tag.haml
+4
-4
db/migrate/20170309173138_create_protected_tags.rb
db/migrate/20170309173138_create_protected_tags.rb
+4
-4
db/schema.rb
db/schema.rb
+6
-6
lib/gitlab/import_export/import_export.yml
lib/gitlab/import_export/import_export.yml
+1
-1
lib/gitlab/import_export/relation_factory.rb
lib/gitlab/import_export/relation_factory.rb
+1
-1
spec/factories/protected_tags.rb
spec/factories/protected_tags.rb
+5
-5
spec/features/protected_tags/access_control_ce_spec.rb
spec/features/protected_tags/access_control_ce_spec.rb
+10
-10
spec/lib/gitlab/checks/change_access_spec.rb
spec/lib/gitlab/checks/change_access_spec.rb
+1
-1
spec/lib/gitlab/import_export/all_models.yml
spec/lib/gitlab/import_export/all_models.yml
+2
-1
spec/lib/gitlab/user_access_spec.rb
spec/lib/gitlab/user_access_spec.rb
+1
-1
spec/services/protected_tags/create_service_spec.rb
spec/services/protected_tags/create_service_spec.rb
+2
-2
No files found.
app/assets/javascripts/protected_tags/protected_tag_create.js
View file @
07d7d8e6
...
@@ -11,20 +11,20 @@
...
@@ -11,20 +11,20 @@
}
}
buildDropdowns
()
{
buildDropdowns
()
{
const
$allowedTo
PushDropdown
=
this
.
$wrap
.
find
(
'
.js-allowed-to-push
'
);
const
$allowedTo
CreateDropdown
=
this
.
$wrap
.
find
(
'
.js-allowed-to-create
'
);
// Cache callback
// Cache callback
this
.
onSelectCallback
=
this
.
onSelect
.
bind
(
this
);
this
.
onSelectCallback
=
this
.
onSelect
.
bind
(
this
);
// Allowed to
Push
dropdown
// Allowed to
Create
dropdown
new
gl
.
ProtectedTagAccessDropdown
({
new
gl
.
ProtectedTagAccessDropdown
({
$dropdown
:
$allowedTo
Push
Dropdown
,
$dropdown
:
$allowedTo
Create
Dropdown
,
data
:
gon
.
push
_access_levels
,
data
:
gon
.
create
_access_levels
,
onSelect
:
this
.
onSelectCallback
onSelect
:
this
.
onSelectCallback
});
});
// Select default
// Select default
$allowedTo
Push
Dropdown
.
data
(
'
glDropdown
'
).
selectRowAtIndex
(
0
);
$allowedTo
Create
Dropdown
.
data
(
'
glDropdown
'
).
selectRowAtIndex
(
0
);
// Protected tag dropdown
// Protected tag dropdown
new
ProtectedTagDropdown
({
new
ProtectedTagDropdown
({
...
@@ -37,9 +37,9 @@
...
@@ -37,9 +37,9 @@
onSelect
()
{
onSelect
()
{
// Enable submit button
// Enable submit button
const
$tagInput
=
this
.
$wrap
.
find
(
'
input[name="protected_tag[name]"]
'
);
const
$tagInput
=
this
.
$wrap
.
find
(
'
input[name="protected_tag[name]"]
'
);
const
$allowedTo
PushInput
=
this
.
$wrap
.
find
(
'
input[name="protected_tag[push
_access_levels_attributes][0][access_level]"]
'
);
const
$allowedTo
CreateInput
=
this
.
$wrap
.
find
(
'
input[name="protected_tag[create
_access_levels_attributes][0][access_level]"]
'
);
this
.
$form
.
find
(
'
input[type="submit"]
'
).
attr
(
'
disabled
'
,
!
(
$tagInput
.
val
()
&&
$allowedTo
Push
Input
.
length
));
this
.
$form
.
find
(
'
input[type="submit"]
'
).
attr
(
'
disabled
'
,
!
