Move allowed call to LDAP::User

0e276f9c · Jan-Willem van der Meer · ce22ffbc · 0e276f9c · 0e276f9c
Commit 0e276f9c authored Oct 03, 2014 by Jan-Willem van der Meer
Hide whitespace changes
Inline Side-by-side

Showing with 5 additions and 1 deletion

app/controllers/omniauth_callbacks_controller.rb app/controllers/omniauth_callbacks_controller.rb +1 -1

lib/gitlab/ldap/user.rb lib/gitlab/ldap/user.rb +4 -0

No files found.
--- a/app/controllers/omniauth_callbacks_controller.rb
+++ b/app/controllers/omniauth_callbacks_controller.rb
@@ -24,7 +24,7 @@ class OmniauthCallbacksController < Devise::OmniauthCallbacksController
    gl_user.remember_me = true if @user.persisted?

    # Do additional LDAP checks for the user filter and EE features
-    if Gitlab::LDAP::Access.allowed?(gl_user)
+    if @user.allowed?
      sign_in_and_redirect(gl_user)
    else
      flash[:alert] = "Access denied for your LDAP account."

--- a/lib/gitlab/ldap/user.rb
+++ b/lib/gitlab/ldap/user.rb
@@ -89,6 +89,10 @@ module Gitlab
      def needs_blocking?
        false
      end
+
+      def allowed?
+        Gitlab::LDAP::Access.allowed?(gl_user)
+      end
    end
  end
 end