1 files changed, 48 insertions, 0 deletions

diff --git a/lib/gitlab/github_import/importer/protected_branch_importer.rb b/lib/gitlab/github_import/importer/protected_branch_importer.rb
new file mode 100644
index 00000000000..16215fdce8e
--- /dev/null
+++ b/lib/gitlab/github_import/importer/protected_branch_importer.rb
@@ -0,0 +1,48 @@
+# frozen_string_literal: true
+
+module Gitlab
+  module GithubImport
+    module Importer
+      class ProtectedBranchImporter
+        attr_reader :protected_branch, :project, :client
+
+        # protected_branch - An instance of
+        #   `Gitlab::GithubImport::Representation::ProtectedBranch`.
+        # project - An instance of `Project`
+        # client - An instance of `Gitlab::GithubImport::Client`
+        def initialize(protected_branch, project, client)
+          @protected_branch = protected_branch
+          @project = project
+          @client = client
+        end
+
+        def execute
+          # The creator of the project is always allowed to create protected
+          # branches, so we skip the authorization check in this service class.
+          ProtectedBranches::CreateService
+            .new(project, project.creator, params)
+            .execute(skip_authorization: true)
+        end
+
+        private
+
+        def params
+          {
+            name: protected_branch.id,
+            push_access_levels_attributes: [{ access_level: Gitlab::Access::MAINTAINER }],
+            merge_access_levels_attributes: [{ access_level: Gitlab::Access::MAINTAINER }],
+            allow_force_push: allow_force_push?
+          }
+        end
+
+        def allow_force_push?
+          if ProtectedBranch.protected?(project, protected_branch.id)
+            ProtectedBranch.allow_force_push?(project, protected_branch.id) && protected_branch.allow_force_pushes
+          else
+            protected_branch.allow_force_pushes
+          end
+        end
+      end
+    end
+  end
+end