RubyGems - gitlab_support_readiness - Versions diffs - 1.0.120 → 1.0.122 - Mend

gitlab_support_readiness 1.0.120 → 1.0.122

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

checksums.yaml +4 -4
data/lib/support_readiness/ticket_processor/2fa_removal.rb +118 -0
data/lib/support_readiness/ticket_processor.rb +1 -0
metadata +3 -2

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 990b9ab8f4799c49858dbf3ab3a612352a184515211787dd8c3359ccf0f32f8f
-  data.tar.gz: 60a06caa3b33e5a3bfbff514553dcc5da20f04e89f4b8c199a600d03c0e50afc
+  metadata.gz: 6c150b6e67f4b31af57feb7a85e4cb7752c61145027c9b195417bee449d86dfb
+  data.tar.gz: c47e718aadeaa60dc62778902bf01adf7e570e1f8a66415db44ea4c3f81f5469
 SHA512:
-  metadata.gz: 99f166d57ea5b248c5f408ee6859bc02de431404c757f2436768bba5d6fbe701c4159f139e7745e403763d11bd948a60ca9849370139bd58c8e5adb2eeebf4bb
-  data.tar.gz: 0e318c6210a803a999ea571c436a4ce99420aa79d9bee39656f90ab4ca31dee932ce3eec47ab712817f9739bff42efaabb499f6e0235348732f52e1dcd190f96
+  metadata.gz: 4ed28ace23f5506939188a4f22f16b0cd037c2a00741c9ebb23d370ce477419c25f9f61758ab66aee8a09e27c1896bf3a621c01b2c0be327b0e646fc6637d7d8
+  data.tar.gz: a3029cd87747b8cdb7629ff3eb133a13d817530ceff021d57602d9cf68b6b367eace6bbf3b2081afa69fc5e095aa806131fc04245e073cb3ac6de502336a7612

