Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | update rugged | Alexis Reigel | 2017-07-27 | 1 | -1/+1 |
| | | | | | | | | the rugged versions up to 0.26.0b3 had a bug concerning the signature extraction. The extracted signature was not always the same, probably due to a buffer (overflow) issue in libgit. see https://github.com/libgit2/rugged/issues/608 | ||||
* | need to wrap the raw commit in a commit model | Alexis Reigel | 2017-07-27 | 1 | -1/+2 |
| | |||||
* | no need for passing parameter | Alexis Reigel | 2017-07-27 | 1 | -4/+4 |
| | | | | we introduced memoizing, so it's safe to call the method multiple times. | ||||
* | update invalid gpg signatures when key is created | Alexis Reigel | 2017-07-27 | 1 | -0/+19 |
| | |||||
* | allow updating of gpg signature through gpg commit | Alexis Reigel | 2017-07-27 | 1 | -1/+13 |
| | |||||
* | memoize verified_signature call | Alexis Reigel | 2017-07-27 | 1 | -8/+17 |
| | |||||
* | store gpg_key_primary_keyid for unknown gpg keys | Alexis Reigel | 2017-07-27 | 1 | -2/+4 |
| | | | | | we need to store the keyid to be able to update the signature later in case the missing key is added later. | ||||
* | move signature cache read to Gpg::Commit | Alexis Reigel | 2017-07-27 | 1 | -0/+3 |
| | | | | | | | | as we write the cache in the gpg commit class already the read should also happen there. This also removes all logic from the main commit class, which just proxies the call to the Gpg::Commit now. | ||||
* | gpg signature is only valid when key is verified | Alexis Reigel | 2017-07-27 | 1 | -1/+1 |
| | |||||
* | bail if the commit has no signature | Alexis Reigel | 2017-07-27 | 1 | -2/+4 |
| | |||||
* | cache the gpg commit signature | Alexis Reigel | 2017-07-27 | 1 | -0/+51 |
| | | | | | we store the result of the gpg commit verification in the db because the gpg verification is an expensive operation. | ||||
* | verify gpg commit using tmp keyring and db query | Alexis Reigel | 2017-07-27 | 1 | -0/+8 |
| | |||||
* | add primary keyid attribute to gpg keys | Alexis Reigel | 2017-07-27 | 1 | -0/+12 |
| | |||||
* | don't sync to keychain file | Alexis Reigel | 2017-07-27 | 1 | -18/+0 |
| | |||||
* | remove gpg from keychain when user's email changes | Alexis Reigel | 2017-07-27 | 1 | -1/+3 |
| | |||||
* | move current keychain methods to namespace | Alexis Reigel | 2017-07-27 | 1 | -8/+8 |
| | |||||
* | email handling for gpg keys | Alexis Reigel | 2017-07-27 | 1 | -0/+20 |
| | |||||
* | add / remove gpg keys to / from system keychain | Alexis Reigel | 2017-07-27 | 1 | -0/+8 |
| | |||||
* | extract gpg functionality to lib class | Alexis Reigel | 2017-07-27 | 1 | -0/+32 |
| | |||||
* | commit signature with spec | Alexis Reigel | 2017-07-27 | 1 | -1/+6 |
| | |||||
* | Prototype key verification | Kevin O'Connor | 2017-07-27 | 1 | -0/+4 |
| | |||||
* | Merge branch '33601-add-csrf-token-verification-to-api' into 'master' | Sean McGivern | 2017-07-27 | 2 | -6/+18 |
|\ | | | | | | | | | | | | | Resolve "Add CSRF token verification to API" Closes #33601 See merge request !12154 | ||||
| * | Rescue only from ActionController::InvalidAuthenticityToken | Douwe Maan | 2017-07-26 | 2 | -2/+10 |
| | | |||||
| * | Add `rescue false`. | blackst0ne | 2017-07-26 | 2 | -2/+2 |
| | | |||||
| * | Refactor CSRF protection | blackst0ne | 2017-07-26 | 2 | -32/+6 |
| | | |||||
| * | Add CSRF token verification to API | blackst0ne | 2017-07-26 | 1 | -4/+34 |
| | | |||||
* | | Merge branch 'tc-issue-api-assignee' into 'master' | Sean McGivern | 2017-07-27 | 1 | -1/+7 |
|\ \ | | | | | | | | | | | | | | | | | | | Add author_id & assignee_id param to /issues API Closes #29430 See merge request !13004 | ||||
