Skip to content
Projects
Groups
Snippets
Help
Loading...
Help
Support
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in / Register
Toggle navigation
G
gitlab-ce
Project overview
Project overview
Details
Activity
Releases
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Issues
0
Issues
0
List
Boards
Labels
Milestones
Merge Requests
1
Merge Requests
1
Analytics
Analytics
Repository
Value Stream
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Create a new issue
Commits
Issue Boards
Open sidebar
nexedi
gitlab-ce
Commits
c7eee369
Commit
c7eee369
authored
Jun 02, 2016
by
Patricio Cano
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
Refactored `sync_external_users` method, syntax fixes and Rubocop fix.
parent
b9f0ac55
Changes
2
Show whitespace changes
Inline
Side-by-side
Showing
2 changed files
with
27 additions
and
52 deletions
+27
-52
lib/gitlab/ldap/group_sync.rb
lib/gitlab/ldap/group_sync.rb
+11
-7
spec/lib/gitlab/ldap/group_sync_spec.rb
spec/lib/gitlab/ldap/group_sync_spec.rb
+16
-45
No files found.
lib/gitlab/ldap/group_sync.rb
View file @
c7eee369
...
...
@@ -156,13 +156,7 @@ module Gitlab
end
end
# Restore normal access to users no longer found in the external groups
current_external_users
.
each
do
|
user
|
unless
verified_external_users
.
include?
(
user
)
user
.
external
=
false
user
.
save
end
end
update_external_permissions
(
current_external_users
,
verified_external_users
)
end
private
...
...
@@ -325,6 +319,16 @@ module Gitlab
end
end
def
update_external_permissions
(
users
,
verified
)
# Restore normal access to users no longer found in the external groups
users
.
each
do
|
user
|
unless
verified
.
include?
(
user
)
user
.
external
=
false
user
.
save
end
end
end
def
add_new_members
(
group
,
access_levels
)
logger
.
debug
{
"Adding new members to '
#{
group
.
name
}
' group"
}
...
...
spec/lib/gitlab/ldap/group_sync_spec.rb
View file @
c7eee369
...
...
@@ -45,8 +45,7 @@ describe Gitlab::LDAP::GroupSync, lib: true do
let
(
:group1
)
{
create
(
:group
)
}
let
(
:group2
)
{
create
(
:group
)
}
let
(
:ldap_group1
)
do
Net
::
LDAP
::
Entry
.
from_single_ldif_string
(
<<-
EOS
.
strip_heredoc
Net
::
LDAP
::
Entry
.
from_single_ldif_string
(
<<-
EOS
.
strip_heredoc
)
dn: cn=ldap_group1,ou=groups,dc=example,dc=com
cn: ldap_group1
description: LDAP Group 1
...
...
@@ -56,7 +55,6 @@ describe Gitlab::LDAP::GroupSync, lib: true do
objectclass: top
objectclass: groupOfNames
EOS
)
end
context
'with all functionality against one LDAP group type'
do
...
...
@@ -183,8 +181,7 @@ describe Gitlab::LDAP::GroupSync, lib: true do
Gitlab
::
LDAP
::
GroupSync
.
new
(
'ldapsecondary'
,
adapter
)
end
let
(
:ldap_secondary_group1
)
do
Net
::
LDAP
::
Entry
.
from_single_ldif_string
(
<<-
EOS
.
strip_heredoc
Net
::
LDAP
::
Entry
.
from_single_ldif_string
(
<<-
EOS
.
strip_heredoc
)
dn: cn=ldap_secondary_group1,ou=groups,dc=example,dc=com
cn: ldap_secondary_group1
description: LDAP Group 1
...
...
@@ -194,7 +191,6 @@ describe Gitlab::LDAP::GroupSync, lib: true do
objectclass: top
objectclass: groupOfNames
EOS
)
end
let
(
:user_w_multiple_ids
)
{
create
(
:user
)
}
...
...
@@ -247,8 +243,7 @@ describe Gitlab::LDAP::GroupSync, lib: true do
context
'when access level spillover could happen'
do
it
'does not erroneously add users'
do
ldap_group2
=
Net
::
LDAP
::
Entry
.
from_single_ldif_string
(
<<-
EOS
.
strip_heredoc
ldap_group2
=
Net
::
LDAP
::
Entry
.
from_single_ldif_string
(
<<-
EOS
.
strip_heredoc
)
dn: cn=ldap_group2,ou=groups,dc=example,dc=com
cn: ldap_group2
description: LDAP Group 2
...
