diff options
| author | Douwe Maan <douwe@gitlab.com> | 2016-08-31 14:55:37 +0000 |
|---|---|---|
| committer | Douwe Maan <douwe@gitlab.com> | 2016-08-31 14:55:37 +0000 |
| commit | 54199afb02d9777e7fa3a41347ff49096b4dbdee (patch) | |
| tree | 0babb11d0eafcc9ec7c02331816005bcc7251a5a /PROCESS.md | |
| parent | a181d675540d9ae571443cd9e19982af73be1ea4 (diff) | |
| parent | bcdd3d8ecef407f25a34ae0b7da421f1ace8ad37 (diff) | |
| download | gitlab-ce-54199afb02d9777e7fa3a41347ff49096b4dbdee.tar.gz | |
Merge branch '20911-remove-private-token-from-users-api' into 'master'
Don't expose a user's private token in the `/api/v3/user` API
## Why was this MR needed?
A user's private token is being leaked in the `/api/v3/user` API.
## What are the relevant issue numbers?
- Closes #20911
## Does this MR meet the acceptance criteria?
- [ ] #20911 !6047 Application-Specific Tokens Are Insecure
- [x] Implementation
- [x] Test
- [x] CHANGELOG
- [x] Make sure build is green
- [x] Assign to endboss
- [ ] Wait for merge
See merge request !6047
Diffstat (limited to 'PROCESS.md')
0 files changed, 0 insertions, 0 deletions