| * | | Allow query param scope for /issues API endpointtc-issue-api-assignee | Toon Claes | 2017-07-24 | 1 | -4/+5 |
| | | | |||||
| * | | Add author_id & assignee_id param to /issues API | Toon Claes | 2017-07-24 | 1 | -0/+5 |
| | | | | | | | | | | | | Allow issues filtering on `author_id` and `assignee_id`. | ||||
* | | | Use LDAP-attributes configured in gitlab.yml in lookup instead of just ↵ | Casper | 2017-07-26 | 1 | -1/+1 |
| | | | | | | | | | | | | hard-coded attributes. | ||||
* | | | Merge remote-tracking branch 'dev/master' | Douwe Maan | 2017-07-26 | 1 | -12/+44 |
|\ \ \ | | | | | | | | | | | | | | | | | | | | | # Conflicts: # Gemfile # Gemfile.lock | ||||
| * | | | Fix plain LDAP (no encryption) | Michael Kozono | 2017-07-26 | 1 | -3/+6 |
| | | | | |||||
| * | | | Fix code style | Michael Kozono | 2017-07-26 | 1 | -5/+5 |
| | | | | |||||
| * | | | Move backwards compatibility logic out of the code | Michael Kozono | 2017-07-26 | 1 | -5/+1 |
| | | | | | | | | | | | | | | | | And closer to the configuration setup. The code doesn’t need to know about this. | ||||
| * | | | Pass configured `ssl_version` to `omniauth-ldap` | Michael Kozono | 2017-07-26 | 1 | -0/+2 |
| | | | | |||||
| * | | | Pass configured `ca_file` to `omniauth-ldap` | Michael Kozono | 2017-07-26 | 1 | -0/+1 |
| | | | | |||||
| * | | | Verify certificates in `omniauth-ldap` | Michael Kozono | 2017-07-26 | 1 | -1/+2 |
| | | | | |||||
| * | | | Set `Net::LDAP` `ssl_version` option | Michael Kozono | 2017-07-26 | 1 | -0/+1 |
| | | | | |||||
| * | | | Set `Net::LDAP` `ca_file` option | Michael Kozono | 2017-07-26 | 1 | -5/+15 |
| | | | | |||||
| * | | | Set `Net::LDAP` encryption properly | Michael Kozono | 2017-07-26 | 1 | -8/+26 |
| | | | | |||||
| * | | | Use encryption instead of method | Michael Kozono | 2017-07-26 | 1 | -2/+2 |
| | | | | | | | | | | | | | | | | The method key is deprecated in the `gitlab_omniauth-ldap` gem. | ||||
* | | | | Merge branch 'mk-add-lower-path-index-to-redirect-routes' into 'master' | Yorick Peterse | 2017-07-26 | 1 | -0/+2 |
|\ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Add lower path index to redirect_routes Closes #34638 See merge request !13062 | ||||
| * | | | | Add lower path index to redirect_routesmk-add-lower-path-index-to-redirect-routes | Michael Kozono | 2017-07-25 | 1 | -0/+2 |
| | | | | | |||||
* | | | | | Merge branch 'post-upload-pack-opt-out' into 'master' | Sean McGivern | 2017-07-26 | 1 | -1/+4 |
|\ \ \ \ \ | |_|_|_|/ |/| | | | | | | | | | | | | | | Enable gitaly_post_upload_pack by default See merge request !13078 | ||||
| * | | | | Enable gitaly_post_upload_pack by default | Jacob Vosmaer | 2017-07-25 | 1 | -1/+4 |
| |/ / / | |||||
* | | | | Merge branch 'zj-repo-exists-gitaly' into 'master' | Sean McGivern | 2017-07-26 | 3 | -5/+23 |
|\ \ \ \ | | | | | | | | | | | | | | | | | | | | | Implement GRPC call to RepositoryService See merge request !13019 | ||||
| * | | | | Implement GRPC call to RepositoryService | Z.J. van de Weg | 2017-07-26 | 3 | -5/+23 |
| | | | | | |||||
* | | | | | Merge branch '31129-jira-project-key-elim' into 'master' | Sean McGivern | 2017-07-26 | 1 | -6/+0 |
|\ \ \ \ \ | |_|_|/ / |/| | | | | | | | | | | | | | | | | | | | | | | | | Remove project_key from the JIRA configuration Closes #31129 See merge request !12050 | ||||
| * | | | | Remove project_key from the Jira configuration | Jarka Kadlecova | 2017-07-25 | 1 | -6/+0 |
| | |_|/ | |/| | | |||||
* | | | | Merge branch '30634-protected-pipeline' into 'master' | Kamil Trzciński | 2017-07-25 | 4 | -22/+47 |
|\ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Implement "Block pipelines on protected branches" Closes #30634, #34616, and #33130 See merge request !11910 |