VladPolskiy/gitlabhq
1
0
Fork 0
mirror of https://github.com/gitlabhq/gitlabhq.git synced 2025-07-25 17:08:32 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
0a0fc6fa1a821062d5feaa94cb14d23a65e75073
gitlabhq/app/controllers/base_action_controller.rb
GitLab Bot 84b60a2a54 Add latest changes from gitlab-org/gitlab@master
2025-07-15 21:13:06 +00:00

51 lines
1.9 KiB
Ruby
Raw Blame History

# frozen_string_literal: true
# GitLab lightweight base action controller
#
# This class should be limited to content that
# is desired/required for *all* controllers in
# GitLab.
#
# Most controllers inherit from `ApplicationController`.
# Some controllers don't want or need all of that
# logic and instead inherit from `ActionController::Base`.
# This makes it difficult to set security headers and
# handle other critical logic across *all* controllers.
#
# Between this controller and `ApplicationController`
# no controller should ever inherit directly from
# `ActionController::Base`
#
# rubocop:disable Rails/ApplicationController -- This class is specifically meant as a base class for controllers that
# don't inherit from ApplicationController
# rubocop:disable Gitlab/NamespacedClass -- Base controllers live in the global namespace
class BaseActionController < ActionController::Base
extend ContentSecurityPolicyPatch
content_security_policy do |p|
next if p.directives.blank?
next unless Gitlab::CurrentSettings.snowplow_enabled? && !Gitlab::CurrentSettings.snowplow_collector_hostname.blank?
default_connect_src = p.directives['connect-src'] || p.directives['default-src']
connect_src_values = Array.wrap(default_connect_src) | [Gitlab::CurrentSettings.snowplow_collector_hostname]
p.connect_src(*connect_src_values)
end
def set_current_organization
return if ::Current.organization_assigned
organization = Gitlab::Current::Organization.new(
params: organization_params,
user: current_user,
session: session
).organization
session_key = Gitlab::Current::Organization::SESSION_KEY
session[session_key] = organization.id if organization && session[session_key] != organization.id
::Current.organization = organization
end
end
# rubocop:enable Gitlab/NamespacedClass
# rubocop:enable Rails/ApplicationController
Reference in New Issue View Git Blame Copy Permalink