Add latest changes from gitlab-org/gitlab@14-3-stable-eev14.3.0-rc42

author: GitLab Bot <gitlab-bot@gitlab.com> 2021-09-20 13:18:24 +0000
committer: GitLab Bot <gitlab-bot@gitlab.com> 2021-09-20 13:18:24 +0000
commit: 0653e08efd039a5905f3fa4f6e9cef9f5d2f799c (patch)
tree: 4dcc884cf6d81db44adae4aa99f8ec1233a41f55 /app/models/concerns/featurable.rb
parent: 744144d28e3e7fddc117924fef88de5d9674fe4c (diff)
download: gitlab-ce-0653e08efd039a5905f3fa4f6e9cef9f5d2f799c.tar.gz
1 files changed, 21 insertions, 0 deletions
diff --git a/app/models/concerns/featurable.rb b/app/models/concerns/featurable.rb
index ed9bce87da1..70d67fc7559 100644
--- a/app/models/concerns/featurable.rb
+++ b/app/models/concerns/featurable.rb
@@ -83,6 +83,10 @@ module Featurable
     end
   end
 
+  included do
+    validate :allowed_access_levels
+  end
+
   def access_level(feature)
     public_send(self.class.access_level_attribute(feature)) # rubocop:disable GitlabSecurity/PublicSend
   end
@@ -94,4 +98,21 @@ module Featurable
   def string_access_level(feature)
     self.class.str_from_access_level(access_level(feature))
   end
+
+  private
+
+  def allowed_access_levels
+    validator = lambda do |field|
+      level = public_send(field) || ENABLED # rubocop:disable GitlabSecurity/PublicSend
+      not_allowed = level > ENABLED
+      self.errors.add(field, "cannot have public visibility level") if not_allowed
+    end
+
+    (self.class.available_features - feature_validation_exclusion).each {|f| validator.call("#{f}_access_level")}
+  end
+
+  # Features that we should exclude from the validation
+  def feature_validation_exclusion
+    []
+  end
 end
author	GitLab Bot <gitlab-bot@gitlab.com>	2021-09-20 13:18:24 +0000
committer	GitLab Bot <gitlab-bot@gitlab.com>	2021-09-20 13:18:24 +0000
commit	0653e08efd039a5905f3fa4f6e9cef9f5d2f799c (patch)
tree	4dcc884cf6d81db44adae4aa99f8ec1233a41f55 /app/models/concerns/featurable.rb
parent	744144d28e3e7fddc117924fef88de5d9674fe4c (diff)
download	gitlab-ce-0653e08efd039a5905f3fa4f6e9cef9f5d2f799c.tar.gz