/app/models/application_setting.rb
Ruby | 181 lines | 152 code | 29 blank | 0 comment | 2 complexity | d734377a470b5097d79dda9230426339 MD5 | raw file
- class ApplicationSetting < ActiveRecord::Base
- include TokenAuthenticatable
- add_authentication_token_field :runners_registration_token
- add_authentication_token_field :health_check_access_token
- CACHE_KEY = 'application_setting.last'
- serialize :restricted_visibility_levels
- serialize :import_sources
- serialize :disabled_oauth_sign_in_sources, Array
- serialize :restricted_signup_domains, Array
- attr_accessor :restricted_signup_domains_raw
- validates :session_expire_delay,
- presence: true,
- numericality: { only_integer: true, greater_than_or_equal_to: 0 }
- validates :home_page_url,
- allow_blank: true,
- url: true,
- if: :home_page_url_column_exist
- validates :after_sign_out_path,
- allow_blank: true,
- url: true
- validates :admin_notification_email,
- email: true,
- allow_blank: true
- validates :two_factor_grace_period,
- numericality: { greater_than_or_equal_to: 0 }
- validates :recaptcha_site_key,
- presence: true,
- if: :recaptcha_enabled
- validates :recaptcha_private_key,
- presence: true,
- if: :recaptcha_enabled
- validates :sentry_dsn,
- presence: true,
- if: :sentry_enabled
- validates :akismet_api_key,
- presence: true,
- if: :akismet_enabled
- validates :max_attachment_size,
- presence: true,
- numericality: { only_integer: true, greater_than: 0 }
- validates :container_registry_token_expire_delay,
- presence: true,
- numericality: { only_integer: true, greater_than: 0 }
- validates :elasticsearch_host,
- presence: { message: "can't be blank when indexing is enabled" },
- if: :elasticsearch_indexing?
- validates :elasticsearch_port,
- presence: { message: "can't be blank when indexing is enabled" },
- if: :elasticsearch_indexing?
- validates_each :restricted_visibility_levels do |record, attr, value|
- unless value.nil?
- value.each do |level|
- unless Gitlab::VisibilityLevel.options.has_value?(level)
- record.errors.add(attr, "'#{level}' is not a valid visibility level")
- end
- end
- end
- end
- validates_each :import_sources do |record, attr, value|
- unless value.nil?
- value.each do |source|
- unless Gitlab::ImportSources.options.has_value?(source)
- record.errors.add(attr, "'#{source}' is not a import source")
- end
- end
- end
- end
- validates_each :disabled_oauth_sign_in_sources do |record, attr, value|
- unless value.nil?
- value.each do |source|
- unless Devise.omniauth_providers.include?(source.to_sym)
- record.errors.add(attr, "'#{source}' is not an OAuth sign-in source")
- end
- end
- end
- end
- before_save :ensure_runners_registration_token
- before_save :ensure_health_check_access_token
- after_commit do
- Rails.cache.write(CACHE_KEY, self)
- end
- def self.current
- Rails.cache.fetch(CACHE_KEY) do
- ApplicationSetting.last
- end
- end
- def self.expire
- Rails.cache.delete(CACHE_KEY)
- end
- def self.cached
- Rails.cache.fetch(CACHE_KEY)
- end
- def self.create_from_defaults
- create(
- default_projects_limit: Settings.gitlab['default_projects_limit'],
- default_branch_protection: Settings.gitlab['default_branch_protection'],
- signup_enabled: Settings.gitlab['signup_enabled'],
- signin_enabled: Settings.gitlab['signin_enabled'],
- gravatar_enabled: Settings.gravatar['enabled'],
- sign_in_text: nil,
- after_sign_up_text: nil,
- help_page_text: nil,
- shared_runners_text: nil,
- restricted_visibility_levels: Settings.gitlab['restricted_visibility_levels'],
- max_attachment_size: Settings.gitlab['max_attachment_size'],
- session_expire_delay: Settings.gitlab['session_expire_delay'],
- default_project_visibility: Settings.gitlab.default_projects_features['visibility_level'],
- default_snippet_visibility: Settings.gitlab.default_projects_features['visibility_level'],
- restricted_signup_domains: Settings.gitlab['restricted_signup_domains'],
- import_sources: ['github','bitbucket','gitlab','gitorious','google_code','fogbugz','git'],
- shared_runners_enabled: Settings.gitlab_ci['shared_runners_enabled'],
- max_artifacts_size: Settings.artifacts['max_size'],
- require_two_factor_authentication: false,
- two_factor_grace_period: 48,
- recaptcha_enabled: false,
- akismet_enabled: false,
- repository_checks_enabled: true,
- disabled_oauth_sign_in_sources: [],
- send_user_confirmation_email: false,
- container_registry_token_expire_delay: 5,
- elasticsearch_host: ENV['ELASTIC_HOST'] || 'localhost',
- elasticsearch_port: ENV['ELASTIC_PORT'] || '9200'
- )
- end
- def elasticsearch_host
- read_attribute(:elasticsearch_host).split(',').map(&:strip)
- end
- def home_page_url_column_exist
- ActiveRecord::Base.connection.column_exists?(:application_settings, :home_page_url)
- end
- def restricted_signup_domains_raw
- self.restricted_signup_domains.join("\n") unless self.restricted_signup_domains.nil?
- end
- def restricted_signup_domains_raw=(values)
- self.restricted_signup_domains = []
- self.restricted_signup_domains = values.split(
- /\s*[,;]\s* # comma or semicolon, optionally surrounded by whitespace
- | # or
- \s # any whitespace character
- | # or
- [\r\n] # any number of newline characters
- /x)
- self.restricted_signup_domains.reject! { |d| d.empty? }
- end
- def runners_registration_token
- ensure_runners_registration_token!
- end
- def health_check_access_token
- ensure_health_check_access_token!
- end
- end