summaryrefslogtreecommitdiff
path: root/app/controllers/google_api
Commit message (Collapse)AuthorAgeFilesLines
* Validate session key when authorizing with GCP to create a clusterTiger2019-02-191-11/+21
| | | | | | | | | | It was previously possible to link a GCP account to another user's GitLab account by having them visit the callback URL, as there was no check that they were the initiator of the request. We now reject the callback unless the state parameter matches the one added to the initiating user's session.
* Enable more frozen string in app/controllers/gfyoung2018-09-231-0/+2
| | | | | | | | | | | | | | | | Enables frozen string for the following: * app/controllers/dashboard/**/*.rb * app/controllers/explore/**/*.rb * app/controllers/google_api/**/*.rb * app/controllers/groups/**/*.rb * app/controllers/import/**/*.rb * app/controllers/instance_statistics/**/*.rb * app/controllers/ldap/**/*.rb * app/controllers/oauth/**/*.rb * app/controllers/profiles/**/*.rb Partially addresses #47424.
* Improve redirect uri state and fix all remaining testsKamil Trzcinski2017-10-061-6/+11
|
* Security fix: redirection in google_api/authorizations_controllerShinya Maeda2017-10-061-2/+7
|
* Change `/google_api/authorizations/` to `/google_api/auth/`.Kamil Trzcinski2017-10-051-1/+1
|
* authorizations_controller_spec. cluster_policy_spec.Shinya Maeda2017-10-051-2/+2
|
* Use expires_in for access_token validationShinya Maeda2017-10-021-3/+7
|
* Replace reactive_cache by multipel sidekiq workersShinya Maeda2017-10-011-3/+3
|
* Databse foreing key, index, encrypt password. Use short path. Improve error ↵Shinya Maeda2017-09-291-2/+0
| | | | handling. Polish.
* okShinya Maeda2017-09-261-15/+5
|
* Create Kubernetes cluster on GKE from k8s serviceShinya Maeda2017-09-251-0/+27
View Lorry Controller Status