Merge branch 'sh-fix-delete-pipeline-api' into 'master'

Disable audit event logging for pipeline destruction See merge request gitlab-org/gitlab-ce!24293

Merge branch 'sh-fix-delete-pipeline-api' into 'master'
Disable audit event logging for pipeline destruction See merge request gitlab-org/gitlab-ce!24293
0bbdbd55 · Grzegorz Bizon · 7450cdb7 · 05f30ac6 · 0bbdbd55 · 0bbdbd55
Commit 0bbdbd55 authored Jan 10, 2019 by Grzegorz Bizon
3 changed files
--- a/app/services/ci/destroy_pipeline_service.rb
+++ b/app/services/ci/destroy_pipeline_service.rb
@@ -5,8 +5,6 @@ module Ci
    def execute(pipeline)
      raise Gitlab::Access::AccessDeniedError unless can?(current_user, :destroy_pipeline, pipeline)

-      AuditEventService.new(current_user, pipeline).security_event
-
      pipeline.destroy!
    end
  end

--- a/spec/requests/api/pipelines_spec.rb
+++ b/spec/requests/api/pipelines_spec.rb
@@ -456,8 +456,8 @@ describe API::Pipelines do
        expect(json_response['message']).to eq '404 Not found'
      end

-      it 'logs an audit event' do
-        expect { delete api("/projects/#{project.id}/pipelines/#{pipeline.id}", owner) }.to change { SecurityEvent.count }.by(1)
+      it 'does not log an audit event' do
+        expect { delete api("/projects/#{project.id}/pipelines/#{pipeline.id}", owner) }.not_to change { SecurityEvent.count }
      end

      context 'when the pipeline has jobs' do

--- a/spec/services/ci/destroy_pipeline_service_spec.rb
+++ b/spec/services/ci/destroy_pipeline_service_spec.rb
@@ -17,8 +17,8 @@ describe ::Ci::DestroyPipelineService do
      expect { pipeline.reload }.to raise_error(ActiveRecord::RecordNotFound)
    end

-    it 'logs an audit event' do
-      expect { subject }.to change { SecurityEvent.count }.by(1)
+    it 'does not log an audit event' do
+      expect { subject }.not_to change { SecurityEvent.count }
    end

    context 'when the pipeline has jobs' do