Add latest changes from gitlab-org/gitlab@14-0-stable-eev14.0.0-rc42

author: GitLab Bot <gitlab-bot@gitlab.com> 2021-06-16 21:25:58 +0300
committer: GitLab Bot <gitlab-bot@gitlab.com> 2021-06-16 21:25:58 +0300
commit: a5f4bba440d7f9ea47046a0a561d49adf0a1e6d4 (patch)
tree: fb69158581673816a8cd895f9d352dcb3c678b1e /app/finders/packages/pypi/package_finder.rb
parent: d16b2e8639e99961de6ddc93909f3bb5c1445ba1 (diff)
1 files changed, 10 insertions, 0 deletions
diff --git a/app/finders/packages/pypi/package_finder.rb b/app/finders/packages/pypi/package_finder.rb
index 574e9770363..3a37e404b79 100644
--- a/app/finders/packages/pypi/package_finder.rb
+++ b/app/finders/packages/pypi/package_finder.rb
@@ -12,6 +12,16 @@ module Packages
       def packages
         base.pypi.has_version
       end
+
+      def group_packages
+        # PyPI finds packages without checking permissions.
+        # The package download endpoint uses obfuscation to secure the file
+        # instead of authentication. This is behavior the PyPI package
+        # manager defines and is not something GitLab controls.
+        ::Packages::Package.for_projects(
+          @project_or_group.all_projects.select(:id)
+        ).installable
+      end
     end
   end
 end
author	GitLab Bot <gitlab-bot@gitlab.com>	2021-06-16 21:25:58 +0300
committer	GitLab Bot <gitlab-bot@gitlab.com>	2021-06-16 21:25:58 +0300
commit	a5f4bba440d7f9ea47046a0a561d49adf0a1e6d4 (patch)
tree	fb69158581673816a8cd895f9d352dcb3c678b1e /app/finders/packages/pypi/package_finder.rb
parent	d16b2e8639e99961de6ddc93909f3bb5c1445ba1 (diff)