Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | use Gitlab::UserSettings directly as a singleton instead of ↵ | Mario de la Ossa | 2018-02-02 | 1 | -3/+1 |
| | | | | including/extending it | ||||
* | refactor access handling | Vratislav Kalenda | 2017-10-10 | 1 | -5/+12 |
| | |||||
* | remove whitespace | Vratislav Kalenda | 2017-10-08 | 1 | -1/+0 |
| | |||||
* | Issue JWT token with registry:catalog:* scope when requested by GitLab admin | Vratislav Kalenda | 2017-10-08 | 1 | -0/+5 |
| | |||||
* | `current_application_settings` belongs on `Gitlab::CurrentSettings` | Sean McGivern | 2017-08-31 | 1 | -1/+1 |
| | | | | | | | | | | | | | | | | The initializers including this were doing so at the top level, so every object loaded after them had a `current_application_settings` method. However, if someone had rack-attack enabled (which was loaded before these initializers), it would try to load the API, and fail, because `Gitlab::CurrentSettings` didn't have that method. To fix this: 1. Don't include `Gitlab::CurrentSettings` at the top level. We do not need `Object.new.current_application_settings` to work. 2. Make `Gitlab::CurrentSettings` explicitly `extend self`, as we already use it like that in several places. 3. Change the initializers to use that new form. | ||||
* | Rename user_can_admin? because it's more accurateadd-star-for-action-scope | Lin Jen-Shin | 2017-08-07 | 1 | -2/+2 |
| | | | | | Also fix the test because we no longer have :empty_project, just use :project is the same as before | ||||
* | fix typo and check | Jean Praloran | 2017-05-30 | 1 | -1/+1 |
| | |||||
* | add test and rebase | Jean Praloran | 2017-05-30 | 1 | -1/+6 |
| | |||||
* | change ability requirement | Jean Praloran | 2017-05-30 | 1 | -1/+1 |
| | |||||
* | add star for action scope, in order to delete image from registry | jean | 2017-05-30 | 1 | -0/+2 |
| | |||||
* | Add test example for invalid registry access request | Grzegorz Bizon | 2017-03-31 | 1 | -2/+0 |
| | |||||
* | Add specs for container repository factory method | Grzegorz Bizon | 2017-03-31 | 1 | -1/+1 |
| | |||||
* | Do not allow registry requests for invalid repositories | Grzegorz Bizon | 2017-03-30 | 1 | -0/+4 |
| | |||||
* | Create container repository on successful push auth | Grzegorz Bizon | 2017-03-30 | 1 | -0/+16 |
| | | | | | | | Because we do not have yet two way communication between container registry and GitLab, we need to eagerly create a new container repository objects in database. We now do that after user/build successfully authenticates a push action using auth service. | ||||
* | Add comment to container registry auth service | Grzegorz Bizon | 2017-03-29 | 1 | -5/+7 |
| | | | | | Comment explains why we still have authentication without user object there. The legacy authentication mechanism should be removed in 10.0. | ||||
* | Use container repository path inside auth service | Grzegorz Bizon | 2017-03-29 | 1 | -4/+8 |
| | |||||
* | Rename container image model to container repository | Grzegorz Bizon | 2017-03-23 | 1 | -1/+1 |
| | |||||
* | Fix communication between GitLab and Container Registry | Grzegorz Bizon | 2017-03-23 | 1 | -8/+9 |
| | |||||
* | Refactor splitting container image full path | Grzegorz Bizon | 2017-03-22 | 1 | -6/+1 |
| | | | | [ci skip] | ||||
* | Makes ContainerImages Routable | Andre Guedes | 2017-03-21 | 1 | -1/+1 |
| | | | | | Conflicts: db/schema.rb | ||||
* | Merge branch 'master' into feature/multi-level-container-registry-images | Grzegorz Bizon | 2017-03-21 | 1 | -1/+1 |
|\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * master: (1327 commits) Merge branch 'render-json-leak' into 'security' Merge branch 'ssrf' into 'security' Merge branch 'ssrf' into 'security' Merge branch 'fix-links-target-blank' into 'security' Merge branch '28058-hide-emails-in-atom-feeds' into 'security' Fix karma test Reset filters after click Handle Route#name being nil after an update Only add frontend code coverage instrumentation when generating coverage report fix recompile assets step in 9.0 upgrade guide to use yarn Undo explicit conversion to Integer Make level_value accept string integers Make feature spec more robust Removed d3.js from the main application.js bundle Extend compound status for manual actions specs Update css to be nice and tidy. Fix pipeline status for transition between stages add an index to the ghost column Return 404 in project issues API endpoint when project cannot be found Improve rename projects migration ... Conflicts: doc/ci/docker/using_docker_build.md spec/lib/gitlab/import_export/all_models.yml | ||||
