Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Add latest changes from gitlab-org/gitlab@14-1-stable-eev14.1.0-rc42 | GitLab Bot | 2021-07-20 | 1 | -0/+1 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@13-12-stable-eev13.12.0-rc42 | GitLab Bot | 2021-05-19 | 1 | -1/+1 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@13-10-stable-eev13.10.0-rc40 | GitLab Bot | 2021-03-16 | 1 | -18/+2 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@13-5-stable-eev13.5.0-rc42 | GitLab Bot | 2020-10-21 | 1 | -1/+62 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@13-4-stable-ee | GitLab Bot | 2020-09-19 | 1 | -1/+1 |
| | |||||
* | Add latest changes from gitlab-org/security/gitlab@13-3-stable-ee | GitLab Bot | 2020-09-01 | 1 | -0/+21 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@13-3-stable-ee | GitLab Bot | 2020-08-20 | 1 | -0/+1 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@13-2-stable-ee | GitLab Bot | 2020-07-20 | 1 | -1/+1 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@13-0-stable-ee | GitLab Bot | 2020-05-20 | 1 | -0/+4 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | 2020-02-25 | 1 | -1/+1 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@masterogolowinski-master-patch-80898 | GitLab Bot | 2019-12-16 | 1 | -2/+2 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | 2019-12-13 | 1 | -2/+2 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | 2019-12-11 | 1 | -11/+11 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | 2019-10-29 | 1 | -0/+2 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | 2019-09-26 | 1 | -0/+2 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | 2019-09-18 | 1 | -1/+1 |
| | |||||
* | refactor: remove Sentry from application settings | Roger Meier | 2019-06-25 | 1 | -4/+2 |
| | |||||
* | Add correlation id to all sentry errors | Bob Van Landuyt | 2019-05-13 | 1 | -3/+2 |
| | | | | | | | | Before this, we were only adding the correlation id to the "acceptable exceptions" which we handle in code. But we need to add it to the default raven context so the information would be available for uncaught exceptions. | ||||
* | Migrate correlation and tracing code to LabKitan-use-labkit | Andrew Newdigate | 2019-04-18 | 1 | -1/+1 |
| | | | | | | | | | | | | | | | This change is a fairly straightforward refactor to extract the tracing and correlation-id code from the gitlab rails codebase into the new LabKit-Ruby project. The corresponding import into LabKit-Ruby was in https://gitlab.com/gitlab-org/labkit-ruby/merge_requests/1 The code itself remains very similar for now. Extracting it allows us to reuse it in other projects, such as Gitaly-Ruby. This will give us the advantages of correlation-ids and distributed tracing in that project too. | ||||
* | Update specs to rails5 formatblackst0ne-convert-specs-rails5-style | blackst0ne | 2018-12-19 | 1 | -1/+1 |
| | | | | | | | | | | Updates specs to use new rails5 format. The old format: `get :show, { some: params }, { some: headers }` The new format: `get :show, params: { some: params }, headers: { some: headers }` | ||||
* | Log and pass correlation-id between Unicorn, Sidekiq and Gitaly | Kamil Trzciński | 2018-12-06 | 1 | -16/+14 |
| | | | | | | | | The Correlation ID is taken or generated from received X-Request-ID. Then it is being passed to all executed services (sidekiq workers or gitaly calls). The Correlation ID is logged in all structured logs as `correlation_id`. | ||||
* | Add config to disable impersonation | Imre Farkas | 2018-11-29 | 1 | -0/+13 |
| | | | | | | | | Adds gitlab.impersonation_enabled config option defaulting to true to keep the current default behaviour. Only the act of impersonation is modified, impersonation token management is not affected. | ||||
* | Make getting a user by the username case insensitive | William George | 2018-10-18 | 1 | -0/+16 |
| | |||||
* | Updates from `rubocop -a` | Lin Jen-Shin | 2018-07-09 | 1 | -1/+1 |
| | |||||
* | Add username to terms message in git and API callsbvl-add-username-to-terms-message | Bob Van Landuyt | 2018-05-24 | 1 | -1/+1 |
| | | | | | | | | This will make it clearer to users which account is being used to make the API/git call. So they know which account needs to be used to accept the terms. Closes #46649 | ||||