data/lib/support_readiness/ticket_processor/2fa_removal.rb ADDED Viewed

@@ -0,0 +1,118 @@
+# frozen_string_literal: true
+# Defines the module Readiness.
+module Readiness
+  # Defines the module TicketProcessor
+  module TicketProcessor
+    ##
+    # Defines the class TwoFARemoval within the module {Readiness::Zendesk}.
+    #
+    # @author Jason Colyer
+    # @since 1.0.121
+    class TwoFARemoval < Readiness::Client
+      ##
+      # Process a 2FA Removal request
+      #
+      # @author Jason Colyer
+      # @since 1.0.121
+      def self.process!(zendesk_client, gitlab_admin_client, ticket_id)
+        @zendesk_client = zendesk_client
+        @gitlab_admin_client = gitlab_admin_client
+        @ticket = Readiness::Zendesk::Tickets.find!(@zendesk_client, ticket_id)
+        @fields = Readiness::Zendesk::TicketFields.list(@zendesk_client)
+        zd_field = Readiness::Zendesk::TicketFields.find_by_name(@zendesk_client, '2FA removal target', @fields)
+        if zd_field.nil?
+          puts 'Cannot locate relevant zendesk ticket field, exiting for safety'
+          exit 0
+        end
+        ticket_field = @ticket.custom_fields.detect { |c| c['id'] == zd_field.id }
+        if ticket_field.nil?
+          puts 'Cannot locate relevant ticket field, exiting for safety'
+          exit 0
+        end
+        if ticket_field['value'] == '2fa_removal_self'
+          tags_to_add = if support_entitlement_check
+                          %w[2fa_challenge_questions]
+                        else
+                          %w[2fa_user_not_entitled]
+                        end
+        elsif ticket_field['value'] == '2fa_removal_other'
+          tags_to_add = if owner_entitlement_check
+                          %w[2fa_snippet_verification]
+                        elsif support_entitlement_check
+                          %w[2fa_challenge_questions]
+                        else
+                          %w[2fa_owner_not_entitled]
+                        end
+        else
+          puts "Unknown request type of '#{ticket_field['value']}', exiting for safety"
+          exit 0
+        end
+        new_ticket = Readiness::Zendesk::Tickets.new
+        new_ticket.id = @ticket.id
+        new_ticket.additional_tags = tags_to_add
+        pp new_ticket.additional_tags
+        #Readiness::Zendesk::Tickets.update_many!(@zendesk_client, [new_ticket])
+      end
+      ##
+      # Determine if a request has support entitlement
+      #
+      # @author Jason Colyer
+      # @since 1.0.121
+      def self.support_entitlement_check
+        tags = %w[
+          sub_consumption_cicd_minutes
+          sub_consumption_eap
+          sub_consumption_storage
+          sub_dotcom_premium
+          sub_dotcom_ultimate
+        ]
+        tags.each do |t|
+          return true if @ticket.tags.include? t
+        end
+        false
+      end
+      ##
+      # Determine if a owner driven request has entitlement
+      #
+      # @author Jason Colyer
+      # @since 1.0.121
+      def self.owner_entitlement_check
+        return false unless support_entitlement_check
+        zd_field = Readiness::Zendesk::TicketFields.find_by_name(@zendesk_client, 'Impacted email address', @ticket_fields)
+        zd_requester = Readiness::Zendesk::Users.find!(@zendesk_client, @ticket.submitter_id)
+        target_email = @ticket.custom_fields.detect { |t| t['id'] == zd_field.id }['value']
+        return false unless zd_requester.email.split('@').last.downcase == target_email.split('@').last.downcase
+        users = Readiness::GitLab::Users.search_by_email(@gitlab_admin_client, target_email)
+        return false unless users.count == 1
+        target = users.first
+        users = Readiness::GitLab::Users.search_by_email(@gitlab_admin_client, zd_requester.email)
+        return false unless users.count == 1
+        requester = users.first
+        memberships = Readiness::GitLab::Users.memberships(@gitlab_admin_client, requester, ['type=Namespace'])
+        namespaces_to_check = []
+        memberships.select { |m| m['access_level'] == 50 }.each do |m|
+          namespace = Readiness::GitLab::Namespaces.find!(@gitlab_admin_client, m['source_id'])
+          next unless namespace.parent_id.nil?
+          next unless Readiness::GitLab::Namespaces.is_paid?(@gitlab_admin_client, namespace)
+          namespaces_to_check.push(namespace)
+        end
+        return false if namespaces_to_check.count.zero?
+        namespaces_to_check.each do |namespace|
+          group = Readiness::GitLab::Groups.new({ 'id' => namespace.id })
+          all_members = Readiness::GitLab::Groups.all_members(@gitlab_admin_client, group, ["user_ids=#{target.id}"])
+          return true unless all_members.count.zero?
+        end
+        false
+      end
+    end
+  end
+end

data/lib/support_readiness/ticket_processor.rb CHANGED Viewed

@@ -7,6 +7,7 @@ module Readiness
   # @author Jason Colyer
   # @since 1.0.44
   module TicketProcessor
+    require "#{__dir__}/ticket_processor/2fa_removal"
     require "#{__dir__}/ticket_processor/account_blocked"
     require "#{__dir__}/ticket_processor/code_request_advanced_sast"
     require "#{__dir__}/ticket_processor/email_suppressions"

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: gitlab_support_readiness
 version: !ruby/object:Gem::Version
-  version: 1.0.120
+  version: 1.0.122
 platform: ruby
 authors:
 - Jason Colyer
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2025-02-12 00:00:00.000000000 Z
+date: 2025-02-17 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
@@ -391,6 +391,7 @@ files:
 - lib/support_readiness/support_super_form_processor/usgov_set_collaboration_id.rb
 - lib/support_readiness/support_super_form_processor/usgov_set_org_ase.rb
 - lib/support_readiness/ticket_processor.rb
+- lib/support_readiness/ticket_processor/2fa_removal.rb
 - lib/support_readiness/ticket_processor/account_blocked.rb
 - lib/support_readiness/ticket_processor/code_request_advanced_sast.rb
 - lib/support_readiness/ticket_processor/email_suppressions.rb