| * | Enable Style/MutableConstant | Douwe Maan | 2017-02-23 | 1 | -1/+1 |
| | | |||||
* | | Fixes broken and missing tests | Andre Guedes | 2017-02-22 | 1 | -1/+2 |
| | | |||||
* | | Multi-level container image names backend implementation | Andre Guedes | 2017-02-22 | 1 | -2/+7 |
|/ | | | | | | | - Adds Registry events API endpoint - Adds container_images_repository and container_images models - Changes JWT authentication to allow multi-level scopes - Adds services for container image maintenance | ||||
* | replace `find_with_namespace` with `find_by_full_path` | Adam Pahlevi | 2017-02-03 | 1 | -1/+1 |
| | | | | add complete changelog for !8949 | ||||
* | Merge branch 'unauthenticated-container-registry-access' into 'security' | Alejandro Rodriguez | 2016-11-09 | 1 | -6/+10 |
| | | | | | | | | | | Restore unauthenticated access to public container registries Fixes https://gitlab.com/gitlab-org/gitlab-ce/issues/24284 See merge request !2025 Signed-off-by: Rémy Coutable <remy@rymai.me> | ||||
* | Merge branch 'fix-unathorized-cloning' into 'security' | Douwe Maan | 2016-11-09 | 1 | -1/+1 |
| | | | | | | | | | | Ensure external users are not able to clone disabled repositories. Closes https://gitlab.com/gitlab-org/gitlab-ce/issues/23788 See merge request !2017 Signed-off-by: Rémy Coutable <remy@rymai.me> | ||||
* | Be nice to Docker Clients talking to JWT/auth | Kamil Trzcinski | 2016-09-27 | 1 | -2/+9 |
| | |||||
* | Improve JwtController implementationpost-merge-improve-of-ci-permissions | Kamil Trzcinski | 2016-09-20 | 1 | -1/+1 |
| | |||||
* | Improve code comments | Kamil Trzcinski | 2016-09-16 | 1 | -2/+2 |
| | |||||
* | Rename capabilities to authentication_abilities | Kamil Trzcinski | 2016-09-16 | 1 | -6/+6 |
| | |||||
* | Fix existing authorization specs | Kamil Trzcinski | 2016-09-15 | 1 | -5/+3 |
| | |||||
* | Use `build_read_container_image` and use `build_download_code` | Kamil Trzcinski | 2016-09-15 | 1 | -18/+17 |
| | |||||
* | Make result to return project and capabilities granted | Kamil Trzcinski | 2016-09-13 | 1 | -14/+9 |
| | |||||
* | Use a permissions of user to access all dependent projects from CI jobs ↵ | Kamil Trzcinski | 2016-09-13 | 1 | -3/+37 |
| | | | | (this also includes a container images, and in future LFS files) | ||||
* | Fix private method visibility in container registry | Grzegorz Bizon | 2016-07-19 | 1 | -6/+6 |
| | |||||
* | Services: code style fixes, minor refactoringservices_refactoring1 | Valery Sizov | 2016-07-06 | 1 | -0/+2 |
| | |||||
* | Fix the use of CurrentSettings in ContainerRegistryAuthenticationService | Kamil Trzcinski | 2016-05-31 | 1 | -2/+7 |
| | |||||
* | Add Application Setting to configure Container Registry token expire delay ↵ | Kamil Trzcinski | 2016-05-31 | 1 | -0/+3 |
| | | | | (default 5min) | ||||
* | Make authentication service for Container Registry to be compatible with < ↵make-container-registry-authentication-service-compatible-with-older-docker | Kamil Trzcinski | 2016-05-30 | 1 | -3/+1 |
| | | | | Docker 1.11 | ||||
* | Fix the CI login to Container Registry (the gitlab-ci-token user) | Kamil Trzcinski | 2016-05-23 | 1 | -1/+1 |
| | |||||
* | Fix container deletion permission issue | Kamil Trzcinski | 2016-05-20 | 1 | -1/+1 |
| | |||||
* | Fix 401 message | Kamil Trzcinski | 2016-05-16 | 1 | -1/+1 |
| | |||||
* | Fix http status codes for container registry authentication service | Kamil Trzcinski | 2016-05-15 | 1 | -2/+2 |
| | |||||
* | Merge branch 'docker-registry' into docker-registry-view | Kamil Trzcinski | 2016-05-15 | 1 | -3/+3 |
|\ | |||||
| * | Improve authentication service specs | Kamil Trzcinski | 2016-05-15 | 1 | -3/+3 |
| | | |||||
* | | Fix Container Service full access token | Kamil Trzcinski | 2016-05-15 | 1 | -1/+1 |
| | | |||||
* | | Merge branch 'docker-registry' into docker-registry-view | Kamil Trzcinski | 2016-05-14 | 1 | -16/+11 |
|\ \ | |/ | |||||
| * | Rename JWT to JSONWebToken | Kamil Trzcinski | 2016-05-14 | 1 | -16/+11 |
| | | |||||
* | | Merge branch 'docker-registry' into docker-registry-view | Kamil Trzcinski | 2016-05-14 | 1 | -0/+2 |
|\ \ | |/ |