(
$tagInput
.
val
()
&&
$allowedTo
Create
Input
.
length
));
}
}
};
};
})(
window
);
})(
window
);
app/assets/javascripts/protected_tags/protected_tag_edit.js
View file @
07d7d8e6
...
@@ -7,27 +7,27 @@
...
@@ -7,27 +7,27 @@
gl
.
ProtectedTagEdit
=
class
{
gl
.
ProtectedTagEdit
=
class
{
constructor
(
options
)
{
constructor
(
options
)
{
this
.
$wrap
=
options
.
$wrap
;
this
.
$wrap
=
options
.
$wrap
;
this
.
$allowedTo
PushDropdown
=
this
.
$wrap
.
find
(
'
.js-allowed-to-push
'
);
this
.
$allowedTo
CreateDropdown
=
this
.
$wrap
.
find
(
'
.js-allowed-to-create
'
);
this
.
buildDropdowns
();
this
.
buildDropdowns
();
}
}
buildDropdowns
()
{
buildDropdowns
()
{
// Allowed to
push
dropdown
// Allowed to
create
dropdown
new
gl
.
ProtectedTagAccessDropdown
({
new
gl
.
ProtectedTagAccessDropdown
({
$dropdown
:
this
.
$allowedTo
Push
Dropdown
,
$dropdown
:
this
.
$allowedTo
Create
Dropdown
,
data
:
gon
.
push
_access_levels
,
data
:
gon
.
create
_access_levels
,
onSelect
:
this
.
onSelect
.
bind
(
this
)
onSelect
:
this
.
onSelect
.
bind
(
this
)
});
});
}
}
onSelect
()
{
onSelect
()
{
const
$allowedTo
PushInput
=
this
.
$wrap
.
find
(
`input[name="
${
this
.
$allowedToPush
Dropdown
.
data
(
'
fieldName
'
)}
"]`
);
const
$allowedTo
CreateInput
=
this
.
$wrap
.
find
(
`input[name="
${
this
.
$allowedToCreate
Dropdown
.
data
(
'
fieldName
'
)}
"]`
);
// Do not update if one dropdown has not selected any option
// Do not update if one dropdown has not selected any option
if
(
!
$allowedTo
Push
Input
.
length
)
return
;
if
(
!
$allowedTo
Create
Input
.
length
)
return
;
this
.
$allowedTo
Push
Dropdown
.
disable
();
this
.
$allowedTo
Create
Dropdown
.
disable
();
$
.
ajax
({
$
.
ajax
({
type
:
'
POST
'
,
type
:
'
POST
'
,
...
@@ -36,9 +36,9 @@
...
@@ -36,9 +36,9 @@
data
:
{
data
:
{
_method
:
'
PATCH
'
,
_method
:
'
PATCH
'
,
protected_tag
:
{
protected_tag
:
{
push
_access_levels_attributes
:
[{
create
_access_levels_attributes
:
[{
id
:
this
.
$allowedTo
Push
Dropdown
.
data
(
'
access-level-id
'
),
id
:
this
.
$allowedTo
Create
Dropdown
.
data
(
'
access-level-id
'
),
access_level
:
$allowedTo
Push
Input
.
val
()
access_level
:
$allowedTo
Create
Input
.
val
()
}]
}]
}
}
},
},
...
@@ -47,7 +47,7 @@
...
@@ -47,7 +47,7 @@
new
Flash
(
'
Failed to update tag!
'
);
new
Flash
(
'
Failed to update tag!
'
);
}
}
}).
always
(()
=>
{
}).
always
(()
=>
{
this
.
$allowedTo
Push
Dropdown
.
enable
();
this
.
$allowedTo
Create
Dropdown
.
enable
();
});
});
}
}
};
};
...
...
app/controllers/projects/protected_tags_controller.rb
View file @
07d7d8e6
...
@@ -30,6 +30,6 @@ class Projects::ProtectedTagsController < Projects::ProtectedRefsController
...
