summaryrefslogtreecommitdiff
path: root/spec/requests/api/oauth_tokens_spec.rb
Commit message (Collapse)AuthorAgeFilesLines
* Update specs to rails5 formatblackst0ne-convert-specs-rails5-styleblackst0ne2018-12-191-1/+1
| | | | | | | | | | Updates specs to use new rails5 format. The old format: `get :show, { some: params }, { some: headers }` The new format: `get :show, params: { some: params }, headers: { some: headers }`
* Refactor `have_http_status` into `have_gitlab_http_status` in the specsJacopo2017-10-201-4/+4
|
* Enable RSpec/FilePath copenable-spec-file-name-copSean McGivern2017-04-261-1/+1
| | | | | | - Ignore JS fixtures - Ignore qa directory - Rewrite concern specs to put concern name first
* Unnecessary "include WaitForAjax" and "include ApiHelpers"Jacopo2017-04-211-3/+1
| | | | | Removed all the unnecessary include of `WaitForAjax` and `ApiHelpers` in the specs. Removed unnecessary usage of `api:true`
* Don't allow blocked users to authenticate through other meansMarkus Koller2017-03-071-0/+22
| | | | | | | | | | | | | Gitlab::Auth.find_with_user_password is currently used in these places: - resource_owner_from_credentials in config/initializers/doorkeeper.rb, which is used for the OAuth Resource Owner Password Credentials flow - the /session API call in lib/api/session.rb, which is used to reveal the user's current authentication_token In both cases users should only be authenticated if they're in the active state.
* Small refactor and syntax fixes.2fa-api-checkPatricio Cano2016-08-181-0/+2
|
* Added documentation and CHANGELOG itemPatricio Cano2016-08-181-1/+1
|
* Added checks for 2FA to the API `/sessions` endpoint and the Resource Owner ↵Patricio Cano2016-08-181-0/+31
Password Credentials flow.
View Lorry Controller Status