Commit e9a9526f authored by Heinrich Lee Yu's avatar Heinrich Lee Yu

Fix arel deprecations

Wraps unsafe SQL passed to `#order` and `#pluck`.

Not all instances of the deprecation message are fixed here
because the others should be whitelisted by
https://github.com/rails/rails/pull/36448 which is included
in Rails 6.

This also fixes a deprecation related to calling delegating
arel methods.
parent c1bcbe19
...@@ -80,7 +80,7 @@ class GroupDescendantsFinder ...@@ -80,7 +80,7 @@ class GroupDescendantsFinder
if current_user if current_user
authorized_groups = GroupsFinder.new(current_user, authorized_groups = GroupsFinder.new(current_user,
all_available: false) all_available: false)
.execute.as('authorized') .execute.arel.as('authorized')
authorized_to_user = groups_table.project(1).from(authorized_groups) authorized_to_user = groups_table.project(1).from(authorized_groups)
.where(authorized_groups[:id].eq(groups_table[:id])) .where(authorized_groups[:id].eq(groups_table[:id]))
.exists .exists
......
...@@ -405,7 +405,7 @@ module Ci ...@@ -405,7 +405,7 @@ module Ci
.where('stage=sg.stage').failed_but_allowed.to_sql .where('stage=sg.stage').failed_but_allowed.to_sql
stages_with_statuses = CommitStatus.from(stages_query, :sg) stages_with_statuses = CommitStatus.from(stages_query, :sg)
.pluck('sg.stage', status_sql, "(#{warnings_sql})") .pluck('sg.stage', Arel.sql(status_sql), Arel.sql("(#{warnings_sql})"))
stages_with_statuses.map do |stage| stages_with_statuses.map do |stage|
Ci::LegacyStage.new(self, Hash[%i[name status warnings].zip(stage)]) Ci::LegacyStage.new(self, Hash[%i[name status warnings].zip(stage)])
......
...@@ -118,8 +118,8 @@ module Issuable ...@@ -118,8 +118,8 @@ module Issuable
# rubocop:enable GitlabSecurity/SqlInjection # rubocop:enable GitlabSecurity/SqlInjection
scope :left_joins_milestones, -> { joins("LEFT OUTER JOIN milestones ON #{table_name}.milestone_id = milestones.id") } scope :left_joins_milestones, -> { joins("LEFT OUTER JOIN milestones ON #{table_name}.milestone_id = milestones.id") }
scope :order_milestone_due_desc, -> { left_joins_milestones.reorder('milestones.due_date IS NULL, milestones.id IS NULL, milestones.due_date DESC') } scope :order_milestone_due_desc, -> { left_joins_milestones.reorder(Arel.sql('milestones.due_date IS NULL, milestones.id IS NULL, milestones.due_date DESC')) }
scope :order_milestone_due_asc, -> { left_joins_milestones.reorder('milestones.due_date IS NULL, milestones.id IS NULL, milestones.due_date ASC') } scope :order_milestone_due_asc, -> { left_joins_milestones.reorder(Arel.sql('milestones.due_date IS NULL, milestones.id IS NULL, milestones.due_date ASC')) }
scope :without_label, -> { joins("LEFT OUTER JOIN label_links ON label_links.target_type = '#{name}' AND label_links.target_id = #{table_name}.id").where(label_links: { id: nil }) } scope :without_label, -> { joins("LEFT OUTER JOIN label_links ON label_links.target_type = '#{name}' AND label_links.target_id = #{table_name}.id").where(label_links: { id: nil }) }
scope :any_label, -> { joins(:label_links).group(:id) } scope :any_label, -> { joins(:label_links).group(:id) }
......
...@@ -126,7 +126,7 @@ class Group < Namespace ...@@ -126,7 +126,7 @@ class Group < Namespace
def visible_to_user_arel(user) def visible_to_user_arel(user)
groups_table = self.arel_table groups_table = self.arel_table
authorized_groups = user.authorized_groups.as('authorized') authorized_groups = user.authorized_groups.arel.as('authorized')
groups_table.project(1) groups_table.project(1)
.from(authorized_groups) .from(authorized_groups)
......
...@@ -1913,7 +1913,7 @@ class Project < ApplicationRecord ...@@ -1913,7 +1913,7 @@ class Project < ApplicationRecord
end end
def default_environment def default_environment
production_first = "(CASE WHEN name = 'production' THEN 0 ELSE 1 END), id ASC" production_first = Arel.sql("(CASE WHEN name = 'production' THEN 0 ELSE 1 END), id ASC")
environments environments
.with_state(:available) .with_state(:available)
