# frozen_string_literal: true module Groups module Settings class CiCdController < Groups::ApplicationController skip_cross_project_access_check :show before_action :authorize_admin_group! before_action :authorize_update_max_artifacts_size!, only: [:update] before_action do push_frontend_feature_flag(:new_variables_ui, @group, default_enabled: true) push_frontend_feature_flag(:ajax_new_deploy_token, @group) end before_action :define_variables, only: [:show, :create_deploy_token] def show end def update if update_group_service.execute flash[:notice] = s_('GroupSettings|Pipeline settings was updated for the group') else flash[:alert] = s_("GroupSettings|There was a problem updating the pipeline settings: %{error_messages}." % { error_messages: group.errors.full_messages }) end redirect_to group_settings_ci_cd_path end def reset_registration_token @group.reset_runners_token! flash[:notice] = _('GroupSettings|New runners registration token has been generated!') redirect_to group_settings_ci_cd_path end def update_auto_devops if auto_devops_service.execute flash[:notice] = s_('GroupSettings|Auto DevOps pipeline was updated for the group') else flash[:alert] = s_("GroupSettings|There was a problem updating Auto DevOps pipeline: %{error_messages}." % { error_messages: group.errors.full_messages }) end redirect_to group_settings_ci_cd_path end def create_deploy_token result = Groups::DeployTokens::CreateService.new(@group, current_user, deploy_token_params).execute @new_deploy_token = result[:deploy_token] if result[:status] == :success respond_to do |format| format.json do # IMPORTANT: It's a security risk to expose the token value more than just once here! json = API::Entities::DeployTokenWithToken.represent(@new_deploy_token).as_json render json: json, status: result[:http_status] end format.html do flash.now[:notice] = s_('DeployTokens|Your new group deploy token has been created.') render :show end end else respond_to do |format| format.json { render json: { message: result[:message] }, status: result[:http_status] } format.html do flash.now[:alert] = result[:message] render :show end end end end private def define_variables define_ci_variables define_deploy_token_variables end def define_ci_variables @variable = Ci::GroupVariable.new(group: group) .present(current_user: current_user) @variables = group.variables.order_key_asc .map { |variable| variable.present(current_user: current_user) } end def define_deploy_token_variables @deploy_tokens = @group.deploy_tokens.active @new_deploy_token = DeployToken.new end def authorize_admin_group! return render_404 unless can?(current_user, :admin_group, group) end def authorize_update_max_artifacts_size! return render_404 unless can?(current_user, :update_max_artifacts_size, group) end def auto_devops_params params.require(:group).permit(:auto_devops_enabled) end def auto_devops_service Groups::AutoDevopsService.new(group, current_user, auto_devops_params) end def update_group_service Groups::UpdateService.new(group, current_user, update_group_params) end def update_group_params params.require(:group).permit(:max_artifacts_size) end def deploy_token_params params.require(:deploy_token).permit(:name, :expires_at, :read_repository, :read_registry, :write_registry, :username) end end end end