summaryrefslogtreecommitdiff
path: root/app/controllers/uploads_controller.rb
Commit message (Expand)AuthorAgeFilesLines
* Whitelist or fix additional `Gitlab/PublicSend` cop violationsrs-more-public-send-whitelistsRobert Speicher2017-08-141-1/+1
* Support uploads for newly created personal snippets12910-snippets-descriptionJarka Kadlecova2017-06-071-2/+9
* Support descriptions for snippetsJarka Kadlecova2017-05-311-0/+4
* Fixes the 500 for custom apearance header logo and logoAlexis Reigel2017-05-191-0/+2
* Support uploaders for personal snippets comments12910-uploader-pers-snippetJarka Kadlecova2017-05-021-31/+51
* Ensure mutable uploads are not cached without revalidationPawel Chojnacki2017-02-221-0/+2
* Branded login page also in CE11489-branded-appearance-to-ceZeger-Jan van de Weg2016-02-261-2/+3
* Only render 404 page from /publicinified_404_errorValery Sizov2015-10-131-3/+3
* Don't symbolize params.params-to-symDouwe Maan2015-05-111-5/+5
* Fixed the Rails/ActionFilter copJeroen van Baarsen2015-04-201-3/+3
* Reject access to group/project avatar if the user doesn't have access.Douwe Maan2015-03-101-16/+32
* Add brakeman rake task and improve code securityDmitriy Zaporozhets2015-03-021-5/+36
* Merge branch 'master' into extend_markdown_uploadDouwe Maan2015-02-241-0/+9
|\
| * Allow non authenticated access to avatarsDmitriy Zaporozhets2015-02-231-0/+9
* | Merge branch 'extend_markdown_upload' into generic-uploadsDouwe Maan2015-02-201-10/+8
|/
* Use controllers to serve uploads, with XSS prevention and access control.Douwe Maan2015-02-201-0/+17