Ak vcs scopes (#1186)

Author: weban-pl

lib/travis/api/serialize/v2/http/user.rb

@@ -55,7 +55,7 @@ def user_data
               end
 
             def check_scopes
-              return Github::Oauth.correct_scopes?(user) if user.github?
+              # return Github::Oauth.correct_scopes?(user) if user.github?
 
               ::Travis::RemoteVCS::User.new.check_scopes(user_id: user.id)
             rescue ::Travis::RemoteVCS::ResponseError

lib/travis/api/v3/services/repository/activate.rb

@@ -9,26 +9,19 @@ def run!
       return repo_migrated if migrated?(repository)
 
       admin = access_control.admin_for(repository)
-      if Travis::Features.user_active?(:use_vcs, admin) || !admin.github?
-        remote_vcs_repository.set_hook(
-          repository_id: repository.id,
-          user_id: admin.id
-        )
-      else
-        github(admin).set_hook(repository, true)
-      end
+      remote_vcs_repository.set_hook(
+        repository_id: repository.id,
+        user_id: admin.id
+      )
+
       repository.update_attributes(active: true)
 
       if repository.private? || access_control.enterprise?
-        if Travis::Features.deactivate_owner(:use_vcs, admin) || !admin.github?
-          remote_vcs_repository.upload_key(
-            repository_id: repository.id,
-            user_id: admin.id,
-            read_only: !Travis::Features.owner_active?(:read_write_github_keys, repository.owner)
-          )
-        else
-          github(admin).upload_key(repository)
-        end
+        remote_vcs_repository.upload_key(
+          repository_id: repository.id,
+          user_id: admin.id,
+          read_only: !Travis::Features.owner_active?(:read_write_github_keys, repository.owner)
+        )
       end
 
       query.sync(access_control.user || access_control.admin_for(repository))

lib/travis/api/v3/services/repository/deactivate.rb

@@ -7,17 +7,12 @@ def run!(activate = false)
 
       admin = access_control.admin_for(repository)
 
-      if Travis::Features.user_active?(:use_vcs, admin) || !admin.github?
-        remote_vcs_repository.set_hook(
-          repository_id: repository.id,
-          user_id: admin.id,
-          activate: activate
-        )
-      else
-        github(admin).set_hook(repository, activate)
-      end
+      remote_vcs_repository.set_hook(
+        repository_id: repository.id,
+        user_id: admin.id,
+        activate: activate
+      )
       repository.update_attributes(active: activate)
-
       result repository
     end
 

lib/travis/github/services/set_hook.rb

@@ -11,15 +11,11 @@ class SetHook < Travis::Services::Base
         register :github_set_hook
 
         def run
-          if Travis::Features.user_active?(:use_vcs, current_user) || !current_user.github?
-            remote_vcs_repository.set_hook(
-              repository_id: repo.id,
-              user_id: current_user.id,
-              activate: active?
-            )
-          else
-            v3_github.set_hook(repo, active?)
-          end
+          remote_vcs_repository.set_hook(
+            repository_id: repo.id,
+            user_id: current_user.id,
+            activate: active?
+          )
         end
 
         private

lib/travis/github/services/set_key.rb

@@ -25,54 +25,30 @@ def has_key?
         private
 
         def keys
-          if Travis::Features.user_active?(:use_vcs, current_user) || !current_user.github?
-            @keys ||= remote_vcs_repository.keys(
-              repository_id: repo.id,
-              user_id: current_user.id
-            )
-          else
-            @keys ||= authenticated do
-              GH[keys_path]
-            end
-          end
+          @keys ||= remote_vcs_repository.keys(
+            repository_id: repo.id,
+            user_id: current_user.id
+          )
         end
 
         def key
           keys.detect { |e| e['key'] == repo.key.encoded_public_key }
         end
 
         def set_key
-          read_only = !Travis::Features.owner_active?(:read_write_github_keys, repo.owner)
-          if Travis::Features.user_active?(:use_vcs, current_user) || !current_user.github?
-            remote_vcs_repository.upload_key(
-              repository_id: repo.id,
-              user_id: current_user.id,
-              read_only: read_only
-            )
-          else
-            authenticated do
-              GH.post keys_path, {
-                title: Travis.config.host.to_s,
-                key: repo.key.encoded_public_key,
-                read_only: read_only
-              }
-            end
-          end
+          remote_vcs_repository.upload_key(
+            repository_id: repo.id,
+            user_id: current_user.id,
+            read_only: !Travis::Features.owner_active?(:read_write_github_keys, repo.owner)
+          )
         end
 