* | Block access to API & git when terms are enforced | Bob Van Landuyt | 2018-05-10 | 1 | -0/+18 |
| | | | | | | When terms are enforced, but the user has not accepted the terms access to the API & git is rejected with a message directing the user to the web app to accept the terms. | ||||
* | Save user ID and username in Grape API log (api_json.log)sh-store-user-in-api-logs | Stan Hu | 2018-01-08 | 1 | -0/+6 |
| | | | | | | This will enable admins to identify who actually made the API request. Relates to #36960 | ||||
* | Moved Exceptions to Gitlab::Auth | Francisco Lopez | 2017-11-17 | 1 | -4/+4 |
| | |||||
* | Moving exceptions to UserAuthFinders | Francisco Lopez | 2017-11-17 | 1 | -4/+4 |
| | |||||
* | Homogenising the type of the request handled by UserAuthFinder. Also tests fixed | Francisco Lopez | 2017-11-17 | 1 | -16/+21 |
| | |||||
* | First refactor | Francisco Lopez | 2017-11-17 | 1 | -0/+1 |
| | |||||
* | Update specs for sudo behavior | Douwe Maan | 2017-11-02 | 1 | -235/+144 |
| | |||||
* | Add sudo API scope | Douwe Maan | 2017-11-02 | 1 | -4/+4 |
| | |||||
* | Remove authentication using user.private_token | Douwe Maan | 2017-11-02 | 1 | -49/+4 |
| | |||||
* | Move all API authentication code to APIGuard | Douwe Maan | 2017-10-12 | 1 | -9/+9 |
| | |||||
* | Send API parameters as extra data for sentry errorsapi-sentry-extra | Alejandro Rodríguez | 2017-10-05 | 1 | -1/+27 |
| | |||||
* | Ensure no exception is raised when Raven tries to get the current user in ↵38571-fix-exception-in-raven-report | Rémy Coutable | 2017-09-29 | 1 | -0/+21 |
| | | | | | | API context Signed-off-by: Rémy Coutable <remy@rymai.me> | ||||
* | Make sure API responds with 401 when invalid authentication info is provideddm-api-unauthorized | Douwe Maan | 2017-09-28 | 1 | -38/+40 |
| | |||||
* | Enable the Layout/SpaceBeforeBlockBraces coprc/enable-the-Layout/SpaceBeforeBlockBraces-cop | Rémy Coutable | 2017-08-09 | 1 | -2/+2 |
| | | | | Signed-off-by: Rémy Coutable <remy@rymai.me> | ||||
* | Add specs | Douwe Maan | 2017-07-27 | 1 | -6/+44 |
| | |||||
* | Test OAuth token scope verification in the `API::Users` endpoint | Timothy Andrew | 2017-06-28 | 1 | -1/+3 |
| | |||||
* | Allow API scope declarations to be applied conditionally. | Timothy Andrew | 2017-06-28 | 1 | -1/+2 |
| | | | | | | | | | | | - Scope declarations of the form: allow_access_with_scope :read_user, if: -> (request) { request.get? } will only apply for `GET` requests - Add a negative test to a `POST` endpoint in the `users` API to test this. Also test for this case in the `AccessTokenValidationService` unit tests. | ||||
* | Correct RSpec/SingleLineHook cop offenses | Robert Speicher | 2017-06-14 | 1 | -8/+30 |
| | |||||
* | Auto-correct `RSpec/DescribedClass` violationsrs-described_class-cop-2 | Robert Speicher | 2017-05-01 | 1 | -1/+1 |
| | |||||
* | Merge branch '29505-allow-admins-sudo-to-blocked-users' into 'master' | Rémy Coutable | 2017-04-27 | 1 | -1/+27 |
|\ | | | | | | | | | Allow admins to sudo to blocked users See merge request !10842 | ||||
| * | Allow admins to sudo to blocked users.29505-allow-admins-sudo-to-blocked-users | Timothy Andrew | 2017-04-26 | 1 | -1/+27 |
| | | | | | | | | | | | | | | | | | | | | - Currently, (for example) admins can't delete snippets for blocked users, which is an unexpected limitation. - We modify `authenticate!` to conduct the `access_api` policy check against the `initial_current_user`, instead of the user being impersonated. - Update CHANGELOG for !10842 | ||||
* | | Unnecessary "include WaitForAjax" and "include ApiHelpers" | Jacopo | 2017-04-21 | 1 | -1/+1 |
|/ | | | | | Removed all the unnecessary include of `WaitForAjax` and `ApiHelpers` in the specs. Removed unnecessary usage of `api:true` | ||||
* | fix a brittle stub | http://jneen.net/ | 2017-03-09 | 1 | -1/+1 |
| | | | | | true is neither nil nor a user and doesn't make sense as the return value of `current_user` | ||||
* | Fix specs | Kamil Trzcinski | 2017-01-19 | 1 | -1/+2 |
| | |||||
* | Fix a Grape deprecation, use `#request_method` instead of `#route_method`fix-api-deprecation | Rémy Coutable | 2016-12-23 | 1 | -2/+2 |
| | | | | Signed-off-by: Rémy Coutable <remy@rymai.me> |