@@ -30,6 +30,6 @@ class Projects::ProtectedTagsController < Projects::ProtectedRefsController
end
end
def
protected_ref_params
def
protected_ref_params
params
.
require
(
:protected_tag
).
permit
(
:name
,
push
_access_levels_attributes:
[
:access_level
,
:id
])
params
.
require
(
:protected_tag
).
permit
(
:name
,
create
_access_levels_attributes:
[
:access_level
,
:id
])
end
end
end
end
app/controllers/projects/settings/repository_controller.rb
View file @
07d7d8e6
...
@@ -13,16 +13,15 @@ module Projects
...
@@ -13,16 +13,15 @@ module Projects
def
define_protected_refs
def
define_protected_refs
@protected_branches
=
@project
.
protected_branches
.
order
(
:name
).
page
(
params
[
:page
])
@protected_branches
=
@project
.
protected_branches
.
order
(
:name
).
page
(
params
[
:page
])
@protected_tags
=
@project
.
protected_tags
.
order
(
:name
).
page
(
params
[
:page
])
#TODO duplicated pagination param?
@protected_tags
=
@project
.
protected_tags
.
order
(
:name
).
page
(
params
[
:page
])
@protected_branch
=
@project
.
protected_branches
.
new
@protected_branch
=
@project
.
protected_branches
.
new
@protected_tag
=
@project
.
protected_tags
.
new
@protected_tag
=
@project
.
protected_tags
.
new
load_gon_index
load_gon_index
end
end
def
access_levels_options
def
access_levels_options
#TODO: consider protected tags
#TODO: Refactor ProtectedBranch::PushAccessLevel so it doesn't mention branches
{
{
create_access_levels:
levels_for_dropdown
(
ProtectedTag
::
CreateAccessLevel
),
push_access_levels:
levels_for_dropdown
(
ProtectedBranch
::
PushAccessLevel
),
push_access_levels:
levels_for_dropdown
(
ProtectedBranch
::
PushAccessLevel
),
merge_access_levels:
levels_for_dropdown
(
ProtectedBranch
::
MergeAccessLevel
)
merge_access_levels:
levels_for_dropdown
(
ProtectedBranch
::
MergeAccessLevel
)
}
}
...
...
app/models/protected_tag.rb
View file @
07d7d8e6
...
@@ -2,11 +2,11 @@ class ProtectedTag < ActiveRecord::Base
...
@@ -2,11 +2,11 @@ class ProtectedTag < ActiveRecord::Base
include
Gitlab
::
ShellAdapter
include
Gitlab
::
ShellAdapter
include
ProtectedRef
include
ProtectedRef
has_many
:
push
_access_levels
,
dependent: :destroy
has_many
:
create
_access_levels
,
dependent: :destroy
validates
:
push
_access_levels
,
length:
{
is:
1
,
message:
"are restricted to a single instance per protected tag."
}
validates
:
create
_access_levels
,
length:
{
is:
1
,
message:
"are restricted to a single instance per protected tag."
}
accepts_nested_attributes_for
:
push
_access_levels
accepts_nested_attributes_for
:
create
_access_levels
def
self
.
protected?
(
project
,
ref_name
)
def
self
.
protected?
(
project
,
ref_name
)
self
.
matching
(
ref_name
,
protected_refs:
project
.
protected_tags
).
present?
self
.
matching
(
ref_name
,
protected_refs:
project
.
protected_tags
).
present?
...
...
app/models/protected_tag/
push
_access_level.rb
→
app/models/protected_tag/
create
_access_level.rb
View file @
07d7d8e6
class
ProtectedTag::
Push
AccessLevel
<
ActiveRecord
::
Base
class
ProtectedTag::
Create
AccessLevel
<
ActiveRecord
::
Base
include
ProtectedTagAccess
include
ProtectedTagAccess
validates
:access_level
,
presence:
true
,
inclusion:
{
in:
[
Gitlab
::
Access
::
MASTER
,
validates
:access_level
,
presence:
true
,
inclusion:
{
in:
[
Gitlab
::
Access
::
MASTER
,
...
...
app/views/projects/protected_tags/_create_protected_tag.html.haml
View file @
07d7d8e6
...
