Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Add latest changes from gitlab-org/gitlab@15-10-stable-eev15.10.0-rc42 | GitLab Bot | 2023-03-20 | 1 | -3/+10 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@15-9-stable-eev15.9.0-rc42 | GitLab Bot | 2023-02-20 | 1 | -2/+3 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@15-7-stable-eev15.7.0-rc42 | GitLab Bot | 2022-12-20 | 1 | -0/+6 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@15-6-stable-eev15.6.0-rc42 | GitLab Bot | 2022-11-17 | 1 | -1/+8 |
| | |||||
* | Add latest changes from gitlab-org/security/gitlab@15-5-stable-ee | GitLab Bot | 2022-11-01 | 1 | -1/+1 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@15-5-stable-eev15.5.0-rc42 | GitLab Bot | 2022-10-20 | 1 | -1/+1 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@15-4-stable-eev15.4.0-rc42 | GitLab Bot | 2022-09-19 | 1 | -0/+53 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@15-3-stable-eev15.3.0-rc42 | GitLab Bot | 2022-08-18 | 1 | -44/+23 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@15-2-stable-eev15.2.0-rc42 | GitLab Bot | 2022-07-20 | 1 | -15/+24 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@14-10-stable-eev14.10.0-rc42 | GitLab Bot | 2022-04-20 | 1 | -0/+1 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@14-9-stable-eev14.9.0-rc42 | GitLab Bot | 2022-03-18 | 1 | -5/+25 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@14-8-stable-eev14.8.0-rc42 | GitLab Bot | 2022-02-18 | 1 | -1/+2 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@14-7-stable-eev14.7.0-rc42 | GitLab Bot | 2022-01-20 | 1 | -1/+26 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@14-6-stable-eev14.6.0-rc42 | GitLab Bot | 2021-12-20 | 1 | -22/+87 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@14-4-stable-eev14.4.0-rc42 | GitLab Bot | 2021-10-20 | 1 | -1/+11 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@14-3-stable-eev14.3.0-rc42 | GitLab Bot | 2021-09-20 | 1 | -0/+31 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@14-2-stable-eev14.2.0-rc42 | GitLab Bot | 2021-08-19 | 1 | -0/+16 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@14-0-stable-eev14.0.0-rc42 | GitLab Bot | 2021-06-16 | 1 | -1/+1 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@13-10-stable-eev13.10.0-rc40 | GitLab Bot | 2021-03-16 | 1 | -13/+27 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@13-9-stable-eev13.9.0-rc42 | GitLab Bot | 2021-02-18 | 1 | -187/+205 |
| | |||||
* | Add latest changes from gitlab-org/security/gitlab@13-6-stable-ee | GitLab Bot | 2020-12-04 | 1 | -1/+1 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@13-6-stable-eev13.6.0-rc42 | GitLab Bot | 2020-11-19 | 1 | -1/+4 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@13-5-stable-eev13.5.0-rc42 | GitLab Bot | 2020-10-21 | 1 | -1/+1 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@13-4-stable-ee | GitLab Bot | 2020-09-19 | 1 | -33/+74 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@13-3-stable-ee | GitLab Bot | 2020-08-20 | 1 | -0/+19 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@13-2-stable-ee | GitLab Bot | 2020-07-20 | 1 | -0/+5 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@13-1-stable-ee | GitLab Bot | 2020-06-18 | 1 | -6/+1 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@13-0-stable-ee | GitLab Bot | 2020-05-20 | 1 | -9/+1 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | 2020-03-13 | 1 | -0/+8 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | 2020-01-27 | 1 | -6/+6 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | 2020-01-14 | 1 | -13/+7 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | 2019-12-26 | 1 | -0/+42 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | 2019-10-02 | 1 | -1/+1 |
| | |||||
* | Load search result counts asynchronously | Markus Koller | 2019-08-12 | 1 | -90/+112 |
| | | | | | | Querying all counts for the different search results in the same request led to timeouts, so we now only calculate the count for the *current* search results, and request the others in separate asynchronous calls. | ||||
* | Merge branch 'sh-avoid-loading-pipeline-status' into 'master' | Nick Thomas | 2019-06-27 | 1 | -0/+13 |
|\ | | | | | | | | | Avoid loading pipeline status in search results See merge request gitlab-org/gitlab-ce!30111 | ||||
| * | Avoid loading pipeline status in search results | Stan Hu | 2019-06-27 | 1 | -0/+13 |
| | | | | | | | | | | | | | | This improves the performance of search, since the pipeline status is not displayed. Identified in https://gitlab.com/gitlab-org/gitlab-ce/issues/56627 | ||||
* | | Enable Gitaly ref caching for SearchControllersh-add-gitaly-ref-caching-search-controller | Stan Hu | 2019-06-26 | 1 | -0/+4 |
|/ | | | | | | | As we noticed in https://gitlab.com/gitlab-org/gitlab-ce/issues/56627#note_185828742, clicking on the "Issues" tab often requests the same reference in rendering Markdown. | ||||
