summaryrefslogtreecommitdiff
path: root/app/controllers/uploads_controller.rb
Commit message (Expand)AuthorAgeFilesLines
* Ensure mutable uploads are not cached without revalidationPawel Chojnacki2017-02-221-0/+2
* Branded login page also in CE11489-branded-appearance-to-ceZeger-Jan van de Weg2016-02-261-2/+3
* Only render 404 page from /publicinified_404_errorValery Sizov2015-10-131-3/+3
* Don't symbolize params.params-to-symDouwe Maan2015-05-111-5/+5
* Fixed the Rails/ActionFilter copJeroen van Baarsen2015-04-201-3/+3
* Reject access to group/project avatar if the user doesn't have access.Douwe Maan2015-03-101-16/+32
* Add brakeman rake task and improve code securityDmitriy Zaporozhets2015-03-021-5/+36
* Merge branch 'master' into extend_markdown_uploadDouwe Maan2015-02-241-0/+9
|\
| * Allow non authenticated access to avatarsDmitriy Zaporozhets2015-02-231-0/+9
* | Merge branch 'extend_markdown_upload' into generic-uploadsDouwe Maan2015-02-201-10/+8
|/
* Use controllers to serve uploads, with XSS prevention and access control.Douwe Maan2015-02-201-0/+17