@@ -19,14 +19,14 @@
...
@@ -19,14 +19,14 @@
%code
production/*
%code
production/*
are supported
are supported
.form-group
.form-group
%label
.col-md-2.text-right
{
for:
'
push
_access_levels_attributes'
}
%label
.col-md-2.text-right
{
for:
'
create
_access_levels_attributes'
}
Allowed to
push
:
Allowed to
create
:
.col-md-10
.col-md-10
.
push
_access_levels-container
.
create
_access_levels-container
=
dropdown_tag
(
'Select'
,
=
dropdown_tag
(
'Select'
,
options:
{
toggle_class:
'js-allowed-to-
push
wide'
,
options:
{
toggle_class:
'js-allowed-to-
create
wide'
,
dropdown_class:
'dropdown-menu-selectable'
,
dropdown_class:
'dropdown-menu-selectable'
,
data:
{
field_name:
'protected_tag[
push_access_levels_attributes][0][access_level]'
,
input_id:
'push
_access_levels_attributes'
}})
data:
{
field_name:
'protected_tag[
create_access_levels_attributes][0][access_level]'
,
input_id:
'create
_access_levels_attributes'
}})
.panel-footer
.panel-footer
=
f
.
submit
'Protect'
,
class:
'btn-create btn'
,
disabled:
true
=
f
.
submit
'Protect'
,
class:
'btn-create btn'
,
disabled:
true
app/views/projects/protected_tags/_tags_list.html.haml
View file @
07d7d8e6
...
@@ -17,7 +17,7 @@
...
@@ -17,7 +17,7 @@
%tr
%tr
%th
Protected tag (
#{
@protected_tags
.
size
}
)
%th
Protected tag (
#{
@protected_tags
.
size
}
)
%th
Last commit
%th
Last commit
%th
Allowed to
push
%th
Allowed to
create
-
if
can_admin_project
-
if
can_admin_project
%th
%th
%tbody
%tbody
...
...
app/views/projects/protected_tags/_update_protected_tag.haml
View file @
07d7d8e6
%td
%td
=
hidden_field_tag
"allowed_to_
push_
#{
protected_tag
.
id
}
"
,
protected_tag
.
push
_access_levels
.
first
.
access_level
=
hidden_field_tag
"allowed_to_
create_
#{
protected_tag
.
id
}
"
,
protected_tag
.
create
_access_levels
.
first
.
access_level
=
dropdown_tag
(
(
protected_tag
.
push
_access_levels
.
first
.
humanize
||
'Select'
)
,
=
dropdown_tag
(
(
protected_tag
.
create
_access_levels
.
first
.
humanize
||
'Select'
)
,
options:
{
toggle_class:
'js-allowed-to-
push'
,
dropdown_class:
'dropdown-menu-selectable js-allowed-to-push
-container'
,
options:
{
toggle_class:
'js-allowed-to-
create'
,
dropdown_class:
'dropdown-menu-selectable js-allowed-to-create
-container'
,
data:
{
field_name:
"allowed_to_
push_
#{
protected_tag
.
id
}
"
,
access_level_id:
protected_tag
.
push
_access_levels
.
first
.
id
}})
data:
{
field_name:
"allowed_to_
create_
#{
protected_tag
.
id
}
"
,
access_level_id:
protected_tag
.
create
_access_levels
.
first
.
id
}})
db/migrate/20170309173138_create_protected_tags.rb
View file @
07d7d8e6
...
@@ -15,14 +15,14 @@ class CreateProtectedTags < ActiveRecord::Migration
...