         def delete_key
-          if Travis::Features.user_active?(:use_vcs, current_user) || !current_user.github?
-            remote_vcs_repository.delete_key(
-              repository_id: repo.id,
-              user_id: current_user.id,
-              id: key['id']
-            )
-          else
-            authenticated do
-              GH.delete "#{keys_path}/#{key['id']}" #key['_links']['self']['href']
-              @keys = []
-            end
-          end
+          remote_vcs_repository.delete_key(
+            repository_id: repo.id,
+            user_id: current_user.id,
+            id: key['id']
+          )
         end
 
         def keys_path

spec/auth/v2.1/users_spec.rb

@@ -1,145 +1,134 @@
 describe 'v2.1 users', auth_helpers: true, api_version: :'v2.1', set_app: true do
   let(:user) { User.first }
   let(:repo) { Repository.by_slug('svenfuchs/minimal').first }
-
+  let!(:request) do
+    WebMock.stub_request(:post, 'http://vcsfake.travis-ci.com/users/1/check_scopes')
+      .to_return(
+        status: 200,
+        body: nil,
+      )
+  end
+  before do
+    Travis.config.vcs.url = 'http://vcsfake.travis-ci.com'
+    Travis.config.vcs.token = 'vcs-token'
+  end
   # TODO put /users/
   # TODO put /users/:id ?
   # TODO post /users/sync
-
   describe 'in public, with a private repo', mode: :public, repo: :private do
     describe 'GET /users' do
       it(:authenticated)      { should auth status: 200, type: :json, empty: false }
       it(:invalid_token)      { should auth status: 403 }
       it(:unauthenticated)    { should auth status: 401 }
     end
-
     describe 'GET /users/permissions' do
       it(:with_permission)    { should auth status: 200, type: :json, empty: false }
       it(:without_permission) { should auth status: 200, type: :json, empty: true }
       it(:invalid_token)      { should auth status: 403 }
       it(:unauthenticated)    { should auth status: 401 }
     end
-
     describe 'GET /users/%{user.id}' do
       it(:authenticated)      { should auth status: 200, type: :json, empty: false }
       it(:invalid_token)      { should auth status: 403 }
       it(:unauthenticated)    { should auth status: 401 }
     end
-
     describe 'GET /users/0' do
       it(:authenticated)      { should auth status: 404 }
       it(:invalid_token)      { should auth status: 403 }
       it(:unauthenticated)    { should auth status: 401 }
     end
   end
-
   describe 'in public mode, with a public repo', mode: :public, repo: :public do
     describe 'GET /users' do
       it(:authenticated)      { should auth status: 200, type: :json, empty: false }
       it(:invalid_token)      { should auth status: 403 }
       it(:unauthenticated)    { should auth status: 401 }
     end
-
     describe 'GET /users/permissions' do
       it(:with_permission)    { should auth status: 200, type: :json, empty: false }
       it(:without_permission) { should auth status: 200, type: :json, empty: true }
       it(:invalid_token)      { should auth status: 403 }
       it(:unauthenticated)    { should auth status: 401 }
     end
-
     describe 'GET /users/%{user.id}' do
       it(:authenticated)      { should auth status: 200, type: :json, empty: false }
       it(:invalid_token)      { should auth status: 403 }
       it(:unauthenticated)    { should auth status: 401 }
     end
-
     describe 'GET /users/0' do
       it(:authenticated)      { should auth status: 404 }
       it(:invalid_token)      { should auth status: 403 }
       it(:unauthenticated)    { should auth status: 401 }
     end
   end
-
   describe 'in private, with a public repo', mode: :private, repo: :public do
     describe 'GET /users' do
       it(:authenticated)      { should auth status: 200, type: :json, empty: false }
       it(:invalid_token)      { should auth status: 403 }
       it(:unauthenticated)    { should auth status: 401 }
     end
-
     describe 'GET /users/permissions' do
       it(:with_permission)    { should auth status: 200, type: :json, empty: false }
       it(:without_permission) { should auth status: 200, type: :json, empty: true }
       it(:invalid_token)      { should auth status: 403 }
       it(:unauthenticated)    { should auth status: 401 }
     end
-
     describe 'GET /users/%{user.id}' do
       it(:authenticated)      { should auth status: 200, type: :json, empty: false }
       it(:invalid_token)      { should auth status: 403 }
       it(:unauthenticated)    { should auth status: 401 }
     end
-
     describe 'GET /users/0' do
       it(:authenticated)      { should auth status: 404 }
       it(:invalid_token)      { should auth status: 403 }
       it(:unauthenticated)    { should auth status: 401 }
     end
   end
-
   # +----------------------------------------------------+
   # |                                                    |
   # |   !!! THE ORIGINAL BEHAVIOUR ... DON'T TOUCH !!!   |
   # |                                                    |
   # +----------------------------------------------------+
-
   describe 'in private, with a private repo', mode: :private, repo: :private do
     describe 'GET /users' do
       it(:authenticated)      { should auth status: 200, type: :json, empty: false }
       it(:invalid_token)      { should auth status: 403 }
       it(:unauthenticated)    { should auth status: 401 }
     end
-
     describe 'GET /users/permissions' do
       it(:with_permission)    { should auth status: 200, type: :json, empty: false }
       it(:without_permission) { should auth status: 200, type: :json, empty: true }
       it(:invalid_token)      { should auth status: 403 }
       it(:unauthenticated)    { should auth status: 401 }
     end
-
     describe 'GET /users/%{user.id}' do
       it(:authenticated)      { should auth status: 200, type: :json, empty: false }
       it(:invalid_token)      { should auth status: 403 }
       it(:unauthenticated)    { should auth status: 401 }
     end
-
     describe 'GET /users/0' do
       it(:authenticated)      { should auth status: 404 }
       it(:invalid_token)      { should auth status: 403 }
       it(:unauthenticated)    { should auth status: 401 }
     end
   end
-
   describe 'in org mode, with a public repo', mode: :org, repo: :public do
     describe 'GET /users' do
       it(:authenticated)      { should auth status: 200, type: :json, empty: false }
       it(:invalid_token)      { should auth status: 403 }
       it(:unauthenticated)    { should auth status: 401 }
     end
-
     describe 'GET /users/permissions' do
       it(:with_permission)    { should auth status: 200, type: :json, empty: false }
       it(:without_permission) { should auth status: 200, type: :json, empty: true }
       it(:invalid_token)      { should auth status: 403 }
       it(:unauthenticated)    { should auth status: 401 }
     end
-
     describe 'GET /users/%{user.id}' do
       it(:authenticated)      { should auth status: 200, type: :json, empty: false }
       it(:invalid_token)      { should auth status: 403 }
       it(:unauthenticated)    { should auth status: 401 }
     end
-
     describe 'GET /users/0' do
       it(:authenticated)      { should auth status: 404 }
       it(:invalid_token)      { should auth status: 403 }

