Make AD check for access work properly

8271fac0 · Jan-Willem van der Meer · adee3091 · 8271fac0 · 8271fac0 · 8271fac0
Commit 8271fac0 authored Oct 10, 2014 by Jan-Willem van der Meer
Showing with 12 additions and 15 deletions

lib/gitlab/ldap/access.rb lib/gitlab/ldap/access.rb +2 -3

lib/gitlab/ldap/config.rb lib/gitlab/ldap/config.rb +4 -0

spec/lib/gitlab/ldap/access_spec.rb spec/lib/gitlab/ldap/access_spec.rb +6 -12

No files found.
--- a/lib/gitlab/ldap/access.rb
+++ b/lib/gitlab/ldap/access.rb
@@ -36,9 +36,8 @@ module Gitlab

      def allowed?
        if Gitlab::LDAP::Person.find_by_dn(user.extern_uid, adapter)
-          if ldap_config.active_directory
+          return true unless ldap_config.active_directory
          !Gitlab::LDAP::Person.disabled_via_active_directory?(user.extern_uid, adapter)
-          end
        else
          false
        end

--- a/lib/gitlab/ldap/config.rb
+++ b/lib/gitlab/ldap/config.rb
@@ -60,6 +60,10 @@ module Gitlab
        options['admin_group']
      end

+      def active_directory
+        options['active_directory']
+      end
+
      protected
      def base_config
        Gitlab.config.ldap

--- a/spec/lib/gitlab/ldap/access_spec.rb
+++ b/spec/lib/gitlab/ldap/access_spec.rb
@@ -28,19 +28,13 @@ describe Gitlab::LDAP::Access do
        it { should be_true }
      end

-      context 'and has no disabled flag in active diretory' do
-        before {
-          Gitlab::LDAP::Person.stub(disabled_via_active_directory?: false)
-          Gitlab.config.ldap['enabled'] = true
-          Gitlab.config.ldap['active_directory'] = false
-        }
-
-        after {
-          Gitlab.config.ldap['enabled'] = false
-          Gitlab.config.ldap['active_directory'] = true
-        }
+      context 'withoud ActiveDirectory enabled' do
+        before do
+          Gitlab::LDAP::Config.stub(enabled?: true)
+          Gitlab::LDAP::Config.any_instance.stub(active_directory: false)
+        end

-        it { should be_false }
+        it { should be_true }
      end
    end
  end