blob: 0856febf3f601938953b4d842da77b773c6bbaef (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
|
# frozen_string_literal: true
class UserSyncedAttributesMetadata < MainClusterwide::ApplicationRecord
belongs_to :user
validates :user, presence: true
SYNCABLE_ATTRIBUTES = %i[name email location].freeze
def read_only?(attribute)
sync_profile_from_provider? && synced?(attribute)
end
def read_only_attributes
return [] unless sync_profile_from_provider?
SYNCABLE_ATTRIBUTES.select { |key| synced?(key) }
end
def synced?(attribute)
read_attribute("#{attribute}_synced")
end
def set_attribute_synced(attribute, value)
write_attribute("#{attribute}_synced", value)
end
class << self
def syncable_attributes(provider = nil)
return SYNCABLE_ATTRIBUTES unless provider && ldap_provider?(provider)
return SYNCABLE_ATTRIBUTES if ldap_sync_name?(provider)
SYNCABLE_ATTRIBUTES - %i[name]
end
end
private
def sync_profile_from_provider?
Gitlab::Auth::OAuth::Provider.sync_profile_from_provider?(provider)
end
class << self
def ldap_provider?(provider)
Gitlab::Auth::OAuth::Provider.ldap_provider?(provider)
end
def ldap_sync_name?(provider)
return false unless provider
config = Gitlab::Auth::Ldap::Config.new(provider)
config.enabled? && config.sync_name
end
end
end
|