spec/auth/v2/users_spec.rb

@@ -2,6 +2,7 @@
   let(:user) { User.first }
   let(:repo) { Repository.by_slug('svenfuchs/minimal').first }
 
+  before { allow_any_instance_of(Travis::RemoteVCS::User).to receive(:check_scopes) }
   # TODO put /users/
   # TODO put /users/:id ?
   # TODO post /users/sync

spec/integration/v2/hooks_spec.rb

@@ -30,8 +30,7 @@
 
     before(:each) do
       Travis.config.service_hook_url = 'notify.travis-ci.org'
-      stub_request(:get, "https://api.github.com/repositories/#{repo.github_id}/hooks?per_page=100").to_return(status: 200, body: '[]')
-      stub_request(:post, "https://api.github.com/repositories/#{repo.github_id}/hooks")
+      allow_any_instance_of(Travis::RemoteVCS::Repository).to receive(:set_hook)
     end
 
     it 'sets the hook' do

spec/integration/v2/users_spec.rb

@@ -11,6 +11,7 @@
     before do
       user.permissions.create!(repository: repo1)
       user.permissions.create!(repository: repo2)
+      allow_any_instance_of(Travis::RemoteVCS::User).to receive(:check_scopes)
     end
 
     it 'fetches a list of channels for a user' do