...
@@ -257,7 +252,6 @@ describe Gitlab::LDAP::GroupSync, lib: true do
objectclass: top
objectclass: groupOfNames
EOS
)
allow_any_instance_of
(
Gitlab
::
LDAP
::
Group
)
.
to
receive
(
:adapter
).
and_return
(
adapter
)
...
...
@@ -332,8 +326,7 @@ describe Gitlab::LDAP::GroupSync, lib: true do
context
'with groupOfNames style LDAP group'
do
let
(
:ldap_group
)
do
Gitlab
::
LDAP
::
Group
.
new
(
Net
::
LDAP
::
Entry
.
from_single_ldif_string
(
<<-
EOS
.
strip_heredoc
Net
::
LDAP
::
Entry
.
from_single_ldif_string
(
<<-
EOS
.
strip_heredoc
)
dn: cn=ldap_group1,ou=groups,dc=example,dc=com
cn: ldap_group1
description: LDAP Group 1
...
...
@@ -342,7 +335,6 @@ describe Gitlab::LDAP::GroupSync, lib: true do
objectclass: groupOfNames
EOS
)
)
end
it
'adds the user to the group'
do
...
...
@@ -356,8 +348,7 @@ describe Gitlab::LDAP::GroupSync, lib: true do
context
'with posixGroup style LDAP group'
do
let
(
:ldap_group
)
do
Gitlab
::
LDAP
::
Group
.
new
(
Net
::
LDAP
::
Entry
.
from_single_ldif_string
(
<<-
EOS
.
strip_heredoc
Net
::
LDAP
::
Entry
.
from_single_ldif_string
(
<<-
EOS
.
strip_heredoc
)
dn: cn=ldap_group1,ou=groups,dc=example,dc=com
cn: ldap_group1
description: LDAP Group 1
...
...
@@ -366,7 +357,6 @@ describe Gitlab::LDAP::GroupSync, lib: true do
objectclass: posixGroup
EOS
)
)
end
let
(
:ldap_user
)
do
Gitlab
::
LDAP
::
Person
.
new
(
...
...
@@ -453,8 +443,7 @@ describe Gitlab::LDAP::GroupSync, lib: true do
context
'with groupOfUniqueNames style LDAP group'
do
let
(
:ldap_group
)
do
Gitlab
::
LDAP
::
Group
.
new
(
Net
::
LDAP
::
Entry
.
from_single_ldif_string
(
<<-
EOS
.
strip_heredoc
Net
::
LDAP
::
Entry
.
from_single_ldif_string
(
<<-
EOS
.
strip_heredoc
)
dn: cn=ldap_group1,ou=groups,dc=example,dc=com
cn: ldap_group1
description: LDAP Group 1
...
...
@@ -463,7 +452,6 @@ describe Gitlab::LDAP::GroupSync, lib: true do
objectclass: groupOfUniqueNames
EOS
)
)
end
it
'adds the user to the group'
do
...
...
@@ -476,8 +464,7 @@ describe Gitlab::LDAP::GroupSync, lib: true do
context
'with an empty LDAP group'
do
let
(
:ldap_group
)
do
Gitlab
::
LDAP
::
Group
.
new
(
Net
::
LDAP
::
Entry
.
from_single_ldif_string
(
<<-
EOS
.
strip_heredoc
Net
::
LDAP
::
Entry
.
from_single_ldif_string
(
<<-
EOS
.
strip_heredoc
)
dn: cn=ldap_group1,ou=groups,dc=example,dc=com
cn: ldap_group1
description: LDAP Group 1
...
...
@@ -485,7 +472,6 @@ describe Gitlab::LDAP::GroupSync, lib: true do
objectclass: groupOfUniqueNames
EOS
)
)
end
it
'does nothing, without failure'
do
...
...
@@ -498,8 +484,7 @@ describe Gitlab::LDAP::GroupSync, lib: true do
context
'with uid=username member format'
do
let
(
:ldap_group
)
do
Gitlab
::
LDAP
::
Group
.
new
(
Net
::
LDAP
::
Entry
.
from_single_ldif_string
(
<<-
EOS
.
strip_heredoc
Net
::
LDAP
::
Entry
.
from_single_ldif_string
(
<<-
EOS
.
strip_heredoc
)
dn: cn=ldap_group1,ou=groups,dc=example,dc=com
cn: ldap_group1
member: uid=
#{
user1
.
username
}
...
