Raise exception when user is not authorized

b7e5f73c · Matija Čupić · 0bc14b45 · b7e5f73c · b7e5f73c
Commit b7e5f73c authored Nov 13, 2018 by Matija Čupić
Showing with 3 additions and 9 deletions

app/services/ci/destroy_pipeline_service.rb app/services/ci/destroy_pipeline_service.rb +1 -1

spec/services/ci/destroy_pipeline_service_spec.rb spec/services/ci/destroy_pipeline_service_spec.rb +2 -8

No files found.
--- a/app/services/ci/destroy_pipeline_service.rb
+++ b/app/services/ci/destroy_pipeline_service.rb
@@ -3,7 +3,7 @@
 module Ci
  class DestroyPipelineService < BaseService
    def execute(pipeline)
-      return false unless can?(current_user, :destroy_pipeline, pipeline)
+      raise Gitlab::Access::AccessDeniedError unless can?(current_user, :destroy_pipeline, pipeline)
      AuditEventService.new(current_user, pipeline).security_event

--- a/spec/services/ci/destroy_pipeline_service_spec.rb
+++ b/spec/services/ci/destroy_pipeline_service_spec.rb
@@ -53,14 +53,8 @@ describe ::Ci::DestroyPipelineService do
  context 'user is not owner' do
    let(:user) { create(:user) }
-    it 'returns false' do
+    it 'raises an exception' do
-      is_expected.to eq(false)
+      expect { subject }.to raise_error(Gitlab::Access::AccessDeniedError)
-    end
-    it 'does not destroy the pipeline' do
-      subject
-      expect { pipeline.reload }.not_to raise_error
    end
  end
 end