@@ -15,14 +15,14 @@ class CreateProtectedTags < ActiveRecord::Migration
add_index
:protected_tags
,
:project_id
add_index
:protected_tags
,
:project_id
create_table
:protected_tag_
push
_access_levels
do
|
t
|
create_table
:protected_tag_
create
_access_levels
do
|
t
|
t
.
references
:protected_tag
,
index:
{
name:
"index_protected_tag_
push
_access"
},
foreign_key:
true
,
null:
false
t
.
references
:protected_tag
,
index:
{
name:
"index_protected_tag_
create
_access"
},
foreign_key:
true
,
null:
false
t
.
integer
:access_level
,
default:
GITLAB_ACCESS_MASTER
,
null:
true
t
.
integer
:access_level
,
default:
GITLAB_ACCESS_MASTER
,
null:
true
t
.
references
:user
,
foreign_key:
true
,
index:
true
t
.
references
:user
,
foreign_key:
true
,
index:
true
t
.
integer
:group_id
#TODO: Should this have an index? Doesn't appear in brances #, index: true
t
.
integer
:group_id
t
.
timestamps
null:
false
t
.
timestamps
null:
false
end
end
add_foreign_key
:protected_tag_
push
_access_levels
,
:namespaces
,
column: :group_id
# rubocop: disable Migration/AddConcurrentForeignKey
add_foreign_key
:protected_tag_
create
_access_levels
,
:namespaces
,
column: :group_id
# rubocop: disable Migration/AddConcurrentForeignKey
end
end
end
end
db/schema.rb
View file @
07d7d8e6
...
@@ -963,7 +963,7 @@ ActiveRecord::Schema.define(version: 20170315194013) do
...
@@ -963,7 +963,7 @@ ActiveRecord::Schema.define(version: 20170315194013) do
add_index
"protected_branches"
,
[
"project_id"
],
name:
"index_protected_branches_on_project_id"
,
using: :btree
add_index
"protected_branches"
,
[
"project_id"
],
name:
"index_protected_branches_on_project_id"
,
using: :btree
create_table
"protected_tag_
push
_access_levels"
,
force: :cascade
do
|
t
|
create_table
"protected_tag_
create
_access_levels"
,
force: :cascade
do
|
t
|
t
.
integer
"protected_tag_id"
,
null:
false
t
.
integer
"protected_tag_id"
,
null:
false
t
.
integer
"access_level"
,
default:
40
t
.
integer
"access_level"
,
default:
40
t
.
integer
"user_id"
t
.
integer
"user_id"
...
@@ -972,8 +972,8 @@ ActiveRecord::Schema.define(version: 20170315194013) do
...
@@ -972,8 +972,8 @@ ActiveRecord::Schema.define(version: 20170315194013) do
t
.
datetime
"updated_at"
,
null:
false
t
.
datetime
"updated_at"
,
null:
false
end
end
add_index
"protected_tag_
push_access_levels"
,
[
"protected_tag_id"
],
name:
"index_protected_tag_push
_access"
,
using: :btree
add_index
"protected_tag_
create_access_levels"
,
[
"protected_tag_id"
],
name:
"index_protected_tag_create
_access"
,
using: :btree
add_index
"protected_tag_
push_access_levels"
,
[
"user_id"
],
name:
"index_protected_tag_push
_access_levels_on_user_id"
,
using: :btree
add_index
"protected_tag_
create_access_levels"
,
[
"user_id"
],
name:
"index_protected_tag_create
_access_levels_on_user_id"
,
using: :btree
create_table
"protected_tags"
,
force: :cascade
do
|
t
|
create_table
"protected_tags"
,
force: :cascade
do
|
t
|
t
.
integer
"project_id"
,
null:
false
t
.
integer
"project_id"
,
null:
false
...
@@ -1326,9 +1326,9 @@ ActiveRecord::Schema.define(version: 20170315194013) do
...
@@ -1326,9 +1326,9 @@ ActiveRecord::Schema.define(version: 20170315194013) do
add_foreign_key
"project_statistics"
,
"projects"
,
on_delete: :cascade
add_foreign_key
"project_statistics"
,
"projects"
,
on_delete: :cascade
add_foreign_key
"protected_branch_merge_access_levels"
,
"protected_branches"
add_foreign_key
"protected_branch_merge_access_levels"
,
"protected_branches"
add_foreign_key
"protected_branch_push_access_levels"
,
"protected_branches"
add_foreign_key
"protected_branch_push_access_levels"
,
"protected_branches"
add_foreign_key
"protected_tag_
push
_access_levels"
,
"namespaces"
,
column:
"group_id"
add_foreign_key
"protected_tag_
create
_access_levels"
,
"namespaces"
,
column:
"group_id"
add_foreign_key
"protected_tag_
push
_access_levels"
,
"protected_tags"
add_foreign_key
"protected_tag_
create
_access_levels"
,
"protected_tags"
add_foreign_key
"protected_tag_
push
_access_levels"
,
"users"
add_foreign_key
"protected_tag_
create
_access_levels"
,
"users"
add_foreign_key
"subscriptions"
,
"projects"
,
on_delete: :cascade
add_foreign_key
"subscriptions"
,
"projects"
,
on_delete: :cascade
add_foreign_key
"timelogs"
,
"issues"
,
name:
"fk_timelogs_issues_issue_id"
,
on_delete: :cascade
add_foreign_key
"timelogs"
,
"issues"
,
name:
"fk_timelogs_issues_issue_id"
,
on_delete: :cascade
add_foreign_key
"timelogs"
,
"merge_requests"
,
name:
"fk_timelogs_merge_requests_merge_request_id"
,
on_delete: :cascade
add_foreign_key
"timelogs"
,
"merge_requests"
,
name:
"fk_timelogs_merge_requests_merge_request_id"
,
on_delete: :cascade
...
...
lib/gitlab/import_export/import_export.yml
View file @
07d7d8e6
...
@@ -47,7 +47,7 @@ project_tree:
...
@@ -47,7 +47,7 @@ project_tree:
-
:merge_access_levels
-
:merge_access_levels
-
:push_access_levels
-
:push_access_levels
-
protected_tags
:
-
protected_tags
:
-
:
push
_access_levels
-
:
create
_access_levels
-
:project_feature
-
:project_feature
# Only include the following attributes for the models specified.
# Only include the following attributes for the models specified.
...
...
lib/gitlab/import_export/relation_factory.rb
View file @
07d7d8e6
...
@@ -9,7 +9,7 @@ module Gitlab
...
@@ -9,7 +9,7 @@ module Gitlab
hooks:
'ProjectHook'
,
hooks:
'ProjectHook'
,
merge_access_levels:
'ProtectedBranch::MergeAccessLevel'
,
merge_access_levels:
'ProtectedBranch::MergeAccessLevel'
,
push_access_levels:
'ProtectedBranch::PushAccessLevel'
,
push_access_levels:
'ProtectedBranch::PushAccessLevel'
,
#TODO: How to add?- push_access_levels: 'ProtectedTag::Push
AccessLevel',
create_access_levels:
'ProtectedTag::Create
AccessLevel'
,
labels: :project_labels
,
labels: :project_labels
,
priorities: :label_priorities
,
priorities: :label_priorities
,
label: :project_label
}.
freeze
label: :project_label
}.
freeze
...
...
spec/factories/protected_tags.rb
View file @
07d7d8e6
...
@@ -4,18 +4,18 @@ FactoryGirl.define do
...
@@ -4,18 +4,18 @@ FactoryGirl.define do
project
project
after
(
:build
)
do
|
protected_tag
|
after
(
:build
)
do
|
protected_tag
|
protected_tag
.
push
_access_levels
.
new
(
access_level:
Gitlab
::
Access
::
MASTER
)
protected_tag
.
create
_access_levels
.
new
(
access_level:
Gitlab
::
Access
::
MASTER
)
end
end
trait
:developers_can_
push
do
trait
:developers_can_
create
do
after
(
:create
)
do
|
protected_tag
|
after
(
:create
)
do
|
protected_tag
|
protected_tag
.
push
_access_levels
.
first
.
update!
(
access_level:
Gitlab
::
Access
::
DEVELOPER
)
protected_tag
.
create
_access_levels
.
first
.
update!
(
access_level:
Gitlab
::
Access
::
DEVELOPER
)
end
end
end
end
trait
:no_one_can_
push
do
trait
:no_one_can_
create
do
after
(
:create
)
do
|
protected_tag
|
after
(
:create
)
do
|
protected_tag
|
protected_tag
.
push
_access_levels
.
first
.
update!
