app/serializers/integrations/field_entity.rb


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51

# frozen_string_literal: true

module Integrations
  class FieldEntity < Grape::Entity
    include RequestAwareEntity
    include Gitlab::Utils::StrongMemoize

    expose :section, :type, :name, :placeholder, :required, :choices, :checkbox_label

    expose :title do |field|
      non_empty_password?(field) ? field[:non_empty_password_title] : field[:title]
    end

    expose :help do |field|
      non_empty_password?(field) ? field[:non_empty_password_help] : field[:help]
    end

    expose :value do |field|
      value = value_for(field)

      if non_empty_password?(field)
        'true'
      elsif field[:type] == 'checkbox'
        ActiveRecord::Type::Boolean.new.deserialize(value).to_s
      elsif field[:name] == 'webhook' && integration.chat?
        BaseChatNotification::SECRET_MASK if value.present?
      else
        value
      end
    end

    private

    def integration
      request.integration
    end

    def value_for(field)
      strong_memoize(:value_for) do
        # field[:name] is not user input and so can assume is safe
        integration.public_send(field[:name]) # rubocop:disable GitlabSecurity/PublicSend
      end
    end

    def non_empty_password?(field)
      strong_memoize(:non_empty_password) do
        field[:type] == 'password' && value_for(field).present?
      end
    end
  end
end