root
/
gitlab-ce
mirror of https://gitlab.com/free-releases/gitlab-ce.git
1
0
Fork 0
Code Issues Actions Packages Projects Releases Wiki Activity
gitlab-ce/app/models/concerns/commit_signature.rb

67 lines
1.7 KiB
Ruby
Raw Permalink Blame History

# frozen_string_literal: true
module CommitSignature
extend ActiveSupport::Concern
included do
include ShaAttribute
include EachBatch
sha_attribute :commit_sha
enum :verification_status, Enums::CommitSignature.verification_statuses
belongs_to :project, class_name: 'Project', foreign_key: 'project_id', optional: false
validates :commit_sha, presence: true
validates :project_id, presence: true
scope :by_commit_sha, ->(shas) { where(commit_sha: shas) }
end
class_methods do
def safe_create!(attributes)
create_with(attributes)
.safe_find_or_create_by!(commit_sha: attributes[:commit_sha])
end
# Find commits that are lacking a signature in the database at present
def unsigned_commit_shas(commit_shas)
return [] if commit_shas.empty?
signed = by_commit_sha(commit_shas).pluck(:commit_sha)
commit_shas - signed
end
end
def commit
project.commit(commit_sha)
end
def signed_by_user
raise NoMethodError, 'must implement `signed_by_user` method'
end
# If commit is persisted as verified, check that commit email is still correct.
def verification_status
persisted_status = read_attribute(:verification_status)
return persisted_status unless Feature.enabled?(:check_for_mailmapped_commit_emails, project)
return persisted_status unless verified? || verified_system?
return persisted_status unless commit
return 'unverified_author_email' if emails_for_verification&.exclude?(commit.author_email)
persisted_status
end
private
def emails_for_verification
if x509?
x509_certificate.all_emails
else
signed_by_user&.verified_emails
end
end
end
Reference in New Issue View Git Blame Copy Permalink