(
access_level:
Gitlab
::
Access
::
NO_ACCESS
)
protected_tag
.
create
_access_levels
.
first
.
update!
(
access_level:
Gitlab
::
Access
::
NO_ACCESS
)
end
end
end
end
end
end
...
...
spec/features/protected_tags/access_control_ce_spec.rb
View file @
07d7d8e6
RSpec
.
shared_examples
"protected tags > access control > CE"
do
RSpec
.
shared_examples
"protected tags > access control > CE"
do
ProtectedTag
::
Push
AccessLevel
.
human_access_levels
.
each
do
|
(
access_type_id
,
access_type_name
)
|
ProtectedTag
::
Create
AccessLevel
.
human_access_levels
.
each
do
|
(
access_type_id
,
access_type_name
)
|
it
"allows creating protected tags that
#{
access_type_name
}
can
push to
"
do
it
"allows creating protected tags that
#{
access_type_name
}
can
create
"
do
visit
namespace_project_protected_tags_path
(
project
.
namespace
,
project
)
visit
namespace_project_protected_tags_path
(
project
.
namespace
,
project
)
set_protected_tag_name
(
'master'
)
set_protected_tag_name
(
'master'
)
within
(
'.new_protected_tag'
)
do
within
(
'.new_protected_tag'
)
do
allowed_to_
push_button
=
find
(
".js-allowed-to-push
"
)
allowed_to_
create_button
=
find
(
".js-allowed-to-create
"
)
unless
allowed_to_
push
_button
.
text
==
access_type_name
unless
allowed_to_
create
_button
.
text
==
access_type_name
allowed_to_
push
_button
.
click
allowed_to_
create
_button
.
click
within
(
".dropdown.open .dropdown-menu"
)
{
click_on
access_type_name
}
within
(
".dropdown.open .dropdown-menu"
)
{
click_on
access_type_name
}
end
end
end
end
click_on
"Protect"
click_on
"Protect"
expect
(
ProtectedTag
.
count
).
to
eq
(
1
)
expect
(
ProtectedTag
.
count
).
to
eq
(
1
)
expect
(
ProtectedTag
.
last
.
push
_access_levels
.
map
(
&
:access_level
)).
to
eq
([
access_type_id
])
expect
(
ProtectedTag
.
last
.
create
_access_levels
.
map
(
&
:access_level
)).
to
eq
([
access_type_id
])
end
end
it
"allows updating protected tags so that
#{
access_type_name
}
can
push to
them"
do
it
"allows updating protected tags so that
#{
access_type_name
}
can
create
them"
do
visit
namespace_project_protected_tags_path
(
project
.
namespace
,
project
)
visit
namespace_project_protected_tags_path
(
project
.
namespace
,
project
)
set_protected_tag_name
(
'master'
)
set_protected_tag_name
(
'master'
)
click_on
"Protect"
click_on
"Protect"
...
@@ -25,16 +25,16 @@ RSpec.shared_examples "protected tags > access control > CE" do
...
@@ -25,16 +25,16 @@ RSpec.shared_examples "protected tags > access control > CE" do
expect
(
ProtectedTag
.
count
).
to
eq
(
1
)
expect
(
ProtectedTag
.
count
).
to
eq
(
1
)
within
(
".protected-tags-list"
)
do
within
(
".protected-tags-list"
)
do
find
(
".js-allowed-to-
push
"
).
click
find
(
".js-allowed-to-
create
"
).
click
within
(
'.js-allowed-to-
push
-container'
)
do
within
(
'.js-allowed-to-
create
-container'
)
do
expect
(
first
(
"li"
)).
to
have_content
(
"Roles"
)
expect
(
first
(
"li"
)).
to
have_content
(
"Roles"
)
click_on
access_type_name
click_on
access_type_name
end
end
end
end
wait_for_ajax
wait_for_ajax
expect
(
ProtectedTag
.
last
.
push
_access_levels
.
map
(
&
:access_level
)).
to
include
(
access_type_id
)
expect
(
ProtectedTag
.
last
.
create
_access_levels
.
map
(
&
:access_level
)).
to
include
(
access_type_id
)
end
end
end
end
end
end
spec/lib/gitlab/checks/change_access_spec.rb
View file @
07d7d8e6
...
