Skip to content
Projects
Groups
Snippets
Help
Loading...
Help
Support
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in / Register
Toggle navigation
G
gitlab-ce
Project overview
Project overview
Details
Activity
Releases
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Issues
0
Issues
0
List
Boards
Labels
Milestones
Merge Requests
1
Merge Requests
1
Analytics
Analytics
Repository
Value Stream
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Create a new issue
Commits
Issue Boards
Open sidebar
nexedi
gitlab-ce
Commits
deb45634
Commit
deb45634
authored
Oct 10, 2017
by
Bob Van Landuyt
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
Use `EXISTS` instead of `WHERE id IN (...)` for authorized groups
parent
524f6515
Changes
2
Show whitespace changes
Inline
Side-by-side
Showing
2 changed files
with
25 additions
and
18 deletions
+25
-18
app/finders/group_descendants_finder.rb
app/finders/group_descendants_finder.rb
+14
-16
spec/finders/group_descendants_finder_spec.rb
spec/finders/group_descendants_finder_spec.rb
+11
-2
No files found.
app/finders/group_descendants_finder.rb
View file @
deb45634
class
GroupDescendantsFinder
include
Gitlab
::
Allowable
attr_reader
:current_user
,
:parent_group
,
:params
def
initialize
(
current_user:
nil
,
parent_group
:,
params:
{})
...
...
@@ -40,7 +38,7 @@ class GroupDescendantsFinder
end
def
paginator
Gitlab
::
MultiCollectionPaginator
.
new
(
*
collections
,
per_page:
params
[
:per_page
])
@paginator
||=
Gitlab
::
MultiCollectionPaginator
.
new
(
*
collections
,
per_page:
params
[
:per_page
])
end
def
direct_child_groups
...
...
@@ -51,18 +49,21 @@ class GroupDescendantsFinder
def
all_visible_descendant_groups
groups_table
=
Group
.
arel_table
visible_
for
_user
=
groups_table
[
:visibility_level
]
visible_
to
_user
=
groups_table
[
:visibility_level
]
.
in
(
Gitlab
::
VisibilityLevel
.
levels_for_user
(
current_user
))
visible_for_user
=
if
current_user
visible_projects
=
GroupsFinder
.
new
(
current_user
).
execute
.
as
(
'visible'
)
authorized
=
groups_table
.
project
(
1
).
from
(
visible_projects
)
.
where
(
visible_projects
[
:id
].
eq
(
groups_table
[
:id
]))
if
current_user
authorized_groups
=
GroupsFinder
.
new
(
current_user
,
all_available:
false
)
.
execute
.
as
(
'authorized'
)
authorized_to_user
=
groups_table
.
project
(
1
).
from
(
authorized_groups
)
.
where
(
authorized_groups
[
:id
].
eq
(
groups_table
[
:id
]))
.
exists
visible_for_user
.
or
(
authorized
)
visible_to_user
=
visible_to_user
.
or
(
authorized_to_user
)
end
hierarchy_for_parent
.
descendants
.
where
(
visible_
for
_user
)
.
where
(
visible_
to
_user
)
end
def
subgroups_matching_filter
...
...
@@ -94,7 +95,6 @@ class GroupDescendantsFinder
def
subgroups
return
Group
.
none
unless
Group
.
supports_nested_groups?
return
Group
.
none
unless
can?
(
current_user
,
:read_group
,
parent_group
)
# When filtering subgroups, we want to find all matches withing the tree of
# descendants to show to the user
...
...
@@ -122,8 +122,6 @@ class GroupDescendantsFinder
end
def
projects
return
Project
.
none
unless
can?
(
current_user
,
:read_group
,
parent_group
)
projects
=
if
params
[
:filter
]
projects_matching_filter
else
...
...
spec/finders/group_descendants_finder_spec.rb
View file @
deb45634
...
...
@@ -39,7 +39,7 @@ describe GroupDescendantsFinder do
context
'with nested groups'
,
:nested_groups
do
let!
(
:project
)
{
create
(
:project
,
namespace:
group
)
}
let!
(
:subgroup
)
{
create
(
:group
,
parent:
group
)
}
let!
(
:subgroup
)
{
create
(
:group
,
:private
,
parent:
group
)
}
describe
'#execute'
do
it
'contains projects and subgroups'
do
...
...
@@ -59,6 +59,15 @@ describe GroupDescendantsFinder do
expect
(
finder
.
execute
).
to
contain_exactly
(
public_subgroup
,
other_subgroup
)
end
it
'only includes public groups when no user is given'
do
public_subgroup
=
create
(
:group
,
:public
,
parent:
group
)
_private_subgroup
=
create
(
:group
,
:private
,
parent:
group
)
finder
=
described_class
.
new
(
current_user:
nil
,
parent_group:
group
)
expect
(
finder
.
execute
).
to
contain_exactly
(
public_subgroup
)
end
context
'with a filter'
do
let
(
:params
)
{
{
filter:
'test'
}
}
...
...
@@ -86,7 +95,7 @@ describe GroupDescendantsFinder do
context
'with matching children'
do
it
'includes a group that has a subgroup matching the query and its parent'
do
matching_subgroup
=
create
(
:group
,
name:
'testgroup'
,
parent:
subgroup
)
matching_subgroup
=
create
(
:group
,
:private
,
name:
'testgroup'
,
parent:
subgroup
)
expect
(
finder
.
execute
).
to
contain_exactly
(
subgroup
,
matching_subgroup
)
end
...
...
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment