user_recent_events_finder.rb 1.61 KB
Newer Older
1 2 3 4 5 6 7 8 9 10 11 12 13 14
# Get user activity feed for projects common for a user and a logged in user
#
# - current_user: The user viewing the events
# - user: The user for which to load the events
# - params:
#   - offset: The page of events to return
class UserRecentEventsFinder
  prepend FinderWithCrossProjectAccess
  include FinderMethods

  requires_cross_project_access

  attr_reader :current_user, :target_user, :params

15 16
  LIMIT = 20

17 18 19 20 21 22 23
  def initialize(current_user, target_user, params = {})
    @current_user = current_user
    @target_user = target_user
    @params = params
  end

  def execute
24 25
    recent_events(params[:offset] || 0)
      .joins(:project)
26
      .with_associations
27 28 29 30 31 32 33 34 35 36 37 38 39 40
      .limit_recent(LIMIT, params[:offset])
  end

  private

  def recent_events(offset)
    sql = <<~SQL
      (#{projects}) AS projects_for_join
      JOIN (#{target_events.to_sql}) AS #{Event.table_name}
        ON #{Event.table_name}.project_id = projects_for_join.id
    SQL

    # Workaround for https://github.com/rails/rails/issues/24193
    Event.from([Arel.sql(sql)])
41 42
  end

43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58
  def target_events
    Event.where(author: target_user)
  end

  def projects
    # Compile a list of projects `current_user` interacted with
    # and `target_user` is allowed to see.

    authorized = target_user
      .project_interactions
      .joins(:project_authorizations)
      .where(project_authorizations: { user: current_user })
      .select(:id)

    visible = target_user
      .project_interactions
59
      .where(visibility_level: Gitlab::VisibilityLevel.levels_for_user(current_user))
60 61 62
      .select(:id)

    Gitlab::SQL::Union.new([authorized, visible]).to_sql
63 64
  end
end