* | Use wiki partial in search results | Mario de la Ossa | 2019-04-25 | 1 | -0/+24 |
| | |||||
* | Add some frozen string to spec/**/*.rb | gfyoung | 2019-04-15 | 1 | -0/+2 |
| | | | | | | | | | | Adds frozen string to the following: * spec/bin/**/*.rb * spec/config/**/*.rb * spec/controllers/**/*.rb xref https://gitlab.com/gitlab-org/gitlab-ce/issues/59758 | ||||
* | Move Contribution Analytics related spec in ↵ | Imre Farkas | 2019-04-09 | 1 | -0/+39 |
| | | | | spec/features/groups/group_page_with_external_authorization_service_spec to EE | ||||
* | Revert "Merge branch 'if-57131-external_auth_to_ce' into 'master'" | Andreas Brandl | 2019-04-05 | 1 | -39/+0 |
| | | | This reverts merge request !26823 | ||||
* | Move Contribution Analytics related spec in ↵ | Imre Farkas | 2019-04-05 | 1 | -0/+39 |
| | | | | spec/features/groups/group_page_with_external_authorization_service_spec to EE | ||||
* | Enable the Layout/ExtraSpacing cop56392-enable-the-layout-extraspacing-cop | Rémy Coutable | 2019-01-24 | 1 | -1/+1 |
| | | | | Signed-off-by: Rémy Coutable <remy@rymai.me> | ||||
* | Update specs to rails5 formatblackst0ne-convert-specs-rails5-style | blackst0ne | 2018-12-19 | 1 | -6/+6 |
| | | | | | | | | | | Updates specs to use new rails5 format. The old format: `get :show, { some: params }, { some: headers }` The new format: `get :show, params: { some: params }, headers: { some: headers }` | ||||
* | Render a 403 when showing an access denied messagebvl-403-for-external-auth-service-ce | Bob Van Landuyt | 2018-06-05 | 1 | -1/+1 |
| | | | | | | | | When we want to show an access denied message to a user, we don't have to hide the resource's existence. So in that case we render a 403, this 403 is not handled by nginx on omnibus installs, making sure the message is visible to the user. | ||||
* | Port `read_cross_project` ability from EE | Bob Van Landuyt | 2018-02-22 | 1 | -0/+26 |
| | |||||
* | Change all `:empty_project` to `:project`rs-empty_project-default | Robert Speicher | 2017-08-02 | 1 | -4/+4 |
| | |||||
* | Correct RSpec/SingleLineHook cop offenses | Robert Speicher | 2017-06-14 | 1 | -1/+3 |
| | |||||
* | Add traits for ProjectFeatures to Project factory | Semyon Pupkov | 2017-02-05 | 1 | -13/+3 |
| | | | | https://gitlab.com/gitlab-org/gitlab-ce/issues/24007 | ||||
* | Merge branch 'jej-note-search-uses-finder' into 'security' | Douwe Maan | 2016-12-15 | 1 | -0/+61 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fix missing Note access checks in by moving Note#search to updated NoteFinder Split from !2024 to partially solve https://gitlab.com/gitlab-org/gitlab-ce/issues/23867 ## Which fixes are in this MR? :warning: - Potentially untested :bomb: - No test coverage :traffic_light: - Test coverage of some sort exists (a test failed when error raised) :vertical_traffic_light: - Test coverage of return value (a test failed when nil used) :white_check_mark: - Permissions check tested ### Note lookup without access check - [x] :white_check_mark: app/finders/notes_finder.rb:13 :download_code check - [x] :white_check_mark: app/finders/notes_finder.rb:19 `SnippetsFinder` - [x] :white_check_mark: app/models/note.rb:121 [`Issue#visible_to_user`] - [x] :white_check_mark: lib/gitlab/project_search_results.rb:113 - This is the only use of `app/models/note.rb:121` above, but importantly has no access checks at all. This means it leaks MR comments and snippets when those features are `team-only` in addition to the issue comments which would be fixed by `app/models/note.rb:121`. - It is only called from SearchController where `can?(current_user, :download_code, @project)` is checked, so commit comments are not leaked. ### Previous discussions - [x] https://dev.gitlab.org/gitlab/gitlabhq/merge_requests/2024/diffs#b915c5267a63628b0bafd23d37792ae73ceae272_13_13 `: download_code` check on commit - [x] https://dev.gitlab.org/gitlab/gitlabhq/merge_requests/2024/diffs#b915c5267a63628b0bafd23d37792ae73ceae272_19_19 `SnippetsFinder` should be used - `SnippetsFinder` should check if the snippets feature is enabled -> https://gitlab.com/gitlab-org/gitlab-ce/issues/25223 ### Acceptance criteria met? - [x] Tests added for new code - [x] TODO comments removed - [x] Squashed and removed skipped tests - [x] Changelog entry - [ ] State Gitlab versions affected and issue severity in description - [ ] Create technical debt issue for NotesFinder. - Either split into `NotesFinder::ForTarget` and `NotesFinder::Search` or consider object per notable type such as `NotesFinder::OnIssue`. For the first option could create `NotesFinder::Base` which is either inherited from or which can be included in the other two. - Avoid case statement anti-pattern in this finder with use of `NotesFinder::OnCommit` etc. Consider something on the finder for this? `Model.finder(user, project)` - Move `inc_author` to the controller, and implement `related_notes` to replace `non_diff_notes`/`mr_and_commit_notes` See merge request !2035 |