...
@@ -508,7 +493,6 @@ describe Gitlab::LDAP::GroupSync, lib: true do
objectclass: groupOfUniqueNames
EOS
)
)
end
let
(
:ldap_user
)
do
Gitlab
::
LDAP
::
Person
.
new
(
...
...
@@ -552,8 +536,7 @@ describe Gitlab::LDAP::GroupSync, lib: true do
context
'with invalid DNs in the LDAP group'
do
let
(
:ldap_group
)
do
Gitlab
::
LDAP
::
Group
.
new
(
Net
::
LDAP
::
Entry
.
from_single_ldif_string
(
<<-
EOS
.
strip_heredoc
Net
::
LDAP
::
Entry
.
from_single_ldif_string
(
<<-
EOS
.
strip_heredoc
)
dn: cn=ldap_group1,ou=groups,dc=example,dc=com
cn: ldap_group1
member:
...
...
@@ -564,7 +547,6 @@ describe Gitlab::LDAP::GroupSync, lib: true do
objectclass: groupOfUniqueNames
EOS
)
)
end
# Check that the blank member and malformed member logged an error
...
...
@@ -591,8 +573,7 @@ describe Gitlab::LDAP::GroupSync, lib: true do
let
(
:user3
)
{
create
(
:user
)
}
let
(
:admin_group
)
do
Net
::
LDAP
::
Entry
.
from_single_ldif_string
(
<<-
EOS
.
strip_heredoc
Net
::
LDAP
::
Entry
.
from_single_ldif_string
(
<<-
EOS
.
strip_heredoc
)
dn: cn=admin_group,ou=groups,dc=example,dc=com
cn: admin_group
description: Admin Group
...
...
@@ -601,14 +582,11 @@ describe Gitlab::LDAP::GroupSync, lib: true do
objectclass: top
objectclass: groupOfNames
EOS
)
end
before
do
user1
.
admin
=
true
user1
.
save
user3
.
admin
=
true
user3
.
save
user1
.
update_attribute
(
:admin
,
true
)
user3
.
update_attribute
(
:admin
,
true
)
allow_any_instance_of
(
Gitlab
::
LDAP
::
Group
)
.
to
receive
(
:adapter
).
and_return
(
adapter
)
...
...
@@ -654,8 +632,7 @@ describe Gitlab::LDAP::GroupSync, lib: true do
let
(
:user4
)
{
create
(
:user
)
}
let
(
:external_group1
)
do
Net
::
LDAP
::
Entry
.
from_single_ldif_string
(
<<-
EOS
.
strip_heredoc
Net
::
LDAP
::
Entry
.
from_single_ldif_string
(
<<-
EOS
.
strip_heredoc
)
dn: cn=external_group1,ou=groups,dc=example,dc=com
cn: external_group1
description: External Group 1
...
...
@@ -664,12 +641,10 @@ describe Gitlab::LDAP::GroupSync, lib: true do
objectclass: top
objectclass: groupOfNames
EOS
)
end
let
(
:external_group2
)
do
Net
::
LDAP
::
Entry
.
from_single_ldif_string
(
<<-
EOS
.
strip_heredoc
Net
::
LDAP
::
Entry
.
from_single_ldif_string
(
<<-
EOS
.
strip_heredoc
)
dn: cn=external_group2,ou=groups,dc=example,dc=com
cn: external_group2
description: External Group 2
...
...
@@ -678,14 +653,11 @@ describe Gitlab::LDAP::GroupSync, lib: true do
objectclass: top
objectclass: groupOfNames
EOS
)
end
before
do
user3
.
external
=
true
user3
.
save
user4
.
external
=
true
user4
.
save
user3
.
update_attribute
(
:external
,
true
)
user4
.
update_attribute
(
:external
,
true
)
allow_any_instance_of
(
Gitlab
::
LDAP
::
Group
)
.
to
receive
(
:adapter
).
and_return
(
adapter
)
...
...
@@ -739,4 +711,3 @@ describe Gitlab::LDAP::GroupSync, lib: true do
end
end
end
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment