summaryrefslogtreecommitdiff
path: root/db/post_migrate/20181026091631_migrate_forbidden_redirect_uris.rb
blob: 7c2df8328825b7ef9104ccc90089574f723a28a7 (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32

# frozen_string_literal: true

class MigrateForbiddenRedirectUris < ActiveRecord::Migration[4.2]
  include Gitlab::Database::MigrationHelpers

  DOWNTIME = false
  FORBIDDEN_SCHEMES = %w[data:// vbscript:// javascript://]
  NEW_URI = 'http://forbidden-scheme-has-been-overwritten'

  disable_ddl_transaction!

  def up
    update_forbidden_uris(:oauth_applications)
    update_forbidden_uris(:oauth_access_grants)
  end

  def down
    # noop
  end

  private

  def update_forbidden_uris(table_name)
    update_column_in_batches(table_name, :redirect_uri, NEW_URI) do |table, query|
      where_clause = FORBIDDEN_SCHEMES.map do |scheme|
        table[:redirect_uri].matches("#{scheme}%")
      end.inject(&:or)

      query.where(where_clause)
    end
  end
end
View Lorry Controller Status