@@ -86,7 +86,7 @@ describe Gitlab::Checks::ChangeAccess, lib: true do
...
@@ -86,7 +86,7 @@ describe Gitlab::Checks::ChangeAccess, lib: true do
end
end
context
'when user has access'
do
context
'when user has access'
do
let!
(
:protected_tag
)
{
create
(
:protected_tag
,
:developers_can_
push
,
project:
project
,
name:
'v*'
)
}
let!
(
:protected_tag
)
{
create
(
:protected_tag
,
:developers_can_
create
,
project:
project
,
name:
'v*'
)
}
it
'allows tag creation'
do
it
'allows tag creation'
do
expect
(
subject
.
status
).
to
be
(
true
)
expect
(
subject
.
status
).
to
be
(
true
)
...
...
spec/lib/gitlab/import_export/all_models.yml
View file @
07d7d8e6
...
@@ -113,11 +113,12 @@ protected_branches:
...
@@ -113,11 +113,12 @@ protected_branches:
-
push_access_levels
-
push_access_levels
protected_tags
:
protected_tags
:
-
project
-
project
-
push
_access_levels
-
create
_access_levels
merge_access_levels
:
merge_access_levels
:
-
protected_branch
-
protected_branch
push_access_levels
:
push_access_levels
:
-
protected_branch
-
protected_branch
create_access_levels
:
-
protected_tag
-
protected_tag
project
:
project
:
-
taggings
-
taggings
...
...
spec/lib/gitlab/user_access_spec.rb
View file @
07d7d8e6
...
@@ -189,7 +189,7 @@ describe Gitlab::UserAccess, lib: true do
...
@@ -189,7 +189,7 @@ describe Gitlab::UserAccess, lib: true do
describe
'push to protected tag if allowed for developers'
do
describe
'push to protected tag if allowed for developers'
do
before
do
before
do
@tag
=
create
(
:protected_tag
,
:developers_can_
push
,
project:
project
)
@tag
=
create
(
:protected_tag
,
:developers_can_
create
,
project:
project
)
end
end
it
'returns true if user is a master'
do
it
'returns true if user is a master'
do
...
...
spec/services/protected_tags/create_service_spec.rb
View file @
07d7d8e6
...
@@ -6,7 +6,7 @@ describe ProtectedTags::CreateService, services: true do
...
@@ -6,7 +6,7 @@ describe ProtectedTags::CreateService, services: true do
let
(
:params
)
do
let
(
:params
)
do
{
{
name:
'master'
,
name:
'master'
,
push
_access_levels_attributes:
[{
access_level:
Gitlab
::
Access
::
MASTER
}]
create
_access_levels_attributes:
[{
access_level:
Gitlab
::
Access
::
MASTER
}]
}
}
end
end
...
@@ -15,7 +15,7 @@ describe ProtectedTags::CreateService, services: true do
...
@@ -15,7 +15,7 @@ describe ProtectedTags::CreateService, services: true do
it
'creates a new protected tag'
do
it
'creates a new protected tag'
do
expect
{
service
.
execute
}.
to
change
(
ProtectedTag
,
:count
).
by
(
1
)
expect
{
service
.
execute
}.
to
change
(
ProtectedTag
,
:count
).
by
(
1
)
expect
(
project
.
protected_tags
.
last
.
push
_access_levels
.
map
(
&
:access_level
)).
to
eq
([
Gitlab
::
Access
::
MASTER
])
expect
(
project
.
protected_tags
.
last
.
create
_access_levels
.
map
(
&
:access_level
)).
to
eq
([
Gitlab
::
Access
::
MASTER
])
end
end
end
end
end
end
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment