summaryrefslogtreecommitdiff
path: root/app/controllers/oauth
Commit message (Collapse)AuthorAgeFilesLines
* Add latest changes from gitlab-org/gitlab@13-2-stable-eeGitLab Bot2020-08-055-5/+9
|
* Add latest changes from gitlab-org/gitlab@13-2-stable-eeGitLab Bot2020-07-201-0/+6
|
* Add latest changes from gitlab-org/security/gitlab@13-0-stable-eeGitLab Bot2020-05-261-0/+11
|
* Add latest changes from gitlab-org/security/gitlab@12-10-stable-eeGitLab Bot2020-04-271-0/+7
|
* Add latest changes from gitlab-org/gitlab@masterGitLab Bot2020-02-182-0/+23
|
* Add latest changes from gitlab-org/gitlab@masterGitLab Bot2020-02-101-2/+2
|
* Add latest changes from gitlab-org/gitlab@masterGitLab Bot2019-12-112-0/+3
|
* Add latest changes from gitlab-org/gitlab@masterGitLab Bot2019-11-172-2/+2
|
* Add latest changes from gitlab-org/gitlab@masterGitLab Bot2019-10-182-0/+2
|
* Merge branch 'security-fix-uri-xss-applications' into 'master'Cindy Pallares2018-11-281-1/+1
| | | | | [master] Resolve "Reflected XSS in OAuth Authorize window due to redirect_uri allowing arbitrary protocols" See merge request gitlab/gitlabhq!2572
* Fix typos in comments and specsGeorge Tsiolis2018-11-011-1/+1
|
* Enable more frozen string in app/controllers/gfyoung2018-09-233-0/+6
| | | | | | | | | | | | | | | | Enables frozen string for the following: * app/controllers/dashboard/**/*.rb * app/controllers/explore/**/*.rb * app/controllers/google_api/**/*.rb * app/controllers/groups/**/*.rb * app/controllers/import/**/*.rb * app/controllers/instance_statistics/**/*.rb * app/controllers/ldap/**/*.rb * app/controllers/oauth/**/*.rb * app/controllers/profiles/**/*.rb Partially addresses #47424.
* Always allow user to revoke an authorized applicationDmitriy Zaporozhets2018-09-201-1/+1
| | | | | | Even if User OAuth applications setting is disabled in admin settings. Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
* Port `read_cross_project` ability from EEBob Van Landuyt2018-02-221-0/+3
|
* use Gitlab::UserSettings directly as a singleton instead of ↵Mario de la Ossa2018-02-021-2/+1
| | | | including/extending it
* refactor codeJames Lopez2017-10-311-2/+1
|
* fix spinach failureJames Lopez2017-10-311-0/+2
|
* add applications controller logicJames Lopez2017-10-311-12/+10
|
* refactor some controllers to make them EE friendlyJames Lopez2017-09-281-2/+8
|
* Add a rubocop rule to check if a method 'redirect_to' is used without ↵31840-add-a-rubocop-that-forbids-redirect_to-inside-a-controller-destroy-action-without-an-explicit-statusblackst0ne2017-06-071-1/+3
| | | | explicitly set 'status' in 'destroy' actions of controllers
* Remove duplicated code in Oauth::AuthorizationsControllerMarkus Koller2017-03-071-42/+2
|
* Implement minor changes from @dbalexandre's review.Timothy Andrew2016-12-161-5/+1
| | | | | | | | | | | - Mainly whitespace changes. - Require the migration adding the `scope` column to the `personal_access_tokens` table to have downtime, since API calls will fail if the new code is in place, but the migration hasn't run. - Minor refactoring - load `@scopes` in a `before_action`, since we're doing it in three different places.
* Allow creating personal access tokens / OAuth applications with scopes.Timothy Andrew2016-12-161-0/+6
|
* Fix endless redirections when accessing user OAuth applications when they ↵Stan Hu2016-06-081-1/+1
| | | | | | | | are disabled Also hides the "Applications" nav button if OAuth applications are disabled by the admin. Closes #14770
* Include GonHelper separately and remove created_at in factoryStan Hu2016-04-141-0/+1
|
* Add spec for deletion of authorized OAuth2 applicationStan Hu2016-04-141-0/+1
| | | | | | Closes #14370 Move gon function into its own helper
* Merge branch 'fix/gitlab-omniauth-issue' into 'master' Douwe Maan2016-03-191-0/+1
|\ | | | | | | | | | | | | attempting to fix omniauth problem Attempt to fix https://gitlab.com/gitlab-org/gitlab-ce/issues/3361 See merge request !2876
| * another attempt to fix oauth issueJames Lopez2016-02-191-1/+1
| |
| * attempting to fix omniauth problemJames Lopez2016-02-181-0/+1
| |
* | Let `oauth/applications#index` handle the `profiles#applications` routeapplication-settingsRobert Speicher2016-03-131-14/+14
| | | | | | | | | | | | | | | | Previously we were doing all of kinds of code gymnastics and flash abuse in order to work with a Doorkeeper controller but have it _appear_ at the `/profile/applications` path. Fortunately we can just tell Rails to use a different controller to handle that route, and we get the best of both worlds.
* | Fixed Ruby style errorPhil Hughes2016-03-041-1/+1
| |
* | Applications tab on profile settingsPhil Hughes2016-03-041-1/+5
|/ | | | Closes #13855
* Move helpers back to original directoryDmitriy Zaporozhets2015-09-092-3/+3
|
* Groundwork for merging CI into CEDouwe Maan2015-08-252-2/+2
|
* Correctly show anonymous authorized applications under Profile > Applications.Douwe Maan2015-07-021-1/+6
|
* Add option to disallow users from registering any application to use GitLab ↵user-oauth-applicationsDouwe Maan2015-05-291-0/+8
| | | | as an OAuth provider
* Add helpers for header title and sidebar, and move setting those from ↵Douwe Maan2015-05-013-23/+9
| | | | controllers to layouts.
* before_action > before_filter.Douwe Maan2015-04-301-1/+1
|
* Add a page title to every page.Douwe Maan2015-04-303-3/+23
|
* Fixed the Rails/ActionFilter copJeroen van Baarsen2015-04-202-3/+3
| | | | Signed-off-by: Jeroen van Baarsen <jeroenvanbaarsen@gmail.com>
* Application admin scaffoldValery Sizov2015-01-171-4/+2
|
* Fix tests and add message if no oauth appsDmitriy Zaporozhets2014-12-251-1/+1
| | | | Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
* Rework oauth2 featureDmitriy Zaporozhets2014-12-253-3/+12
| | | | | | | | * improve UI * add authorization * add separate page for oauth applications Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
* Improve code styleDmitriy Zaporozhets2014-12-253-11/+18
| | | | Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
* Doorkeeper integrationValery Sizov2014-12-243-0/+90
View Lorry Controller Status