Commit 1e0cb3d5 authored by James Lopez's avatar James Lopez

Merge branch '262112_fallback_for_dismissed_at' into 'master'

Implement fallback for Vulnerability#dismissed_at

See merge request gitlab-org/gitlab!46378
parents 041d04e3 08e047a5
...@@ -2,6 +2,7 @@ ...@@ -2,6 +2,7 @@
module EE module EE
module Vulnerability module Vulnerability
include ::Gitlab::Utils::StrongMemoize
extend ActiveSupport::Concern extend ActiveSupport::Concern
prepended do prepended do
...@@ -134,8 +135,17 @@ module EE ...@@ -134,8 +135,17 @@ module EE
findings.first findings.first
end end
# TODO: Remove this attribute reader overrides with #262112
def dismissed_at
return unless dismissed?
super || fallback_dismissal_feedback&.created_at
end
def dismissed_by_id def dismissed_by_id
super || finding&.dismissal_feedback&.author_id return unless dismissed?
super || fallback_dismissal_feedback&.author_id
end end
def resource_parent def resource_parent
...@@ -165,6 +175,15 @@ module EE ...@@ -165,6 +175,15 @@ module EE
def user_notes_count_service def user_notes_count_service
@user_notes_count_service ||= ::Vulnerabilities::UserNotesCountService.new(self) # rubocop: disable CodeReuse/ServiceClass @user_notes_count_service ||= ::Vulnerabilities::UserNotesCountService.new(self) # rubocop: disable CodeReuse/ServiceClass
end end
# TODO: Remove this with #262112
def fallback_dismissal_feedback
strong_memoize(:fallback_dismissal_feedback) do
::Gitlab::AppJsonLogger.warn(message: 'Fallback dismissal_feedback has been called!', vulnerability_id: id)
finding&.dismissal_feedback
end
end
end end
class_methods do class_methods do
......
...@@ -555,6 +555,74 @@ RSpec.describe Vulnerability do ...@@ -555,6 +555,74 @@ RSpec.describe Vulnerability do
end end
end end
describe '#dismissed_at' do
let_it_be(:project) { create(:project) }
let_it_be(:finding) do
create(
:vulnerabilities_finding,
report_type: :dependency_scanning,
project: project
)
end
let(:vulnerability) { create(:vulnerability, findings: [finding]) }
let(:feedback_created_at) { -2.days.from_now }
let!(:dismissal_feedback) do
create(
:vulnerability_feedback,
:dependency_scanning,
:dismissal,
project: project,
project_fingerprint: finding.project_fingerprint,
created_at: feedback_created_at
)
end
subject(:dismissed_at) { vulnerability.dismissed_at }
around do |example|
freeze_time { example.run }
end
context 'when the vulnerability is not dismissed' do
before do
vulnerability.update_attribute(:dismissed_at, Time.current)
end
it { is_expected.to be_nil }
end
context 'when the vulnerability is dismissed' do
before do
vulnerability.dismissed!
end
context 'when the `dismissed_at` exists' do
let(:vulnerability_dismissed_at) { -1.day.from_now }
before do
vulnerability.update_attribute(:dismissed_at, vulnerability_dismissed_at)
end
it { is_expected.to eq(vulnerability_dismissed_at) }
end
context 'when the `dismissed_at` does not exist' do
before do
allow(::Gitlab::AppJsonLogger).to receive(:warn)
end
it { is_expected.to eq(feedback_created_at) }
it 'puts a warning log' do
dismissed_at
expect(::Gitlab::AppJsonLogger).to have_received(:warn)
end
end
end
end
describe '#dismissed_by_id' do describe '#dismissed_by_id' do
let_it_be(:user_1) { create(:user) } let_it_be(:user_1) { create(:user) }
let_it_be(:user_2) { create(:user) } let_it_be(:user_2) { create(:user) }
...@@ -579,7 +647,20 @@ RSpec.describe Vulnerability do ...@@ -579,7 +647,20 @@ RSpec.describe Vulnerability do
let(:vulnerability) { create(:vulnerability, findings: [occurrence]) } let(:vulnerability) { create(:vulnerability, findings: [occurrence]) }
subject { vulnerability.dismissed_by_id } subject(:dismissed_by_id) { vulnerability.dismissed_by_id }
context 'when the vulnerability is not dismissed' do
before do
vulnerability.update_attribute(:dismissed_by_id, user_1.id)
end
it { is_expected.to be_nil }
end
context 'when the vulnerability is dismissed' do
before do
vulnerability.dismissed!
end
context 'when the `dismissed_by_id` exists' do context 'when the `dismissed_by_id` exists' do
before do before do
...@@ -590,7 +671,18 @@ RSpec.describe Vulnerability do ...@@ -590,7 +671,18 @@ RSpec.describe Vulnerability do
end end
context 'when the `dismissed_by_id` does not exist' do context 'when the `dismissed_by_id` does not exist' do
before do
allow(::Gitlab::AppJsonLogger).to receive(:warn)
end
it { is_expected.to eq(user_1.id) } it { is_expected.to eq(user_1.id) }
it 'puts a warning log' do
dismissed_by_id
expect(::Gitlab::AppJsonLogger).to have_received(:warn)
end
end
end end
end end
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment