Extend configuration end point to return json when format is given

This information will be used in rules page to give warning to user

Extend configuration end point to return json when format is given
This information will be used in rules page to give warning to user
d936f769 · can eldem · c639cb5b · d936f769 · d936f769 · d936f769
Commit d936f769 authored Jul 17, 2020 by can eldem
6 changed files
--- a/ee/app/controllers/projects/security/configuration_controller.rb
+++ b/ee/app/controllers/projects/security/configuration_controller.rb
@@ -20,6 +20,12 @@ module Projects
        @configuration = ConfigurationPresenter.new(project,
                                                    auto_fix_permission: auto_fix_authorized?,
                                                    current_user: current_user)
+        respond_to do |format|
+          format.html
+          format.json do
+            render status: :ok, json: @configuration.to_h
+          end
+        end
      end
      def auto_fix

--- a/ee/app/presenters/projects/security/configuration_presenter.rb
+++ b/ee/app/presenters/projects/security/configuration_presenter.rb
@@ -53,21 +53,33 @@ module Projects
          create_sast_merge_request_path: project_security_configuration_sast_path(project),
          auto_devops_path: auto_devops_settings_path(project),
          can_enable_auto_devops: can_enable_auto_devops?,
-          features: features.to_json,
+          features: features,
          help_page_path: help_page_path('user/application_security/index'),
          latest_pipeline_path: latest_pipeline_path,
-          auto_fix_enabled: {
+          auto_fix_enabled: autofix_enabled,
-            dependency_scanning: project_settings.auto_fix_dependency_scanning,
-            container_scanning: project_settings.auto_fix_container_scanning
-          }.to_json,
          can_toggle_auto_fix_settings: auto_fix_permission,
          gitlab_ci_present: gitlab_ci_present?,
          auto_fix_user_path: '/' # TODO: real link will be updated with https://gitlab.com/gitlab-org/gitlab/-/issues/215669
        }
      end
+      def to_html_data_attribute
+        data = to_h
+        data[:features] = data[:features].to_json
+        data[:auto_fix_enabled] = data[:auto_fix_enabled].to_json
+        data
+      end
      private
+      def autofix_enabled
+        {
+          dependency_scanning: project_settings.auto_fix_dependency_scanning,
+          container_scanning: project_settings.auto_fix_container_scanning
+        }
+      end
      def can_enable_auto_devops?
        feature_available?(:builds, current_user) &&
          can?(current_user, :admin_project, self) &&

--- a/ee/app/views/projects/security/configuration/show.html.haml
+++ b/ee/app/views/projects/security/configuration/show.html.haml
 - breadcrumb_title _("Security Configuration")
 - page_title _("Security Configuration")
-#js-security-configuration{ data: { **@configuration.to_h,
+#js-security-configuration{ data: { **@configuration.to_html_data_attribute,
  auto_fix_help_path: '/',
  toggle_autofix_setting_endpoint: 'configuration/auto_fix',
  container_scanning_help_path: help_page_path('user/application_security/container_scanning/index'),

--- a/ee/changelogs/unreleased/display-security-approvals-backend.yml
+++ b/ee/changelogs/unreleased/display-security-approvals-backend.yml
+---
+title: Extend configuration end point to return json when format is given
+merge_request: 37217
+author:
+type: added
--- a/ee/spec/controllers/projects/security/configuration_controller_spec.rb
+++ b/ee/spec/controllers/projects/security/configuration_controller_spec.rb
@@ -26,6 +26,16 @@ RSpec.describe Projects::Security::ConfigurationController do
        sign_in(user)
      end
+      it 'responds in json format when requested' do
+        get :show, params: { namespace_id: project.namespace, project_id: project, format: :json }
+        types = %w(sast dast dependency_scanning container_scanning secret_detection coverage_fuzzing license_scanning)
+        expect(response).to have_gitlab_http_status(:ok)
+        expect(json_response['features'].map { |f| f['type'] }).to match_array(types)
+        expect(json_response['auto_fix_enabled']).to include({ 'dependency_scanning' => true, 'container_scanning' => true })
+      end
      it "renders data on the project's security configuration" do
        request
@@ -99,6 +109,13 @@ RSpec.describe Projects::Security::ConfigurationController do
        let(:user) { maintainer }
        let(:setting) { project.security_setting }
+        it 'shows auto fix disable for dependency scanning for json format' do
+          get :show, params: { namespace_id: project.namespace, project_id: project, format: :json }
+          expect(response).to have_gitlab_http_status(:ok)
+          expect(json_response['auto_fix_enabled']).to include({ 'dependency_scanning' => false })
+        end
        context 'with setup feature param' do
          let(:feature) { :dependency_scanning }

--- a/ee/spec/presenters/projects/security/configuration_presenter_spec.rb
+++ b/ee/spec/presenters/projects/security/configuration_presenter_spec.rb
@@ -19,7 +19,7 @@ RSpec.describe Projects::Security::ConfigurationPresenter do
  end
  describe '#to_h' do
-    subject { described_class.new(project, auto_fix_permission: true, current_user: current_user).to_h }
+    subject { described_class.new(project, auto_fix_permission: true, current_user: current_user).to_html_data_attribute }
    it 'includes links to auto devops and secure product docs' do
      expect(subject[:auto_devops_help_page_path]).to eq(help_page_path('topics/autodevops/index'))