Don't generate security configuration paths in FOSS

Ensures that security configuration paths are only generated and passed to the pipeline editor in EE.

Don't generate security configuration paths in FOSS
Ensures that security configuration paths are only generated and passed to the pipeline editor in EE.
b32a280d · Paul Gascou-Vaillancourt · 4371aec5 · b32a280d · b32a280d · b32a280d
Commit b32a280d authored Apr 08, 2021 by Paul Gascou-Vaillancourt
5 changed files
--- a/app/helpers/projects/ci/pipeline_editor_helper.rb
+++ b/app/helpers/projects/ci/pipeline_editor_helper.rb
+# frozen_string_literal: true
+
+module Projects::Ci::PipelineEditorHelper
+  def js_pipeline_editor_data(project)
+    {
+      "ci-config-path": project.ci_config_path_or_default,
+      "commit-sha" => project.commit ? project.commit.sha : '',
+      "default-branch" => project.default_branch,
+      "empty-state-illustration-path" => image_path('illustrations/empty-state/empty-dag-md.svg'),
+      "initial-branch-name": params[:branch_name],
+      "lint-help-page-path" => help_page_path('ci/lint', anchor: 'validate-basic-logic-and-syntax'),
+      "new-merge-request-path" => namespace_project_new_merge_request_path,
+      "project-path" => project.path,
+      "project-full-path" => project.full_path,
+      "project-namespace" => project.namespace.full_path,
+      "yml-help-page-path" => help_page_path('ci/yaml/README')
+    }
+  end
+end
--- a/app/views/projects/ci/pipeline_editor/show.html.haml
+++ b/app/views/projects/ci/pipeline_editor/show.html.haml
 - page_title s_('Pipelines|Pipeline Editor')

-#js-pipeline-editor{ data: { "ci-config-path": @project.ci_config_path_or_default,
-  "commit-sha" => @project.commit ? @project.commit.sha : '',
-  "default-branch" => @project.default_branch,
-  "empty-state-illustration-path" => image_path('illustrations/empty-state/empty-dag-md.svg'),
-  "initial-branch-name": params[:branch_name],
-  "lint-help-page-path" => help_page_path('ci/lint', anchor: 'validate-basic-logic-and-syntax'),
-  "new-merge-request-path" => namespace_project_new_merge_request_path,
-  "project-path" => @project.path,
-  "project-full-path" => @project.full_path,
-  "project-namespace" => @project.namespace.full_path,
-  "yml-help-page-path" => help_page_path('ci/yaml/README'),
-  "api-fuzzing-configuration-path" => project_security_configuration_api_fuzzing_path(@project),
-} }
+#js-pipeline-editor{ data: js_pipeline_editor_data(@project) }
--- a/ee/app/helpers/ee/projects/ci/pipeline_editor_helper.rb
+++ b/ee/app/helpers/ee/projects/ci/pipeline_editor_helper.rb
+# frozen_string_literal: true
+
+module EE::Projects::Ci::PipelineEditorHelper
+  extend ::Gitlab::Utils::Override
+
+  override :js_pipeline_editor_data
+  def js_pipeline_editor_data(project)
+    super.merge(
+      "api-fuzzing-configuration-path" => project_security_configuration_api_fuzzing_path(project)
+    )
+  end
+end
--- a/ee/spec/helpers/ee/projects/ci/pipeline_editor_helper_spec.rb
+++ b/ee/spec/helpers/ee/projects/ci/pipeline_editor_helper_spec.rb
+# frozen_string_literal: true
+
+require 'spec_helper'
+
+RSpec.describe EE::Projects::Ci::PipelineEditorHelper do
+  let_it_be(:project) { create(:project, :public, :repository) }
+
+  describe '#js_pipeline_editor_data' do
+    before do
+      allow(helper).to receive(:namespace_project_new_merge_request_path).and_return('/mock/project/-/merge_requests/new')
+    end
+
+    subject { helper.js_pipeline_editor_data(project) }
+
+    it {
+      is_expected.to eq({
+        "ci-config-path": project.ci_config_path_or_default,
+        "commit-sha" => project.commit.sha,
+        "default-branch" => project.default_branch,
+        "empty-state-illustration-path" => match_asset_path('/assets/illustrations/empty-state/empty-dag-md.svg'),
+        "initial-branch-name": nil,
+        "lint-help-page-path" => help_page_path('ci/lint', anchor: 'validate-basic-logic-and-syntax'),
+        "new-merge-request-path" => '/mock/project/-/merge_requests/new',
+        "project-path" => project.path,
+        "project-full-path" => project.full_path,
+        "project-namespace" => project.namespace.full_path,
+        "yml-help-page-path" => help_page_path('ci/yaml/README'),
+        "api-fuzzing-configuration-path" => project_security_configuration_api_fuzzing_path(project)
+      })
+    }
+  end
+end
--- a/spec/helpers/projects/ci/pipeline_editor_helper_spec.rb
+++ b/spec/helpers/projects/ci/pipeline_editor_helper_spec.rb
+# frozen_string_literal: true
+
+require 'spec_helper'
+
+RSpec.describe Projects::Ci::PipelineEditorHelper do
+  let_it_be(:project) { create(:project, :public, :repository) }
+
+  describe '#js_pipeline_editor_data' do
+    before do
+      allow(helper).to receive(:namespace_project_new_merge_request_path).and_return('/mock/project/-/merge_requests/new')
+    end
+
+    subject { helper.js_pipeline_editor_data(project) }
+
+    it {
+      is_expected.to eq({
+        "ci-config-path": project.ci_config_path_or_default,
+        "commit-sha" => project.commit.sha,
+        "default-branch" => project.default_branch,
+        "empty-state-illustration-path" => match_asset_path('/assets/illustrations/empty-state/empty-dag-md.svg'),
+        "initial-branch-name": nil,
+        "lint-help-page-path" => help_page_path('ci/lint', anchor: 'validate-basic-logic-and-syntax'),
+        "new-merge-request-path" => '/mock/project/-/merge_requests/new',
+        "project-path" => project.path,
+        "project-full-path" => project.full_path,
+        "project-namespace" => project.namespace.full_path,
+        "yml-help-page-path" => help_page_path('ci/yaml/README')
+      })
+    }
+  end
+end