......
...@@ -149,7 +149,7 @@ module Ci ...@@ -149,7 +149,7 @@ module Ci
# this returns builds that are ordered by number of running builds # this returns builds that are ordered by number of running builds
# we prefer projects that don't use shared runners at all # we prefer projects that don't use shared runners at all
joins("LEFT JOIN (#{running_builds_for_shared_runners.to_sql}) AS project_builds ON ci_builds.project_id=project_builds.project_id") joins("LEFT JOIN (#{running_builds_for_shared_runners.to_sql}) AS project_builds ON ci_builds.project_id=project_builds.project_id")
.order('COALESCE(project_builds.running_builds, 0) ASC', 'ci_builds.id ASC') .order(Arel.sql('COALESCE(project_builds.running_builds, 0) ASC'), 'ci_builds.id ASC')
end end
# rubocop: enable CodeReuse/ActiveRecord # rubocop: enable CodeReuse/ActiveRecord
......
...@@ -88,7 +88,7 @@ class CohortsService ...@@ -88,7 +88,7 @@ class CohortsService
User User
.where('created_at > ?', MONTHS_INCLUDED.months.ago.end_of_month) .where('created_at > ?', MONTHS_INCLUDED.months.ago.end_of_month)
.group(created_at_month, last_activity_on_month) .group(created_at_month, last_activity_on_month)
.reorder("#{created_at_month} ASC", "#{last_activity_on_month} ASC") .reorder(Arel.sql("#{created_at_month} ASC, #{last_activity_on_month} ASC"))
.count .count
end end
end end
......
...@@ -66,7 +66,7 @@ module EE ...@@ -66,7 +66,7 @@ module EE
scope :has_parent, -> { where.not(parent_id: nil) } scope :has_parent, -> { where.not(parent_id: nil) }
scope :order_start_or_end_date_asc, -> do scope :order_start_or_end_date_asc, -> do
reorder("COALESCE(start_date, end_date) ASC NULLS FIRST") reorder(Arel.sql("COALESCE(start_date, end_date) ASC NULLS FIRST"))
end end
scope :order_start_date_asc, -> do scope :order_start_date_asc, -> do
......
...@@ -138,11 +138,11 @@ module Gitlab ...@@ -138,11 +138,11 @@ module Gitlab
has_many :approval_rules, class_name: 'ApprovalProjectRule' has_many :approval_rules, class_name: 'ApprovalProjectRule'
def approver_ids def approver_ids
@approver_ids ||= Approver.where(target_type: 'Project', target_id: id).joins(:user).pluck('distinct user_id') @approver_ids ||= Approver.where(target_type: 'Project', target_id: id).joins(:user).pluck(Arel.sql('DISTINCT user_id'))
end end
def approver_group_ids def approver_group_ids
@approver_group_ids ||= ApproverGroup.where(target_type: 'Project', target_id: id).joins(:group).pluck('distinct group_id') @approver_group_ids ||= ApproverGroup.where(target_type: 'Project', target_id: id).joins(:group).pluck(Arel.sql('DISTINCT group_id'))
end end
def approvals_required def approvals_required
......
...@@ -176,7 +176,7 @@ module Gitlab ...@@ -176,7 +176,7 @@ module Gitlab
self.table_name = 'projects' self.table_name = 'projects'
def self.find_by_full_path(path) def self.find_by_full_path(path)
order_sql = "(CASE WHEN routes.path = #{connection.quote(path)} THEN 0 ELSE 1 END)" order_sql = Arel.sql("(CASE WHEN routes.path = #{connection.quote(path)} THEN 0 ELSE 1 END)")
where_full_path_in(path).reorder(order_sql).take where_full_path_in(path).reorder(order_sql).take
end end
......
...@@ -955,7 +955,7 @@ into similar problems in the future (e.g. when new tables are created). ...@@ -955,7 +955,7 @@ into similar problems in the future (e.g. when new tables are created).
table_name = model_class.quoted_table_name table_name = model_class.quoted_table_name
model_class.each_batch(of: batch_size) do |relation| model_class.each_batch(of: batch_size) do |relation|
start_id, end_id = relation.pluck("MIN(#{table_name}.id), MAX(#{table_name}.id)").first start_id, end_id = relation.pluck("MIN(#{table_name}.id)", "MAX(#{table_name}.id)").first
if jobs.length >= BACKGROUND_MIGRATION_JOB_BUFFER_SIZE if jobs.length >= BACKGROUND_MIGRATION_JOB_BUFFER_SIZE
# Note: This code path generally only helps with many millions of rows # Note: This code path generally only helps with many millions of rows
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment